# Pretend that all requests are HTTPS for purposes of SAML validation. This is # useful if your app is behind a weird load balancer and flask isn't respecting # X-Forwarded-Proto. For security, this flag will only be respected in debug # mode. SAML_FAKE_HTTPS = bool_env('SAML_FAKE_HTTPS', False) # Path to SP X.509 certificate file in PEM format SAML_SP_CERT_FILE = str_env('SAML_SP_CERT_FILE') # Raw X.509 certificate in PEM format SAML_SP_CERT = str_env('SAML_SP_CERT') # Path to SP private key file in PEM format SAML_SP_KEY_FILE = str_env('SAML_SP_KEY_FILE') # Password for the SAML_SP_KEY_FILE # This setting can be loaded from the SECRETS_BOOTSTRAP. SAML_SP_KEY_FILE_PASSWORD = encrypted_settings.register( 'SAML_SP_KEY_FILE_PASSWORD', str_env('SAML_SP_KEY_FILE_PASSWORD', None)) # Raw SP private key in PEM format # This setting can be loaded from the SECRETS_BOOTSTRAP. SAML_SP_KEY = encrypted_settings.register('SAML_SP_KEY', str_env('SAML_SP_KEY')) # SAML IdP Entity ID (typically a URL) SAML_IDP_ENTITY_ID = str_env('SAML_IDP_ENTITY_ID') # SAML IdP Single Sign On URL (HTTP-REDIRECT binding only) SAML_IDP_SIGNON_URL = str_env('SAML_IDP_SIGNON_URL') # SAML IdP Single Logout URL, optional, only if IDP supports it # (HTTP-REDIRECT binding only) SAML_IDP_LOGOUT_URL = str_env('SAML_IDP_LOGOUT_URL') # SAML IdP X.509 certificate in PEM format SAML_IDP_CERT = str_env('SAML_IDP_CERT')
def test_register(self): enc_set = EncryptedSettings(None) enc_set.register('Foo', 'Bar') self.assertEqual(enc_set.secret_names, ['Foo'])
def test_get_registered_default(self): enc_set = EncryptedSettings(None) enc_set.register('Foo', 'Bar') enc_set.register('Bar', 'Baz') enc_set.decrypted_secrets = {'Foo': 'DecryptedFoo'} self.assertEqual(enc_set.get_secret('Bar'), 'Baz')
def test_get_registered(): enc_set = EncryptedSettings(None) enc_set.register('Foo', 'Bar') enc_set.decrypted_secrets = {'Foo': 'DecryptedBar'} assert enc_set.get_secret('Foo') == 'DecryptedBar'
def test_register(): enc_set = EncryptedSettings(None) enc_set.register('Foo', 'Bar') assert enc_set.secret_names == ['Foo']
def test_get_registered_default(): enc_set = EncryptedSettings(None, None) enc_set.register('Foo', 'Bar') enc_set.register('Bar', 'Baz') enc_set.decrypted_secrets = {'Foo': 'DecryptedFoo'} assert enc_set.get_secret('Bar') == 'Baz'