Nuno Santos
3681823fcf
Include WWW-Authenticate headers in @auth_required.
...
When using @http_auth_required, the WWW-Authenticate header is included,
but when using @auth_required('basic'), it is not. This change includes
that header in every @auth_required call that contains the 'basic'
method.
2015-01-30 11:27:53 +01:00
Matt Wright
2cffb6634d
Fix case sensitivity when searching for users by email address. Fixes #323 .
2014-10-13 13:34:11 -04:00
Matt Wright
824a52b883
Merge branch 'develop' of github.com:mattupstate/flask-security into develop
2014-10-13 13:25:08 -04:00
Matt Wright
fe7e4c4afc
Add additional steps to the test_change_hash_type and make change to verify_and_update_password to make the test pass. Fixes #328 .
2014-10-13 13:25:01 -04:00
Nick Greenfield
8b036f2a3e
Prevent open redirects when a malformed URL is passed to ?next=
...
Example: "/login?next=http:///google.com " (note 3rd slash)
2014-09-26 11:08:58 -07:00
Matt Wright
76ad77a233
Compare a string (not bytes) for PY3 support
2014-09-17 11:39:19 -04:00
Matt Wright
679cee7969
Add default/global context processor. Fixes #306
2014-09-17 11:27:44 -04:00
Matt Wright
3d7b97ac31
Forgot password form should not validate if user has not confirmed their email address yet. Fixes #298
2014-09-17 11:21:31 -04:00
Mathijs de Bruin
15c9ef1d07
Attempt to fix tests.
2014-07-03 15:48:55 +02:00
Matt Wright
76cf3eaf6a
Do not expose user info in /reset responses. Fixes #249
2014-06-10 12:24:19 -04:00
Matt Wright
0a48997fdd
Improve encoding of strings. Addresses #231 and #253
2014-06-10 11:47:35 -04:00
Matt Wright
96f1b3e0d1
Fix tests to pass python 3
2014-06-10 11:12:40 -04:00
Matt Wright
9cadf855a4
Adjust POST_LOGIN_VIEW and POST_LOGOUT_VIEW test
2014-06-10 10:42:28 -04:00
Matt Wright
d185407ac4
Add mock X-Forwarded-For header in trackable tests
2014-05-06 13:14:14 -04:00
Matt Wright
b08d7c2085
Clean up tests with some pytest marking
2014-05-06 11:58:39 -04:00
Matt Wright
546680a94b
Polish
2014-03-14 15:33:25 -04:00
Matt Wright
00e121c869
Remove duplicated line
2014-03-14 15:32:39 -04:00
Matt Wright
e5111dbb0c
Add moar tests!
2014-03-14 15:26:20 -04:00
Matt Wright
f3014d01df
Convert all tests to use pytest. Phew!
2014-03-13 18:28:25 -04:00
Matt Wright
bc60c021a3
Fix password_changed signal to behave like the other signals. Fixes #222
2014-03-13 09:35:54 -04:00
Ahti Kitsik
1395df334e
Changing verify_password so it works like verify_and_update_password. Currently verify_password was not only creating a hmac hash but also encrypting (encrypt_password is first hmac-signing and then encrypting).
...
Removed unneccessary and wrong tests.
2014-02-20 16:46:49 +02:00
Matt Wright
668b4ee651
Merge branch 'develop' of github.com:mattupstate/flask-security into develop
2014-01-24 10:32:09 -05:00
Matt Wright
f854c24094
Merge pull request #205 from HereLabsInc/catch_decoding_errors
...
catch possible TypeError and ValueError from serializer
2014-01-24 07:31:51 -08:00
Matt Wright
2e57734d1f
Add @anonymous_user_required to register endpoint. Fixes #212
2014-01-24 10:23:42 -05:00
Jameson
b4d1a7c921
update to make test run red
2014-01-23 23:33:11 +00:00
Jameson
f47fce9365
add test to show TypeError can occur
2014-01-23 23:26:18 +00:00
Matt Wright
35fd08772b
Add configured password hash test back and fix bug with checking passwords
2014-01-14 10:34:57 -05:00
Matt Wright
850b0e714b
Additional test fixes
2014-01-07 16:31:26 -05:00
Matt Wright
8d2815798f
WIP
2013-12-24 12:38:05 -05:00
Matt Wright
f7b645005e
work in progress
2013-12-20 13:39:41 -05:00
Matt Wright
afaf6c7d62
Polish
2013-12-20 13:38:44 -05:00
Matt Wright
f1447b2adc
Work in progress
2013-12-19 16:12:29 -05:00
Matt Wright
d88299fc9b
Add test to check SECURITY_LOGIN_WITHOUT_CONFIRMATION feature
2013-12-19 14:40:43 -05:00
Matt Wright
1ae6bc3cf1
Add the ability to specify additional fields on the user model that can be used for logging in.
2013-10-16 14:00:36 -04:00
Matt Wright
9999325ffb
Show an error if a user tries to change their password and its the same as before. Fixes #160
2013-10-16 11:15:17 -04:00
Joe Hand
55ffe2563e
Update test names and add docstring.
2013-10-02 08:24:27 -06:00
Joe Hand
20c16107e8
Add test for 'SECURITY_SEND_PASSWORD_CHANGE_EMAIL' configuration
2013-09-22 09:55:07 -06:00
Matt Wright
6b3d65d6d6
Fix flask-login test setting
2013-09-03 12:20:56 -04:00
Matt Wright
1e958115e1
Fix tests
2013-09-03 11:55:13 -04:00
Matt Wright
7c906de427
When logging in user lookups on email should be case insensitive
2013-08-01 16:22:28 -04:00
Matt Wright
156ccaecc1
Attempting a fix to get tests to pass with travis. Very odd...
2013-07-24 11:35:04 -04:00
Matt Wright
312a527498
PEP8 and general clean up on tests
2013-07-22 12:42:20 -04:00
Matt Wright
8eeb832d2e
Conditionally logout the current user when confirming an email address to prevent unnecessary code/signals to be fired. Fixes #133
2013-07-11 14:50:21 -04:00
Matt Wright
78903fa2e5
Make password length message configurable.
2013-07-02 10:36:22 -04:00
Matt Wright
d19bb98abd
Version 1.6.4 changes. Refer to CHANGES for updates. Fixes #123 #121 #120 $119
2013-06-18 14:56:12 -04:00
Matt Wright
bf260d4b7e
Add optional next parameter to registration endpoint. Fixes #117 .
2013-05-28 11:01:42 -04:00
Matt Wright
38874433c7
Add tests for Peewee support
2013-04-04 18:09:55 -04:00
Rodrigue Cloutier
3575a2df18
Fixed http_auth when authorization is not provided in header
2013-04-03 21:29:04 -04:00
Paweł Krześniak
f1cca43d9c
sending signals fixed
2013-04-03 12:36:53 +02:00
Matt Wright
44a320ee74
Fix a failling test
2013-03-13 12:28:26 -04:00