def setUp(self):
self._cleanup()
uris = ['http://client1.synnefo.org/oauth2_callback']
self.client_public = Client.create('client_public', uris=uris,
client_type='public')
self.client_conf = Client.create('client_conf', secret='pass',
uris=uris, client_type='confidential')
self.backend = SimpleBackend(errors_to_http=False)
def setUp(self):
self._cleanup()
uris = ['http://client1.synnefo.org/oauth2_callback']
self.client_public = Client.create('client_public', uris=uris,
client_type='public')
self.client_conf = Client.create('client_conf', secret='pass',
uris=uris, client_type='confidential')
self.backend = SimpleBackend(errors_to_http=False)
class TestClient(OA2TestCase):
def _cleanup(self):
Client.ENTRIES = {}
Token.ENTRIES = {}
User.ENTRIES = {}
AuthorizationCode.ENTRIES = {}
def setUp(self):
self._cleanup()
uris = ['http://client1.synnefo.org/oauth2_callback']
self.client_public = Client.create('client_public', uris=uris,
client_type='public')
self.client_conf = Client.create('client_conf', secret='pass',
uris=uris, client_type='confidential')
self.backend = SimpleBackend(errors_to_http=False)
def test_authorization(self):
client_id = self.client_public.get_id()
auth_request = self.build_authorization_request
token_request = self.build_token_request
User.create("*****@*****.**", name='kpap')
def assert_codes_len(check=0):
self.assertEqual(len(AuthorizationCode.ENTRIES.keys()), check)
# plain http code request
req = auth_request('code', client_id, secure=False)
self.assertRaisesOA2(self.backend.authorize, req)
assert_codes_len(0)
# wrong method
req = auth_request('code', client_id, method='POST')
self.assertRaisesOA2(self.backend.authorize, req)
assert_codes_len(0)
# invalid client id
req = auth_request('code', 'client123')
self.assertRaisesOA2(self.backend.authorize, req)
assert_codes_len(0)
# invalid redirect uri
invalid_uri = 'http://client1.synnefo.org/oauth2_callback?invalid'
req = auth_request('code', client_id, uri=invalid_uri)
self.assertRaisesOA2(self.backend.authorize, req)
assert_codes_len(0)
# code request
req = auth_request('code', client_id, scope="scope1 scope2")
res = self.backend.authorize(req)
self.assertResponseRedirect(res)
assert_codes_len(1)
# authorize grant
auth_code = AuthorizationCode.ENTRIES.keys()[0]
req = token_request('authorization_code', client_id,
scope="scope1 scope2", post={'code': auth_code})
# invalid code
req.POST['code'] = "123"
self.assertRaisesOA2(self.backend.grant, req)
# valid code
req.POST['code'] = auth_code
res = self.backend.grant(req)
# code consumed
assert_codes_len(0)
# code reuse fails
self.assertRaisesOA2(self.backend.grant, req)
# valid token scope
token = Token.ENTRIES.keys()[0]
token_obj = Token.get(token)
self.assertEqual(token_obj.scope, "scope1 scope2")
def test_authenticated_client(self):
client_id = self.client_conf.get_id()
client_secret = self.client_conf.secret
auth_request = self.build_authorization_request
token_request = self.build_token_request
req = auth_request('code', client_id, scope="scope1 scope2")
self.auth_request(req, client_id, client_secret)
def test_invalid_client(self):
client_id = self.client_public.get_id()
auth_request = self.build_authorization_request
token_request = self.build_token_request
# code request
req = auth_request('code', 'client5', scope="scope1 scope2")
self.assertRaisesOA2(self.backend.authorize, req)
req = auth_request('code', client_id, scope="scope1 scope2")
self.backend.authorize(req)
auth_code = AuthorizationCode.ENTRIES.keys()[0]
req = token_request('authorization_code', 'fakeclient',
scope="scope1 scope2", post={'code': auth_code})
self.assertRaisesOA2(self.backend.grant, req)
req.POST['client_id'] = client_id
self.backend.grant(req)
class TestClient(OA2TestCase):
def _cleanup(self):
Client.ENTRIES = {}
Token.ENTRIES = {}
User.ENTRIES = {}
AuthorizationCode.ENTRIES = {}
def setUp(self):
self._cleanup()
uris = ['http://client1.synnefo.org/oauth2_callback']
self.client_public = Client.create('client_public',
uris=uris,
client_type='public')
self.client_conf = Client.create('client_conf',
secret='pass',
uris=uris,
client_type='confidential')
self.backend = SimpleBackend(errors_to_http=False)
def test_authorization(self):
client_id = self.client_public.get_id()
auth_request = self.build_authorization_request
token_request = self.build_token_request
User.create("*****@*****.**", name='kpap')
def assert_codes_len(check=0):
self.assertEqual(len(AuthorizationCode.ENTRIES.keys()), check)
# plain http code request
req = auth_request('code', client_id, secure=False)
self.assertRaisesOA2(self.backend.authorize, req)
assert_codes_len(0)
# wrong method
req = auth_request('code', client_id, method='POST')
self.assertRaisesOA2(self.backend.authorize, req)
assert_codes_len(0)
# invalid client id
req = auth_request('code', 'client123')
self.assertRaisesOA2(self.backend.authorize, req)
assert_codes_len(0)
# invalid redirect uri
invalid_uri = 'http://client1.synnefo.org/oauth2_callback?invalid'
req = auth_request('code', client_id, uri=invalid_uri)
self.assertRaisesOA2(self.backend.authorize, req)
assert_codes_len(0)
# code request
req = auth_request('code', client_id, scope="scope1 scope2")
res = self.backend.authorize(req)
self.assertResponseRedirect(res)
assert_codes_len(1)
# authorize grant
auth_code = AuthorizationCode.ENTRIES.keys()[0]
req = token_request('authorization_code',
client_id,
scope="scope1 scope2",
post={'code': auth_code})
# invalid code
req.POST['code'] = "123"
self.assertRaisesOA2(self.backend.grant, req)
# valid code
req.POST['code'] = auth_code
res = self.backend.grant(req)
# code consumed
assert_codes_len(0)
# code reuse fails
self.assertRaisesOA2(self.backend.grant, req)
# valid token scope
token = Token.ENTRIES.keys()[0]
token_obj = Token.get(token)
self.assertEqual(token_obj.scope, "scope1 scope2")
def test_authenticated_client(self):
client_id = self.client_conf.get_id()
client_secret = self.client_conf.secret
auth_request = self.build_authorization_request
token_request = self.build_token_request
req = auth_request('code', client_id, scope="scope1 scope2")
self.auth_request(req, client_id, client_secret)
def test_invalid_client(self):
client_id = self.client_public.get_id()
auth_request = self.build_authorization_request
token_request = self.build_token_request
# code request
req = auth_request('code', 'client5', scope="scope1 scope2")
self.assertRaisesOA2(self.backend.authorize, req)
req = auth_request('code', client_id, scope="scope1 scope2")
self.backend.authorize(req)
auth_code = AuthorizationCode.ENTRIES.keys()[0]
req = token_request('authorization_code',
'fakeclient',
scope="scope1 scope2",
post={'code': auth_code})
self.assertRaisesOA2(self.backend.grant, req)
req.POST['client_id'] = client_id
self.backend.grant(req)