(airflow) branch v2-11-test updated: Fix users reset-password in FAB CLI for 2.11 (#63830) (#64375)

potiuk Wed, 01 Apr 2026 05:52:45 -0700

This is an automated email from the ASF dual-hosted git repository.

potiuk pushed a commit to branch v2-11-test
in repository https://gitbox.apache.org/repos/asf/airflow.git



The following commit(s) were added to refs/heads/v2-11-test by this push:
     new 57cc67f90ee Fix users reset-password in FAB CLI for 2.11 (#63830) 
(#64375)
57cc67f90ee is described below

commit 57cc67f90ee8ce77d74b4891d2b91855111ddd45
Author: Deepak Jain <[email protected]>
AuthorDate: Wed Apr 1 05:52:03 2026 -0700

    Fix users reset-password in FAB CLI for 2.11 (#63830) (#64375)
---
 .../fab/auth_manager/cli_commands/user_command.py  | 14 +++++---
 .../auth_manager/cli_commands/test_user_command.py | 41 ++++++++++++++++++++--
 2 files changed, 47 insertions(+), 8 deletions(-)

diff --git a/airflow/providers/fab/auth_manager/cli_commands/user_command.py 
b/airflow/providers/fab/auth_manager/cli_commands/user_command.py
index 5853dcf1a63..4288b5eafe0 100644
--- a/airflow/providers/fab/auth_manager/cli_commands/user_command.py
+++ b/airflow/providers/fab/auth_manager/cli_commands/user_command.py
@@ -85,16 +85,20 @@ def users_create(args):
 
 
 def _find_user(args):
+    with get_application_builder() as appbuilder:
+        return _find_user_with_appbuilder(args, appbuilder)
+
+
+def _find_user_with_appbuilder(args, appbuilder):
     if not args.username and not args.email:
         raise SystemExit("Missing args: must supply one of --username or 
--email")
 
     if args.username and args.email:
         raise SystemExit("Conflicting args: must supply either --username or 
--email, but not both")
 
-    with get_application_builder() as appbuilder:
-        user = appbuilder.sm.find_user(username=args.username, 
email=args.email)
-        if not user:
-            raise SystemExit(f'User "{args.username or args.email}" does not 
exist')
+    user = appbuilder.sm.find_user(username=args.username, email=args.email)
+    if not user:
+        raise SystemExit(f'User "{args.username or args.email}" does not 
exist')
     return user
 
 
@@ -102,9 +106,9 @@ def _find_user(args):
 @providers_configuration_loaded
 def user_reset_password(args):
     """Reset user password user from DB."""
-    user = _find_user(args)
     password = _create_password(args)
     with get_application_builder() as appbuilder:
+        user = _find_user_with_appbuilder(args, appbuilder)
         if appbuilder.sm.reset_password(user.id, password):
             print(f'User "{user.username}" password reset successfully')
         else:
diff --git a/tests/providers/fab/auth_manager/cli_commands/test_user_command.py 
b/tests/providers/fab/auth_manager/cli_commands/test_user_command.py
index b8ce2f48d6c..3e319148f15 100644
--- a/tests/providers/fab/auth_manager/cli_commands/test_user_command.py
+++ b/tests/providers/fab/auth_manager/cli_commands/test_user_command.py
@@ -22,6 +22,7 @@ import re
 import tempfile
 from contextlib import redirect_stdout
 from io import StringIO
+from unittest import mock
 
 import pytest
 
@@ -388,9 +389,9 @@ class TestCliUsers:
             user_command.users_manage_role(args, remove=False)
         assert 'User "test4" added to role "Op"' in stdout.getvalue()
 
-        assert _does_user_belong_to_role(
-            appbuilder=self.appbuilder, email=TEST_USER1_EMAIL, rolename="Op"
-        ), "User should have been added to role 'Op'"
+        assert _does_user_belong_to_role(appbuilder=self.appbuilder, 
email=TEST_USER1_EMAIL, rolename="Op"), (
+            "User should have been added to role 'Op'"
+        )
 
     def test_cli_remove_user_role(self, create_user_test4):
         assert _does_user_belong_to_role(
@@ -534,3 +535,37 @@ class TestCliUsers:
         with redirect_stdout(StringIO()) as stdout:
             user_command.user_reset_password(args)
         assert 'User "test3" password reset successfully' in stdout.getvalue()
+
+    def test_cli_reset_user_password_uses_single_appbuilder_context(self):
+        args = self.parser.parse_args(
+            [
+                "users",
+                "create",
+                "--username",
+                "test4",
+                "--lastname",
+                "doe",
+                "--firstname",
+                "jane",
+                "--email",
+                "[email protected]",
+                "--role",
+                "Viewer",
+                "--password",
+                "TempPass123!",
+            ]
+        )
+        user_command.users_create(args)
+
+        args = self.parser.parse_args(
+            ["users", "reset-password", "--username", "test4", "--password", 
"ResetPass456!"]
+        )
+
+        with mock.patch.object(
+            user_command, "get_application_builder", 
wraps=user_command.get_application_builder
+        ) as mocked_get_application_builder:
+            with redirect_stdout(StringIO()) as stdout:
+                user_command.user_reset_password(args)
+
+        assert mocked_get_application_builder.call_count == 1
+        assert 'User "test4" password reset successfully' in stdout.getvalue()

(airflow) branch v2-11-test updated: Fix users reset-password in FAB CLI for 2.11 (#63830) (#64375)

Reply via email to