Example #1
0
def test_disabled_user_oauth(app):
    user = model.user.get_user('disabled')
    token_string = '%s%s' % ('a' * 20, 'b' * 20)
    oauth_token, _ = model.oauth.create_access_token_for_testing(
        user, 'deadbeef', 'repo:admin', access_token=token_string)

    result = validate_bearer_auth('bearer ' + token_string)
    assert result.context.oauthtoken is None
    assert result.authed_user is None
    assert not result.auth_valid
    assert result.error_message == 'Granter of the oauth access token is disabled'
Example #2
0
def test_valid_oauth(app):
    user = model.user.get_user('devtable')
    app = model.oauth.list_applications_for_org(
        model.user.get_user_or_org('buynlarge'))[0]
    token_string = '%s%s' % ('a' * 20, 'b' * 20)
    oauth_token, _ = model.oauth.create_access_token_for_testing(
        user, app.client_id, 'repo:read', access_token=token_string)
    result = validate_bearer_auth('bearer ' + token_string)
    assert result.context.oauthtoken == oauth_token
    assert result.authed_user == user
    assert result.auth_valid
Example #3
0
def test_disabled_user_oauth(app):
    user = model.user.get_user("disabled")
    token_string = "%s%s" % ("a" * 20, "b" * 20)
    oauth_token, _ = model.oauth.create_user_access_token(
        user, "deadbeef", "repo:admin", access_token=token_string)

    result = validate_bearer_auth("bearer " + token_string)
    assert result.context.oauthtoken is None
    assert result.authed_user is None
    assert not result.auth_valid
    assert result.error_message == "Granter of the oauth access token is disabled"
Example #4
0
def test_valid_oauth(app):
    user = model.user.get_user("devtable")
    app = model.oauth.list_applications_for_org(
        model.user.get_user_or_org("buynlarge"))[0]
    token_string = "%s%s" % ("a" * 20, "b" * 20)
    oauth_token, _ = model.oauth.create_user_access_token(
        user, app.client_id, "repo:read", access_token=token_string)
    result = validate_bearer_auth("bearer " + token_string)
    assert result.context.oauthtoken == oauth_token
    assert result.authed_user == user
    assert result.auth_valid
Example #5
0
def test_expired_token(app):
    user = model.user.get_user('devtable')
    token_string = '%s%s' % ('a' * 20, 'b' * 20)
    oauth_token, _ = model.oauth.create_access_token_for_testing(
        user,
        'deadbeef',
        'repo:admin',
        access_token=token_string,
        expires_in=-1000)

    result = validate_bearer_auth('bearer ' + token_string)
    assert result.context.oauthtoken is None
    assert result.authed_user is None
    assert not result.auth_valid
    assert result.error_message == 'OAuth access token has expired'
Example #6
0
def test_expired_token(app):
    user = model.user.get_user("devtable")
    token_string = "%s%s" % ("a" * 20, "b" * 20)
    oauth_token, _ = model.oauth.create_user_access_token(
        user,
        "deadbeef",
        "repo:admin",
        access_token=token_string,
        expires_in=-1000)

    result = validate_bearer_auth("bearer " + token_string)
    assert result.context.oauthtoken is None
    assert result.authed_user is None
    assert not result.auth_valid
    assert result.error_message == "OAuth access token has expired"
Example #7
0
def test_bearer(header, expected_result, app):
    assert validate_bearer_auth(header) == expected_result