web/test/unittest_session.py
author Aurelien Campeas <aurelien.campeas@logilab.fr>
Mon, 17 Dec 2012 14:26:41 +0100
branchstable
changeset 8633 36197bd1d78b
parent 7817 cb6174065c39
permissions -rw-r--r--
[ldapparser] demote warning level (actually important user info can leak there) (prepares #2542083)

# -*- coding: iso-8859-1 -*-
"""unit tests for cubicweb.web.application

:organization: Logilab
:copyright: 2001-2011 LOGILAB S.A. (Paris, FRANCE), license is LGPL v2.
:contact: http://www.logilab.fr/ -- mailto:contact@logilab.fr
:license: GNU Lesser General Public License, v2.1 - http://www.gnu.org/licenses
"""
from cubicweb.devtools.testlib import CubicWebTC
from cubicweb.web import InvalidSession

class SessionTC(CubicWebTC):

    def test_session_expiration(self):
        sm = self.app.session_handler.session_manager
        # make is if the web session has been opened by the session manager
        sm._sessions[self.cnx.sessionid] = self.websession
        sessionid = self.websession.sessionid
        self.assertEqual(len(sm._sessions), 1)
        self.assertEqual(self.websession.sessionid, self.websession.cnx.sessionid)
        # fake the repo session is expiring
        self.repo.close(sessionid)
        try:
            # fake an incoming http query with sessionid in session cookie
            # don't use self.request() which try to call req.set_session
            req = self.requestcls(self.vreg)
            self.assertRaises(InvalidSession, sm.get_session, req, sessionid)
            self.assertEqual(len(sm._sessions), 0)
        finally:
            # avoid error in tearDown by telling this connection is closed...
            self.cnx._closed = True

if __name__ == '__main__':
    from logilab.common.testlib import unittest_main
    unittest_main()