diff options
author | GitLab Bot <gitlab-bot@gitlab.com> | 2022-03-31 03:09:06 +0300 |
---|---|---|
committer | GitLab Bot <gitlab-bot@gitlab.com> | 2022-03-31 03:09:06 +0300 |
commit | ae6b4f857f51765dac310e8075c2c3f88e51dcab (patch) | |
tree | 7e350d6d94d6b9cae89b3cf4c79e9a8b09880842 /spec/models | |
parent | ae92150461ad4cffcf85a4dc6313bc403e596391 (diff) |
Add latest changes from gitlab-org/security/gitlab@14-9-stable-ee
Diffstat (limited to 'spec/models')
-rw-r--r-- | spec/models/user_spec.rb | 30 |
1 files changed, 30 insertions, 0 deletions
diff --git a/spec/models/user_spec.rb b/spec/models/user_spec.rb index d4e82b5798f..6ee38048025 100644 --- a/spec/models/user_spec.rb +++ b/spec/models/user_spec.rb @@ -5713,6 +5713,36 @@ RSpec.describe User do end end + describe '#valid_password?' do + subject { user.valid_password?(password) } + + context 'user with password not in disallowed list' do + let(:user) { create(:user) } + let(:password) { user.password } + + it { is_expected.to be_truthy } + + context 'using a wrong password' do + let(:password) { 'WRONG PASSWORD' } + + it { is_expected.to be_falsey } + end + end + + context 'user with disallowed password' do + let(:user) { create(:user, :disallowed_password) } + let(:password) { user.password } + + it { is_expected.to be_falsey } + + context 'using a wrong password' do + let(:password) { 'WRONG PASSWORD' } + + it { is_expected.to be_falsey } + end + end + end + describe '#password_expired?' do let(:user) { build(:user, password_expires_at: password_expires_at) } |