def test_settings_parser_raises_error(test_directory):
import os
import pytest
from json import JSONDecodeError
from framework.core.settings import get_app_settings
settings_dir = os.path.join(test_directory, 'mocks/invalid_settings/')
print(settings_dir)
with pytest.raises(JSONDecodeError):
get_app_settings(env_folder=settings_dir, refresh=True)
def get_service_access_token(service_name,
client_id=None,
client_secret=None,
refresh=False):
from framework.core.settings import get_app_settings
from framework.core.requests import safe_json_request
app_settings = get_app_settings()
if client_id is None or client_secret is None:
client_id = app_settings['client_id']
client_secret = app_settings['client_secret']
token = check_token_cache(service_name=service_name,
client_id=client_id,
client_secret=client_secret)
if token is None or refresh:
body = dict(client_id=client_id,
client_secret=client_secret,
audience=get_audience(service_name=service_name),
grant_type="client_credentials")
status_code, js = safe_json_request(url=app_settings['auth_url'],
method='POST',
json=body)
if status_code < 300:
token = cache_token(token_response=js,
service_name=service_name,
client_id=client_id,
client_secret=client_secret)
return token
def get_audience(service_name=None) -> str:
from framework.core.settings import get_app_settings
app_settings = get_app_settings()
if service_name is None:
service_name = app_settings.get('service_name')
audience = app_settings['audience_format'].format(service_name)
return audience
def test_override_test_settings(test_directory):
import os
from framework.core.settings import get_app_settings
settings_dir = os.path.join(test_directory, 'mocks/test_settings/')
print(settings_dir)
app_settings = get_app_settings(env_folder=settings_dir, refresh=True)
assert app_settings['environment'] == 'test'
assert app_settings['service_name'] == 'example'
def test_settings_loads_sub_objects(test_directory):
import os
from framework.core.settings import get_app_settings
settings_dir = os.path.join(test_directory, 'mocks/stringified_settings/')
print(settings_dir)
app_settings = get_app_settings(env_folder=settings_dir, refresh=True)
assert isinstance(app_settings['sub_object'], dict)
assert app_settings['sub_object'] == dict(sub_a=1)
assert isinstance(app_settings['sub_array'], list)
assert app_settings['sub_array'] == ['sub_a', 1]
def get_auth_keys():
from framework.core.requests import safe_json_request
from framework.core.settings import get_app_settings
app_settings = get_app_settings()
global __auth_keys__
if __auth_keys__ is None:
status_code, js = safe_json_request(method='GET',
url=app_settings['auth_keys_url'])
if js:
__auth_keys__ = js['keys']
return __auth_keys__
def get_user_scopes(user_token, service_name=None):
from framework.core.requests import safe_json_request
from framework.core.settings import get_app_settings
app_settings = get_app_settings()
scopes = []
audience = get_audience(service_name=service_name)
status_code, js = safe_json_request(
method='POST',
url=app_settings['user_scopes_api'],
headers=generate_oauth_headers(access_token=user_token),
json=dict(audience=audience, scopes=[]))
if status_code == 200:
scopes = js['response'].get('available_scopes', [])
return " ".join(scopes)
def handle_token_request(user, body):
from connexion import request
from framework.core.settings import get_app_settings
from framework.core.requests import safe_json_request
app_settings = get_app_settings()
js = dict(client_id=user,
client_secret=request.authorization.password,
audience=get_audience(),
**body)
status_code, js = safe_json_request(url=app_settings['auth_url'],
method='POST',
json=js)
return js, status_code
def verify_token(token):
from jose import jwt
from framework.auth.jwt import decode_token
from werkzeug.exceptions import Unauthorized
from framework.core.settings import get_app_settings
import six
app_settings = get_app_settings()
keys = get_auth_keys()
if not keys:
raise Unauthorized
try:
user_token, decoded_token = decode_token(
token=token,
auth_keys=keys,
audiences=app_settings['audiences'],
issuers=app_settings['issuers'])
except jwt.JWTError as e:
six.raise_from(Unauthorized, e)
else:
if user_token and app_settings.get('user_scopes_api'):
decoded_token['scope'] = get_user_scopes(user_token=token)
return decoded_token
def app_settings(test_directory):
from framework.core.settings import get_app_settings
import os
return get_app_settings(
env_folder=os.path.join(test_directory, 'mocks/settings'))