Fixes JSON login with basic auth

cuducos · cuducos · commit 38613e317beb · 2024-06-30T12:53:41.000-04:00
diff --git a/tests/test_app.py b/tests/test_app.py
@@ -1,3 +1,4 @@
+from base64 import b64encode
 from unittest.mock import call
 
 from flask import url_for
@@ -51,17 +52,6 @@ def test_positive_redirect_to_allowed_host(app):
         assert response.status_code == 200
 
 
-def test_positive_redirect_for_a_json_resquest(app):
-    app.config["ALLOWED_HOSTS"] = ["myothersite.com"]
-    with app.test_client() as client:
-        response = client.get(
-            url_for("simplelogin.login", next="https://myothersite.com/page"),
-            headers={"Content-Type": "application/json"},
-            follow_redirects=True,
-        )
-        assert response.status_code == 200
-
-
 def test_is_logged_in(app, client, csrf_token_for):
     client.get(url_for("simplelogin.login"))
     assert not is_logged_in()
@@ -77,6 +67,18 @@ def test_is_logged_in(app, client, csrf_token_for):
     assert is_logged_in()
 
 
+def test_is_logged_in_from_json_request(app, client):
+    client.get(url_for("simplelogin.login"))
+    assert not is_logged_in()
+    auth = b64encode(b"admin:secret").decode("utf-8")
+    response = client.post(
+        url_for("simplelogin.login"),
+        headers={"Authorization": f"Basic {auth}", "Content-Type": "application/json"},
+    )
+    assert response.status_code == 302
+    assert is_logged_in()
+
+
 def test_logout(app, client, csrf_token_for):
     client.get(url_for("simplelogin.login"))
     assert not is_logged_in()
