Add non-empty constraint for UserSocialAuth uid

aleksanb · aleksanb · commit ca76b29d8290 · 2025-03-17T17:14:05.000+01:00
Any empty uids are surely erroneous, and better to have integrity errors
than having users start sharing accounts when logging in.
diff --git a/social_django/migrations/0017_usersocialauth_user_social_auth_uid_required.py b/social_django/migrations/0017_usersocialauth_user_social_auth_uid_required.py
@@ -0,0 +1,21 @@
+# Generated by Django 5.1.7 on 2025-03-14 12:16
+
+from django.conf import settings
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+    dependencies = [
+        ("social_django", "0016_alter_usersocialauth_extra_data"),
+        migrations.swappable_dependency(settings.AUTH_USER_MODEL),
+    ]
+
+    operations = [
+        migrations.AddConstraint(
+            model_name="usersocialauth",
+            constraint=models.CheckConstraint(
+                check=models.Q(("uid", ""), _negated=True),
+                name="user_social_auth_uid_required",
+            ),
+        ),
+    ]
diff --git a/social_django/models.py b/social_django/models.py
@@ -2,6 +2,7 @@
 
 from typing import Union
 
+import django
 from django.conf import settings
 from django.db import models
 from django.db.utils import IntegrityError
@@ -43,6 +44,10 @@ def __str__(self):
 
     class Meta:
         app_label = "social_django"
+        if django.VERSION[0] < (6,):
+            constraints = [models.CheckConstraint(check=~models.Q(uid=""), name="user_social_auth_uid_required")]
+        else:
+            constraints = [models.CheckConstraint(condition=~models.Q(uid=""), name="user_social_auth_uid_required")]
         abstract = True
 
     @classmethod
@@ -70,7 +75,7 @@ def user_model(cls):
 class UserSocialAuth(AbstractUserSocialAuth):
     """Social Auth association model"""
 
-    class Meta:
+    class Meta(AbstractUserSocialAuth.Meta):
         """Meta data"""
 
         app_label = "social_django"
diff --git a/tests/test_views.py b/tests/test_views.py
@@ -46,7 +46,7 @@ def test_complete(self, mock_request):
     def test_disconnect(self, mock_request):
         user_model = get_user_model()
         user = user_model._default_manager.create_user(username="test", password="pwd")
-        UserSocialAuth.objects.create(user=user, provider="facebook")
+        UserSocialAuth.objects.create(user=user, provider="facebook", uid="some-mock-facebook-uid")
         self.client.login(username="test", password="pwd")
 
         url = reverse("social:disconnect", kwargs={"backend": "facebook"})
