def test_fetch_auth_db_lazy_bootstrap(self):
# Don't exist before the call.
self.assertFalse(model.root_key().get())
# Run bootstrap.
api._lazy_bootstrap_ran = False
api.fetch_auth_db()
# Exist now.
self.assertTrue(model.root_key().get())
def test_fetch_auth_db_lazy_bootstrap(self):
# Don't exist before the call.
self.assertFalse(model.root_key().get())
# Run bootstrap.
api._lazy_bootstrap_ran = False
api.fetch_auth_db()
# Exist now.
self.assertTrue(model.root_key().get())
def test_fetch_auth_db(self):
# Create AuthGlobalConfig.
global_config = model.AuthGlobalConfig(key=model.root_key())
global_config.oauth_client_id = '1'
global_config.oauth_client_secret = 'secret'
global_config.oauth_additional_client_ids = ['2', '3']
global_config.put()
# Create a bunch of (empty) groups.
groups = [
model.AuthGroup(key=model.group_key('Group A')),
model.AuthGroup(key=model.group_key('Group B')),
]
for group in groups:
group.put()
# And a bunch of secrets (local and global).
local_secrets = [
model.AuthSecret.bootstrap('local%d' % i, 'local')
for i in (0, 1, 2)
]
global_secrets = [
model.AuthSecret.bootstrap('global%d' % i, 'global')
for i in (0, 1, 2)
]
# And IP whitelist.
ip_whitelist_assignments = model.AuthIPWhitelistAssignments(
key=model.ip_whitelist_assignments_key(),
assignments=[
model.AuthIPWhitelistAssignments.Assignment(
identity=model.Anonymous,
ip_whitelist='some ip whitelist',
),
])
ip_whitelist_assignments.put()
some_ip_whitelist = model.AuthIPWhitelist(
key=model.ip_whitelist_key('some ip whitelist'),
subnets=['127.0.0.1/32'])
bots_ip_whitelist = model.AuthIPWhitelist(
key=model.ip_whitelist_key('bots'), subnets=['127.0.0.1/32'])
some_ip_whitelist.put()
bots_ip_whitelist.put()
# This all stuff should be fetched into AuthDB.
auth_db = api.fetch_auth_db()
self.assertEqual(global_config, auth_db.global_config)
self.assertEqual(set(g.key.id() for g in groups), set(auth_db.groups))
self.assertEqual(set(s.key.id() for s in local_secrets),
set(auth_db.secrets['local']))
self.assertEqual(set(s.key.id() for s in global_secrets),
set(auth_db.secrets['global']))
self.assertEqual(ip_whitelist_assignments,
auth_db.ip_whitelist_assignments)
self.assertEqual(
{
'bots': bots_ip_whitelist,
'some ip whitelist': some_ip_whitelist
}, auth_db.ip_whitelists)
def test_fetch_auth_db(self):
# Create AuthGlobalConfig.
global_config = model.AuthGlobalConfig(key=model.root_key())
global_config.oauth_client_id = "1"
global_config.oauth_client_secret = "secret"
global_config.oauth_additional_client_ids = ["2", "3"]
global_config.put()
# Create a bunch of (empty) groups.
groups = [model.AuthGroup(key=model.group_key("Group A")), model.AuthGroup(key=model.group_key("Group B"))]
for group in groups:
group.put()
# And a bunch of secrets (local and global).
local_secrets = [model.AuthSecret.bootstrap("local%d" % i, "local") for i in (0, 1, 2)]
global_secrets = [model.AuthSecret.bootstrap("global%d" % i, "global") for i in (0, 1, 2)]
# And IP whitelist.
ip_whitelist_assignments = model.AuthIPWhitelistAssignments(
key=model.ip_whitelist_assignments_key(),
assignments=[
model.AuthIPWhitelistAssignments.Assignment(identity=model.Anonymous, ip_whitelist="some ip whitelist")
],
)
ip_whitelist_assignments.put()
some_ip_whitelist = model.AuthIPWhitelist(
key=model.ip_whitelist_key("some ip whitelist"), subnets=["127.0.0.1/32"]
)
bots_ip_whitelist = model.AuthIPWhitelist(key=model.ip_whitelist_key("bots"), subnets=["127.0.0.1/32"])
some_ip_whitelist.put()
bots_ip_whitelist.put()
# This all stuff should be fetched into AuthDB.
auth_db = api.fetch_auth_db()
self.assertEqual(global_config, auth_db.global_config)
self.assertEqual(set(g.key.id() for g in groups), set(auth_db.groups))
self.assertEqual(set(s.key.id() for s in local_secrets), set(auth_db.secrets["local"]))
self.assertEqual(set(s.key.id() for s in global_secrets), set(auth_db.secrets["global"]))
self.assertEqual(ip_whitelist_assignments, auth_db.ip_whitelist_assignments)
self.assertEqual({"bots": bots_ip_whitelist, "some ip whitelist": some_ip_whitelist}, auth_db.ip_whitelists)
def test_fetch_auth_db(self):
# Create AuthGlobalConfig.
global_config = model.AuthGlobalConfig(key=model.root_key())
global_config.oauth_client_id = '1'
global_config.oauth_client_secret = 'secret'
global_config.oauth_additional_client_ids = ['2', '3']
global_config.put()
# Create a bunch of (empty) groups.
groups = [
model.AuthGroup(key=model.group_key('Group A')),
model.AuthGroup(key=model.group_key('Group B')),
]
for group in groups:
group.put()
# And a bunch of secrets (local and global).
local_secrets = [
model.AuthSecret.bootstrap('local%d' % i, 'local') for i in (0, 1, 2)
]
global_secrets = [
model.AuthSecret.bootstrap('global%d' % i, 'global') for i in (0, 1, 2)
]
# And IP whitelist.
ip_whitelist_assignments = model.AuthIPWhitelistAssignments(
key=model.ip_whitelist_assignments_key(),
assignments=[
model.AuthIPWhitelistAssignments.Assignment(
identity=model.Anonymous,
ip_whitelist='some ip whitelist',
),
])
ip_whitelist_assignments.put()
some_ip_whitelist = model.AuthIPWhitelist(
key=model.ip_whitelist_key('some ip whitelist'),
subnets=['127.0.0.1/32'])
bots_ip_whitelist = model.AuthIPWhitelist(
key=model.ip_whitelist_key('bots'),
subnets=['127.0.0.1/32'])
some_ip_whitelist.put()
bots_ip_whitelist.put()
# This all stuff should be fetched into AuthDB.
auth_db = api.fetch_auth_db()
self.assertEqual(global_config, auth_db.global_config)
self.assertEqual(
set(g.key.id() for g in groups),
set(auth_db.groups))
self.assertEqual(
set(s.key.id() for s in local_secrets),
set(auth_db.secrets['local']))
self.assertEqual(
set(s.key.id() for s in global_secrets),
set(auth_db.secrets['global']))
self.assertEqual(
ip_whitelist_assignments,
auth_db.ip_whitelist_assignments)
self.assertEqual(
{'bots': bots_ip_whitelist, 'some ip whitelist': some_ip_whitelist},
auth_db.ip_whitelists)
def test_fetch_auth_db(self):
# Client IDs callback. Disable config.ensure_configured() since it overrides
# _additional_client_ids_cb after we mock it.
self.mock(config, 'ensure_configured', lambda: None)
self.mock(api, '_additional_client_ids_cb',
lambda: ['', 'cb_client_id'])
self.mock(api, 'get_web_client_id', lambda: 'web_client_id')
# Create AuthGlobalConfig.
global_config = model.AuthGlobalConfig(key=model.root_key())
global_config.oauth_client_id = '1'
global_config.oauth_client_secret = 'secret'
global_config.oauth_additional_client_ids = ['2', '3']
global_config.put()
# Create a bunch of (empty) groups.
groups = [
model.AuthGroup(key=model.group_key('Group A')),
model.AuthGroup(key=model.group_key('Group B')),
]
for group in groups:
group.put()
# And a bunch of secrets.
secrets = [
model.AuthSecret.bootstrap('local%d' % i) for i in (0, 1, 2)
]
# And IP whitelist.
ip_whitelist_assignments = model.AuthIPWhitelistAssignments(
key=model.ip_whitelist_assignments_key(),
assignments=[
model.AuthIPWhitelistAssignments.Assignment(
identity=model.Anonymous,
ip_whitelist='some ip whitelist',
),
])
ip_whitelist_assignments.put()
some_ip_whitelist = model.AuthIPWhitelist(
key=model.ip_whitelist_key('some ip whitelist'),
subnets=['127.0.0.1/32'])
bots_ip_whitelist = model.AuthIPWhitelist(
key=model.ip_whitelist_key('bots'), subnets=['127.0.0.1/32'])
some_ip_whitelist.put()
bots_ip_whitelist.put()
# This all stuff should be fetched into AuthDB.
auth_db = api.fetch_auth_db()
self.assertEqual(global_config, auth_db.global_config)
self.assertEqual(set(g.key.id() for g in groups), set(auth_db.groups))
self.assertEqual(set(s.key.id() for s in secrets),
set(auth_db.secrets))
self.assertEqual(ip_whitelist_assignments,
auth_db.ip_whitelist_assignments)
self.assertEqual(
{
'bots': bots_ip_whitelist,
'some ip whitelist': some_ip_whitelist
}, auth_db.ip_whitelists)
self.assertTrue(auth_db.is_allowed_oauth_client_id('1'))
self.assertTrue(auth_db.is_allowed_oauth_client_id('cb_client_id'))
self.assertTrue(auth_db.is_allowed_oauth_client_id('web_client_id'))
self.assertFalse(auth_db.is_allowed_oauth_client_id(''))
