def test_from_readme(self):
if os.path.exists('./test_key_container.p12'):
uri = "https://sandbox.api.mastercard.com/fraud/merchant/v1/termination-inquiry?Format=XML&PageOffset=0"
method = "POST"
signing_key = authenticationutils.load_signing_key("./test_key_container.p12", "Password1")
consumer_key = OAuthSigner("uLXKmWNmIkzIGKfA2injnNQqpZaxaBSKxa3ixEVu2f283c95!33b9b2bd960147e387fa6f3f238f07170000000000000000", signing_key)
header = OAuth().get_authorization_header(uri, method, "payload", consumer_key, signing_key)
else:
print("Please add a ./test_key_container.p12 file to enable key tests")
def test_from_readme(self):
uri = "https://sandbox.api.mastercard.com/fraud/merchant/v1/termination-inquiry?Format=XML&PageOffset=0"
method = "POST"
signing_key = authenticationutils.load_signing_key(
"./fake-key.p12", "fakepassword")
consumer_key = OAuthSigner(
"uLXKmWNmIkzIGKfA2injnNQqpZaxaBSKxa3ixEVu2f283c95!33b9b2bd960147e387fa6f3f238f07170000000000000000",
signing_key)
header = OAuth().get_authorization_header(uri, method, "payload",
consumer_key, signing_key)
def test_load_signing_key_should_return_key(self):
key_container_path = "./fake-key.p12";
key_password = "******";
signing_key = authenticationutils.load_signing_key(key_container_path, key_password)
self.assertTrue(signing_key.check)
bits = signing_key.bits()
self.assertEqual(bits, 2048)
private_key_bytes = crypto.dump_privatekey(crypto.FILETYPE_PEM, signing_key)
self.assertTrue(private_key_bytes)
def test_get_authorization_header(self):
if os.path.exists('./test_key_container.p12'):
signing_key = authenticationutils.load_signing_key(
'./test_key_container.p12', "Password1")
consumer_key = OAuthSigner("YOUR CONSUMER KEY", signing_key)
uri = "https://sandbox.api.mastercard.com/fraud/merchant/v1/termination-inquiry?Format=XML&PageOffset=0"
method = "POST"
header = OAuth().get_authorization_header(uri, method, "payload",
consumer_key,
signing_key)
else:
print(
"Please add a ./test_key_container.p12 file to enable key tests"
)
def test_sign_request(self):
signing_key = authenticationutils.load_signing_key(
'./test_key_container.p12', "Password1")
consumer_key = 'dummy'
uri = "https://sandbox.api.mastercard.com/fraud/merchant/v1/termination-inquiry?Format=XML&PageOffset=0"
request = Request()
request.method = "POST"
request.data = ""
signer = OAuthSigner(consumer_key, signing_key)
request = signer.sign_request(uri, request)
auth_header = request.headers['Authorization']
self.assertTrue("OAuth" in auth_header)
self.assertTrue("dummy" in auth_header)
def test_sign_signature_base_string(self):
if os.path.exists('./test_key_container.p12'):
signing_key = authenticationutils.load_signing_key(
"./test_key_container.p12", "Password1")
consumer_key = OAuthSigner("YOUR CONSUMER KEY", signing_key)
expectedSignatureString = "IJeNKYGfUhFtj5OAPRI92uwfjJJLCej3RCMLbp7R6OIYJhtwxnTkloHQ2bgV7fks4GT/A7rkqrgUGk0ewbwIC6nS3piJHyKVc7rvQXZuCQeeeQpFzLRiH3rsb+ZS+AULK+jzDje4Fb+BQR6XmxuuJmY6YrAKkj13Ln4K6bZJlSxOizbNvt+Htnx+hNd4VgaVBeJKcLhHfZbWQxK76nMnjY7nDcM/2R6LUIR2oLG1L9m55WP3bakAvmOr392ulv1+mWCwDAZZzQ4lakDD2BTu0ZaVsvBW+mcKFxYeTq7SyTQMM4lEwFPJ6RLc8jJJ+veJXHekLVzWg4qHRtzNBLz1mA=="
signing_string = OAuth.sign_message(self, "baseString",
signing_key)
self.maxDiff = None
self.assertEqual(expectedSignatureString, signing_string)
else:
print(
"Please add a ./test_key_container.p12 file to enable key tests"
)
def test_sign_request(self):
if os.path.exists('./test_key_container.p12'):
signing_key = authenticationutils.load_signing_key(
'./test_key_container.p12', "Password1")
consumer_key = OAuthSigner("YOUR CONSUMER KEY", signing_key)
uri = "https://sandbox.api.mastercard.com/fraud/merchant/v1/termination-inquiry?Format=XML&PageOffset=0"
request = Request()
request.method = "POST"
request.data = ""
signer = OAuthSigner(consumer_key, signing_key)
request = signer.sign_request(uri, request)
else:
print(
"Please add a ./test_key_container.p12 file to enable key tests"
)
def test_sign_message(self):
if os.path.exists('./test_key_container.p12'):
signing_key = authenticationutils.load_signing_key(
"./test_key_container.p12", "Password1")
consumer_key = OAuthSigner("YOUR CONSUMER KEY", signing_key)
baseString = 'POST&https%3A%2F%2Fsandbox.api.mastercard.com%2Ffraud%2Fmerchant%2Fv1%2Ftermination-inquiry&Format%3DXML%26PageLength%3D10%26PageOffset%3D0%26oauth_body_hash%3DWhqqH%252BTU95VgZMItpdq78BWb4cE%253D%26oauth_consumer_key%3Dxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx%26oauth_nonce%3D1111111111111111111%26oauth_signature_method%3DRSA-SHA1%26oauth_timestamp%3D1111111111%26oauth_version%3D1.0'
signature = OAuth().sign_message(baseString, signing_key)
signature = Util.uri_rfc3986_encode(signature)
self.assertEqual(
signature,
"DvyS3R795sUb%2FcvBfiFYZzPDU%2BRVefW6X%2BAfyu%2B9fxjudQft%2BShXhpounzJxYCwOkkjZWXOR0ICTMn6MOuG04TTtmPMrOxj5feGwD3leMBsi%2B3XxcFLPi8BhZKqgapcAqlGfjEhq0COZ%2FF9aYDcjswLu0zgrTMSTp4cqXYMr9mbQVB4HL%2FjiHni5ejQu9f6JB9wWW%2BLXYhe8F6b4niETtzIe5o77%2B%2BkKK67v9wFIZ9pgREz7ug8K5DlxX0DuwdUKFhsenA5z%2FNNCZrJE%2BtLu0tSjuF5Gsjw5GRrvW33MSoZ0AYfeleh5V3nLGgHrhVjl5%2BiS40pnG2po%2F5hIAUT5ag%3D%3D"
)
else:
print(
"Please add a ./test_key_container.p12 file to enable key tests"
)
def test_load_signing_key_should_return_key(self):
if os.path.exists('./test_key_container.p12'):
key_container_path = "./test_key_container.p12"
key_password = "******"
signing_key = authenticationutils.load_signing_key(
key_container_path, key_password)
self.assertTrue(signing_key.check)
bits = signing_key.bits()
self.assertEqual(bits, 2048)
private_key_bytes = crypto.dump_privatekey(crypto.FILETYPE_PEM,
signing_key)
self.assertTrue(private_key_bytes)
else:
print(
"Please add a ./test_key_container.p12 file to enable key tests"
)
class OAuthTest(unittest.TestCase):
signing_key = authenticationutils.load_signing_key(
'./test_key_container.p12', "Password1")
def test_get_authorization_header_nominal(self):
header = OAuth().get_authorization_header('https://www.example.com',
'POST', 'payload', 'dummy',
OAuthTest.signing_key)
self.assertTrue("OAuth" in header)
self.assertTrue("dummy" in header)
def test_get_authorization_header_should_compute_body_hash(self):
header = OAuth().get_authorization_header('https://www.example.com',
'POST', '{}', 'dummy',
OAuthTest.signing_key)
self.assertTrue(
'RBNvo1WzZ4oRRq0W9%2BhknpT7T8If536DEMBg9hyq%2F4o%3D' in header)
def test_get_authorization_header_should_return_empty_string_body_hash(
self):
header = OAuth().get_authorization_header('https://www.example.com',
'GET', None, 'dummy',
OAuthTest.signing_key)
self.assertTrue(
'47DEQpj8HBSa%2B%2FTImW%2B5JCeuQeRkm5NMpJWZG3hSuFU%3D' in header)
def test_get_nonce(self):
nonce = OAuth.get_nonce()
self.assertEqual(len(nonce), 16)
def test_get_timestamp(self):
timestamp = OAuth.get_timestamp()
self.assertEqual(len(str(timestamp)), 10)
def test_sign_message(self):
baseString = 'POST&https%3A%2F%2Fsandbox.api.mastercard.com%2Ffraud%2Fmerchant%2Fv1%2Ftermination-inquiry&Format%3DXML%26PageLength%3D10%26PageOffset%3D0%26oauth_body_hash%3DWhqqH%252BTU95VgZMItpdq78BWb4cE%253D%26oauth_consumer_key%3Dxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx%26oauth_nonce%3D1111111111111111111%26oauth_signature_method%3DRSA-SHA1%26oauth_timestamp%3D1111111111%26oauth_version%3D1.0'
signature = OAuth().sign_message(baseString, OAuthTest.signing_key)
signature = Util.uri_rfc3986_encode(signature)
self.assertEqual(
signature,
"DvyS3R795sUb%2FcvBfiFYZzPDU%2BRVefW6X%2BAfyu%2B9fxjudQft%2BShXhpounzJxYCwOkkjZWXOR0ICTMn6MOuG04TTtmPMrOxj5feGwD3leMBsi%2B3XxcFLPi8BhZKqgapcAqlGfjEhq0COZ%2FF9aYDcjswLu0zgrTMSTp4cqXYMr9mbQVB4HL%2FjiHni5ejQu9f6JB9wWW%2BLXYhe8F6b4niETtzIe5o77%2B%2BkKK67v9wFIZ9pgREz7ug8K5DlxX0DuwdUKFhsenA5z%2FNNCZrJE%2BtLu0tSjuF5Gsjw5GRrvW33MSoZ0AYfeleh5V3nLGgHrhVjl5%2BiS40pnG2po%2F5hIAUT5ag%3D%3D"
)
def test_oauth_parameters(self):
uri = "https://sandbox.api.mastercard.com/fraud/merchant/v1/termination-inquiry?Format=XML&PageOffset=0"
method = "POST"
parameters = OAuth().get_oauth_parameters(uri, method, 'payload',
'dummy',
OAuthTest.signing_key)
consumer_key = parameters.get_oauth_consumer_key()
self.assertEqual("dummy", consumer_key)
def test_query_parser(self):
uri = "https://sandbox.api.mastercard.com/audiences/v1/getcountries?offset=0&offset=1&length=10&empty&odd="
oauth_parameters = OAuthParameters()
oauth_parameters_base = oauth_parameters.get_base_parameters_dict()
merge_parameters = oauth_parameters_base.copy()
query_params = Util.normalize_params(uri, merge_parameters)
self.assertEqual(query_params,
"empty=&length=10&odd=&offset=0&offset=1")
def test_query_parser_encoding(self):
uri = "https://sandbox.api.mastercard.com?param1=plus+value¶m2=colon:value"
oauth_parameters = OAuthParameters()
oauth_parameters_base = oauth_parameters.get_base_parameters_dict()
merge_parameters = oauth_parameters_base.copy()
query_params = Util.normalize_params(uri, merge_parameters)
self.assertEqual(query_params,
"param1=plus%20value¶m2=colon%3Avalue")
def test_nonce_length(self):
nonce = OAuth.get_nonce()
self.assertEqual(16, len(nonce))
def test_nonce_uniqueness(self):
init = OAuth.get_nonce()
l = []
for i in range(0, 100000):
l.append(init + OAuth.get_nonce())
self.assertEqual(self.list_duplicates(l), [])
def list_duplicates(self, seq):
seen = set()
seen_add = seen.add
# adds all elements it doesn't know yet to seen and all other to seen_twice
seen_twice = set(x for x in seq if x in seen or seen_add(x))
# turn the set into a list (as requested)
return list(seen_twice)
def test_params_string_rfc_example_1(self):
uri = "https://sandbox.api.mastercard.com"
oauth_parameters1 = OAuthParameters()
oauth_parameters1.set_oauth_consumer_key("9djdj82h48djs9d2")
oauth_parameters1.set_oauth_signature_method("HMAC-SHA1")
oauth_parameters1.set_oauth_timestamp("137131201")
oauth_parameters1.set_oauth_nonce("7d8f3e4a")
oauth_parameters_base1 = oauth_parameters1.get_base_parameters_dict()
merge_parameters1 = oauth_parameters_base1.copy()
query_params1 = Util.normalize_params(uri, merge_parameters1)
self.assertEqual(
"oauth_consumer_key=9djdj82h48djs9d2&oauth_nonce=7d8f3e4a&oauth_signature_method=HMAC-SHA1&oauth_timestamp=137131201",
query_params1)
def test_params_string_rfc_example_2(self):
uri = "https://sandbox.api.mastercard.com?b5=%3D%253D&a3=a&a3=2%20q&c%40=&a2=r%20b&c2="
oauth_parameters2 = OAuthParameters()
oauth_parameters_base2 = oauth_parameters2.get_base_parameters_dict()
merge_parameters2 = oauth_parameters_base2.copy()
query_params2 = Util.normalize_params(uri, merge_parameters2)
self.assertEqual("a2=r%20b&a3=2%20q&a3=a&b5=%3D%253D&c%40=&c2=",
query_params2)
def test_params_string_ascending_byte_value_ordering(self):
url = "https://localhost?b=b&A=a&A=A&B=B&a=A&a=a&0=0"
oauth_parameters = OAuthParameters()
oauth_parameters_base = oauth_parameters.get_base_parameters_dict()
merge_parameters = oauth_parameters_base.copy()
norm_params = Util.normalize_params(url, merge_parameters)
self.assertEqual("0=0&A=A&A=a&B=B&a=A&a=a&b=b", norm_params)
def test_signature_base_string(self):
uri = "https://api.mastercard.com"
base_uri = Util.normalize_url(uri)
oauth_parameters = OAuthParameters()
oauth_parameters.set_oauth_body_hash("body/hash")
oauth_parameters.set_oauth_nonce("randomnonce")
base_string = OAuth.get_base_string(
base_uri, "POST", oauth_parameters.get_base_parameters_dict())
self.assertEqual(
"POST&https%3A%2F%2Fapi.mastercard.com%2F&oauth_body_hash%3Dbody%2Fhash%26oauth_nonce%3Drandomnonce",
base_string)
def test_signature_base_string2(self):
body = "<?xml version=\"1.0\" encoding=\"Windows-1252\"?><ns2:TerminationInquiryRequest xmlns:ns2=\"http://mastercard.com/termination\"><AcquirerId>1996</AcquirerId><TransactionReferenceNumber>1</TransactionReferenceNumber><Merchant><Name>TEST</Name><DoingBusinessAsName>TEST</DoingBusinessAsName><PhoneNumber>5555555555</PhoneNumber><NationalTaxId>1234567890</NationalTaxId><Address><Line1>5555 Test Lane</Line1><City>TEST</City><CountrySubdivision>XX</CountrySubdivision><PostalCode>12345</PostalCode><Country>USA</Country></Address><Principal><FirstName>John</FirstName><LastName>Smith</LastName><NationalId>1234567890</NationalId><PhoneNumber>5555555555</PhoneNumber><Address><Line1>5555 Test Lane</Line1><City>TEST</City><CountrySubdivision>XX</CountrySubdivision><PostalCode>12345</PostalCode><Country>USA</Country></Address><DriversLicense><Number>1234567890</Number><CountrySubdivision>XX</CountrySubdivision></DriversLicense></Principal></Merchant></ns2:TerminationInquiryRequest>"
url = "https://sandbox.api.mastercard.com/fraud/merchant/v1/termination-inquiry?Format=XML&PageOffset=0&PageLength=10"
method = "POST"
oauth_parameters = OAuthParameters()
oauth_parameters.set_oauth_consumer_key(
"xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx")
oauth_parameters.set_oauth_nonce("1111111111111111111")
oauth_parameters.set_oauth_timestamp("1111111111")
oauth_parameters.set_oauth_version("1.0")
oauth_parameters.set_oauth_body_hash("body/hash")
encoded_hash = Util.base64_encode(Util.sha256_encode(body))
oauth_parameters.set_oauth_body_hash(encoded_hash)
oauth_parameters_base = oauth_parameters.get_base_parameters_dict()
merge_parameters = oauth_parameters_base.copy()
query_params = Util.normalize_params(url, merge_parameters)
base_string = OAuth.get_base_string(
url, method, oauth_parameters.get_base_parameters_dict())
expected = "POST&https%3A%2F%2Fsandbox.api.mastercard.com%2Ffraud%2Fmerchant%2Fv1%2Ftermination-inquiry&Format%3DXML%26PageLength%3D10%26PageOffset%3D0%26oauth_body_hash%3Dh2Pd7zlzEZjZVIKB4j94UZn%2FxxoR3RoCjYQ9%2FJdadGQ%3D%26oauth_consumer_key%3Dxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx%26oauth_nonce%3D1111111111111111111%26oauth_timestamp%3D1111111111%26oauth_version%3D1.0"
self.assertEqual(expected, base_string)
def test_sign_signature_base_string_invalid_key(self):
self.assertRaises(AttributeError, OAuth.sign_message, self,
"some string", None)
def test_sign_signature_base_string(self):
expectedSignatureString = "IJeNKYGfUhFtj5OAPRI92uwfjJJLCej3RCMLbp7R6OIYJhtwxnTkloHQ2bgV7fks4GT/A7rkqrgUGk0ewbwIC6nS3piJHyKVc7rvQXZuCQeeeQpFzLRiH3rsb+ZS+AULK+jzDje4Fb+BQR6XmxuuJmY6YrAKkj13Ln4K6bZJlSxOizbNvt+Htnx+hNd4VgaVBeJKcLhHfZbWQxK76nMnjY7nDcM/2R6LUIR2oLG1L9m55WP3bakAvmOr392ulv1+mWCwDAZZzQ4lakDD2BTu0ZaVsvBW+mcKFxYeTq7SyTQMM4lEwFPJ6RLc8jJJ+veJXHekLVzWg4qHRtzNBLz1mA=="
signing_string = OAuth.sign_message(self, "baseString",
OAuthTest.signing_key)
self.assertEqual(expectedSignatureString, signing_string)
def test_sign_json_body(self):
uri = "https://sandbox.api.mastercard.com/restservices/clients"
consumer_key = "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx"
method = "POST"
body = {
"clientBaseAddressData": {
"addressLine1": "Testowa 5",
"city": "Warszawa",
"postalCode": "23-456"
},
"clientContactData": {
"phoneNumberMobile": "test"
},
"clientNumber": "2019102301",
"clientPersonalData": {
"countryCode": "BEL",
"shortName": "test"
},
"embossedData": {
"embossedFirstName": "Pavel",
"embossedLastName": "TEST"
},
"clientType": "PR"
}
oauth_parameters = OAuthParameters()
oauth_parameters.set_oauth_consumer_key(consumer_key)
oauth_parameters.set_oauth_nonce("1111111111111111111")
oauth_parameters.set_oauth_timestamp('1111111111')
oauth_parameters.set_oauth_signature_method("RSA-SHA256")
oauth_parameters.set_oauth_version("1.0")
oauth_parameters.set_oauth_body_hash(
OAuth().get_encoded_body_hash(body))
base_string = OAuth.get_base_string(
uri, method, oauth_parameters.get_base_parameters_dict())
signed_body = OAuth.sign_message(self, base_string, self.signing_key)
self.assertEqual(
"F3zw3Cqjqx3bsHM9BItsqwGkZx1esgsmyUIr8G1/ydbMSvnPzTJ6OeTBhlgln4R7MybyxErUbTaiuRRMD8z6P4WQ/QIRzZefqvcDBJ1e/jgmPIvGUZmM9FsQDRZ1EaTVNIGVfxZDbJS1b7114JtxeCWeAuM/O3Si3EzFNbzQSZr17Cma6qxojv63fKWqd8NqGmq3X5ngeA1/4bo8xveBZO3iSamFjJW9H6Gf8P++paP0+ORJ4YLQ1KQR5hmP53b53fPrXk5/06CmoMGltfHJvrUE8XUCBS/Y8bJehoCw4930VVCtCQ5FBmnX0W5kY/XEoWaHWiYmOIK7QmBztSd2zQ==",
signed_body)
def test_url_normalization_rfc_examples1(self):
uri = "https://www.example.net:8080"
base_uri = Util.normalize_url(uri)
self.assertEqual("https://www.example.net:8080/", base_uri)
def test_url_normalization_rfc_examples2(self):
uri = "http://EXAMPLE.COM:80/r%20v/X?id=123"
base_uri = Util.normalize_url(uri)
self.assertEqual("http://example.com/r%20v/X", base_uri)
def test_url_normalization_redundant_ports1(self):
uri = "https://api.mastercard.com:443/test?query=param"
base_uri = Util.normalize_url(uri)
self.assertEqual("https://api.mastercard.com/test", base_uri)
def test_url_normalization_redundant_ports2(self):
uri = "http://api.mastercard.com:80/test"
base_uri = Util.normalize_url(uri)
self.assertEqual("http://api.mastercard.com/test", base_uri)
def test_url_normalization_redundant_ports3(self):
uri = "https://api.mastercard.com:17443/test?query=param"
base_uri = Util.normalize_url(uri)
self.assertEqual("https://api.mastercard.com:17443/test", base_uri)
def test_url_normalization_remove_fragment(self):
uri = "https://api.mastercard.com/test?query=param#fragment"
base_uri = Util.normalize_url(uri)
self.assertEqual("https://api.mastercard.com/test", base_uri)
def test_url_normalization_add_trailing_slash(self):
uri = "https://api.mastercard.com"
base_uri = Util.normalize_url(uri)
self.assertEqual("https://api.mastercard.com/", base_uri)
def test_url_normalization_lowercase_scheme_and_host(self):
uri = "HTTPS://API.MASTERCARD.COM/TEST"
base_uri = Util.normalize_url(uri)
self.assertEqual("https://api.mastercard.com/TEST", base_uri)
def test_body_hash1(self):
oauth_parameters = OAuthParameters()
encoded_hash = Util.base64_encode(
Util.sha256_encode(OAuth.EMPTY_STRING))
oauth_parameters.set_oauth_body_hash(encoded_hash)
self.assertEqual("47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=",
encoded_hash)
def test_body_hash2(self):
oauth_parameters = OAuthParameters()
encoded_hash = Util.base64_encode(Util.sha256_encode(None))
oauth_parameters.set_oauth_body_hash(encoded_hash)
self.assertEqual("3JN7WYkmBPWoaslpNs1/8J4l8Yrmt1joAUokx/oDnpE=",
encoded_hash)
def test_body_hash3(self):
oauth_parameters = OAuthParameters()
encoded_hash = Util.base64_encode(
Util.sha256_encode("{\"foõ\":\"bar\"}"))
oauth_parameters.set_oauth_body_hash(encoded_hash)
self.assertEqual("+Z+PWW2TJDnPvRcTgol+nKO3LT7xm8smnsg+//XMIyI=",
encoded_hash)
def test_url_encode1(self):
self.assertEqual("Format%3DXML", Util.uri_rfc3986_encode("Format=XML"))
def test_url_encode2(self):
self.assertEqual(
"WhqqH%2BTU95VgZMItpdq78BWb4cE%3D",
Util.uri_rfc3986_encode("WhqqH+TU95VgZMItpdq78BWb4cE="))
def test_url_encode3(self):
self.assertEqual(
"WhqqH%2BTU95VgZMItpdq78BWb4cE%3D%26o",
Util.uri_rfc3986_encode("WhqqH+TU95VgZMItpdq78BWb4cE=&o"))
#!/usr/bin/env python
import oauth1.authenticationutils as authenticationutils
from oauth1.oauth import OAuth
from oauth1.oauth_ext import OAuth1RSA
from oauth1.oauth_ext import HASH_SHA256
import requests
import json
# Globals
quoteAPI = 'https://sandbox.api.mastercard.com/send/v1/partners/BEL_MASEND5ged2/crossborder/quotes'
# TODO change the first value to be the path to your .p12 file, the second value is the password for the .p12 file.
signing_key = authenticationutils.load_signing_key('./MyAliasSBK-sandbox.p12',
'MyAliasSBK21')
# TODO Change the value to your consumer key
consumer_key = 'Tr0iRX-sUo74NMZXNkV5YXGDccUgt8wZwk8eo_Hfcc4c23e1!2fa9ff2b00f9468cbe63bf51287998eb0000000000000000'
# Helper functions
def get_json():
quotejson = {
"quoterequest": {
"transaction_reference": "09-PYT-WCR-HDFsWERTYLKR-883166274207676",
"sender_account_uri": "tel:+25406005",
"recipient_account_uri": "tel:+254069832",
"payment_amount": {
"amount": "105.15",
"currency": "USD"
},
class OAuthExtTest(unittest.TestCase):
signing_key = authenticationutils.load_signing_key(
'./test_key_container.p12', "Password1")
consumer_key = 'xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx'
data = 'sensistive data'
mock_prepared_request = PreparedRequest()
mock_prepared_request.prepare(headers={
'Content-type': 'application/json',
'Accept': 'application/json'
},
method="POST",
url="http://www.example.com")
payload = {
'oauth_version': '1.0',
'oauth_nonce': str(uuid4()),
'oauth_timestamp': str(int(time.time())),
'oauth_signature_method': 'RSA-SHA256',
'oauth_consumer_key':
'xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx'
}
payload_ext = {
'oauth_version': '1.0',
'oauth_nonce': 'xxxx213-1111-xx00-11xx-xxxx12xxxx12',
'oauth_timestamp': '1111111111',
'oauth_signature_method': 'RSA-SHA256',
'oauth_consumer_key':
'xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx',
'oauth_body_hash': 'SamplEOaUthBoDYhASh',
'oauth_signature': 'OauTHSinaTUrESaMPle=='
}
def test_oauth_body_hash_with_body_string(self):
oauth_object = OAuth1RSA(OAuthExtTest.consumer_key,
OAuthExtTest.signing_key)
OAuthExtTest.mock_prepared_request.body = "{'A' : 'sensistive data'}"
# Passing mock data to the actual func to get the value
oauth_body_hash_object = oauth_object.oauth_body_hash(
OAuthExtTest.mock_prepared_request, OAuthExtTest.payload)
# Using mock data to find the hash value
hashlib_val = hashlib.sha256(
(OAuthExtTest.mock_prepared_request.body).encode('utf8')).digest()
payload_hash_value = util.uri_rfc3986_encode(
util.base64_encode(hashlib_val))
self.assertEqual(oauth_body_hash_object['oauth_body_hash'],
payload_hash_value)
def test_oauth_body_hash_with_body_bytes(self):
oauth_object = OAuth1RSA(OAuthExtTest.consumer_key,
OAuthExtTest.signing_key)
OAuthExtTest.mock_prepared_request.body = b'{"A" : OAuthExtTest.data}'
# Passing mock data to the actual func to get the value
oauth_body_hash_object = oauth_object.oauth_body_hash(
OAuthExtTest.mock_prepared_request, OAuthExtTest.payload)
# Using mock data to find the hash value
hashlib_val = hashlib.sha256(
OAuthExtTest.mock_prepared_request.body).digest()
payload_hash_value = util.uri_rfc3986_encode(
util.base64_encode(hashlib_val))
self.assertEqual(oauth_body_hash_object['oauth_body_hash'],
payload_hash_value)
def test_oauth_body_hash_with_body_empty(self):
oauth_object = OAuth1RSA(OAuthExtTest.consumer_key,
OAuthExtTest.signing_key)
OAuthExtTest.mock_prepared_request.body = ''
# Passing mock data to the actual func to get the value
oauth_body_hash_object = oauth_object.oauth_body_hash(
OAuthExtTest.mock_prepared_request, OAuthExtTest.payload)
# Using mock data to find the hash value
hashlib_val = hashlib.sha256(
str(OAuthExtTest.mock_prepared_request.body).encode(
'utf8')).digest()
payload_hash_value = util.uri_rfc3986_encode(
util.base64_encode(hashlib_val))
self.assertEqual(oauth_body_hash_object['oauth_body_hash'],
payload_hash_value)
def test_oauth_body_hash_with_body_none(self):
oauth_object = OAuth1RSA(OAuthExtTest.consumer_key,
OAuthExtTest.signing_key)
OAuthExtTest.mock_prepared_request.body = None
# Passing mock data to the actual func to get the value
oauth_body_hash_object = oauth_object.oauth_body_hash(
OAuthExtTest.mock_prepared_request, OAuthExtTest.payload)
# Using mock data to find the hash value
hashlib_val = hashlib.sha256(
str(OAuthExtTest.mock_prepared_request.body).encode(
'utf8')).digest()
payload_hash_value = util.uri_rfc3986_encode(
util.base64_encode(hashlib_val))
self.assertEqual(oauth_body_hash_object['oauth_body_hash'],
payload_hash_value)
def test_oauth_body_hash_with_body_multipart(self):
oauth_object = OAuth1RSA(OAuthExtTest.consumer_key,
OAuthExtTest.signing_key)
mock_request = PreparedRequest()
mock_request.prepare(headers={'Content-type': 'multipart/form-data'},
method="GET",
url="http://www.mastercard.com")
# Passing mock data to the actual func to get the value
oauth_body_hash_object = oauth_object.oauth_body_hash(
mock_request, OAuthExtTest.payload)
# Using mock data to find the hash value
hashlib_val = hashlib.sha256(
str(OAuthExtTest.mock_prepared_request.body).encode(
'utf8')).digest()
payload_hash_value = util.uri_rfc3986_encode(
util.base64_encode(hashlib_val))
self.assertEqual(oauth_body_hash_object['oauth_body_hash'],
payload_hash_value)
def test_signature(self):
oauth_object = OAuth1RSA(OAuthExtTest.consumer_key,
OAuthExtTest.signing_key)
oauth_signature_object = oauth_object.signature(OAuthExtTest.data)
signature = util.base64_encode(
crypto.sign(OAuthExtTest.signing_key, OAuthExtTest.data,
HASH_SHA256))
self.assertEqual(signature, oauth_signature_object)
def test_get_nonce(self):
nonce = OAuth1RSA.nonce()
self.assertEqual(len(nonce), 36)
def test_get_timestamp(self):
timestamp = OAuth1RSA.timestamp()
self.assertEqual(len(str(timestamp)), 10)
def test_helper_hash_string(self):
oauth_object = OAuth1RSA(OAuthExtTest.consumer_key,
OAuthExtTest.signing_key)
hash_object = oauth_object._hash(OAuthExtTest.data)
self.assertEqual(
hash_object,
b'\xe8@\x97\xa0\x07H\x0b\xb2\x81"1\xcb\xf8\xa6@|&\xb9\xd7\xdf.\x80\xa9\x0b\xed,\x8f2\x88\xd7\xf7\xe5'
)
def test_helper_hash_bytes(self):
oauth_object = OAuth1RSA(OAuthExtTest.consumer_key,
OAuthExtTest.signing_key)
hash_object = oauth_object._hash(b"value in bytes")
self.assertEqual(
hash_object,
b'\\\n\x0e\xa3\xfe\x01\xd6T\x9fE\x97\x06\x937\x9d\\\xeaSz^\xe8\xab\xb1\xff:n\x9bY\xf5iV|'
)
def test_helper_hash_nonetype(self):
oauth_object = OAuth1RSA(OAuthExtTest.consumer_key,
OAuthExtTest.signing_key)
hash_object = oauth_object._hash('')
self.assertEqual(
hash_object,
b"\xe3\xb0\xc4B\x98\xfc\x1c\x14\x9a\xfb\xf4\xc8\x99o\xb9$'\xaeA\xe4d\x9b\x93L\xa4\x95\x99\x1bxR\xb8U"
)
def test_signable_message(self):
oauth_object = OAuth1RSA(OAuthExtTest.consumer_key,
OAuthExtTest.signing_key)
signable_message = oauth_object.signable_message(
OAuthExtTest.mock_prepared_request, OAuthExtTest.payload_ext)
self.assertTrue(
OAuthExtTest.mock_prepared_request.method in signable_message)
def test_helper_generate_header(self):
generate_header = OAuth1RSA._generate_header(OAuthExtTest.payload_ext)
self.assertTrue("OAuth" in generate_header)
def test_call(self):
oauth_object = OAuth1RSA(OAuthExtTest.consumer_key,
OAuthExtTest.signing_key)
call_object = oauth_object.__call__(OAuthExtTest.mock_prepared_request)
self.assertTrue("Authorization" in call_object.headers)
def __init__(self, key_file, key_password, consumer_key):
"""Load signing key."""
self.signing_key = authenticationutils.load_signing_key(
key_file, key_password)
self.consumer_key = consumer_key
class OAuthTest(unittest.TestCase):
signing_key = authenticationutils.load_signing_key("./fake-key.p12",
"fakepassword")
consumer_key = OAuthSigner(
"uLXKmWNmIkzIGKfA2injnNQqpZaxaBSKxa3ixEVu2f283c95!33b9b2bd960147e387fa6f3f238f07170000000000000000",
signing_key)
def test_get_authorization_header(self):
uri = "https://sandbox.api.mastercard.com/fraud/merchant/v1/termination-inquiry?Format=XML&PageOffset=0"
method = "POST"
header = OAuth().get_authorization_header(uri, method, "payload",
self.consumer_key,
self.signing_key)
def test_get_nonce(self):
nonce = OAuth.get_nonce()
self.assertEqual(len(nonce), 16)
def test_get_timestamp(self):
timestamp = OAuth.get_timestamp()
self.assertEqual(len(str(timestamp)), 10)
def test_sign_message(self):
baseString = 'POST&https%3A%2F%2Fsandbox.api.mastercard.com%2Ffraud%2Fmerchant%2Fv1%2Ftermination-inquiry&Format%3DXML%26PageLength%3D10%26PageOffset%3D0%26oauth_body_hash%3DWhqqH%252BTU95VgZMItpdq78BWb4cE%253D%26oauth_consumer_key%3Dxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx%26oauth_nonce%3D1111111111111111111%26oauth_signature_method%3DRSA-SHA1%26oauth_timestamp%3D1111111111%26oauth_version%3D1.0'
signature = OAuth().sign_message(baseString, self.signing_key)
signature = Util.uri_rfc3986_encode(signature)
self.assertEqual(
signature,
"nqxpgHpye%2BdOEkEbC%2FS3N1%2FCRFlZPHoyRztkRhkCoz7ISNmV9V60TQ7zwS8Q59SGQUGYuoNSVe8SWtNVQTEuRiZfXd6Eme%2BCdHfAt7%2BbNd3UsrcIHl3CJEvx7u70ItW8aOx4F7rjF%2BaIOq%2Bpc0rbuBugF%2BnElGKydpPiQrKKwE5kB3TZKVkYLLCsLU8Ry%2Fjg05d2TcnGTyfYZDchV4ui0uPzR5UH%2Fkb4ni8lchrtAeaGJwCimACIk6qNLoNnz7u9joKHtYeuZhORRVodxKB%2BAolgAQqJBMyLrseJDITmwIRTRSzQ3vclt%2BMvVs1CMbXYuvnDYd5NFv98emJgBC%2FX1A%3D%3D"
)
def test_oauth_parameters(self):
uri = "https://sandbox.api.mastercard.com/fraud/merchant/v1/termination-inquiry?Format=XML&PageOffset=0"
method = "POST"
parameters = OAuth().get_oauth_parameters(uri, method, "payload",
self.consumer_key,
self.signing_key)
# print(parameters)
consumer_key = parameters.get_oauth_consumer_key()
def test_query_parser(self):
uri = "https://sandbox.api.mastercard.com/audiences/v1/getcountries?offset=0&offset=1&length=10&empty&odd="
oauth_parameters = OAuthParameters()
oauth_parameters_base = oauth_parameters.get_base_parameters_dict()
merge_parameters = oauth_parameters_base.copy()
query_params = Util.normalize_params(uri, merge_parameters)
# print(query_params)
self.assertEqual(query_params,
"empty=&length=10&odd=&offset=0&offset=1")
# - length=10&offset=1
# + empty&length=10&odd=&offset=0&offset=1
def test_query_parser_encoding(self):
uri = "https://sandbox.api.mastercard.com?param1=plus+value¶m2=colon:value"
oauth_parameters = OAuthParameters()
oauth_parameters_base = oauth_parameters.get_base_parameters_dict()
merge_parameters = oauth_parameters_base.copy()
query_params = Util.normalize_params(uri, merge_parameters)
# print(query_params)
self.assertEqual(query_params,
"param1=plus%20value¶m2=colon%3Avalue")
def test_query_parser_not_encoded_params(self):
uri = "https://api.mastercard.com/audiences?param1=plus+value¶m2=colon:value¶m3=a space~"
oauth_parameters = OAuthParameters()
oauth_parameters_base = oauth_parameters.get_base_parameters_dict()
merge_parameters = oauth_parameters_base.copy()
query_params = Util.normalize_params(uri, merge_parameters)
self.assertEqual(
query_params,
"param1=plus%20value¶m2=colon%3Avalue¶m3=a%20space~")
# - param1=plus%2Bvalue¶m2=colon%3Avalue¶m3=a%2Bspace~
# + param1=plus%2Bvalue¶m2=colon%3Avalue¶m3=a%20space~
def test_nonce_length(self):
nonce = OAuth.get_nonce()
self.assertEqual(16, len(nonce))
def test_nonce_uniqueness(self):
init = OAuth.get_nonce()
l = []
for i in range(0, 100000):
l.append(init + OAuth.get_nonce())
# print(*l)
# print(self.list_duplicates(l))
self.assertEqual(self.list_duplicates(l), [])
def list_duplicates(self, seq):
seen = set()
seen_add = seen.add
# adds all elements it doesn't know yet to seen and all other to seen_twice
seen_twice = set(x for x in seq if x in seen or seen_add(x))
# turn the set into a list (as requested)
return list(seen_twice)
def test_params_string_rfc_example_1(self):
uri = "https://sandbox.api.mastercard.com"
# uri = "b5=%3D%253D&a3=a&a3=2%20q&c%40=&a2=r%20b&c2="
oauth_parameters1 = OAuthParameters()
oauth_parameters1.set_oauth_consumer_key("9djdj82h48djs9d2")
oauth_parameters1.set_oauth_signature_method("HMAC-SHA1")
oauth_parameters1.set_oauth_timestamp("137131201")
oauth_parameters1.set_oauth_nonce("7d8f3e4a")
oauth_parameters_base1 = oauth_parameters1.get_base_parameters_dict()
merge_parameters1 = oauth_parameters_base1.copy()
query_params1 = Util.normalize_params(uri, merge_parameters1)
self.assertEqual(
"oauth_consumer_key=9djdj82h48djs9d2&oauth_nonce=7d8f3e4a&oauth_signature_method=HMAC-SHA1&oauth_timestamp=137131201",
query_params1)
def test_params_string_rfc_example_2(self):
uri = "https://sandbox.api.mastercard.com?b5=%3D%253D&a3=a&a3=2%20q&c%40=&a2=r%20b&c2="
oauth_parameters2 = OAuthParameters()
oauth_parameters_base2 = oauth_parameters2.get_base_parameters_dict()
merge_parameters2 = oauth_parameters_base2.copy()
query_params2 = Util.normalize_params(uri, merge_parameters2)
self.assertEqual("a2=r%20b&a3=2%20q&a3=a&b5=%3D%253D&c%40=&c2=",
query_params2)
# - a2=r%20b&a3=2%20q&a3=a&b5=%3D%253D&c%40=&c2=
# + a2=r%2Bb&a3=2%2Bq&b5=%3D%253D
def test_params_string_ascending_byte_value_ordering(self):
url = "https://localhost?b=b&A=a&A=A&B=B&a=A&a=a&0=0"
oauth_parameters = OAuthParameters()
oauth_parameters_base = oauth_parameters.get_base_parameters_dict()
merge_parameters = oauth_parameters_base.copy()
norm_params = Util.normalize_params(url, merge_parameters)
self.assertEqual("0=0&A=A&A=a&B=B&a=A&a=a&b=b", norm_params)
# - 0=0&A=A&A=a&B=B&a=A&a=a&b=b
# ? ---- ----
# + 0=0&A=A&B=B&a=a&b=b
def test_signature_base_string(self):
uri = "https://api.mastercard.com"
base_uri = Util.normalize_url(uri)
oauth_parameters = OAuthParameters()
oauth_parameters.set_oauth_body_hash("body/hash")
oauth_parameters.set_oauth_nonce("randomnonce")
base_string = OAuth.get_base_string(
base_uri, "POST", oauth_parameters,
oauth_parameters.get_base_parameters_dict())
self.assertEqual(
"POST&https%3A%2F%2Fapi.mastercard.com%2F&oauth_body_hash%3Dbody%2Fhash%26oauth_nonce%3Drandomnonce",
base_string)
# - POST&https%3A%2F%2Fapi.mastercard.com&oauth_body_hash%3Dbody%2Fhash%26oauth_nonce%3Drandomnonce
# + POST&https%3A%2F%2Fapi.mastercard.com%2F&oauth_body_hash%3Dbody%252Fhash%26oauth_nonce%3Drandomnonce
def test_signature_base_string2(self):
body = "<?xml version=\"1.0\" encoding=\"Windows-1252\"?><ns2:TerminationInquiryRequest xmlns:ns2=\"http://mastercard.com/termination\"><AcquirerId>1996</AcquirerId><TransactionReferenceNumber>1</TransactionReferenceNumber><Merchant><Name>TEST</Name><DoingBusinessAsName>TEST</DoingBusinessAsName><PhoneNumber>5555555555</PhoneNumber><NationalTaxId>1234567890</NationalTaxId><Address><Line1>5555 Test Lane</Line1><City>TEST</City><CountrySubdivision>XX</CountrySubdivision><PostalCode>12345</PostalCode><Country>USA</Country></Address><Principal><FirstName>John</FirstName><LastName>Smith</LastName><NationalId>1234567890</NationalId><PhoneNumber>5555555555</PhoneNumber><Address><Line1>5555 Test Lane</Line1><City>TEST</City><CountrySubdivision>XX</CountrySubdivision><PostalCode>12345</PostalCode><Country>USA</Country></Address><DriversLicense><Number>1234567890</Number><CountrySubdivision>XX</CountrySubdivision></DriversLicense></Principal></Merchant></ns2:TerminationInquiryRequest>"
url = "https://sandbox.api.mastercard.com/fraud/merchant/v1/termination-inquiry?Format=XML&PageOffset=0&PageLength=10"
method = "POST"
oauth_parameters = OAuthParameters()
oauth_parameters.set_oauth_consumer_key(
"xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx")
oauth_parameters.set_oauth_nonce("1111111111111111111")
oauth_parameters.set_oauth_timestamp("1111111111")
oauth_parameters.set_oauth_version("1.0")
oauth_parameters.set_oauth_body_hash("body/hash")
encoded_hash = Util.base64_encode(Util.sha256_encode(body))
oauth_parameters.set_oauth_body_hash(encoded_hash)
oauth_parameters_base = oauth_parameters.get_base_parameters_dict()
merge_parameters = oauth_parameters_base.copy()
norm_params = Util.normalize_params("", merge_parameters)
# print(oauth_parameters_base)
query_params = OAuth.get_query_params(url)
# print(query_params)
normalize_params = Util.normalize_params("", query_params)
base_string = OAuth.get_base_string(
url, method, oauth_parameters,
oauth_parameters.get_base_parameters_dict())
expected = "POST&https%3A%2F%2Fsandbox.api.mastercard.com%2Ffraud%2Fmerchant%2Fv1%2Ftermination-inquiry&Format%3DXML%26PageLength%3D10%26PageOffset%3D0%26oauth_body_hash%3Dh2Pd7zlzEZjZVIKB4j94UZn%2FxxoR3RoCjYQ9%2FJdadGQ%253D%26oauth_consumer_key%3Dxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx%26oauth_nonce%3D1111111111111111111%26oauth_timestamp%3D1111111111%26oauth_version%3D1.0"
self.maxDiff = None
self.assertEqual(expected, base_string)
# - POST&https%3A%2F%2Fsandbox.api.mastercard.com%2Ffraud%2Fmerchant%2Fv1%2Ftermination-inquiry&Format%3DXML%26PageLength%3D10%26PageOffset%3D0%26oauth_body_hash%3Dh2Pd7zlzEZjZVIKB4j94UZn%2FxxoR3RoCjYQ9%2FJdadGQ%3D%26oauth_consumer_key%3Dxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx%26oauth_nonce%3D1111111111111111111%26oauth_timestamp%3D1111111111%26oauth_version%3D1.0
# + POST&https%3A%2F%2Fsandbox.api.mastercard.com%2Ffraud%2Fmerchant%2Fv1%2Ftermination-inquiry&Format%3DXML%26PageLength%3D10%26PageOffset%3D0%26oauth_body_hash%3Dh2Pd7zlzEZjZVIKB4j94UZn%252FxxoR3RoCjYQ9%252FJdadGQ%253D%26oauth_consumer_key%3Dxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx%26oauth_nonce%3D1111111111111111111%26oauth_timestamp%3D1111111111%26oauth_version%3D1.0
def test_sign_signature_base_string_invalid_key(self):
self.assertRaises(AttributeError, OAuth.sign_message, self,
"some string", None)
def test_sign_signature_base_string(self):
# expectedSignatureString = "IJeNKYGfUhFtj5OAPRI92uwfjJJLCej3RCMLbp7R6OIYJhtwxnTkloHQ2bgV7fks4GT/A7rkqrgUGk0ewbwIC6nS3piJHyKVc7rvQXZuCQeeeQpFzLRiH3rsb+ZS+AULK+jzDje4Fb+BQR6XmxuuJmY6YrAKkj13Ln4K6bZJlSxOizbNvt+Htnx+hNd4VgaVBeJKcLhHfZbWQxK76nMnjY7nDcM/2R6LUIR2oLG1L9m55WP3bakAvmOr392ulv1+mWCwDAZZzQ4lakDD2BTu0ZaVsvBW+mcKFxYeTq7SyTQMM4lEwFPJ6RLc8jJJ+veJXHekLVzWg4qHRtzNBLz1mA=="
expectedSignatureString = "vA7b0GT6r3GrS7Zpvy7PDMKocmG79yvpnp77GK8znpTKcY9xwKP5n4BfoP26068TyIZk9qx5TEzc4FzOKhWZF5pxN77Hne0A7gHNkaueYmfy95qxUBxLRMCevwjs5A0aW1bTW+gu7VL1cLtBYgO9Ks2axUcvxAq6aVRZvMGvFukxaZd+2XD8hE/tBwyEmvQwWO9gr5KJAFslkykjID9zs4gZ+gK0adRCvpcobRfcff+RxbtQctq3cjXwH/Fp3ZymoFtB2J+4hJ3aX4uCkIhJCV4dyWUkvx81vNyf1J5nBjqRtAoOEXOxNrz4o+kzAfcT46EUSQUTjouCO6hJfOVlaA=="
signing_string = OAuth.sign_message(self, "baseString",
self.signing_key)
self.maxDiff = None
self.assertEqual(expectedSignatureString, signing_string)
def test_url_normalization_rfc_examples1(self):
uri = "https://www.example.net:8080"
base_uri = Util.normalize_url(uri)
self.assertEqual("https://www.example.net:8080/", base_uri)
def test_url_normalization_rfc_examples2(self):
uri = "http://EXAMPLE.COM:80/r%20v/X?id=123"
base_uri = Util.normalize_url(uri)
self.assertEqual("http://example.com/r%20v/X", base_uri)
def test_url_normalization_redundant_ports1(self):
uri = "https://api.mastercard.com:443/test?query=param"
base_uri = Util.normalize_url(uri)
self.assertEqual("https://api.mastercard.com/test", base_uri)
def test_url_normalization_redundant_ports2(self):
uri = "http://api.mastercard.com:80/test"
base_uri = Util.normalize_url(uri)
self.assertEqual("http://api.mastercard.com/test", base_uri)
def test_url_normalization_redundant_ports3(self):
uri = "https://api.mastercard.com:17443/test?query=param"
base_uri = Util.normalize_url(uri)
self.assertEqual("https://api.mastercard.com:17443/test", base_uri)
def test_url_normalization_remove_fragment(self):
uri = "https://api.mastercard.com/test?query=param#fragment"
base_uri = Util.normalize_url(uri)
self.assertEqual("https://api.mastercard.com/test", base_uri)
def test_url_normalization_add_trailing_slash(self):
uri = "https://api.mastercard.com"
base_uri = Util.normalize_url(uri)
self.assertEqual("https://api.mastercard.com/", base_uri)
def test_url_normalization_lowercase_scheme_and_host(self):
uri = "HTTPS://API.MASTERCARD.COM/TEST"
base_uri = Util.normalize_url(uri)
self.assertEqual("https://api.mastercard.com/TEST", base_uri)
def test_body_hash1(self):
oauth_parameters = OAuthParameters()
encoded_hash = Util.base64_encode(
Util.sha256_encode(OAuth.EMPTY_STRING))
# print(encoded_hash)
oauth_parameters.set_oauth_body_hash(encoded_hash)
self.assertEqual("47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=",
encoded_hash)
def test_body_hash2(self):
oauth_parameters = OAuthParameters()
encoded_hash = Util.base64_encode(Util.sha256_encode(None))
# print(encoded_hash)
oauth_parameters.set_oauth_body_hash(encoded_hash)
self.assertEqual("3JN7WYkmBPWoaslpNs1/8J4l8Yrmt1joAUokx/oDnpE=",
encoded_hash)
def test_body_hash3(self):
oauth_parameters = OAuthParameters()
encoded_hash = Util.base64_encode(
Util.sha256_encode("{\"foõ\":\"bar\"}"))
# print(encoded_hash)
oauth_parameters.set_oauth_body_hash(encoded_hash)
self.assertEqual("+Z+PWW2TJDnPvRcTgol+nKO3LT7xm8smnsg+//XMIyI=",
encoded_hash)
# NOT NEEDED - INTERNAL
# @Test(expected = IllegalStateException.class)
# public void bodyHash_invalidHashAlgorithm() {
# OAuth.getBodyHash(OAuth.EMPTY_STRING, UTF8_CHARSET, "SHA-123");
# }
def test_url_encode1(self):
self.assertEqual("Format%3DXML", Util.uri_rfc3986_encode("Format=XML"))
def test_url_encode2(self):
self.assertEqual(
"WhqqH%2BTU95VgZMItpdq78BWb4cE%3D",
Util.uri_rfc3986_encode("WhqqH+TU95VgZMItpdq78BWb4cE="))
def test_url_encode3(self):
self.assertEqual(
"WhqqH%2BTU95VgZMItpdq78BWb4cE%3D%26o",
Util.uri_rfc3986_encode("WhqqH+TU95VgZMItpdq78BWb4cE=&o"))
