class ShibbolethRemoteUserMiddlewareTest(BaseTestCase):
def setUp(self):
self.remove_user('*****@*****.**')
self.middleware = ShibbolethRemoteUserMiddleware()
self.factory = RequestFactory()
# Create an instance of a GET request.
self.request = self.factory.get('/foo/')
self.request.user = self.user
self.request.user.is_authenticated = lambda: False
self.request.cloud_mode = False
self.request.session = self.client.session
self.request.META = {}
self.request.META['Shibboleth-eppn'] = '*****@*****.**'
self.request.META['REMOTE_USER'] = '******'
self.request.META['givenname'] = 'test_gname'
self.request.META['surname'] = 'test_sname'
self.request.META['Shibboleth-displayName'] = 'Sample Developer'
self.request.META[
'Shibboleth-affiliation'] = '[email protected];[email protected];[email protected];[email protected]'
# default settings
assert getattr(settings, 'SHIB_ACTIVATE_AFTER_CREATION', True) is True
@patch(
'shibboleth.middleware.SHIB_ATTRIBUTE_MAP', {
"Shibboleth-eppn": (True, "username"),
"givenname": (False, "givenname"),
"surname": (False, "surname"),
"emailaddress": (False, "contact_email"),
"organization": (False, "institution"),
"Shibboleth-displayName": (False, "display_name"),
})
def test_can_process(self):
assert len(Profile.objects.all()) == 0
self.middleware.process_request(self.request)
assert self.request.user.username == '*****@*****.**'
assert len(Profile.objects.all()) == 1
assert self.request.shib_login is True
assert Profile.objects.all()[0].user == '*****@*****.**'
assert Profile.objects.all()[0].nickname == 'Sample Developer'
@override_settings(
SHIBBOLETH_AFFILIATION_ROLE_MAP={
'*****@*****.**': 'staff',
'*****@*****.**': 'staff',
'*****@*****.**': 'student',
})
@patch(
'shibboleth.middleware.SHIB_ATTRIBUTE_MAP', {
"Shibboleth-eppn": (True, "username"),
"givenname": (False, "givenname"),
"surname": (False, "surname"),
"emailaddress": (False, "contact_email"),
"organization": (False, "institution"),
"Shibboleth-affiliation": (False, "affiliation"),
"Shibboleth-displayName": (False, "display_name"),
})
def test_can_process_user_role(self):
assert len(Profile.objects.all()) == 0
self.middleware.process_request(self.request)
assert self.request.user.username == '*****@*****.**'
assert len(Profile.objects.all()) == 1
assert self.request.shib_login is True
assert Profile.objects.all()[0].user == '*****@*****.**'
assert Profile.objects.all()[0].nickname == 'Sample Developer'
assert User.objects.get(self.request.user.username).role == 'staff'
@pytest.mark.skipif(
TRAVIS,
reason=
"TODO: this test can only be run seperately due to the url module init in django, we may need to reload url conf: https://gist.github.com/anentropic/9ac47f6518c88fa8d2b0"
)
def test_process_inactive_user(self):
"""Inactive user is created, and no profile is created.
"""
assert len(Profile.objects.all()) == 0
with self.settings(SHIB_ACTIVATE_AFTER_CREATION=False):
# reload our shibboleth.backends module, so it picks up the settings change
reload(backends)
resp = self.middleware.process_request(self.request)
assert resp.url == '/shib-complete/'
assert len(Profile.objects.all()) == 0
# now reload again, so it reverts to original settings
reload(backends)
def test_make_profile_for_display_name(self):
assert len(Profile.objects.all()) == 0
self.middleware.make_profile(
self.user, {
'display_name': 'display name',
'givenname': 'g',
'surname': 's',
'institution': 'i',
'contact_email': '*****@*****.**'
})
assert len(Profile.objects.all()) == 1
assert Profile.objects.all()[0].nickname == 'display name'
def test_make_profile_for_givenname_surname(self):
assert len(Profile.objects.all()) == 0
self.middleware.make_profile(
self.user, {
'givenname': 'g',
'surname': 's',
'institution': 'i',
'contact_email': '*****@*****.**'
})
assert len(Profile.objects.all()) == 1
assert Profile.objects.all()[0].nickname == 'g s'
def test_make_profile_for_name_missing(self):
assert len(Profile.objects.all()) == 0
self.middleware.make_profile(self.user, {
'institution': 'i',
'contact_email': '*****@*****.**'
})
assert len(Profile.objects.all()) == 1
assert Profile.objects.all()[0].nickname == ''
class ShibbolethRemoteUserMiddlewareTest(BaseTestCase):
def setUp(self):
self.remove_user('*****@*****.**')
self.middleware = ShibbolethRemoteUserMiddleware()
self.factory = RequestFactory()
# Create an instance of a GET request.
self.request = self.factory.get('/foo/')
self.request.user = self.user
self.request.user.is_authenticated = lambda: False
self.request.cloud_mode = False
self.request.session = self.client.session
self.request.META = {}
self.request.META['Shibboleth-eppn'] = '*****@*****.**'
self.request.META['REMOTE_USER'] = '******'
self.request.META['givenname'] = 'test_gname'
self.request.META['surname'] = 'test_sname'
def test_can_process(self):
assert len(Profile.objects.all()) == 0
self.middleware.process_request(self.request)
assert len(Profile.objects.all()) == 1
assert self.request.shib_login is True
def test_process_inactive_user(self):
"""Inactive user is created, and no profile is created.
"""
assert len(Profile.objects.all()) == 0
with self.settings(SHIB_ACTIVATE_AFTER_CREATION=False):
# reload our shibboleth.backends module, so it picks up the settings change
reload(backends)
resp = self.middleware.process_request(self.request)
assert resp.url == 'shib-complete'
assert len(Profile.objects.all()) == 0
# now reload again, so it reverts to original settings
reload(backends)
def test_make_profile_for_display_name(self):
assert len(Profile.objects.all()) == 0
self.middleware.make_profile(
self.user, {
'display_name': 'display name',
'givenname': 'g',
'surname': 's',
'institution': 'i',
'contact_email': '*****@*****.**'
})
assert len(Profile.objects.all()) == 1
assert Profile.objects.all()[0].nickname == 'display name'
def test_make_profile_for_givenname_surname(self):
assert len(Profile.objects.all()) == 0
self.middleware.make_profile(
self.user, {
'givenname': 'g',
'surname': 's',
'institution': 'i',
'contact_email': '*****@*****.**'
})
assert len(Profile.objects.all()) == 1
assert Profile.objects.all()[0].nickname == 'g s'
def test_make_profile_for_name_missing(self):
assert len(Profile.objects.all()) == 0
self.middleware.make_profile(self.user, {
'institution': 'i',
'contact_email': '*****@*****.**'
})
assert len(Profile.objects.all()) == 1
assert Profile.objects.all()[0].nickname == ''
class ShibbolethRemoteUserMiddlewareTest(BaseTestCase):
def setUp(self):
self.middleware = ShibbolethRemoteUserMiddleware()
self.factory = RequestFactory()
# Create an instance of a GET request.
self.request = self.factory.get('/foo/')
# self.request = Mock()
self.request.user = self.user
self.request.user.is_authenticated = lambda: False
self.request.cloud_mode = False
self.request.session = {}
self.request.META = {}
self.request.META['REMOTE_USER'] = self.user.username
self.request.META['eppn'] = 'test eppn'
self.request.META['givenname'] = 'test_gname'
self.request.META['surname'] = 'test_sname'
# def test_can_process(self):
# assert len(Profile.objects.all()) == 0
# self.middleware.process_request(self.request)
# assert len(Profile.objects.all()) == 1
# assert self.request.shib_login is True
def test_make_profile_for_display_name(self):
assert len(Profile.objects.all()) == 0
self.middleware.make_profile(self.user, {
'display_name': 'display name',
'givenname': 'g',
'surname': 's',
'institution': 'i',
'contact_email': '*****@*****.**'
})
assert len(Profile.objects.all()) == 1
assert Profile.objects.all()[0].nickname == 'display name'
def test_make_profile_for_givenname_surname(self):
assert len(Profile.objects.all()) == 0
self.middleware.make_profile(self.user, {
'givenname': 'g',
'surname': 's',
'institution': 'i',
'contact_email': '*****@*****.**'
})
assert len(Profile.objects.all()) == 1
assert Profile.objects.all()[0].nickname == 'g s'
def test_make_profile_for_name_missing(self):
assert len(Profile.objects.all()) == 0
self.middleware.make_profile(self.user, {
'institution': 'i',
'contact_email': '*****@*****.**'
})
assert len(Profile.objects.all()) == 1
assert Profile.objects.all()[0].nickname == ''
class ShibbolethRemoteUserMiddlewareTest(BaseTestCase):
def setUp(self):
self.remove_user('*****@*****.**')
self.middleware = ShibbolethRemoteUserMiddleware()
self.factory = RequestFactory()
# Create an instance of a GET request.
self.request = self.factory.get('/foo/')
self.request.user = self.user
self.request.user.is_authenticated = lambda: False
self.request.cloud_mode = False
self.request.session = self.client.session
self.request.META = {}
self.request.META['Shibboleth-eppn'] = '*****@*****.**'
self.request.META['REMOTE_USER'] = '******'
self.request.META['givenname'] = 'test_gname'
self.request.META['surname'] = 'test_sname'
# default settings
assert getattr(settings, 'SHIB_ACTIVATE_AFTER_CREATION', True) is True
def test_can_process(self):
assert len(Profile.objects.all()) == 0
self.middleware.process_request(self.request)
assert len(Profile.objects.all()) == 1
assert self.request.shib_login is True
@pytest.mark.skipif(TRAVIS, reason="TODO: this test can only be run seperately due to the url module init in django, we may need to reload url conf: https://gist.github.com/anentropic/9ac47f6518c88fa8d2b0")
def test_process_inactive_user(self):
"""Inactive user is created, and no profile is created.
"""
assert len(Profile.objects.all()) == 0
with self.settings(SHIB_ACTIVATE_AFTER_CREATION=False):
# reload our shibboleth.backends module, so it picks up the settings change
reload(backends)
resp = self.middleware.process_request(self.request)
assert resp.url == '/shib-complete/'
assert len(Profile.objects.all()) == 0
# now reload again, so it reverts to original settings
reload(backends)
def test_make_profile_for_display_name(self):
assert len(Profile.objects.all()) == 0
self.middleware.make_profile(self.user, {
'display_name': 'display name',
'givenname': 'g',
'surname': 's',
'institution': 'i',
'contact_email': '*****@*****.**'
})
assert len(Profile.objects.all()) == 1
assert Profile.objects.all()[0].nickname == 'display name'
def test_make_profile_for_givenname_surname(self):
assert len(Profile.objects.all()) == 0
self.middleware.make_profile(self.user, {
'givenname': 'g',
'surname': 's',
'institution': 'i',
'contact_email': '*****@*****.**'
})
assert len(Profile.objects.all()) == 1
assert Profile.objects.all()[0].nickname == 'g s'
def test_make_profile_for_name_missing(self):
assert len(Profile.objects.all()) == 0
self.middleware.make_profile(self.user, {
'institution': 'i',
'contact_email': '*****@*****.**'
})
assert len(Profile.objects.all()) == 1
assert Profile.objects.all()[0].nickname == ''
