1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374 |
- # Copyright 2020 The Matrix.org Foundation C.I.C.
- #
- # Licensed under the Apache License, Version 2.0 (the "License");
- # you may not use this file except in compliance with the License.
- # You may obtain a copy of the License at
- #
- # http://www.apache.org/licenses/LICENSE-2.0
- #
- # Unless required by applicable law or agreed to in writing, software
- # distributed under the License is distributed on an "AS IS" BASIS,
- # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- # See the License for the specific language governing permissions and
- # limitations under the License.
- from twisted.trial import unittest
- from sydent.http.auth import tokenFromRequest
- from tests.utils import make_request, make_sydent
- class AuthTestCase(unittest.TestCase):
- """Tests Sydent's auth code"""
- def setUp(self):
- # Create a new sydent
- self.sydent = make_sydent()
- self.test_token = "testingtoken"
- # Inject a fake OpenID token into the database
- cur = self.sydent.db.cursor()
- cur.execute(
- "INSERT INTO accounts (user_id, created_ts, consent_version)"
- "VALUES (?, ?, ?)",
- ("@bob:localhost", 101010101, "asd"),
- )
- cur.execute(
- "INSERT INTO tokens (user_id, token)" "VALUES (?, ?)",
- ("@bob:localhost", self.test_token),
- )
- self.sydent.db.commit()
- def test_can_read_token_from_headers(self):
- """Tests that Sydent correctly extracts an auth token from request headers"""
- self.sydent.run()
- request, _ = make_request(
- self.sydent.reactor,
- self.sydent.clientApiHttpServer.factory,
- "GET",
- "/_matrix/identity/v2/hash_details",
- )
- request.requestHeaders.addRawHeader(
- b"Authorization", b"Bearer " + self.test_token.encode("ascii")
- )
- token = tokenFromRequest(request)
- self.assertEqual(token, self.test_token)
- def test_can_read_token_from_query_parameters(self):
- """Tests that Sydent correctly extracts an auth token from query parameters"""
- self.sydent.run()
- request, _ = make_request(
- self.sydent.reactor,
- self.sydent.clientApiHttpServer.factory,
- "GET",
- "/_matrix/identity/v2/hash_details?access_token=" + self.test_token,
- )
- token = tokenFromRequest(request)
- self.assertEqual(token, self.test_token)
|