baarkerlounger
/
submit-social-housing-lettings-and-sales-data
mirror of https://github.com/communitiesuk/submit-social-housing-lettings-and-sales-data.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

Add support for admin lockout

pull/377/head
Stéphane Meny 4 years ago
parent
978042ac09
commit
cc2ca64295
No known key found for this signature in database
GPG Key ID: 9D0AFEA988527923
3 changed files with 36 additions and 1 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 10
      db/migrate/20220310120127_add_lockable_fields2.rb
  2. 4
      db/schema.rb
  3. 23
      spec/features/auth/user_lockout_spec.rb

10
db/migrate/20220310120127_add_lockable_fields2.rb
Unescape View File

@ -0,0 +1,10 @@
class AddLockableFields2 < ActiveRecord::Migration[7.0]
def change
change_table :admin_users, bulk: true do |t|
t.column :failed_attempts, :integer, default: 0
t.column :unlock_token, :string
t.column :locked_at, :datetime
end
add_index :admin_users, :unlock_token, unique: true
end
end

4
db/schema.rb
Unescape View File

@ -36,7 +36,11 @@ ActiveRecord::Schema[7.0].define(version: 202202071123100) do
t.datetime "last_sign_in_at", precision: nil t.datetime "last_sign_in_at", precision: nil
t.string "current_sign_in_ip" t.string "current_sign_in_ip"
t.string "last_sign_in_ip" t.string "last_sign_in_ip"
t.integer "failed_attempts", default: 0
t.string "unlock_token"
t.datetime "locked_at", precision: nil
t.index ["encrypted_otp_secret_key"], name: "index_admin_users_on_encrypted_otp_secret_key", unique: true t.index ["encrypted_otp_secret_key"], name: "index_admin_users_on_encrypted_otp_secret_key", unique: true
t.index ["unlock_token"], name: "index_admin_users_on_unlock_token", unique: true
end end
create_table "case_logs", force: :cascade do |t| create_table "case_logs", force: :cascade do |t|

23
spec/features/auth/user_lockout_spec.rb
Unescape View File

@ -2,9 +2,10 @@ require "rails_helper"
RSpec.describe "User Lockout" do RSpec.describe "User Lockout" do
let(:user) { FactoryBot.create(:user) } let(:user) { FactoryBot.create(:user) }
let(:admin) { FactoryBot.create(:admin_user) }
let(:attempt_number) { Devise.maximum_attempts } let(:attempt_number) { Devise.maximum_attempts }
context "when login-in with the wrong password up to a maximum number of attempts" do context "when login-in with the wrong user password up to a maximum number of attempts" do
before do before do
attempt_number.times do attempt_number.times do
visit("/users/sign-in") visit("/users/sign-in")
@ -23,4 +24,24 @@ RSpec.describe "User Lockout" do
expect(page).to have_content("Your account is locked.") expect(page).to have_content("Your account is locked.")
end end
end end
context "when login-in with the wrong admin password up to a maximum number of attempts" do
before do
attempt_number.times do
visit("/admin/sign-in")
fill_in("admin_user[email]", with: admin.email)
fill_in("admin_user[password]", with: "wrong_password")
click_button("Sign in")
end
end
it "locks the admin account" do
visit("/admin/sign-in")
fill_in("admin_user[email]", with: admin.email)
fill_in("admin_user[password]", with: admin.password)
click_button("Sign in")
expect(page).to have_http_status(:unprocessable_entity)
expect(page).to have_content("Your account is locked.")
end
end
end end

Write Preview
Loading…
Cancel
Save