From f629cec99312c4fc97f55e2165365a96dc58984b Mon Sep 17 00:00:00 2001 From: Pierre-Yves Chibon Date: Mar 16 2015 13:20:49 +0000 Subject: Adjust the unit-tests for the change in behavior in the markdown endpoint --- diff --git a/tests/test_progit_flask_ui_app.py b/tests/test_progit_flask_ui_app.py index ba8235d..a5bca7d 100644 --- a/tests/test_progit_flask_ui_app.py +++ b/tests/test_progit_flask_ui_app.py @@ -238,25 +238,33 @@ class ProgitFlaskApptests(tests.Modeltests): 'content': 'test\n----\n\n * 1\n * item 2' } - output = self.app.post( - '/markdown/', data=data) - self.assertEqual(output.status_code, 302) - self.assertTrue( - '

You should be redirected automatically to target URL: ' - '' - '/login/?next=http%3A%2F%2Flocalhost%2Fmarkdown%2F. ' - 'If not click the link.' in output.data) + # CSRF missing + output = self.app.post('/markdown/', data=data) + self.assertEqual(output.status_code, 400) user = tests.FakeUser() + user.username = 'foo' with tests.user_set(progit.APP, user): - output = self.app.post('/markdown/', data=data) + output = self.app.get('/settings/') self.assertEqual(output.status_code, 200) - exp = """

test

+ self.assertTrue("

foo's settings

" in output.data) + self.assertTrue( + '' + in output.data) + + csrf_token = output.data.split( + 'name="csrf_token" type="hidden" value="')[1].split('">')[0] + + # With CSRF + data['csrf_token'] = csrf_token + output = self.app.post('/markdown/', data=data) + self.assertEqual(output.status_code, 200) + exp = """

test

""" - self.assertEqual(output.data, exp) + self.assertEqual(output.data, exp) if __name__ == '__main__':