Refactoring auth module and tests #357

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Open

omosola wants to merge 16 commits into openml:master from omosola:refactor/auth

Contributor

omosola commented Sep 18, 2025 •

edited

Loading

Opening for discussion

Refactoring of (and some fixes in) the auth module, including tests.
Expanding test suite to cover more cases, and correcting existing tests.
Now with clean test suite runs. ✅

Added notes along the PR for main areas to focus on.

omosola commented

View reviewed changes

server/src/client/app/src/pages/auth/SignIn.js Outdated Show resolved Hide resolved

omosola commented

View reviewed changes

server/user/models.py Show resolved Hide resolved

omosola commented

View reviewed changes

server/user/views.py Outdated Show resolved Hide resolved

omosola commented

View reviewed changes

server/user/views.py Outdated Show resolved Hide resolved

omosola commented

View reviewed changes

tests/test_user_routes.py Show resolved Hide resolved

omosola force-pushed the refactor/auth branch 4 times, most recently from 516de10 to 09d0287 Compare

September 20, 2025 11:02

omosola commented

View reviewed changes

server/src/client/app/src/pages/auth/ProfilePage.js Show resolved Hide resolved

omosola commented

View reviewed changes

server/extensions.py Show resolved Hide resolved

omosola commented

View reviewed changes

server/src/client/app/src/pages/auth/SignIn.js Outdated Show resolved Hide resolved

omosola commented

View reviewed changes

server/src/client/app/src/pages/auth/SignUp.js Show resolved Hide resolved

omosola force-pushed the refactor/auth branch 9 times, most recently from 69034ba to 80e249a Compare

September 20, 2025 11:40

omosola marked this pull request as ready for review

September 20, 2025 11:40

omosola force-pushed the refactor/auth branch 2 times, most recently from 1d21e48 to 9515813 Compare

September 20, 2025 12:02

josvandervelde requested changes

View reviewed changes

Member

josvandervelde left a comment

Thanks, Omosola! Some nice improvements. There are some problems that don't surface when using the unittests - let me know if I can be of any help.

server/src/client/app/src/pages/auth/SignUp.js Outdated Show resolved Hide resolved

server/src/client/app/src/pages/auth/SignUp.js Outdated Show resolved Hide resolved

server/src/client/app/src/pages/auth/SignUp.js Outdated Show resolved Hide resolved

server/user/views.py Outdated Show resolved Hide resolved

server/user/views.py Outdated Show resolved Hide resolved

server/user/views.py Show resolved Hide resolved

server/user/views.py Outdated

    
                      session.commit()

                      return jsonify({

                          "msg": "API Key updated",

                          "apikey": user.session_hash

Member

josvandervelde Nov 16, 2025

+1 for other reviewers: adding the apikey here makes sure that the frontend can show the new api-key to the user.

tests/conftest.py Show resolved Hide resolved

tests/conftest.py


		ctx.pop()

Member

josvandervelde Nov 16, 2025

Not related to this PR, but the current tests seem to assume that the user sets the environment variable DO_SEND_MAIL=False.

Adding this code fixes that issue:

from server.public import views

@pytest.fixture(scope="session", autouse=True)
def set_env():
    with patch.object(views, "DO_SEND_EMAIL", False) as _fixture:
        yield _fixture

Contributor Author

omosola commented Nov 19, 2025

Thanks for the review @josvandervelde! A couple of changes are related to previous implementation decisions that I left alone for this PR since I wasn't sure about the reasons behind some of those choices. I didn't want to touch too much existing decision logic in this PR.

My main focus for this PR was getting the user test suite running cleanly and finishing up unfinished implementations discovered through those updated tests (and aligning them with the old app's functionality).

All good comments/points, though! I'll make those changes, but I might put some of them in a separate PR.

omosola added 3 commits

November 24, 2025 13:38


          refactor: cleaning up check_password bcrypt/argon2 implementation

5f00cb6


          refactor: standardizing signin response message


          refactor: minor SignUp cleanup

595447c

omosola added 13 commits

November 24, 2025 13:38


          refactor/fix: expanding login tests and fixing login()

4600cd5


          tests/fix: refactoring all existing user_routes tests. all passing.

38a82a7


          refactor: standardizing session calls and filter_by calls

36e2da5


          fix: UI new API key display/refresh

cd6e7d3


          fix/test: minor updates to reset() and distinguishing test user fixtu…

f18a537

…res more for test_reset_password


          feat: adding password visibility toggle feature for signup flow and r…

67c57ee

…efactor of Signup module


          tests: adding signup route test

76f9932


          refactor: starting tests with clean db, using separate test db during…

06499ee

… test runs


          refactor: adding initial seed user across tests

b377d60


          feat: enforcing higher minimum password length

7c282b7


          refactor: consolidating incorrect credentials case (wrong username or…

8efa26e

… password) across backend and frontend


          refactor: returning sessions to context manager implementation

e1769af


          tests: explicitly disabling email sending in test

903b94d

omosola force-pushed the refactor/auth branch from 9515813 to 903b94d Compare

November 26, 2025 12:26

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet