From adacc40592ac40935fe42d9444a42076dbec72e8 Mon Sep 17 00:00:00 2001
From: funman300 <root@vscode.infinity>
Date: Mon, 27 Apr 2026 05:08:18 +0000
Subject: [PATCH] test(server): add unit tests for username_chars_ok validation

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
---
 solitaire_server/src/auth.rs | 35 +++++++++++++++++++++++++++++++++++
 1 file changed, 35 insertions(+)

diff --git a/solitaire_server/src/auth.rs b/solitaire_server/src/auth.rs
index 86bacf2..bb77c7b 100644
--- a/solitaire_server/src/auth.rs
+++ b/solitaire_server/src/auth.rs
@@ -227,3 +227,38 @@ pub async fn delete_account(
 
     Ok(Json(serde_json::json!({ "ok": true })))
 }
+
+#[cfg(test)]
+mod tests {
+    use super::*;
+
+    #[test]
+    fn username_chars_ok_accepts_alphanumeric_and_underscore() {
+        assert!(username_chars_ok("alice"));
+        assert!(username_chars_ok("Alice_123"));
+        assert!(username_chars_ok("UPPER_case_99"));
+    }
+
+    #[test]
+    fn username_chars_ok_rejects_special_chars() {
+        assert!(!username_chars_ok("ali ce"));   // space
+        assert!(!username_chars_ok("ali-ce"));   // hyphen
+        assert!(!username_chars_ok("ali.ce"));   // dot
+        assert!(!username_chars_ok("ali@ce"));   // at
+        assert!(!username_chars_ok("ali!ce"));   // exclamation
+    }
+
+    #[test]
+    fn username_chars_ok_accepts_empty_string() {
+        // The length check in `register` guards against empty usernames;
+        // this function only validates characters, so empty is technically ok.
+        assert!(username_chars_ok(""));
+    }
+
+    #[test]
+    fn username_chars_ok_rejects_unicode_letters() {
+        // Non-ASCII characters must be rejected even if they look like letters.
+        assert!(!username_chars_ok("héro"));
+        assert!(!username_chars_ok("用户"));
+    }
+}