From 763f156d911aa205df5e2615fd93d02f0c7173ad Mon Sep 17 00:00:00 2001 From: Sam Date: Tue, 16 May 2017 16:18:18 -0400 Subject: [PATCH] FIX: require re-activation if SSO changes email and updates it --- app/models/discourse_single_sign_on.rb | 1 + spec/models/discourse_single_sign_on_spec.rb | 26 ++++++++++++++++++-- 2 files changed, 25 insertions(+), 2 deletions(-) diff --git a/app/models/discourse_single_sign_on.rb b/app/models/discourse_single_sign_on.rb index 0fe6f75997a..93c879b5dff 100644 --- a/app/models/discourse_single_sign_on.rb +++ b/app/models/discourse_single_sign_on.rb @@ -166,6 +166,7 @@ class DiscourseSingleSignOn < SingleSignOn def change_external_attributes_and_override(sso_record, user) if SiteSetting.sso_overrides_email && user.email != email user.email = email + user.active = false if require_activation end if SiteSetting.sso_overrides_username && user.username != username && username.present? diff --git a/spec/models/discourse_single_sign_on_spec.rb b/spec/models/discourse_single_sign_on_spec.rb index 4c5be474370..4c26f04bbbd 100644 --- a/spec/models/discourse_single_sign_on_spec.rb +++ b/spec/models/discourse_single_sign_on_spec.rb @@ -253,6 +253,28 @@ describe DiscourseSingleSignOn do expect(user.active).to eq(false) end + it 'deactivates accounts that have updated email address' do + + SiteSetting.sso_overrides_email = true + sso.require_activation = true + + user = sso.lookup_or_create_user(ip_address) + expect(user.active).to eq(false) + + old_email = user.email + + user.update_columns(active: true) + user = sso.lookup_or_create_user(ip_address) + expect(user.active).to eq(true) + + user.update_columns(email: 'xXx@themovie.com') + + user = sso.lookup_or_create_user(ip_address) + expect(user.email).to eq(old_email) + expect(user.active).to eq(false) + + end + end context 'welcome emails' do @@ -267,13 +289,13 @@ describe DiscourseSingleSignOn do it "sends a welcome email by default" do User.any_instance.expects(:enqueue_welcome_message).once - user = sso.lookup_or_create_user(ip_address) + _user = sso.lookup_or_create_user(ip_address) end it "suppresses the welcome email when asked to" do User.any_instance.expects(:enqueue_welcome_message).never sso.suppress_welcome_message = true - user = sso.lookup_or_create_user(ip_address) + _user = sso.lookup_or_create_user(ip_address) end end