Merge pull request #5 from matthewsullivan/feature/add-password-strength

matthewsullivan · web-flow · commit 801b7620fdac · 2020-12-31T13:30:43.000-05:00
Feature/add password strength
diff --git a/app/models/user.rb b/app/models/user.rb
@@ -9,4 +9,5 @@ class User < ApplicationRecord
   }, presence: true, uniqueness: true
   validates :first_name, presence: true
   validates :last_name, presence: true
+  validates :password, length: { minimum: 6 }
 end
diff --git a/test/graph/mutations/register_test.rb b/test/graph/mutations/register_test.rb
@@ -90,7 +90,15 @@ def perform(args = {})
       parameters = build_parameters(@user)
       result = perform(parameters)
 
-      assert_equal("Invalid input: Password can't be blank", result['errors'][0]['message'])
+      assert_equal("Invalid input: Password can't be blank, Password is too short (minimum is 6 characters)", result['errors'][0]['message'])
+    end
+
+    test 'should not register with short password' do
+      @user[:password] = '(a1)'
+      parameters = build_parameters(@user)
+      result = perform(parameters)
+
+      assert_equal("Invalid input: Password is too short (minimum is 6 characters)", result['errors'][0]['message'])
     end
 
     test 'should not register with duplicate email' do
diff --git a/test/graph/mutations/update_user_test.rb b/test/graph/mutations/update_user_test.rb
@@ -5,6 +5,7 @@
 module Mutations
   class UpdateUserTest < ActionDispatch::IntegrationTest
     def setup
+      @password = '!a1B2c3D4e5F6g!'
       @token = login_as(users(:john))[:token]
     end
 
@@ -45,7 +46,7 @@ def perform(args = {})
             firstName: 'Jonathan',
             lastName: 'D.',
             email: 'jonathandoe@localhost.com',
-            password: '!a1B2c3D4e5F6g!'
+            password: @password
           }
         }
       }
@@ -61,7 +62,8 @@ def perform(args = {})
       parameters = {
         input: {
           arguments: {
-            firstName: ''
+            firstName: '',
+            password: @password
           }
         }
       }
@@ -74,7 +76,8 @@ def perform(args = {})
       parameters = {
         input: {
           arguments: {
-            lastName: ''
+            lastName: '',
+            password: @password
           }
         }
       }
@@ -87,7 +90,8 @@ def perform(args = {})
       parameters = {
         input: {
           arguments: {
-            email: ''
+            email: '',
+            password: @password
           }
         }
       }
@@ -100,7 +104,8 @@ def perform(args = {})
       parameters = {
         input: {
           arguments: {
-            email: 'janedoe@localhost.com'
+            email: 'janedoe@localhost.com',
+            password: @password
           }
         }
       }
@@ -113,13 +118,40 @@ def perform(args = {})
       parameters = {
         input: {
           arguments: {
-            email: 'janedoelocalhost'
+            email: 'janedoelocalhost',
+            password: @password
           }
         }
       }
       result = perform(parameters)
 
       assert_equal('Invalid input: Email invalid format', result['errors'][0]['message'])
     end
+
+    test 'should not update without password' do
+      parameters = {
+        input: {
+          arguments: {
+            password: ''
+          }
+        }
+      }
+      result = perform(parameters)
+
+      assert_equal("Invalid input: Password is too short (minimum is 6 characters)", result['errors'][0]['message'])
+    end
+
+    test 'should not update with short password' do
+      parameters = {
+        input: {
+          arguments: {
+            password: '(a1)'
+          }
+        }
+      }
+      result = perform(parameters)
+
+      assert_equal("Invalid input: Password is too short (minimum is 6 characters)", result['errors'][0]['message'])
+    end
   end
 end
diff --git a/test/models/user_test.rb b/test/models/user_test.rb
@@ -55,4 +55,12 @@ def setup
     refute(user.valid?)
     assert_not_nil(user.errors[:password], 'no password present')
   end
+
+  test 'should not create with short password' do
+    @user[:password] = '(a1)'
+    user = User.create(@user)
+
+    refute(user.valid?)
+    assert_equal(user.errors[:password][0], 'is too short (minimum is 6 characters)')
+  end
 end

Original file line number	Diff line number	Diff line change
`@@ -5,6 +5,7 @@`
`5`	`5`	`module Mutations`
`6`	`6`	`class UpdateUserTest < ActionDispatch::IntegrationTest`
`7`	`7`	`def setup`
	`8`	`+ @password = '!a1B2c3D4e5F6g!'`
`8`	`9`	`@token = login_as(users(:john))[:token]`
`9`	`10`	`end`
`10`	`11`
`@@ -45,7 +46,7 @@ def perform(args = {})`
`45`	`46`	`firstName: 'Jonathan',`
`46`	`47`	`lastName: 'D.',`
`47`	`48`	`email: '[email protected]',`
`48`		`- password: '!a1B2c3D4e5F6g!'`
	`49`	`+ password: @password`
`49`	`50`	`}`
`50`	`51`	`}`
`51`	`52`	`}`
`@@ -61,7 +62,8 @@ def perform(args = {})`
`61`	`62`	`parameters = {`
`62`	`63`	`input: {`
`63`	`64`	`arguments: {`
`64`		`- firstName: ''`
	`65`	`+ firstName: '',`
	`66`	`+ password: @password`
`65`	`67`	`}`
`66`	`68`	`}`
`67`	`69`	`}`
`@@ -74,7 +76,8 @@ def perform(args = {})`
`74`	`76`	`parameters = {`
`75`	`77`	`input: {`
`76`	`78`	`arguments: {`
`77`		`- lastName: ''`
	`79`	`+ lastName: '',`
	`80`	`+ password: @password`
`78`	`81`	`}`
`79`	`82`	`}`
`80`	`83`	`}`
`@@ -87,7 +90,8 @@ def perform(args = {})`
`87`	`90`	`parameters = {`
`88`	`91`	`input: {`
`89`	`92`	`arguments: {`
`90`		`- email: ''`
	`93`	`+ email: '',`
	`94`	`+ password: @password`
`91`	`95`	`}`
`92`	`96`	`}`
`93`	`97`	`}`
`@@ -100,7 +104,8 @@ def perform(args = {})`
`100`	`104`	`parameters = {`
`101`	`105`	`input: {`
`102`	`106`	`arguments: {`
`103`		`- email: '[email protected]'`
	`107`	`+ email: '[email protected]',`
	`108`	`+ password: @password`
`104`	`109`	`}`
`105`	`110`	`}`
`106`	`111`	`}`
`@@ -113,13 +118,40 @@ def perform(args = {})`
`113`	`118`	`parameters = {`
`114`	`119`	`input: {`
`115`	`120`	`arguments: {`
`116`		`- email: 'janedoelocalhost'`
	`121`	`+ email: 'janedoelocalhost',`
	`122`	`+ password: @password`
`117`	`123`	`}`
`118`	`124`	`}`
`119`	`125`	`}`
`120`	`126`	`result = perform(parameters)`
`121`	`127`
`122`	`128`	`assert_equal('Invalid input: Email invalid format', result['errors'][0]['message'])`
`123`	`129`	`end`
	`130`	`+`
	`131`	`+ test 'should not update without password' do`
	`132`	`+ parameters = {`
	`133`	`+ input: {`
	`134`	`+ arguments: {`
	`135`	`+ password: ''`
	`136`	`+ }`
	`137`	`+ }`
	`138`	`+ }`
	`139`	`+ result = perform(parameters)`
	`140`	`+`
	`141`	`+ assert_equal("Invalid input: Password is too short (minimum is 6 characters)", result['errors'][0]['message'])`
	`142`	`+ end`
	`143`	`+`
	`144`	`+ test 'should not update with short password' do`
	`145`	`+ parameters = {`
	`146`	`+ input: {`
	`147`	`+ arguments: {`
	`148`	`+ password: '(a1)'`
	`149`	`+ }`
	`150`	`+ }`
	`151`	`+ }`
	`152`	`+ result = perform(parameters)`
	`153`	`+`
	`154`	`+ assert_equal("Invalid input: Password is too short (minimum is 6 characters)", result['errors'][0]['message'])`
	`155`	`+ end`
`124`	`156`	`end`
`125`	`157`	`end`