Example #1
0
 def test_verify_action(self):
     token = xsrf.XSRFToken('*****@*****.**',
                            'secret',
                            current_time=1354160000)
     token_string = token.generate_token_string('action')
     token.verify_token_string(token_string, 'action')
     self.assertRaises(
         xsrf.XSRFTokenInvalid, token.verify_token_string,
         xsrf.XSRFToken('*****@*****.**',
                        'differentsecret',
                        current_time=1354160000).generate_token_string())
Example #2
0
 def test_verify_action(self):
     token = xsrf.XSRFToken("*****@*****.**",
                            "secret",
                            current_time=1354160000)
     token_string = token.generate_token_string("action")
     token.verify_token_string(token_string, "action")
     self.assertRaises(
         xsrf.XSRFTokenInvalid,
         token.verify_token_string,
         xsrf.XSRFToken("*****@*****.**",
                        "differentsecret",
                        current_time=1354160000).generate_token_string(),
     )
Example #3
0
 def test_verify_time_not_int(self):
     token = xsrf.XSRFToken('*****@*****.**',
                            'secret')
     self.assertRaises(
         xsrf.XSRFTokenMalformed,
         token.verify_token_string,
         base64.b64encode('NODE|NOTINT'))
Example #4
0
 def test_verify_no_delimiter(self):
     token = xsrf.XSRFToken('*****@*****.**',
                            'secret')
     self.assertRaises(
         xsrf.XSRFTokenMalformed,
         token.verify_token_string,
         base64.b64encode('NODELIMITER'))
Example #5
0
 def test_verify_bad_base_64(self):
     token = xsrf.XSRFToken('*****@*****.**',
                            'secret')
     self.assertRaises(
         xsrf.XSRFTokenMalformed,
         token.verify_token_string,
         'wrong!!')
Example #6
0
 def test_verify_time_not_int(self):
     token = xsrf.XSRFToken("*****@*****.**", "secret")
     self.assertRaises(
         xsrf.XSRFTokenMalformed,
         token.verify_token_string,
         base64.b64encode(b"NODE|NOTINT"),
     )
Example #7
0
 def test_verify_no_delimiter(self):
     token = xsrf.XSRFToken("*****@*****.**", "secret")
     self.assertRaises(
         xsrf.XSRFTokenMalformed,
         token.verify_token_string,
         base64.b64encode(b"NODELIMITER"),
     )
Example #8
0
 def test_verify_substring(self):
     """Tests that a substring of the correct token fails to verify."""
     token = xsrf.XSRFToken('*****@*****.**',
                            'secret',
                            current_time=1354160000)
     token_string = token.generate_token_string()
     test_token, test_time = base64.urlsafe_b64decode(token_string).split('|')
     test_string = base64.urlsafe_b64encode('|'.join([test_token[:-1],
                                                      test_time]))
     self.assertRaises(xsrf.XSRFTokenInvalid,
                       token.verify_token_string,
                       test_string)
Example #9
0
 def test_verify_timeout(self):
     token = xsrf.XSRFToken('*****@*****.**',
                            'secret',
                            current_time=1354160000)
     token_string = token.generate_token_string()
     token.verify_token_string(token_string,
                               timeout=10,
                               current_time=1354160010)
     self.assertRaises(xsrf.XSRFTokenExpiredException,
                       token.verify_token_string,
                       token_string,
                       timeout=10,
                       current_time=1354160011)
Example #10
0
 def test_verify_bad_base_64(self):
     token = xsrf.XSRFToken("*****@*****.**", "secret")
     self.assertRaises(xsrf.XSRFTokenMalformed, token.verify_token_string,
                       "wrong!!")