From 39a53b64394820f195bc2765a890594d5d2bcdef Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
Date: Tue, 11 Jul 2023 17:10:38 +0200
Subject: [PATCH 01/24] removes cffi and chardet from pyproject.toml

Those libraries are not directly used in the code,
and the fixed version 1.14.0 of cffi causes python environment installation
issues with some Linux distributions (e.g. Archlinux as of july 23).
---
 poetry.lock    | 116 ++-----------------------------------------------
 pyproject.toml |   2 -
 2 files changed, 3 insertions(+), 115 deletions(-)

diff --git a/poetry.lock b/poetry.lock
index fb3954b1..62133081 100644
--- a/poetry.lock
+++ b/poetry.lock
@@ -1,10 +1,9 @@
-# This file is automatically @generated by Poetry 1.4.2 and should not be changed by hand.
+# This file is automatically @generated by Poetry 1.5.1 and should not be changed by hand.
 
 [[package]]
 name = "alembic"
 version = "1.10.4"
 description = "A database migration tool for SQLAlchemy."
-category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -26,7 +25,6 @@ tz = ["python-dateutil"]
 name = "amqp"
 version = "5.1.1"
 description = "Low-level AMQP client for Python (fork of amqplib)."
-category = "main"
 optional = false
 python-versions = ">=3.6"
 files = [
@@ -41,7 +39,6 @@ vine = ">=5.0.0"
 name = "async-timeout"
 version = "4.0.2"
 description = "Timeout context manager for asyncio programs"
-category = "main"
 optional = false
 python-versions = ">=3.6"
 files = [
@@ -53,7 +50,6 @@ files = [
 name = "babel"
 version = "2.12.1"
 description = "Internationalization utilities"
-category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -68,7 +64,6 @@ pytz = {version = ">=2015.7", markers = "python_version < \"3.9\""}
 name = "beaker"
 version = "1.12.1"
 description = "A Session and Caching library with WSGI Middleware"
-category = "main"
 optional = false
 python-versions = "*"
 files = [
@@ -86,7 +81,6 @@ testsuite = ["Mock", "coverage", "cryptography", "pycryptodome", "pylibmc", "pym
 name = "beautifulsoup4"
 version = "4.12.2"
 description = "Screen-scraping library"
-category = "dev"
 optional = false
 python-versions = ">=3.6.0"
 files = [
@@ -105,7 +99,6 @@ lxml = ["lxml"]
 name = "billiard"
 version = "3.6.4.0"
 description = "Python multiprocessing fork with improvements and bugfixes"
-category = "main"
 optional = false
 python-versions = "*"
 files = [
@@ -117,7 +110,6 @@ files = [
 name = "black"
 version = "23.3.0"
 description = "The uncompromising code formatter."
-category = "dev"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -167,7 +159,6 @@ uvloop = ["uvloop (>=0.15.2)"]
 name = "blinker"
 version = "1.6.2"
 description = "Fast, simple object-to-object and broadcast signaling"
-category = "dev"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -179,7 +170,6 @@ files = [
 name = "cachelib"
 version = "0.9.0"
 description = "A collection of cache libraries in the same API interface."
-category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -191,7 +181,6 @@ files = [
 name = "celery"
 version = "5.2.7"
 description = "Distributed Task Queue."
-category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -246,7 +235,6 @@ zstd = ["zstandard"]
 name = "certifi"
 version = "2022.12.7"
 description = "Python package for providing Mozilla's CA Bundle."
-category = "main"
 optional = false
 python-versions = ">=3.6"
 files = [
@@ -258,7 +246,6 @@ files = [
 name = "cffi"
 version = "1.14.0"
 description = "Foreign Function Interface for Python calling C code."
-category = "main"
 optional = false
 python-versions = "*"
 files = [
@@ -299,7 +286,6 @@ pycparser = "*"
 name = "cfgv"
 version = "3.3.1"
 description = "Validate configuration and produce human readable error messages."
-category = "dev"
 optional = false
 python-versions = ">=3.6.1"
 files = [
@@ -307,23 +293,10 @@ files = [
     {file = "cfgv-3.3.1.tar.gz", hash = "sha256:f5a830efb9ce7a445376bb66ec94c638a9787422f96264c98edc6bdeed8ab736"},
 ]
 
-[[package]]
-name = "chardet"
-version = "3.0.4"
-description = "Universal encoding detector for Python 2 and 3"
-category = "main"
-optional = false
-python-versions = "*"
-files = [
-    {file = "chardet-3.0.4-py2.py3-none-any.whl", hash = "sha256:fc323ffcaeaed0e0a02bf4d117757b98aed530d9ed4531e3e15460124c106691"},
-    {file = "chardet-3.0.4.tar.gz", hash = "sha256:84ab92ed1c4d4f16916e05906b6b75a6c0fb5db821cc65e70cbd64a3e2a5eaae"},
-]
-
 [[package]]
 name = "charset-normalizer"
 version = "2.0.12"
 description = "The Real First Universal Charset Detector. Open, modern and actively maintained alternative to Chardet."
-category = "main"
 optional = false
 python-versions = ">=3.5.0"
 files = [
@@ -338,7 +311,6 @@ unicode-backport = ["unicodedata2"]
 name = "click"
 version = "8.1.3"
 description = "Composable command line interface toolkit"
-category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -353,7 +325,6 @@ colorama = {version = "*", markers = "platform_system == \"Windows\""}
 name = "click-didyoumean"
 version = "0.3.0"
 description = "Enables git-like *did-you-mean* feature in click"
-category = "main"
 optional = false
 python-versions = ">=3.6.2,<4.0.0"
 files = [
@@ -368,7 +339,6 @@ click = ">=7"
 name = "click-plugins"
 version = "1.1.1"
 description = "An extension module for click to enable registering CLI commands via setuptools entry-points."
-category = "main"
 optional = false
 python-versions = "*"
 files = [
@@ -386,7 +356,6 @@ dev = ["coveralls", "pytest (>=3.6)", "pytest-cov", "wheel"]
 name = "click-repl"
 version = "0.2.0"
 description = "REPL plugin for Click"
-category = "main"
 optional = false
 python-versions = "*"
 files = [
@@ -403,7 +372,6 @@ six = "*"
 name = "colorama"
 version = "0.4.6"
 description = "Cross-platform colored terminal text."
-category = "main"
 optional = false
 python-versions = "!=3.0.*,!=3.1.*,!=3.2.*,!=3.3.*,!=3.4.*,!=3.5.*,!=3.6.*,>=2.7"
 files = [
@@ -415,7 +383,6 @@ files = [
 name = "coverage"
 version = "7.2.4"
 description = "Code coverage measurement for Python"
-category = "dev"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -482,7 +449,6 @@ toml = ["tomli"]
 name = "cryptography"
 version = "41.0.1"
 description = "cryptography is a package which provides cryptographic recipes and primitives to Python developers."
-category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -524,7 +490,6 @@ test-randomorder = ["pytest-randomly"]
 name = "defusedxml"
 version = "0.7.1"
 description = "XML bomb protection for Python stdlib modules"
-category = "main"
 optional = false
 python-versions = ">=2.7, !=3.0.*, !=3.1.*, !=3.2.*, !=3.3.*, !=3.4.*"
 files = [
@@ -536,7 +501,6 @@ files = [
 name = "distlib"
 version = "0.3.6"
 description = "Distribution utilities"
-category = "dev"
 optional = false
 python-versions = "*"
 files = [
@@ -548,7 +512,6 @@ files = [
 name = "exceptiongroup"
 version = "1.1.1"
 description = "Backport of PEP 654 (exception groups)"
-category = "dev"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -563,7 +526,6 @@ test = ["pytest (>=6)"]
 name = "filelock"
 version = "3.12.0"
 description = "A platform independent file lock."
-category = "dev"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -579,7 +541,6 @@ testing = ["covdefaults (>=2.3)", "coverage (>=7.2.3)", "diff-cover (>=7.5)", "p
 name = "filetype"
 version = "1.2.0"
 description = "Infer file type and MIME type of any file/buffer. No external dependencies."
-category = "main"
 optional = false
 python-versions = "*"
 files = [
@@ -591,7 +552,6 @@ files = [
 name = "flake8"
 version = "6.0.0"
 description = "the modular source code checker: pep8 pyflakes and co"
-category = "dev"
 optional = false
 python-versions = ">=3.8.1"
 files = [
@@ -608,7 +568,6 @@ pyflakes = ">=3.0.0,<3.1.0"
 name = "flask"
 version = "2.2.5"
 description = "A simple framework for building complex web applications."
-category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -631,7 +590,6 @@ dotenv = ["python-dotenv"]
 name = "flask-babel"
 version = "2.0.0"
 description = "Adds i18n/l10n support to Flask applications"
-category = "main"
 optional = false
 python-versions = "*"
 files = [
@@ -652,7 +610,6 @@ dev = ["Pallets-Sphinx-Themes", "bumpversion", "ghp-import", "pytest", "pytest-m
 name = "flask-caching"
 version = "2.0.2"
 description = "Adds caching support to Flask applications."
-category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -668,7 +625,6 @@ Flask = "<3"
 name = "flask-migrate"
 version = "3.1.0"
 description = "SQLAlchemy database migrations for Flask applications using Alembic."
-category = "main"
 optional = false
 python-versions = ">=3.6"
 files = [
@@ -685,7 +641,6 @@ Flask-SQLAlchemy = ">=1.0"
 name = "flask-pyoidc"
 version = "3.10.0"
 description = "Flask extension for OpenID Connect authentication."
-category = "main"
 optional = false
 python-versions = "*"
 files = [
@@ -702,7 +657,6 @@ requests = "*"
 name = "flask-sqlalchemy"
 version = "3.0.3"
 description = "Add SQLAlchemy support to your Flask application."
-category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -718,7 +672,6 @@ SQLAlchemy = ">=1.4.18"
 name = "flask-uploads"
 version = "0.2.1"
 description = "Flexible and efficient upload handling for Flask"
-category = "main"
 optional = false
 python-versions = "*"
 files = [
@@ -732,7 +685,6 @@ Flask = ">=0.8.0"
 name = "flask-webtest"
 version = "0.1.1"
 description = "Utilities for testing Flask applications with WebTest."
-category = "dev"
 optional = false
 python-versions = "*"
 files = [
@@ -752,7 +704,6 @@ tests = ["flask-sqlalchemy"]
 name = "flask-wtf"
 version = "1.0.1"
 description = "Form rendering, validation, and CSRF protection for Flask with WTForms."
-category = "main"
 optional = false
 python-versions = ">=3.6"
 files = [
@@ -772,7 +723,6 @@ email = ["email-validator"]
 name = "freezegun"
 version = "1.2.2"
 description = "Let your Python tests travel through time"
-category = "dev"
 optional = false
 python-versions = ">=3.6"
 files = [
@@ -787,7 +737,6 @@ python-dateutil = ">=2.7"
 name = "future"
 version = "0.18.3"
 description = "Clean single-source support for Python 3 and 2"
-category = "main"
 optional = false
 python-versions = ">=2.6, !=3.0.*, !=3.1.*, !=3.2.*"
 files = [
@@ -798,7 +747,6 @@ files = [
 name = "greenlet"
 version = "2.0.2"
 description = "Lightweight in-process concurrent programming"
-category = "main"
 optional = false
 python-versions = ">=2.7,!=3.0.*,!=3.1.*,!=3.2.*,!=3.3.*,!=3.4.*"
 files = [
@@ -872,7 +820,6 @@ test = ["objgraph", "psutil"]
 name = "gunicorn"
 version = "20.1.0"
 description = "WSGI HTTP Server for UNIX"
-category = "main"
 optional = false
 python-versions = ">=3.5"
 files = [
@@ -893,7 +840,6 @@ tornado = ["tornado (>=0.2)"]
 name = "identify"
 version = "2.5.23"
 description = "File identification library for Python"
-category = "dev"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -908,7 +854,6 @@ license = ["ukkonen"]
 name = "idna"
 version = "3.4"
 description = "Internationalized Domain Names in Applications (IDNA)"
-category = "main"
 optional = false
 python-versions = ">=3.5"
 files = [
@@ -920,7 +865,6 @@ files = [
 name = "importlib-metadata"
 version = "6.6.0"
 description = "Read metadata from Python packages"
-category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -940,7 +884,6 @@ testing = ["flake8 (<5)", "flufl.flake8", "importlib-resources (>=1.3)", "packag
 name = "importlib-resources"
 version = "5.12.0"
 description = "Read resources from Python packages"
-category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -959,7 +902,6 @@ testing = ["flake8 (<5)", "pytest (>=6)", "pytest-black (>=0.3.7)", "pytest-chec
 name = "iniconfig"
 version = "2.0.0"
 description = "brain-dead simple config-ini parsing"
-category = "dev"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -971,7 +913,6 @@ files = [
 name = "itsdangerous"
 version = "2.1.2"
 description = "Safely pass data to untrusted environments and back."
-category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -983,7 +924,6 @@ files = [
 name = "jinja2"
 version = "3.1.2"
 description = "A very fast and expressive template engine."
-category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -1001,7 +941,6 @@ i18n = ["Babel (>=2.7)"]
 name = "kombu"
 version = "5.2.4"
 description = "Messaging library for Python."
-category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -1033,7 +972,6 @@ zookeeper = ["kazoo (>=1.3.1)"]
 name = "lxml"
 version = "4.9.2"
 description = "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API."
-category = "main"
 optional = false
 python-versions = ">=2.7, !=3.0.*, !=3.1.*, !=3.2.*, !=3.3.*, != 3.4.*"
 files = [
@@ -1126,7 +1064,6 @@ source = ["Cython (>=0.29.7)"]
 name = "mako"
 version = "1.2.4"
 description = "A super-fast templating language that borrows the best ideas from the existing templating languages."
-category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -1146,7 +1083,6 @@ testing = ["pytest"]
 name = "markupsafe"
 version = "2.1.2"
 description = "Safely add untrusted strings to HTML/XML markup."
-category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -1206,7 +1142,6 @@ files = [
 name = "mccabe"
 version = "0.7.0"
 description = "McCabe checker, plugin for flake8"
-category = "dev"
 optional = false
 python-versions = ">=3.6"
 files = [
@@ -1218,7 +1153,6 @@ files = [
 name = "mypy-extensions"
 version = "1.0.0"
 description = "Type system extensions for programs checked with the mypy type checker."
-category = "dev"
 optional = false
 python-versions = ">=3.5"
 files = [
@@ -1230,7 +1164,6 @@ files = [
 name = "netaddr"
 version = "0.8.0"
 description = "A network address manipulation library for Python"
-category = "main"
 optional = false
 python-versions = "*"
 files = [
@@ -1242,7 +1175,6 @@ files = [
 name = "nodeenv"
 version = "1.7.0"
 description = "Node.js virtual environment builder"
-category = "dev"
 optional = false
 python-versions = ">=2.7,!=3.0.*,!=3.1.*,!=3.2.*,!=3.3.*,!=3.4.*,!=3.5.*,!=3.6.*"
 files = [
@@ -1257,7 +1189,6 @@ setuptools = "*"
 name = "oic"
 version = "1.4.0"
 description = "Python implementation of OAuth2 and OpenID Connect"
-category = "main"
 optional = false
 python-versions = "~=3.5"
 files = [
@@ -1287,7 +1218,6 @@ types = ["types-requests"]
 name = "packaging"
 version = "23.1"
 description = "Core utilities for Python packages"
-category = "dev"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -1299,7 +1229,6 @@ files = [
 name = "pathspec"
 version = "0.11.1"
 description = "Utility library for gitignore style pattern matching of file paths."
-category = "dev"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -1311,7 +1240,6 @@ files = [
 name = "platformdirs"
 version = "3.5.0"
 description = "A small Python package for determining appropriate platform-specific dirs, e.g. a \"user data dir\"."
-category = "dev"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -1327,7 +1255,6 @@ test = ["appdirs (==1.4.4)", "covdefaults (>=2.3)", "pytest (>=7.3.1)", "pytest-
 name = "pluggy"
 version = "1.0.0"
 description = "plugin and hook calling mechanisms for python"
-category = "dev"
 optional = false
 python-versions = ">=3.6"
 files = [
@@ -1343,7 +1270,6 @@ testing = ["pytest", "pytest-benchmark"]
 name = "pre-commit"
 version = "3.2.2"
 description = "A framework for managing and maintaining multi-language pre-commit hooks."
-category = "dev"
 optional = false
 python-versions = ">=3.8"
 files = [
@@ -1362,7 +1288,6 @@ virtualenv = ">=20.10.0"
 name = "prompt-toolkit"
 version = "3.0.38"
 description = "Library for building powerful interactive command lines in Python"
-category = "main"
 optional = false
 python-versions = ">=3.7.0"
 files = [
@@ -1377,7 +1302,6 @@ wcwidth = "*"
 name = "psycopg2"
 version = "2.9.3"
 description = "psycopg2 - Python-PostgreSQL Database Adapter"
-category = "main"
 optional = false
 python-versions = ">=3.6"
 files = [
@@ -1398,7 +1322,6 @@ files = [
 name = "pycodestyle"
 version = "2.10.0"
 description = "Python style guide checker"
-category = "dev"
 optional = false
 python-versions = ">=3.6"
 files = [
@@ -1410,7 +1333,6 @@ files = [
 name = "pycparser"
 version = "2.21"
 description = "C parser in Python"
-category = "main"
 optional = false
 python-versions = ">=2.7, !=3.0.*, !=3.1.*, !=3.2.*, !=3.3.*"
 files = [
@@ -1422,7 +1344,6 @@ files = [
 name = "pycryptodomex"
 version = "3.17"
 description = "Cryptographic library for Python"
-category = "main"
 optional = false
 python-versions = ">=2.7, !=3.0.*, !=3.1.*, !=3.2.*, !=3.3.*, !=3.4.*"
 files = [
@@ -1465,7 +1386,6 @@ files = [
 name = "pyflakes"
 version = "3.0.1"
 description = "passive checker of Python programs"
-category = "dev"
 optional = false
 python-versions = ">=3.6"
 files = [
@@ -1477,7 +1397,6 @@ files = [
 name = "pyjwkest"
 version = "1.4.2"
 description = "Python implementation of JWT, JWE, JWS and JWK"
-category = "main"
 optional = false
 python-versions = "*"
 files = [
@@ -1494,7 +1413,6 @@ six = "*"
 name = "pytest"
 version = "7.3.1"
 description = "pytest: simple powerful testing with Python"
-category = "dev"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -1517,7 +1435,6 @@ testing = ["argcomplete", "attrs (>=19.2.0)", "hypothesis (>=3.56)", "mock", "no
 name = "pytest-cov"
 version = "4.0.0"
 description = "Pytest plugin for measuring coverage."
-category = "dev"
 optional = false
 python-versions = ">=3.6"
 files = [
@@ -1536,7 +1453,6 @@ testing = ["fields", "hunter", "process-tests", "pytest-xdist", "six", "virtuale
 name = "pytest-dotenv"
 version = "0.5.2"
 description = "A py.test plugin that parses environment files before running tests"
-category = "dev"
 optional = false
 python-versions = "*"
 files = [
@@ -1552,7 +1468,6 @@ python-dotenv = ">=0.9.1"
 name = "pytest-mock"
 version = "3.10.0"
 description = "Thin-wrapper around the mock package for easier use with pytest"
-category = "dev"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -1570,7 +1485,6 @@ dev = ["pre-commit", "pytest-asyncio", "tox"]
 name = "python-dateutil"
 version = "2.8.2"
 description = "Extensions to the standard Python datetime module"
-category = "main"
 optional = false
 python-versions = "!=3.0.*,!=3.1.*,!=3.2.*,>=2.7"
 files = [
@@ -1585,7 +1499,6 @@ six = ">=1.5"
 name = "python-dotenv"
 version = "1.0.0"
 description = "Read key-value pairs from a .env file and set them as environment variables"
-category = "dev"
 optional = false
 python-versions = ">=3.8"
 files = [
@@ -1600,7 +1513,6 @@ cli = ["click (>=5.0)"]
 name = "pytz"
 version = "2023.3"
 description = "World timezone definitions, modern and historical"
-category = "main"
 optional = false
 python-versions = "*"
 files = [
@@ -1612,7 +1524,6 @@ files = [
 name = "pyyaml"
 version = "6.0"
 description = "YAML parser and emitter for Python"
-category = "dev"
 optional = false
 python-versions = ">=3.6"
 files = [
@@ -1662,7 +1573,6 @@ files = [
 name = "redis"
 version = "4.4.4"
 description = "Python client for Redis database and key-value store"
-category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -1681,7 +1591,6 @@ ocsp = ["cryptography (>=36.0.1)", "pyopenssl (==20.0.1)", "requests (>=2.26.0)"
 name = "requests"
 version = "2.31.0"
 description = "Python HTTP for Humans."
-category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -1703,7 +1612,6 @@ use-chardet-on-py3 = ["chardet (>=3.0.2,<6)"]
 name = "setuptools"
 version = "67.7.2"
 description = "Easily download, build, install, upgrade, and uninstall Python packages"
-category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -1720,7 +1628,6 @@ testing-integration = ["build[virtualenv]", "filelock (>=3.4.0)", "jaraco.envs (
 name = "six"
 version = "1.16.0"
 description = "Python 2 and 3 compatibility utilities"
-category = "main"
 optional = false
 python-versions = ">=2.7, !=3.0.*, !=3.1.*, !=3.2.*"
 files = [
@@ -1732,7 +1639,6 @@ files = [
 name = "soupsieve"
 version = "2.4.1"
 description = "A modern CSS selector implementation for Beautiful Soup."
-category = "dev"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -1744,7 +1650,6 @@ files = [
 name = "sqlalchemy"
 version = "1.4.31"
 description = "Database Abstraction Library"
-category = "main"
 optional = false
 python-versions = "!=3.0.*,!=3.1.*,!=3.2.*,!=3.3.*,!=3.4.*,!=3.5.*,>=2.7"
 files = [
@@ -1787,7 +1692,7 @@ files = [
 ]
 
 [package.dependencies]
-greenlet = {version = "!=0.4.17", markers = "python_version >= \"3\" and platform_machine == \"aarch64\" or python_version >= \"3\" and platform_machine == \"ppc64le\" or python_version >= \"3\" and platform_machine == \"x86_64\" or python_version >= \"3\" and platform_machine == \"amd64\" or python_version >= \"3\" and platform_machine == \"AMD64\" or python_version >= \"3\" and platform_machine == \"win32\" or python_version >= \"3\" and platform_machine == \"WIN32\""}
+greenlet = {version = "!=0.4.17", markers = "python_version >= \"3\" and (platform_machine == \"win32\" or platform_machine == \"WIN32\" or platform_machine == \"AMD64\" or platform_machine == \"amd64\" or platform_machine == \"x86_64\" or platform_machine == \"ppc64le\" or platform_machine == \"aarch64\")"}
 
 [package.extras]
 aiomysql = ["aiomysql", "greenlet (!=0.4.17)"]
@@ -1814,7 +1719,6 @@ sqlcipher = ["sqlcipher3-binary"]
 name = "sqlalchemy-json"
 version = "0.4.0"
 description = "JSON type with nested change tracking for SQLAlchemy"
-category = "main"
 optional = false
 python-versions = "*"
 files = [
@@ -1830,7 +1734,6 @@ sqlalchemy = ">=0.7"
 name = "sqlalchemy-utils"
 version = "0.38.1"
 description = "Various utility functions for SQLAlchemy."
-category = "main"
 optional = false
 python-versions = "~=3.4"
 files = [
@@ -1860,7 +1763,6 @@ url = ["furl (>=0.4.1)"]
 name = "tomli"
 version = "2.0.1"
 description = "A lil' TOML parser"
-category = "dev"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -1872,7 +1774,6 @@ files = [
 name = "typing-extensions"
 version = "4.5.0"
 description = "Backported and Experimental Type Hints for Python 3.7+"
-category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -1884,7 +1785,6 @@ files = [
 name = "urllib3"
 version = "1.26.15"
 description = "HTTP library with thread-safe connection pooling, file post, and more."
-category = "main"
 optional = false
 python-versions = ">=2.7, !=3.0.*, !=3.1.*, !=3.2.*, !=3.3.*, !=3.4.*, !=3.5.*"
 files = [
@@ -1901,7 +1801,6 @@ socks = ["PySocks (>=1.5.6,!=1.5.7,<2.0)"]
 name = "vine"
 version = "5.0.0"
 description = "Promises, promises, promises."
-category = "main"
 optional = false
 python-versions = ">=3.6"
 files = [
@@ -1913,7 +1812,6 @@ files = [
 name = "virtualenv"
 version = "20.23.0"
 description = "Virtual Python Environment builder"
-category = "dev"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -1934,7 +1832,6 @@ test = ["covdefaults (>=2.3)", "coverage (>=7.2.3)", "coverage-enable-subprocess
 name = "waitress"
 version = "2.1.2"
 description = "Waitress WSGI server"
-category = "dev"
 optional = false
 python-versions = ">=3.7.0"
 files = [
@@ -1950,7 +1847,6 @@ testing = ["coverage (>=5.0)", "pytest", "pytest-cover"]
 name = "wcwidth"
 version = "0.2.6"
 description = "Measures the displayed width of unicode strings in a terminal"
-category = "main"
 optional = false
 python-versions = "*"
 files = [
@@ -1962,7 +1858,6 @@ files = [
 name = "webdavclient3"
 version = "3.14.6"
 description = "WebDAV client, based on original package https://github.com/designerror/webdav-client-python but uses requests instead of PyCURL"
-category = "main"
 optional = false
 python-versions = "*"
 files = [
@@ -1978,7 +1873,6 @@ requests = "*"
 name = "webob"
 version = "1.8.7"
 description = "WSGI request and response object"
-category = "dev"
 optional = false
 python-versions = ">=2.7,!=3.0.*,!=3.1.*,!=3.2.*"
 files = [
@@ -1994,7 +1888,6 @@ testing = ["coverage", "pytest (>=3.1.0)", "pytest-cov", "pytest-xdist"]
 name = "webtest"
 version = "3.0.0"
 description = "Helper to test WSGI applications"
-category = "dev"
 optional = false
 python-versions = ">=3.6, <4"
 files = [
@@ -2015,7 +1908,6 @@ tests = ["PasteDeploy", "WSGIProxy2", "coverage", "pyquery", "pytest", "pytest-c
 name = "werkzeug"
 version = "2.3.4"
 description = "The comprehensive WSGI web application library."
-category = "main"
 optional = false
 python-versions = ">=3.8"
 files = [
@@ -2033,7 +1925,6 @@ watchdog = ["watchdog (>=2.3)"]
 name = "wtforms"
 version = "3.0.1"
 description = "Form validation and rendering for Python web development."
-category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -2051,7 +1942,6 @@ email = ["email-validator"]
 name = "zipp"
 version = "3.15.0"
 description = "Backport of pathlib-compatible object wrapper for zip files"
-category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
@@ -2066,4 +1956,4 @@ testing = ["big-O", "flake8 (<5)", "jaraco.functools", "jaraco.itertools", "more
 [metadata]
 lock-version = "2.0"
 python-versions = ">=3.8.1,<4.0"
-content-hash = "51b112794ce233cba0782dda62ab79326e2d597ea6d8401869529bb2627c2fae"
+content-hash = "22226362338c2814f71266264082a27169c2afab935ad4f0bebd871b48db6357"
diff --git a/pyproject.toml b/pyproject.toml
index 52a142b1..faba8598 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -7,8 +7,6 @@ readme = "README.md"
 
 [tool.poetry.dependencies]
 python = ">=3.8.1,<4.0"
-cffi = "1.14.0"
-chardet = "3.0.4"
 flask-pyoidc = "3.10.0"
 flask-sqlalchemy = "^3.0.3"
 flask-uploads = "0.2.1"

From f5a80f8ea225c65173143bd6d31f6aa836802f8e Mon Sep 17 00:00:00 2001
From: loanR <loan.rbrt@gmail.com>
Date: Mon, 17 Jul 2023 18:03:20 +0200
Subject: [PATCH 02/24] Update dependencies for docker containers

Remove explicit chardet package from requirements
---
 web/requirements.app.txt | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/web/requirements.app.txt b/web/requirements.app.txt
index 67b458ce..af6262fa 100644
--- a/web/requirements.app.txt
+++ b/web/requirements.app.txt
@@ -8,7 +8,6 @@ cachelib==0.9.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 celery==5.2.7 ; python_full_version >= "3.8.1" and python_version < "4.0"
 certifi==2022.12.7 ; python_full_version >= "3.8.1" and python_version < "4.0"
 cffi==1.14.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
-chardet==3.0.4 ; python_full_version >= "3.8.1" and python_version < "4.0"
 charset-normalizer==2.0.12 ; python_full_version >= "3.8.1" and python_version < "4.0"
 click-didyoumean==0.3.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 click-plugins==1.1.1 ; python_full_version >= "3.8.1" and python_version < "4.0"
@@ -27,7 +26,7 @@ flask-uploads==0.2.1 ; python_full_version >= "3.8.1" and python_version < "4.0"
 flask-wtf==1.0.1 ; python_full_version >= "3.8.1" and python_version < "4.0"
 flask==2.2.5 ; python_full_version >= "3.8.1" and python_version < "4.0"
 future==0.18.3 ; python_full_version >= "3.8.1" and python_version < "4.0"
-greenlet==2.0.2 ; python_full_version >= "3.8.1" and platform_machine == "aarch64" and python_version < "4.0" or python_full_version >= "3.8.1" and platform_machine == "ppc64le" and python_version < "4.0" or python_full_version >= "3.8.1" and platform_machine == "x86_64" and python_version < "4.0" or python_full_version >= "3.8.1" and platform_machine == "amd64" and python_version < "4.0" or python_full_version >= "3.8.1" and platform_machine == "AMD64" and python_version < "4.0" or python_full_version >= "3.8.1" and platform_machine == "win32" and python_version < "4.0" or python_full_version >= "3.8.1" and platform_machine == "WIN32" and python_version < "4.0"
+greenlet==2.0.2 ; python_full_version >= "3.8.1" and platform_machine == "win32" and python_version < "4.0" or python_full_version >= "3.8.1" and platform_machine == "WIN32" and python_version < "4.0" or python_full_version >= "3.8.1" and platform_machine == "AMD64" and python_version < "4.0" or python_full_version >= "3.8.1" and platform_machine == "amd64" and python_version < "4.0" or python_full_version >= "3.8.1" and platform_machine == "x86_64" and python_version < "4.0" or python_full_version >= "3.8.1" and platform_machine == "ppc64le" and python_version < "4.0" or python_full_version >= "3.8.1" and platform_machine == "aarch64" and python_version < "4.0"
 gunicorn==20.1.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 idna==3.4 ; python_full_version >= "3.8.1" and python_version < "4.0"
 importlib-metadata==6.6.0 ; python_full_version >= "3.8.1" and python_version < "3.10"

From af7439965944bb903ba672888f2e924651d01b74 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
Date: Wed, 19 Jul 2023 10:26:05 +0200
Subject: [PATCH 03/24] chore: bump to flask-webtest 0.1.3

---
 poetry.lock              | 8 ++++----
 pyproject.toml           | 2 +-
 web/requirements.dev.txt | 6 +++---
 3 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/poetry.lock b/poetry.lock
index 62133081..abf6cd7c 100644
--- a/poetry.lock
+++ b/poetry.lock
@@ -683,13 +683,13 @@ Flask = ">=0.8.0"
 
 [[package]]
 name = "flask-webtest"
-version = "0.1.1"
+version = "0.1.3"
 description = "Utilities for testing Flask applications with WebTest."
 optional = false
 python-versions = "*"
 files = [
-    {file = "Flask-WebTest-0.1.1.tar.gz", hash = "sha256:ae1eda72cc5a350aba1398b349c1c74d0795dda13054b347b33eaacb0737a2f4"},
-    {file = "Flask_WebTest-0.1.1-py2.py3-none-any.whl", hash = "sha256:0414ca2cf8a63b37285a8708db874cef786dd3e0f3d203cf87a1b43170f33e50"},
+    {file = "Flask-WebTest-0.1.3.tar.gz", hash = "sha256:8da31ae2ffef403496dd4752a0937ac39d4619849f2f54c5c7a3792747949559"},
+    {file = "Flask_WebTest-0.1.3-py2.py3-none-any.whl", hash = "sha256:71efd3212b2c39ef20914b180ba7bfa6d0b8c0dc17e274ba508cc7a9cdd4ead9"},
 ]
 
 [package.dependencies]
@@ -1956,4 +1956,4 @@ testing = ["big-O", "flake8 (<5)", "jaraco.functools", "jaraco.itertools", "more
 [metadata]
 lock-version = "2.0"
 python-versions = ">=3.8.1,<4.0"
-content-hash = "22226362338c2814f71266264082a27169c2afab935ad4f0bebd871b48db6357"
+content-hash = "db46a32b1cf3eaf8b9efde0890780178a015d9ecc56f785c1939702277787a8e"
diff --git a/pyproject.toml b/pyproject.toml
index faba8598..788d6218 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -34,7 +34,7 @@ optional = true
 [tool.poetry.group.dev.dependencies]
 pytest = "^7.2.2"
 pytest-mock = "^3.10.0"
-Flask-WebTest = "^0.1.1"
+Flask-WebTest = "^0.1.3"
 freezegun = "^1.2.2"
 black = "^23.1.0"
 flake8 = "^6.0.0"
diff --git a/web/requirements.dev.txt b/web/requirements.dev.txt
index 5a82edf3..9fd4eddc 100644
--- a/web/requirements.dev.txt
+++ b/web/requirements.dev.txt
@@ -3,14 +3,14 @@ black==23.3.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 blinker==1.6.2 ; python_full_version >= "3.8.1" and python_version < "4.0"
 cfgv==3.3.1 ; python_full_version >= "3.8.1" and python_version < "4.0"
 click==8.1.3 ; python_full_version >= "3.8.1" and python_version < "4.0"
-colorama==0.4.6 ; python_full_version >= "3.8.1" and python_version < "4.0" and sys_platform == "win32" or python_full_version >= "3.8.1" and python_version < "4.0" and platform_system == "Windows"
+colorama==0.4.6 ; python_full_version >= "3.8.1" and python_version < "4.0" and (sys_platform == "win32" or platform_system == "Windows")
 coverage==7.2.4 ; python_full_version >= "3.8.1" and python_version < "4.0"
 coverage[toml]==7.2.4 ; python_full_version >= "3.8.1" and python_version < "4.0"
 distlib==0.3.6 ; python_full_version >= "3.8.1" and python_version < "4.0"
 exceptiongroup==1.1.1 ; python_full_version >= "3.8.1" and python_version < "3.11"
 filelock==3.12.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 flake8==6.0.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
-flask-webtest==0.1.1 ; python_full_version >= "3.8.1" and python_version < "4.0"
+flask-webtest==0.1.3 ; python_full_version >= "3.8.1" and python_version < "4.0"
 flask==2.2.5 ; python_full_version >= "3.8.1" and python_version < "4.0"
 freezegun==1.2.2 ; python_full_version >= "3.8.1" and python_version < "4.0"
 identify==2.5.23 ; python_full_version >= "3.8.1" and python_version < "4.0"
@@ -39,7 +39,7 @@ pyyaml==6.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 setuptools==67.7.2 ; python_full_version >= "3.8.1" and python_version < "4.0"
 six==1.16.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 soupsieve==2.4.1 ; python_full_version >= "3.8.1" and python_version < "4"
-tomli==2.0.1 ; python_full_version >= "3.8.1" and python_full_version <= "3.11.0a6"
+tomli==2.0.1 ; python_full_version >= "3.8.1" and python_version < "3.11"
 typing-extensions==4.5.0 ; python_full_version >= "3.8.1" and python_version < "3.10"
 virtualenv==20.23.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 waitress==2.1.2 ; python_full_version >= "3.8.1" and python_version < "4"

From f8a426830de242d8e1d7d2eba8c37a4a70149840 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
Date: Wed, 19 Jul 2023 10:28:17 +0200
Subject: [PATCH 04/24] test: added pytest-flask dev dependency

This allows reducing the boilerplate when writing unit tests,
among other things by making app contexts optional
---
 poetry.lock    | 21 ++++++++++++++++++++-
 pyproject.toml |  1 +
 2 files changed, 21 insertions(+), 1 deletion(-)

diff --git a/poetry.lock b/poetry.lock
index abf6cd7c..fbd2ccf7 100644
--- a/poetry.lock
+++ b/poetry.lock
@@ -1464,6 +1464,25 @@ files = [
 pytest = ">=5.0.0"
 python-dotenv = ">=0.9.1"
 
+[[package]]
+name = "pytest-flask"
+version = "1.2.0"
+description = "A set of py.test fixtures to test Flask applications."
+optional = false
+python-versions = ">=3.5"
+files = [
+    {file = "pytest-flask-1.2.0.tar.gz", hash = "sha256:46fde652f77777bf02dc91205aec4ce20cdf2acbbbd66a918ab91f5c14693d3d"},
+    {file = "pytest_flask-1.2.0-py3-none-any.whl", hash = "sha256:fe25b39ad0db09c3d1fe728edecf97ced85e774c775db259a6d25f0270a4e7c9"},
+]
+
+[package.dependencies]
+Flask = "*"
+pytest = ">=5.2"
+Werkzeug = ">=0.7"
+
+[package.extras]
+docs = ["Sphinx", "sphinx-rtd-theme"]
+
 [[package]]
 name = "pytest-mock"
 version = "3.10.0"
@@ -1956,4 +1975,4 @@ testing = ["big-O", "flake8 (<5)", "jaraco.functools", "jaraco.itertools", "more
 [metadata]
 lock-version = "2.0"
 python-versions = ">=3.8.1,<4.0"
-content-hash = "db46a32b1cf3eaf8b9efde0890780178a015d9ecc56f785c1939702277787a8e"
+content-hash = "7f2302ad2dfe4097e49ce0bf19467ddc2648b8631751fafee661125db40b827d"
diff --git a/pyproject.toml b/pyproject.toml
index 788d6218..870c6684 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -41,6 +41,7 @@ flake8 = "^6.0.0"
 pre-commit = "^3.1.1"
 pytest-cov = "^4.0.0"
 pytest-dotenv = "^0.5.2"
+pytest-flask = "^1.2.0"
 coverage = "^7.2.2"
 
 [build-system]

From 2cf98e1520142204d0626e9d90e3a8ab87ada786 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
Date: Wed, 19 Jul 2023 10:55:21 +0200
Subject: [PATCH 05/24] test: avoid using app_context in unit tests

This is made optional by flask-pytest.
---
 web/tests/conftest.py                |  10 +-
 web/tests/meeting/test_end.py        |   5 +-
 web/tests/meeting/test_join.py       |  99 ++++++++---------
 web/tests/meeting/test_meeting.py    | 156 +++++++++++++--------------
 web/tests/meeting/test_recordings.py |  10 +-
 web/tests/test_default.py            |  22 ++--
 web/tests/test_user.py               |  32 +++---
 7 files changed, 150 insertions(+), 184 deletions(-)

diff --git a/web/tests/conftest.py b/web/tests/conftest.py
index 53949da1..2099ea3c 100644
--- a/web/tests/conftest.py
+++ b/web/tests/conftest.py
@@ -69,18 +69,16 @@ def client_app(app):
 
 @pytest.fixture()
 def meeting(app, user):
-    with app.app_context():
-        meeting = Meeting(user=user)
-        meeting.save()
+    meeting = Meeting(user=user)
+    meeting.save()
 
     yield meeting
 
 
 @pytest.fixture()
 def user(app):
-    with app.app_context():
-        user = User(email="alice@domain.tld", given_name="Alice", family_name="Cooper")
-        user.save()
+    user = User(email="alice@domain.tld", given_name="Alice", family_name="Cooper")
+    user.save()
 
     yield user
 
diff --git a/web/tests/meeting/test_end.py b/web/tests/meeting/test_end.py
index d58ef5ce..2ac264b6 100644
--- a/web/tests/meeting/test_end.py
+++ b/web/tests/meeting/test_end.py
@@ -2,9 +2,8 @@
 
 
 def test_end_bbb_meeting(app, client_app, authenticated_user, meeting, mocker):
-    with app.app_context():
-        meeting = Meeting.query.get(1)
-        meeting_id = meeting.id
+    meeting = Meeting.query.get(1)
+    meeting_id = meeting.id
     mocked_end = mocker.patch("flaskr.models.BBB.end")
 
     response = client_app.post(
diff --git a/web/tests/meeting/test_join.py b/web/tests/meeting/test_join.py
index fd0f7f63..e7a54b4c 100644
--- a/web/tests/meeting/test_join.py
+++ b/web/tests/meeting/test_join.py
@@ -26,11 +26,10 @@ def authenticated_attendee(client_app, user, mocker):
 
 
 def test_signin_meeting(client_app, app, meeting):
-    with app.app_context():
-        user_id = 1
-        meeting = Meeting.query.get(1)
-        meeting_id = meeting.id
-        meeting_hash = meeting.get_hash("attendee")
+    user_id = 1
+    meeting = Meeting.query.get(1)
+    meeting_id = meeting.id
+    meeting_hash = meeting.get_hash("attendee")
 
     url = f"/meeting/signin/{meeting_id}/creator/{user_id}/hash/{meeting_hash}"
     response = client_app.get(url)
@@ -41,11 +40,10 @@ def test_signin_meeting(client_app, app, meeting):
 
 
 def test_signin_meeting_with_authenticated_attendee(client_app, app, meeting):
-    with app.app_context():
-        user_id = 1
-        meeting = Meeting.query.get(1)
-        meeting_id = meeting.id
-        meeting_hash = meeting.get_hash("authenticated")
+    user_id = 1
+    meeting = Meeting.query.get(1)
+    meeting_id = meeting.id
+    meeting_hash = meeting.get_hash("authenticated")
 
     url = f"/meeting/signin/{meeting_id}/creator/{user_id}/hash/{meeting_hash}"
     response = client_app.get(url)
@@ -57,9 +55,8 @@ def test_signin_meeting_with_authenticated_attendee(client_app, app, meeting):
 def test_join_meeting_as_authenticated_attendee(
     client_app, app, meeting, authenticated_attendee
 ):
-    with app.app_context():
-        meeting = Meeting.query.get(1)
-        meeting_id = meeting.id
+    meeting = Meeting.query.get(1)
+    meeting_id = meeting.id
 
     url = f"/meeting/join/{meeting_id}/authenticated"
     response = client_app.get(url)
@@ -72,11 +69,10 @@ def test_join_meeting_as_authenticated_attendee(
 def test_join_meeting_as_authenticated_attendee_with_fullname_suffix(
     client_app, app, meeting, authenticated_attendee, bbb_response
 ):
-    with app.app_context():
-        user_id = 1
-        meeting = Meeting.query.get(1)
-        meeting_id = meeting.id
-        meeting_hash = meeting.get_hash("authenticated")
+    user_id = 1
+    meeting = Meeting.query.get(1)
+    meeting_id = meeting.id
+    meeting_hash = meeting.get_hash("authenticated")
 
     response = client_app.post(
         "/meeting/join",
@@ -100,11 +96,10 @@ def test_join_meeting_as_authenticated_attendee_with_fullname_suffix(
 def test_join_meeting_as_authenticated_attendee_with_modified_fullname(
     client_app, app, meeting, authenticated_attendee, bbb_response
 ):
-    with app.app_context():
-        user_id = 1
-        meeting = Meeting.query.get(1)
-        meeting_id = meeting.id
-        meeting_hash = meeting.get_hash("authenticated")
+    user_id = 1
+    meeting = Meeting.query.get(1)
+    meeting_id = meeting.id
+    meeting_hash = meeting.get_hash("authenticated")
 
     response = client_app.post(
         "/meeting/join",
@@ -125,12 +120,11 @@ def test_join_meeting_as_authenticated_attendee_with_modified_fullname(
 
 
 def test_join_meeting(client_app, app, meeting, bbb_response):
-    with app.app_context():
-        user_id = 1
-        meeting = Meeting.query.get(1)
-        meeting_id = meeting.id
-        meeting_hash = meeting.get_hash("attendee")
-        fullname = "Bob"
+    user_id = 1
+    meeting = Meeting.query.get(1)
+    meeting_id = meeting.id
+    meeting_hash = meeting.get_hash("attendee")
+    fullname = "Bob"
 
     response = client_app.post(
         "/meeting/join",
@@ -151,13 +145,12 @@ def test_join_meeting(client_app, app, meeting, bbb_response):
 
 
 def test_join_mail_meeting(client_app, app, meeting, bbb_response):
-    with app.app_context():
-        user_id = 1
-        expiration = int(time.time()) + 1000
-        meeting = Meeting.query.get(1)
-        meeting_id = meeting.id
-        meeting_hash = meeting.get_mail_signin_hash(meeting_id, expiration)
-        fullname = "Bob"
+    user_id = 1
+    expiration = int(time.time()) + 1000
+    meeting = Meeting.query.get(1)
+    meeting_id = meeting.id
+    meeting_hash = meeting.get_mail_signin_hash(meeting_id, expiration)
+    fullname = "Bob"
 
     response = client_app.post(
         "/meeting/joinmail",
@@ -180,10 +173,9 @@ def test_join_mail_meeting(client_app, app, meeting, bbb_response):
 def test_join_meeting_as_role(
     client_app, app, authenticated_user, meeting, bbb_response
 ):
-    with app.app_context():
-        meeting = Meeting.query.get(1)
-        meeting_id = meeting.id
-        fullname = "Alice+Cooper"
+    meeting = Meeting.query.get(1)
+    meeting_id = meeting.id
+    fullname = "Alice+Cooper"
 
     response = client_app.get(f"/meeting/join/{meeting_id}/attendee")
 
@@ -205,9 +197,8 @@ def test_join_meeting_as_role__meeting_not_found(
 def test_join_meeting_as_role__not_attendee_or_moderator(
     client_app, app, authenticated_user, meeting, bbb_response
 ):
-    with app.app_context():
-        meeting = Meeting.query.get(1)
-        meeting_id = meeting.id
+    meeting = Meeting.query.get(1)
+    meeting_id = meeting.id
 
     response = client_app.get(f"/meeting/join/{meeting_id}/journalist")
 
@@ -216,12 +207,11 @@ def test_join_meeting_as_role__not_attendee_or_moderator(
 
 def test_waiting_meeting_with_a_fullname_containing_a_slash(client_app, app, meeting):
     fullname_suffix = "Service EN"
-    with app.app_context():
-        meeting = Meeting.query.get(1)
-        meeting_fake_id = meeting.fake_id
-        user_id = meeting.user.id
-        h = meeting.get_hash("attendee")
-        fullname = "Alice/Cooper"
+    meeting = Meeting.query.get(1)
+    meeting_fake_id = meeting.fake_id
+    user_id = meeting.user.id
+    h = meeting.get_hash("attendee")
+    fullname = "Alice/Cooper"
 
     with app.test_request_context():
         waiting_meeting_url = url_for(
@@ -239,12 +229,11 @@ def test_waiting_meeting_with_a_fullname_containing_a_slash(client_app, app, mee
 
 
 def test_waiting_meeting_with_empty_fullname_suffix(client_app, app, meeting):
-    with app.app_context():
-        meeting = Meeting.query.get(1)
-        meeting_fake_id = meeting.fake_id
-        user_id = meeting.user.id
-        h = meeting.get_hash("attendee")
-        fullname = "Alice/Cooper"
+    meeting = Meeting.query.get(1)
+    meeting_fake_id = meeting.fake_id
+    user_id = meeting.user.id
+    h = meeting.get_hash("attendee")
+    fullname = "Alice/Cooper"
 
     with app.test_request_context():
         waiting_meeting_url = url_for(
diff --git a/web/tests/meeting/test_meeting.py b/web/tests/meeting/test_meeting.py
index d10c3fcd..809d5a43 100644
--- a/web/tests/meeting/test_meeting.py
+++ b/web/tests/meeting/test_meeting.py
@@ -11,9 +11,8 @@ def mocked_is_meeting_running(mocker):
 
 
 def test_show_meeting(client_app, app, authenticated_user, meeting, bbb_response):
-    with app.app_context():
-        meeting = Meeting.query.get(1)
-        meeting_id = meeting.id
+    meeting = Meeting.query.get(1)
+    meeting_id = meeting.id
 
     response = client_app.get(f"/meeting/show/{meeting_id}")
 
@@ -24,9 +23,8 @@ def test_show_meeting(client_app, app, authenticated_user, meeting, bbb_response
 def test_show_meeting_recording(
     client_app, app, authenticated_user, meeting, bbb_response
 ):
-    with app.app_context():
-        meeting = Meeting.query.get(1)
-        meeting_id = meeting.id
+    meeting = Meeting.query.get(1)
+    meeting_id = meeting.id
 
     response = client_app.get(f"/meeting/recordings/{meeting_id}")
 
@@ -50,9 +48,8 @@ def test_new_meeting_when_recording_not_configured(client_app, app, authenticate
 
 
 def test_edit_meeting(client_app, app, authenticated_user, meeting, bbb_response):
-    with app.app_context():
-        meeting = Meeting.query.get(1)
-        meeting_id = meeting.id
+    meeting = Meeting.query.get(1)
+    meeting_id = meeting.id
 
     response = client_app.get(f"/meeting/edit/{meeting_id}")
 
@@ -93,38 +90,36 @@ def test_save_new_meeting(
     assert response.status_code == 302
     assert "welcome" in response.location
 
-    with app.app_context():
-        meeting = Meeting.query.get(1)
-
-        assert meeting.user_id == 1
-        assert meeting.name == "Mon meeting de test"
-        assert meeting.welcome == "Bienvenue dans mon meeting de test"
-        assert meeting.maxParticipants == 5
-        assert meeting.duration == 60
-        assert meeting.guestPolicy is True
-        assert meeting.webcamsOnlyForModerator is True
-        assert meeting.muteOnStart is True
-        assert meeting.lockSettingsDisableCam is True
-        assert meeting.lockSettingsDisableMic is True
-        assert meeting.lockSettingsDisablePrivateChat is True
-        assert meeting.lockSettingsDisablePublicChat is True
-        assert meeting.lockSettingsDisableNote is True
-        assert meeting.moderatorOnlyMessage == "Bienvenue aux modérateurs"
-        assert meeting.logoutUrl == "https://log.out"
-        assert meeting.moderatorPW == "Motdepasse1"
-        assert meeting.attendeePW == "Motdepasse2"
-        assert meeting.record is True
-        assert meeting.autoStartRecording is True
-        assert meeting.allowStartStopRecording is True
+    meeting = Meeting.query.get(1)
+
+    assert meeting.user_id == 1
+    assert meeting.name == "Mon meeting de test"
+    assert meeting.welcome == "Bienvenue dans mon meeting de test"
+    assert meeting.maxParticipants == 5
+    assert meeting.duration == 60
+    assert meeting.guestPolicy is True
+    assert meeting.webcamsOnlyForModerator is True
+    assert meeting.muteOnStart is True
+    assert meeting.lockSettingsDisableCam is True
+    assert meeting.lockSettingsDisableMic is True
+    assert meeting.lockSettingsDisablePrivateChat is True
+    assert meeting.lockSettingsDisablePublicChat is True
+    assert meeting.lockSettingsDisableNote is True
+    assert meeting.moderatorOnlyMessage == "Bienvenue aux modérateurs"
+    assert meeting.logoutUrl == "https://log.out"
+    assert meeting.moderatorPW == "Motdepasse1"
+    assert meeting.attendeePW == "Motdepasse2"
+    assert meeting.record is True
+    assert meeting.autoStartRecording is True
+    assert meeting.allowStartStopRecording is True
 
 
 def test_save_existing_meeting(
     app, client_app, authenticated_user, meeting, mocked_is_meeting_running
 ):
-    with app.app_context():
-        meeting = Meeting.query.get(1)
-        meeting_id = meeting.id
-        assert len(Meeting.query.all()) == 1
+    meeting = Meeting.query.get(1)
+    meeting_id = meeting.id
+    assert len(Meeting.query.all()) == 1
 
     data = MEETING_DATA.copy()
     data["id"] = meeting_id
@@ -137,31 +132,30 @@ def test_save_existing_meeting(
     assert response.status_code == 302
     assert "welcome" in response.location
 
-    with app.app_context():
-        assert len(Meeting.query.all()) == 1
-
-        meeting = Meeting.query.get(1)
-
-        assert meeting.user_id == 1
-        assert not meeting.name  # Name can not be edited
-        assert meeting.welcome == "Bienvenue dans mon meeting de test"
-        assert meeting.maxParticipants == 5
-        assert meeting.duration == 60
-        assert meeting.guestPolicy is True
-        assert meeting.webcamsOnlyForModerator is True
-        assert meeting.muteOnStart is True
-        assert meeting.lockSettingsDisableCam is True
-        assert meeting.lockSettingsDisableMic is True
-        assert meeting.lockSettingsDisablePrivateChat is True
-        assert meeting.lockSettingsDisablePublicChat is True
-        assert meeting.lockSettingsDisableNote is True
-        assert meeting.moderatorOnlyMessage == "Bienvenue aux modérateurs"
-        assert meeting.logoutUrl == "https://log.out"
-        assert meeting.moderatorPW == "Motdepasse1"
-        assert meeting.attendeePW == "Motdepasse2"
-        assert meeting.record is True
-        assert meeting.autoStartRecording is True
-        assert meeting.allowStartStopRecording is True
+    assert len(Meeting.query.all()) == 1
+
+    meeting = Meeting.query.get(1)
+
+    assert meeting.user_id == 1
+    assert not meeting.name  # Name can not be edited
+    assert meeting.welcome == "Bienvenue dans mon meeting de test"
+    assert meeting.maxParticipants == 5
+    assert meeting.duration == 60
+    assert meeting.guestPolicy is True
+    assert meeting.webcamsOnlyForModerator is True
+    assert meeting.muteOnStart is True
+    assert meeting.lockSettingsDisableCam is True
+    assert meeting.lockSettingsDisableMic is True
+    assert meeting.lockSettingsDisablePrivateChat is True
+    assert meeting.lockSettingsDisablePublicChat is True
+    assert meeting.lockSettingsDisableNote is True
+    assert meeting.moderatorOnlyMessage == "Bienvenue aux modérateurs"
+    assert meeting.logoutUrl == "https://log.out"
+    assert meeting.moderatorPW == "Motdepasse1"
+    assert meeting.attendeePW == "Motdepasse2"
+    assert meeting.record is True
+    assert meeting.autoStartRecording is True
+    assert meeting.allowStartStopRecording is True
 
 
 def test_save_moderatorOnlyMessage_too_long(
@@ -183,8 +177,7 @@ def test_save_moderatorOnlyMessage_too_long(
     assert "Le formulaire contient des erreurs" in response_html
     assert moderator_only_message in response_html
     assert "Le message est trop long" in response_html
-    with app.app_context():
-        assert not Meeting.query.all()
+    assert not Meeting.query.all()
 
 
 def test_save_no_recording_by_default(
@@ -197,11 +190,10 @@ def test_save_no_recording_by_default(
     response = client_app.post("/meeting/save", data=data)
 
     assert response.status_code == 302
-    with app.app_context():
-        meeting = Meeting.query.get(1)
-        assert meeting.record is False
-        assert meeting.autoStartRecording is False
-        assert meeting.allowStartStopRecording is False
+    meeting = Meeting.query.get(1)
+    assert meeting.record is False
+    assert meeting.autoStartRecording is False
+    assert meeting.allowStartStopRecording is False
 
 
 def test_save_meeting_in_no_recording_environment(
@@ -217,10 +209,9 @@ def test_save_meeting_in_no_recording_environment(
     assert response.status_code == 302
     assert "welcome" in response.location
 
-    with app.app_context():
-        assert len(Meeting.query.all()) == 1
-        meeting = Meeting.query.get(1)
-        assert meeting.record is False
+    assert len(Meeting.query.all()) == 1
+    meeting = Meeting.query.get(1)
+    assert meeting.record is False
 
 
 def test_create(app, meeting, mocker):
@@ -234,7 +225,7 @@ class Resp:
         "flaskr.tasks.background_upload.delay", return_value=True
     )
 
-    with app.app_context(), app.test_request_context():
+    with app.test_request_context():
         meeting = Meeting.query.get(1)
 
         meeting.name = "My Meeting"
@@ -320,10 +311,9 @@ def test_create_without_logout_url_gets_default(
     )
 
     assert response.status_code == 302
-    with app.app_context():
-        meeting = Meeting.query.get(1)
-        assert meeting
-        assert meeting.logoutUrl == app.config["MEETING_LOGOUT_URL"]
+    meeting = Meeting.query.get(1)
+    assert meeting
+    assert meeting.logoutUrl == app.config["MEETING_LOGOUT_URL"]
 
 
 def test_create_quick_meeting(app, monkeypatch, user, mocker):
@@ -334,7 +324,7 @@ class Resp:
 
     mocked_bbb_create_request = mocker.patch("requests.post", return_value=Resp)
     mocker.patch("flaskr.tasks.background_upload.delay", return_value=True)
-    with app.app_context(), app.test_request_context():
+    with app.test_request_context():
         monkeypatch.setattr("flaskr.models.User.id", 1)
         monkeypatch.setattr("flaskr.models.User.hash", "hash")
         meeting = get_quick_meeting_from_user_and_random_string(user)
@@ -363,9 +353,8 @@ class Resp:
 
 def test_edit_files_meeting(client_app, app, authenticated_user, meeting, bbb_response):
     app.config["FILE_SHARING"] = True
-    with app.app_context():
-        meeting = Meeting.query.get(1)
-        meeting_id = meeting.id
+    meeting = Meeting.query.get(1)
+    meeting_id = meeting.id
 
     response = client_app.get(f"/meeting/files/{meeting_id}")
 
@@ -388,9 +377,8 @@ def test_deactivated_meeting_files_cannot_edit(
     client_app, app, authenticated_user, meeting, bbb_response
 ):
     app.config["FILE_SHARING"] = False
-    with app.app_context():
-        meeting = Meeting.query.get(1)
-        meeting_id = meeting.id
+    meeting = Meeting.query.get(1)
+    meeting_id = meeting.id
 
     response = client_app.get(f"/meeting/files/{meeting_id}")
 
diff --git a/web/tests/meeting/test_recordings.py b/web/tests/meeting/test_recordings.py
index 13fcb76b..3a52e209 100644
--- a/web/tests/meeting/test_recordings.py
+++ b/web/tests/meeting/test_recordings.py
@@ -116,9 +116,8 @@ class Resp:
 
 
 def test_get_recordings(app, meeting, bbb_getRecordings_response):
-    with app.app_context():
-        meeting = Meeting.query.get(1)
-        recordings = meeting.bbb.get_recordings()
+    meeting = Meeting.query.get(1)
+    recordings = meeting.bbb.get_recordings()
 
     assert len(recordings) == 2
     first_recording = recordings[0]
@@ -158,9 +157,8 @@ class Resp:
 
     mocked_bbb_request = mocker.patch("requests.get", return_value=Resp)
 
-    with app.app_context():
-        meeting = Meeting.query.get(1)
-        meeting_id = meeting.id
+    meeting = Meeting.query.get(1)
+    meeting_id = meeting.id
 
     response = client_app.post(
         f"meeting/{meeting_id}/recordings/recording_id",
diff --git a/web/tests/test_default.py b/web/tests/test_default.py
index a1c02df1..3e19adf0 100644
--- a/web/tests/test_default.py
+++ b/web/tests/test_default.py
@@ -1,6 +1,3 @@
-from flask import session
-
-
 def test_root__anonymous_user(client_app):
     response = client_app.get("/")
 
@@ -42,20 +39,19 @@ def test_home__authenticated_user(client_app, mocker, authenticated_user):
 
 
 def test_change_language(client_app):
-    with client_app:
-        response = client_app.get("/faq?lang=fr")
-
-        assert response.status_code == 200
+    response = client_app.get("/faq?lang=fr")
+    assert response.status_code == 200
+    with client_app.session_transaction() as session:
         assert session["lang"] == "fr"
 
-        response = client_app.get("/faq?lang=uk")
-
-        assert response.status_code == 200
+    response = client_app.get("/faq?lang=uk")
+    assert response.status_code == 200
+    with client_app.session_transaction() as session:
         assert session["lang"] == "uk"
 
-        response = client_app.get("/faq")
-
-        assert response.status_code == 200
+    response = client_app.get("/faq")
+    assert response.status_code == 200
+    with client_app.session_transaction() as session:
         assert session["lang"] == "uk"
 
 
diff --git a/web/tests/test_user.py b/web/tests/test_user.py
index fa938e01..03091759 100644
--- a/web/tests/test_user.py
+++ b/web/tests/test_user.py
@@ -4,38 +4,36 @@
 from flaskr.models import User, get_or_create_user
 
 
-def test_get_or_create_user(app):
+def test_get_or_create_user(client_app):
     user_info = {
         "given_name": "Alice",
         "family_name": "Cooper",
         "preferred_username": "alice",
         "email": "alice@mydomain.test",
     }
-    with app.app_context():
-        get_or_create_user(user_info)
+    get_or_create_user(user_info)
 
-        user = User.query.get(1)
-        assert user.given_name == "Alice"
-        assert user.family_name == "Cooper"
-        assert user.email == "alice@mydomain.test"
-        assert user.last_connection_utc_datetime.date() == date.today()
+    user = User.query.get(1)
+    assert user.given_name == "Alice"
+    assert user.family_name == "Cooper"
+    assert user.email == "alice@mydomain.test"
+    assert user.last_connection_utc_datetime.date() == date.today()
 
 
-def test_update_last_connection_if_more_than_24h(app):
+def test_update_last_connection_if_more_than_24h(client_app):
     user_info = {
         "given_name": "Alice",
         "family_name": "Cooper",
         "preferred_username": "alice",
         "email": "alice@mydomain.test",
     }
-    with app.app_context():
-        with freeze_time("2021-08-10"):
-            get_or_create_user(user_info)
+    with freeze_time("2021-08-10"):
+        get_or_create_user(user_info)
 
-        with freeze_time("2021-08-11"):
-            user = User.query.get(1)
-            assert user.last_connection_utc_datetime.date() == date(2021, 8, 10)
+    with freeze_time("2021-08-11"):
+        user = User.query.get(1)
+        assert user.last_connection_utc_datetime.date() == date(2021, 8, 10)
 
-            get_or_create_user(user_info)
+        get_or_create_user(user_info)
 
-            assert user.last_connection_utc_datetime.date() == date(2021, 8, 11)
+        assert user.last_connection_utc_datetime.date() == date(2021, 8, 11)

From cd9a914d5b3782335270828ade7b62df6035bff9 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
Date: Wed, 19 Jul 2023 11:55:15 +0200
Subject: [PATCH 06/24] chore: bump to flask-wtf 1.1.1

---
 poetry.lock    | 10 +++++-----
 pyproject.toml |  2 +-
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/poetry.lock b/poetry.lock
index fbd2ccf7..5d35524c 100644
--- a/poetry.lock
+++ b/poetry.lock
@@ -702,13 +702,13 @@ tests = ["flask-sqlalchemy"]
 
 [[package]]
 name = "flask-wtf"
-version = "1.0.1"
+version = "1.1.1"
 description = "Form rendering, validation, and CSRF protection for Flask with WTForms."
 optional = false
-python-versions = ">=3.6"
+python-versions = ">=3.7"
 files = [
-    {file = "Flask-WTF-1.0.1.tar.gz", hash = "sha256:34fe5c6fee0f69b50e30f81a3b7ea16aa1492a771fe9ad0974d164610c09a6c9"},
-    {file = "Flask_WTF-1.0.1-py3-none-any.whl", hash = "sha256:9d733658c80be551ce7d5bc13c7a7ac0d80df509be1e23827c847d9520f4359a"},
+    {file = "Flask-WTF-1.1.1.tar.gz", hash = "sha256:41c4244e9ae626d63bed42ae4785b90667b885b1535d5a4095e1f63060d12aa9"},
+    {file = "Flask_WTF-1.1.1-py3-none-any.whl", hash = "sha256:7887d6f1ebb3e17bf648647422f0944c9a469d0fcf63e3b66fb9a83037e38b2c"},
 ]
 
 [package.dependencies]
@@ -1975,4 +1975,4 @@ testing = ["big-O", "flake8 (<5)", "jaraco.functools", "jaraco.itertools", "more
 [metadata]
 lock-version = "2.0"
 python-versions = ">=3.8.1,<4.0"
-content-hash = "7f2302ad2dfe4097e49ce0bf19467ddc2648b8631751fafee661125db40b827d"
+content-hash = "206ad45bcc4e2a5a47585e5eeea78e41e58878ef830af8125b0ba65b4296113b"
diff --git a/pyproject.toml b/pyproject.toml
index 870c6684..e7058220 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -23,7 +23,7 @@ flask-babel = "2.0.0"
 celery = "5.2.7"
 flask = "2.2.5"
 flask-caching = "^2.0.2"
-flask-wtf = "1.0.1"
+flask-wtf = "^1.1.1"
 redis = "4.4.4"
 requests = "^2.27.1"
 werkzeug = "^2.3.4"

From 53a90fa0a5f119d8e6d095d336a254ebf173c25c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
Date: Wed, 19 Jul 2023 11:57:49 +0200
Subject: [PATCH 07/24] refactor: add a name to the flask blueprint

This will be mandatory with flask 2.3
---
 web/flaskr/models.py                         |  6 +++---
 web/flaskr/routes.py                         | 10 ++++++----
 web/flaskr/templates/meeting/end.html        |  4 ++--
 web/flaskr/templates/meeting/recordings.html |  2 +-
 web/tests/meeting/test_join.py               |  4 ++--
 5 files changed, 14 insertions(+), 12 deletions(-)

diff --git a/web/flaskr/models.py b/web/flaskr/models.py
index 6f78fc73..4e175a68 100755
--- a/web/flaskr/models.py
+++ b/web/flaskr/models.py
@@ -712,7 +712,7 @@ def get_join_url(self, meeting_role, fullname, fullname_suffix="", create=False)
             )
             return self.bbb.prepare_request_to_join_bbb(meeting_role, nickname).url
         return url_for(
-            "waiting_meeting",
+            "routes.waiting_meeting",
             meeting_fake_id=self.fake_id,
             user_id=self.user.id,
             h=self.get_hash(meeting_role),
@@ -722,7 +722,7 @@ def get_join_url(self, meeting_role, fullname, fullname_suffix="", create=False)
 
     def get_signin_url(self, meeting_role):
         return current_app.config["SERVER_FQDN"] + url_for(
-            "signin_meeting",
+            "routes.signin_meeting",
             meeting_fake_id=self.fake_id,
             user_id=self.user.id,
             h=self.get_hash(meeting_role),
@@ -740,7 +740,7 @@ def get_mail_signin_url(self):
         ]  # remove milliseconds
         hash_param = self.get_mail_signin_hash(self.fake_id, expiration)
         return current_app.config["SERVER_FQDN"] + url_for(
-            "signin_mail_meeting",
+            "routes.signin_mail_meeting",
             meeting_fake_id=self.fake_id,
             expiration=expiration,
             h=hash_param,
diff --git a/web/flaskr/routes.py b/web/flaskr/routes.py
index 2112ec87..3fdc27ba 100755
--- a/web/flaskr/routes.py
+++ b/web/flaskr/routes.py
@@ -85,7 +85,7 @@
 from .templates.content import FAQ_CONTENT
 
 
-bp = Blueprint("", __name__)
+bp = Blueprint("routes", __name__)
 
 
 user_provider_configuration = ProviderConfiguration(
@@ -95,6 +95,7 @@
         client_id=current_app.config["OIDC_CLIENT_ID"],
         client_secret=current_app.config["OIDC_CLIENT_SECRET"],
         token_endpoint_auth_method=current_app.config["OIDC_CLIENT_AUTH_METHOD"],
+        post_logout_redirect_uris=[f'{current_app.config.get("SERVER_FQDN")}/logout'],
     ),
     auth_request_params={"scope": current_app.config["OIDC_SCOPES"]},
 )
@@ -107,6 +108,7 @@
         token_endpoint_auth_method=current_app.config.get(
             "OIDC_ATTENDEE_CLIENT_AUTH_METHOD"
         ),
+        post_logout_redirect_uris=[f'{current_app.config.get("SERVER_FQDN")}/logout'],
     ),
     auth_request_params={
         "scope": current_app.config.get("OIDC_ATTENDEE_SCOPES")
@@ -675,7 +677,7 @@ def update_recording_name(meeting_id, recording_id):
             )
     else:
         flash("Vous ne pouvez pas modifier cet enregistrement", "error")
-    return redirect(url_for("show_meeting_recording", meeting_id=meeting_id))
+    return redirect(url_for("routes.show_meeting_recording", meeting_id=meeting_id))
 
 
 @bp.route("/meeting/new", methods=["GET"])
@@ -1460,7 +1462,7 @@ def signin_meeting(meeting_fake_id, user_id, h):
 
     if role == "authenticated":
         return redirect(
-            url_for("join_meeting_as_authenticated", meeting_id=meeting_fake_id)
+            url_for("routes.join_meeting_as_authenticated", meeting_id=meeting_fake_id)
         )
     elif not role:
         return redirect("/")
@@ -1586,7 +1588,7 @@ def join_meeting_as_authenticated(meeting_id):
     fullname = get_authenticated_attendee_fullname()
     return redirect(
         url_for(
-            "waiting_meeting",
+            "routes.waiting_meeting",
             meeting_fake_id=meeting_id,
             user_id=meeting.user.id,
             h=meeting.get_hash(role),
diff --git a/web/flaskr/templates/meeting/end.html b/web/flaskr/templates/meeting/end.html
index ebbdb272..a3a2169b 100644
--- a/web/flaskr/templates/meeting/end.html
+++ b/web/flaskr/templates/meeting/end.html
@@ -13,10 +13,10 @@
 <form action="/meeting/end" method="POST">
     {{ form.hidden_tag() }}
     <button type="submit" class="fr-btn fr-btn--primary" name="submit_force_renew">Mettre fin {{ to_the_meeting }} en cours</button>
-    <a href="{{ url_for('welcome') }}" class="fr-btn fr-btn--secondary fr-mb-1w">Patienter jusqu'à la fin {{ of_the_meeting }}</a>
+    <a href="{{ url_for('routes.welcome') }}" class="fr-btn fr-btn--secondary fr-mb-1w">Patienter jusqu'à la fin {{ of_the_meeting }}</a>
 </form>
 {% endblock %}
 
 {% block footer %}
     {% include 'footer.html' %}
-{% endblock %}
\ No newline at end of file
+{% endblock %}
diff --git a/web/flaskr/templates/meeting/recordings.html b/web/flaskr/templates/meeting/recordings.html
index 05f20bf3..2b36bfd4 100644
--- a/web/flaskr/templates/meeting/recordings.html
+++ b/web/flaskr/templates/meeting/recordings.html
@@ -99,7 +99,7 @@ <h3>
     <!-- Renommer video -->
     <div class="modal-template" id="rename-video-{{ r.recordID }}">
         <div class="modal-body">
-            <form method="POST" action="{{ url_for('update_recording_name', meeting_id=meeting.id, recording_id=r.recordID) }}">
+            <form method="POST" action="{{ url_for('routes.update_recording_name', meeting_id=meeting.id, recording_id=r.recordID) }}">
                 {% include 'meeting/csrf.html' %}
                 <div class="fr-input-group">
                     {{ form.name.label(class_="fr-label") }}
diff --git a/web/tests/meeting/test_join.py b/web/tests/meeting/test_join.py
index e7a54b4c..aa5d2cea 100644
--- a/web/tests/meeting/test_join.py
+++ b/web/tests/meeting/test_join.py
@@ -215,7 +215,7 @@ def test_waiting_meeting_with_a_fullname_containing_a_slash(client_app, app, mee
 
     with app.test_request_context():
         waiting_meeting_url = url_for(
-            "waiting_meeting",
+            "routes.waiting_meeting",
             meeting_fake_id=meeting_fake_id,
             user_id=user_id,
             h=h,
@@ -237,7 +237,7 @@ def test_waiting_meeting_with_empty_fullname_suffix(client_app, app, meeting):
 
     with app.test_request_context():
         waiting_meeting_url = url_for(
-            "waiting_meeting",
+            "routes.waiting_meeting",
             meeting_fake_id=meeting_fake_id,
             user_id=user_id,
             h=h,

From 93cb3c808269266de0dcb62d17a38091d9ef66a6 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
Date: Wed, 19 Jul 2023 13:16:09 +0200
Subject: [PATCH 08/24] chore: ensure flask version stays under 2.3

There is an incompatibility between flask-webtest 0.1.3 and flask 2.3
https://github.com/level12/flask-webtest/issues/22
---
 poetry.lock              | 12 ++++++------
 pyproject.toml           |  4 ++--
 web/requirements.dev.txt |  3 ++-
 3 files changed, 10 insertions(+), 9 deletions(-)

diff --git a/poetry.lock b/poetry.lock
index 5d35524c..0fde8741 100644
--- a/poetry.lock
+++ b/poetry.lock
@@ -1925,20 +1925,20 @@ tests = ["PasteDeploy", "WSGIProxy2", "coverage", "pyquery", "pytest", "pytest-c
 
 [[package]]
 name = "werkzeug"
-version = "2.3.4"
+version = "2.2.3"
 description = "The comprehensive WSGI web application library."
 optional = false
-python-versions = ">=3.8"
+python-versions = ">=3.7"
 files = [
-    {file = "Werkzeug-2.3.4-py3-none-any.whl", hash = "sha256:48e5e61472fee0ddee27ebad085614ebedb7af41e88f687aaf881afb723a162f"},
-    {file = "Werkzeug-2.3.4.tar.gz", hash = "sha256:1d5a58e0377d1fe39d061a5de4469e414e78ccb1e1e59c0f5ad6fa1c36c52b76"},
+    {file = "Werkzeug-2.2.3-py3-none-any.whl", hash = "sha256:56433961bc1f12533306c624f3be5e744389ac61d722175d543e1751285da612"},
+    {file = "Werkzeug-2.2.3.tar.gz", hash = "sha256:2e1ccc9417d4da358b9de6f174e3ac094391ea1d4fbef2d667865d819dfd0afe"},
 ]
 
 [package.dependencies]
 MarkupSafe = ">=2.1.1"
 
 [package.extras]
-watchdog = ["watchdog (>=2.3)"]
+watchdog = ["watchdog"]
 
 [[package]]
 name = "wtforms"
@@ -1975,4 +1975,4 @@ testing = ["big-O", "flake8 (<5)", "jaraco.functools", "jaraco.itertools", "more
 [metadata]
 lock-version = "2.0"
 python-versions = ">=3.8.1,<4.0"
-content-hash = "206ad45bcc4e2a5a47585e5eeea78e41e58878ef830af8125b0ba65b4296113b"
+content-hash = "03208fa9d7633ad1403d2bb623dba2582f62dd7633a7a4aca616baa50951b2d9"
diff --git a/pyproject.toml b/pyproject.toml
index e7058220..a1d684b4 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -21,12 +21,12 @@ webdavclient3 = "3.14.6"
 filetype = "^1.2.0"
 flask-babel = "2.0.0"
 celery = "5.2.7"
-flask = "2.2.5"
+flask = "<2.3"
 flask-caching = "^2.0.2"
 flask-wtf = "^1.1.1"
 redis = "4.4.4"
 requests = "^2.27.1"
-werkzeug = "^2.3.4"
+werkzeug = "<2.3"
 
 [tool.poetry.group.dev]
 optional = true
diff --git a/web/requirements.dev.txt b/web/requirements.dev.txt
index 9fd4eddc..a0d7eb18 100644
--- a/web/requirements.dev.txt
+++ b/web/requirements.dev.txt
@@ -31,6 +31,7 @@ pycodestyle==2.10.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 pyflakes==3.0.1 ; python_full_version >= "3.8.1" and python_version < "4.0"
 pytest-cov==4.0.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 pytest-dotenv==0.5.2 ; python_full_version >= "3.8.1" and python_version < "4.0"
+pytest-flask==1.2.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 pytest-mock==3.10.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 pytest==7.3.1 ; python_full_version >= "3.8.1" and python_version < "4.0"
 python-dateutil==2.8.2 ; python_full_version >= "3.8.1" and python_version < "4.0"
@@ -45,5 +46,5 @@ virtualenv==20.23.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 waitress==2.1.2 ; python_full_version >= "3.8.1" and python_version < "4"
 webob==1.8.7 ; python_full_version >= "3.8.1" and python_version < "4"
 webtest==3.0.0 ; python_full_version >= "3.8.1" and python_version < "4"
-werkzeug==2.3.4 ; python_full_version >= "3.8.1" and python_version < "4.0"
+werkzeug==2.2.3 ; python_full_version >= "3.8.1" and python_version < "4.0"
 zipp==3.15.0 ; python_full_version >= "3.8.1" and python_version < "3.10"

From c6cd3bd79bce6bf06c4887789e819cd6a2cf5ad4 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
Date: Wed, 19 Jul 2023 13:18:36 +0200
Subject: [PATCH 09/24] test: use webtest instead of the default flask test
 client

This brings a lot of helpers for testing, including form filling
---
 web/tests/conftest.py                |  5 ++--
 web/tests/meeting/test_end.py        |  2 +-
 web/tests/meeting/test_join.py       | 24 ++++++++----------
 web/tests/meeting/test_meeting.py    | 36 +++++++++++++--------------
 web/tests/meeting/test_recordings.py |  4 +--
 web/tests/test_default.py            | 37 +++++++++++++++-------------
 6 files changed, 53 insertions(+), 55 deletions(-)

diff --git a/web/tests/conftest.py b/web/tests/conftest.py
index 2099ea3c..5cf04ec1 100644
--- a/web/tests/conftest.py
+++ b/web/tests/conftest.py
@@ -5,6 +5,7 @@
 from flask import session
 from flaskr import create_app
 from flask_migrate import Migrate
+from flask_webtest import TestApp
 
 import flaskr.utils
 
@@ -59,12 +60,12 @@ def app(mocker):
         migrate = Migrate(app, db, compare_type=True)
         db.create_all()
 
-    yield app
+    return app
 
 
 @pytest.fixture()
 def client_app(app):
-    return app.test_client()
+    return TestApp(app)
 
 
 @pytest.fixture()
diff --git a/web/tests/meeting/test_end.py b/web/tests/meeting/test_end.py
index 2ac264b6..ea03fef7 100644
--- a/web/tests/meeting/test_end.py
+++ b/web/tests/meeting/test_end.py
@@ -8,7 +8,7 @@ def test_end_bbb_meeting(app, client_app, authenticated_user, meeting, mocker):
 
     response = client_app.post(
         "/meeting/end",
-        data={"meeting_id": meeting_id},
+        {"meeting_id": meeting_id},
     )
 
     assert mocked_end.called
diff --git a/web/tests/meeting/test_join.py b/web/tests/meeting/test_join.py
index aa5d2cea..d3ef9609 100644
--- a/web/tests/meeting/test_join.py
+++ b/web/tests/meeting/test_join.py
@@ -32,11 +32,11 @@ def test_signin_meeting(client_app, app, meeting):
     meeting_hash = meeting.get_hash("attendee")
 
     url = f"/meeting/signin/{meeting_id}/creator/{user_id}/hash/{meeting_hash}"
-    response = client_app.get(url)
+    response = client_app.get(url, extra_environ={"REMOTE_ADDR": "127.0.0.1"})
 
     assert response.status_code == 200
     form_action_url = "/meeting/join"
-    assert form_action_url in response.data.decode()
+    response.mustcontain(form_action_url)
 
 
 def test_signin_meeting_with_authenticated_attendee(client_app, app, meeting):
@@ -46,7 +46,7 @@ def test_signin_meeting_with_authenticated_attendee(client_app, app, meeting):
     meeting_hash = meeting.get_hash("authenticated")
 
     url = f"/meeting/signin/{meeting_id}/creator/{user_id}/hash/{meeting_hash}"
-    response = client_app.get(url)
+    response = client_app.get(url, extra_environ={"REMOTE_ADDR": "127.0.0.1"})
 
     assert response.status_code == 302
     assert response.location.endswith("/meeting/join/1/authenticated")
@@ -76,7 +76,7 @@ def test_join_meeting_as_authenticated_attendee_with_fullname_suffix(
 
     response = client_app.post(
         "/meeting/join",
-        data={
+        {
             "fullname": "Bob Dylan",
             "meeting_fake_id": meeting_id,
             "user_id": user_id,
@@ -103,7 +103,7 @@ def test_join_meeting_as_authenticated_attendee_with_modified_fullname(
 
     response = client_app.post(
         "/meeting/join",
-        data={
+        {
             "fullname": "toto",
             "meeting_fake_id": meeting_id,
             "user_id": user_id,
@@ -128,7 +128,7 @@ def test_join_meeting(client_app, app, meeting, bbb_response):
 
     response = client_app.post(
         "/meeting/join",
-        data={
+        {
             "fullname": fullname,
             "meeting_fake_id": meeting_id,
             "user_id": user_id,
@@ -154,7 +154,7 @@ def test_join_mail_meeting(client_app, app, meeting, bbb_response):
 
     response = client_app.post(
         "/meeting/joinmail",
-        data={
+        {
             "fullname": fullname,
             "meeting_fake_id": meeting_id,
             "user_id": user_id,
@@ -189,9 +189,7 @@ def test_join_meeting_as_role(
 def test_join_meeting_as_role__meeting_not_found(
     client_app, app, authenticated_user, bbb_response
 ):
-    response = client_app.get(f"/meeting/join/321/attendee")
-
-    assert response.status_code == 404
+    client_app.get(f"/meeting/join/321/attendee", status=404)
 
 
 def test_join_meeting_as_role__not_attendee_or_moderator(
@@ -200,9 +198,7 @@ def test_join_meeting_as_role__not_attendee_or_moderator(
     meeting = Meeting.query.get(1)
     meeting_id = meeting.id
 
-    response = client_app.get(f"/meeting/join/{meeting_id}/journalist")
-
-    assert response.status_code == 404
+    client_app.get(f"/meeting/join/{meeting_id}/journalist", status=404)
 
 
 def test_waiting_meeting_with_a_fullname_containing_a_slash(client_app, app, meeting):
@@ -225,7 +221,7 @@ def test_waiting_meeting_with_a_fullname_containing_a_slash(client_app, app, mee
     response = client_app.get(waiting_meeting_url)
 
     assert response.status_code == 200
-    assert fullname in response.get_data(as_text=True)
+    response.mustcontain(fullname)
 
 
 def test_waiting_meeting_with_empty_fullname_suffix(client_app, app, meeting):
diff --git a/web/tests/meeting/test_meeting.py b/web/tests/meeting/test_meeting.py
index 809d5a43..de3d8e2d 100644
--- a/web/tests/meeting/test_meeting.py
+++ b/web/tests/meeting/test_meeting.py
@@ -17,7 +17,7 @@ def test_show_meeting(client_app, app, authenticated_user, meeting, bbb_response
     response = client_app.get(f"/meeting/show/{meeting_id}")
 
     assert response.status_code == 200
-    assert "<!-- test show meeting -->" in response.data.decode()
+    response.mustcontain("<!-- test show meeting -->")
 
 
 def test_show_meeting_recording(
@@ -29,14 +29,14 @@ def test_show_meeting_recording(
     response = client_app.get(f"/meeting/recordings/{meeting_id}")
 
     assert response.status_code == 200
-    assert "<!-- test show meeting recording -->" in response.data.decode()
+    response.mustcontain("<!-- test show meeting recording -->")
 
 
 def test_new_meeting(client_app, authenticated_user):
     response = client_app.get("/meeting/new")
 
     assert response.status_code == 200
-    assert "<!-- test page wizard -->" in response.data.decode()
+    response.mustcontain("<!-- test page wizard -->")
 
 
 def test_new_meeting_when_recording_not_configured(client_app, app, authenticated_user):
@@ -44,7 +44,7 @@ def test_new_meeting_when_recording_not_configured(client_app, app, authenticate
 
     response = client_app.get("/meeting/new")
 
-    assert "Enregistrement" not in response.get_data(as_text=True)
+    response.mustcontain(no="Enregistrement")
 
 
 def test_edit_meeting(client_app, app, authenticated_user, meeting, bbb_response):
@@ -54,7 +54,7 @@ def test_edit_meeting(client_app, app, authenticated_user, meeting, bbb_response
     response = client_app.get(f"/meeting/edit/{meeting_id}")
 
     assert response.status_code == 200
-    assert "<!-- test page wizard -->" in response.data.decode()
+    response.mustcontain("<!-- test page wizard -->")
 
 
 MEETING_DATA = {
@@ -84,7 +84,7 @@ def test_save_new_meeting(
 ):
     response = client_app.post(
         "/meeting/save",
-        data=MEETING_DATA,
+        MEETING_DATA,
     )
 
     assert response.status_code == 302
@@ -126,7 +126,7 @@ def test_save_existing_meeting(
 
     response = client_app.post(
         "/meeting/save",
-        data=data,
+        data,
     )
 
     assert response.status_code == 302
@@ -167,16 +167,14 @@ def test_save_moderatorOnlyMessage_too_long(
 
     response = client_app.post(
         "/meeting/save",
-        data=data,
-        follow_redirects=True,
+        data,
     )
 
     assert response.status_code == 200
-    response_html = response.get_data(as_text=True)
-    assert "<!-- test page wizard -->" in response_html
-    assert "Le formulaire contient des erreurs" in response_html
-    assert moderator_only_message in response_html
-    assert "Le message est trop long" in response_html
+    response.mustcontain("<!-- test page wizard -->")
+    response.mustcontain("Le formulaire contient des erreurs")
+    response.mustcontain(moderator_only_message)
+    response.mustcontain("Le message est trop long")
     assert not Meeting.query.all()
 
 
@@ -187,7 +185,7 @@ def test_save_no_recording_by_default(
     del data["autoStartRecording"]
     del data["allowStartStopRecording"]
 
-    response = client_app.post("/meeting/save", data=data)
+    response = client_app.post("/meeting/save", data)
 
     assert response.status_code == 302
     meeting = Meeting.query.get(1)
@@ -203,7 +201,7 @@ def test_save_meeting_in_no_recording_environment(
 
     response = client_app.post(
         "/meeting/save",
-        data=MEETING_DATA,
+        MEETING_DATA,
     )
 
     assert response.status_code == 302
@@ -307,7 +305,7 @@ def test_create_without_logout_url_gets_default(
 
     response = client_app.post(
         "/meeting/save",
-        data=data,
+        data,
     )
 
     assert response.status_code == 302
@@ -359,7 +357,7 @@ def test_edit_files_meeting(client_app, app, authenticated_user, meeting, bbb_re
     response = client_app.get(f"/meeting/files/{meeting_id}")
 
     assert response.status_code == 200
-    assert "<!-- test edit meeting files -->" in response.data.decode()
+    response.mustcontain("<!-- test edit meeting files -->")
 
 
 def test_deactivated_meeting_files_cannot_access_files(
@@ -370,7 +368,7 @@ def test_deactivated_meeting_files_cannot_access_files(
     response = client_app.get("/welcome")
 
     assert response.status_code == 200
-    assert "Fichiers associés à " not in response.data.decode()
+    response.mustcontain(no="Fichiers associés à ")
 
 
 def test_deactivated_meeting_files_cannot_edit(
diff --git a/web/tests/meeting/test_recordings.py b/web/tests/meeting/test_recordings.py
index 3a52e209..396f1491 100644
--- a/web/tests/meeting/test_recordings.py
+++ b/web/tests/meeting/test_recordings.py
@@ -161,8 +161,8 @@ class Resp:
     meeting_id = meeting.id
 
     response = client_app.post(
-        f"meeting/{meeting_id}/recordings/recording_id",
-        data={"name": "First recording"},
+        f"/meeting/{meeting_id}/recordings/recording_id",
+        {"name": "First recording"},
     )
 
     bbb_url = mocked_bbb_request.call_args.args
diff --git a/web/tests/test_default.py b/web/tests/test_default.py
index 3e19adf0..42867b59 100644
--- a/web/tests/test_default.py
+++ b/web/tests/test_default.py
@@ -1,3 +1,6 @@
+from flask import session
+
+
 def test_root__anonymous_user(client_app):
     response = client_app.get("/")
 
@@ -19,10 +22,10 @@ def test_home__anonymous_user(client_app, mocker):
     }
     mocker.patch("flaskr.routes.get_meetings_stats", return_value=STATS)
 
-    response = client_app.get("/home", environ_base={"REMOTE_ADDR": "127.0.0.1"})
+    response = client_app.get("/home", extra_environ={"REMOTE_ADDR": "127.0.0.1"})
 
     assert response.status_code == 200
-    assert "<!-- test page home -->" in response.data.decode()
+    response.mustcontain("<!-- test page home -->")
 
 
 def test_home__authenticated_user(client_app, mocker, authenticated_user):
@@ -32,10 +35,10 @@ def test_home__authenticated_user(client_app, mocker, authenticated_user):
     }
     mocker.patch("flaskr.routes.get_meetings_stats", return_value=STATS)
 
-    response = client_app.get("/home", environ_base={"REMOTE_ADDR": "127.0.0.1"})
+    response = client_app.get("/home", extra_environ={"REMOTE_ADDR": "127.0.0.1"})
 
     assert response.status_code == 200
-    assert "<!-- test page home -->" in response.data.decode()
+    response.mustcontain("<!-- test page home -->")
 
 
 def test_change_language(client_app):
@@ -59,14 +62,14 @@ def test_faq__anonymous_user(client_app):
     response = client_app.get("/faq")
 
     assert response.status_code == 200
-    assert "Alice Cooper" not in response.data.decode()
+    response.mustcontain(no="Alice Cooper")
 
 
 def test_faq__authenticated_user(client_app, authenticated_user):
     response = client_app.get("/faq")
 
     assert response.status_code == 200
-    assert "Alice Cooper" in response.data.decode()
+    response.mustcontain("Alice Cooper")
 
 
 def test_documentation__anonymous_user(app, client_app, mocker):
@@ -75,7 +78,7 @@ def test_documentation__anonymous_user(app, client_app, mocker):
     response = client_app.get("/documentation")
 
     assert response.status_code == 200
-    assert "Alice Cooper" not in response.data.decode()
+    response.mustcontain(no="Alice Cooper")
 
 
 def test_documentation__authenticated_user(app, client_app, authenticated_user):
@@ -84,7 +87,7 @@ def test_documentation__authenticated_user(app, client_app, authenticated_user):
     response = client_app.get("/documentation")
 
     assert response.status_code == 200
-    assert "Alice Cooper" in response.data.decode()
+    response.mustcontain("Alice Cooper")
 
 
 def test_documentation_with_redirection(app, client_app):
@@ -93,60 +96,60 @@ def test_documentation_with_redirection(app, client_app):
     response = client_app.get("/documentation")
 
     assert response.status_code == 302
-    assert app.config["DOCUMENTATION_LINK"]["url"] in response.data.decode()
+    response.mustcontain(app.config["DOCUMENTATION_LINK"]["url"])
 
 
 def test_accessibilite__anonymous_user(client_app):
     response = client_app.get("/accessibilite")
 
     assert response.status_code == 200
-    assert "Alice Cooper" not in response.data.decode()
+    response.mustcontain(no="Alice Cooper")
 
 
 def test_accessibilite__authenticated_user(client_app, authenticated_user):
     response = client_app.get("/accessibilite")
 
     assert response.status_code == 200
-    assert "Alice Cooper" in response.data.decode()
+    response.mustcontain("Alice Cooper")
 
 
 def test_mentions_legales__anonymous_user(client_app):
     response = client_app.get("/mentions_legales")
 
     assert response.status_code == 200
-    assert "Alice Cooper" not in response.data.decode()
+    response.mustcontain(no="Alice Cooper")
 
 
 def test_mentions_legales__authenticated_user(client_app, authenticated_user):
     response = client_app.get("/mentions_legales")
 
     assert response.status_code == 200
-    assert "Alice Cooper" in response.data.decode()
+    response.mustcontain("Alice Cooper")
 
 
 def test_cgu__anonymous_user(client_app):
     response = client_app.get("/cgu")
 
     assert response.status_code == 200
-    assert "Alice Cooper" not in response.data.decode()
+    response.mustcontain(no="Alice Cooper")
 
 
 def test_cgu__authenticated_user(client_app, authenticated_user):
     response = client_app.get("/cgu")
 
     assert response.status_code == 200
-    assert "Alice Cooper" in response.data.decode()
+    response.mustcontain("Alice Cooper")
 
 
 def test_donnees_personnelles__anonymous_user(client_app):
     response = client_app.get("/donnees_personnelles")
 
     assert response.status_code == 200
-    assert "Alice Cooper" not in response.data.decode()
+    response.mustcontain(no="Alice Cooper")
 
 
 def test_donnees_personnelles__authenticated_user(client_app, authenticated_user):
     response = client_app.get("/donnees_personnelles")
 
     assert response.status_code == 200
-    assert "Alice Cooper" in response.data.decode()
+    response.mustcontain("Alice Cooper")

From 95d1b0c86b0ecacb8ce57fee4b11fe56af861020 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
Date: Wed, 19 Jul 2023 16:48:49 +0200
Subject: [PATCH 10/24] chore: bump to pytest-cov 4.1.0

---
 poetry.lock    | 10 +++++-----
 pyproject.toml |  2 +-
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/poetry.lock b/poetry.lock
index 0fde8741..b38041bd 100644
--- a/poetry.lock
+++ b/poetry.lock
@@ -1433,13 +1433,13 @@ testing = ["argcomplete", "attrs (>=19.2.0)", "hypothesis (>=3.56)", "mock", "no
 
 [[package]]
 name = "pytest-cov"
-version = "4.0.0"
+version = "4.1.0"
 description = "Pytest plugin for measuring coverage."
 optional = false
-python-versions = ">=3.6"
+python-versions = ">=3.7"
 files = [
-    {file = "pytest-cov-4.0.0.tar.gz", hash = "sha256:996b79efde6433cdbd0088872dbc5fb3ed7fe1578b68cdbba634f14bb8dd0470"},
-    {file = "pytest_cov-4.0.0-py3-none-any.whl", hash = "sha256:2feb1b751d66a8bd934e5edfa2e961d11309dc37b73b0eabe73b5945fee20f6b"},
+    {file = "pytest-cov-4.1.0.tar.gz", hash = "sha256:3904b13dfbfec47f003b8e77fd5b589cd11904a21ddf1ab38a64f204d6a10ef6"},
+    {file = "pytest_cov-4.1.0-py3-none-any.whl", hash = "sha256:6ba70b9e97e69fcc3fb45bfeab2d0a138fb65c4d0d6a41ef33983ad114be8c3a"},
 ]
 
 [package.dependencies]
@@ -1975,4 +1975,4 @@ testing = ["big-O", "flake8 (<5)", "jaraco.functools", "jaraco.itertools", "more
 [metadata]
 lock-version = "2.0"
 python-versions = ">=3.8.1,<4.0"
-content-hash = "03208fa9d7633ad1403d2bb623dba2582f62dd7633a7a4aca616baa50951b2d9"
+content-hash = "083f66b77aa3e01177517eb04de6ed34711450fc6b346f1eb194cba3bf00f605"
diff --git a/pyproject.toml b/pyproject.toml
index a1d684b4..7d41d9a2 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -39,7 +39,7 @@ freezegun = "^1.2.2"
 black = "^23.1.0"
 flake8 = "^6.0.0"
 pre-commit = "^3.1.1"
-pytest-cov = "^4.0.0"
+pytest-cov = "^4.1.0"
 pytest-dotenv = "^0.5.2"
 pytest-flask = "^1.2.0"
 coverage = "^7.2.2"

From 4ede645ea3b90805eb2c58a64e156c27246b4adf Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
Date: Wed, 19 Jul 2023 16:50:06 +0200
Subject: [PATCH 11/24] chore: bump to pytest 7.4.0

---
 poetry.lock              | 10 +++++-----
 pyproject.toml           |  2 +-
 web/requirements.dev.txt |  4 ++--
 3 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/poetry.lock b/poetry.lock
index b38041bd..99d90d91 100644
--- a/poetry.lock
+++ b/poetry.lock
@@ -1411,13 +1411,13 @@ six = "*"
 
 [[package]]
 name = "pytest"
-version = "7.3.1"
+version = "7.4.0"
 description = "pytest: simple powerful testing with Python"
 optional = false
 python-versions = ">=3.7"
 files = [
-    {file = "pytest-7.3.1-py3-none-any.whl", hash = "sha256:3799fa815351fea3a5e96ac7e503a96fa51cc9942c3753cda7651b93c1cfa362"},
-    {file = "pytest-7.3.1.tar.gz", hash = "sha256:434afafd78b1d78ed0addf160ad2b77a30d35d4bdf8af234fe621919d9ed15e3"},
+    {file = "pytest-7.4.0-py3-none-any.whl", hash = "sha256:78bf16451a2eb8c7a2ea98e32dc119fd2aa758f1d5d66dbf0a59d69a3969df32"},
+    {file = "pytest-7.4.0.tar.gz", hash = "sha256:b4bf8c45bd59934ed84001ad51e11b4ee40d40a1229d2c79f9c592b0a3f6bd8a"},
 ]
 
 [package.dependencies]
@@ -1429,7 +1429,7 @@ pluggy = ">=0.12,<2.0"
 tomli = {version = ">=1.0.0", markers = "python_version < \"3.11\""}
 
 [package.extras]
-testing = ["argcomplete", "attrs (>=19.2.0)", "hypothesis (>=3.56)", "mock", "nose", "pygments (>=2.7.2)", "requests", "xmlschema"]
+testing = ["argcomplete", "attrs (>=19.2.0)", "hypothesis (>=3.56)", "mock", "nose", "pygments (>=2.7.2)", "requests", "setuptools", "xmlschema"]
 
 [[package]]
 name = "pytest-cov"
@@ -1975,4 +1975,4 @@ testing = ["big-O", "flake8 (<5)", "jaraco.functools", "jaraco.itertools", "more
 [metadata]
 lock-version = "2.0"
 python-versions = ">=3.8.1,<4.0"
-content-hash = "083f66b77aa3e01177517eb04de6ed34711450fc6b346f1eb194cba3bf00f605"
+content-hash = "5dd4d6423eee4aa4e3440726e1de46873796ffe80b8d77ebface2454804a82e9"
diff --git a/pyproject.toml b/pyproject.toml
index 7d41d9a2..41f7e549 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -32,7 +32,7 @@ werkzeug = "<2.3"
 optional = true
 
 [tool.poetry.group.dev.dependencies]
-pytest = "^7.2.2"
+pytest = "^7.4.0"
 pytest-mock = "^3.10.0"
 Flask-WebTest = "^0.1.3"
 freezegun = "^1.2.2"
diff --git a/web/requirements.dev.txt b/web/requirements.dev.txt
index a0d7eb18..df0d13f8 100644
--- a/web/requirements.dev.txt
+++ b/web/requirements.dev.txt
@@ -29,11 +29,11 @@ pluggy==1.0.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 pre-commit==3.2.2 ; python_full_version >= "3.8.1" and python_version < "4.0"
 pycodestyle==2.10.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 pyflakes==3.0.1 ; python_full_version >= "3.8.1" and python_version < "4.0"
-pytest-cov==4.0.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
+pytest-cov==4.1.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 pytest-dotenv==0.5.2 ; python_full_version >= "3.8.1" and python_version < "4.0"
 pytest-flask==1.2.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 pytest-mock==3.10.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
-pytest==7.3.1 ; python_full_version >= "3.8.1" and python_version < "4.0"
+pytest==7.4.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 python-dateutil==2.8.2 ; python_full_version >= "3.8.1" and python_version < "4.0"
 python-dotenv==1.0.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 pyyaml==6.0 ; python_full_version >= "3.8.1" and python_version < "4.0"

From c4d0b2fe82391eaec670ab21244047f62a61d653 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
Date: Wed, 19 Jul 2023 16:51:16 +0200
Subject: [PATCH 12/24] chore: bump to pytest-mock 3.11.1

---
 poetry.lock              | 8 ++++----
 pyproject.toml           | 2 +-
 web/requirements.dev.txt | 2 +-
 3 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/poetry.lock b/poetry.lock
index 99d90d91..c6e6915a 100644
--- a/poetry.lock
+++ b/poetry.lock
@@ -1485,13 +1485,13 @@ docs = ["Sphinx", "sphinx-rtd-theme"]
 
 [[package]]
 name = "pytest-mock"
-version = "3.10.0"
+version = "3.11.1"
 description = "Thin-wrapper around the mock package for easier use with pytest"
 optional = false
 python-versions = ">=3.7"
 files = [
-    {file = "pytest-mock-3.10.0.tar.gz", hash = "sha256:fbbdb085ef7c252a326fd8cdcac0aa3b1333d8811f131bdcc701002e1be7ed4f"},
-    {file = "pytest_mock-3.10.0-py3-none-any.whl", hash = "sha256:f4c973eeae0282963eb293eb173ce91b091a79c1334455acfac9ddee8a1c784b"},
+    {file = "pytest-mock-3.11.1.tar.gz", hash = "sha256:7f6b125602ac6d743e523ae0bfa71e1a697a2f5534064528c6ff84c2f7c2fc7f"},
+    {file = "pytest_mock-3.11.1-py3-none-any.whl", hash = "sha256:21c279fff83d70763b05f8874cc9cfb3fcacd6d354247a976f9529d19f9acf39"},
 ]
 
 [package.dependencies]
@@ -1975,4 +1975,4 @@ testing = ["big-O", "flake8 (<5)", "jaraco.functools", "jaraco.itertools", "more
 [metadata]
 lock-version = "2.0"
 python-versions = ">=3.8.1,<4.0"
-content-hash = "5dd4d6423eee4aa4e3440726e1de46873796ffe80b8d77ebface2454804a82e9"
+content-hash = "f3c8f939703ee16d0db244635381b8ff95fccac87343408f7727b6b2644c3bfc"
diff --git a/pyproject.toml b/pyproject.toml
index 41f7e549..58039c19 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -33,7 +33,7 @@ optional = true
 
 [tool.poetry.group.dev.dependencies]
 pytest = "^7.4.0"
-pytest-mock = "^3.10.0"
+pytest-mock = "^3.11.1"
 Flask-WebTest = "^0.1.3"
 freezegun = "^1.2.2"
 black = "^23.1.0"
diff --git a/web/requirements.dev.txt b/web/requirements.dev.txt
index df0d13f8..46e4141d 100644
--- a/web/requirements.dev.txt
+++ b/web/requirements.dev.txt
@@ -32,7 +32,7 @@ pyflakes==3.0.1 ; python_full_version >= "3.8.1" and python_version < "4.0"
 pytest-cov==4.1.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 pytest-dotenv==0.5.2 ; python_full_version >= "3.8.1" and python_version < "4.0"
 pytest-flask==1.2.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
-pytest-mock==3.10.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
+pytest-mock==3.11.1 ; python_full_version >= "3.8.1" and python_version < "4.0"
 pytest==7.4.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 python-dateutil==2.8.2 ; python_full_version >= "3.8.1" and python_version < "4.0"
 python-dotenv==1.0.0 ; python_full_version >= "3.8.1" and python_version < "4.0"

From 8761f3c99c8ddb7b19c6caa36a7c30e5ddfdc137 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
Date: Thu, 20 Jul 2023 10:31:06 +0200
Subject: [PATCH 13/24] refactor: force type in URL parameters

This avoids to cast the variable later in the views.
---
 web/flaskr/routes.py | 38 +++++++++++++++++++-------------------
 1 file changed, 19 insertions(+), 19 deletions(-)

diff --git a/web/flaskr/routes.py b/web/flaskr/routes.py
index 3fdc27ba..56769925 100755
--- a/web/flaskr/routes.py
+++ b/web/flaskr/routes.py
@@ -269,7 +269,7 @@ def api_meetings():
 
 
 # called by NextcloudfilePicker when documents should be added to a running room:
-@bp.route("/meeting/files/<meeting_id>/insertDocuments", methods=["POST"])
+@bp.route("/meeting/files/<int:meeting_id>/insertDocuments", methods=["POST"])
 @auth.oidc_auth("default")
 def insertDocuments(meeting_id):
     from flask import request
@@ -598,7 +598,7 @@ def quick_meeting():
     return redirect(m.get_join_url("moderator", fullname, create=True))
 
 
-@bp.route("/meeting/show/<meeting_id>", methods=["GET"])
+@bp.route("/meeting/show/<int:meeting_id>", methods=["GET"])
 @auth.oidc_auth("default")
 def show_meeting(meeting_id):
     form = ShowMeetingForm(data={"meeting_id": meeting_id})
@@ -625,7 +625,7 @@ def show_meeting(meeting_id):
     return redirect("/welcome")
 
 
-@bp.route("/meeting/recordings/<meeting_id>", methods=["GET"])
+@bp.route("/meeting/recordings/<int:meeting_id>", methods=["GET"])
 @auth.oidc_auth("default")
 def show_meeting_recording(meeting_id):
     form = ShowMeetingForm(data={"meeting_id": meeting_id})
@@ -655,7 +655,7 @@ def show_meeting_recording(meeting_id):
     return redirect("/welcome")
 
 
-@bp.route("/meeting/<meeting_id>/recordings/<recording_id>", methods=["POST"])
+@bp.route("/meeting/<int:meeting_id>/recordings/<recording_id>", methods=["POST"])
 @auth.oidc_auth("default")
 def update_recording_name(meeting_id, recording_id):
     user = get_current_user()
@@ -704,7 +704,7 @@ def new_meeting():
     )
 
 
-@bp.route("/meeting/edit/<meeting_id>", methods=["GET"])
+@bp.route("/meeting/edit/<int:meeting_id>", methods=["GET"])
 @auth.oidc_auth("default")
 def edit_meeting(meeting_id):
     user = get_current_user()
@@ -732,7 +732,7 @@ def edit_meeting(meeting_id):
     return redirect("/welcome")
 
 
-@bp.route("/meeting/files/<meeting_id>", methods=["GET"])
+@bp.route("/meeting/files/<int:meeting_id>", methods=["GET"])
 @auth.oidc_auth("default")
 def edit_meeting_files(meeting_id):
     user = get_current_user()
@@ -776,7 +776,7 @@ def edit_meeting_files(meeting_id):
     return redirect("/welcome")
 
 
-@bp.route("/meeting/files/<meeting_id>/<file_id>", methods=["GET"])
+@bp.route("/meeting/files/<int:meeting_id>/<int:file_id>", methods=["GET"])
 @auth.oidc_auth("default")
 def download_meeting_files(meeting_id, file_id):
     user = get_current_user()
@@ -788,7 +788,7 @@ def download_meeting_files(meeting_id, file_id):
     fileToSend = None
     if user is not None and meeting.user_id == user.id:
         for curFile in meeting.files:
-            if curFile.id == int(file_id):
+            if curFile.id == file_id:
                 fileToSend = curFile
                 break
         if not fileToSend:
@@ -828,7 +828,7 @@ def download_meeting_files(meeting_id, file_id):
     return redirect("/welcome")
 
 
-@bp.route("/meeting/files/<meeting_id>/toggledownload", methods=["POST"])
+@bp.route("/meeting/files/<int:meeting_id>/toggledownload", methods=["POST"])
 @auth.oidc_auth("default")
 def toggledownload(meeting_id):
     user = get_current_user()
@@ -846,7 +846,7 @@ def toggledownload(meeting_id):
     return redirect("/welcome")
 
 
-@bp.route("/meeting/files/<meeting_id>/default", methods=["POST"])
+@bp.route("/meeting/files/<int:meeting_id>/default", methods=["POST"])
 @auth.oidc_auth("default")
 def set_meeting_default_file(meeting_id):
     user = get_current_user()
@@ -1064,7 +1064,7 @@ def add_external_meeting_file_nextcloud(path, meeting_id):
     return externalMeetingFile.id
 
 
-@bp.route("/meeting/files/<meeting_id>", methods=["POST"])
+@bp.route("/meeting/files/<int:meeting_id>", methods=["POST"])
 @auth.oidc_auth("default")
 def add_meeting_files(meeting_id):
     user = get_current_user()
@@ -1097,7 +1097,7 @@ def add_meeting_files(meeting_id):
 
 
 # for dropzone multiple files uploading at once
-@bp.route("/meeting/files/<meeting_id>/dropzone", methods=["POST"])
+@bp.route("/meeting/files/<int:meeting_id>/dropzone", methods=["POST"])
 @auth.oidc_auth("default")
 def add_dropzone_files(meeting_id):
     user = get_current_user()
@@ -1262,7 +1262,7 @@ def end_meeting():
     return redirect("/welcome")
 
 
-@bp.route("/meeting/create/<meeting_id>", methods=["GET"])
+@bp.route("/meeting/create/<int:meeting_id>", methods=["GET"])
 @auth.oidc_auth("default")
 def create_meeting(meeting_id):
     user = get_current_user()
@@ -1321,7 +1321,7 @@ def insertDoc(token):
     return make_response("ok", 200)
 
 
-@bp.route("/meeting/<meeting_id>/externalUpload")
+@bp.route("/meeting/<int:meeting_id>/externalUpload")
 @auth.oidc_auth("default")
 def externalUpload(meeting_id):
     user = get_current_user()
@@ -1438,7 +1438,7 @@ def signin_mail_meeting(meeting_fake_id, expiration, h):
 
 
 @bp.route(
-    "/meeting/signin/<meeting_fake_id>/creator/<user_id>/hash/<h>", methods=["GET"]
+    "/meeting/signin/<meeting_fake_id>/creator/<int:user_id>/hash/<h>", methods=["GET"]
 )
 def signin_meeting(meeting_fake_id, user_id, h):
     is_rie = any(
@@ -1478,12 +1478,12 @@ def signin_meeting(meeting_fake_id, user_id, h):
 
 
 @bp.route(
-    "/meeting/wait/<meeting_fake_id>/creator/<user_id>/hash/<h>/fullname/<path:fullname>/fullname_suffix/",
+    "/meeting/wait/<meeting_fake_id>/creator/<int:user_id>/hash/<h>/fullname/<path:fullname>/fullname_suffix/",
     methods=["GET"],
     defaults={"fullname_suffix": ""},
 )
 @bp.route(
-    "/meeting/wait/<meeting_fake_id>/creator/<user_id>/hash/<h>/fullname/<path:fullname>/fullname_suffix/<path:fullname_suffix>",
+    "/meeting/wait/<meeting_fake_id>/creator/<int:user_id>/hash/<h>/fullname/<path:fullname>/fullname_suffix/<path:fullname_suffix>",
     methods=["GET"],
 )
 def waiting_meeting(meeting_fake_id, user_id, h, fullname, fullname_suffix):
@@ -1580,7 +1580,7 @@ def get_authenticated_attendee_fullname():
     return fullname
 
 
-@bp.route("/meeting/join/<meeting_id>/authenticated", methods=["GET"])
+@bp.route("/meeting/join/<int:meeting_id>/authenticated", methods=["GET"])
 @auth.oidc_auth("attendee")
 def join_meeting_as_authenticated(meeting_id):
     meeting = Meeting.query.get(meeting_id) or abort(404)
@@ -1598,7 +1598,7 @@ def join_meeting_as_authenticated(meeting_id):
     )
 
 
-@bp.route("/meeting/join/<meeting_id>/<role>", methods=["GET"])
+@bp.route("/meeting/join/<int:meeting_id>/<role>", methods=["GET"])
 @auth.oidc_auth("default")
 def join_meeting_as_role(meeting_id, role):
     user = get_current_user()

From f23508b7a45bd62573648698b8d9c48e4e0bde7e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
Date: Thu, 20 Jul 2023 11:03:36 +0200
Subject: [PATCH 14/24] refactor: user_id field in JoinMeetingForm is an
 integer

---
 web/flaskr/forms.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/web/flaskr/forms.py b/web/flaskr/forms.py
index 3abdbaf7..6518e280 100644
--- a/web/flaskr/forms.py
+++ b/web/flaskr/forms.py
@@ -22,7 +22,7 @@ class JoinMeetingAsRoleForm(Form):
 class JoinMeetingForm(FlaskForm):
     fullname = StringField()
     meeting_fake_id = StringField()
-    user_id = StringField()
+    user_id = IntegerField()
     h = StringField()
     fullname_suffix = StringField()
 

From 2c2f2f0ad85612a2bbe6e33c92332c77c51fde49 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
Date: Thu, 20 Jul 2023 11:10:10 +0200
Subject: [PATCH 15/24] refactor: move authenticated_attendee fixture in
 conftest.py

---
 web/tests/conftest.py          | 20 ++++++++++++++++++++
 web/tests/meeting/test_join.py | 20 --------------------
 2 files changed, 20 insertions(+), 20 deletions(-)

diff --git a/web/tests/conftest.py b/web/tests/conftest.py
index 5cf04ec1..25e46745 100644
--- a/web/tests/conftest.py
+++ b/web/tests/conftest.py
@@ -105,6 +105,26 @@ def authenticated_user(client_app, user):
     yield user
 
 
+@pytest.fixture()
+def authenticated_attendee(client_app, user, mocker):
+    with client_app.session_transaction() as session:
+        session["access_token"] = ""
+        session["access_token_expires_at"] = ""
+        session["current_provider"] = "attendee"
+        session["id_token"] = ""
+        session["id_token_jwt"] = ""
+        session["last_authenticated"] = "true"
+        session["last_session_refresh"] = time.time()
+        session["userinfo"] = {
+            "email": "bob@domain.tld",
+            "family_name": "Dylan",
+            "given_name": "Bob",
+        }
+        session["refresh_token"] = ""
+
+    yield user
+
+
 @pytest.fixture()
 def bbb_response(mocker):
     class Resp:
diff --git a/web/tests/meeting/test_join.py b/web/tests/meeting/test_join.py
index d3ef9609..a7c53b2e 100644
--- a/web/tests/meeting/test_join.py
+++ b/web/tests/meeting/test_join.py
@@ -5,26 +5,6 @@
 from flaskr.models import Meeting
 
 
-@pytest.fixture()
-def authenticated_attendee(client_app, user, mocker):
-    with client_app.session_transaction() as session:
-        session["access_token"] = ""
-        session["access_token_expires_at"] = ""
-        session["current_provider"] = "attendee"
-        session["id_token"] = ""
-        session["id_token_jwt"] = ""
-        session["last_authenticated"] = "true"
-        session["last_session_refresh"] = time.time()
-        session["userinfo"] = {
-            "email": "bob@domain.tld",
-            "family_name": "Dylan",
-            "given_name": "Bob",
-        }
-        session["refresh_token"] = ""
-
-    yield user
-
-
 def test_signin_meeting(client_app, app, meeting):
     user_id = 1
     meeting = Meeting.query.get(1)

From e6ed6a7a4a5d52d3bd037b3eadb52c4a578c97cb Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
Date: Thu, 20 Jul 2023 12:51:12 +0200
Subject: [PATCH 16/24] refactor: use the meeting fixture in unit tests

---
 web/tests/meeting/test_end.py        |  7 +--
 web/tests/meeting/test_join.py       | 64 ++++++++--------------------
 web/tests/meeting/test_meeting.py    | 29 +++----------
 web/tests/meeting/test_recordings.py |  8 +---
 4 files changed, 26 insertions(+), 82 deletions(-)

diff --git a/web/tests/meeting/test_end.py b/web/tests/meeting/test_end.py
index ea03fef7..09fd5465 100644
--- a/web/tests/meeting/test_end.py
+++ b/web/tests/meeting/test_end.py
@@ -1,14 +1,9 @@
-from flaskr.models import Meeting
-
-
 def test_end_bbb_meeting(app, client_app, authenticated_user, meeting, mocker):
-    meeting = Meeting.query.get(1)
-    meeting_id = meeting.id
     mocked_end = mocker.patch("flaskr.models.BBB.end")
 
     response = client_app.post(
         "/meeting/end",
-        {"meeting_id": meeting_id},
+        {"meeting_id": meeting.id},
     )
 
     assert mocked_end.called
diff --git a/web/tests/meeting/test_join.py b/web/tests/meeting/test_join.py
index a7c53b2e..f4fdfcac 100644
--- a/web/tests/meeting/test_join.py
+++ b/web/tests/meeting/test_join.py
@@ -2,16 +2,12 @@
 import pytest
 
 from flask import url_for
-from flaskr.models import Meeting
 
 
-def test_signin_meeting(client_app, app, meeting):
-    user_id = 1
-    meeting = Meeting.query.get(1)
-    meeting_id = meeting.id
+def test_signin_meeting(client_app, app, meeting, user):
     meeting_hash = meeting.get_hash("attendee")
 
-    url = f"/meeting/signin/{meeting_id}/creator/{user_id}/hash/{meeting_hash}"
+    url = f"/meeting/signin/{meeting.id}/creator/{meeting.user.id}/hash/{meeting_hash}"
     response = client_app.get(url, extra_environ={"REMOTE_ADDR": "127.0.0.1"})
 
     assert response.status_code == 200
@@ -20,12 +16,9 @@ def test_signin_meeting(client_app, app, meeting):
 
 
 def test_signin_meeting_with_authenticated_attendee(client_app, app, meeting):
-    user_id = 1
-    meeting = Meeting.query.get(1)
-    meeting_id = meeting.id
     meeting_hash = meeting.get_hash("authenticated")
 
-    url = f"/meeting/signin/{meeting_id}/creator/{user_id}/hash/{meeting_hash}"
+    url = f"/meeting/signin/{meeting.id}/creator/{meeting.user.id}/hash/{meeting_hash}"
     response = client_app.get(url, extra_environ={"REMOTE_ADDR": "127.0.0.1"})
 
     assert response.status_code == 302
@@ -35,10 +28,7 @@ def test_signin_meeting_with_authenticated_attendee(client_app, app, meeting):
 def test_join_meeting_as_authenticated_attendee(
     client_app, app, meeting, authenticated_attendee
 ):
-    meeting = Meeting.query.get(1)
-    meeting_id = meeting.id
-
-    url = f"/meeting/join/{meeting_id}/authenticated"
+    url = f"/meeting/join/{meeting.id}/authenticated"
     response = client_app.get(url)
 
     assert response.status_code == 302
@@ -49,17 +39,14 @@ def test_join_meeting_as_authenticated_attendee(
 def test_join_meeting_as_authenticated_attendee_with_fullname_suffix(
     client_app, app, meeting, authenticated_attendee, bbb_response
 ):
-    user_id = 1
-    meeting = Meeting.query.get(1)
-    meeting_id = meeting.id
     meeting_hash = meeting.get_hash("authenticated")
 
     response = client_app.post(
         "/meeting/join",
         {
             "fullname": "Bob Dylan",
-            "meeting_fake_id": meeting_id,
-            "user_id": user_id,
+            "meeting_fake_id": meeting.id,
+            "user_id": meeting.user.id,
             "h": meeting_hash,
             "fullname_suffix": "Service",
         },
@@ -76,17 +63,14 @@ def test_join_meeting_as_authenticated_attendee_with_fullname_suffix(
 def test_join_meeting_as_authenticated_attendee_with_modified_fullname(
     client_app, app, meeting, authenticated_attendee, bbb_response
 ):
-    user_id = 1
-    meeting = Meeting.query.get(1)
-    meeting_id = meeting.id
     meeting_hash = meeting.get_hash("authenticated")
 
     response = client_app.post(
         "/meeting/join",
         {
             "fullname": "toto",
-            "meeting_fake_id": meeting_id,
-            "user_id": user_id,
+            "meeting_fake_id": meeting.id,
+            "user_id": meeting.user.id,
             "h": meeting_hash,
             "fullname_suffix": "",
         },
@@ -100,9 +84,6 @@ def test_join_meeting_as_authenticated_attendee_with_modified_fullname(
 
 
 def test_join_meeting(client_app, app, meeting, bbb_response):
-    user_id = 1
-    meeting = Meeting.query.get(1)
-    meeting_id = meeting.id
     meeting_hash = meeting.get_hash("attendee")
     fullname = "Bob"
 
@@ -110,8 +91,8 @@ def test_join_meeting(client_app, app, meeting, bbb_response):
         "/meeting/join",
         {
             "fullname": fullname,
-            "meeting_fake_id": meeting_id,
-            "user_id": user_id,
+            "meeting_fake_id": meeting.id,
+            "user_id": meeting.user.id,
             "h": meeting_hash,
         },
     )
@@ -125,19 +106,16 @@ def test_join_meeting(client_app, app, meeting, bbb_response):
 
 
 def test_join_mail_meeting(client_app, app, meeting, bbb_response):
-    user_id = 1
     expiration = int(time.time()) + 1000
-    meeting = Meeting.query.get(1)
-    meeting_id = meeting.id
-    meeting_hash = meeting.get_mail_signin_hash(meeting_id, expiration)
+    meeting_hash = meeting.get_mail_signin_hash(meeting.id, expiration)
     fullname = "Bob"
 
     response = client_app.post(
         "/meeting/joinmail",
         {
             "fullname": fullname,
-            "meeting_fake_id": meeting_id,
-            "user_id": user_id,
+            "meeting_fake_id": meeting.id,
+            "user_id": meeting.user.id,
             "h": meeting_hash,
             "expiration": expiration,
         },
@@ -153,11 +131,9 @@ def test_join_mail_meeting(client_app, app, meeting, bbb_response):
 def test_join_meeting_as_role(
     client_app, app, authenticated_user, meeting, bbb_response
 ):
-    meeting = Meeting.query.get(1)
-    meeting_id = meeting.id
     fullname = "Alice+Cooper"
 
-    response = client_app.get(f"/meeting/join/{meeting_id}/attendee")
+    response = client_app.get(f"/meeting/join/{meeting.id}/attendee")
 
     assert response.status_code == 302
     assert (
@@ -175,17 +151,13 @@ def test_join_meeting_as_role__meeting_not_found(
 def test_join_meeting_as_role__not_attendee_or_moderator(
     client_app, app, authenticated_user, meeting, bbb_response
 ):
-    meeting = Meeting.query.get(1)
-    meeting_id = meeting.id
 
-    client_app.get(f"/meeting/join/{meeting_id}/journalist", status=404)
+    client_app.get(f"/meeting/join/{meeting.id}/journalist", status=404)
 
 
 def test_waiting_meeting_with_a_fullname_containing_a_slash(client_app, app, meeting):
     fullname_suffix = "Service EN"
-    meeting = Meeting.query.get(1)
     meeting_fake_id = meeting.fake_id
-    user_id = meeting.user.id
     h = meeting.get_hash("attendee")
     fullname = "Alice/Cooper"
 
@@ -193,7 +165,7 @@ def test_waiting_meeting_with_a_fullname_containing_a_slash(client_app, app, mee
         waiting_meeting_url = url_for(
             "routes.waiting_meeting",
             meeting_fake_id=meeting_fake_id,
-            user_id=user_id,
+            user_id=meeting.user.id,
             h=h,
             fullname=fullname,
             fullname_suffix=fullname_suffix,
@@ -205,9 +177,7 @@ def test_waiting_meeting_with_a_fullname_containing_a_slash(client_app, app, mee
 
 
 def test_waiting_meeting_with_empty_fullname_suffix(client_app, app, meeting):
-    meeting = Meeting.query.get(1)
     meeting_fake_id = meeting.fake_id
-    user_id = meeting.user.id
     h = meeting.get_hash("attendee")
     fullname = "Alice/Cooper"
 
@@ -215,7 +185,7 @@ def test_waiting_meeting_with_empty_fullname_suffix(client_app, app, meeting):
         waiting_meeting_url = url_for(
             "routes.waiting_meeting",
             meeting_fake_id=meeting_fake_id,
-            user_id=user_id,
+            user_id=meeting.user.id,
             h=h,
             fullname=fullname,
             fullname_suffix="",
diff --git a/web/tests/meeting/test_meeting.py b/web/tests/meeting/test_meeting.py
index de3d8e2d..d0275df9 100644
--- a/web/tests/meeting/test_meeting.py
+++ b/web/tests/meeting/test_meeting.py
@@ -11,10 +11,7 @@ def mocked_is_meeting_running(mocker):
 
 
 def test_show_meeting(client_app, app, authenticated_user, meeting, bbb_response):
-    meeting = Meeting.query.get(1)
-    meeting_id = meeting.id
-
-    response = client_app.get(f"/meeting/show/{meeting_id}")
+    response = client_app.get(f"/meeting/show/{meeting.id}")
 
     assert response.status_code == 200
     response.mustcontain("<!-- test show meeting -->")
@@ -23,10 +20,7 @@ def test_show_meeting(client_app, app, authenticated_user, meeting, bbb_response
 def test_show_meeting_recording(
     client_app, app, authenticated_user, meeting, bbb_response
 ):
-    meeting = Meeting.query.get(1)
-    meeting_id = meeting.id
-
-    response = client_app.get(f"/meeting/recordings/{meeting_id}")
+    response = client_app.get(f"/meeting/recordings/{meeting.id}")
 
     assert response.status_code == 200
     response.mustcontain("<!-- test show meeting recording -->")
@@ -48,10 +42,7 @@ def test_new_meeting_when_recording_not_configured(client_app, app, authenticate
 
 
 def test_edit_meeting(client_app, app, authenticated_user, meeting, bbb_response):
-    meeting = Meeting.query.get(1)
-    meeting_id = meeting.id
-
-    response = client_app.get(f"/meeting/edit/{meeting_id}")
+    response = client_app.get(f"/meeting/edit/{meeting.id}")
 
     assert response.status_code == 200
     response.mustcontain("<!-- test page wizard -->")
@@ -117,12 +108,10 @@ def test_save_new_meeting(
 def test_save_existing_meeting(
     app, client_app, authenticated_user, meeting, mocked_is_meeting_running
 ):
-    meeting = Meeting.query.get(1)
-    meeting_id = meeting.id
     assert len(Meeting.query.all()) == 1
 
     data = MEETING_DATA.copy()
-    data["id"] = meeting_id
+    data["id"] = meeting.id
 
     response = client_app.post(
         "/meeting/save",
@@ -224,8 +213,6 @@ class Resp:
     )
 
     with app.test_request_context():
-        meeting = Meeting.query.get(1)
-
         meeting.name = "My Meeting"
         meeting.attendeePW = "Password1"
         meeting.moderatorPW = "Password2"
@@ -351,10 +338,8 @@ class Resp:
 
 def test_edit_files_meeting(client_app, app, authenticated_user, meeting, bbb_response):
     app.config["FILE_SHARING"] = True
-    meeting = Meeting.query.get(1)
-    meeting_id = meeting.id
 
-    response = client_app.get(f"/meeting/files/{meeting_id}")
+    response = client_app.get(f"/meeting/files/{meeting.id}")
 
     assert response.status_code == 200
     response.mustcontain("<!-- test edit meeting files -->")
@@ -375,10 +360,8 @@ def test_deactivated_meeting_files_cannot_edit(
     client_app, app, authenticated_user, meeting, bbb_response
 ):
     app.config["FILE_SHARING"] = False
-    meeting = Meeting.query.get(1)
-    meeting_id = meeting.id
 
-    response = client_app.get(f"/meeting/files/{meeting_id}")
+    response = client_app.get(f"/meeting/files/{meeting.id}")
 
     assert response.status_code == 302
     assert "welcome" in response.location
diff --git a/web/tests/meeting/test_recordings.py b/web/tests/meeting/test_recordings.py
index 396f1491..b9d3050c 100644
--- a/web/tests/meeting/test_recordings.py
+++ b/web/tests/meeting/test_recordings.py
@@ -116,7 +116,6 @@ class Resp:
 
 
 def test_get_recordings(app, meeting, bbb_getRecordings_response):
-    meeting = Meeting.query.get(1)
     recordings = meeting.bbb.get_recordings()
 
     assert len(recordings) == 2
@@ -157,11 +156,8 @@ class Resp:
 
     mocked_bbb_request = mocker.patch("requests.get", return_value=Resp)
 
-    meeting = Meeting.query.get(1)
-    meeting_id = meeting.id
-
     response = client_app.post(
-        f"/meeting/{meeting_id}/recordings/recording_id",
+        f"/meeting/{meeting.id}/recordings/recording_id",
         {"name": "First recording"},
     )
 
@@ -172,4 +168,4 @@ class Resp:
     assert ("recordID", "recording_id") in bbb_params
 
     assert response.status_code == 302
-    assert f"meeting/recordings/{meeting_id}" in response.location
+    assert f"meeting/recordings/{meeting.id}" in response.location

From 2ca8b64eafce431a7148d0113eb47b4d16e0801b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
Date: Thu, 20 Jul 2023 22:07:11 +0200
Subject: [PATCH 17/24] chore: bump to flask-pyoidc 3.14.2

---
 poetry.lock              | 207 +++++++++++++++++++++++++++++++++------
 pyproject.toml           |   2 +-
 web/requirements.app.txt |  18 ++--
 web/requirements.dev.txt |   2 +-
 4 files changed, 189 insertions(+), 40 deletions(-)

diff --git a/poetry.lock b/poetry.lock
index c6e6915a..30067803 100644
--- a/poetry.lock
+++ b/poetry.lock
@@ -35,6 +35,20 @@ files = [
 [package.dependencies]
 vine = ">=5.0.0"
 
+[[package]]
+name = "annotated-types"
+version = "0.5.0"
+description = "Reusable constraint types to use with typing.Annotated"
+optional = false
+python-versions = ">=3.7"
+files = [
+    {file = "annotated_types-0.5.0-py3-none-any.whl", hash = "sha256:58da39888f92c276ad970249761ebea80ba544b77acddaa1a4d6cf78287d45fd"},
+    {file = "annotated_types-0.5.0.tar.gz", hash = "sha256:47cdc3490d9ac1506ce92c7aaa76c579dc3509ff11e098fc867e5130ab7be802"},
+]
+
+[package.dependencies]
+typing-extensions = {version = ">=4.0.0", markers = "python_version < \"3.9\""}
+
 [[package]]
 name = "async-timeout"
 version = "4.0.2"
@@ -60,23 +74,6 @@ files = [
 [package.dependencies]
 pytz = {version = ">=2015.7", markers = "python_version < \"3.9\""}
 
-[[package]]
-name = "beaker"
-version = "1.12.1"
-description = "A Session and Caching library with WSGI Middleware"
-optional = false
-python-versions = "*"
-files = [
-    {file = "Beaker-1.12.1.tar.gz", hash = "sha256:57770b40956e6c5cf1d8221dc59519029e470080ed8d3065c4e6ab36ce7e3c81"},
-]
-
-[package.extras]
-crypto = ["pycryptopp (>=0.5.12)"]
-cryptography = ["cryptography"]
-pycrypto = ["pycrypto"]
-pycryptodome = ["pycryptodome"]
-testsuite = ["Mock", "coverage", "cryptography", "pycryptodome", "pylibmc", "pymongo", "pytest", "python-memcached", "redis", "sqlalchemy", "webtest"]
-
 [[package]]
 name = "beautifulsoup4"
 version = "4.12.2"
@@ -639,18 +636,19 @@ Flask-SQLAlchemy = ">=1.0"
 
 [[package]]
 name = "flask-pyoidc"
-version = "3.10.0"
+version = "3.14.2"
 description = "Flask extension for OpenID Connect authentication."
 optional = false
 python-versions = "*"
 files = [
-    {file = "Flask_pyoidc-3.10.0-py3-none-any.whl", hash = "sha256:858196f9fb6e5fa2d96c5aca84a1349a85bdffb21378d6acb860fad97d6370f2"},
+    {file = "Flask-pyoidc-3.14.2.tar.gz", hash = "sha256:34cf5325f678754e1281904e06263a30595588c2947905625033d992a3d9d35b"},
+    {file = "Flask_pyoidc-3.14.2-py3-none-any.whl", hash = "sha256:776eb64fd39d90d59c866d31c7a69b90f4e33e9311801e8ae36e68d6a97590d2"},
 ]
 
 [package.dependencies]
 Flask = "*"
 importlib-resources = "*"
-oic = ">=1.2.1"
+oic = "1.6.1"
 requests = "*"
 
 [[package]]
@@ -1187,28 +1185,28 @@ setuptools = "*"
 
 [[package]]
 name = "oic"
-version = "1.4.0"
+version = "1.6.1"
 description = "Python implementation of OAuth2 and OpenID Connect"
 optional = false
-python-versions = "~=3.5"
+python-versions = "~=3.7"
 files = [
-    {file = "oic-1.4.0-py3-none-any.whl", hash = "sha256:c1a46dd5f803349f1eea7393d70a3f2bdbc97e73b96f3ebb54843e1dc190f5e4"},
-    {file = "oic-1.4.0.tar.gz", hash = "sha256:b82316c4b9633781b8fcb091a7d082ffc863f850a87d8725ead454746aeae677"},
+    {file = "oic-1.6.1-py3-none-any.whl", hash = "sha256:fcbf948a22e4d4df66f6bf57d327933f32a7b539640d9b42883457634360ba78"},
+    {file = "oic-1.6.1.tar.gz", hash = "sha256:385a1f64bb59519df1e23840530921bf416740240f505ea6d161e331d3d39fad"},
 ]
 
 [package.dependencies]
-beaker = "*"
 cryptography = "*"
 defusedxml = "*"
 mako = "*"
 pycryptodomex = "*"
+pydantic-settings = "*"
 pyjwkest = ">=1.3.6"
 requests = "*"
-typing-extensions = "*"
 
 [package.extras]
 develop = ["cherrypy (==3.2.4)", "pyOpenSSL"]
-docs = ["Sphinx", "alabaster", "sphinx-autobuild"]
+docs = ["Sphinx", "alabaster", "autodoc-pydantic", "sphinx-autobuild"]
+examples = ["beaker"]
 ldap-authn = ["python-ldap"]
 quality = ["bandit", "black", "eradicate", "isort", "mypy", "pylama", "readme-renderer[md]"]
 testing = ["freezegun", "pytest", "responses", "testfixtures"]
@@ -1382,6 +1380,153 @@ files = [
     {file = "pycryptodomex-3.17.tar.gz", hash = "sha256:0af93aad8d62e810247beedef0261c148790c52f3cd33643791cc6396dd217c1"},
 ]
 
+[[package]]
+name = "pydantic"
+version = "2.0.3"
+description = "Data validation using Python type hints"
+optional = false
+python-versions = ">=3.7"
+files = [
+    {file = "pydantic-2.0.3-py3-none-any.whl", hash = "sha256:614eb3321eb600c81899a88fa9858b008e3c79e0d4f1b49ab1f516b4b0c27cfb"},
+    {file = "pydantic-2.0.3.tar.gz", hash = "sha256:94f13e0dcf139a5125e88283fc999788d894e14ed90cf478bcc2ee50bd4fc630"},
+]
+
+[package.dependencies]
+annotated-types = ">=0.4.0"
+pydantic-core = "2.3.0"
+typing-extensions = ">=4.6.1"
+
+[package.extras]
+email = ["email-validator (>=2.0.0)"]
+
+[[package]]
+name = "pydantic-core"
+version = "2.3.0"
+description = ""
+optional = false
+python-versions = ">=3.7"
+files = [
+    {file = "pydantic_core-2.3.0-cp310-cp310-macosx_10_7_x86_64.whl", hash = "sha256:4542c98b8364b976593703a2dda97377433b102f380b61bc3a2cbc2fbdae1d1f"},
+    {file = "pydantic_core-2.3.0-cp310-cp310-macosx_11_0_arm64.whl", hash = "sha256:9342de50824b40f55d2600f66c6f9a91a3a24851eca39145a749a3dc804ee599"},
+    {file = "pydantic_core-2.3.0-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:539432f911686cb80284c30b33eaf9f4fd9a11e1111fe0dc98fdbdce69b49821"},
+    {file = "pydantic_core-2.3.0-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:38a0e7ee65c8999394d92d9c724434cb629279d19844f2b69d9bbc46dc8b8b61"},
+    {file = "pydantic_core-2.3.0-cp310-cp310-manylinux_2_24_armv7l.whl", hash = "sha256:e3ed6834cc005798187a56c248a2240207cb8ffdda1c89e9afda4c3d526c2ea0"},
+    {file = "pydantic_core-2.3.0-cp310-cp310-manylinux_2_24_ppc64le.whl", hash = "sha256:e72ac299a6bf732a60852d052acf3999d234686755a02ba111e85e7ebf8155b1"},
+    {file = "pydantic_core-2.3.0-cp310-cp310-manylinux_2_24_s390x.whl", hash = "sha256:616b3451b05ca63b8f433c627f68046b39543faeaa4e50d8c6699a2a1e4b85a5"},
+    {file = "pydantic_core-2.3.0-cp310-cp310-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:adcb9c8848e15c613e483e0b99767ae325af27fe0dbd866df01fe5849d06e6e1"},
+    {file = "pydantic_core-2.3.0-cp310-cp310-musllinux_1_1_aarch64.whl", hash = "sha256:464bf799b422be662e5e562e62beeffc9eaa907d381a9d63a2556615bbda286d"},
+    {file = "pydantic_core-2.3.0-cp310-cp310-musllinux_1_1_x86_64.whl", hash = "sha256:4638ebc17de08c2f3acba557efeb6f195c88b7299d8c55c0bb4e20638bbd4d03"},
+    {file = "pydantic_core-2.3.0-cp310-none-win32.whl", hash = "sha256:9ff322c7e1030543d35d83bb521b69114d3d150750528d7757544f639def9ad6"},
+    {file = "pydantic_core-2.3.0-cp310-none-win_amd64.whl", hash = "sha256:4824eb018f0a4680b1e434697a9bf3f41c7799b80076d06530cbbd212e040ccc"},
+    {file = "pydantic_core-2.3.0-cp311-cp311-macosx_10_7_x86_64.whl", hash = "sha256:0aa429578e23885b3984c49d687cd05ab06f0b908ea1711a8bf7e503b7f97160"},
+    {file = "pydantic_core-2.3.0-cp311-cp311-macosx_11_0_arm64.whl", hash = "sha256:20d710c1f79af930b8891bcebd84096798e4387ab64023ef41521d58f21277d3"},
+    {file = "pydantic_core-2.3.0-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:309f45d4d7481d6f09cb9e35c72caa0e50add4a30bb08c04c5fe5956a0158633"},
+    {file = "pydantic_core-2.3.0-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:1bcfb7be905aa849bd882262e1df3f75b564e2f708b4b4c7ad2d3deaf5410562"},
+    {file = "pydantic_core-2.3.0-cp311-cp311-manylinux_2_24_armv7l.whl", hash = "sha256:85cd9c0af34e371390e3cb2f3a470b0b40cc07568c1e966c638c49062be6352d"},
+    {file = "pydantic_core-2.3.0-cp311-cp311-manylinux_2_24_ppc64le.whl", hash = "sha256:37c5028cebdf731298724070838fb3a71ef1fbd201d193d311ac2cbdbca25a23"},
+    {file = "pydantic_core-2.3.0-cp311-cp311-manylinux_2_24_s390x.whl", hash = "sha256:e4208f23f12d0ad206a07a489ef4cb15722c10b62774c4460ee4123250be938e"},
+    {file = "pydantic_core-2.3.0-cp311-cp311-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:c24465dd11b65c8510f251b095fc788c7c91481c81840112fe3f76c30793a455"},
+    {file = "pydantic_core-2.3.0-cp311-cp311-musllinux_1_1_aarch64.whl", hash = "sha256:3cd7ee8bbfab277ab56e272221886fd33a1b5943fbf45ae9195aa6a48715a8a0"},
+    {file = "pydantic_core-2.3.0-cp311-cp311-musllinux_1_1_x86_64.whl", hash = "sha256:0fc7e0b056b66cc536e97ef60f48b3b289f6b3b62ac225afd4b22a42434617bf"},
+    {file = "pydantic_core-2.3.0-cp311-none-win32.whl", hash = "sha256:4788135db4bd83a5edc3522b11544b013be7d25b74b155e08dd3b20cd6663bbb"},
+    {file = "pydantic_core-2.3.0-cp311-none-win_amd64.whl", hash = "sha256:f93c867e5e85584a28c6a6feb6f2086d717266eb5d1210d096dd717b7f4dec04"},
+    {file = "pydantic_core-2.3.0-cp312-cp312-macosx_10_7_x86_64.whl", hash = "sha256:73f62bb7fd862d9bcd886e10612bade6fe042eda8b47e8c129892bcfb7b45e84"},
+    {file = "pydantic_core-2.3.0-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:4d889d498fce64bfcd8adf1a78579a7f626f825cbeb2956a24a29b35f9a1df32"},
+    {file = "pydantic_core-2.3.0-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:7d55e38a89ec2ae17b2fa7ffeda6b70f63afab1888bd0d57aaa7b7879760acb4"},
+    {file = "pydantic_core-2.3.0-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:1aefebb506bc1fe355d91d25f12bcdea7f4d7c2d9f0f6716dd025543777c99a5"},
+    {file = "pydantic_core-2.3.0-cp312-cp312-manylinux_2_24_armv7l.whl", hash = "sha256:6441a29f42585f085db0c04cd0557d4cbbb46fa68a0972409b1cfe9f430280c1"},
+    {file = "pydantic_core-2.3.0-cp312-cp312-manylinux_2_24_ppc64le.whl", hash = "sha256:47e8f034be31390a8f525431eb5e803a78ce7e2e11b32abf5361a972e14e6b61"},
+    {file = "pydantic_core-2.3.0-cp312-cp312-manylinux_2_24_s390x.whl", hash = "sha256:ad814864aba263be9c83ada44a95f72d10caabbf91589321f95c29c902bdcff0"},
+    {file = "pydantic_core-2.3.0-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:9eff3837d447fccf2ac38c259b14ab9cbde700df355a45a1f3ff244d5e78f8b6"},
+    {file = "pydantic_core-2.3.0-cp312-cp312-musllinux_1_1_aarch64.whl", hash = "sha256:534f3f63c000f08050c6f7f4378bf2b52d7ba9214e9d35e3f60f7ad24a4d6425"},
+    {file = "pydantic_core-2.3.0-cp312-cp312-musllinux_1_1_x86_64.whl", hash = "sha256:ef6a222d54f742c24f6b143aab088702db3a827b224e75b9dd28b38597c595fe"},
+    {file = "pydantic_core-2.3.0-cp312-none-win32.whl", hash = "sha256:4e26944e64ecc1d7b19db954c0f7b471f3b141ec8e1a9f57cfe27671525cd248"},
+    {file = "pydantic_core-2.3.0-cp312-none-win_amd64.whl", hash = "sha256:019c5c41941438570dfc7d3f0ae389b2425add1775a357ce1e83ed1434f943d6"},
+    {file = "pydantic_core-2.3.0-cp37-cp37m-macosx_10_7_x86_64.whl", hash = "sha256:27c1bbfb9d84a75cf33b7f19b53c29eb7ead99b235fce52aced5507174ab8f98"},
+    {file = "pydantic_core-2.3.0-cp37-cp37m-macosx_11_0_arm64.whl", hash = "sha256:7cb496e934b71f1ade844ab91d6ccac78a3520e5df02fdb2357f85a71e541e69"},
+    {file = "pydantic_core-2.3.0-cp37-cp37m-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:5af2d43b1978958d91351afbcc9b4d0cfe144c46c61740e82aaac8bb39ab1a4d"},
+    {file = "pydantic_core-2.3.0-cp37-cp37m-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:4d3097c39d7d4e8dba2ef86de171dcccad876c36d8379415ba18a5a4d0533510"},
+    {file = "pydantic_core-2.3.0-cp37-cp37m-manylinux_2_24_armv7l.whl", hash = "sha256:dd3b023f3317dbbbc775e43651ce1a31a9cea46216ad0b5be37afc18a2007699"},
+    {file = "pydantic_core-2.3.0-cp37-cp37m-manylinux_2_24_ppc64le.whl", hash = "sha256:27babb9879bf2c45ed655d02639f4c30e2b9ef1b71ce59c2305bbf7287910a18"},
+    {file = "pydantic_core-2.3.0-cp37-cp37m-manylinux_2_24_s390x.whl", hash = "sha256:2183a9e18cdc0de53bdaa1675f237259162abeb62d6ac9e527c359c1074dc55d"},
+    {file = "pydantic_core-2.3.0-cp37-cp37m-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:c089d8e7f1b4db08b2f8e4107304eec338df046275dad432635a9be9531e2fc8"},
+    {file = "pydantic_core-2.3.0-cp37-cp37m-musllinux_1_1_aarch64.whl", hash = "sha256:2f10aa5452b865818dd0137f568d443f5e93b60a27080a01aa4b7512c7ba13a3"},
+    {file = "pydantic_core-2.3.0-cp37-cp37m-musllinux_1_1_x86_64.whl", hash = "sha256:f642313d559f9d9a00c4de6820124059cc3342a0d0127b18301de2c680d5ea40"},
+    {file = "pydantic_core-2.3.0-cp37-none-win32.whl", hash = "sha256:45327fc57afbe3f2c3d7f54a335d5cecee8a9fdb3906a2fbed8af4092f4926df"},
+    {file = "pydantic_core-2.3.0-cp37-none-win_amd64.whl", hash = "sha256:e427b66596a6441a5607dfc0085b47d36073f88da7ac48afd284263b9b99e6ce"},
+    {file = "pydantic_core-2.3.0-cp38-cp38-macosx_10_7_x86_64.whl", hash = "sha256:0b3d781c71b8bfb621ef23b9c874933e2cd33237c1a65cc20eeb37437f8e7e18"},
+    {file = "pydantic_core-2.3.0-cp38-cp38-macosx_11_0_arm64.whl", hash = "sha256:ad46027dbd5c1db87dc0b49becbe23093b143a20302028d387dae37ee5ef95f5"},
+    {file = "pydantic_core-2.3.0-cp38-cp38-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:39aa09ed7ce2a648c904f79032d16dda29e6913112af8465a7bf710eef23c7ca"},
+    {file = "pydantic_core-2.3.0-cp38-cp38-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:05b4bf8c58409586a7a04c858a86ab10f28c6c1a7c33da65e0326c59d5b0ab16"},
+    {file = "pydantic_core-2.3.0-cp38-cp38-manylinux_2_24_armv7l.whl", hash = "sha256:ba2b807d2b62c446120906b8580cddae1d76d3de4efbb95ccc87f5e35c75b4b2"},
+    {file = "pydantic_core-2.3.0-cp38-cp38-manylinux_2_24_ppc64le.whl", hash = "sha256:ea955e4ed21f4bbb9b83fea09fc6af0bed82e69ecf6b35ec89237a0a49633033"},
+    {file = "pydantic_core-2.3.0-cp38-cp38-manylinux_2_24_s390x.whl", hash = "sha256:06884c07956526ac9ebfef40fe21a11605569b8fc0e2054a375fb39c978bf48f"},
+    {file = "pydantic_core-2.3.0-cp38-cp38-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:f868e731a18b403b88aa434d960489ceeed0ddeb44ebc02389540731a67705e0"},
+    {file = "pydantic_core-2.3.0-cp38-cp38-musllinux_1_1_aarch64.whl", hash = "sha256:cb08fab0fc1db15c277b72e33ac74ad9c0c789413da8984a3eacb22a94b42ef4"},
+    {file = "pydantic_core-2.3.0-cp38-cp38-musllinux_1_1_x86_64.whl", hash = "sha256:6ca34c29fbd6592de5fd39e80c1993634d704c4e7e14ba54c87b2c7c53da68fe"},
+    {file = "pydantic_core-2.3.0-cp38-none-win32.whl", hash = "sha256:cd782807d35c8a41aaa7d30b5107784420eefd9fdc1c760d86007d43ae00b15d"},
+    {file = "pydantic_core-2.3.0-cp38-none-win_amd64.whl", hash = "sha256:01f56d5ee70b1d39c0fd08372cc5142274070ab7181d17c86035f130eebc05b8"},
+    {file = "pydantic_core-2.3.0-cp39-cp39-macosx_10_7_x86_64.whl", hash = "sha256:78b1ac0151271ce62bc2b33755f1043eda6a310373143a2f27e2bcd3d5fc8633"},
+    {file = "pydantic_core-2.3.0-cp39-cp39-macosx_11_0_arm64.whl", hash = "sha256:64bfd2c35a2c350f73ac52dc134d8775f93359c4c969280a6fe5301b5b6e7431"},
+    {file = "pydantic_core-2.3.0-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:937c0fe9538f1212b62df6a68f8d78df3572fe3682d9a0dd8851eac8a4e46063"},
+    {file = "pydantic_core-2.3.0-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:4d965c7c4b40d1cedec9188782e98bd576f9a04868835604200c3a6e817b824f"},
+    {file = "pydantic_core-2.3.0-cp39-cp39-manylinux_2_24_armv7l.whl", hash = "sha256:ad442b8585ed4a3c2d22e4bf7b465d9b7d281e055b09719a8aeb5b576422dc9b"},
+    {file = "pydantic_core-2.3.0-cp39-cp39-manylinux_2_24_ppc64le.whl", hash = "sha256:4bf20c9722821fce766e685718e739deeccc60d6bc7be5029281db41f999ee0c"},
+    {file = "pydantic_core-2.3.0-cp39-cp39-manylinux_2_24_s390x.whl", hash = "sha256:f3dd5333049b5b3faa739e0f40b77cc8b7a1aded2f2da0e28794c81586d7b08a"},
+    {file = "pydantic_core-2.3.0-cp39-cp39-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:0dc5f516b24d24bc9e8dd9305460899f38302b3c4f9752663b396ef9848557bf"},
+    {file = "pydantic_core-2.3.0-cp39-cp39-musllinux_1_1_aarch64.whl", hash = "sha256:055f7ea6b1fbb37880d66d70eefd22dd319b09c79d2cb99b1dbfeb34b653b0b2"},
+    {file = "pydantic_core-2.3.0-cp39-cp39-musllinux_1_1_x86_64.whl", hash = "sha256:af693a89db6d6ac97dd84dd7769b3f2bd9007b578127d0e7dda03053f4d3b34b"},
+    {file = "pydantic_core-2.3.0-cp39-none-win32.whl", hash = "sha256:f60e31e3e15e8c294bf70c60f8ae4d0c3caf3af8f26466e9aa8ea4c01302749b"},
+    {file = "pydantic_core-2.3.0-cp39-none-win_amd64.whl", hash = "sha256:2b79f3681481f4424d7845cc7a261d5a4baa810d656b631fa844dc9967b36a7b"},
+    {file = "pydantic_core-2.3.0-pp310-pypy310_pp73-macosx_10_7_x86_64.whl", hash = "sha256:a666134b41712e30a71afaa26deeb4da374179f769fa49784cdf0e7698880fab"},
+    {file = "pydantic_core-2.3.0-pp310-pypy310_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:1c119e9227487ad3d7c3c737d896afe548a6be554091f9745da1f4b489c40561"},
+    {file = "pydantic_core-2.3.0-pp310-pypy310_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:73929a2fb600a2333fce2efd92596cff5e6bf8946e20e93c067b220760064862"},
+    {file = "pydantic_core-2.3.0-pp310-pypy310_pp73-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:41bbc2678a5b6a19371b2cb51f30ccea71f0c14b26477d2d884fed761cea42c7"},
+    {file = "pydantic_core-2.3.0-pp310-pypy310_pp73-musllinux_1_1_aarch64.whl", hash = "sha256:dcbff997f47d45bf028bda4c3036bb3101e89a3df271281d392b6175f71c71d1"},
+    {file = "pydantic_core-2.3.0-pp310-pypy310_pp73-musllinux_1_1_x86_64.whl", hash = "sha256:afa8808159169368b66e4fbeafac6c6fd8f26246dc4d0dcc2caf94bd9cf1b828"},
+    {file = "pydantic_core-2.3.0-pp310-pypy310_pp73-win_amd64.whl", hash = "sha256:12be3b5f54f8111ca38e6b7277f26c23ba5cb3344fae06f879a0a93dfc8b479e"},
+    {file = "pydantic_core-2.3.0-pp37-pypy37_pp73-macosx_10_7_x86_64.whl", hash = "sha256:ed5babdcd3d052ba5cf8832561f18df20778c7ccf12587b2d82f7bf3bf259a0e"},
+    {file = "pydantic_core-2.3.0-pp37-pypy37_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:3d642e5c029e2acfacf6aa0a7a3e822086b3b777c70d364742561f9ca64c1ffc"},
+    {file = "pydantic_core-2.3.0-pp37-pypy37_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:8ba3073eb38a1294e8c7902989fb80a7a147a69db2396818722bd078476586a0"},
+    {file = "pydantic_core-2.3.0-pp37-pypy37_pp73-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:d5146a6749b1905e04e62e0ad4622f079e5582f8b3abef5fb64516c623127908"},
+    {file = "pydantic_core-2.3.0-pp37-pypy37_pp73-musllinux_1_1_aarch64.whl", hash = "sha256:deeb64335f489c3c11949cbd1d1668b3f1fb2d1c6a5bf40e126ef7bf95f9fa40"},
+    {file = "pydantic_core-2.3.0-pp37-pypy37_pp73-musllinux_1_1_x86_64.whl", hash = "sha256:31acc37288b8e69e4849f618c3d5cf13b58077c1a1ff9ade0b3065ba974cd385"},
+    {file = "pydantic_core-2.3.0-pp37-pypy37_pp73-win_amd64.whl", hash = "sha256:e09d9f6d722de9d4c1c5f122ea9bc6b25a05f975457805af4dcab7b0128aacbf"},
+    {file = "pydantic_core-2.3.0-pp38-pypy38_pp73-macosx_10_7_x86_64.whl", hash = "sha256:ba6a8cf089222a171b8f84e6ec2d10f7a9d14f26be3a347b14775a8741810676"},
+    {file = "pydantic_core-2.3.0-pp38-pypy38_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:ef1fd1b24e9bcddcb168437686677104e205c8e25b066e73ffdf331d3bb8792b"},
+    {file = "pydantic_core-2.3.0-pp38-pypy38_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:eda1a89c4526826c0a87d33596a4cd15b8f58e9250f503e39af1699ba9c878e8"},
+    {file = "pydantic_core-2.3.0-pp38-pypy38_pp73-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:a3e9a18401a28db4358da2e191508702dbf065f2664c710708cdf9552b9fa50c"},
+    {file = "pydantic_core-2.3.0-pp38-pypy38_pp73-musllinux_1_1_aarch64.whl", hash = "sha256:a439fd0d45d51245bbde799726adda5bd18aed3fa2b01ab2e6a64d6d13776fa3"},
+    {file = "pydantic_core-2.3.0-pp38-pypy38_pp73-musllinux_1_1_x86_64.whl", hash = "sha256:bf6a1d2c920cc9528e884850a4b2ee7629e3d362d5c44c66526d4097bbb07a1a"},
+    {file = "pydantic_core-2.3.0-pp38-pypy38_pp73-win_amd64.whl", hash = "sha256:e33fcbea3b63a339dd94de0fc442fefacfe681cc7027ce63f67af9f7ceec7422"},
+    {file = "pydantic_core-2.3.0-pp39-pypy39_pp73-macosx_10_7_x86_64.whl", hash = "sha256:bf3ed993bdf4754909f175ff348cf8f78d4451215b8aa338633f149ca3b1f37a"},
+    {file = "pydantic_core-2.3.0-pp39-pypy39_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:7584171eb3115acd4aba699bc836634783f5bd5aab131e88d8eeb8a3328a4a72"},
+    {file = "pydantic_core-2.3.0-pp39-pypy39_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:1624baa76d1740711b2048f302ae9a6d73d277c55a8c3e88b53b773ebf73a971"},
+    {file = "pydantic_core-2.3.0-pp39-pypy39_pp73-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:06f33f695527f5a86e090f208978f9fd252c9cfc7e869d3b679bd71f7cb2c1fa"},
+    {file = "pydantic_core-2.3.0-pp39-pypy39_pp73-musllinux_1_1_aarch64.whl", hash = "sha256:7ecf0a67b212900e92f328181fed02840d74ed39553cdb38d27314e2b9c89dfa"},
+    {file = "pydantic_core-2.3.0-pp39-pypy39_pp73-musllinux_1_1_x86_64.whl", hash = "sha256:45fa1e8ad6f4367ad73674ca560da8e827cc890eaf371f3ee063d6d7366a207b"},
+    {file = "pydantic_core-2.3.0-pp39-pypy39_pp73-win_amd64.whl", hash = "sha256:8d0dbcc57839831ae79fd24b1b83d42bc9448d79feaf3ed3fb5cbf94ffbf3eb7"},
+    {file = "pydantic_core-2.3.0.tar.gz", hash = "sha256:5cfb5ac4e82c47d5dc25b209dd4c3989e284b80109f9e08b33c895080c424b4f"},
+]
+
+[package.dependencies]
+typing-extensions = ">=4.6.0,<4.7.0 || >4.7.0"
+
+[[package]]
+name = "pydantic-settings"
+version = "2.0.2"
+description = "Settings management using Pydantic"
+optional = false
+python-versions = ">=3.7"
+files = [
+    {file = "pydantic_settings-2.0.2-py3-none-any.whl", hash = "sha256:6183a2abeab465d5a3ab69758e9a22d38b0cc2ba193f0b85f6971a252ea630f6"},
+    {file = "pydantic_settings-2.0.2.tar.gz", hash = "sha256:342337fff50b23585e807a86dec85037900972364435c55c2fc00d16ff080539"},
+]
+
+[package.dependencies]
+pydantic = ">=2.0.1"
+python-dotenv = ">=0.21.0"
+
 [[package]]
 name = "pyflakes"
 version = "3.0.1"
@@ -1791,13 +1936,13 @@ files = [
 
 [[package]]
 name = "typing-extensions"
-version = "4.5.0"
+version = "4.7.1"
 description = "Backported and Experimental Type Hints for Python 3.7+"
 optional = false
 python-versions = ">=3.7"
 files = [
-    {file = "typing_extensions-4.5.0-py3-none-any.whl", hash = "sha256:fb33085c39dd998ac16d1431ebc293a8b3eedd00fd4a32de0ff79002c19511b4"},
-    {file = "typing_extensions-4.5.0.tar.gz", hash = "sha256:5cb5f4a79139d699607b3ef622a1dedafa84e115ab0024e0d9c044a9479ca7cb"},
+    {file = "typing_extensions-4.7.1-py3-none-any.whl", hash = "sha256:440d5dd3af93b060174bf433bccd69b0babc3b15b1a8dca43789fd7f61514b36"},
+    {file = "typing_extensions-4.7.1.tar.gz", hash = "sha256:b75ddc264f0ba5615db7ba217daeb99701ad295353c45f9e95963337ceeeffb2"},
 ]
 
 [[package]]
@@ -1975,4 +2120,4 @@ testing = ["big-O", "flake8 (<5)", "jaraco.functools", "jaraco.itertools", "more
 [metadata]
 lock-version = "2.0"
 python-versions = ">=3.8.1,<4.0"
-content-hash = "f3c8f939703ee16d0db244635381b8ff95fccac87343408f7727b6b2644c3bfc"
+content-hash = "cc1af9cf28e12423b98cd67f7f2171260c9ea720dccda8f613e88c8a838cf29f"
diff --git a/pyproject.toml b/pyproject.toml
index 58039c19..fedbae14 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -7,7 +7,7 @@ readme = "README.md"
 
 [tool.poetry.dependencies]
 python = ">=3.8.1,<4.0"
-flask-pyoidc = "3.10.0"
+flask-pyoidc = "^3.14.2"
 flask-sqlalchemy = "^3.0.3"
 flask-uploads = "0.2.1"
 flask-migrate = "3.1.0"
diff --git a/web/requirements.app.txt b/web/requirements.app.txt
index af6262fa..f92307ae 100644
--- a/web/requirements.app.txt
+++ b/web/requirements.app.txt
@@ -1,8 +1,8 @@
 alembic==1.10.4 ; python_full_version >= "3.8.1" and python_version < "4.0"
 amqp==5.1.1 ; python_full_version >= "3.8.1" and python_version < "4.0"
+annotated-types==0.5.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 async-timeout==4.0.2 ; python_full_version >= "3.8.1" and python_version < "4.0"
 babel==2.12.1 ; python_full_version >= "3.8.1" and python_version < "4.0"
-beaker==1.12.1 ; python_full_version >= "3.8.1" and python_version < "4.0"
 billiard==3.6.4.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 cachelib==0.9.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 celery==5.2.7 ; python_full_version >= "3.8.1" and python_version < "4.0"
@@ -20,13 +20,13 @@ filetype==1.2.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 flask-babel==2.0.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 flask-caching==2.0.2 ; python_full_version >= "3.8.1" and python_version < "4.0"
 flask-migrate==3.1.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
-flask-pyoidc==3.10.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
+flask-pyoidc==3.14.2 ; python_full_version >= "3.8.1" and python_version < "4.0"
 flask-sqlalchemy==3.0.3 ; python_full_version >= "3.8.1" and python_version < "4.0"
 flask-uploads==0.2.1 ; python_full_version >= "3.8.1" and python_version < "4.0"
-flask-wtf==1.0.1 ; python_full_version >= "3.8.1" and python_version < "4.0"
+flask-wtf==1.1.1 ; python_full_version >= "3.8.1" and python_version < "4.0"
 flask==2.2.5 ; python_full_version >= "3.8.1" and python_version < "4.0"
 future==0.18.3 ; python_full_version >= "3.8.1" and python_version < "4.0"
-greenlet==2.0.2 ; python_full_version >= "3.8.1" and platform_machine == "win32" and python_version < "4.0" or python_full_version >= "3.8.1" and platform_machine == "WIN32" and python_version < "4.0" or python_full_version >= "3.8.1" and platform_machine == "AMD64" and python_version < "4.0" or python_full_version >= "3.8.1" and platform_machine == "amd64" and python_version < "4.0" or python_full_version >= "3.8.1" and platform_machine == "x86_64" and python_version < "4.0" or python_full_version >= "3.8.1" and platform_machine == "ppc64le" and python_version < "4.0" or python_full_version >= "3.8.1" and platform_machine == "aarch64" and python_version < "4.0"
+greenlet==2.0.2 ; python_full_version >= "3.8.1" and (platform_machine == "win32" or platform_machine == "WIN32" or platform_machine == "AMD64" or platform_machine == "amd64" or platform_machine == "x86_64" or platform_machine == "ppc64le" or platform_machine == "aarch64") and python_version < "4.0"
 gunicorn==20.1.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 idna==3.4 ; python_full_version >= "3.8.1" and python_version < "4.0"
 importlib-metadata==6.6.0 ; python_full_version >= "3.8.1" and python_version < "3.10"
@@ -38,13 +38,17 @@ lxml==4.9.2 ; python_full_version >= "3.8.1" and python_version < "4.0"
 mako==1.2.4 ; python_full_version >= "3.8.1" and python_version < "4.0"
 markupsafe==2.1.2 ; python_full_version >= "3.8.1" and python_version < "4.0"
 netaddr==0.8.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
-oic==1.4.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
+oic==1.6.1 ; python_full_version >= "3.8.1" and python_version < "4.0"
 prompt-toolkit==3.0.38 ; python_full_version >= "3.8.1" and python_version < "4.0"
 psycopg2==2.9.3 ; python_full_version >= "3.8.1" and python_version < "4.0"
 pycparser==2.21 ; python_full_version >= "3.8.1" and python_version < "4.0"
 pycryptodomex==3.17 ; python_full_version >= "3.8.1" and python_version < "4.0"
+pydantic-core==2.3.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
+pydantic-settings==2.0.2 ; python_full_version >= "3.8.1" and python_version < "4.0"
+pydantic==2.0.3 ; python_full_version >= "3.8.1" and python_version < "4.0"
 pyjwkest==1.4.2 ; python_full_version >= "3.8.1" and python_version < "4.0"
 python-dateutil==2.8.2 ; python_full_version >= "3.8.1" and python_version < "4.0"
+python-dotenv==1.0.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 pytz==2023.3 ; python_full_version >= "3.8.1" and python_version < "4.0"
 redis==4.4.4 ; python_full_version >= "3.8.1" and python_version < "4.0"
 requests==2.31.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
@@ -53,11 +57,11 @@ six==1.16.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 sqlalchemy-json==0.4.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 sqlalchemy-utils==0.38.1 ; python_full_version >= "3.8.1" and python_version < "4.0"
 sqlalchemy==1.4.31 ; python_full_version >= "3.8.1" and python_version < "4.0"
-typing-extensions==4.5.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
+typing-extensions==4.7.1 ; python_full_version >= "3.8.1" and python_version < "4.0"
 urllib3==1.26.15 ; python_full_version >= "3.8.1" and python_version < "4.0"
 vine==5.0.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 wcwidth==0.2.6 ; python_full_version >= "3.8.1" and python_version < "4.0"
 webdavclient3==3.14.6 ; python_full_version >= "3.8.1" and python_version < "4.0"
-werkzeug==2.3.4 ; python_full_version >= "3.8.1" and python_version < "4.0"
+werkzeug==2.2.3 ; python_full_version >= "3.8.1" and python_version < "4.0"
 wtforms==3.0.1 ; python_full_version >= "3.8.1" and python_version < "4.0"
 zipp==3.15.0 ; python_full_version >= "3.8.1" and python_version < "3.10"
diff --git a/web/requirements.dev.txt b/web/requirements.dev.txt
index 46e4141d..8be1decc 100644
--- a/web/requirements.dev.txt
+++ b/web/requirements.dev.txt
@@ -41,7 +41,7 @@ setuptools==67.7.2 ; python_full_version >= "3.8.1" and python_version < "4.0"
 six==1.16.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 soupsieve==2.4.1 ; python_full_version >= "3.8.1" and python_version < "4"
 tomli==2.0.1 ; python_full_version >= "3.8.1" and python_version < "3.11"
-typing-extensions==4.5.0 ; python_full_version >= "3.8.1" and python_version < "3.10"
+typing-extensions==4.7.1 ; python_full_version >= "3.8.1" and python_version < "3.10"
 virtualenv==20.23.0 ; python_full_version >= "3.8.1" and python_version < "4.0"
 waitress==2.1.2 ; python_full_version >= "3.8.1" and python_version < "4"
 webob==1.8.7 ; python_full_version >= "3.8.1" and python_version < "4"

From 0f4386fd66aba357b3bc718c033ed4e66962bdfc Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
Date: Thu, 20 Jul 2023 16:32:00 +0200
Subject: [PATCH 18/24] test: use webtest `status_code` parameter to check
 status codes

---
 web/tests/meeting/test_end.py        |  2 +-
 web/tests/meeting/test_join.py       | 38 ++++++++--------
 web/tests/meeting/test_meeting.py    | 36 ++++++---------
 web/tests/meeting/test_recordings.py |  2 +-
 web/tests/test_default.py            | 67 ++++++++++------------------
 5 files changed, 58 insertions(+), 87 deletions(-)

diff --git a/web/tests/meeting/test_end.py b/web/tests/meeting/test_end.py
index 09fd5465..41e3c923 100644
--- a/web/tests/meeting/test_end.py
+++ b/web/tests/meeting/test_end.py
@@ -4,8 +4,8 @@ def test_end_bbb_meeting(app, client_app, authenticated_user, meeting, mocker):
     response = client_app.post(
         "/meeting/end",
         {"meeting_id": meeting.id},
+        status=302,
     )
 
     assert mocked_end.called
-    assert response.status_code == 302
     assert "welcome" in response.location
diff --git a/web/tests/meeting/test_join.py b/web/tests/meeting/test_join.py
index f4fdfcac..e02ffab5 100644
--- a/web/tests/meeting/test_join.py
+++ b/web/tests/meeting/test_join.py
@@ -1,37 +1,39 @@
 import time
-import pytest
 
 from flask import url_for
+from urllib.parse import urlparse
+from urllib.parse import parse_qs
 
 
 def test_signin_meeting(client_app, app, meeting, user):
     meeting_hash = meeting.get_hash("attendee")
 
     url = f"/meeting/signin/{meeting.id}/creator/{meeting.user.id}/hash/{meeting_hash}"
-    response = client_app.get(url, extra_environ={"REMOTE_ADDR": "127.0.0.1"})
+    response = client_app.get(
+        url, extra_environ={"REMOTE_ADDR": "127.0.0.1"}, status=200
+    )
 
-    assert response.status_code == 200
-    form_action_url = "/meeting/join"
-    response.mustcontain(form_action_url)
+    join_url = "/meeting/join"
+    assert join_url == response.form.action
 
 
 def test_signin_meeting_with_authenticated_attendee(client_app, app, meeting):
     meeting_hash = meeting.get_hash("authenticated")
 
     url = f"/meeting/signin/{meeting.id}/creator/{meeting.user.id}/hash/{meeting_hash}"
-    response = client_app.get(url, extra_environ={"REMOTE_ADDR": "127.0.0.1"})
+    response = client_app.get(
+        url, extra_environ={"REMOTE_ADDR": "127.0.0.1"}, status=302
+    )
 
-    assert response.status_code == 302
-    assert response.location.endswith("/meeting/join/1/authenticated")
+    assert response.location == "/meeting/join/1/authenticated"
 
 
 def test_join_meeting_as_authenticated_attendee(
     client_app, app, meeting, authenticated_attendee
 ):
     url = f"/meeting/join/{meeting.id}/authenticated"
-    response = client_app.get(url)
+    response = client_app.get(url, status=302)
 
-    assert response.status_code == 302
     assert "/meeting/wait/1/creator/1/hash/" in response.location
     assert "Bob%20Dylan" in response.location
 
@@ -50,9 +52,9 @@ def test_join_meeting_as_authenticated_attendee_with_fullname_suffix(
             "h": meeting_hash,
             "fullname_suffix": "Service",
         },
+        status=302,
     )
 
-    assert response.status_code == 302
     assert (
         f"{app.config['BIGBLUEBUTTON_ENDPOINT']}/join?fullName=Bob+Dylan+-+Service&"
         in response.location
@@ -95,9 +97,9 @@ def test_join_meeting(client_app, app, meeting, bbb_response):
             "user_id": meeting.user.id,
             "h": meeting_hash,
         },
+        status=302,
     )
 
-    assert response.status_code == 302
     assert (
         f"{app.config['BIGBLUEBUTTON_ENDPOINT']}/join?fullName={fullname}"
         in response.location
@@ -119,9 +121,9 @@ def test_join_mail_meeting(client_app, app, meeting, bbb_response):
             "h": meeting_hash,
             "expiration": expiration,
         },
+        status=302,
     )
 
-    assert response.status_code == 302
     assert (
         f"{app.config['BIGBLUEBUTTON_ENDPOINT']}/join?fullName={fullname}"
         in response.location
@@ -133,9 +135,8 @@ def test_join_meeting_as_role(
 ):
     fullname = "Alice+Cooper"
 
-    response = client_app.get(f"/meeting/join/{meeting.id}/attendee")
+    response = client_app.get(f"/meeting/join/{meeting.id}/attendee", status=302)
 
-    assert response.status_code == 302
     assert (
         f"{app.config['BIGBLUEBUTTON_ENDPOINT']}/join?fullName={fullname}"
         in response.location
@@ -170,9 +171,8 @@ def test_waiting_meeting_with_a_fullname_containing_a_slash(client_app, app, mee
             fullname=fullname,
             fullname_suffix=fullname_suffix,
         )
-    response = client_app.get(waiting_meeting_url)
+    response = client_app.get(waiting_meeting_url, status=200)
 
-    assert response.status_code == 200
     response.mustcontain(fullname)
 
 
@@ -190,6 +190,4 @@ def test_waiting_meeting_with_empty_fullname_suffix(client_app, app, meeting):
             fullname=fullname,
             fullname_suffix="",
         )
-    response = client_app.get(waiting_meeting_url)
-
-    assert response.status_code == 200
+    client_app.get(waiting_meeting_url, status=200)
diff --git a/web/tests/meeting/test_meeting.py b/web/tests/meeting/test_meeting.py
index d0275df9..8e8bb171 100644
--- a/web/tests/meeting/test_meeting.py
+++ b/web/tests/meeting/test_meeting.py
@@ -11,25 +11,22 @@ def mocked_is_meeting_running(mocker):
 
 
 def test_show_meeting(client_app, app, authenticated_user, meeting, bbb_response):
-    response = client_app.get(f"/meeting/show/{meeting.id}")
+    response = client_app.get(f"/meeting/show/{meeting.id}", status=200)
 
-    assert response.status_code == 200
     response.mustcontain("<!-- test show meeting -->")
 
 
 def test_show_meeting_recording(
     client_app, app, authenticated_user, meeting, bbb_response
 ):
-    response = client_app.get(f"/meeting/recordings/{meeting.id}")
+    response = client_app.get(f"/meeting/recordings/{meeting.id}", status=200)
 
-    assert response.status_code == 200
     response.mustcontain("<!-- test show meeting recording -->")
 
 
 def test_new_meeting(client_app, authenticated_user):
-    response = client_app.get("/meeting/new")
+    response = client_app.get("/meeting/new", status=200)
 
-    assert response.status_code == 200
     response.mustcontain("<!-- test page wizard -->")
 
 
@@ -42,9 +39,8 @@ def test_new_meeting_when_recording_not_configured(client_app, app, authenticate
 
 
 def test_edit_meeting(client_app, app, authenticated_user, meeting, bbb_response):
-    response = client_app.get(f"/meeting/edit/{meeting.id}")
+    response = client_app.get(f"/meeting/edit/{meeting.id}", status=200)
 
-    assert response.status_code == 200
     response.mustcontain("<!-- test page wizard -->")
 
 
@@ -76,9 +72,9 @@ def test_save_new_meeting(
     response = client_app.post(
         "/meeting/save",
         MEETING_DATA,
+        status=302,
     )
 
-    assert response.status_code == 302
     assert "welcome" in response.location
 
     meeting = Meeting.query.get(1)
@@ -116,9 +112,9 @@ def test_save_existing_meeting(
     response = client_app.post(
         "/meeting/save",
         data,
+        status=302,
     )
 
-    assert response.status_code == 302
     assert "welcome" in response.location
 
     assert len(Meeting.query.all()) == 1
@@ -157,9 +153,9 @@ def test_save_moderatorOnlyMessage_too_long(
     response = client_app.post(
         "/meeting/save",
         data,
+        status=200,
     )
 
-    assert response.status_code == 200
     response.mustcontain("<!-- test page wizard -->")
     response.mustcontain("Le formulaire contient des erreurs")
     response.mustcontain(moderator_only_message)
@@ -174,9 +170,8 @@ def test_save_no_recording_by_default(
     del data["autoStartRecording"]
     del data["allowStartStopRecording"]
 
-    response = client_app.post("/meeting/save", data)
+    client_app.post("/meeting/save", data, status=302)
 
-    assert response.status_code == 302
     meeting = Meeting.query.get(1)
     assert meeting.record is False
     assert meeting.autoStartRecording is False
@@ -191,9 +186,9 @@ def test_save_meeting_in_no_recording_environment(
     response = client_app.post(
         "/meeting/save",
         MEETING_DATA,
+        status=302,
     )
 
-    assert response.status_code == 302
     assert "welcome" in response.location
 
     assert len(Meeting.query.all()) == 1
@@ -290,12 +285,12 @@ def test_create_without_logout_url_gets_default(
     data = MEETING_DATA.copy()
     del data["logoutUrl"]
 
-    response = client_app.post(
+    client_app.post(
         "/meeting/save",
         data,
+        status=302,
     )
 
-    assert response.status_code == 302
     meeting = Meeting.query.get(1)
     assert meeting
     assert meeting.logoutUrl == app.config["MEETING_LOGOUT_URL"]
@@ -339,9 +334,8 @@ class Resp:
 def test_edit_files_meeting(client_app, app, authenticated_user, meeting, bbb_response):
     app.config["FILE_SHARING"] = True
 
-    response = client_app.get(f"/meeting/files/{meeting.id}")
+    response = client_app.get(f"/meeting/files/{meeting.id}", status=200)
 
-    assert response.status_code == 200
     response.mustcontain("<!-- test edit meeting files -->")
 
 
@@ -350,9 +344,8 @@ def test_deactivated_meeting_files_cannot_access_files(
 ):
     app.config["FILE_SHARING"] = False
 
-    response = client_app.get("/welcome")
+    response = client_app.get("/welcome", status=200)
 
-    assert response.status_code == 200
     response.mustcontain(no="Fichiers associés à ")
 
 
@@ -361,7 +354,6 @@ def test_deactivated_meeting_files_cannot_edit(
 ):
     app.config["FILE_SHARING"] = False
 
-    response = client_app.get(f"/meeting/files/{meeting.id}")
+    response = client_app.get(f"/meeting/files/{meeting.id}", status=302)
 
-    assert response.status_code == 302
     assert "welcome" in response.location
diff --git a/web/tests/meeting/test_recordings.py b/web/tests/meeting/test_recordings.py
index b9d3050c..59786f39 100644
--- a/web/tests/meeting/test_recordings.py
+++ b/web/tests/meeting/test_recordings.py
@@ -159,6 +159,7 @@ class Resp:
     response = client_app.post(
         f"/meeting/{meeting.id}/recordings/recording_id",
         {"name": "First recording"},
+        status=302,
     )
 
     bbb_url = mocked_bbb_request.call_args.args
@@ -167,5 +168,4 @@ class Resp:
     assert ("meta_name", "First recording") in bbb_params
     assert ("recordID", "recording_id") in bbb_params
 
-    assert response.status_code == 302
     assert f"meeting/recordings/{meeting.id}" in response.location
diff --git a/web/tests/test_default.py b/web/tests/test_default.py
index 42867b59..c976dd11 100644
--- a/web/tests/test_default.py
+++ b/web/tests/test_default.py
@@ -1,17 +1,12 @@
-from flask import session
-
-
 def test_root__anonymous_user(client_app):
-    response = client_app.get("/")
+    response = client_app.get("/", status=302)
 
-    assert response.status_code == 302
     assert "/home" in response.location
 
 
 def test_root__authenticated_user(client_app, authenticated_user):
-    response = client_app.get("/")
+    response = client_app.get("/", status=302)
 
-    assert response.status_code == 302
     assert "/welcome" in response.location
 
 
@@ -22,9 +17,10 @@ def test_home__anonymous_user(client_app, mocker):
     }
     mocker.patch("flaskr.routes.get_meetings_stats", return_value=STATS)
 
-    response = client_app.get("/home", extra_environ={"REMOTE_ADDR": "127.0.0.1"})
+    response = client_app.get(
+        "/home", extra_environ={"REMOTE_ADDR": "127.0.0.1"}, status=200
+    )
 
-    assert response.status_code == 200
     response.mustcontain("<!-- test page home -->")
 
 
@@ -35,121 +31,106 @@ def test_home__authenticated_user(client_app, mocker, authenticated_user):
     }
     mocker.patch("flaskr.routes.get_meetings_stats", return_value=STATS)
 
-    response = client_app.get("/home", extra_environ={"REMOTE_ADDR": "127.0.0.1"})
+    response = client_app.get(
+        "/home", extra_environ={"REMOTE_ADDR": "127.0.0.1"}, status=200
+    )
 
-    assert response.status_code == 200
     response.mustcontain("<!-- test page home -->")
 
 
 def test_change_language(client_app):
-    response = client_app.get("/faq?lang=fr")
-    assert response.status_code == 200
+    response = client_app.get("/faq?lang=fr", status=200)
     with client_app.session_transaction() as session:
         assert session["lang"] == "fr"
 
-    response = client_app.get("/faq?lang=uk")
-    assert response.status_code == 200
+    response = client_app.get("/faq?lang=uk", status=200)
     with client_app.session_transaction() as session:
         assert session["lang"] == "uk"
 
-    response = client_app.get("/faq")
-    assert response.status_code == 200
+    response = client_app.get("/faq", status=200)
     with client_app.session_transaction() as session:
         assert session["lang"] == "uk"
 
 
 def test_faq__anonymous_user(client_app):
-    response = client_app.get("/faq")
+    response = client_app.get("/faq", status=200)
 
-    assert response.status_code == 200
     response.mustcontain(no="Alice Cooper")
 
 
 def test_faq__authenticated_user(client_app, authenticated_user):
-    response = client_app.get("/faq")
+    response = client_app.get("/faq", status=200)
 
-    assert response.status_code == 200
     response.mustcontain("Alice Cooper")
 
 
 def test_documentation__anonymous_user(app, client_app, mocker):
     app.config["DOCUMENTATION_LINK"]["url"] = "/documentation"
     app.config["DOCUMENTATION_LINK"]["is_external"] = False
-    response = client_app.get("/documentation")
+    response = client_app.get("/documentation", status=200)
 
-    assert response.status_code == 200
     response.mustcontain(no="Alice Cooper")
 
 
 def test_documentation__authenticated_user(app, client_app, authenticated_user):
     app.config["DOCUMENTATION_LINK"]["url"] = "/documentation"
     app.config["DOCUMENTATION_LINK"]["is_external"] = False
-    response = client_app.get("/documentation")
+    response = client_app.get("/documentation", status=200)
 
-    assert response.status_code == 200
     response.mustcontain("Alice Cooper")
 
 
 def test_documentation_with_redirection(app, client_app):
     app.config["DOCUMENTATION_LINK"]["url"] = "https://documentation_redirect.ion"
     app.config["DOCUMENTATION_LINK"]["is_external"] = True
-    response = client_app.get("/documentation")
+    response = client_app.get("/documentation", status=302)
 
-    assert response.status_code == 302
     response.mustcontain(app.config["DOCUMENTATION_LINK"]["url"])
 
 
 def test_accessibilite__anonymous_user(client_app):
-    response = client_app.get("/accessibilite")
+    response = client_app.get("/accessibilite", status=200)
 
-    assert response.status_code == 200
     response.mustcontain(no="Alice Cooper")
 
 
 def test_accessibilite__authenticated_user(client_app, authenticated_user):
-    response = client_app.get("/accessibilite")
+    response = client_app.get("/accessibilite", status=200)
 
-    assert response.status_code == 200
     response.mustcontain("Alice Cooper")
 
 
 def test_mentions_legales__anonymous_user(client_app):
-    response = client_app.get("/mentions_legales")
+    response = client_app.get("/mentions_legales", status=200)
 
-    assert response.status_code == 200
     response.mustcontain(no="Alice Cooper")
 
 
 def test_mentions_legales__authenticated_user(client_app, authenticated_user):
-    response = client_app.get("/mentions_legales")
+    response = client_app.get("/mentions_legales", status=200)
 
-    assert response.status_code == 200
     response.mustcontain("Alice Cooper")
 
 
 def test_cgu__anonymous_user(client_app):
-    response = client_app.get("/cgu")
+    response = client_app.get("/cgu", status=200)
 
-    assert response.status_code == 200
     response.mustcontain(no="Alice Cooper")
 
 
 def test_cgu__authenticated_user(client_app, authenticated_user):
-    response = client_app.get("/cgu")
+    response = client_app.get("/cgu", status=200)
 
-    assert response.status_code == 200
     response.mustcontain("Alice Cooper")
 
 
 def test_donnees_personnelles__anonymous_user(client_app):
-    response = client_app.get("/donnees_personnelles")
+    response = client_app.get("/donnees_personnelles", status=200)
 
-    assert response.status_code == 200
     response.mustcontain(no="Alice Cooper")
 
 
 def test_donnees_personnelles__authenticated_user(client_app, authenticated_user):
-    response = client_app.get("/donnees_personnelles")
+    response = client_app.get("/donnees_personnelles", status=200)
 
-    assert response.status_code == 200
     response.mustcontain("Alice Cooper")

From b956ea080c016c7bb61d6a98effd59005a14075b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
Date: Thu, 20 Jul 2023 15:36:35 +0200
Subject: [PATCH 19/24] refactor: implement `has_user_session` utility

---
 web/flaskr/routes.py | 30 ++++++++++++------------------
 1 file changed, 12 insertions(+), 18 deletions(-)

diff --git a/web/flaskr/routes.py b/web/flaskr/routes.py
index 56769925..12980e52 100755
--- a/web/flaskr/routes.py
+++ b/web/flaskr/routes.py
@@ -209,6 +209,11 @@ def get_current_user():
     return get_or_create_user(info)
 
 
+def has_user_session():
+    user_session = UserSession(dict(session), "default")
+    return user_session.is_authenticated()
+
+
 def add_mailto_links(meeting_data):
     d = meeting_data
     d["moderator_mailto_href"] = render_template(
@@ -319,8 +324,7 @@ def insertDocuments(meeting_id):
 
 @bp.route("/mentions_legales")
 def mentions_legales():
-    user_session = UserSession(session, "default")
-    if user_session.is_authenticated():
+    if has_user_session():
         logged_in = True
         user = get_current_user()
         fullname = user.fullname
@@ -340,8 +344,7 @@ def mentions_legales():
 
 @bp.route("/cgu")
 def cgu():
-    user_session = UserSession(session, "default")
-    if user_session.is_authenticated():
+    if has_user_session():
         logged_in = True
         user = get_current_user()
         fullname = user.fullname
@@ -361,8 +364,7 @@ def cgu():
 
 @bp.route("/donnees_personnelles")
 def donnees_personnelles():
-    user_session = UserSession(session, "default")
-    if user_session.is_authenticated():
+    if has_user_session():
         logged_in = True
         user = get_current_user()
         fullname = user.fullname
@@ -382,8 +384,7 @@ def donnees_personnelles():
 
 @bp.route("/accessibilite")
 def accessibilite():
-    user_session = UserSession(session, "default")
-    if user_session.is_authenticated():
+    if has_user_session():
         logged_in = True
         user = get_current_user()
         fullname = user.fullname
@@ -405,8 +406,7 @@ def accessibilite():
 def documentation():
     if current_app.config["DOCUMENTATION_LINK"]["is_external"]:
         return redirect(current_app.config["DOCUMENTATION_LINK"]["url"])
-    user_session = UserSession(session, "default")
-    if user_session.is_authenticated():
+    if has_user_session():
         logged_in = True
         user = get_current_user()
         fullname = user.fullname
@@ -424,8 +424,7 @@ def documentation():
 
 @bp.route("/faq")
 def faq():
-    user_session = UserSession(session, "default")
-    if user_session.is_authenticated():
+    if has_user_session():
         logged_in = True
         user = get_current_user()
         fullname = user.fullname
@@ -444,12 +443,7 @@ def faq():
 
 @bp.route("/")
 def index():
-    user_session = UserSession(session, "default")
-    if user_session.is_authenticated():
-        logged_in = True
-    else:
-        logged_in = False
-    if logged_in:
+    if has_user_session():
         return redirect("/welcome")
     else:
         return redirect("/home")

From 4e83406d72c4267306d3643504c0719a14c44695 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
Date: Thu, 20 Jul 2023 16:40:15 +0200
Subject: [PATCH 20/24] feat: meeting owner are always promoted moderators when
 authenticated

---
 web/flaskr/models.py           |  6 ++++--
 web/flaskr/routes.py           | 12 +++++++++---
 web/tests/meeting/test_join.py | 30 +++++++++++++++++++++++++++++-
 3 files changed, 42 insertions(+), 6 deletions(-)

diff --git a/web/flaskr/models.py b/web/flaskr/models.py
index 4e175a68..a89e0aef 100755
--- a/web/flaskr/models.py
+++ b/web/flaskr/models.py
@@ -767,8 +767,10 @@ def get_data_as_dict(self, fullname, fetch_recording=False):
         d["attendee_join_url"] = self.get_join_url("attendee", fullname)
         return d
 
-    def get_role(self, hashed_role):
-        if self.get_hash("attendee") == hashed_role:
+    def get_role(self, hashed_role, user_id=None):
+        if user_id and self.user.id == user_id:
+            return "moderator"
+        elif self.get_hash("attendee") == hashed_role:
             role = "attendee"
         elif self.get_hash("moderator") == hashed_role:
             role = "moderator"
diff --git a/web/flaskr/routes.py b/web/flaskr/routes.py
index 12980e52..25be81d5 100755
--- a/web/flaskr/routes.py
+++ b/web/flaskr/routes.py
@@ -1452,7 +1452,9 @@ def signin_meeting(meeting_fake_id, user_id, h):
             "success",
         )
         return redirect("/")
-    role = meeting.get_role(h)
+
+    current_user_id = get_current_user().id if has_user_session() else None
+    role = meeting.get_role(h, current_user_id)
 
     if role == "authenticated":
         return redirect(
@@ -1484,7 +1486,9 @@ def waiting_meeting(meeting_fake_id, user_id, h, fullname, fullname_suffix):
     meeting = get_meeting_from_meeting_id_and_user_id(meeting_fake_id, user_id)
     if meeting is None:
         return redirect("/")
-    role = meeting.get_role(h)
+
+    current_user_id = get_current_user().id if has_user_session() else None
+    role = meeting.get_role(h, current_user_id)
     if not role:
         return redirect("/")
     return render_template(
@@ -1514,7 +1518,9 @@ def join_meeting():
     meeting = get_meeting_from_meeting_id_and_user_id(meeting_fake_id, user_id)
     if meeting is None:
         return redirect("/")
-    role = meeting.get_role(h)
+
+    current_user_id = get_current_user().id if has_user_session() else None
+    role = meeting.get_role(h, current_user_id)
     fullname_suffix = form["fullname_suffix"].data
     if role == "authenticated":
         fullname = get_authenticated_attendee_fullname()
diff --git a/web/tests/meeting/test_join.py b/web/tests/meeting/test_join.py
index e02ffab5..f4e89ba8 100644
--- a/web/tests/meeting/test_join.py
+++ b/web/tests/meeting/test_join.py
@@ -5,7 +5,7 @@
 from urllib.parse import parse_qs
 
 
-def test_signin_meeting(client_app, app, meeting, user):
+def test_signin_meeting(client_app, app, meeting, user, bbb_response):
     meeting_hash = meeting.get_hash("attendee")
 
     url = f"/meeting/signin/{meeting.id}/creator/{meeting.user.id}/hash/{meeting_hash}"
@@ -16,6 +16,34 @@ def test_signin_meeting(client_app, app, meeting, user):
     join_url = "/meeting/join"
     assert join_url == response.form.action
 
+    response = response.form.submit()
+    url = urlparse(response.location)
+    url_role = parse_qs(url.query)["role"]
+    assert url_role == ["viewer"]
+
+
+def test_attendee_link_moderator_promotion_for_meeting_owner_already_authenticated(
+    client_app,
+    app,
+    meeting,
+    authenticated_user,
+    bbb_response,
+):
+    """
+    If the meeting owner are authenticated, they must be automatically
+    promoted moderator in the meeting when clicking on an attendee link.
+    """
+    meeting_hash = meeting.get_hash("attendee")
+    url = f"/meeting/signin/{meeting.id}/creator/{meeting.user.id}/hash/{meeting_hash}"
+
+    response = client_app.get(
+        url, extra_environ={"REMOTE_ADDR": "127.0.0.1"}, status=200
+    )
+    response = response.form.submit()
+    url = urlparse(response.location)
+    url_role = parse_qs(url.query)["role"]
+    assert url_role == ["moderator"]
+
 
 def test_signin_meeting_with_authenticated_attendee(client_app, app, meeting):
     meeting_hash = meeting.get_hash("authenticated")

From dc8bd7fbc936c1adb68fb53350fb1c597dece562 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
Date: Fri, 21 Jul 2023 10:27:12 +0200
Subject: [PATCH 21/24] fix: user is always passed in the jinja contexts

This ensures the templates always know if users are connected,
and avoids explicitly passing the variable in the view functions,
thus reducing the code quantity.

This also automatically fills the user name in the forms if they are
logged in.
---
 web/flaskr/routes.py                         | 145 +++----------------
 web/flaskr/templates/jumbotron.html          |   2 +-
 web/flaskr/templates/meeting/signin.html     |   2 +-
 web/flaskr/templates/meeting/signinmail.html |   4 +-
 web/flaskr/templates/tools.html              |   2 +-
 5 files changed, 24 insertions(+), 131 deletions(-)

diff --git a/web/flaskr/routes.py b/web/flaskr/routes.py
index 25be81d5..9ea4086d 100755
--- a/web/flaskr/routes.py
+++ b/web/flaskr/routes.py
@@ -214,6 +214,21 @@ def has_user_session():
     return user_session.is_authenticated()
 
 
+@bp.context_processor
+def global_processor():
+    if has_user_session():
+        user = get_current_user()
+        return {
+            "user": user,
+            "fullname": user.fullname,
+        }
+    else:
+        return {
+            "user": None,
+            "fullname": "",
+        }
+
+
 def add_mailto_links(meeting_data):
     d = meeting_data
     d["moderator_mailto_href"] = render_template(
@@ -259,8 +274,6 @@ def api_meetings():
     user = get_or_create_user(info)
     fullname = user.fullname
     stats = get_meetings_stats()
-    if user is not None:
-        logged_in = True
     return {
         "meetings": [
             {
@@ -324,19 +337,8 @@ def insertDocuments(meeting_id):
 
 @bp.route("/mentions_legales")
 def mentions_legales():
-    if has_user_session():
-        logged_in = True
-        user = get_current_user()
-        fullname = user.fullname
-    else:
-        user = None
-        fullname = None
-        logged_in = False
     return render_template(
         "footer/mentions_legales.html",
-        logged_in=logged_in,
-        user=user,
-        fullname=fullname,
         service_title=current_app.config["SERVICE_TITLE"],
         service_tagline=current_app.config["SERVICE_TAGLINE"],
     )
@@ -344,19 +346,8 @@ def mentions_legales():
 
 @bp.route("/cgu")
 def cgu():
-    if has_user_session():
-        logged_in = True
-        user = get_current_user()
-        fullname = user.fullname
-    else:
-        user = None
-        fullname = None
-        logged_in = False
     return render_template(
         "footer/cgu.html",
-        logged_in=logged_in,
-        user=user,
-        fullname=fullname,
         service_title=current_app.config["SERVICE_TITLE"],
         service_tagline=current_app.config["SERVICE_TAGLINE"],
     )
@@ -364,19 +355,8 @@ def cgu():
 
 @bp.route("/donnees_personnelles")
 def donnees_personnelles():
-    if has_user_session():
-        logged_in = True
-        user = get_current_user()
-        fullname = user.fullname
-    else:
-        user = None
-        fullname = None
-        logged_in = False
     return render_template(
         "footer/donnees_personnelles.html",
-        logged_in=logged_in,
-        user=user,
-        fullname=fullname,
         service_title=current_app.config["SERVICE_TITLE"],
         service_tagline=current_app.config["SERVICE_TAGLINE"],
     )
@@ -384,19 +364,8 @@ def donnees_personnelles():
 
 @bp.route("/accessibilite")
 def accessibilite():
-    if has_user_session():
-        logged_in = True
-        user = get_current_user()
-        fullname = user.fullname
-    else:
-        user = None
-        fullname = None
-        logged_in = False
     return render_template(
         "footer/accessibilite.html",
-        logged_in=logged_in,
-        user=user,
-        fullname=fullname,
         service_title=current_app.config["SERVICE_TITLE"],
         service_tagline=current_app.config["SERVICE_TAGLINE"],
     )
@@ -406,38 +375,16 @@ def accessibilite():
 def documentation():
     if current_app.config["DOCUMENTATION_LINK"]["is_external"]:
         return redirect(current_app.config["DOCUMENTATION_LINK"]["url"])
-    if has_user_session():
-        logged_in = True
-        user = get_current_user()
-        fullname = user.fullname
-    else:
-        user = None
-        fullname = None
-        logged_in = False
     return render_template(
         "footer/documentation.html",
-        logged_in=logged_in,
-        user=user,
-        fullname=fullname,
     )
 
 
 @bp.route("/faq")
 def faq():
-    if has_user_session():
-        logged_in = True
-        user = get_current_user()
-        fullname = user.fullname
-    else:
-        user = None
-        fullname = None
-        logged_in = False
     return render_template(
         "faq.html",
-        logged_in=logged_in,
-        user=user,
         contents=FAQ_CONTENT,
-        fullname=fullname,
     )
 
 
@@ -471,22 +418,15 @@ def home():
 @auth.oidc_auth("default")
 def welcome():
     user = get_current_user()
-    fullname = user.fullname
     stats = get_meetings_stats()
-    if user is not None:
-        logged_in = True
-
     return render_template(
         "welcome.html",
         title=current_app.config["TITLE"],
-        user=user,
-        fullname=fullname,
         stats=stats,
         max_participants=current_app.config["MAX_PARTICIPANTS"],
         meetings=[
-            add_mailto_links(m.get_data_as_dict(fullname)) for m in user.meetings
+            add_mailto_links(m.get_data_as_dict(user.fullname)) for m in user.meetings
         ],
-        logged_in=logged_in,
         can_create_meetings=user.can_create_meetings,
         max_meetings_per_user=current_app.config["MAX_MEETINGS_PER_USER"],
         mailto=current_app.config["MAILTO_LINKS"],
@@ -603,17 +543,11 @@ def show_meeting(meeting_id):
         )
         return redirect("/welcome")
     user = get_current_user()
-    fullname = user.fullname
-    if user is not None:
-        logged_in = True
     meeting = Meeting.query.get(meeting_id)
     if meeting.user_id == user.id:
         return render_template(
             "meeting/show.html",
-            user=user,
-            fullname=fullname,
-            meeting=add_mailto_links(meeting.get_data_as_dict(fullname)),
-            logged_in=logged_in,
+            meeting=add_mailto_links(meeting.get_data_as_dict(user.fullname)),
         )
     flash(lazy_gettext("Vous ne pouvez pas consulter cet élément"), "warning")
     return redirect("/welcome")
@@ -630,19 +564,13 @@ def show_meeting_recording(meeting_id):
         )
         return redirect("/welcome")
     user = get_current_user()
-    fullname = user.fullname
-    if user is not None:
-        logged_in = True
     meeting = Meeting.query.get(meeting_id)
     if meeting.user_id == user.id:
-        meeting_dict = meeting.get_data_as_dict(fullname, fetch_recording=True)
+        meeting_dict = meeting.get_data_as_dict(user.fullname, fetch_recording=True)
         form = RecordingForm()
         return render_template(
             "meeting/recordings.html",
-            user=user,
-            fullname=fullname,
             meeting=add_mailto_links(meeting_dict),
-            logged_in=logged_in,
             form=form,
         )
     flash(lazy_gettext("Vous ne pouvez pas consulter cet élément"), "warning")
@@ -678,10 +606,6 @@ def update_recording_name(meeting_id, recording_id):
 @auth.oidc_auth("default")
 def new_meeting():
     user = get_current_user()
-    fullname = user.fullname
-    if user is not None:
-        logged_in = True
-
     if not user.can_create_meetings:
         return redirect("/welcome")
 
@@ -689,12 +613,9 @@ def new_meeting():
 
     return render_template(
         "meeting/wizard.html",
-        user=user,
-        fullname=fullname,
         meeting=None,
         form=form,
         recording=current_app.config["RECORDING"],
-        logged_in=logged_in,
     )
 
 
@@ -702,9 +623,6 @@ def new_meeting():
 @auth.oidc_auth("default")
 def edit_meeting(meeting_id):
     user = get_current_user()
-    fullname = user.fullname
-    if user is not None:
-        logged_in = True
     meeting = Meeting.query.get(meeting_id)
 
     form = (
@@ -715,12 +633,9 @@ def edit_meeting(meeting_id):
     if meeting and meeting.user_id == user.id:
         return render_template(
             "meeting/wizard.html",
-            user=user,
-            fullname=fullname,
             meeting=meeting,
             form=form,
             recording=current_app.config["RECORDING"],
-            logged_in=logged_in,
         )
     flash("Vous ne pouvez pas modifier cet élément", "warning")
     return redirect("/welcome")
@@ -730,10 +645,6 @@ def edit_meeting(meeting_id):
 @auth.oidc_auth("default")
 def edit_meeting_files(meeting_id):
     user = get_current_user()
-    fullname = user.fullname
-    if user is not None:
-        logged_in = True
-
     meeting = Meeting.query.get(meeting_id)
 
     form = MeetingFilesForm()
@@ -758,13 +669,10 @@ def edit_meeting_files(meeting_id):
         if user is not None and meeting.user_id == user.id:
             return render_template(
                 "meeting/filesform.html",
-                user=user,
-                fullname=fullname,
                 meeting=meeting,
                 form=form,
                 fqdn=current_app.config["SERVER_FQDN"],
                 beta=current_app.config["BETA"],
-                logged_in=logged_in,
             )
     flash(lazy_gettext("Vous ne pouvez pas modifier cet élément"), "warning")
     return redirect("/welcome")
@@ -846,8 +754,6 @@ def set_meeting_default_file(meeting_id):
     user = get_current_user()
     data = request.get_json()
 
-    if user is not None:
-        logged_in = True
     meeting = Meeting.query.get(meeting_id)
     if meeting.user_id == user.id:
         actual_default_file = meeting.default_file
@@ -1064,9 +970,6 @@ def add_meeting_files(meeting_id):
     user = get_current_user()
     meeting = Meeting.query.get(meeting_id)
 
-    if user is not None:
-        logged_in = True
-
     data = request.get_json()
     is_default = False
     if len(meeting.files) == 0:
@@ -1147,9 +1050,6 @@ def upload(user, meeting_id, file):
 @auth.oidc_auth("default")
 def delete_meeting_file():
     user = get_current_user()
-    if user is not None:
-        logged_in = True
-
     data = request.get_json()
     meeting_file_id = data["id"]
     meetingFile = MeetingFiles()
@@ -1196,12 +1096,9 @@ def save_meeting():
         flash("Le formulaire contient des erreurs", "error")
         return render_template(
             "meeting/wizard.html",
-            user=user,
-            fullname=user.fullname,
             meeting=None if is_new_meeting else Meeting.query.get(form.id.data),
             form=form,
             recording=current_app.config["RECORDING"],
-            logged_in=True,
         )
 
     if is_new_meeting:
@@ -1230,8 +1127,6 @@ def save_meeting():
         EndMeetingForm.meeting_id.data = meeting.id
         return render_template(
             "meeting/end.html",
-            user=user,
-            logged_in=True,
             meeting=meeting,
             form=EndMeetingForm(data={"meeting_id": meeting_id}),
         )
@@ -1326,9 +1221,7 @@ def externalUpload(meeting_id):
         and user is not None
         and meeting.user_id == user.id
     ):
-        return render_template(
-            "meeting/externalUpload.html", user=user, meeting=meeting
-        )
+        return render_template("meeting/externalUpload.html", meeting=meeting)
     else:
         return redirect("/welcome")
 
diff --git a/web/flaskr/templates/jumbotron.html b/web/flaskr/templates/jumbotron.html
index 48c97721..4ce19f38 100644
--- a/web/flaskr/templates/jumbotron.html
+++ b/web/flaskr/templates/jumbotron.html
@@ -1,5 +1,5 @@
 {% include 'rie.html' %}
-{% if logged_in == true %}
+{% if user %}
 <div class="grey-section fr-py-3w">
   <div class="fr-container">
     <div class="fr-mt-4w fr-grid-row fr-grid-row--center">
diff --git a/web/flaskr/templates/meeting/signin.html b/web/flaskr/templates/meeting/signin.html
index d250a917..238db579 100644
--- a/web/flaskr/templates/meeting/signin.html
+++ b/web/flaskr/templates/meeting/signin.html
@@ -23,7 +23,7 @@ <h1 class="fr-h2">{% trans %}Rejoindre {{ the_meeting }}{% endtrans %}</h1>
           <div class="fr-col">
             <label for="fullname" class="fr-label" aria-describedby="text-input-desc">{% trans %}Votre nom{% endtrans %}</label>
             {% if role != "authenticated" %}<p class="fr-hint-text" id="text-input-desc">{% trans %}Vous pouvez également préciser votre service ou votre fonction.{% endtrans %}</p>{% endif %}
-            <input type="text" required class="fr-input" id="fullname" name="fullname" {% if fullname is defined %}value="{{ fullname }}" readonly="readonly"{% endif %} />
+            <input type="text" required class="fr-input" id="fullname" name="fullname" {% if fullname %}value="{{ fullname }}"{% endif %} {% if fullname and not user %}readonly="readonly"{% endif %} />
           </div>
         </div>
 
diff --git a/web/flaskr/templates/meeting/signinmail.html b/web/flaskr/templates/meeting/signinmail.html
index 91384b65..8e066362 100644
--- a/web/flaskr/templates/meeting/signinmail.html
+++ b/web/flaskr/templates/meeting/signinmail.html
@@ -5,7 +5,7 @@ <h1 class="fr-h2">{% trans %}Rejoindre {{ the_meeting }}{% endtrans %}</h1>
       <input type="hidden" id="user_id" name="user_id" value="{{ user_id }}" />
       <input type="hidden" id="expiration" name="expiration" value="{{ expiration }}" />
       <input type="hidden" id="h" name="h" value="{{ h }}" />
-      {% if fullname is defined %}
+      {% if fullname and not user %}
       <p>
         {% trans %}Votre {{ meeting_label }} n'a pas encore été activée par un modérateur{% endtrans %}
       </p>
@@ -15,7 +15,7 @@ <h1 class="fr-h2">{% trans %}Rejoindre {{ the_meeting }}{% endtrans %}</h1>
           <div class="fr-col">
             <label for="fullname" class="fr-label" aria-describedby="text-input-desc">{% trans %}Votre nom{% endtrans %}</label>
             <p class="fr-hint-text" id="text-input-desc">{% trans %}Vous pouvez également préciser votre service ou votre fonction.{% endtrans %}</p>
-            <input type="text" required class="fr-input" id="fullname" name="fullname" {% if fullname is defined %}value="{{ fullname }}"{% endif %} />
+            <input type="text" required class="fr-input" id="fullname" name="fullname" {% if fullname %}value="{{ fullname }}"{% endif %} />
           </div>
         </div>
         <div class="fr-grid-row fr-grid-row--gutters">
diff --git a/web/flaskr/templates/tools.html b/web/flaskr/templates/tools.html
index 9ed98cfb..fb24ec10 100644
--- a/web/flaskr/templates/tools.html
+++ b/web/flaskr/templates/tools.html
@@ -19,7 +19,7 @@
             {{ documentation_link.label }}
           </a>
       </li>
-      {% if logged_in == true %}
+      {% if user %}
         <!-- {% if account_management_url is defined and account_management_url|length %}
         <li class="fr-shortcuts__item">
           <a href="{{ account_management_url }}" class="fr-link fr-fi-lock-line fr-link--icon-left" target="_self">{{ user.fullname }}</a>

From d854c6575a16a03c60d3ea8dbf71bd3eaf94f225 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
Date: Fri, 21 Jul 2023 10:56:35 +0200
Subject: [PATCH 22/24] feat: add a signin button on the meeting join page

---
 web/flaskr/routes.py                     | 15 +++++++++++++++
 web/flaskr/templates/meeting/signin.html |  5 +++++
 2 files changed, 20 insertions(+)

diff --git a/web/flaskr/routes.py b/web/flaskr/routes.py
index 9ea4086d..ac74e5aa 100755
--- a/web/flaskr/routes.py
+++ b/web/flaskr/routes.py
@@ -1366,6 +1366,21 @@ def signin_meeting(meeting_fake_id, user_id, h):
     )
 
 
+@bp.route(
+    "/meeting/auth/<meeting_fake_id>/creator/<int:user_id>/hash/<h>", methods=["GET"]
+)
+@auth.oidc_auth("default")
+def authenticate_then_signin_meeting(meeting_fake_id, user_id, h):
+    return redirect(
+        url_for(
+            "routes.signin_meeting",
+            meeting_fake_id=meeting_fake_id,
+            user_id=user_id,
+            h=h,
+        )
+    )
+
+
 @bp.route(
     "/meeting/wait/<meeting_fake_id>/creator/<int:user_id>/hash/<h>/fullname/<path:fullname>/fullname_suffix/",
     methods=["GET"],
diff --git a/web/flaskr/templates/meeting/signin.html b/web/flaskr/templates/meeting/signin.html
index 238db579..5eefe7bb 100644
--- a/web/flaskr/templates/meeting/signin.html
+++ b/web/flaskr/templates/meeting/signin.html
@@ -42,6 +42,11 @@ <h1 class="fr-h2">{% trans %}Rejoindre {{ the_meeting }}{% endtrans %}</h1>
         <div class="fr-grid-row fr-grid-row--gutters">
           <div class="fr-col">
             <button type="submit" class="fr-btn fr-btn-primary" >{% trans %}Rejoindre{% endtrans %}</button>
+            {% if role != "authenticated" and not user %}
+            <a href="{{ url_for("routes.authenticate_then_signin_meeting", meeting_fake_id=meeting_fake_id, user_id=user_id, h=h ) }}" class="fr-btn fr-btn--secondary" >
+                {% trans %}S’identifier{% endtrans %}
+            </a>
+            {% endif %}
           </div>
         </div>
         {% endif %}

From 58228f42c681fceaf37fb32113ca324f9264f4ac Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
Date: Fri, 28 Jul 2023 10:48:06 +0200
Subject: [PATCH 23/24] feat: the login button becomes a text

---
 web/flaskr/templates/meeting/signin.html | 15 ++++++++++-----
 1 file changed, 10 insertions(+), 5 deletions(-)

diff --git a/web/flaskr/templates/meeting/signin.html b/web/flaskr/templates/meeting/signin.html
index 5eefe7bb..e0a26d46 100644
--- a/web/flaskr/templates/meeting/signin.html
+++ b/web/flaskr/templates/meeting/signin.html
@@ -42,14 +42,19 @@ <h1 class="fr-h2">{% trans %}Rejoindre {{ the_meeting }}{% endtrans %}</h1>
         <div class="fr-grid-row fr-grid-row--gutters">
           <div class="fr-col">
             <button type="submit" class="fr-btn fr-btn-primary" >{% trans %}Rejoindre{% endtrans %}</button>
-            {% if role != "authenticated" and not user %}
-            <a href="{{ url_for("routes.authenticate_then_signin_meeting", meeting_fake_id=meeting_fake_id, user_id=user_id, h=h ) }}" class="fr-btn fr-btn--secondary" >
-                {% trans %}S’identifier{% endtrans %}
-            </a>
-            {% endif %}
           </div>
         </div>
         {% endif %}
+        {% if role != "authenticated" and not user %}
+        <div class="fr-grid-row fr-grid-row--gutters">
+            <div class="fr-col">
+                {% trans %}Vous êtes propriétaire de cette salle ?{% endtrans %}
+                <a href="{{ url_for("routes.authenticate_then_signin_meeting", meeting_fake_id=meeting_fake_id, user_id=user_id, h=h ) }}">
+                    {% trans %}S’identifier{% endtrans %}
+                </a>
+            </div>
+        </div>
+        {% endif %}
       </div>
     </form>
 

From 4e27ba0eaba740e0af800a2b7b5bc81b6e3f49c7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
Date: Mon, 31 Jul 2023 13:38:32 +0200
Subject: [PATCH 24/24] style: black

---
 web/tests/meeting/test_join.py | 1 -
 1 file changed, 1 deletion(-)

diff --git a/web/tests/meeting/test_join.py b/web/tests/meeting/test_join.py
index f4e89ba8..28d13ed4 100644
--- a/web/tests/meeting/test_join.py
+++ b/web/tests/meeting/test_join.py
@@ -180,7 +180,6 @@ def test_join_meeting_as_role__meeting_not_found(
 def test_join_meeting_as_role__not_attendee_or_moderator(
     client_app, app, authenticated_user, meeting, bbb_response
 ):
-
     client_app.get(f"/meeting/join/{meeting.id}/journalist", status=404)