diff options
| author | Nick Zaccardi <nicholas.zaccardi@gmail.com> | 2017-05-27 16:27:13 -0400 |
|---|---|---|
| committer | Tim Graham <timograham@gmail.com> | 2017-05-29 09:22:22 -0400 |
| commit | 95993a89ce6ca5f5e26b1c22b65c57dcb8c005e9 (patch) | |
| tree | c3fec8384bf4571661bb5d1a84fceeddb4c5c076 /tests | |
| parent | 8c45b5b903e1ee4611577b98d43074b6f26089ef (diff) | |
Fixed #28248 -- Fixed password reset tokens being valid for 1 day longer than PASSWORD_RESET_TIMEOUT_DAYS.
Diffstat (limited to 'tests')
| -rw-r--r-- | tests/auth_tests/test_tokens.py | 7 |
1 files changed, 4 insertions, 3 deletions
diff --git a/tests/auth_tests/test_tokens.py b/tests/auth_tests/test_tokens.py index eb06e00425..0bc5b07599 100644 --- a/tests/auth_tests/test_tokens.py +++ b/tests/auth_tests/test_tokens.py @@ -43,11 +43,12 @@ class TokenGeneratorTest(TestCase): user = User.objects.create_user('tokentestuser', 'test2@example.com', 'testpw') p0 = PasswordResetTokenGenerator() tk1 = p0.make_token(user) - p1 = Mocked(date.today() + timedelta(settings.PASSWORD_RESET_TIMEOUT_DAYS)) + p1 = Mocked(date.today() + timedelta(days=settings.PASSWORD_RESET_TIMEOUT_DAYS, seconds=-1)) self.assertTrue(p1.check_token(user, tk1)) - - p2 = Mocked(date.today() + timedelta(settings.PASSWORD_RESET_TIMEOUT_DAYS + 1)) + p2 = Mocked(date.today() + timedelta(days=settings.PASSWORD_RESET_TIMEOUT_DAYS)) self.assertFalse(p2.check_token(user, tk1)) + p3 = Mocked(date.today() + timedelta(days=settings.PASSWORD_RESET_TIMEOUT_DAYS, seconds=1)) + self.assertFalse(p3.check_token(user, tk1)) def test_check_token_with_nonexistent_token_and_user(self): user = User.objects.create_user('tokentestuser', 'test2@example.com', 'testpw') |
