Home Esplora Aiuto
Accedi
RISCI_ATOM
/
pagure
mirror da https://pagure.io/pagure.git
1
0
Forka 0
File Problemi 3 Wiki
Albero (Tree): 437bdfa6bf
Rami (Branch) Tag
pagure
/
tests
/
test_pagure_flask_api_auth.py

test_pagure_flask_api_auth.py 4.5 KB
Cronologia Originale

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137 
  1. # -*- coding: utf-8 -*-
    2. 

  2. 

  3. """
    4. 

  4.  (c) 2015 - Copyright Red Hat Inc
    5. 

  5. 

  6.  Authors:
    7. 

  7.    Pierre-Yves Chibon <pingou@pingoured.fr>
    8. 

  8. 

  9. """
    10. 

  10. 

  11. from __future__ import unicode_literals, absolute_import
    12. 

  12. 

  13. import unittest
    14. 

  14. import shutil
    15. 

  15. import sys
    16. 

  16. import os
    17. 

  17. 

  18. import json
    19. 

  19. from mock import patch
    20. 

  20. 

  21. sys.path.insert(
    22. 

  22.     0, os.path.join(os.path.dirname(os.path.abspath(__file__)), "..")
    23. 

  23. )
    24. 

  24. 

  25. import pagure.api
    26. 

  26. import pagure.lib
    27. 

  27. import tests
    28. 

  28. 

  29. 

  30. class PagureFlaskApiAuthtests(tests.SimplePagureTest):
    31. 

  31.     """ Tests for the authentication in the flask API of pagure """
    32. 

  32. 

  33.     def test_auth_no_data(self):
    34. 

  34.         """ Test the authentication when there is nothing in the database.
    35. 

  35.         """
    36. 

  36. 

  37.         output = self.app.post("/api/0/foo/new_issue")
    38. 

  38.         self.assertEqual(output.status_code, 401)
    39. 

  39.         data = json.loads(output.get_data(as_text=True))
    40. 

  40.         self.assertEqual(
    41. 

  41.             pagure.api.APIERROR.EINVALIDTOK.name, data["error_code"]
    42. 

  42.         )
    43. 

  43.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.value, data["error"])
    44. 

  44. 

  45.         headers = {"Authorization": "token aabbbccc"}
    46. 

  46. 

  47.         output = self.app.post("/api/0/foo/new_issue", headers=headers)
    48. 

  48.         self.assertEqual(output.status_code, 401)
    49. 

  49.         data = json.loads(output.get_data(as_text=True))
    50. 

  50.         self.assertEqual(
    51. 

  51.             pagure.api.APIERROR.EINVALIDTOK.name, data["error_code"]
    52. 

  52.         )
    53. 

  53.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.value, data["error"])
    54. 

  54. 

  55.     def test_auth_noacl(self):
    56. 

  56.         """ Test the authentication when the token does not have any ACL.
    57. 

  57.         """
    58. 

  58.         tests.create_projects(self.session)
    59. 

  59.         tests.create_tokens(self.session)
    60. 

  60. 

  61.         output = self.app.post("/api/0/test/new_issue")
    62. 

  62.         self.assertEqual(output.status_code, 401)
    63. 

  63.         data = json.loads(output.get_data(as_text=True))
    64. 

  64.         self.assertEqual(
    65. 

  65.             pagure.api.APIERROR.EINVALIDTOK.name, data["error_code"]
    66. 

  66.         )
    67. 

  67.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.value, data["error"])
    68. 

  68. 

  69.         headers = {"Authorization": "token aaabbbcccddd"}
    70. 

  70. 

  71.         output = self.app.post("/api/0/test/new_issue", headers=headers)
    72. 

  72.         self.assertEqual(output.status_code, 401)
    73. 

  73.         data = json.loads(output.get_data(as_text=True))
    74. 

  74.         self.assertEqual(
    75. 

  75.             pagure.api.APIERROR.EINVALIDTOK.name, data["error_code"]
    76. 

  76.         )
    77. 

  77.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.value, data["error"])
    78. 

  78. 

  79.     def test_auth_expired(self):
    80. 

  80.         """ Test the authentication when the token has expired.
    81. 

  81.         """
    82. 

  82.         tests.create_projects(self.session)
    83. 

  83.         tests.create_tokens(self.session)
    84. 

  84. 

  85.         output = self.app.post("/api/0/test/new_issue")
    86. 

  86.         self.assertEqual(output.status_code, 401)
    87. 

  87.         data = json.loads(output.get_data(as_text=True))
    88. 

  88.         self.assertEqual(
    89. 

  89.             pagure.api.APIERROR.EINVALIDTOK.name, data["error_code"]
    90. 

  90.         )
    91. 

  91.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.value, data["error"])
    92. 

  92. 

  93.         headers = {"Authorization": "token expired_token"}
    94. 

  94. 

  95.         output = self.app.post("/api/0/test/new_issue", headers=headers)
    96. 

  96.         self.assertEqual(output.status_code, 401)
    97. 

  97.         data = json.loads(output.get_data(as_text=True))
    98. 

  98.         self.assertEqual(
    99. 

  99.             pagure.api.APIERROR.EINVALIDTOK.name, data["error_code"]
    100. 

  100.         )
    101. 

  101.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.value, data["error"])
    102. 

  102. 

  103.     def test_auth(self):
    104. 

  104.         """ Test the token based authentication.
    105. 

  105.         """
    106. 

  106.         tests.create_projects(self.session)
    107. 

  107.         tests.create_tokens(self.session)
    108. 

  108.         tests.create_tokens_acl(self.session)
    109. 

  109. 

  110.         output = self.app.post("/api/0/test/new_issue")
    111. 

  111.         self.assertEqual(output.status_code, 401)
    112. 

  112.         data = json.loads(output.get_data(as_text=True))
    113. 

  113.         self.assertEqual(
    114. 

  114.             pagure.api.APIERROR.EINVALIDTOK.name, data["error_code"]
    115. 

  115.         )
    116. 

  116.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.value, data["error"])
    117. 

  117. 

  118.         headers = {"Authorization": "token aaabbbcccddd"}
    119. 

  119. 

  120.         output = self.app.post("/api/0/test/new_issue", headers=headers)
    121. 

  121.         self.assertEqual(output.status_code, 400)
    122. 

  122.         data = json.loads(output.get_data(as_text=True))
    123. 

  123.         self.assertDictEqual(
    124. 

  124.             data,
    125. 

  125.             {
    126. 

  126.                 "error": "Invalid or incomplete input submitted",
    127. 

  127.                 "error_code": "EINVALIDREQ",
    128. 

  128.                 "errors": {
    129. 

  129.                     "issue_content": ["This field is required."],
    130. 

  130.                     "title": ["This field is required."],
    131. 

  131.                 },
    132. 

  132.             },
    133. 

  133.         )
    134. 

  134. 

  135. 

  136. if __name__ == "__main__":
    137. 

  137.     unittest.main(verbosity=2)
    138.