bench-forgejo/routers/web/user/setting/account_test.go

// Copyright 2018 The Gitea Authors. All rights reserved.
// Use of this source code is governed by a MIT-style
// license that can be found in the LICENSE file.

package setting

import (
	"net/http"
	"testing"

	"code.gitea.io/gitea/models"
	"code.gitea.io/gitea/modules/setting"
	"code.gitea.io/gitea/modules/test"
	"code.gitea.io/gitea/modules/web"
	"code.gitea.io/gitea/services/forms"

	"github.com/stretchr/testify/assert"
)

func TestChangePassword(t *testing.T) {
	oldPassword := "password"
	setting.MinPasswordLength = 6
	var pcALL = []string{"lower", "upper", "digit", "spec"}
	var pcLUN = []string{"lower", "upper", "digit"}
	var pcLU = []string{"lower", "upper"}

	for _, req := range []struct {
		OldPassword        string
		NewPassword        string
		Retype             string
		Message            string
		PasswordComplexity []string
	}{
		{
			OldPassword:        oldPassword,
			NewPassword:        "Qwerty123456-",
			Retype:             "Qwerty123456-",
			Message:            "",
			PasswordComplexity: pcALL,
		},
		{
			OldPassword:        oldPassword,
			NewPassword:        "12345",
			Retype:             "12345",
			Message:            "auth.password_too_short",
			PasswordComplexity: pcALL,
		},
		{
			OldPassword:        "12334",
			NewPassword:        "123456",
			Retype:             "123456",
			Message:            "settings.password_incorrect",
			PasswordComplexity: pcALL,
		},
		{
			OldPassword:        oldPassword,
			NewPassword:        "123456",
			Retype:             "12345",
			Message:            "form.password_not_match",
			PasswordComplexity: pcALL,
		},
		{
			OldPassword:        oldPassword,
			NewPassword:        "Qwerty",
			Retype:             "Qwerty",
			Message:            "form.password_complexity",
			PasswordComplexity: pcALL,
		},
		{
			OldPassword:        oldPassword,
			NewPassword:        "Qwerty",
			Retype:             "Qwerty",
			Message:            "form.password_complexity",
			PasswordComplexity: pcLUN,
		},
		{
			OldPassword:        oldPassword,
			NewPassword:        "QWERTY",
			Retype:             "QWERTY",
			Message:            "form.password_complexity",
			PasswordComplexity: pcLU,
		},
	} {
		models.PrepareTestEnv(t)
		ctx := test.MockContext(t, "user/settings/security")
		test.LoadUser(t, ctx, 2)
		test.LoadRepo(t, ctx, 1)

		web.SetForm(ctx, &forms.ChangePasswordForm{
			OldPassword: req.OldPassword,
			Password:    req.NewPassword,
			Retype:      req.Retype,
		})
		AccountPost(ctx)

		assert.Contains(t, ctx.Flash.ErrorMsg, req.Message)
		assert.EqualValues(t, http.StatusFound, ctx.Resp.Status())
	}
}
Splitted the user settings code into several files to be more maintainable (#3968) * refactor setting router code splitted up one huge router settings file into the smaller files representing the actual page structure * move code to subfolder * rename functions * renamed files * add copyright information 2018-05-17 09:35:00 +05:30			`// Copyright 2018 The Gitea Authors. All rights reserved.`
Fix missing password length check when change password (#3039) * fix missing password length check when change password * add tests for change password 2017-12-02 22:41:22 +05:30			`// Use of this source code is governed by a MIT-style`
			`// license that can be found in the LICENSE file.`

Splitted the user settings code into several files to be more maintainable (#3968) * refactor setting router code splitted up one huge router settings file into the smaller files representing the actual page structure * move code to subfolder * rename functions * renamed files * add copyright information 2018-05-17 09:35:00 +05:30			`package setting`
Fix missing password length check when change password (#3039) * fix missing password length check when change password * add tests for change password 2017-12-02 22:41:22 +05:30
			`import (`
			`"net/http"`
			`"testing"`

			`"code.gitea.io/gitea/models"`
			`"code.gitea.io/gitea/modules/setting"`
			`"code.gitea.io/gitea/modules/test"`
Move macaron to chi (#14293) Use [chi](https://github.com/go-chi/chi) instead of the forked [macaron](https://gitea.com/macaron/macaron). Since macaron and chi have conflicts with session share, this big PR becomes a have-to thing. According my previous idea, we can replace macaron step by step but I'm wrong. :( Below is a list of big changes on this PR. - [x] Define `context.ResponseWriter` interface with an implementation `context.Response`. - [x] Use chi instead of macaron, and also a customize `Route` to wrap chi so that the router usage is similar as before. - [x] Create different routers for `web`, `api`, `internal` and `install` so that the codes will be more clear and no magic . - [x] Use https://github.com/unrolled/render instead of macaron's internal render - [x] Use https://github.com/NYTimes/gziphandler instead of https://gitea.com/macaron/gzip - [x] Use https://gitea.com/go-chi/session which is a modified version of https://gitea.com/macaron/session and removed `nodb` support since it will not be maintained. BREAK - [x] Use https://gitea.com/go-chi/captcha which is a modified version of https://gitea.com/macaron/captcha - [x] Use https://gitea.com/go-chi/cache which is a modified version of https://gitea.com/macaron/cache - [x] Use https://gitea.com/go-chi/binding which is a modified version of https://gitea.com/macaron/binding - [x] Use https://github.com/go-chi/cors instead of https://gitea.com/macaron/cors - [x] Dropped https://gitea.com/macaron/i18n and make a new one in `code.gitea.io/gitea/modules/translation` - [x] Move validation form structs from `code.gitea.io/gitea/modules/auth` to `code.gitea.io/gitea/modules/forms` to avoid dependency cycle. - [x] Removed macaron log service because it's not need any more. BREAK - [x] All form structs have to be get by `web.GetForm(ctx)` in the route function but not as a function parameter on routes definition. - [x] Move Git HTTP protocol implementation to use routers directly. - [x] Fix the problem that chi routes don't support trailing slash but macaron did. - [x] `/api/v1/swagger` now will be redirect to `/api/swagger` but not render directly so that `APIContext` will not create a html render. Notices: - Chi router don't support request with trailing slash - Integration test `TestUserHeatmap` maybe mysql version related. It's failed on my macOS(mysql 5.7.29 installed via brew) but succeed on CI. Co-authored-by: 6543 <6543@obermui.de> 2021-01-26 21:06:53 +05:30			`"code.gitea.io/gitea/modules/web"`
Move modules/forms to services/forms (#15305) Forms are dependent on models and therefore should be in services. This PR also removes the old auth. aliasing Signed-off-by: Andrew Thornton <art27@cantab.net> Co-authored-by: 6543 <6543@obermui.de> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> Co-authored-by: techknowlogick <techknowlogick@gitea.io> 2021-04-07 01:14:05 +05:30			`"code.gitea.io/gitea/services/forms"`
Fix missing password length check when change password (#3039) * fix missing password length check when change password * add tests for change password 2017-12-02 22:41:22 +05:30
			`"github.com/stretchr/testify/assert"`
			`)`

			`func TestChangePassword(t *testing.T) {`
			`oldPassword := "password"`
			`setting.MinPasswordLength = 6`
Fix password complexity regex for special characters (on master) (#8525) * Fix extra space * Fix regular expression * Fix error template name * Simplify check code, fix default values, add test * Fix router tests * Fix fmt * Fix setting and lint * Move cleaning up code to test, improve comments * Tidy up variable declaration 2019-10-16 08:39:58 +05:30			`var pcALL = []string{"lower", "upper", "digit", "spec"}`
			`var pcLUN = []string{"lower", "upper", "digit"}`
			`var pcLU = []string{"lower", "upper"}`
Fix missing password length check when change password (#3039) * fix missing password length check when change password * add tests for change password 2017-12-02 22:41:22 +05:30
			`for _, req := range []struct {`
Password Complexity Checks (#6230) Add password complexity checks. The default settings require a lowercase, uppercase, number and a special character within passwords. Co-Authored-By: T-M-A <maxim.tkachenko@gmail.com> Co-Authored-By: Lanre Adelowo <adelowomailbox@gmail.com> Co-Authored-By: guillep2k <18600385+guillep2k@users.noreply.github.com> Co-Authored-By: Lauris BH <lauris@nix.lv> 2019-10-14 20:54:26 +05:30			`OldPassword string`
			`NewPassword string`
			`Retype string`
			`Message string`
Fix password complexity regex for special characters (on master) (#8525) * Fix extra space * Fix regular expression * Fix error template name * Simplify check code, fix default values, add test * Fix router tests * Fix fmt * Fix setting and lint * Move cleaning up code to test, improve comments * Tidy up variable declaration 2019-10-16 08:39:58 +05:30			`PasswordComplexity []string`
Fix missing password length check when change password (#3039) * fix missing password length check when change password * add tests for change password 2017-12-02 22:41:22 +05:30			`}{`
			`{`
Password Complexity Checks (#6230) Add password complexity checks. The default settings require a lowercase, uppercase, number and a special character within passwords. Co-Authored-By: T-M-A <maxim.tkachenko@gmail.com> Co-Authored-By: Lanre Adelowo <adelowomailbox@gmail.com> Co-Authored-By: guillep2k <18600385+guillep2k@users.noreply.github.com> Co-Authored-By: Lauris BH <lauris@nix.lv> 2019-10-14 20:54:26 +05:30			`OldPassword: oldPassword,`
			`NewPassword: "Qwerty123456-",`
			`Retype: "Qwerty123456-",`
			`Message: "",`
Fix password complexity regex for special characters (on master) (#8525) * Fix extra space * Fix regular expression * Fix error template name * Simplify check code, fix default values, add test * Fix router tests * Fix fmt * Fix setting and lint * Move cleaning up code to test, improve comments * Tidy up variable declaration 2019-10-16 08:39:58 +05:30			`PasswordComplexity: pcALL,`
Password Complexity Checks (#6230) Add password complexity checks. The default settings require a lowercase, uppercase, number and a special character within passwords. Co-Authored-By: T-M-A <maxim.tkachenko@gmail.com> Co-Authored-By: Lanre Adelowo <adelowomailbox@gmail.com> Co-Authored-By: guillep2k <18600385+guillep2k@users.noreply.github.com> Co-Authored-By: Lauris BH <lauris@nix.lv> 2019-10-14 20:54:26 +05:30			`},`
			`{`
			`OldPassword: oldPassword,`
			`NewPassword: "12345",`
			`Retype: "12345",`
			`Message: "auth.password_too_short",`
Fix password complexity regex for special characters (on master) (#8525) * Fix extra space * Fix regular expression * Fix error template name * Simplify check code, fix default values, add test * Fix router tests * Fix fmt * Fix setting and lint * Move cleaning up code to test, improve comments * Tidy up variable declaration 2019-10-16 08:39:58 +05:30			`PasswordComplexity: pcALL,`
Password Complexity Checks (#6230) Add password complexity checks. The default settings require a lowercase, uppercase, number and a special character within passwords. Co-Authored-By: T-M-A <maxim.tkachenko@gmail.com> Co-Authored-By: Lanre Adelowo <adelowomailbox@gmail.com> Co-Authored-By: guillep2k <18600385+guillep2k@users.noreply.github.com> Co-Authored-By: Lauris BH <lauris@nix.lv> 2019-10-14 20:54:26 +05:30			`},`
			`{`
			`OldPassword: "12334",`
			`NewPassword: "123456",`
			`Retype: "123456",`
			`Message: "settings.password_incorrect",`
Fix password complexity regex for special characters (on master) (#8525) * Fix extra space * Fix regular expression * Fix error template name * Simplify check code, fix default values, add test * Fix router tests * Fix fmt * Fix setting and lint * Move cleaning up code to test, improve comments * Tidy up variable declaration 2019-10-16 08:39:58 +05:30			`PasswordComplexity: pcALL,`
Password Complexity Checks (#6230) Add password complexity checks. The default settings require a lowercase, uppercase, number and a special character within passwords. Co-Authored-By: T-M-A <maxim.tkachenko@gmail.com> Co-Authored-By: Lanre Adelowo <adelowomailbox@gmail.com> Co-Authored-By: guillep2k <18600385+guillep2k@users.noreply.github.com> Co-Authored-By: Lauris BH <lauris@nix.lv> 2019-10-14 20:54:26 +05:30			`},`
			`{`
			`OldPassword: oldPassword,`
			`NewPassword: "123456",`
			`Retype: "12345",`
			`Message: "form.password_not_match",`
Fix password complexity regex for special characters (on master) (#8525) * Fix extra space * Fix regular expression * Fix error template name * Simplify check code, fix default values, add test * Fix router tests * Fix fmt * Fix setting and lint * Move cleaning up code to test, improve comments * Tidy up variable declaration 2019-10-16 08:39:58 +05:30			`PasswordComplexity: pcALL,`
Fix missing password length check when change password (#3039) * fix missing password length check when change password * add tests for change password 2017-12-02 22:41:22 +05:30			`},`
			`{`
Password Complexity Checks (#6230) Add password complexity checks. The default settings require a lowercase, uppercase, number and a special character within passwords. Co-Authored-By: T-M-A <maxim.tkachenko@gmail.com> Co-Authored-By: Lanre Adelowo <adelowomailbox@gmail.com> Co-Authored-By: guillep2k <18600385+guillep2k@users.noreply.github.com> Co-Authored-By: Lauris BH <lauris@nix.lv> 2019-10-14 20:54:26 +05:30			`OldPassword: oldPassword,`
			`NewPassword: "Qwerty",`
			`Retype: "Qwerty",`
Fix password complexity regex for special characters (on master) (#8525) * Fix extra space * Fix regular expression * Fix error template name * Simplify check code, fix default values, add test * Fix router tests * Fix fmt * Fix setting and lint * Move cleaning up code to test, improve comments * Tidy up variable declaration 2019-10-16 08:39:58 +05:30			`Message: "form.password_complexity",`
			`PasswordComplexity: pcALL,`
Fix missing password length check when change password (#3039) * fix missing password length check when change password * add tests for change password 2017-12-02 22:41:22 +05:30			`},`
			`{`
Password Complexity Checks (#6230) Add password complexity checks. The default settings require a lowercase, uppercase, number and a special character within passwords. Co-Authored-By: T-M-A <maxim.tkachenko@gmail.com> Co-Authored-By: Lanre Adelowo <adelowomailbox@gmail.com> Co-Authored-By: guillep2k <18600385+guillep2k@users.noreply.github.com> Co-Authored-By: Lauris BH <lauris@nix.lv> 2019-10-14 20:54:26 +05:30			`OldPassword: oldPassword,`
			`NewPassword: "Qwerty",`
			`Retype: "Qwerty",`
Fix password complexity regex for special characters (on master) (#8525) * Fix extra space * Fix regular expression * Fix error template name * Simplify check code, fix default values, add test * Fix router tests * Fix fmt * Fix setting and lint * Move cleaning up code to test, improve comments * Tidy up variable declaration 2019-10-16 08:39:58 +05:30			`Message: "form.password_complexity",`
Password Complexity Checks (#6230) Add password complexity checks. The default settings require a lowercase, uppercase, number and a special character within passwords. Co-Authored-By: T-M-A <maxim.tkachenko@gmail.com> Co-Authored-By: Lanre Adelowo <adelowomailbox@gmail.com> Co-Authored-By: guillep2k <18600385+guillep2k@users.noreply.github.com> Co-Authored-By: Lauris BH <lauris@nix.lv> 2019-10-14 20:54:26 +05:30			`PasswordComplexity: pcLUN,`
Fix missing password length check when change password (#3039) * fix missing password length check when change password * add tests for change password 2017-12-02 22:41:22 +05:30			`},`
			`{`
Password Complexity Checks (#6230) Add password complexity checks. The default settings require a lowercase, uppercase, number and a special character within passwords. Co-Authored-By: T-M-A <maxim.tkachenko@gmail.com> Co-Authored-By: Lanre Adelowo <adelowomailbox@gmail.com> Co-Authored-By: guillep2k <18600385+guillep2k@users.noreply.github.com> Co-Authored-By: Lauris BH <lauris@nix.lv> 2019-10-14 20:54:26 +05:30			`OldPassword: oldPassword,`
			`NewPassword: "QWERTY",`
			`Retype: "QWERTY",`
Fix password complexity regex for special characters (on master) (#8525) * Fix extra space * Fix regular expression * Fix error template name * Simplify check code, fix default values, add test * Fix router tests * Fix fmt * Fix setting and lint * Move cleaning up code to test, improve comments * Tidy up variable declaration 2019-10-16 08:39:58 +05:30			`Message: "form.password_complexity",`
Password Complexity Checks (#6230) Add password complexity checks. The default settings require a lowercase, uppercase, number and a special character within passwords. Co-Authored-By: T-M-A <maxim.tkachenko@gmail.com> Co-Authored-By: Lanre Adelowo <adelowomailbox@gmail.com> Co-Authored-By: guillep2k <18600385+guillep2k@users.noreply.github.com> Co-Authored-By: Lauris BH <lauris@nix.lv> 2019-10-14 20:54:26 +05:30			`PasswordComplexity: pcLU,`
Fix missing password length check when change password (#3039) * fix missing password length check when change password * add tests for change password 2017-12-02 22:41:22 +05:30			`},`
			`} {`
			`models.PrepareTestEnv(t)`
			`ctx := test.MockContext(t, "user/settings/security")`
			`test.LoadUser(t, ctx, 2)`
			`test.LoadRepo(t, ctx, 1)`

Move modules/forms to services/forms (#15305) Forms are dependent on models and therefore should be in services. This PR also removes the old auth. aliasing Signed-off-by: Andrew Thornton <art27@cantab.net> Co-authored-by: 6543 <6543@obermui.de> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> Co-authored-by: techknowlogick <techknowlogick@gitea.io> 2021-04-07 01:14:05 +05:30			`web.SetForm(ctx, &forms.ChangePasswordForm{`
Fix missing password length check when change password (#3039) * fix missing password length check when change password * add tests for change password 2017-12-02 22:41:22 +05:30			`OldPassword: req.OldPassword,`
			`Password: req.NewPassword,`
			`Retype: req.Retype,`
			`})`
Move macaron to chi (#14293) Use [chi](https://github.com/go-chi/chi) instead of the forked [macaron](https://gitea.com/macaron/macaron). Since macaron and chi have conflicts with session share, this big PR becomes a have-to thing. According my previous idea, we can replace macaron step by step but I'm wrong. :( Below is a list of big changes on this PR. - [x] Define `context.ResponseWriter` interface with an implementation `context.Response`. - [x] Use chi instead of macaron, and also a customize `Route` to wrap chi so that the router usage is similar as before. - [x] Create different routers for `web`, `api`, `internal` and `install` so that the codes will be more clear and no magic . - [x] Use https://github.com/unrolled/render instead of macaron's internal render - [x] Use https://github.com/NYTimes/gziphandler instead of https://gitea.com/macaron/gzip - [x] Use https://gitea.com/go-chi/session which is a modified version of https://gitea.com/macaron/session and removed `nodb` support since it will not be maintained. BREAK - [x] Use https://gitea.com/go-chi/captcha which is a modified version of https://gitea.com/macaron/captcha - [x] Use https://gitea.com/go-chi/cache which is a modified version of https://gitea.com/macaron/cache - [x] Use https://gitea.com/go-chi/binding which is a modified version of https://gitea.com/macaron/binding - [x] Use https://github.com/go-chi/cors instead of https://gitea.com/macaron/cors - [x] Dropped https://gitea.com/macaron/i18n and make a new one in `code.gitea.io/gitea/modules/translation` - [x] Move validation form structs from `code.gitea.io/gitea/modules/auth` to `code.gitea.io/gitea/modules/forms` to avoid dependency cycle. - [x] Removed macaron log service because it's not need any more. BREAK - [x] All form structs have to be get by `web.GetForm(ctx)` in the route function but not as a function parameter on routes definition. - [x] Move Git HTTP protocol implementation to use routers directly. - [x] Fix the problem that chi routes don't support trailing slash but macaron did. - [x] `/api/v1/swagger` now will be redirect to `/api/swagger` but not render directly so that `APIContext` will not create a html render. Notices: - Chi router don't support request with trailing slash - Integration test `TestUserHeatmap` maybe mysql version related. It's failed on my macOS(mysql 5.7.29 installed via brew) but succeed on CI. Co-authored-by: 6543 <6543@obermui.de> 2021-01-26 21:06:53 +05:30			`AccountPost(ctx)`
Fix missing password length check when change password (#3039) * fix missing password length check when change password * add tests for change password 2017-12-02 22:41:22 +05:30
Add password requirement info on error (#9074) * Add password requirement info on error * Move BuildComplexityError to the password pkg * Unexport complexity type * Fix extra line * Update modules/password/password.go Co-Authored-By: Lauris BH <lauris@nix.lv> 2019-11-20 04:14:58 +05:30			`assert.Contains(t, ctx.Flash.ErrorMsg, req.Message)`
Fix missing password length check when change password (#3039) * fix missing password length check when change password * add tests for change password 2017-12-02 22:41:22 +05:30			`assert.EqualValues(t, http.StatusFound, ctx.Resp.Status())`
			`}`
			`}`