From 6506f3651f5ed483d6852f9419790220b3258bb0 Mon Sep 17 00:00:00 2001
From: Chris McDonough <chrism@agendaless.com>
Date: Tue, 20 Oct 2009 22:49:53 +0000
Subject: - Re-issue authentication ticket if the cookie has expired when using
   ``repoze.bfg.security.remember`` when the   ``authtktauthenticationpolicy``
 authentication policy is in effect.   (Patch from Andreas Zeidler).

---
 repoze/bfg/tests/test_authentication.py | 8 ++++++++
 1 file changed, 8 insertions(+)

(limited to 'repoze/bfg/tests/test_authentication.py')

diff --git a/repoze/bfg/tests/test_authentication.py b/repoze/bfg/tests/test_authentication.py
index 12ecb6b16..9420df1a1 100644
--- a/repoze/bfg/tests/test_authentication.py
+++ b/repoze/bfg/tests/test_authentication.py
@@ -528,6 +528,14 @@ class TestAuthTktCookieHelper(unittest.TestCase):
             value)
         self.failUnless('; Expires=' in value)
 
+    def test_remember_reissue_expired_cookie(self):
+        import time
+        plugin = self._makeOne('secret', timeout=2, reissue_time=1)
+        old_val = self._makeTicket(userid='userid', time=time.time()-3)
+        request = self._makeRequest({'HTTP_COOKIE':'auth_tkt=%s' % old_val})
+        result = plugin.remember(request, 'userid', userdata='userdata')
+        self.failIf(result is None, 'not re-issued?')
+
     def test_forget(self):
         plugin = self._makeOne('secret')
         request = self._makeRequest()
-- 
cgit v1.2.3