zulip/zerver/tests/test_realm_aliases.py

# -*- coding: utf-8 -*-
from __future__ import absolute_import

from django.core.exceptions import ValidationError
from django.db.utils import IntegrityError
from typing import Optional, Text

from zerver.lib.actions import do_change_is_admin, \
    do_change_realm_alias, do_create_realm, \
    do_remove_realm_alias
from zerver.lib.domains import validate_domain
from zerver.lib.test_classes import ZulipTestCase
from zerver.models import email_allowed_for_realm, get_realm, \
    get_realm_by_email_domain, get_user_profile_by_email, \
    GetRealmByDomainException, RealmAlias

import ujson


class RealmAliasTest(ZulipTestCase):
    def test_list_aliases(self):
        # type: () -> None
        self.login("iago@zulip.com")
        realm = get_realm('zulip')
        RealmAlias.objects.create(realm=realm, domain='acme.com', allow_subdomains=True)
        result = self.client_get("/json/realm/domains")
        self.assert_json_success(result)
        received = ujson.dumps(ujson.loads(result.content)['domains'], sort_keys=True)
        expected = ujson.dumps([{'domain': 'zulip.com', 'allow_subdomains': False},
                                {'domain': 'acme.com', 'allow_subdomains': True}],
                               sort_keys=True)
        self.assertEqual(received, expected)

    def test_not_realm_admin(self):
        # type: () -> None
        self.login("hamlet@zulip.com")
        result = self.client_post("/json/realm/domains")
        self.assert_json_error(result, 'Must be a realm administrator')
        result = self.client_patch("/json/realm/domains/15")
        self.assert_json_error(result, 'Must be a realm administrator')
        result = self.client_delete("/json/realm/domains/15")
        self.assert_json_error(result, 'Must be a realm administrator')

    def test_create_alias(self):
        # type: () -> None
        self.login("iago@zulip.com")
        data = {'domain': ujson.dumps(''),
                'allow_subdomains': ujson.dumps(True)}
        result = self.client_post("/json/realm/domains", info=data)
        self.assert_json_error(result, 'Invalid domain: Domain can\'t be empty.')

        data['domain'] = ujson.dumps('acme.com')
        result = self.client_post("/json/realm/domains", info=data)
        self.assert_json_success(result)
        realm = get_realm('zulip')
        self.assertTrue(RealmAlias.objects.filter(realm=realm, domain='acme.com',
                                                  allow_subdomains=True).exists())

        result = self.client_post("/json/realm/domains", info=data)
        self.assert_json_error(result, 'The domain acme.com is already a part of your organization.')

        self.login("sipbtest@mit.edu")
        mit_user_profile = get_user_profile_by_email("sipbtest@mit.edu")
        do_change_is_admin(mit_user_profile, True)
        result = self.client_post("/json/realm/domains", info=data)
        self.assert_json_error(result, 'The domain acme.com belongs to another organization.')
        with self.settings(REALMS_HAVE_SUBDOMAINS=True):
            result = self.client_post("/json/realm/domains", info=data,
                                      HTTP_HOST=mit_user_profile.realm.host)
            self.assert_json_success(result)

    def test_patch_alias(self):
        # type: () -> None
        self.login("iago@zulip.com")
        realm = get_realm('zulip')
        RealmAlias.objects.create(realm=realm, domain='acme.com',
                                  allow_subdomains=False)
        data = {
            'allow_subdomains': ujson.dumps(True),
        }
        url = "/json/realm/domains/acme.com"
        result = self.client_patch(url, data)
        self.assert_json_success(result)
        self.assertTrue(RealmAlias.objects.filter(realm=realm, domain='acme.com',
                                                  allow_subdomains=True).exists())

        url = "/json/realm/domains/non-existent.com"
        result = self.client_patch(url, data)
        self.assertEqual(result.status_code, 400)
        self.assert_json_error(result, 'No entry found for domain non-existent.com.')

    def test_delete_alias(self):
        # type: () -> None
        self.login("iago@zulip.com")
        realm = get_realm('zulip')
        RealmAlias.objects.create(realm=realm, domain='acme.com')
        result = self.client_delete("/json/realm/domains/non-existent.com")
        self.assertEqual(result.status_code, 400)
        self.assert_json_error(result, 'No entry found for domain non-existent.com.')

        result = self.client_delete("/json/realm/domains/acme.com")
        self.assert_json_success(result)
        self.assertFalse(RealmAlias.objects.filter(domain='acme.com').exists())
        self.assertTrue(realm.restricted_to_domain)

    def test_delete_all_aliases(self):
        # type: () -> None
        self.login("iago@zulip.com")
        realm = get_realm('zulip')
        query = RealmAlias.objects.filter(realm=realm)

        self.assertTrue(realm.restricted_to_domain)
        for alias in query.all():
            do_remove_realm_alias(alias)
        self.assertEqual(query.count(), 0)
        # Deleting last alias should set `restricted_to_domain` to False.
        # This should be tested on a fresh instance, since the cached
        # objects would not be updated.
        self.assertFalse(get_realm('zulip').restricted_to_domain)

    def test_get_realm_by_email_domain(self):
        # type: () -> None
        realm1, created = do_create_realm('testrealm1', 'Test Realm 1')
        realm2, created = do_create_realm('testrealm2', 'Test Realm 2')
        realm3, created = do_create_realm('testrealm3', 'Test Realm 3')

        alias1 = RealmAlias.objects.create(realm=realm1, domain='test1.com', allow_subdomains=True)
        alias2 = RealmAlias.objects.create(realm=realm2, domain='test2.test1.com', allow_subdomains=False)
        RealmAlias.objects.create(realm=realm3, domain='test3.test2.test1.com', allow_subdomains=True)

        def assert_and_check(email, realm_string_id):
            # type: (Text, Optional[Text]) -> None
            realm = get_realm_by_email_domain(email)
            if realm_string_id is None:
                self.assertIsNone(realm)
            else:
                self.assertIsNotNone(realm)
                self.assertEqual(realm.string_id, realm_string_id)

        assert_and_check('user@zulip.com', 'zulip')
        assert_and_check('user@fakedomain.com', None)
        assert_and_check('user@test1.com', 'testrealm1')
        assert_and_check('user@test2.test1.com', 'testrealm2')
        assert_and_check('user@test3.test2.test1.com', 'testrealm3')
        assert_and_check('user@test2.test1.com', 'testrealm2')
        assert_and_check('user@test2.test2.test1.com', 'testrealm1')
        assert_and_check('user@test1.test3.test2.test1.com', 'testrealm3')

        do_change_realm_alias(alias1, False)
        assert_and_check('user@test1.test1.com', None)
        assert_and_check('user@test1.com', 'testrealm1')

        do_change_realm_alias(alias2, True)
        assert_and_check('user@test2.test1.com', 'testrealm2')
        assert_and_check('user@test2.test2.test1.com', 'testrealm2')

        with self.settings(REALMS_HAVE_SUBDOMAINS = True), (
                self.assertRaises(GetRealmByDomainException)):
            get_realm_by_email_domain('user@zulip.com')

    def test_email_allowed_for_realm(self):
        # type: () -> None
        realm1, created = do_create_realm('testrealm1', 'Test Realm 1', restricted_to_domain=True)
        realm2, created = do_create_realm('testrealm2', 'Test Realm 2', restricted_to_domain=True)

        alias = RealmAlias.objects.create(realm=realm1, domain='test1.com', allow_subdomains=False)
        RealmAlias.objects.create(realm=realm2, domain='test2.test1.com', allow_subdomains=True)

        self.assertEqual(email_allowed_for_realm('user@test1.com', realm1), True)
        self.assertEqual(email_allowed_for_realm('user@test2.test1.com', realm1), False)
        self.assertEqual(email_allowed_for_realm('user@test2.test1.com', realm2), True)
        self.assertEqual(email_allowed_for_realm('user@test3.test2.test1.com', realm2), True)
        self.assertEqual(email_allowed_for_realm('user@test3.test1.com', realm2), False)

        do_change_realm_alias(alias, True)
        self.assertEqual(email_allowed_for_realm('user@test1.com', realm1), True)
        self.assertEqual(email_allowed_for_realm('user@test2.test1.com', realm1), True)
        self.assertEqual(email_allowed_for_realm('user@test2.com', realm1), False)

    def test_realm_aliases_uniqueness(self):
        # type: () -> None
        realm = get_realm('zulip')
        with self.settings(REALMS_HAVE_SUBDOMAINS=True), self.assertRaises(IntegrityError):
            RealmAlias.objects.create(realm=realm, domain='zulip.com', allow_subdomains=True)

    def test_validate_domain(self):
        # type: () -> None
        invalid_domains = ['', 'test', 't.', 'test.', '.com', '-test', 'test...com',
                           'test-', 'test_domain.com', 'test.-domain.com']
        for domain in invalid_domains:
            with self.assertRaises(ValidationError):
                validate_domain(domain)

        valid_domains = ['acme.com', 'x-x.y.3.z']
        for domain in valid_domains:
            validate_domain(domain)
Manage allowed domains from admin settings. Fixes: #1867. 2016-12-26 19:19:02 +01:00			`# -- coding: utf-8 --`
			`from __future__ import absolute_import`

Add RealmAlias.allow_subdomains to model, frontend, and API. Includes a database migration. Fixes #1868. 2017-01-21 08:19:03 +01:00			`from django.core.exceptions import ValidationError`
			`from django.db.utils import IntegrityError`
mypy: Clean up repetition in test_realm_aliases. The assert added in this refactoring addresses a mypy issue with strict optional since get_realm_by_email_domain might return None. 2017-03-20 05:32:04 +01:00			`from typing import Optional, Text`
Add RealmAlias.allow_subdomains to model, frontend, and API. Includes a database migration. Fixes #1868. 2017-01-21 08:19:03 +01:00
			`from zerver.lib.actions import do_change_is_admin, \`
actions.py: `restricted_to_domain` should be False if there are no aliases. Having `restricted_to_domain` set to True if there are no more aliases left means the user is either confused or forgot to set it to False. It should be set to False automatically when the last alias is deleted. 2017-01-26 10:52:56 +01:00			`do_change_realm_alias, do_create_realm, \`
			`do_remove_realm_alias`
Add RealmAlias.allow_subdomains to model, frontend, and API. Includes a database migration. Fixes #1868. 2017-01-21 08:19:03 +01:00			`from zerver.lib.domains import validate_domain`
Manage allowed domains from admin settings. Fixes: #1867. 2016-12-26 19:19:02 +01:00			`from zerver.lib.test_classes import ZulipTestCase`
Add RealmAlias.allow_subdomains to model, frontend, and API. Includes a database migration. Fixes #1868. 2017-01-21 08:19:03 +01:00			`from zerver.models import email_allowed_for_realm, get_realm, \`
			`get_realm_by_email_domain, get_user_profile_by_email, \`
			`GetRealmByDomainException, RealmAlias`

Manage allowed domains from admin settings. Fixes: #1867. 2016-12-26 19:19:02 +01:00			`import ujson`


			`class RealmAliasTest(ZulipTestCase):`
Add RealmAlias.allow_subdomains to model, frontend, and API. Includes a database migration. Fixes #1868. 2017-01-21 08:19:03 +01:00			`def test_list_aliases(self):`
Manage allowed domains from admin settings. Fixes: #1867. 2016-12-26 19:19:02 +01:00			`# type: () -> None`
			`self.login("iago@zulip.com")`
			`realm = get_realm('zulip')`
Add RealmAlias.allow_subdomains to model, frontend, and API. Includes a database migration. Fixes #1868. 2017-01-21 08:19:03 +01:00			`RealmAlias.objects.create(realm=realm, domain='acme.com', allow_subdomains=True)`
Manage allowed domains from admin settings. Fixes: #1867. 2016-12-26 19:19:02 +01:00			`result = self.client_get("/json/realm/domains")`
			`self.assert_json_success(result)`
Add RealmAlias.allow_subdomains to model, frontend, and API. Includes a database migration. Fixes #1868. 2017-01-21 08:19:03 +01:00			`received = ujson.dumps(ujson.loads(result.content)['domains'], sort_keys=True)`
			`expected = ujson.dumps([{'domain': 'zulip.com', 'allow_subdomains': False},`
			`{'domain': 'acme.com', 'allow_subdomains': True}],`
			`sort_keys=True)`
			`self.assertEqual(received, expected)`
Manage allowed domains from admin settings. Fixes: #1867. 2016-12-26 19:19:02 +01:00
			`def test_not_realm_admin(self):`
			`# type: () -> None`
			`self.login("hamlet@zulip.com")`
			`result = self.client_post("/json/realm/domains")`
			`self.assert_json_error(result, 'Must be a realm administrator')`
Add RealmAlias.allow_subdomains to model, frontend, and API. Includes a database migration. Fixes #1868. 2017-01-21 08:19:03 +01:00			`result = self.client_patch("/json/realm/domains/15")`
			`self.assert_json_error(result, 'Must be a realm administrator')`
Manage allowed domains from admin settings. Fixes: #1867. 2016-12-26 19:19:02 +01:00			`result = self.client_delete("/json/realm/domains/15")`
			`self.assert_json_error(result, 'Must be a realm administrator')`

Add RealmAlias.allow_subdomains to model, frontend, and API. Includes a database migration. Fixes #1868. 2017-01-21 08:19:03 +01:00			`def test_create_alias(self):`
Manage allowed domains from admin settings. Fixes: #1867. 2016-12-26 19:19:02 +01:00			`# type: () -> None`
			`self.login("iago@zulip.com")`
Add RealmAlias.allow_subdomains to model, frontend, and API. Includes a database migration. Fixes #1868. 2017-01-21 08:19:03 +01:00			`data = {'domain': ujson.dumps(''),`
			`'allow_subdomains': ujson.dumps(True)}`
Manage allowed domains from admin settings. Fixes: #1867. 2016-12-26 19:19:02 +01:00			`result = self.client_post("/json/realm/domains", info=data)`
Add stricter domain validation and improve error messages. 2017-01-21 08:27:36 +01:00			`self.assert_json_error(result, 'Invalid domain: Domain can\'t be empty.')`
Manage allowed domains from admin settings. Fixes: #1867. 2016-12-26 19:19:02 +01:00
Add RealmAlias.allow_subdomains to model, frontend, and API. Includes a database migration. Fixes #1868. 2017-01-21 08:19:03 +01:00			`data['domain'] = ujson.dumps('acme.com')`
Manage allowed domains from admin settings. Fixes: #1867. 2016-12-26 19:19:02 +01:00			`result = self.client_post("/json/realm/domains", info=data)`
			`self.assert_json_success(result)`
Add RealmAlias.allow_subdomains to model, frontend, and API. Includes a database migration. Fixes #1868. 2017-01-21 08:19:03 +01:00			`realm = get_realm('zulip')`
			`self.assertTrue(RealmAlias.objects.filter(realm=realm, domain='acme.com',`
			`allow_subdomains=True).exists())`
Manage allowed domains from admin settings. Fixes: #1867. 2016-12-26 19:19:02 +01:00
			`result = self.client_post("/json/realm/domains", info=data)`
Add RealmAlias.allow_subdomains to model, frontend, and API. Includes a database migration. Fixes #1868. 2017-01-21 08:19:03 +01:00			`self.assert_json_error(result, 'The domain acme.com is already a part of your organization.')`
Manage allowed domains from admin settings. Fixes: #1867. 2016-12-26 19:19:02 +01:00
test_realm_aliases: Edit new realm alias test for subdomains. 2017-01-30 20:54:28 +01:00			`self.login("sipbtest@mit.edu")`
			`mit_user_profile = get_user_profile_by_email("sipbtest@mit.edu")`
			`do_change_is_admin(mit_user_profile, True)`
realm_aliases: Add a test for adding an alias which is already claimed. Fixes: #3514. 2017-01-30 19:30:57 +01:00			`result = self.client_post("/json/realm/domains", info=data)`
Add RealmAlias.allow_subdomains to model, frontend, and API. Includes a database migration. Fixes #1868. 2017-01-21 08:19:03 +01:00			`self.assert_json_error(result, 'The domain acme.com belongs to another organization.')`
test_realm_aliases: Edit new realm alias test for subdomains. 2017-01-30 20:54:28 +01:00			`with self.settings(REALMS_HAVE_SUBDOMAINS=True):`
			`result = self.client_post("/json/realm/domains", info=data,`
			`HTTP_HOST=mit_user_profile.realm.host)`
			`self.assert_json_success(result)`
realm_aliases: Add a test for adding an alias which is already claimed. Fixes: #3514. 2017-01-30 19:30:57 +01:00
Add RealmAlias.allow_subdomains to model, frontend, and API. Includes a database migration. Fixes #1868. 2017-01-21 08:19:03 +01:00			`def test_patch_alias(self):`
Manage allowed domains from admin settings. Fixes: #1867. 2016-12-26 19:19:02 +01:00			`# type: () -> None`
			`self.login("iago@zulip.com")`
			`realm = get_realm('zulip')`
Add RealmAlias.allow_subdomains to model, frontend, and API. Includes a database migration. Fixes #1868. 2017-01-21 08:19:03 +01:00			`RealmAlias.objects.create(realm=realm, domain='acme.com',`
			`allow_subdomains=False)`
			`data = {`
			`'allow_subdomains': ujson.dumps(True),`
			`}`
			`url = "/json/realm/domains/acme.com"`
			`result = self.client_patch(url, data)`
			`self.assert_json_success(result)`
			`self.assertTrue(RealmAlias.objects.filter(realm=realm, domain='acme.com',`
			`allow_subdomains=True).exists())`

			`url = "/json/realm/domains/non-existent.com"`
			`result = self.client_patch(url, data)`
			`self.assertEqual(result.status_code, 400)`
			`self.assert_json_error(result, 'No entry found for domain non-existent.com.')`

			`def test_delete_alias(self):`
			`# type: () -> None`
			`self.login("iago@zulip.com")`
			`realm = get_realm('zulip')`
			`RealmAlias.objects.create(realm=realm, domain='acme.com')`
views/realm_aliases.py: Use domain instead of id as handle for RealmAlias. We need to make the change for the API, and the next commit introduces a unique_together constraint on (realm, domain) anyway. 2017-01-21 09:09:27 +01:00			`result = self.client_delete("/json/realm/domains/non-existent.com")`
			`self.assertEqual(result.status_code, 400)`
			`self.assert_json_error(result, 'No entry found for domain non-existent.com.')`
Manage allowed domains from admin settings. Fixes: #1867. 2016-12-26 19:19:02 +01:00
Add RealmAlias.allow_subdomains to model, frontend, and API. Includes a database migration. Fixes #1868. 2017-01-21 08:19:03 +01:00			`result = self.client_delete("/json/realm/domains/acme.com")`
Manage allowed domains from admin settings. Fixes: #1867. 2016-12-26 19:19:02 +01:00			`self.assert_json_success(result)`
Add RealmAlias.allow_subdomains to model, frontend, and API. Includes a database migration. Fixes #1868. 2017-01-21 08:19:03 +01:00			`self.assertFalse(RealmAlias.objects.filter(domain='acme.com').exists())`
actions.py: `restricted_to_domain` should be False if there are no aliases. Having `restricted_to_domain` set to True if there are no more aliases left means the user is either confused or forgot to set it to False. It should be set to False automatically when the last alias is deleted. 2017-01-26 10:52:56 +01:00			`self.assertTrue(realm.restricted_to_domain)`

			`def test_delete_all_aliases(self):`
			`# type: () -> None`
			`self.login("iago@zulip.com")`
			`realm = get_realm('zulip')`
			`query = RealmAlias.objects.filter(realm=realm)`

			`self.assertTrue(realm.restricted_to_domain)`
			`for alias in query.all():`
			`do_remove_realm_alias(alias)`
			`self.assertEqual(query.count(), 0)`
			# Deleting last alias should set `restricted_to_domain` to False.
			`# This should be tested on a fresh instance, since the cached`
			`# objects would not be updated.`
			`self.assertFalse(get_realm('zulip').restricted_to_domain)`
Manage allowed domains from admin settings. Fixes: #1867. 2016-12-26 19:19:02 +01:00
			`def test_get_realm_by_email_domain(self):`
			`# type: () -> None`
Add RealmAlias.allow_subdomains to model, frontend, and API. Includes a database migration. Fixes #1868. 2017-01-21 08:19:03 +01:00			`realm1, created = do_create_realm('testrealm1', 'Test Realm 1')`
			`realm2, created = do_create_realm('testrealm2', 'Test Realm 2')`
			`realm3, created = do_create_realm('testrealm3', 'Test Realm 3')`

			`alias1 = RealmAlias.objects.create(realm=realm1, domain='test1.com', allow_subdomains=True)`
			`alias2 = RealmAlias.objects.create(realm=realm2, domain='test2.test1.com', allow_subdomains=False)`
			`RealmAlias.objects.create(realm=realm3, domain='test3.test2.test1.com', allow_subdomains=True)`

mypy: Clean up repetition in test_realm_aliases. The assert added in this refactoring addresses a mypy issue with strict optional since get_realm_by_email_domain might return None. 2017-03-20 05:32:04 +01:00			`def assert_and_check(email, realm_string_id):`
			`# type: (Text, Optional[Text]) -> None`
			`realm = get_realm_by_email_domain(email)`
			`if realm_string_id is None:`
			`self.assertIsNone(realm)`
			`else:`
			`self.assertIsNotNone(realm)`
			`self.assertEqual(realm.string_id, realm_string_id)`

			`assert_and_check('user@zulip.com', 'zulip')`
			`assert_and_check('user@fakedomain.com', None)`
			`assert_and_check('user@test1.com', 'testrealm1')`
			`assert_and_check('user@test2.test1.com', 'testrealm2')`
			`assert_and_check('user@test3.test2.test1.com', 'testrealm3')`
			`assert_and_check('user@test2.test1.com', 'testrealm2')`
			`assert_and_check('user@test2.test2.test1.com', 'testrealm1')`
			`assert_and_check('user@test1.test3.test2.test1.com', 'testrealm3')`
Add RealmAlias.allow_subdomains to model, frontend, and API. Includes a database migration. Fixes #1868. 2017-01-21 08:19:03 +01:00
			`do_change_realm_alias(alias1, False)`
mypy: Clean up repetition in test_realm_aliases. The assert added in this refactoring addresses a mypy issue with strict optional since get_realm_by_email_domain might return None. 2017-03-20 05:32:04 +01:00			`assert_and_check('user@test1.test1.com', None)`
			`assert_and_check('user@test1.com', 'testrealm1')`
Add RealmAlias.allow_subdomains to model, frontend, and API. Includes a database migration. Fixes #1868. 2017-01-21 08:19:03 +01:00
			`do_change_realm_alias(alias2, True)`
mypy: Clean up repetition in test_realm_aliases. The assert added in this refactoring addresses a mypy issue with strict optional since get_realm_by_email_domain might return None. 2017-03-20 05:32:04 +01:00			`assert_and_check('user@test2.test1.com', 'testrealm2')`
			`assert_and_check('user@test2.test2.test1.com', 'testrealm2')`
Add RealmAlias.allow_subdomains to model, frontend, and API. Includes a database migration. Fixes #1868. 2017-01-21 08:19:03 +01:00
Manage allowed domains from admin settings. Fixes: #1867. 2016-12-26 19:19:02 +01:00			`with self.settings(REALMS_HAVE_SUBDOMAINS = True), (`
lint: Clean up E126 PEP-8 rule. 2017-01-24 07:06:13 +01:00			`self.assertRaises(GetRealmByDomainException)):`
Manage allowed domains from admin settings. Fixes: #1867. 2016-12-26 19:19:02 +01:00			`get_realm_by_email_domain('user@zulip.com')`
Add RealmAlias.allow_subdomains to model, frontend, and API. Includes a database migration. Fixes #1868. 2017-01-21 08:19:03 +01:00
			`def test_email_allowed_for_realm(self):`
			`# type: () -> None`
			`realm1, created = do_create_realm('testrealm1', 'Test Realm 1', restricted_to_domain=True)`
			`realm2, created = do_create_realm('testrealm2', 'Test Realm 2', restricted_to_domain=True)`

			`alias = RealmAlias.objects.create(realm=realm1, domain='test1.com', allow_subdomains=False)`
			`RealmAlias.objects.create(realm=realm2, domain='test2.test1.com', allow_subdomains=True)`

			`self.assertEqual(email_allowed_for_realm('user@test1.com', realm1), True)`
			`self.assertEqual(email_allowed_for_realm('user@test2.test1.com', realm1), False)`
			`self.assertEqual(email_allowed_for_realm('user@test2.test1.com', realm2), True)`
			`self.assertEqual(email_allowed_for_realm('user@test3.test2.test1.com', realm2), True)`
			`self.assertEqual(email_allowed_for_realm('user@test3.test1.com', realm2), False)`

			`do_change_realm_alias(alias, True)`
			`self.assertEqual(email_allowed_for_realm('user@test1.com', realm1), True)`
			`self.assertEqual(email_allowed_for_realm('user@test2.test1.com', realm1), True)`
			`self.assertEqual(email_allowed_for_realm('user@test2.com', realm1), False)`

			`def test_realm_aliases_uniqueness(self):`
			`# type: () -> None`
			`realm = get_realm('zulip')`
			`with self.settings(REALMS_HAVE_SUBDOMAINS=True), self.assertRaises(IntegrityError):`
			`RealmAlias.objects.create(realm=realm, domain='zulip.com', allow_subdomains=True)`

			`def test_validate_domain(self):`
			`# type: () -> None`
			`invalid_domains = ['', 'test', 't.', 'test.', '.com', '-test', 'test...com',`
			`'test-', 'test_domain.com', 'test.-domain.com']`
			`for domain in invalid_domains:`
			`with self.assertRaises(ValidationError):`
			`validate_domain(domain)`

			`valid_domains = ['acme.com', 'x-x.y.3.z']`
			`for domain in valid_domains:`
			`validate_domain(domain)`