use registry to determine available phone methods (fixes jazzband#665)

tests/settings.py

@@ -91,6 +91,9 @@
 
 TWO_FACTOR_PATCH_ADMIN = False
 
+TWO_FACTOR_SMS_GATEWAY = 'two_factor.gateways.fake.Fake'
+TWO_FACTOR_CALL_GATEWAY = 'two_factor.gateways.fake.Fake'
+
 TWO_FACTOR_WEBAUTHN_RP_NAME = 'Test Server'
 
 AUTH_USER_MODEL = os.environ.get('AUTH_USER_MODEL', 'auth.User')

tests/test_utils.py

@@ -140,8 +140,8 @@ class PhoneUtilsTests(UserMixin, TestCase):
     def test_backup_phones(self):
         gateway = 'two_factor.gateways.fake.Fake'
         user = self.create_user()
-        user.phonedevice_set.create(name='default', number='+12024561111')
-        backup = user.phonedevice_set.create(name='backup', number='+12024561111')
+        user.phonedevice_set.create(name='default', number='+12024561111', method='call')
+        backup = user.phonedevice_set.create(name='backup', number='+12024561111', method='call')
 
         parameters = [
             # with_gateway, with_user, expected_output
@@ -159,7 +159,8 @@ def test_backup_phones(self):
                  self.settings(TWO_FACTOR_CALL_GATEWAY=gateway_param):
 
                 phone_pks = [phone.pk for phone in backup_phones(user_param)]
-                self.assertEqual(phone_pks, expected_output)
+
+            self.assertEqual(phone_pks, expected_output)
 
     def test_mask_phone_number(self):
         self.assertEqual(mask_phone_number('+41 524 204 242'), '+41 *** *** *42')

tests/test_views_login.py

@@ -282,7 +282,6 @@ def test_throttle_with_generator(self, mock_signal):
     @mock.patch('two_factor.views.core.signals.user_verified.send')
     @override_settings(
         TWO_FACTOR_PHONE_THROTTLE_FACTOR=10,
-        TWO_FACTOR_SMS_GATEWAY='two_factor.gateways.fake.Fake'
     )
     def test_throttle_with_phone_sms(self, mock_signal):
         with freeze_time("2023-01-01") as frozen_time:
@@ -310,10 +309,6 @@ def test_throttle_with_phone_sms(self, mock_signal):
 
     @mock.patch('two_factor.gateways.fake.Fake')
     @mock.patch('two_factor.views.core.signals.user_verified.send')
-    @override_settings(
-        TWO_FACTOR_SMS_GATEWAY='two_factor.gateways.fake.Fake',
-        TWO_FACTOR_CALL_GATEWAY='two_factor.gateways.fake.Fake',
-    )
     def test_with_backup_phone(self, mock_signal, fake):
         user = self.create_user()
         for no_digits in (6, 8):
@@ -765,8 +760,6 @@ def test_remember_token_throttling(self):
     @mock.patch('two_factor.gateways.fake.Fake')
     @mock.patch('two_factor.views.core.signals.user_verified.send')
     @override_settings(
-        TWO_FACTOR_SMS_GATEWAY='two_factor.gateways.fake.Fake',
-        TWO_FACTOR_CALL_GATEWAY='two_factor.gateways.fake.Fake',
         TWO_FACTOR_REMEMBER_COOKIE_AGE=60 * 60,
     )
     def test_phonedevice_with_remember_cookie(self, mock_signal, fake):

tests/test_views_phone.py

@@ -5,7 +5,6 @@
 from django.shortcuts import resolve_url
 from django.template import Context, Template
 from django.test import TestCase
-from django.test.utils import override_settings
 from django.urls import reverse, reverse_lazy
 from django_otp.oath import totp
 from django_otp.util import random_hex
@@ -23,10 +22,6 @@
 from .utils import UserMixin
 
 
-@override_settings(
-    TWO_FACTOR_SMS_GATEWAY='two_factor.gateways.fake.Fake',
-    TWO_FACTOR_CALL_GATEWAY='two_factor.gateways.fake.Fake',
-)
 class PhoneSetupTest(UserMixin, TestCase):
     def setUp(self):
         super().setUp()
@@ -162,10 +157,11 @@ def setUp(self):
         self.login_user()
 
     def test_delete(self):
+        self.assertEqual(len(backup_phones(self.user)), 1)
         response = self.client.post(reverse('two_factor:phone_delete',
                                             args=[self.backup.pk]))
         self.assertRedirects(response, resolve_url(settings.LOGIN_REDIRECT_URL))
-        self.assertEqual(list(backup_phones(self.user)), [])
+        self.assertEqual(backup_phones(self.user), [])
 
     def test_cannot_delete_default(self):
         response = self.client.post(reverse('two_factor:phone_delete',

tests/test_views_profile.py

@@ -2,60 +2,38 @@
 from django.test import TestCase, override_settings
 from django.urls import reverse
 
+from two_factor.plugins.registry import registry
+
 from .utils import UserMixin
 
 
 class ProfileTest(UserMixin, TestCase):
-    PHONENUMBER_PLUGIN_NAME = 'two_factor.plugins.phonenumber'
-    EXPECTED_BASE_CONTEXT_KEYS = {
-        'default_device',
-        'default_device_type',
-        'backup_tokens',
-    }
-    EXPECTED_PHONENUMBER_PLUGIN_ADDITIONAL_KEYS = {
-        'backup_phones',
-        'available_phone_methods',
-    }
-
     def setUp(self):
         super().setUp()
         self.user = self.create_user()
         self.enable_otp()
         self.login_user()
 
-    @classmethod
-    def get_installed_apps_list(cls, with_phone_number_plugin=True):
-        apps = set(settings.INSTALLED_APPS)
-        if with_phone_number_plugin:
-            apps.add(cls.PHONENUMBER_PLUGIN_NAME)
-        else:
-            apps.remove(cls.PHONENUMBER_PLUGIN_NAME)
-        return list(apps)
-
     def get_profile(self):
         url = reverse('two_factor:profile')
         return self.client.get(url)
 
-    def test_get_profile_without_phonenumer_plugin_enabled(self):
-        apps_list = self.get_installed_apps_list(with_phone_number_plugin=False)
-        with override_settings(INSTALLED_APPS=apps_list):
+    def test_get_profile_without_phonenumber_plugin_enabled(self):
+        without_phonenumber_plugin = [
+            app for app in settings.INSTALLED_APPS if app != 'two_factor.plugins.phonenumber']
+
+        with override_settings(INSTALLED_APPS=without_phonenumber_plugin):
+            self.assertFalse(registry.get_method('call'))
+            self.assertFalse(registry.get_method('sms'))
+
             response = self.get_profile()
-            context_keys = set(response.context.keys())
-            self.assertTrue(self.EXPECTED_BASE_CONTEXT_KEYS.issubset(context_keys))
-            # None of the phonenumber related keys are present
-            self.assertTrue(
-                self.EXPECTED_PHONENUMBER_PLUGIN_ADDITIONAL_KEYS.isdisjoint(
-                    context_keys
-                )
-            )
+
+        self.assertTrue(response.context['available_phone_methods'] == [])
 
     def test_get_profile_with_phonenumer_plugin_enabled(self):
-        apps_list = self.get_installed_apps_list(with_phone_number_plugin=True)
-        with override_settings(INSTALLED_APPS=apps_list):
-            response = self.get_profile()
-            context_keys = set(response.context.keys())
-            expected_keys = (
-                self.EXPECTED_BASE_CONTEXT_KEYS
-                | self.EXPECTED_PHONENUMBER_PLUGIN_ADDITIONAL_KEYS
-            )
-            self.assertTrue(expected_keys.issubset(context_keys))
+        self.assertTrue(registry.get_method('call'))
+        self.assertTrue(registry.get_method('sms'))
+
+        response = self.get_profile()
+        available_phone_method_codes = {method.code for method in response.context['available_phone_methods']}
+        self.assertTrue(available_phone_method_codes == {'call', 'sms'})

tests/test_views_setup.py

@@ -2,8 +2,8 @@
 from binascii import unhexlify
 from unittest import mock
 
+from django.conf import settings
 from django.test import TestCase
-from django.test.utils import override_settings
 from django.urls import reverse
 from django_otp import DEVICE_ID_SESSION_KEY
 from django_otp.oath import totp
@@ -67,8 +67,6 @@ def test_setup_only_generator_available(self):
         self.assertRedirects(response, reverse('two_factor:setup_complete'))
         self.assertEqual(1, self.user.totpdevice_set.count())
 
-    @override_settings(TWO_FACTOR_CALL_GATEWAY='two_factor.gateways.fake.Fake',
-                       TWO_FACTOR_SMS_GATEWAY='two_factor.gateways.fake.Fake')
     def test_setup_generator_with_multi_method(self):
         response = self.client.post(
             reverse('two_factor:setup'),
@@ -130,14 +128,12 @@ def _post(self, data):
     def test_no_phone(self):
         with self.settings(TWO_FACTOR_CALL_GATEWAY=None):
             response = self._post(data={'setup_view-current_step': 'welcome'})
-            self.assertNotContains(response, 'call')
+        self.assertNotContains(response, 'call')
 
-        with self.settings(TWO_FACTOR_CALL_GATEWAY='two_factor.gateways.fake.Fake'):
-            response = self._post(data={'setup_view-current_step': 'welcome'})
-            self.assertContains(response, 'call')
+        response = self._post(data={'setup_view-current_step': 'welcome'})
+        self.assertContains(response, 'call')
 
     @mock.patch('two_factor.gateways.fake.Fake')
-    @override_settings(TWO_FACTOR_CALL_GATEWAY='two_factor.gateways.fake.Fake')
     def test_setup_phone_call(self, fake):
         response = self._post(data={'setup_view-current_step': 'welcome'})
         self.assertContains(response, 'Method:')
@@ -176,7 +172,6 @@ def test_setup_phone_call(self, fake):
         self.assertEqual(phones[0].method, 'call')
 
     @mock.patch('two_factor.gateways.fake.Fake')
-    @override_settings(TWO_FACTOR_SMS_GATEWAY='two_factor.gateways.fake.Fake')
     def test_setup_phone_sms(self, fake):
         response = self._post(data={'setup_view-current_step': 'welcome'})
         self.assertContains(response, 'Method:')
@@ -239,13 +234,15 @@ def test_suggest_backup_number(self):
         self.enable_otp()
         self.login_user()
 
-        with self.settings(TWO_FACTOR_SMS_GATEWAY=None):
-            response = self.client.get(reverse('two_factor:setup_complete'))
-            self.assertNotContains(response, 'Add Phone Number')
+        without_phonenumber_plugin = [
+            app for app in settings.INSTALLED_APPS if app != 'two_factor.plugins.phonenumber']
 
-        with self.settings(TWO_FACTOR_SMS_GATEWAY='two_factor.gateways.fake.Fake'):
+        with self.settings(INSTALLED_APPS=without_phonenumber_plugin):
             response = self.client.get(reverse('two_factor:setup_complete'))
-            self.assertContains(response, 'Add Phone Number')
+        self.assertNotContains(response, 'Add Phone Number')
+
+        response = self.client.get(reverse('two_factor:setup_complete'))
+        self.assertContains(response, 'Add Phone Number')
 
     def test_missing_management_data(self):
         # missing management data

two_factor/plugins/phonenumber/apps.py

@@ -12,11 +12,11 @@ class TwoFactorPhoneNumberConfig(AppConfig):
     url_prefix = 'phone'
 
     def ready(self):
-        updated_registered_methods(self, None, None)
-        setting_changed.connect(updated_registered_methods)
+        update_registered_methods(self, None, None)
+        setting_changed.connect(update_registered_methods)
 
 
-def updated_registered_methods(sender, setting, value, **kwargs):
+def update_registered_methods(sender, setting, value, **kwargs):
     # This allows for dynamic registration, typically when testing.
     from .method import PhoneCallMethod, SMSMethod
 

two_factor/plugins/phonenumber/forms.py

@@ -15,9 +15,16 @@ class Meta:
         model = PhoneDevice
         fields = ['number', 'method']
 
+    @staticmethod
+    def get_available_choices():
+        choices = []
+        for method in get_available_phone_methods():
+            choices.append((method.code, method.verbose_name))
+        return choices
+
     def __init__(self, **kwargs):
         super().__init__(**kwargs)
-        self.fields['method'].choices = get_available_phone_methods()
+        self.fields['method'].choices = self.get_available_choices()
 
 
 class PhoneNumberForm(forms.ModelForm):

two_factor/plugins/phonenumber/utils.py

@@ -1,33 +1,32 @@
 import re
 
 import phonenumbers
-from django.conf import settings
-from django.utils.translation import gettext_lazy as _
 
-phone_mask = re.compile(r'(?<=.{3})[0-9](?=.{2})')
-
-
-def backup_phones(user):
-    no_gateways = (
-        getattr(settings, 'TWO_FACTOR_CALL_GATEWAY', None) is None
-        and getattr(settings, 'TWO_FACTOR_SMS_GATEWAY', None) is None)
-    no_user = not user or user.is_anonymous
+from two_factor.plugins.registry import registry
 
-    if no_gateways or no_user:
-        from .models import PhoneDevice
-        return PhoneDevice.objects.none()
-    return user.phonedevice_set.filter(name='backup')
+phone_mask = re.compile(r'(?<=.{3})[0-9](?=.{2})')
 
 
 def get_available_phone_methods():
     methods = []
-    if getattr(settings, 'TWO_FACTOR_CALL_GATEWAY', None):
-        methods.append(('call', _('Phone call')))
-    if getattr(settings, 'TWO_FACTOR_SMS_GATEWAY', None):
-        methods.append(('sms', _('Text message')))
+    for code in ['sms', 'call']:
+        if method := registry.get_method(code):
+            methods.append(method)
+
     return methods
 
 
+def backup_phones(user):
+    if not user or user.is_anonymous:
+        return []
+
+    phones = []
+    for method in get_available_phone_methods():
+        phones += list(method.get_devices(user))
+
+    return [phone for phone in phones if phone.name == 'backup']
+
+
 def mask_phone_number(number):
     """
     Masks a phone number, only first 3 and last 2 digits visible.

two_factor/views/profile.py

@@ -1,4 +1,3 @@
-from django.apps.registry import apps
 from django.conf import settings
 from django.contrib.auth.decorators import login_required
 from django.shortcuts import redirect, resolve_url
@@ -30,24 +29,22 @@ class ProfileView(TemplateView):
     template_name = 'two_factor/profile/profile.html'
 
     def get_context_data(self, **kwargs):
+        user = self.request.user
+
         try:
-            backup_tokens = self.request.user.staticdevice_set.all()[0].token_set.count()
+            backup_tokens = user.staticdevice_set.all()[0].token_set.count()
 
         except Exception:
             backup_tokens = 0
 
         context = {
-            'default_device': default_device(self.request.user),
-            'default_device_type': default_device(self.request.user).__class__.__name__,
+            'default_device': default_device(user),
+            'default_device_type': default_device(user).__class__.__name__,
             'backup_tokens': backup_tokens,
+            'backup_phones': backup_phones(user),
+            'available_phone_methods': get_available_phone_methods(),
         }
 
-        if (apps.is_installed('two_factor.plugins.phonenumber')):
-            context.update({
-                'backup_phones': backup_phones(self.request.user),
-                'available_phone_methods': get_available_phone_methods(),
-            })
-
         return context