Add user via cmd line creates owner (#15470)

* Add user via cmd line creates owner * Ensure access tokens are not verified for inactive users * Stale print * Lint
2018-07-15 20:46:15 +02:00 · 2018-07-15 20:46:15 +02:00 · ed0cfc4f31
commit ed0cfc4f31
parent 6db069881b
8 changed files with 97 additions and 101 deletions
--- a/tests/components/test_websocket_api.py
+++ b/tests/components/test_websocket_api.py
@ -341,6 +341,33 @@ async def test_auth_active_with_token(hass, aiohttp_client, hass_access_token):
            assert auth_msg['type'] == wapi.TYPE_AUTH_OK


+async def test_auth_active_user_inactive(hass, aiohttp_client,
+                                         hass_access_token):
+    """Test authenticating with a token."""
+    hass_access_token.refresh_token.user.is_active = False
+    assert await async_setup_component(hass, 'websocket_api', {
+        'http': {
+            'api_password': API_PASSWORD
+        }
+    })
+
+    client = await aiohttp_client(hass.http.app)
+
+    async with client.ws_connect(wapi.URL) as ws:
+        with patch('homeassistant.auth.AuthManager.active') as auth_active:
+            auth_active.return_value = True
+            auth_msg = await ws.receive_json()
+            assert auth_msg['type'] == wapi.TYPE_AUTH_REQUIRED
+
+            await ws.send_json({
+                'type': wapi.TYPE_AUTH,
+                'access_token': hass_access_token.token
+            })
+
+            auth_msg = await ws.receive_json()
+            assert auth_msg['type'] == wapi.TYPE_AUTH_INVALID
+
+
 async def test_auth_active_with_password_not_allow(hass, aiohttp_client):
    """Test authenticating with a token."""
    assert await async_setup_component(hass, 'websocket_api', {