From 3ea1ede5d72fa6d51accc32d36665f3a48546a57 Mon Sep 17 00:00:00 2001
From: Chris McDonough <chrism@agendaless.com>
Date: Thu, 18 Jun 2009 07:56:09 +0000
Subject: - Add ``reissue_time`` and ``timeout`` parameters to  
 ``repoze.bfg.authentication.AuthTktAuthenticationPolicy``   constructor.  If
 these are passed, cookies will be reset every so   often (cadged from the
 same change to repoze.who lately).

---
 repoze/bfg/tests/test_authentication.py | 30 +++++++++++++++++++++++++++---
 1 file changed, 27 insertions(+), 3 deletions(-)

(limited to 'repoze/bfg/tests/test_authentication.py')

diff --git a/repoze/bfg/tests/test_authentication.py b/repoze/bfg/tests/test_authentication.py
index 258fadfd2..f3df22005 100644
--- a/repoze/bfg/tests/test_authentication.py
+++ b/repoze/bfg/tests/test_authentication.py
@@ -177,11 +177,19 @@ class TestAutkTktAuthenticationPolicy(unittest.TestCase):
         from repoze.bfg.authentication import AuthTktAuthenticationPolicy
         return AuthTktAuthenticationPolicy
 
-    def _makeOne(self, callback, cookieidentity):
-        inst = self._getTargetClass()('secret', callback)
+    def _makeOne(self, callback, cookieidentity, **kw):
+        inst = self._getTargetClass()('secret', callback, **kw)
         inst.cookie = DummyCookieHelper(cookieidentity)
         return inst
 
+    def test_allargs(self):
+        # pass all known args
+        inst = self._getTargetClass()(
+            'secret', callback=None, cookie_name=None, secure=False,
+            include_ip=False, timeout=None, reissue_time=None,
+            )
+        self.assertEqual(inst.callback, None)
+
     def test_class_implements_IAuthenticationPolicy(self):
         from zope.interface.verify import verifyClass
         from repoze.bfg.interfaces import IAuthenticationPolicy
@@ -266,7 +274,8 @@ class TestAuthTktCookieHelper(unittest.TestCase):
 
     def _makeTicket(self, userid='userid', remote_addr='0.0.0.0',
                     tokens = [], userdata='userdata',
-                    cookie_name='auth_tkt', secure=False):
+                    cookie_name='auth_tkt', secure=False,
+                    time=None):
         from paste.auth import auth_tkt
         ticket = auth_tkt.AuthTicket(
             'secret',
@@ -274,6 +283,7 @@ class TestAuthTktCookieHelper(unittest.TestCase):
             remote_addr,
             tokens=tokens,
             user_data=userdata,
+            time=time,
             cookie_name=cookie_name,
             secure=secure)
         return ticket.cookie_value()
@@ -499,6 +509,20 @@ class TestAuthTktCookieHelper(unittest.TestCase):
         self.assertEqual(name, 'Set-Cookie')
         self.assertEqual(value, 'auth_tkt=""""; Path=/; Domain=.localhost')
 
+    def test_timeout_no_reissue(self):
+        self.assertRaises(ValueError, self._makeOne, 'userid', timeout=1)
+
+    def test_timeout_lower_than_reissue(self):
+        self.assertRaises(ValueError, self._makeOne, 'userid', timeout=1,
+                          reissue_time=2)
+
+    def test_identify_bad_cookie_expired(self):
+        import time
+        helper = self._makeOne('secret', timeout=2, reissue_time=1)
+        val = self._makeTicket(userid='userid', time=time.time()-3)
+        request = self._makeRequest({'HTTP_COOKIE':'auth_tkt=%s' % val})
+        result = helper.identify(request)
+        self.assertEqual(result, None)
 
 class DummyContext:
     pass
-- 
cgit v1.2.3