Mirror
/
python-keycloak
mirror of https://github.com/marcospereirampj/python-keycloak.git
1
0
Fork 1
Code Issues Projects Releases Wiki Activity
Browse Source

feat: test cases completed for new functionality

pull/574/head
MohsinEngineer 11 months ago
parent
2e64ccfc3c
commit
e9d6a7e68c
1 changed files with 54 additions and 0 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 54
      tests/test_keycloak_admin.py

54
tests/test_keycloak_admin.py
View File

@ -1102,6 +1102,8 @@ def test_clients(admin: KeycloakAdmin, realm: str):
payload={"name": "test-authz-rb-policy", "roles": [{"id": role_id}]}, payload={"name": "test-authz-rb-policy", "roles": [{"id": role_id}]},
) )
assert res["name"] == "test-authz-rb-policy", res assert res["name"] == "test-authz-rb-policy", res
role_based_policy_id = res["id"]
role_based_policy_name = res["name"]
with pytest.raises(KeycloakPostError) as err: with pytest.raises(KeycloakPostError) as err:
admin.create_client_authz_role_based_policy( admin.create_client_authz_role_based_policy(
@ -1174,6 +1176,8 @@ def test_clients(admin: KeycloakAdmin, realm: str):
assert res, res assert res, res
assert res["name"] == "test-permission-rb" assert res["name"] == "test-permission-rb"
assert res["resources"] == [test_resource_id] assert res["resources"] == [test_resource_id]
resource_based_permission_id = res["id"]
resource_based_permission_name = res["name"]
with pytest.raises(KeycloakPostError) as err: with pytest.raises(KeycloakPostError) as err:
admin.create_client_authz_resource_based_permission( admin.create_client_authz_resource_based_permission(
@ -1188,6 +1192,29 @@ def test_clients(admin: KeycloakAdmin, realm: str):
) == {"msg": "Already exists"} ) == {"msg": "Already exists"}
assert len(admin.get_client_authz_permissions(client_id=auth_client_id)) == 2 assert len(admin.get_client_authz_permissions(client_id=auth_client_id)) == 2
# Test associating client policy with resource based permission
res = admin.update_client_authz_resource_permission(
client_id=auth_client_id,
resource_id=resource_based_permission_id,
payload={
"id": resource_based_permission_id,
"name": resource_based_permission_name,
"type": "resource",
"logic": "POSITIVE",
"decisionStrategy": "UNANIMOUS",
"resources": [test_resource_id],
"scopes": [],
"policies": [role_based_policy_id],
},
)
# Test getting associated policies for a permission
associated_policies = admin.get_client_authz_permission_associated_policies(
client_id=auth_client_id, policy_id=resource_based_permission_id
)
assert len(associated_policies) == 1
assert associated_policies[0]["name"].startswith(role_based_policy_name)
# Test authz scopes # Test authz scopes
res = admin.get_client_authz_scopes(client_id=auth_client_id) res = admin.get_client_authz_scopes(client_id=auth_client_id)
assert len(res) == 0, res assert len(res) == 0, res
@ -4088,6 +4115,8 @@ async def test_a_clients(admin: KeycloakAdmin, realm: str):
skip_exists=True, skip_exists=True,
) == {"msg": "Already exists"} ) == {"msg": "Already exists"}
assert len(await admin.a_get_client_authz_policies(client_id=auth_client_id)) == 2 assert len(await admin.a_get_client_authz_policies(client_id=auth_client_id)) == 2
role_based_policy_id = res["id"]
role_based_policy_name = res["name"]
res = await admin.a_create_client_authz_role_based_policy( res = await admin.a_create_client_authz_role_based_policy(
client_id=auth_client_id, client_id=auth_client_id,
@ -4147,6 +4176,8 @@ async def test_a_clients(admin: KeycloakAdmin, realm: str):
assert res, res assert res, res
assert res["name"] == "test-permission-rb" assert res["name"] == "test-permission-rb"
assert res["resources"] == [test_resource_id] assert res["resources"] == [test_resource_id]
resource_based_permission_id = res["id"]
resource_based_permission_name = res["name"]
with pytest.raises(KeycloakPostError) as err: with pytest.raises(KeycloakPostError) as err:
await admin.a_create_client_authz_resource_based_permission( await admin.a_create_client_authz_resource_based_permission(
@ -4161,6 +4192,29 @@ async def test_a_clients(admin: KeycloakAdmin, realm: str):
) == {"msg": "Already exists"} ) == {"msg": "Already exists"}
assert len(await admin.a_get_client_authz_permissions(client_id=auth_client_id)) == 2 assert len(await admin.a_get_client_authz_permissions(client_id=auth_client_id)) == 2
# Test associating client policy with resource based permission
res = await admin.a_update_client_authz_resource_permission(
client_id=auth_client_id,
resource_id=resource_based_permission_id,
payload={
"id": resource_based_permission_id,
"name": resource_based_permission_name,
"type": "resource",
"logic": "POSITIVE",
"decisionStrategy": "UNANIMOUS",
"resources": [test_resource_id],
"scopes": [],
"policies": [role_based_policy_id],
},
)
# Test getting associated policies for a permission
associated_policies = await admin.a_get_client_authz_permission_associated_policies(
client_id=auth_client_id, policy_id=resource_based_permission_id
)
assert len(associated_policies) == 1
assert associated_policies[0]["name"].startswith(role_based_policy_name)
# Test authz scopes # Test authz scopes
res = await admin.a_get_client_authz_scopes(client_id=auth_client_id) res = await admin.a_get_client_authz_scopes(client_id=auth_client_id)
assert len(res) == 0, res assert len(res) == 0, res

Write Preview
Loading…
Cancel
Save