Sākums Izpētīt Palīdzība
Pierakstīties
RISCI_ATOM
/
pagure
spogulis no https://pagure.io/pagure.git
1
0
Atdalīts 0
Faili Problēmas 3 Vikivietne
Koks: 337847c514
Atzari Tagi
pagure
/
tests
/
test_pagure_flask_api_auth.py

test_pagure_flask_api_auth.py 4.4 KB
Vēsture Neapstrādāts

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130 
  1. # -*- coding: utf-8 -*-
    2. 

  2. 

  3. """
    4. 

  4.  (c) 2015 - Copyright Red Hat Inc
    5. 

  5. 

  6.  Authors:
    7. 

  7.    Pierre-Yves Chibon <pingou@pingoured.fr>
    8. 

  8. 

  9. """
    10. 

  10. 

  11. __requires__ = ['SQLAlchemy >= 0.8']
    12. 

  12. import pkg_resources
    13. 

  13. 

  14. import unittest
    15. 

  15. import shutil
    16. 

  16. import sys
    17. 

  17. import os
    18. 

  18. 

  19. import json
    20. 

  20. from mock import patch
    21. 

  21. 

  22. sys.path.insert(0, os.path.join(os.path.dirname(
    23. 

  23.     os.path.abspath(__file__)), '..'))
    24. 

  24. 

  25. import pagure.api
    26. 

  26. import pagure.lib
    27. 

  27. import tests
    28. 

  28. 

  29. 

  30. class PagureFlaskApiAuthtests(tests.SimplePagureTest):
    31. 

  31.     """ Tests for the authentication in the flask API of pagure """
    32. 

  32. 

  33.     def test_auth_no_data(self):
    34. 

  34.         """ Test the authentication when there is nothing in the database.
    35. 

  35.         """
    36. 

  36. 

  37.         output = self.app.post('/api/0/foo/new_issue')
    38. 

  38.         self.assertEqual(output.status_code, 401)
    39. 

  39.         data = json.loads(output.data)
    40. 

  40.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.name,
    41. 

  41.                          data['error_code'])
    42. 

  42.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.value, data['error'])
    43. 

  43. 

  44.         headers = {'Authorization': 'token aabbbccc'}
    45. 

  45. 

  46.         output = self.app.post('/api/0/foo/new_issue', headers=headers)
    47. 

  47.         self.assertEqual(output.status_code, 401)
    48. 

  48.         data = json.loads(output.data)
    49. 

  49.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.name,
    50. 

  50.                          data['error_code'])
    51. 

  51.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.value, data['error'])
    52. 

  52. 

  53.     def test_auth_noacl(self):
    54. 

  54.         """ Test the authentication when the token does not have any ACL.
    55. 

  55.         """
    56. 

  56.         tests.create_projects(self.session)
    57. 

  57.         tests.create_tokens(self.session)
    58. 

  58. 

  59.         output = self.app.post('/api/0/test/new_issue')
    60. 

  60.         self.assertEqual(output.status_code, 401)
    61. 

  61.         data = json.loads(output.data)
    62. 

  62.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.name,
    63. 

  63.                          data['error_code'])
    64. 

  64.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.value, data['error'])
    65. 

  65. 

  66.         headers = {'Authorization': 'token aaabbbcccddd'}
    67. 

  67. 

  68.         output = self.app.post('/api/0/test/new_issue', headers=headers)
    69. 

  69.         self.assertEqual(output.status_code, 401)
    70. 

  70.         data = json.loads(output.data)
    71. 

  71.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.name,
    72. 

  72.                          data['error_code'])
    73. 

  73.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.value, data['error'])
    74. 

  74. 

  75.     def test_auth_expired(self):
    76. 

  76.         """ Test the authentication when the token has expired.
    77. 

  77.         """
    78. 

  78.         tests.create_projects(self.session)
    79. 

  79.         tests.create_tokens(self.session)
    80. 

  80. 

  81.         output = self.app.post('/api/0/test/new_issue')
    82. 

  82.         self.assertEqual(output.status_code, 401)
    83. 

  83.         data = json.loads(output.data)
    84. 

  84.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.name,
    85. 

  85.                          data['error_code'])
    86. 

  86.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.value, data['error'])
    87. 

  87. 

  88.         headers = {'Authorization': 'token expired_token'}
    89. 

  89. 

  90.         output = self.app.post('/api/0/test/new_issue', headers=headers)
    91. 

  91.         self.assertEqual(output.status_code, 401)
    92. 

  92.         data = json.loads(output.data)
    93. 

  93.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.name,
    94. 

  94.                          data['error_code'])
    95. 

  95.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.value, data['error'])
    96. 

  96. 

  97.     def test_auth(self):
    98. 

  98.         """ Test the token based authentication.
    99. 

  99.         """
    100. 

  100.         tests.create_projects(self.session)
    101. 

  101.         tests.create_tokens(self.session)
    102. 

  102.         tests.create_tokens_acl(self.session)
    103. 

  103. 

  104.         output = self.app.post('/api/0/test/new_issue')
    105. 

  105.         self.assertEqual(output.status_code, 401)
    106. 

  106.         data = json.loads(output.data)
    107. 

  107.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.name,
    108. 

  108.                          data['error_code'])
    109. 

  109.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.value, data['error'])
    110. 

  110. 

  111.         headers = {'Authorization': 'token aaabbbcccddd'}
    112. 

  112. 

  113.         output = self.app.post('/api/0/test/new_issue', headers=headers)
    114. 

  114.         self.assertEqual(output.status_code, 400)
    115. 

  115.         data = json.loads(output.data)
    116. 

  116.         self.assertDictEqual(
    117. 

  117.             data,
    118. 

  118.             {
    119. 

  119.               "error": "Invalid or incomplete input submitted",
    120. 

  120.               "error_code": "EINVALIDREQ",
    121. 

  121.               "errors": {
    122. 

  122.                 "issue_content": ["This field is required."],
    123. 

  123.                 "title": ["This field is required."]
    124. 

  124.               }
    125. 

  125.             }
    126. 

  126.         )
    127. 

  127. 

  128. 

  129. if __name__ == '__main__':
    130. 

  130.     unittest.main(verbosity=2)
    131.