@Test public void assertThatResetKeyMustBeValid() { User user = userService.createUserInformation( "johndoe", "johndoe", "John", "Doe", "john.doe@localhost", "en-US", new Date()); DateTime daysAgo = DateTime.now().minusHours(25); user.setActivated(true); user.setResetDate(daysAgo); user.setResetKey("1234"); userRepository.save(user); Optional<User> maybeUser = userService.completePasswordReset("johndoe2", user.getResetKey()); assertThat(maybeUser.isPresent()).isFalse(); userRepository.delete(user); }
@Test public void assertThatUserCanResetPassword() { User user = userService.createUserInformation( "johndoe", "johndoe", "John", "Doe", "john.doe@localhost", "en-US", new Date()); String oldPassword = user.getPassword(); DateTime daysAgo = DateTime.now().minusHours(2); String resetKey = RandomUtil.generateResetKey(); user.setActivated(true); user.setResetDate(daysAgo); user.setResetKey(resetKey); userRepository.save(user); Optional<User> maybeUser = userService.completePasswordReset("johndoe2", user.getResetKey()); assertThat(maybeUser.isPresent()).isTrue(); assertThat(maybeUser.get().getResetDate()).isNull(); assertThat(maybeUser.get().getResetKey()).isNull(); assertThat(maybeUser.get().getPassword()).isNotEqualTo(oldPassword); userRepository.delete(user); }