def test_auth_good_post(self):
policy = SRPAuthenticationPolicy("test",
get_password=lambda u: "testing")
request = make_request(REQUEST_METHOD="POST", PATH_INFO="/do/stuff")
params = get_challenge(policy, request, "tester")
build_response(params, request, "tester", "testing")
self.assertEquals(policy.authenticated_userid(request), "tester")
def test_auth_good_post(self):
policy = SRPAuthenticationPolicy("test",
get_password=lambda u: "testing")
request = make_request(REQUEST_METHOD="POST", PATH_INFO="/do/stuff")
params = get_challenge(policy, request, "tester")
build_response(params, request, "tester", "testing")
self.assertEquals(policy.authenticated_userid(request), "tester")
def test_auth_good(self):
policy = SRPAuthenticationPolicy("test",
get_password=lambda u: "testing")
request = make_request()
params = get_challenge(policy, request, "tester")
build_response(params, request, "tester", "testing")
self.assertEquals(policy.authenticated_userid(request), "tester")
def test_auth_good(self):
policy = SRPAuthenticationPolicy("test",
get_password=lambda u: "testing")
request = make_request()
params = get_challenge(policy, request, "tester")
build_response(params, request, "tester", "testing")
self.assertEquals(policy.authenticated_userid(request), "tester")
def test_auth_with_different_realm(self):
policy = SRPAuthenticationPolicy("test",
get_password=lambda u: "testing")
request = make_request()
params = get_challenge(policy, request, "tester")
params["realm"] = "other-realm"
build_response(params, request, "tester", "testing")
self.assertEquals(policy.authenticated_userid(request), None)
def test_auth_with_different_realm(self):
policy = SRPAuthenticationPolicy("test",
get_password=lambda u: "testing")
request = make_request()
params = get_challenge(policy, request, "tester")
params["realm"] = "other-realm"
build_response(params, request, "tester", "testing")
self.assertEquals(policy.authenticated_userid(request), None)
def test_auth_good_contentmd5(self):
policy = SRPAuthenticationPolicy("test",
get_password=lambda u: "testing")
request = make_request(REQUEST_METHOD="GET", PATH_INFO="/authint",
HTTP_CONTENT_MD5="1B2M2Y8AsgTpgAmY7PhCfg==")
params = get_challenge(policy, request, "tester")
params = build_response(params, request, "tester", "testing")
self.assertEquals(policy.authenticated_userid(request), "tester")
def test_auth_with_bad_hmac_response(self):
policy = SRPAuthenticationPolicy("test",
get_password=lambda u: "testing")
request = make_request()
params = get_challenge(policy, request, "tester")
params = build_response(params, request, "tester", "testing")
params["response"] = "WRONG"
set_authz_header(request, params)
self.assertEquals(policy.authenticated_userid(request), None)
def test_auth_good_contentmd5(self):
policy = SRPAuthenticationPolicy("test",
get_password=lambda u: "testing")
request = make_request(REQUEST_METHOD="GET",
PATH_INFO="/authint",
HTTP_CONTENT_MD5="1B2M2Y8AsgTpgAmY7PhCfg==")
params = get_challenge(policy, request, "tester")
params = build_response(params, request, "tester", "testing")
self.assertEquals(policy.authenticated_userid(request), "tester")
def test_auth_with_bad_hmac_response(self):
policy = SRPAuthenticationPolicy("test",
get_password=lambda u: "testing")
request = make_request()
params = get_challenge(policy, request, "tester")
params = build_response(params, request, "tester", "testing")
params["response"] = "WRONG"
set_authz_header(request, params)
self.assertEquals(policy.authenticated_userid(request), None)
def test_auth_good_get_with_vars(self):
def get_verifier(username):
params = {
"username": username,
"algorithm": "SRP-1024-SHA1",
"salt": "SALTIPUS REX",
}
verifier = calculate_verifier(params, "testing")
return (params["algorithm"], params["salt"], verifier)
policy = SRPAuthenticationPolicy("test", get_verifier=get_verifier)
request = make_request(REQUEST_METHOD="GET", PATH_INFO="/hi?who=me")
params = get_challenge(policy, request, "tester")
build_response(params, request, "tester", "testing")
self.assertEquals(policy.authenticated_userid(request), "tester")
def test_auth_good_get_with_vars(self):
def get_verifier(username):
params = {
"username": username,
"algorithm": "SRP-1024-SHA1",
"salt": "SALTIPUS REX",
}
verifier = calculate_verifier(params, "testing")
return (params["algorithm"], params["salt"], verifier)
policy = SRPAuthenticationPolicy("test", get_verifier=get_verifier)
request = make_request(REQUEST_METHOD="GET", PATH_INFO="/hi?who=me")
params = get_challenge(policy, request, "tester")
build_response(params, request, "tester", "testing")
self.assertEquals(policy.authenticated_userid(request), "tester")
def test_auth_with_no_password_callbacks(self):
policy = SRPAuthenticationPolicy("test")
request = make_request()
params = get_challenge(policy, request, "tester")
build_response(params, request, "tester", "testing")
self.assertEquals(policy.authenticated_userid(request), None)
def test_auth_with_no_identity(self):
policy = SRPAuthenticationPolicy("test",
get_password=lambda u: "testing")
request = make_request()
self.assertEquals(policy.authenticated_userid(request), None)
def test_auth_with_no_password_callbacks(self):
policy = SRPAuthenticationPolicy("test")
request = make_request()
params = get_challenge(policy, request, "tester")
build_response(params, request, "tester", "testing")
self.assertEquals(policy.authenticated_userid(request), None)
def test_auth_with_no_identity(self):
policy = SRPAuthenticationPolicy("test",
get_password=lambda u: "testing")
request = make_request()
self.assertEquals(policy.authenticated_userid(request), None)
