Fixed #31757 -- Adjusted system check for SECRET_KEY to warn about autogenerated default keys.

Thanks Nick Pope, René Fleschenberg, and Carlton Gibson for reviews.
author: Artem Kosenko <kosc@hotkosc.ru> 2020-07-13 20:40:38 +0300
committer: Mariusz Felisiak <felisiak.mariusz@gmail.com> 2020-11-11 12:45:34 +0100
commit: b7f500396e05cd1f0bb8901fce16e2d8393d2779 (patch)
tree: 1944befc1df7139131dd33c5ff57b96fc575df5c /tests/check_framework
parent: 721c95ba0b67eb46422dcf05a4274960e49c8894 (diff)
1 files changed, 7 insertions, 0 deletions
diff --git a/tests/check_framework/test_security.py b/tests/check_framework/test_security.py
index 270fece659..8225b99995 100644
--- a/tests/check_framework/test_security.py
+++ b/tests/check_framework/test_security.py
@@ -1,5 +1,6 @@
 from django.conf import settings
 from django.core.checks.security import base, csrf, sessions
+from django.core.management.utils import get_random_secret_key
 from django.test import SimpleTestCase
 from django.test.utils import override_settings
 
@@ -394,6 +395,12 @@ class CheckSecretKeyTest(SimpleTestCase):
     def test_none_secret_key(self):
         self.assertEqual(base.check_secret_key(None), [base.W009])
 
+    @override_settings(
+        SECRET_KEY=base.SECRET_KEY_INSECURE_PREFIX + get_random_secret_key()
+    )
+    def test_insecure_secret_key(self):
+        self.assertEqual(base.check_secret_key(None), [base.W009])
+
     @override_settings(SECRET_KEY=('abcdefghijklmnopqrstuvwx' * 2) + 'a')
     def test_low_length_secret_key(self):
         self.assertEqual(len(settings.SECRET_KEY), base.SECRET_KEY_MIN_LENGTH - 1)
author	Artem Kosenko <kosc@hotkosc.ru>	2020-07-13 20:40:38 +0300
committer	Mariusz Felisiak <felisiak.mariusz@gmail.com>	2020-11-11 12:45:34 +0100
commit	b7f500396e05cd1f0bb8901fce16e2d8393d2779 (patch)
tree	1944befc1df7139131dd33c5ff57b96fc575df5c /tests/check_framework
parent	721c95ba0b67eb46422dcf05a4274960e49c8894 (diff)