0001-auth_fc-do-not-update-redondant-email-returned-by-FC.patch

Nicolas Roche, 19 mars 2021 18:38

Voir les différences: en ligne côte à côte

Subject: [PATCH] auth_fc: do not update redondant email returned by FC
 (#45199)

 src/authentic2_auth_fc/app_settings.py | 12 ++++++--
 tests/auth_fc/test_auth_fc.py          | 38 ++++++++++++++++++++++++++
 2 files changed, 48 insertions(+), 2 deletions(-)

                 'last_name': {
                     'ref': 'family_name',
                     'verified': True,
                 },
                 'first_name': {
                     'ref': 'given_name',
                     'verified': True,
                 },
                 'email': 'email',
             })
                 'email': {
                     'ref': 'email',
                     'if-empty': True,
                     'tag': 'email',
                 },
                 'email_verified': {
                     'ref': 'email',
                     'translation': 'notempty',
                     'if-tag': 'email',
                 }})
         @property
         def next_field_name(self):
             return self._setting('NEXT_FIELD_NAME', 'fc_next')
         @property
         def client_id(self):
             return self._setting('CLIENT_ID', '')

     # but WITHOUT ANY WARRANTY; without even the implied warranty of
     # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
     # GNU Affero General Public License for more details.
+    #
     # You should have received a copy of the GNU Affero General Public License
     # along with this program.  If not, see <http://www.gnu.org/licenses/>.
     import datetime
     import json
     import mock
     import requests
     from django.contrib.auth import get_user_model
     from django.urls import reverse
     from django.utils.six.moves.urllib import parse as urlparse
     from django.utils.timezone import now
-...
         assert deleted_user.old_data.get('fc_accounts') == [
+            {
                 'sub': '1234',
             },
+            {
                 'sub': '4567',
+            }
+        ]
     def test_update_user_with_redondant_email(app, franceconnect, settings):
         settings.A2_email_IS_UNIQUE = True
         # account1 is linked to FC
         email1 = 'fred@example.com'
         user = User.objects.create(email=email1, first_name='Frédérique', last_name='Ÿuñe')
         user.set_password('toto')
         user.save()
         models.FcAccount.objects.create(user=user, sub='1234', token='xxx')
         # FC account linked to account1's provides account2 email
         email2 = 'john.doe@example.com'
         User.objects.create(email=email2, first_name='John', last_name='Doe')
         franceconnect.user_info['email'] = email2
         franceconnect.login_with_fc_fixed_params(app)
         assert User.objects.get(first_name='Ÿuñe').email == email1
     def test_create_user_with_redondant_email(settings, app, franceconnect):
         settings.A2_FC_CREATE = True
         settings.A2_EMAIL_IS_UNIQUE = True
         # A2 accounts not linked to FC
         mail = franceconnect.user_info['email']
         User.objects.create(email=mail, first_name='John', last_name='Doe')
         # connect with an unrelated FC account providing an email already used
         response = app.get('/login/?service=portail&next=/idp/')
         response = response.click(href='callback')
         assert User.objects.count() == 1
         response = franceconnect.handle_authorization(app, response.location, status=302)
         assert User.objects.count() == 2
         assert User.objects.get(first_name='Ÿuñe').email == mail  # Should be "!="
+    -

Projet

Général

Profil

Produits Entr'ouvert » Authentic 2 » Plugin FS FranceConnect

0001-auth_fc-do-not-update-redondant-email-returned-by-FC.patch