warricksothr
/
Corvus
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
A multipurpose python flask API server and administration SPA
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
24 Commits
3 Branches
0 Tags
251 KiB
Tree: 4da0fae30f
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '4da0fae30f'
${ noResults }
Corvus/server/tests/api/test_authentication_api.py

156 lines
4.7 KiB
Raw Normal View History

Refactor: Improve testing
5 years ago
Initial copy from Atheneum project
6 years ago
Refactor: Improve testing
5 years ago
Initial copy from Atheneum project
6 years ago
Refactor: Improve testing
5 years ago
Initial copy from Atheneum project
6 years ago
Migrating latest Atheneum changes to Corvus
6 years ago
Refactor: Improve testing
5 years ago
  1. from datetime import timedelta
  3. import rfc3339
  4. from flask import json
  5. from flask.testing import FlaskClient
  7. from tests.conftest import AuthActions
  10. def test_login_happy_path(auth: AuthActions):
  11. with auth as result:
  12. assert result.status_code == 200
  13. assert result.json[
  14. 'token'] is not None and len(result.json['token']) > 0
  17. def test_bump_happy_path(auth: AuthActions):
  18. with auth:
  19. result = auth.bump()
  20. assert result.status_code == 200
  21. assert (result.json['lastLoginTime'] is not None
  22. and len(result.json['lastLoginTime']) > 0)
  25. def test_logout_happy_path(auth: AuthActions):
  26. auth.login()
  27. result = auth.logout()
  28. assert result.status_code == 200
  29. assert result.json['success']
  32. def test_get_tokens_no_tokens(auth: AuthActions, client: FlaskClient):
  33. auth_header = auth.get_authorization_header_basic()
  34. result = client.get(
  35. '/auth/token',
  36. headers={
  37. auth_header[0]: auth_header[1]
  38. })
  39. assert 404 == result.status_code
  40. assert result.json is not None
  43. def test_get_tokens(auth: AuthActions, client: FlaskClient):
  44. with auth:
  45. auth_header = auth.get_authorization_header_basic()
  46. result = client.get(
  47. '/auth/token',
  48. headers={
  49. auth_header[0]: auth_header[1]
  50. })
  51. assert 200 == result.status_code
  52. assert result.json is not None
  53. assert result.json['page'] == 1
  54. assert result.json['lastPage'] == 1
  55. assert result.json['count'] == 1
  56. assert result.json['totalCount'] == 1
  57. assert result.json['items'][0]['token'] == auth.token
  60. def test_get_nonexistant_token(auth: AuthActions, client: FlaskClient):
  61. auth_header = auth.get_authorization_header_basic()
  62. result = client.get(
  63. '/auth/token/not-a-token',
  64. headers={
  65. auth_header[0]: auth_header[1]
  66. })
  67. assert 404 == result.status_code
  68. assert result.json is not None
  71. def test_create_get_delete_token(auth: AuthActions, client: FlaskClient):
  72. auth_header = auth.get_authorization_header_basic()
  73. result = client.post(
  74. '/auth/token',
  75. headers={
  76. auth_header[0]: auth_header[1],
  77. 'Content-Type': 'application/json'
  78. },
  79. data=json.dumps({
  80. 'note': 'test note',
  81. 'enabled': False
  82. }))
  83. assert 200 == result.status_code
  84. assert result.json is not None
  85. assert result.json['token'] is not None
  86. assert result.json['note'] == 'test note'
  87. assert not result.json['enabled']
  88. assert not result.json['isValid']
  89. auth_token = result.json['token']
  90. result = client.get(
  91. '/auth/token/%s' % auth_token,
  92. headers={
  93. auth_header[0]: auth_header[1]
  94. })
  95. assert 200 == result.status_code
  96. assert result.json is not None
  97. assert result.json['token'] == auth_token
  98. result = client.delete(
  99. '/auth/token/%s' % auth_token,
  100. headers={
  101. auth_header[0]: auth_header[1]
  102. })
  103. assert 200 == result.status_code
  104. assert result.json is not None
  105. assert 'message' not in result.json
  106. assert result.json['success']
  109. def test_create_get_delete_expired_token(
  110. auth: AuthActions, client: FlaskClient):
  111. auth_header = auth.get_authorization_header_basic()
  112. result = client.post(
  113. '/auth/token',
  114. headers={
  115. auth_header[0]: auth_header[1],
  116. 'Content-Type': 'application/json'
  117. },
  118. data=json.dumps({
  119. 'note': 'test note',
  120. 'expirationTime': rfc3339.format(
  121. rfc3339.datetime.now() - timedelta(days=1))
  122. }))
  123. assert 200 == result.status_code
  124. assert result.json is not None
  125. assert result.json['token'] is not None
  126. assert result.json['note'] == 'test note'
  127. assert not result.json['isValid']
  128. auth_token = result.json['token']
  129. result = client.get(
  130. '/auth/token/%s' % auth_token,
  131. headers={
  132. auth_header[0]: auth_header[1]
  133. })
  134. assert 200 == result.status_code
  135. assert result.json is not None
  136. assert result.json['token'] == auth_token
  137. result = client.delete(
  138. '/auth/token/%s' % auth_token,
  139. headers={
  140. auth_header[0]: auth_header[1]
  141. })
  142. assert 200 == result.status_code
  143. assert result.json is not None
  144. assert 'message' not in result.json
  145. assert result.json['success']
  148. def test_delete_nonexistant_token(auth: AuthActions, client: FlaskClient):
  149. auth_header = auth.get_authorization_header_basic()
  150. result = client.delete(
  151. '/auth/token/not-a-token',
  152. headers={
  153. auth_header[0]: auth_header[1]
  154. })
  155. assert 404 == result.status_code
  156. assert result.json is not None