Mirror
/
python-keycloak
mirror of https://github.com/marcospereirampj/python-keycloak.git
1
0
Fork 1
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
946 Commits
12 Branches
120 Tags
21 MiB
Tree: 8760ca0803
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '8760ca0803'
${ noResults }
python-keycloak/tests/conftest.py

650 lines
18 KiB
Raw Normal View History

test: added auth_url and token tests, more structure to fixtures
3 years ago
fix: linting
3 years ago
feat: initial setup of CICD and linting
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
fix: moved imports at the top of the file
3 years ago
fix: Refactor auto refresh (#415) * refactor: Factor our OpenIdConnectionManager class and deprecate old methods * refactor: Refactor keycloak uma client to use openid connection manager * fix: Perform token renewal at 90% of lifetime * refactor: Add optional openid connection constructor param to keycloak admin * refactor: Remove auto_refresh_token in favour of automatic refresh on expiry * refactor: move KeycloakOpenIDConnectionManager to a separate file * docs: uma additions and fixes * refactor: rename token_renewal_fraction->token_lifetime_fraction * refactor: shorten KeycloakOpenIDConnectionManager->KeycloakOpenIDConnection * docs: incorporate review comments
2 years ago
fix: linting
3 years ago
fix: moved imports at the top of the file
3 years ago
feat: initial setup of CICD and linting
3 years ago
fix: Refactor auto refresh (#415) * refactor: Factor our OpenIdConnectionManager class and deprecate old methods * refactor: Refactor keycloak uma client to use openid connection manager * fix: Perform token renewal at 90% of lifetime * refactor: Add optional openid connection constructor param to keycloak admin * refactor: Remove auto_refresh_token in favour of automatic refresh on expiry * refactor: move KeycloakOpenIDConnectionManager to a separate file * docs: uma additions and fixes * refactor: rename token_renewal_fraction->token_lifetime_fraction * refactor: shorten KeycloakOpenIDConnectionManager->KeycloakOpenIDConnection * docs: incorporate review comments
2 years ago
refactor: slight restructure of the base fixtures
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: added auth_url and token tests, more structure to fixtures
3 years ago
refactor: slight restructure of the base fixtures
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: updated docstrings to pass checks
2 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
refactor: slight restructure of the base fixtures
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: updated docstrings to pass checks
2 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
refactor: slight restructure of the base fixtures
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: updated docstrings to pass checks
2 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
refactor: slight restructure of the base fixtures
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: updated docstrings to pass checks
2 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
refactor: slight restructure of the base fixtures
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: updated docstrings to pass checks
2 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
refactor: slight restructure of the base fixtures
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: updated docstrings to pass checks
2 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
refactor: slight restructure of the base fixtures
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: updated docstrings to pass checks
2 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
refactor: slight restructure of the base fixtures
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: updated docstrings to pass checks
2 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
refactor: slight restructure of the base fixtures
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: updated docstrings to pass checks
2 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
feat: initial setup of CICD and linting
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: updated docstrings to pass checks
2 years ago
feat: initial setup of CICD and linting
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: updated docstrings to pass checks
2 years ago
feat: initial setup of CICD and linting
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
feat: initial setup of CICD and linting
3 years ago
fix: Refactor auto refresh (#415) * refactor: Factor our OpenIdConnectionManager class and deprecate old methods * refactor: Refactor keycloak uma client to use openid connection manager * fix: Perform token renewal at 90% of lifetime * refactor: Add optional openid connection constructor param to keycloak admin * refactor: Remove auto_refresh_token in favour of automatic refresh on expiry * refactor: move KeycloakOpenIDConnectionManager to a separate file * docs: uma additions and fixes * refactor: rename token_renewal_fraction->token_lifetime_fraction * refactor: shorten KeycloakOpenIDConnectionManager->KeycloakOpenIDConnection * docs: incorporate review comments
2 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
fix: Refactor auto refresh (#415) * refactor: Factor our OpenIdConnectionManager class and deprecate old methods * refactor: Refactor keycloak uma client to use openid connection manager * fix: Perform token renewal at 90% of lifetime * refactor: Add optional openid connection constructor param to keycloak admin * refactor: Remove auto_refresh_token in favour of automatic refresh on expiry * refactor: move KeycloakOpenIDConnectionManager to a separate file * docs: uma additions and fixes * refactor: rename token_renewal_fraction->token_lifetime_fraction * refactor: shorten KeycloakOpenIDConnectionManager->KeycloakOpenIDConnection * docs: incorporate review comments
2 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
fix: Refactor auto refresh (#415) * refactor: Factor our OpenIdConnectionManager class and deprecate old methods * refactor: Refactor keycloak uma client to use openid connection manager * fix: Perform token renewal at 90% of lifetime * refactor: Add optional openid connection constructor param to keycloak admin * refactor: Remove auto_refresh_token in favour of automatic refresh on expiry * refactor: move KeycloakOpenIDConnectionManager to a separate file * docs: uma additions and fixes * refactor: rename token_renewal_fraction->token_lifetime_fraction * refactor: shorten KeycloakOpenIDConnectionManager->KeycloakOpenIDConnection * docs: incorporate review comments
2 years ago
refactor: slight restructure of the base fixtures
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: updated docstrings to pass checks
2 years ago
refactor: slight restructure of the base fixtures
3 years ago
feat: realm changing helpers
1 year ago
refactor: slight restructure of the base fixtures
3 years ago
test: added auth_url and token tests, more structure to fixtures
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: added auth_url and token tests, more structure to fixtures
3 years ago
refactor: slight restructure of the base fixtures
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
refactor: slight restructure of the base fixtures
3 years ago
test: added auth_url and token tests, more structure to fixtures
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: updated docstrings to pass checks
2 years ago
test: added auth_url and token tests, more structure to fixtures
3 years ago
feat: realm changing helpers
1 year ago
test: added auth_url and token tests, more structure to fixtures
3 years ago
test: added more openid tests
3 years ago
test: added auth_url and token tests, more structure to fixtures
3 years ago
test: added more openid tests
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: added more openid tests
3 years ago
test: Tests with Keycloak 24 (#535)
10 months ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: added more openid tests
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: added more openid tests
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: updated docstrings to pass checks
2 years ago
test: added more openid tests
3 years ago
feat: realm changing helpers
1 year ago
test: added more openid tests
3 years ago
test: added auth_url and token tests, more structure to fixtures
3 years ago
test: added more openid tests
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: added auth_url and token tests, more structure to fixtures
3 years ago
test: added load authorization config test
3 years ago
test: added auth_url and token tests, more structure to fixtures
3 years ago
test: Tests with Keycloak 24 (#535)
10 months ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: added auth_url and token tests, more structure to fixtures
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: added auth_url and token tests, more structure to fixtures
3 years ago
test: added more openid tests
3 years ago
test: added auth_url and token tests, more structure to fixtures
3 years ago
feat: initial setup of CICD and linting
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: added missing tests
10 months ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: added missing tests
10 months ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: added missing tests
10 months ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: added missing tests
10 months ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: updated docstrings to pass checks
2 years ago
feat: initial setup of CICD and linting
3 years ago
test: added auth_url and token tests, more structure to fixtures
3 years ago
feat: initial setup of CICD and linting
3 years ago
test: added missing tests
10 months ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: updated docstrings to pass checks
2 years ago
feat: realm changing helpers
1 year ago
feat: initial setup of CICD and linting
3 years ago
test: added missing tests
10 months ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: updated docstrings to pass checks
2 years ago
feat: realm changing helpers
1 year ago
feat: initial setup of CICD and linting
3 years ago
test: added missing tests
10 months ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: updated docstrings to pass checks
2 years ago
feat: realm changing helpers
1 year ago
feat: initial setup of CICD and linting
3 years ago
feat: add unit tests
3 years ago
test: added missing tests
10 months ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: updated docstrings to pass checks
2 years ago
feat: realm changing helpers
1 year ago
feat: add unit tests
3 years ago
test: added missing tests
10 months ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: added missing tests
10 months ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: updated docstrings to pass checks
2 years ago
feat: realm changing helpers
1 year ago
feat: add unit tests
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
test: updated docstrings to pass checks
2 years ago
feat: add unit tests
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
feat: add unit tests
3 years ago
fix: applied tox linting check
3 years ago
feat: add unit tests
3 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
feat: add unit tests
3 years ago
fix: applied tox linting check
3 years ago
feat: add unit tests
3 years ago
feat: add Keycloak UMA client (#403)
2 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
feat: add Keycloak UMA client (#403)
2 years ago
fix: Refactor auto refresh (#415) * refactor: Factor our OpenIdConnectionManager class and deprecate old methods * refactor: Refactor keycloak uma client to use openid connection manager * fix: Perform token renewal at 90% of lifetime * refactor: Add optional openid connection constructor param to keycloak admin * refactor: Remove auto_refresh_token in favour of automatic refresh on expiry * refactor: move KeycloakOpenIDConnectionManager to a separate file * docs: uma additions and fixes * refactor: rename token_renewal_fraction->token_lifetime_fraction * refactor: shorten KeycloakOpenIDConnectionManager->KeycloakOpenIDConnection * docs: incorporate review comments
2 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
fix: Refactor auto refresh (#415) * refactor: Factor our OpenIdConnectionManager class and deprecate old methods * refactor: Refactor keycloak uma client to use openid connection manager * fix: Perform token renewal at 90% of lifetime * refactor: Add optional openid connection constructor param to keycloak admin * refactor: Remove auto_refresh_token in favour of automatic refresh on expiry * refactor: move KeycloakOpenIDConnectionManager to a separate file * docs: uma additions and fixes * refactor: rename token_renewal_fraction->token_lifetime_fraction * refactor: shorten KeycloakOpenIDConnectionManager->KeycloakOpenIDConnection * docs: incorporate review comments
2 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
fix: Refactor auto refresh (#415) * refactor: Factor our OpenIdConnectionManager class and deprecate old methods * refactor: Refactor keycloak uma client to use openid connection manager * fix: Perform token renewal at 90% of lifetime * refactor: Add optional openid connection constructor param to keycloak admin * refactor: Remove auto_refresh_token in favour of automatic refresh on expiry * refactor: move KeycloakOpenIDConnectionManager to a separate file * docs: uma additions and fixes * refactor: rename token_renewal_fraction->token_lifetime_fraction * refactor: shorten KeycloakOpenIDConnectionManager->KeycloakOpenIDConnection * docs: incorporate review comments
2 years ago
feat: add Keycloak UMA client (#403)
2 years ago
fix: Refactor auto refresh (#415) * refactor: Factor our OpenIdConnectionManager class and deprecate old methods * refactor: Refactor keycloak uma client to use openid connection manager * fix: Perform token renewal at 90% of lifetime * refactor: Add optional openid connection constructor param to keycloak admin * refactor: Remove auto_refresh_token in favour of automatic refresh on expiry * refactor: move KeycloakOpenIDConnectionManager to a separate file * docs: uma additions and fixes * refactor: rename token_renewal_fraction->token_lifetime_fraction * refactor: shorten KeycloakOpenIDConnectionManager->KeycloakOpenIDConnection * docs: incorporate review comments
2 years ago
feat: add Keycloak UMA client (#403)
2 years ago
fix: small bugs, use ruff as linter, added annotations * fix: ruffing up * test: linting done * fix: tests and code * fix: new docs * docs: updated conf * docs: update
2 weeks ago
  1. """Fixtures for tests."""
  3. import ipaddress
  4. import os
  5. import uuid
  6. from collections.abc import Generator
  7. from datetime import datetime, timedelta, timezone
  9. import freezegun
  10. import pytest
  11. from cryptography import x509
  12. from cryptography.hazmat.backends import default_backend
  13. from cryptography.hazmat.primitives import hashes, serialization
  14. from cryptography.hazmat.primitives.asymmetric import rsa
  15. from cryptography.x509.oid import NameOID
  17. from keycloak import KeycloakAdmin, KeycloakOpenID, KeycloakOpenIDConnection, KeycloakUMA
  20. class KeycloakTestEnv:
  21. """
  22. Wrapper for test Keycloak connection configuration.
  24. :param host: Hostname
  25. :type host: str
  26. :param port: Port
  27. :type port: str
  28. :param username: Admin username
  29. :type username: str
  30. :param password: Admin password
  31. :type password: str
  32. """
  34. def __init__(
  35. self,
  36. host: str = os.environ["KEYCLOAK_HOST"],
  37. port: str = os.environ["KEYCLOAK_PORT"],
  38. username: str = os.environ["KEYCLOAK_ADMIN"],
  39. password: str = os.environ["KEYCLOAK_ADMIN_PASSWORD"],
  40. ) -> None:
  41. """
  42. Init method.
  44. :param host: Hostname
  45. :type host: str
  46. :param port: Port
  47. :type port: str
  48. :param username: Admin username
  49. :type username: str
  50. :param password: Admin password
  51. :type password: str
  52. """
  53. self.keycloak_host = host
  54. self.keycloak_port = port
  55. self.keycloak_admin = username
  56. self.keycloak_admin_password = password
  58. @property
  59. def keycloak_host(self) -> str:
  60. """
  61. Hostname getter.
  63. :returns: Keycloak host
  64. :rtype: str
  65. """
  66. return self._keycloak_host
  68. @keycloak_host.setter
  69. def keycloak_host(self, value: str) -> None:
  70. """
  71. Hostname setter.
  73. :param value: Keycloak host
  74. :type value: str
  75. """
  76. self._keycloak_host = value
  78. @property
  79. def keycloak_port(self) -> str:
  80. """
  81. Port getter.
  83. :returns: Keycloak port
  84. :rtype: str
  85. """
  86. return self._keycloak_port
  88. @keycloak_port.setter
  89. def keycloak_port(self, value: str) -> None:
  90. """
  91. Port setter.
  93. :param value: Keycloak port
  94. :type value: str
  95. """
  96. self._keycloak_port = value
  98. @property
  99. def keycloak_admin(self) -> str:
  100. """
  101. Admin username getter.
  103. :returns: Admin username
  104. :rtype: str
  105. """
  106. return self._keycloak_admin
  108. @keycloak_admin.setter
  109. def keycloak_admin(self, value: str) -> None:
  110. """
  111. Admin username setter.
  113. :param value: Admin username
  114. :type value: str
  115. """
  116. self._keycloak_admin = value
  118. @property
  119. def keycloak_admin_password(self) -> str:
  120. """
  121. Admin password getter.
  123. :returns: Admin password
  124. :rtype: str
  125. """
  126. return self._keycloak_admin_password
  128. @keycloak_admin_password.setter
  129. def keycloak_admin_password(self, value: str) -> None:
  130. """
  131. Admin password setter.
  133. :param value: Admin password
  134. :type value: str
  135. """
  136. self._keycloak_admin_password = value
  139. @pytest.fixture
  140. def env() -> KeycloakTestEnv:
  141. """
  142. Fixture for getting the test environment configuration object.
  144. :returns: Keycloak test environment object
  145. :rtype: KeycloakTestEnv
  146. """
  147. return KeycloakTestEnv()
  150. @pytest.fixture
  151. def admin(env: KeycloakTestEnv) -> KeycloakAdmin:
  152. """
  153. Fixture for initialized KeycloakAdmin class.
  155. :param env: Keycloak test environment
  156. :type env: KeycloakTestEnv
  157. :returns: Keycloak admin
  158. :rtype: KeycloakAdmin
  159. """
  160. return KeycloakAdmin(
  161. server_url=f"http://{env.keycloak_host}:{env.keycloak_port}",
  162. username=env.keycloak_admin,
  163. password=env.keycloak_admin_password,
  164. )
  167. @pytest.fixture
  168. @freezegun.freeze_time("2023-02-25 10:00:00")
  169. def admin_frozen(env: KeycloakTestEnv) -> KeycloakAdmin:
  170. """
  171. Fixture for initialized KeycloakAdmin class, with time frozen.
  173. :param env: Keycloak test environment
  174. :type env: KeycloakTestEnv
  175. :returns: Keycloak admin
  176. :rtype: KeycloakAdmin
  177. """
  178. return KeycloakAdmin(
  179. server_url=f"http://{env.keycloak_host}:{env.keycloak_port}",
  180. username=env.keycloak_admin,
  181. password=env.keycloak_admin_password,
  182. )
  185. @pytest.fixture
  186. def oid(
  187. env: KeycloakTestEnv,
  188. realm: str,
  189. admin: KeycloakAdmin,
  190. ) -> Generator[KeycloakOpenID, None, None]:
  191. """
  192. Fixture for initialized KeycloakOpenID class.
  194. :param env: Keycloak test environment
  195. :type env: KeycloakTestEnv
  196. :param realm: Keycloak realm
  197. :type realm: str
  198. :param admin: Keycloak admin
  199. :type admin: KeycloakAdmin
  200. :yields: Keycloak OpenID client
  201. :rtype: KeycloakOpenID
  202. """
  203. # Set the realm
  204. admin.change_current_realm(realm)
  205. # Create client
  206. client = str(uuid.uuid4())
  207. client_id = admin.create_client(
  208. payload={
  209. "name": client,
  210. "clientId": client,
  211. "enabled": True,
  212. "publicClient": True,
  213. "protocol": "openid-connect",
  214. },
  215. )
  216. # Return OID
  217. yield KeycloakOpenID(
  218. server_url=f"http://{env.keycloak_host}:{env.keycloak_port}",
  219. realm_name=realm,
  220. client_id=client,
  221. )
  222. # Cleanup
  223. admin.delete_client(client_id=client_id)
  226. @pytest.fixture
  227. def oid_with_credentials(
  228. env: KeycloakTestEnv,
  229. realm: str,
  230. admin: KeycloakAdmin,
  231. ) -> Generator[tuple[KeycloakOpenID, str, str], None, None]:
  232. """
  233. Fixture for an initialized KeycloakOpenID class and a random user credentials.
  235. :param env: Keycloak test environment
  236. :type env: KeycloakTestEnv
  237. :param realm: Keycloak realm
  238. :type realm: str
  239. :param admin: Keycloak admin
  240. :type admin: KeycloakAdmin
  241. :yields: Keycloak OpenID client with user credentials
  242. :rtype: Tuple[KeycloakOpenID, str, str]
  243. """
  244. # Set the realm
  245. admin.change_current_realm(realm)
  246. # Create client
  247. client = str(uuid.uuid4())
  248. secret = str(uuid.uuid4())
  249. client_id = admin.create_client(
  250. payload={
  251. "name": client,
  252. "clientId": client,
  253. "enabled": True,
  254. "publicClient": False,
  255. "protocol": "openid-connect",
  256. "secret": secret,
  257. "clientAuthenticatorType": "client-secret",
  258. },
  259. )
  260. # Create user
  261. username = str(uuid.uuid4())
  262. password = str(uuid.uuid4())
  263. user_id = admin.create_user(
  264. payload={
  265. "username": username,
  266. "email": f"{username}@test.test",
  267. "enabled": True,
  268. "firstName": "first",
  269. "lastName": "last",
  270. "emailVerified": True,
  271. "requiredActions": [],
  272. "credentials": [{"type": "password", "value": password, "temporary": False}],
  273. },
  274. )
  276. yield (
  277. KeycloakOpenID(
  278. server_url=f"http://{env.keycloak_host}:{env.keycloak_port}",
  279. realm_name=realm,
  280. client_id=client,
  281. client_secret_key=secret,
  282. ),
  283. username,
  284. password,
  285. )
  287. # Cleanup
  288. admin.delete_client(client_id=client_id)
  289. admin.delete_user(user_id=user_id)
  292. @pytest.fixture
  293. def oid_with_credentials_authz(
  294. env: KeycloakTestEnv,
  295. realm: str,
  296. admin: KeycloakAdmin,
  297. ) -> Generator[tuple[KeycloakOpenID, str, str], None, None]:
  298. """
  299. Fixture for an initialized KeycloakOpenID class and a random user credentials.
  301. :param env: Keycloak test environment
  302. :type env: KeycloakTestEnv
  303. :param realm: Keycloak realm
  304. :type realm: str
  305. :param admin: Keycloak admin
  306. :type admin: KeycloakAdmin
  307. :yields: Keycloak OpenID client configured as an authorization server with client credentials
  308. :rtype: Tuple[KeycloakOpenID, str, str]
  309. """
  310. # Set the realm
  311. admin.change_current_realm(realm)
  312. # Create client
  313. client = str(uuid.uuid4())
  314. secret = str(uuid.uuid4())
  315. client_id = admin.create_client(
  316. payload={
  317. "name": client,
  318. "clientId": client,
  319. "enabled": True,
  320. "publicClient": False,
  321. "protocol": "openid-connect",
  322. "secret": secret,
  323. "clientAuthenticatorType": "client-secret",
  324. "authorizationServicesEnabled": True,
  325. "serviceAccountsEnabled": True,
  326. },
  327. )
  328. admin.create_client_authz_role_based_policy(
  329. client_id=client_id,
  330. payload={
  331. "name": "test-authz-rb-policy",
  332. "roles": [{"id": admin.get_realm_role(role_name="offline_access")["id"]}],
  333. },
  334. )
  335. # Create user
  336. username = str(uuid.uuid4())
  337. password = str(uuid.uuid4())
  338. user_id = admin.create_user(
  339. payload={
  340. "username": username,
  341. "email": f"{username}@test.test",
  342. "enabled": True,
  343. "emailVerified": True,
  344. "firstName": "first",
  345. "lastName": "last",
  346. "requiredActions": [],
  347. "credentials": [{"type": "password", "value": password, "temporary": False}],
  348. },
  349. )
  351. yield (
  352. KeycloakOpenID(
  353. server_url=f"http://{env.keycloak_host}:{env.keycloak_port}",
  354. realm_name=realm,
  355. client_id=client,
  356. client_secret_key=secret,
  357. ),
  358. username,
  359. password,
  360. )
  362. # Cleanup
  363. admin.delete_client(client_id=client_id)
  364. admin.delete_user(user_id=user_id)
  367. @pytest.fixture
  368. def oid_with_credentials_device(
  369. env: KeycloakTestEnv,
  370. realm: str,
  371. admin: KeycloakAdmin,
  372. ) -> Generator[tuple[KeycloakOpenID, str, str], None, None]:
  373. """
  374. Fixture for an initialized KeycloakOpenID class and a random user credentials.
  376. :param env: Keycloak test environment
  377. :type env: KeycloakTestEnv
  378. :param realm: Keycloak realm
  379. :type realm: str
  380. :param admin: Keycloak admin
  381. :type admin: KeycloakAdmin
  382. :yields: Keycloak OpenID client with user credentials
  383. :rtype: Tuple[KeycloakOpenID, str, str]
  384. """
  385. # Set the realm
  386. admin.change_current_realm(realm)
  387. # Create client
  388. client = str(uuid.uuid4())
  389. secret = str(uuid.uuid4())
  390. client_id = admin.create_client(
  391. payload={
  392. "name": client,
  393. "clientId": client,
  394. "enabled": True,
  395. "publicClient": False,
  396. "protocol": "openid-connect",
  397. "secret": secret,
  398. "clientAuthenticatorType": "client-secret",
  399. "attributes": {"oauth2.device.authorization.grant.enabled": True},
  400. },
  401. )
  402. # Create user
  403. username = str(uuid.uuid4())
  404. password = str(uuid.uuid4())
  405. user_id = admin.create_user(
  406. payload={
  407. "username": username,
  408. "email": f"{username}@test.test",
  409. "enabled": True,
  410. "firstName": "first",
  411. "lastName": "last",
  412. "emailVerified": True,
  413. "requiredActions": [],
  414. "credentials": [{"type": "password", "value": password, "temporary": False}],
  415. },
  416. )
  418. yield (
  419. KeycloakOpenID(
  420. server_url=f"http://{env.keycloak_host}:{env.keycloak_port}",
  421. realm_name=realm,
  422. client_id=client,
  423. client_secret_key=secret,
  424. ),
  425. username,
  426. password,
  427. )
  429. # Cleanup
  430. admin.delete_client(client_id=client_id)
  431. admin.delete_user(user_id=user_id)
  434. @pytest.fixture
  435. def realm(admin: KeycloakAdmin) -> Generator[str, None, None]:
  436. """
  437. Fixture for a new random realm.
  439. :param admin: Keycloak admin
  440. :type admin: KeycloakAdmin
  441. :yields: Keycloak realm
  442. :rtype: str
  443. """
  444. realm_name = str(uuid.uuid4())
  445. admin.create_realm(payload={"realm": realm_name, "enabled": True})
  446. yield realm_name
  447. admin.delete_realm(realm_name=realm_name)
  450. @pytest.fixture
  451. def user(admin: KeycloakAdmin, realm: str) -> Generator[str, None, None]:
  452. """
  453. Fixture for a new random user.
  455. :param admin: Keycloak admin
  456. :type admin: KeycloakAdmin
  457. :param realm: Keycloak realm
  458. :type realm: str
  459. :yields: Keycloak user
  460. :rtype: str
  461. """
  462. admin.change_current_realm(realm)
  463. username = str(uuid.uuid4())
  464. user_id = admin.create_user(payload={"username": username, "email": f"{username}@test.test"})
  465. yield user_id
  466. admin.delete_user(user_id=user_id)
  469. @pytest.fixture
  470. def group(admin: KeycloakAdmin, realm: str) -> Generator[str, None, None]:
  471. """
  472. Fixture for a new random group.
  474. :param admin: Keycloak admin
  475. :type admin: KeycloakAdmin
  476. :param realm: Keycloak realm
  477. :type realm: str
  478. :yields: Keycloak group
  479. :rtype: str
  480. """
  481. admin.change_current_realm(realm)
  482. group_name = str(uuid.uuid4())
  483. group_id = admin.create_group(payload={"name": group_name})
  484. yield group_id
  485. admin.delete_group(group_id=group_id)
  488. @pytest.fixture
  489. def client(admin: KeycloakAdmin, realm: str) -> Generator[str, None, None]:
  490. """
  491. Fixture for a new random client.
  493. :param admin: Keycloak admin
  494. :type admin: KeycloakAdmin
  495. :param realm: Keycloak realm
  496. :type realm: str
  497. :yields: Keycloak client id
  498. :rtype: str
  499. """
  500. admin.change_current_realm(realm)
  501. client = str(uuid.uuid4())
  502. client_id = admin.create_client(payload={"name": client, "clientId": client})
  503. yield client_id
  504. admin.delete_client(client_id=client_id)
  507. @pytest.fixture
  508. def client_role(admin: KeycloakAdmin, realm: str, client: str) -> Generator[str, None, None]:
  509. """
  510. Fixture for a new random client role.
  512. :param admin: Keycloak admin
  513. :type admin: KeycloakAdmin
  514. :param realm: Keycloak realm
  515. :type realm: str
  516. :param client: Keycloak client
  517. :type client: str
  518. :yields: Keycloak client role
  519. :rtype: str
  520. """
  521. admin.change_current_realm(realm)
  522. role = str(uuid.uuid4())
  523. admin.create_client_role(client, {"name": role, "composite": False})
  524. yield role
  525. admin.delete_client_role(client, role)
  528. @pytest.fixture
  529. def composite_client_role(
  530. admin: KeycloakAdmin,
  531. realm: str,
  532. client: str,
  533. client_role: str,
  534. ) -> Generator[str, None, None]:
  535. """
  536. Fixture for a new random composite client role.
  538. :param admin: Keycloak admin
  539. :type admin: KeycloakAdmin
  540. :param realm: Keycloak realm
  541. :type realm: str
  542. :param client: Keycloak client
  543. :type client: str
  544. :param client_role: Keycloak client role
  545. :type client_role: str
  546. :yields: Composite client role
  547. :rtype: str
  548. """
  549. admin.change_current_realm(realm)
  550. role = str(uuid.uuid4())
  551. admin.create_client_role(client, {"name": role, "composite": True})
  552. role_repr = admin.get_client_role(client, client_role)
  553. admin.add_composite_client_roles_to_role(client, role, roles=[role_repr])
  554. yield role
  555. admin.delete_client_role(client, role)
  558. @pytest.fixture
  559. def selfsigned_cert() -> tuple[str, str]:
  560. """
  561. Generate self signed certificate for a hostname, and optional IP addresses.
  563. :returns: Selfsigned certificate
  564. :rtype: Tuple[str, str]
  565. """
  566. hostname = "testcert"
  567. ip_addresses = None
  568. key = None
  569. # Generate our key
  570. if key is None:
  571. key = rsa.generate_private_key(
  572. public_exponent=65537,
  573. key_size=2048,
  574. backend=default_backend(),
  575. )
  577. name = x509.Name([x509.NameAttribute(NameOID.COMMON_NAME, hostname)])
  578. alt_names = [x509.DNSName(hostname)]
  580. # allow addressing by IP, for when you don't have real DNS (common in most testing scenarios
  581. if ip_addresses:
  582. for addr in ip_addresses:
  583. # openssl wants DNSnames for ips...
  584. alt_names.append(x509.DNSName(addr))
  585. # ... whereas golang's crypto/tls is stricter, and needs IPAddresses
  586. # note: older versions of cryptography do not understand ip_address objects
  587. alt_names.append(x509.IPAddress(ipaddress.ip_address(addr)))
  589. san = x509.SubjectAlternativeName(alt_names)
  591. # path_len=0 means this cert can only sign itself, not other certs.
  592. basic_contraints = x509.BasicConstraints(ca=True, path_length=0)
  593. now = datetime.now(tz=timezone.utc)
  594. cert = (
  595. x509.CertificateBuilder()
  596. .subject_name(name)
  597. .issuer_name(name)
  598. .public_key(key.public_key())
  599. .serial_number(1000)
  600. .not_valid_before(now)
  601. .not_valid_after(now + timedelta(days=10 * 365))
  602. .add_extension(basic_contraints, False)
  603. .add_extension(san, False)
  604. .sign(key, hashes.SHA256(), default_backend())
  605. )
  606. cert_pem = cert.public_bytes(encoding=serialization.Encoding.PEM)
  607. key_pem = key.private_bytes(
  608. encoding=serialization.Encoding.PEM,
  609. format=serialization.PrivateFormat.TraditionalOpenSSL,
  610. encryption_algorithm=serialization.NoEncryption(),
  611. )
  613. return cert_pem, key_pem
  616. @pytest.fixture
  617. def oid_connection_with_authz(
  618. oid_with_credentials_authz: tuple[KeycloakOpenID, str, str],
  619. ) -> KeycloakOpenIDConnection:
  620. """
  621. Fixture for initialized KeycloakUMA class.
  623. :param oid_with_credentials_authz: Keycloak OpenID client with pre-configured user credentials
  624. :type oid_with_credentials_authz: Tuple[KeycloakOpenID, str, str]
  625. :yields: Keycloak OpenID connection manager
  626. :rtype: KeycloakOpenIDConnection
  627. """
  628. oid, _, _ = oid_with_credentials_authz
  629. return KeycloakOpenIDConnection(
  630. server_url=oid.connection.base_url,
  631. realm_name=oid.realm_name,
  632. client_id=oid.client_id,
  633. client_secret_key=oid.client_secret_key,
  634. timeout=60,
  635. )
  638. @pytest.fixture
  639. def uma(oid_connection_with_authz: KeycloakOpenIDConnection) -> KeycloakUMA:
  640. """
  641. Fixture for initialized KeycloakUMA class.
  643. :param oid_connection_with_authz: Keycloak open id connection with pre-configured authz client
  644. :type oid_connection_with_authz: KeycloakOpenIDConnection
  645. :yields: Keycloak OpenID client
  646. :rtype: KeycloakOpenID
  647. """
  648. connection = oid_connection_with_authz
  649. # Return UMA
  650. return KeycloakUMA(connection=connection)