Skip to content

Commit

Permalink
test (authentication): verification #7
Browse files Browse the repository at this point in the history
  • Loading branch information
@Xiao75896453
Xiao75896453 committed Aug 5, 2024
1 parent b245186 commit 8fcba3d
Show file tree
Hide file tree
Showing 4 changed files with 200 additions and 3 deletions.
4 changes: 2 additions & 2 deletions .pre-commit-config.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -20,8 +20,8 @@ repos:
hooks:
- id: ruff
name: ruff
entry: ruff
args: ['check .']
entry: ruff check
args: ['.']
language: system
types: [python]
- repo: local
Expand Down
41 changes: 40 additions & 1 deletion poetry.lock
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

157 changes: 157 additions & 0 deletions projects/account_password_management/tests/test_authentication.py
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,157 @@
from datetime import datetime, timedelta

import pytest
from fastapi import status
from fastapi.testclient import TestClient
from freezegun import freeze_time
from src.api.authentication.controller import (
BLOCK_VERIFICATION_TIME, MAX_FAILED_VERIFICATION_ATTEMPTS)
from src.main import ACCOUNT_API_ROUTE, AUTHENTICATION_API_ROUTE

from lib.custom_response import failed_response, success_response


class TestVerification:
CREATE_ACCOUNT_API_ROUTE = ACCOUNT_API_ROUTE
VERIFICATION_API_ROUTE = f"{AUTHENTICATION_API_ROUTE}/verification"

@pytest.mark.asyncio
async def test_verification(self, test_client: TestClient):
test_data = {
"username": "123",
"password": "Test1234",
}
test_client.post(self.CREATE_ACCOUNT_API_ROUTE, json=test_data)

response = test_client.post(self.VERIFICATION_API_ROUTE, json=test_data)

expected_response = success_response()

assert response.status_code == status.HTTP_200_OK
assert response.json() == expected_response

@pytest.mark.asyncio
async def test_verification_failed_because_username_not_exists(
self, test_client: TestClient
):
test_data = {
"username": "123",
"password": "Test1234",
}
test_client.post(self.CREATE_ACCOUNT_API_ROUTE, json=test_data)

failed_data = {
"username": "1234",
"password": "Test1234",
}
response = test_client.post(self.VERIFICATION_API_ROUTE, json=failed_data)

expected_response = failed_response(reason="Username not exists")

assert response.status_code == status.HTTP_404_NOT_FOUND
assert response.json() == expected_response

@pytest.mark.asyncio
async def test_verification_failed_because_password_not_correct(
self, test_client: TestClient
):
test_data = {
"username": "123",
"password": "Test1234",
}
test_client.post(self.CREATE_ACCOUNT_API_ROUTE, json=test_data)

failed_data = {
"username": "123",
"password": "not_correct",
}
response = test_client.post(self.VERIFICATION_API_ROUTE, json=failed_data)

expected_response = failed_response(reason="Password is not correct")

assert response.status_code == status.HTTP_401_UNAUTHORIZED
assert response.json() == expected_response

@pytest.mark.asyncio
async def test_verification_failed_because_too_many_attempts(
self, test_client: TestClient
):
test_data = {
"username": "123",
"password": "Test1234",
}
test_client.post(self.CREATE_ACCOUNT_API_ROUTE, json=test_data)

failed_data = {
"username": "123",
"password": "not_correct",
}
for _ in range(MAX_FAILED_VERIFICATION_ATTEMPTS + 1):
response = test_client.post(self.VERIFICATION_API_ROUTE, json=failed_data)

expected_response = failed_response(
reason="Too many failed verification attempts, blocking one minutes"
)

assert response.status_code == status.HTTP_401_UNAUTHORIZED
assert response.json() == expected_response

@pytest.mark.asyncio
async def test_verification_failed_because_password_not_correct_after_block_time(
self, test_client: TestClient
):
test_data = {
"username": "123",
"password": "Test1234",
}
test_client.post(self.CREATE_ACCOUNT_API_ROUTE, json=test_data)

failed_data = {
"username": "123",
"password": "not_correct",
}
initial_datetime = datetime(
year=2024, month=1, day=1, hour=0, minute=0, second=0
)
with freeze_time(initial_datetime) as frozen_datetime:
for _ in range(MAX_FAILED_VERIFICATION_ATTEMPTS + 1):
test_client.post(self.VERIFICATION_API_ROUTE, json=failed_data)

frozen_datetime.move_to(
initial_datetime + BLOCK_VERIFICATION_TIME + timedelta(seconds=1)
)
response = test_client.post(self.VERIFICATION_API_ROUTE, json=failed_data)

expected_response = failed_response(reason="Password is not correct")

assert response.status_code == status.HTTP_401_UNAUTHORIZED
assert response.json() == expected_response

@pytest.mark.asyncio
async def test_verification_after_block_time(self, test_client: TestClient):
test_data = {
"username": "123",
"password": "Test1234",
}
test_client.post(self.CREATE_ACCOUNT_API_ROUTE, json=test_data)

failed_data = {
"username": "123",
"password": "not_correct",
}
initial_datetime = datetime(
year=2024, month=1, day=1, hour=0, minute=0, second=0
)
with freeze_time(initial_datetime) as frozen_datetime:
for _ in range(MAX_FAILED_VERIFICATION_ATTEMPTS + 1):
test_client.post(self.VERIFICATION_API_ROUTE, json=failed_data)

frozen_datetime.move_to(
initial_datetime + BLOCK_VERIFICATION_TIME + timedelta(seconds=1)
)
response = test_client.post(self.VERIFICATION_API_ROUTE, json=test_data)

expected_response = success_response()

assert response.status_code == status.HTTP_200_OK
assert response.json() == expected_response
1 change: 1 addition & 0 deletions pyproject.toml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,6 +23,7 @@ pytest = "^8.3.2"
pre-commit = "^3.8.0"
httpx = "^0.27.0"
pytest-asyncio = "^0.23.8"
freezegun = "^1.5.1"

[build-system]
requires = ["poetry-core"]
Expand Down

0 comments on commit 8fcba3d

Please sign in to comment.