def test_signatured_is_calculated_with_right_headers(self, mock):
request = Request('localhost', 'POST')
self.assertIsNone(request.headers.get('Authorization', None))
sig = UHV1Signature(request, 'access', 'secret').signature
self.assertIsNone(request.headers.get('Authorization', None))
# It is right when we sign the request
request._sign()
self.assertIsNotNone(request.headers.get('Authorization', None))
self.assertEqual(sig, request.headers['Authorization'])
del request.headers['Authorization']
request.send()
args, kwargs = mock.call_args
self.assertEqual(kwargs['headers']['Authorization'], sig)
# It is right when we send the request
request = Request('localhost', 'POST')
self.assertIsNone(request.headers.get('Authorization', None))
sig = UHV1Signature(request, 'access', 'secret').signature
self.assertIsNone(request.headers.get('Authorization', None))
request.send()
args, kwargs = mock.call_args
self.assertEqual(kwargs['headers']['Authorization'], sig)
def test_canonical_headers(self):
request = Request('http://foo.bar.com.br', 'POST')
request.headers = {
'Host': 'foo.bar.com.br',
'Content-sha256': '1234',
'Timestamp': 123456.1234,
'Accept': 'text/json',
}
expected = '''accept:text/json
content-sha256:1234
host:foo.bar.com.br
timestamp:123456.1234'''
observed = request._canonical_headers()
self.assertEqual(observed, expected)
def test_signed_request_has_the_authorization_header(self):
request = Request('https://127.0.0.1/upload', 'POST')
header = request.headers.get('Authorization', None)
self.assertIsNone(header)
request._sign()
header = request.headers.get('Authorization', None)
self.assertIsNotNone(header)
def test_prepared_headers_are_strings(self):
request = Request('localhost', 'POST')
headers = request.headers
prepared_headers = request._prepare_headers()
self.assertEqual(prepared_headers.keys(), headers.keys())
for value in prepared_headers.values():
self.assertIs(type(value), str)
for header in headers:
self.assertEqual(str(headers[header]), prepared_headers[header])
def test_request_has_minimal_headers(self, msha256, mversion, mdate):
mdate.now.return_value = datetime(1970, 1, 1, tzinfo=timezone.utc)
msha256.return_value.hexdigest.return_value = 'sha256sum'
headers = [
('Host', 'localhost'),
('Timestamp', 0),
('Api-Content-Type', 'application/vnd.updatehub-v1+json'),
('Content-sha256', 'sha256sum'),
('User-Agent', 'updatehub-utils/2.0'),
]
request = Request('https://localhost/', 'POST', b'\0')
self.assertEqual(len(request.headers), self.n_headers)
for header, value in headers:
self.assertEqual(request.headers.get(header), value)
def test_canonical_request(self, mock_version, mock_date):
mock_date.now.return_value = datetime(1970, 1, 1, tzinfo=timezone.utc)
request = Request(
'http://localhost/upload?c=3&b=2&a=1',
'POST',
b'\0',
)
expected = '''POST
/upload
a=1&b=2&c=3
accept:application/json
api-content-type:application/vnd.updatehub-v1+json
content-sha256:6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
host:localhost
timestamp:0.0
user-agent:updatehub-utils/2.0
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d'''
self.assertEqual(request.canonical(), expected)
def test_request_date_is_in_utc(self):
expected = datetime.now(timezone.utc).timestamp()
observed = Request('', 'POST').date.timestamp()
# 60 seconds of tolerance between expected and observed
self.assertAlmostEqual(observed, expected, delta=60)
def test_send_request(self, request):
Request('localhost', 'GET').send()
args, kwargs = request.call_args
self.assertEqual(args, ('GET', 'localhost'))
self.assertEqual(kwargs.get('timeout'), 30)
def test_can_set_json_content_type(self):
request = Request('https://localhost/', 'POST', b'{}', json=True)
header = request.headers.get('Content-Type')
self.assertIsNotNone(header)
self.assertEqual(header, 'application/json')
def test_canonical_query_is_correctly_escaped(self):
url = 'https://localhost/?to-be-scaped=scape me!&b=1&a=2'
request = Request(url, 'POST')
expected = 'a=2&b=1&to-be-scaped=scape%20me%21'
observed = request._canonical_query()
self.assertEqual(observed, expected)
def test_canonical_query(self):
url = 'https://localhost/?c=000&bb=111&aaa=222'
request = Request(url, 'POST')
expected = 'aaa=222&bb=111&c=000'
observed = request._canonical_query()
self.assertEqual(observed, expected)
def test_can_pass_extra_kwargs_to_requests(self, mock):
Request('http://localhost', 'GET', stream=True).send()
observed = list(mock.call_args)[1].get('stream')
self.assertTrue(observed)
def test_host_header_does_not_include_port_if_not_provided(self):
req = Request('http://localhost', 'GET')
expected = 'localhost'
observed = req.headers.get('Host')
self.assertEqual(observed, expected)
def test_request_is_signed(self, request):
Request('/signed', 'GET').send()
headers = request.call_args[1]['headers']
self.assertIsNotNone(headers.get('Authorization'))
def test_can_add_custom_headers(self):
headers = {'another': 'header'}
request = Request('https://localhost/', 'POST', b'\0', headers=headers)
self.assertEqual(len(request.headers), self.n_headers + 1)
self.assertEqual(request.headers.get('another'), 'header')
def test_request_does_not_send_json_content_type_by_default(self):
request = Request('https://localhost/', 'POST')
self.assertIsNone(request.headers.get('Content-Type'))
def test_canonical_query_handles_repeated_values(self):
url = 'https://localhost/?b=3&a=3&b=2&a=2&b=1&a=1'
request = Request(url, 'POST')
expected = 'a=1&a=2&a=3&b=1&b=2&b=3'
observed = request._canonical_query()
self.assertEqual(observed, expected)
def test_header_content_sha256_when_string(self):
payload = 'string'
request = Request('localhost', 'POST', payload)
expected = hashlib.sha256(payload.encode()).hexdigest()
observed = request.headers.get('Content-sha256')
self.assertEqual(observed, expected)
def test_canonical_query_can_sort_escaped_repeated_values(self):
url = 'https://localhost/?b=3&a=1&b=2&a=!&b=1&a= '
request = Request(url, 'POST')
expected = 'a=%20&a=%21&a=1&b=1&b=2&b=3'
observed = request._canonical_query()
self.assertEqual(observed, expected)