def test_reissue_set_in_config():
"""
Setting who.reissue in config sets correct values in
CkanAuthTktCookiePlugin instance.
"""
plugin = make_plugin(secret="sosecret")
assert plugin.timeout == 9000
assert plugin.reissue_time == 200
def test_reissue_set_in_config(self):
'''
Setting who.reissue in config sets correct values in
CkanAuthTktCookiePlugin instance.
'''
plugin = make_plugin(secret='sosecret')
nose_tools.assert_equal(plugin.timeout, 9000)
nose_tools.assert_equal(plugin.reissue_time, 200)
def test_timeout_not_set_in_config():
"""
Creating a CkanAuthTktCookiePlugin instance without setting timeout in
config sets correct values in CkanAuthTktCookiePlugin instance.
"""
plugin = make_plugin(secret="sosecret")
assert plugin.timeout is None
assert plugin.reissue_time is None
def test_timeout_not_set_in_config(self):
'''
Creating a CkanAuthTktCookiePlugin instance without setting timeout in
config sets correct values in CkanAuthTktCookiePlugin instance.
'''
plugin = make_plugin(secret='sosecret')
nose_tools.assert_equal(plugin.timeout, None)
nose_tools.assert_equal(plugin.reissue_time, None)
def test_httponly_expected_cookies_without_config_httponly():
"""
The returned cookies are in the format we expect, with HttpOnly flag.
"""
plugin = make_plugin(secret="sosecret")
cookies = plugin._get_cookies(environ={"SERVER_NAME": "0.0.0.0"},
value="HELLO")
expected_cookies = [
("Set-Cookie", 'auth_tkt="HELLO"; Path=/; HttpOnly'),
("Set-Cookie", 'auth_tkt="HELLO"; Path=/; Domain=0.0.0.0; HttpOnly'),
("Set-Cookie", 'auth_tkt="HELLO"; Path=/; Domain=.0.0.0.0; HttpOnly'),
]
assert cookies == expected_cookies
def test_secure_expected_cookies_without_config_secure(self):
'''
The returned cookies are in the format we expect, without secure flag.
'''
plugin = make_plugin(secret='sosecret')
cookies = plugin._get_cookies(environ={'SERVER_NAME': '0.0.0.0'},
value='HELLO')
expected_cookies = [
('Set-Cookie', 'auth_tkt="HELLO"; Path=/; HttpOnly'),
('Set-Cookie', 'auth_tkt="HELLO"; Path=/; Domain=0.0.0.0; HttpOnly'),
('Set-Cookie', 'auth_tkt="HELLO"; Path=/; Domain=.0.0.0.0; HttpOnly')
]
assert cookies == expected_cookies
def test_samesite_expected_cookies_with_config_samesite_strict():
"""
The returned cookies are in the format we expect, with SameSite flag set to strict.
"""
plugin = make_plugin(secret="sosecret")
cookies = plugin._get_cookies(
environ={"SERVER_NAME": "0.0.0.0"}, value="HELLO"
)
expected_cookies = [
("Set-Cookie", 'auth_tkt="HELLO"; Path=/; HttpOnly; SameSite=Strict'),
("Set-Cookie", 'auth_tkt="HELLO"; Path=/; Domain=0.0.0.0; HttpOnly; SameSite=Strict'),
("Set-Cookie", 'auth_tkt="HELLO"; Path=/; Domain=.0.0.0.0; HttpOnly; SameSite=Strict'),
]
assert _sorted_cookie_values(cookies) == _sorted_cookie_values(expected_cookies)
def test_secure_expected_cookies_with_config_secure_true():
"""
The returned cookies are in the format we expect, with secure flag.
"""
plugin = make_plugin(secret="sosecret")
cookies = plugin._get_cookies(
environ={"SERVER_NAME": "0.0.0.0"}, value="HELLO"
)
expected_cookies = [
("Set-Cookie", 'auth_tkt="HELLO"; Path=/; Secure; HttpOnly; SameSite=Lax'),
(
"Set-Cookie",
'auth_tkt="HELLO"; Path=/; Domain=0.0.0.0; Secure; HttpOnly; SameSite=Lax',
),
(
"Set-Cookie",
'auth_tkt="HELLO"; Path=/; Domain=.0.0.0.0; Secure; HttpOnly; SameSite=Lax',
),
]
assert _sorted_cookie_values(cookies) == _sorted_cookie_values(expected_cookies)
def test_config_samesite_none_without_secure_raises_exception():
"""
If setting the SameSite flag to none without Secure being true, an exception is raised.
"""
with pytest.raises(ValueError):
make_plugin(secret="sosecret")
