def test_45_verify(self): handlers = [ 'md5_crypt', 'des_crypt', 'bsdi_crypt'] cc = CryptContext(handlers, bsdi_crypt__default_rounds=5) h = hash.md5_crypt.hash('test') self.assertTrue(cc.verify('test', h)) self.assertTrue(not cc.verify('notest', h)) self.assertTrue(cc.verify('test', h, scheme='md5_crypt')) self.assertTrue(not cc.verify('notest', h, scheme='md5_crypt')) self.assertRaises(ValueError, cc.verify, 'test', h, scheme='bsdi_crypt') self.assertRaises(ValueError, cc.verify, 'stub', '$6$232323123$1287319827') cc = CryptContext(['des_crypt']) h = refhash = cc.hash('stub') for secret, kwds in self.nonstring_vectors: self.assertRaises(TypeError, cc.verify, secret, h, **kwds) self.assertFalse(cc.verify(secret, None)) cc = CryptContext(['des_crypt']) for h, kwds in self.nonstring_vectors: if h is None: continue self.assertRaises(TypeError, cc.verify, 'secret', h, **kwds) self.assertRaises(KeyError, CryptContext().verify, 'secret', 'hash') self.assertRaises(KeyError, cc.verify, 'secret', refhash, scheme='fake') self.assertRaises(TypeError, cc.verify, 'secret', refhash, scheme=1) self.assertRaises(TypeError, cc.verify, 'secret', refhash, category=1) return
def test_43_hash(self): cc = CryptContext(**self.sample_4_dict) hash = cc.hash('password') self.assertTrue(hash.startswith('$5$rounds=3000$')) self.assertTrue(cc.verify('password', hash)) self.assertFalse(cc.verify('passwordx', hash)) self.assertRaises(ValueError, cc.copy, sha256_crypt__default_rounds=4000) cc = CryptContext(['des_crypt']) for secret, kwds in self.nonstring_vectors: self.assertRaises(TypeError, cc.hash, secret, **kwds) self.assertRaises(KeyError, CryptContext().hash, 'secret') self.assertRaises(TypeError, cc.hash, 'secret', category=1)
def test_40_basic(self): handlers = [ hash.md5_crypt, hash.des_crypt, hash.bsdi_crypt] cc = CryptContext(handlers, bsdi_crypt__default_rounds=5) for crypt in handlers: h = cc.hash('test', scheme=crypt.name) self.assertEqual(cc.identify(h), crypt.name) self.assertEqual(cc.identify(h, resolve=True, unconfigured=True), crypt) self.assertHandlerDerivedFrom(cc.identify(h, resolve=True), crypt) self.assertTrue(cc.verify('test', h)) self.assertFalse(cc.verify('notest', h)) h = cc.hash('test') self.assertEqual(cc.identify(h), 'md5_crypt') h = cc.genhash('secret', cc.genconfig()) self.assertEqual(cc.identify(h), 'md5_crypt') h = cc.genhash('secret', cc.genconfig(), scheme='md5_crypt') self.assertEqual(cc.identify(h), 'md5_crypt') self.assertRaises(ValueError, cc.genhash, 'secret', cc.genconfig(), scheme='des_crypt')
def test_48_context_kwds(self): from otp.ai.passlib.hash import des_crypt, md5_crypt, postgres_md5 des_hash = des_crypt.hash('stub') pg_root_hash = postgres_md5.hash('stub', user='******') pg_admin_hash = postgres_md5.hash('stub', user='******') cc1 = CryptContext([des_crypt, md5_crypt]) self.assertEqual(cc1.context_kwds, set()) self.assertTrue(des_crypt.identify(cc1.hash('stub')), 'des_crypt') self.assertTrue(cc1.verify('stub', des_hash)) self.assertEqual(cc1.verify_and_update('stub', des_hash), (True, None)) with self.assertWarningList(['passing settings to.*is deprecated']): self.assertRaises(TypeError, cc1.hash, 'stub', user='******') self.assertRaises(TypeError, cc1.verify, 'stub', des_hash, user='******') self.assertRaises(TypeError, cc1.verify_and_update, 'stub', des_hash, user='******') cc2 = CryptContext([des_crypt, postgres_md5]) self.assertEqual(cc2.context_kwds, set(['user'])) self.assertTrue(des_crypt.identify(cc2.hash('stub')), 'des_crypt') self.assertTrue(cc2.verify('stub', des_hash)) self.assertEqual(cc2.verify_and_update('stub', des_hash), (True, None)) self.assertTrue(des_crypt.identify(cc2.hash('stub', user='******')), 'des_crypt') self.assertTrue(cc2.verify('stub', des_hash, user='******')) self.assertEqual(cc2.verify_and_update('stub', des_hash, user='******'), (True, None)) with self.assertWarningList(['passing settings to.*is deprecated']): self.assertRaises(TypeError, cc2.hash, 'stub', badkwd='root') self.assertRaises(TypeError, cc2.verify, 'stub', des_hash, badkwd='root') self.assertRaises(TypeError, cc2.verify_and_update, 'stub', des_hash, badkwd='root') cc3 = CryptContext([postgres_md5, des_crypt], deprecated='auto') self.assertEqual(cc3.context_kwds, set(['user'])) self.assertRaises(TypeError, cc3.hash, 'stub') self.assertRaises(TypeError, cc3.verify, 'stub', pg_root_hash) self.assertRaises(TypeError, cc3.verify_and_update, 'stub', pg_root_hash) self.assertEqual(cc3.hash('stub', user='******'), pg_root_hash) self.assertTrue(cc3.verify('stub', pg_root_hash, user='******')) self.assertEqual(cc3.verify_and_update('stub', pg_root_hash, user='******'), (True, None)) self.assertEqual(cc3.verify_and_update('stub', pg_root_hash, user='******'), (False, None)) self.assertEqual(cc3.verify_and_update('stub', des_hash, user='******'), ( True, pg_root_hash)) return