tracks/test/functional/login_controller_test.rb

require File.dirname(__FILE__) + '/../test_helper'
require 'login_controller'
require_dependency "login_system"

# Re-raise errors caught by the controller.
class LoginController; def rescue_action(e) raise e end; end

class LoginControllerTest < ActionController::TestCase
  fixtures :preferences, :users
  
  def setup
    assert_equal "test", ENV['RAILS_ENV']
    assert_equal "change-me", Tracks::Config.salt
    @controller = LoginController.new
    @request = ActionController::TestRequest.new
    @response = ActionController::TestResponse.new
  end

  #============================================
  #Login and logout
  #============================================
    
  def test_invalid_login
    post :login, {:user_login => 'cracker', :user_password => 'secret', :user_noexpiry => 'on'}
    assert_response :success
    assert(!@response.has_session_object?(:user_id))
    assert_template "login"
  end
  
  def test_login_with_valid_admin_user
    @request.session['return-to'] = "/bogus/location"
    post :login, {:user_login => 'admin', :user_password => 'abracadabra', :user_noexpiry => 'on'}
    user = User.find(session['user_id'])
    assert_equal user.id, @response.session['user_id']
    assert_equal user.login, "admin"
    assert user.is_admin
    assert_equal "Login successful: session will not expire.", flash[:notice]
    assert_equal("http://#{@request.host}/bogus/location", @response.redirect_url)
  end
  
  def test_login_with_valid_standard_user
    post :login, {:user_login => 'jane', :user_password => 'sesame', :user_noexpiry => 'off'}
    user = User.find(session['user_id'])
    assert_equal user.id, @response.session['user_id']
    assert_equal user.login, "jane"
    assert user.is_admin == false || user.is_admin == 0
    assert_equal "Login successful: session will expire after 1 hour of inactivity.", flash[:notice]
    assert_redirected_to home_url
  end
  
  def test_login_with_no_users_redirects_to_signup
    User.delete_all
    get :login
    assert_redirected_to :controller => 'users', :action => 'new'
  end
  
  def test_logout
    login_as :admin_user
    get :logout
    assert_nil(session['user_id'])
    assert_redirected_to :controller => 'login', :action => 'login'
  end
  
  # Test login with a bad password for existing user
  # 
  def test_login_bad_password
    post :login, {:user_login => 'jane', :user_password => 'wrong', :user_noexpiry => 'on'}
    assert(!@response.has_session_object?(:user))
    assert_equal "Login unsuccessful", flash[:warning]
    assert_response :success
  end
  
  def test_login_bad_login
    post :login, {:user_login => 'blah', :user_password => 'sesame', :user_noexpiry => 'on'}
    assert(!@response.has_session_object?(:user))
    assert_equal "Login unsuccessful", flash[:warning]
    assert_response :success
  end
  
  def test_should_remember_me
    post :login, :user_login => 'jane', :user_password => 'sesame', :user_noexpiry => "on"
    assert_not_nil @response.cookies["auth_token"]
  end

  def test_should_not_remember_me
    post :login, :user_login => 'jane', :user_password => 'sesame', :user_noexpiry => "off"
    assert_nil @response.cookies["auth_token"]
  end
  
  def test_should_delete_token_on_logout
    login_as :other_user
    get :logout
    assert_equal @response.cookies["auth_token"], []
  end

  def test_should_login_with_cookie
    users(:other_user).remember_me
    @request.cookies["auth_token"] = auth_token_cookie_for(:other_user)
    get :login
    assert @controller.send(:logged_in?)
  end

  def test_should_fail_expired_cookie_login
    users(:other_user).remember_me
    users(:other_user).update_attribute :remember_token_expires_at, 5.minutes.ago.utc
    @request.cookies["auth_token"] = auth_token_cookie_for(:other_user)
    get :login
    assert !@controller.send(:logged_in?)
  end

  def test_should_fail_cookie_login
    users(:other_user).remember_me
    @request.cookies["auth_token"] = CGI::Cookie.new('name' => 'auth_token', 'value' => 'invalid_auth_token')
    get :login
    assert !@controller.send(:logged_in?)
  end
  
  def test_current_user_nil
    get :login
    assert_nil @controller.current_user
  end
  
  def test_current_user_correct
    post :login, {:user_login => 'jane', :user_password => 'sesame', :user_noexpiry => 'off'}
    assert_equal users(:other_user), @controller.current_user
  end
  
  def test_prefs_nil
    login_as nil
    get :login
    assert_nil @controller.prefs
  end
  
  def test_prefs_correct
    post :login, {:user_login => 'jane', :user_password => 'sesame', :user_noexpiry => 'off'}
    assert_equal users(:other_user).prefs, @controller.prefs
  end
  
  private
        
  def auth_token_cookie_for(user)
    CGI::Cookie.new('name' => 'auth_token', 'value' => users(user).remember_token)
  end
  
    
end
get tests running again with zentest >= 4.0.0 2009-06-02 21:22:50 +02:00			`require File.dirname(__FILE__) + '/../test_helper'`
			`require 'login_controller'`
			`require_dependency "login_system"`

			`# Re-raise errors caught by the controller.`
			`class LoginController; def rescue_action(e) raise e end; end`

			`class LoginControllerTest < ActionController::TestCase`
			`fixtures :preferences, :users`

			`def setup`
			`assert_equal "test", ENV['RAILS_ENV']`
			`assert_equal "change-me", Tracks::Config.salt`
			`@controller = LoginController.new`
			`@request = ActionController::TestRequest.new`
			`@response = ActionController::TestResponse.new`
			`end`

			`#============================================`
			`#Login and logout`
			`#============================================`

			`def test_invalid_login`
			`post :login, {:user_login => 'cracker', :user_password => 'secret', :user_noexpiry => 'on'}`
			`assert_response :success`
			`assert(!@response.has_session_object?(:user_id))`
			`assert_template "login"`
			`end`

			`def test_login_with_valid_admin_user`
			`@request.session['return-to'] = "/bogus/location"`
			`post :login, {:user_login => 'admin', :user_password => 'abracadabra', :user_noexpiry => 'on'}`
			`user = User.find(session['user_id'])`
			`assert_equal user.id, @response.session['user_id']`
			`assert_equal user.login, "admin"`
			`assert user.is_admin`
			`assert_equal "Login successful: session will not expire.", flash[:notice]`
			`assert_equal("http://#{@request.host}/bogus/location", @response.redirect_url)`
			`end`

			`def test_login_with_valid_standard_user`
			`post :login, {:user_login => 'jane', :user_password => 'sesame', :user_noexpiry => 'off'}`
			`user = User.find(session['user_id'])`
			`assert_equal user.id, @response.session['user_id']`
			`assert_equal user.login, "jane"`
			`assert user.is_admin == false \|\| user.is_admin == 0`
			`assert_equal "Login successful: session will expire after 1 hour of inactivity.", flash[:notice]`
			`assert_redirected_to home_url`
			`end`

			`def test_login_with_no_users_redirects_to_signup`
			`User.delete_all`
			`get :login`
			`assert_redirected_to :controller => 'users', :action => 'new'`
			`end`

			`def test_logout`
			`login_as :admin_user`
			`get :logout`
			`assert_nil(session['user_id'])`
			`assert_redirected_to :controller => 'login', :action => 'login'`
			`end`

			`# Test login with a bad password for existing user`
			`#`
			`def test_login_bad_password`
			`post :login, {:user_login => 'jane', :user_password => 'wrong', :user_noexpiry => 'on'}`
			`assert(!@response.has_session_object?(:user))`
			`assert_equal "Login unsuccessful", flash[:warning]`
			`assert_response :success`
			`end`

			`def test_login_bad_login`
			`post :login, {:user_login => 'blah', :user_password => 'sesame', :user_noexpiry => 'on'}`
			`assert(!@response.has_session_object?(:user))`
			`assert_equal "Login unsuccessful", flash[:warning]`
			`assert_response :success`
			`end`

			`def test_should_remember_me`
			`post :login, :user_login => 'jane', :user_password => 'sesame', :user_noexpiry => "on"`
			`assert_not_nil @response.cookies["auth_token"]`
			`end`

			`def test_should_not_remember_me`
			`post :login, :user_login => 'jane', :user_password => 'sesame', :user_noexpiry => "off"`
			`assert_nil @response.cookies["auth_token"]`
			`end`

			`def test_should_delete_token_on_logout`
			`login_as :other_user`
			`get :logout`
			`assert_equal @response.cookies["auth_token"], []`
			`end`

			`def test_should_login_with_cookie`
			`users(:other_user).remember_me`
			`@request.cookies["auth_token"] = auth_token_cookie_for(:other_user)`
			`get :login`
			`assert @controller.send(:logged_in?)`
			`end`

			`def test_should_fail_expired_cookie_login`
			`users(:other_user).remember_me`
			`users(:other_user).update_attribute :remember_token_expires_at, 5.minutes.ago.utc`
			`@request.cookies["auth_token"] = auth_token_cookie_for(:other_user)`
			`get :login`
			`assert !@controller.send(:logged_in?)`
			`end`

			`def test_should_fail_cookie_login`
			`users(:other_user).remember_me`
			`@request.cookies["auth_token"] = CGI::Cookie.new('name' => 'auth_token', 'value' => 'invalid_auth_token')`
			`get :login`
			`assert !@controller.send(:logged_in?)`
			`end`

			`def test_current_user_nil`
			`get :login`
			`assert_nil @controller.current_user`
			`end`

			`def test_current_user_correct`
			`post :login, {:user_login => 'jane', :user_password => 'sesame', :user_noexpiry => 'off'}`
			`assert_equal users(:other_user), @controller.current_user`
			`end`

			`def test_prefs_nil`
			`login_as nil`
			`get :login`
			`assert_nil @controller.prefs`
			`end`

			`def test_prefs_correct`
			`post :login, {:user_login => 'jane', :user_password => 'sesame', :user_noexpiry => 'off'}`
			`assert_equal users(:other_user).prefs, @controller.prefs`
			`end`

			`private`

			`def auth_token_cookie_for(user)`
			`CGI::Cookie.new('name' => 'auth_token', 'value' => users(user).remember_token)`
			`end`


			`end`