jro_apps/redmine Files · test/integration/sessions_test.rb

Replace Date.today with User.current.today (#22320)....

Replace Date.today with User.current.today (#22320). Depending on the offset between a user's configured timezone and the server timezone, Date.today may be more or less often wrong from the user's perspective, leading to things like issues marked as overdue too early or too late, or yesterday / tomorrow being displayed / selected where 'today' is intended. A test case illustrating the problem with Issue#overdue? is included Patch by Jens Kraemer. git-svn-id: http://svn.redmine.org/redmine/trunk@15379 e93f8b46-1217-0410-a6f0-8f06a7374b81

Jean-Philippe Lang - - Load All Authors

File last commit:

r14856:cda9c63d9c21


                r14997:ed50d42210ea

Download file

             sessions_test.rb
        
                    97 lines
            
             | 2.7 KiB
            
                | text/x-ruby
            
             |
                RubyLexer
            
             / test / integration / sessions_test.rb
          
                    History
                
                 |
                  Annotation
                 | Raw
                 |Copy content
                 |Copy permalink

      # Redmine - project management software

      # Copyright (C) 2006-2016  Jean-Philippe Lang

      #

      # This program is free software; you can redistribute it and/or

      # modify it under the terms of the GNU General Public License

      # as published by the Free Software Foundation; either version 2

      # of the License, or (at your option) any later version.

      #

      # This program is distributed in the hope that it will be useful,

      # but WITHOUT ANY WARRANTY; without even the implied warranty of

      # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

      # GNU General Public License for more details.

      #

      # You should have received a copy of the GNU General Public License

      # along with this program; if not, write to the Free Software

      # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

      require File.expand_path('../../test_helper', __FILE__)

      class SessionsTest < Redmine::IntegrationTest

        fixtures :users, :email_addresses, :roles

        def setup

          Rails.application.config.redmine_verify_sessions = true

        end

        def teardown

          Rails.application.config.redmine_verify_sessions = false

        end

        def test_change_password_kills_sessions

          log_user('jsmith', 'jsmith')

          jsmith = User.find(2)

          jsmith.password = "somenewpassword"

          jsmith.save!

          get '/my/account'

          assert_response 302

          assert flash[:error].match(/Your session has expired/)

        end

        def test_lock_user_kills_sessions

          log_user('jsmith', 'jsmith')

          jsmith = User.find(2)

          assert jsmith.lock!

          assert jsmith.activate!

          get '/my/account'

          assert_response 302

          assert flash[:error].match(/Your session has expired/)

        end

        def test_update_user_does_not_kill_sessions

          log_user('jsmith', 'jsmith')

          jsmith = User.find(2)

          jsmith.firstname = 'Robert'

          jsmith.save!

          get '/my/account'

          assert_response 200

        end

        def test_change_password_generates_a_new_token_for_current_session

          log_user('jsmith', 'jsmith')

          assert_not_nil token = session[:tk]

          get '/my/password'

          assert_response 200

          post '/my/password', :password => 'jsmith',

                               :new_password => 'secret123',

                               :new_password_confirmation => 'secret123'

          assert_response 302

          assert_not_equal token, session[:tk]

          get '/my/account'

          assert_response 200

        end

        def test_simultaneous_sessions_should_be_valid

          first = open_session do |session|

            session.post "/login", :username => 'jsmith', :password => 'jsmith'

          end

          other = open_session do |session|

            session.post "/login", :username => 'jsmith', :password => 'jsmith'

          end

          first.get '/my/account'

          assert_equal 200, first.response.response_code

          first.post '/logout'

          other.get '/my/account'

          assert_equal 200, other.response.response_code

        end

      end

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

				# Redmine - project management software
				# Copyright (C) 2006-2016 Jean-Philippe Lang
				#
				# This program is free software; you can redistribute it and/or
				# modify it under the terms of the GNU General Public License
				# as published by the Free Software Foundation; either version 2
				# of the License, or (at your option) any later version.
				#
				# This program is distributed in the hope that it will be useful,
				# but WITHOUT ANY WARRANTY; without even the implied warranty of
				# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
				# GNU General Public License for more details.
				#
				# You should have received a copy of the GNU General Public License
				# along with this program; if not, write to the Free Software
				# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.

				require File.expand_path('../../test_helper', __FILE__)

				class SessionsTest < Redmine::IntegrationTest
				fixtures :users, :email_addresses, :roles

				def setup
				Rails.application.config.redmine_verify_sessions = true
				end

				def teardown
				Rails.application.config.redmine_verify_sessions = false
				end

				def test_change_password_kills_sessions
				log_user('jsmith', 'jsmith')

				jsmith = User.find(2)
				jsmith.password = "somenewpassword"
				jsmith.save!

				get '/my/account'
				assert_response 302
				assert flash[:error].match(/Your session has expired/)
				end

				def test_lock_user_kills_sessions
				log_user('jsmith', 'jsmith')

				jsmith = User.find(2)
				assert jsmith.lock!
				assert jsmith.activate!

				get '/my/account'
				assert_response 302
				assert flash[:error].match(/Your session has expired/)
				end

				def test_update_user_does_not_kill_sessions
				log_user('jsmith', 'jsmith')

				jsmith = User.find(2)
				jsmith.firstname = 'Robert'
				jsmith.save!

				get '/my/account'
				assert_response 200
				end

				def test_change_password_generates_a_new_token_for_current_session
				log_user('jsmith', 'jsmith')
				assert_not_nil token = session[:tk]

				get '/my/password'
				assert_response 200
				post '/my/password', :password => 'jsmith',
				:new_password => 'secret123',
				:new_password_confirmation => 'secret123'
				assert_response 302
				assert_not_equal token, session[:tk]

				get '/my/account'
				assert_response 200
				end

				def test_simultaneous_sessions_should_be_valid
				first = open_session do \|session\|
				session.post "/login", :username => 'jsmith', :password => 'jsmith'
				end
				other = open_session do \|session\|
				session.post "/login", :username => 'jsmith', :password => 'jsmith'
				end

				first.get '/my/account'
				assert_equal 200, first.response.response_code
				first.post '/logout'

				other.get '/my/account'
				assert_equal 200, other.response.response_code
				end
				end