def test_login_with_guest(flask_app, clean_database, mocker):
# Setup
mocker.patch("randovania.server.user_session._get_now",
return_value=datetime.datetime(year=2020, month=9, day=4))
mock_create_session = mocker.patch(
"randovania.server.user_session._create_client_side_session",
autospec=True)
enc_request = b"encrypted stuff"
sio = MagicMock()
sio.guest_encrypt.decrypt.return_value = json.dumps({
"name":
"Someone",
"date":
'2020-09-05T17:12:09.941661',
}).encode("utf-8")
with flask_app.test_request_context():
flask.request.sid = 7890
result = user_session.login_with_guest(sio, enc_request)
# Assert
sio.guest_encrypt.decrypt.assert_called_once_with(enc_request)
user: User = User.get_by_id(1)
assert user.name == "Guest: Someone"
mock_create_session.assert_called_once_with(sio, user)
assert result is mock_create_session.return_value
def get_current_user(self) -> User:
try:
return User.get_by_id(self.get_session()["user-id"])
except KeyError:
raise NotLoggedIn()
except peewee.DoesNotExist:
raise InvalidSession()
def restore_user_session(sio: ServerApp, encrypted_session: bytes,
session_id: Optional[int]):
try:
decrypted_session: bytes = sio.fernet_encrypt.decrypt(
encrypted_session)
session = json.loads(decrypted_session.decode("utf-8"))
if "discord-access-token" in session:
user, result = _create_session_with_discord_token(
sio, session["discord-access-token"])
else:
user = User.get_by_id(session["user-id"])
sio.save_session(session)
result = _create_client_side_session(sio, user)
if session_id is not None:
sio.join_game_session(
GameSessionMembership.get_by_ids(user.id, session_id))
return result
except UserNotAuthorized:
raise
except (KeyError, peewee.DoesNotExist, json.JSONDecodeError,
InvalidTokenError) as e:
# InvalidTokenError: discord token expired and couldn't renew
logger().info("Client at %s was unable to restore session: (%s) %s",
sio.current_client_ip(), str(type(e)), str(e))
raise InvalidSession()
except Exception:
logger().exception("Error decoding user session")
raise InvalidSession()
def _create_client_side_session(sio: ServerApp, user: Optional[User]) -> dict:
"""
:param user: If the session's user was already retrieved, pass it along to avoid an extra query.
:return:
"""
session = sio.get_session()
encrypted_session = sio.fernet_encrypt.encrypt(
json.dumps(session).encode("utf-8"))
if user is None:
user = User.get_by_id(session["user-id"])
elif user.id != session["user-id"]:
raise RuntimeError(f"Provided user does not match the session's user")
logger().info(
f"Client at {sio.current_client_ip()} is user {user.name} ({user.id})."
)
return {
"user":
user.as_json,
"sessions": [
membership.session.create_list_entry()
for membership in GameSessionMembership.select().where(
GameSessionMembership.user == user)
],
"encoded_session_b85":
base64.b85encode(encrypted_session),
}
def restore_user_session(sio: ServerApp, encrypted_session: bytes,
session_id: Optional[int]):
try:
decrypted_session: bytes = sio.fernet_encrypt.decrypt(
encrypted_session)
session = json.loads(decrypted_session.decode("utf-8"))
user = User.get_by_id(session["user-id"])
if "discord-access-token" in session:
# TODO: test if the discord access token is still valid
flask.session["DISCORD_OAUTH2_TOKEN"] = session[
"discord-access-token"]
sio.get_server().save_session(flask.request.sid, session)
if session_id is not None:
sio.join_game_session(
GameSessionMembership.get_by_ids(user.id, session_id))
return _create_client_side_session(sio, user)
except (KeyError, peewee.DoesNotExist, json.JSONDecodeError):
raise InvalidSession()
except Exception:
logger().exception("Error decoding user session")
raise InvalidSession()
