1
0
Fork 0
mirror of https://github.com/rails/rails.git synced 2022-11-09 12:12:34 -05:00
rails--rails/activerecord/test/cases/secure_token_test.rb
Bernardo Araujo 51443e22f3 Allow token length configuration for has_secure_token method
The minimum token length is set to 24 due to security constraints. We
can now specify a longer length through the length: parameter. This is
especially useful for cases when your data storage is case-insensitive
and you want to increase your entropy.
2019-04-09 17:25:50 -04:00

47 lines
1.2 KiB
Ruby

# frozen_string_literal: true
require "cases/helper"
require "models/user"
class SecureTokenTest < ActiveRecord::TestCase
setup do
@user = User.new
end
def test_token_values_are_generated_for_specified_attributes_and_persisted_on_save
@user.save
assert_not_nil @user.token
assert_not_nil @user.auth_token
assert_equal 24, @user.token.size
assert_equal 36, @user.auth_token.size
end
def test_regenerating_the_secure_token
@user.save
old_token = @user.token
old_auth_token = @user.auth_token
@user.regenerate_token
@user.regenerate_auth_token
assert_not_equal @user.token, old_token
assert_not_equal @user.auth_token, old_auth_token
assert_equal 24, @user.token.size
assert_equal 36, @user.auth_token.size
end
def test_token_value_not_overwritten_when_present
@user.token = "custom-secure-token"
@user.save
assert_equal "custom-secure-token", @user.token
end
def test_token_length_cannot_be_less_than_24_characters
assert_raises(ActiveRecord::SecureToken::MinimumLengthError) do
@user.class_eval do
has_secure_token :not_valid_token, length: 12
end
end
end
end