changedetection.io/changedetectionio/tests/test_access_control.py

from flask import url_for


def test_check_access_control(app, client):
    # Still doesnt work, but this is closer.

    with app.test_client() as c:
        # Check we dont have any password protection enabled yet.
        res = c.get(url_for("settings_page"))
        assert b"Remove password" not in res.data

        # Enable password check.
        res = c.post(
            url_for("settings_page"),
            data={"password": "foobar",
                  "minutes_between_check": 180,
                  'fetch_backend': "html_requests"},
            follow_redirects=True
        )

        assert b"Password protection enabled." in res.data
        assert b"LOG OUT" not in res.data

        # Check we hit the login
        res = c.get(url_for("index"), follow_redirects=True)

        assert b"Login" in res.data

        # Menu should not be available yet
        #        assert b"SETTINGS" not in res.data
        #        assert b"BACKUP" not in res.data
        #        assert b"IMPORT" not in res.data

        # defaultuser@changedetection.io is actually hardcoded for now, we only use a single password
        res = c.post(
            url_for("login"),
            data={"password": "foobar"},
            follow_redirects=True
        )

        assert b"LOG OUT" in res.data
        res = c.get(url_for("settings_page"))

        # Menu should be available now
        assert b"SETTINGS" in res.data
        assert b"BACKUP" in res.data
        assert b"IMPORT" in res.data
        assert b"LOG OUT" in res.data

        # Now remove the password so other tests function, @todo this should happen before each test automatically
        res = c.get(url_for("settings_page", removepassword="yes"),
              follow_redirects=True)
        assert b"Password protection removed." in res.data

        res = c.get(url_for("index"))
        assert b"LOG OUT" not in res.data


# There was a bug where saving the settings form would submit a blank password
def test_check_access_control_no_blank_password(app, client):
    # Still doesnt work, but this is closer.

    with app.test_client() as c:
        # Check we dont have any password protection enabled yet.
        res = c.get(url_for("settings_page"))
        assert b"Remove password" not in res.data

        # Enable password check.
        res = c.post(
            url_for("settings_page"),
            data={"password": "",
                  "minutes_between_check": 180,
                  'fetch_backend': "html_requests"},

        follow_redirects=True
        )

        assert b"Password protection enabled." not in res.data
        assert b"Login" not in res.data


# There was a bug where saving the settings form would submit a blank password
def test_check_access_no_remote_access_to_remove_password(app, client):
    # Still doesnt work, but this is closer.

    with app.test_client() as c:
        # Check we dont have any password protection enabled yet.
        res = c.get(url_for("settings_page"))
        assert b"Remove password" not in res.data

        # Enable password check.
        res = c.post(
            url_for("settings_page"),
            data={"password": "password", "minutes_between_check": 180,
                  'fetch_backend': "html_requests"},
            follow_redirects=True
        )

        assert b"Password protection enabled." in res.data
        assert b"Login" in res.data

        res = c.get(url_for("settings_page", removepassword="yes"),
              follow_redirects=True)
        assert b"Password protection removed." not in res.data

        res = c.get(url_for("index"),
              follow_redirects=True)
        assert b"watch-table-wrapper" not in res.data
Apprise notifications (#43) * issue #4 Adding settings screen for apprise URLS * Adding test notification mechanism * Move Worker module to own class file * Adding basic notification URL runner * Tests for notifications * Tweak readme with notification info * Move notification test to main test_backend.py * Fix spacing * Adding notifications screenshot * Cleanup more files from test * Offer send notification test on individual edits and main/default * Process global notifications * All branches test * Wrap worker notification process in try/catch, use global if nothing set * Fix syntax * Handle exception, increase wait time for liveserver to come up * Fixing test setup * remove debug * Split tests into their own totally isolated setups, if you know a better way to make live_server() work, MR :) * Tidying up lint/imports 4 years ago			`from flask import url_for`

Adding tests for password control handling 3 years ago
Apprise notifications (#43) * issue #4 Adding settings screen for apprise URLS * Adding test notification mechanism * Move Worker module to own class file * Adding basic notification URL runner * Tests for notifications * Tweak readme with notification info * Move notification test to main test_backend.py * Fix spacing * Adding notifications screenshot * Cleanup more files from test * Offer send notification test on individual edits and main/default * Process global notifications * All branches test * Wrap worker notification process in try/catch, use global if nothing set * Fix syntax * Handle exception, increase wait time for liveserver to come up * Fixing test setup * remove debug * Split tests into their own totally isolated setups, if you know a better way to make live_server() work, MR :) * Tidying up lint/imports 4 years ago			`def test_check_access_control(app, client):`
			`# Still doesnt work, but this is closer.`

Adding tests for password control handling 3 years ago			`with app.test_client() as c:`
Apprise notifications (#43) * issue #4 Adding settings screen for apprise URLS * Adding test notification mechanism * Move Worker module to own class file * Adding basic notification URL runner * Tests for notifications * Tweak readme with notification info * Move notification test to main test_backend.py * Fix spacing * Adding notifications screenshot * Cleanup more files from test * Offer send notification test on individual edits and main/default * Process global notifications * All branches test * Wrap worker notification process in try/catch, use global if nothing set * Fix syntax * Handle exception, increase wait time for liveserver to come up * Fixing test setup * remove debug * Split tests into their own totally isolated setups, if you know a better way to make live_server() work, MR :) * Tidying up lint/imports 4 years ago			`# Check we dont have any password protection enabled yet.`
			`res = c.get(url_for("settings_page"))`
			`assert b"Remove password" not in res.data`

			`# Enable password check.`
			`res = c.post(`
			`url_for("settings_page"),`
Chrome/Webdriver support for Javascript websites (#114) JS Support via fetching the page over WebDriver/Selenium network Refactor forms (Split into logical tabs) 3 years ago			`data={"password": "foobar",`
			`"minutes_between_check": 180,`
			`'fetch_backend': "html_requests"},`
Apprise notifications (#43) * issue #4 Adding settings screen for apprise URLS * Adding test notification mechanism * Move Worker module to own class file * Adding basic notification URL runner * Tests for notifications * Tweak readme with notification info * Move notification test to main test_backend.py * Fix spacing * Adding notifications screenshot * Cleanup more files from test * Offer send notification test on individual edits and main/default * Process global notifications * All branches test * Wrap worker notification process in try/catch, use global if nothing set * Fix syntax * Handle exception, increase wait time for liveserver to come up * Fixing test setup * remove debug * Split tests into their own totally isolated setups, if you know a better way to make live_server() work, MR :) * Tidying up lint/imports 4 years ago			`follow_redirects=True`
			`)`
Adding tests for password control handling 3 years ago
Apprise notifications (#43) * issue #4 Adding settings screen for apprise URLS * Adding test notification mechanism * Move Worker module to own class file * Adding basic notification URL runner * Tests for notifications * Tweak readme with notification info * Move notification test to main test_backend.py * Fix spacing * Adding notifications screenshot * Cleanup more files from test * Offer send notification test on individual edits and main/default * Process global notifications * All branches test * Wrap worker notification process in try/catch, use global if nothing set * Fix syntax * Handle exception, increase wait time for liveserver to come up * Fixing test setup * remove debug * Split tests into their own totally isolated setups, if you know a better way to make live_server() work, MR :) * Tidying up lint/imports 4 years ago			`assert b"Password protection enabled." in res.data`
			`assert b"LOG OUT" not in res.data`

Adding tests for password control handling 3 years ago			`# Check we hit the login`
			`res = c.get(url_for("index"), follow_redirects=True)`
Apprise notifications (#43) * issue #4 Adding settings screen for apprise URLS * Adding test notification mechanism * Move Worker module to own class file * Adding basic notification URL runner * Tests for notifications * Tweak readme with notification info * Move notification test to main test_backend.py * Fix spacing * Adding notifications screenshot * Cleanup more files from test * Offer send notification test on individual edits and main/default * Process global notifications * All branches test * Wrap worker notification process in try/catch, use global if nothing set * Fix syntax * Handle exception, increase wait time for liveserver to come up * Fixing test setup * remove debug * Split tests into their own totally isolated setups, if you know a better way to make live_server() work, MR :) * Tidying up lint/imports 4 years ago
			`assert b"Login" in res.data`

			`# Menu should not be available yet`
Adding tests for password control handling 3 years ago			`# assert b"SETTINGS" not in res.data`
			`# assert b"BACKUP" not in res.data`
			`# assert b"IMPORT" not in res.data`
Apprise notifications (#43) * issue #4 Adding settings screen for apprise URLS * Adding test notification mechanism * Move Worker module to own class file * Adding basic notification URL runner * Tests for notifications * Tweak readme with notification info * Move notification test to main test_backend.py * Fix spacing * Adding notifications screenshot * Cleanup more files from test * Offer send notification test on individual edits and main/default * Process global notifications * All branches test * Wrap worker notification process in try/catch, use global if nothing set * Fix syntax * Handle exception, increase wait time for liveserver to come up * Fixing test setup * remove debug * Split tests into their own totally isolated setups, if you know a better way to make live_server() work, MR :) * Tidying up lint/imports 4 years ago
Adding tests for password control handling 3 years ago			`# defaultuser@changedetection.io is actually hardcoded for now, we only use a single password`
Apprise notifications (#43) * issue #4 Adding settings screen for apprise URLS * Adding test notification mechanism * Move Worker module to own class file * Adding basic notification URL runner * Tests for notifications * Tweak readme with notification info * Move notification test to main test_backend.py * Fix spacing * Adding notifications screenshot * Cleanup more files from test * Offer send notification test on individual edits and main/default * Process global notifications * All branches test * Wrap worker notification process in try/catch, use global if nothing set * Fix syntax * Handle exception, increase wait time for liveserver to come up * Fixing test setup * remove debug * Split tests into their own totally isolated setups, if you know a better way to make live_server() work, MR :) * Tidying up lint/imports 4 years ago			`res = c.post(`
			`url_for("login"),`
Adding tests for password control handling 3 years ago			`data={"password": "foobar"},`
Apprise notifications (#43) * issue #4 Adding settings screen for apprise URLS * Adding test notification mechanism * Move Worker module to own class file * Adding basic notification URL runner * Tests for notifications * Tweak readme with notification info * Move notification test to main test_backend.py * Fix spacing * Adding notifications screenshot * Cleanup more files from test * Offer send notification test on individual edits and main/default * Process global notifications * All branches test * Wrap worker notification process in try/catch, use global if nothing set * Fix syntax * Handle exception, increase wait time for liveserver to come up * Fixing test setup * remove debug * Split tests into their own totally isolated setups, if you know a better way to make live_server() work, MR :) * Tidying up lint/imports 4 years ago			`follow_redirects=True`
			`)`

			`assert b"LOG OUT" in res.data`
			`res = c.get(url_for("settings_page"))`

			`# Menu should be available now`
			`assert b"SETTINGS" in res.data`
			`assert b"BACKUP" in res.data`
			`assert b"IMPORT" in res.data`
			`assert b"LOG OUT" in res.data`

			`# Now remove the password so other tests function, @todo this should happen before each test automatically`
#76 app path prefix when behind proxy_pass (#91) Support for running in a sub-path under proxy_pass (Running changedetection.io behind a reverse proxy sub directory) More here https://github.com/dgtlmoon/changedetection.io/wiki/Running-changedetection.io-behind-a-reverse-proxy-sub-directory 3 years ago			`res = c.get(url_for("settings_page", removepassword="yes"),`
Adding tests for password control handling 3 years ago			`follow_redirects=True)`
			`assert b"Password protection removed." in res.data`
Apprise notifications (#43) * issue #4 Adding settings screen for apprise URLS * Adding test notification mechanism * Move Worker module to own class file * Adding basic notification URL runner * Tests for notifications * Tweak readme with notification info * Move notification test to main test_backend.py * Fix spacing * Adding notifications screenshot * Cleanup more files from test * Offer send notification test on individual edits and main/default * Process global notifications * All branches test * Wrap worker notification process in try/catch, use global if nothing set * Fix syntax * Handle exception, increase wait time for liveserver to come up * Fixing test setup * remove debug * Split tests into their own totally isolated setups, if you know a better way to make live_server() work, MR :) * Tidying up lint/imports 4 years ago
Adding tests for password control handling 3 years ago			`res = c.get(url_for("index"))`
Apprise notifications (#43) * issue #4 Adding settings screen for apprise URLS * Adding test notification mechanism * Move Worker module to own class file * Adding basic notification URL runner * Tests for notifications * Tweak readme with notification info * Move notification test to main test_backend.py * Fix spacing * Adding notifications screenshot * Cleanup more files from test * Offer send notification test on individual edits and main/default * Process global notifications * All branches test * Wrap worker notification process in try/catch, use global if nothing set * Fix syntax * Handle exception, increase wait time for liveserver to come up * Fixing test setup * remove debug * Split tests into their own totally isolated setups, if you know a better way to make live_server() work, MR :) * Tidying up lint/imports 4 years ago			`assert b"LOG OUT" not in res.data`

Adding tests for password control handling 3 years ago
			`# There was a bug where saving the settings form would submit a blank password`
			`def test_check_access_control_no_blank_password(app, client):`
			`# Still doesnt work, but this is closer.`

			`with app.test_client() as c:`
			`# Check we dont have any password protection enabled yet.`
			`res = c.get(url_for("settings_page"))`
			`assert b"Remove password" not in res.data`

			`# Enable password check.`
			`res = c.post(`
			`url_for("settings_page"),`
Chrome/Webdriver support for Javascript websites (#114) JS Support via fetching the page over WebDriver/Selenium network Refactor forms (Split into logical tabs) 3 years ago			`data={"password": "",`
			`"minutes_between_check": 180,`
			`'fetch_backend': "html_requests"},`

			`follow_redirects=True`
Adding tests for password control handling 3 years ago			`)`

			`assert b"Password protection enabled." not in res.data`
			`assert b"Login" not in res.data`


			`# There was a bug where saving the settings form would submit a blank password`
			`def test_check_access_no_remote_access_to_remove_password(app, client):`
			`# Still doesnt work, but this is closer.`

			`with app.test_client() as c:`
			`# Check we dont have any password protection enabled yet.`
			`res = c.get(url_for("settings_page"))`
			`assert b"Remove password" not in res.data`

			`# Enable password check.`
			`res = c.post(`
			`url_for("settings_page"),`
Chrome/Webdriver support for Javascript websites (#114) JS Support via fetching the page over WebDriver/Selenium network Refactor forms (Split into logical tabs) 3 years ago			`data={"password": "password", "minutes_between_check": 180,`
			`'fetch_backend': "html_requests"},`
Adding tests for password control handling 3 years ago			`follow_redirects=True`
			`)`

			`assert b"Password protection enabled." in res.data`
			`assert b"Login" in res.data`

#76 app path prefix when behind proxy_pass (#91) Support for running in a sub-path under proxy_pass (Running changedetection.io behind a reverse proxy sub directory) More here https://github.com/dgtlmoon/changedetection.io/wiki/Running-changedetection.io-behind-a-reverse-proxy-sub-directory 3 years ago			`res = c.get(url_for("settings_page", removepassword="yes"),`
Adding tests for password control handling 3 years ago			`follow_redirects=True)`
			`assert b"Password protection removed." not in res.data`

			`res = c.get(url_for("index"),`
			`follow_redirects=True)`
			`assert b"watch-table-wrapper" not in res.data`