Эхлэл Бүгдийг харах Тусламж
Нэвтрэх
RISCI_ATOM
/
pagure
-ын хуулбар https://pagure.io/pagure.git
1
0
Салаа 0
Файлууд Асуудлууд 3 Мэдлэгийн сан
Мод: e4e275087a
Салаанууд Тагууд
pagure
/
tests
/
test_pagure_flask_api_auth.py

test_pagure_flask_api_auth.py 4.5 KB
Түүх Анхны өгөгдөл

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129 
  1. # -*- coding: utf-8 -*-
    2. 

  2. 

  3. """
    4. 

  4.  (c) 2015 - Copyright Red Hat Inc
    5. 

  5. 

  6.  Authors:
    7. 

  7.    Pierre-Yves Chibon <pingou@pingoured.fr>
    8. 

  8. 

  9. """
    10. 

  10. 

  11. from __future__ import unicode_literals, absolute_import
    12. 

  12. 

  13. import unittest
    14. 

  14. import shutil
    15. 

  15. import sys
    16. 

  16. import os
    17. 

  17. 

  18. import json
    19. 

  19. from mock import patch
    20. 

  20. 

  21. sys.path.insert(0, os.path.join(os.path.dirname(
    22. 

  22.     os.path.abspath(__file__)), '..'))
    23. 

  23. 

  24. import pagure.api
    25. 

  25. import pagure.lib
    26. 

  26. import tests
    27. 

  27. 

  28. 

  29. class PagureFlaskApiAuthtests(tests.SimplePagureTest):
    30. 

  30.     """ Tests for the authentication in the flask API of pagure """
    31. 

  31. 

  32.     def test_auth_no_data(self):
    33. 

  33.         """ Test the authentication when there is nothing in the database.
    34. 

  34.         """
    35. 

  35. 

  36.         output = self.app.post('/api/0/foo/new_issue')
    37. 

  37.         self.assertEqual(output.status_code, 401)
    38. 

  38.         data = json.loads(output.get_data(as_text=True))
    39. 

  39.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.name,
    40. 

  40.                          data['error_code'])
    41. 

  41.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.value, data['error'])
    42. 

  42. 

  43.         headers = {'Authorization': 'token aabbbccc'}
    44. 

  44. 

  45.         output = self.app.post('/api/0/foo/new_issue', headers=headers)
    46. 

  46.         self.assertEqual(output.status_code, 401)
    47. 

  47.         data = json.loads(output.get_data(as_text=True))
    48. 

  48.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.name,
    49. 

  49.                          data['error_code'])
    50. 

  50.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.value, data['error'])
    51. 

  51. 

  52.     def test_auth_noacl(self):
    53. 

  53.         """ Test the authentication when the token does not have any ACL.
    54. 

  54.         """
    55. 

  55.         tests.create_projects(self.session)
    56. 

  56.         tests.create_tokens(self.session)
    57. 

  57. 

  58.         output = self.app.post('/api/0/test/new_issue')
    59. 

  59.         self.assertEqual(output.status_code, 401)
    60. 

  60.         data = json.loads(output.get_data(as_text=True))
    61. 

  61.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.name,
    62. 

  62.                          data['error_code'])
    63. 

  63.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.value, data['error'])
    64. 

  64. 

  65.         headers = {'Authorization': 'token aaabbbcccddd'}
    66. 

  66. 

  67.         output = self.app.post('/api/0/test/new_issue', headers=headers)
    68. 

  68.         self.assertEqual(output.status_code, 401)
    69. 

  69.         data = json.loads(output.get_data(as_text=True))
    70. 

  70.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.name,
    71. 

  71.                          data['error_code'])
    72. 

  72.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.value, data['error'])
    73. 

  73. 

  74.     def test_auth_expired(self):
    75. 

  75.         """ Test the authentication when the token has expired.
    76. 

  76.         """
    77. 

  77.         tests.create_projects(self.session)
    78. 

  78.         tests.create_tokens(self.session)
    79. 

  79. 

  80.         output = self.app.post('/api/0/test/new_issue')
    81. 

  81.         self.assertEqual(output.status_code, 401)
    82. 

  82.         data = json.loads(output.get_data(as_text=True))
    83. 

  83.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.name,
    84. 

  84.                          data['error_code'])
    85. 

  85.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.value, data['error'])
    86. 

  86. 

  87.         headers = {'Authorization': 'token expired_token'}
    88. 

  88. 

  89.         output = self.app.post('/api/0/test/new_issue', headers=headers)
    90. 

  90.         self.assertEqual(output.status_code, 401)
    91. 

  91.         data = json.loads(output.get_data(as_text=True))
    92. 

  92.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.name,
    93. 

  93.                          data['error_code'])
    94. 

  94.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.value, data['error'])
    95. 

  95. 

  96.     def test_auth(self):
    97. 

  97.         """ Test the token based authentication.
    98. 

  98.         """
    99. 

  99.         tests.create_projects(self.session)
    100. 

  100.         tests.create_tokens(self.session)
    101. 

  101.         tests.create_tokens_acl(self.session)
    102. 

  102. 

  103.         output = self.app.post('/api/0/test/new_issue')
    104. 

  104.         self.assertEqual(output.status_code, 401)
    105. 

  105.         data = json.loads(output.get_data(as_text=True))
    106. 

  106.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.name,
    107. 

  107.                          data['error_code'])
    108. 

  108.         self.assertEqual(pagure.api.APIERROR.EINVALIDTOK.value, data['error'])
    109. 

  109. 

  110.         headers = {'Authorization': 'token aaabbbcccddd'}
    111. 

  111. 

  112.         output = self.app.post('/api/0/test/new_issue', headers=headers)
    113. 

  113.         self.assertEqual(output.status_code, 400)
    114. 

  114.         data = json.loads(output.get_data(as_text=True))
    115. 

  115.         self.assertDictEqual(
    116. 

  116.             data,
    117. 

  117.             {
    118. 

  118.               "error": "Invalid or incomplete input submitted",
    119. 

  119.               "error_code": "EINVALIDREQ",
    120. 

  120.               "errors": {
    121. 

  121.                 "issue_content": ["This field is required."],
    122. 

  122.                 "title": ["This field is required."]
    123. 

  123.               }
    124. 

  124.             }
    125. 

  125.         )
    126. 

  126. 

  127. 

  128. if __name__ == '__main__':
    129. 

  129.     unittest.main(verbosity=2)
    130.