1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2018 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
5 defmodule Pleroma.MFATest do
12 describe "mfa_settings" do
13 test "returns settings user's" do
16 multi_factor_authentication_settings: %MFA.Settings{
18 totp: %MFA.Settings.TOTP{secret: "xx", confirmed: true}
22 settings = MFA.mfa_settings(user)
23 assert match?(^settings, %{enabled: true, totp: true})
27 describe "generate backup codes" do
28 test "returns backup codes" do
31 {:ok, [code1, code2]} = MFA.generate_backup_codes(user)
32 updated_user = refresh_record(user)
33 [hash1, hash2] = updated_user.multi_factor_authentication_settings.backup_codes
34 assert Pbkdf2.checkpw(code1, hash1)
35 assert Pbkdf2.checkpw(code2, hash2)
39 describe "invalidate_backup_code" do
40 test "invalid used code" do
43 {:ok, _} = MFA.generate_backup_codes(user)
44 user = refresh_record(user)
45 assert length(user.multi_factor_authentication_settings.backup_codes) == 2
46 [hash_code | _] = user.multi_factor_authentication_settings.backup_codes
48 {:ok, user} = MFA.invalidate_backup_code(user, hash_code)
50 assert length(user.multi_factor_authentication_settings.backup_codes) == 1