def setUp(self):
'''
This is run before each test. Read configuration from the given JSON file.
'''
current_directory = os.path.dirname(os.path.abspath(__file__))
sql_config = {
"config": {
"Driver": "sqlite",
"Port": "",
"Database": "%s/data/linotp-users.sql" % current_directory,
"Server": "",
"User": "",
"Password": "",
"Table": "linotp_users",
"Map": json.dumps({
"username": "******",
"userid": "id",
"password": "******",
"salt": "salt",
"givenname": "givenname",
"surname": "surname",
"email": "email"})
},
"config2_map": json.dumps({
"username": "******",
"userid": "username",
"password": "******",
"givenname": "givenname",
"surname": "surname",
"email": "email"}),
"config3_where": "(1 = 0 OR linotp_users.id > 2 ) AND 1 = 1"
}
config = sql_config['config']
config2 = config.copy()
# A config with a differing Map (mapping string user IDs,
# not numerical user IDs)
config2['Map'] = sql_config['config2_map']
# Another config with a where clause (otherwise equals `config`)
config3 = config.copy()
config3['Where'] = sql_config['config3_where']
self.y = SQLResolver()
self.y.loadConfig(config, "")
self.z = SQLResolver()
self.z.loadConfig(config2, "")
self.w = SQLResolver()
self.w.loadConfig(config3, "")
def setUp(self):
'''
This is run before each test. Read configuration from the given JSON file.
'''
current_directory = os.path.dirname(os.path.abspath(__file__))
sql_config = {
"config": {
"Driver": "sqlite",
"Port": "",
"Database": "%s/data/linotp-users.sql" % current_directory,
"Server": "",
"User": "",
"Password": "",
"Table": "linotp_users",
"Map": json.dumps({
"username": "******",
"userid": "id",
"password": "******",
"salt": "salt",
"givenname": "givenname",
"surname": "surname",
"email": "email"})
},
"config2_map": json.dumps({
"username": "******",
"userid": "username",
"password": "******",
"givenname": "givenname",
"surname": "surname",
"email": "email"}),
"config3_where": "(1 = 0 OR linotp_users.id > 2 ) AND 1 = 1"
}
config = sql_config['config']
config2 = config.copy()
# A config with a differing Map (mapping string user IDs,
# not numerical user IDs)
config2['Map'] = sql_config['config2_map']
# Another config with a where clause (otherwise equals `config`)
config3 = config.copy()
config3['Where'] = sql_config['config3_where']
self.y = SQLResolver()
self.y.loadConfig(config, "")
self.z = SQLResolver()
self.z.loadConfig(config2, "")
self.w = SQLResolver()
self.w.loadConfig(config3, "")
def load_resolver(self, mocked_encryptPassword, mocked_decryptPassword):
""""Read sql resolver configuration from a given JSON file."""
current_directory = os.path.dirname(os.path.abspath(__file__))
sql_config = {
"config": {
"Driver":
"sqlite",
"Port":
"",
"Database":
"%s/imported/data/linotp-users.sql" % current_directory,
"Server":
"",
"User":
"",
"Password":
"",
"Table":
"linotp_users",
"Map":
json.dumps({
"username": "******",
"userid": "id",
"password": "******",
"givenname": "givenname",
"surname": "surname",
"email": "email"
})
},
"config2_map":
json.dumps({
"username": "******",
"userid": "username",
"password": "******",
"givenname": "givenname",
"surname": "surname",
"email": "email"
}),
"config3_where":
"(1 = 0 OR linotp_users.id > 2 ) AND 1 = 1"
}
mocked_encryptPassword.return_value = b''
mocked_decryptPassword.return_value = b''
config = sql_config['config']
resolver = SQLResolver()
resolver.loadConfig(config, "")
return resolver
def _get_resolver_parameters(self):
"""
create the config of an sql resolver, which
- establish driver, admin user and password
- table
- user_mapping
- where condition with groupid
- internal, called for the creating of the resolver
:return: dictionary of the resolver parameters
"""
url = self.db_context.engine.url
mapping = {}
for entry in SQLImportHandler.User.user_entries:
mapping[entry] = entry
where = "groupid = '%s'" % self.groupid
resolver_parameters = {
"Driver": url.drivername,
"Server": url.host or "",
"Port": str(url.port or ""),
"Database": url.database,
"User": url.username or "",
"Password": url.password or "",
"Table": self.table_name,
"Where": where,
"Map": json.dumps(mapping),
"readonly": True,
}
resolver_parameters['name'] = self.resolver_name
sql_resolver_type = sql_resolver.getResolverClassType()
resolver_parameters['type'] = sql_resolver_type
_config, missing = sql_resolver.filter_config(resolver_parameters)
if missing:
raise Exception("missing some resolver attributes: %r",
missing)
return resolver_parameters
def _get_resolver_parameters(self):
"""
create the config of an sql resolver, which
- establish driver, admin user and password
- table
- user_mapping
- where condition with groupid
- internal, called for the creating of the resolver
:return: dictionary of the resolver parameters
"""
url = self.db_context.engine.url
mapping = {}
for entry in SQLImportHandler.User.user_entries:
mapping[entry] = entry
where = "groupid = '%s'" % self.groupid
resolver_parameters = {
"Driver": url.drivername,
"Server": url.host or "",
"Port": str(url.port or ""),
"Database": url.database,
"User": url.username or "",
"Password": url.password or "",
"Table": self.table_name,
"Where": where,
"Map": json.dumps(mapping),
"readonly": True,
}
resolver_parameters['name'] = self.resolver_name
sql_resolver_type = sql_resolver.getResolverClassType()
resolver_parameters['type'] = sql_resolver_type
_config, missing = sql_resolver.filter_config(resolver_parameters)
if missing:
raise Exception("missing some resolver attributes: %r",
missing)
return resolver_parameters
class TestSQLResolver(TestCase):
y = None
z = None
proc = None
def setUp(self):
'''
This is run before each test. Read configuration from the given JSON file.
'''
current_directory = os.path.dirname(os.path.abspath(__file__))
sql_config = {
"config": {
"Driver":
"sqlite",
"Port":
"",
"Database":
"%s/data/linotp-users.sql" % current_directory,
"Server":
"",
"User":
"",
"Password":
"",
"Table":
"linotp_users",
"Map":
json.dumps({
"username": "******",
"userid": "id",
"password": "******",
"salt": "salt",
"givenname": "givenname",
"surname": "surname",
"email": "email"
})
},
"config2_map":
json.dumps({
"username": "******",
"userid": "username",
"password": "******",
"givenname": "givenname",
"surname": "surname",
"email": "email"
}),
"config3_where":
"(1 = 0 OR linotp_users.id > 2 ) AND 1 = 1"
}
config = sql_config['config']
config2 = config.copy()
# A config with a differing Map (mapping string user IDs,
# not numerical user IDs)
config2['Map'] = sql_config['config2_map']
# Another config with a where clause (otherwise equals `config`)
config3 = config.copy()
config3['Where'] = sql_config['config3_where']
self.y = SQLResolver()
self.y.loadConfig(config, "")
self.z = SQLResolver()
self.z.loadConfig(config2, "")
self.w = SQLResolver()
self.w.loadConfig(config3, "")
def getUserList(self, obj, arg):
'''
call obj.getUserList(), but check that we have no errors
before returning.
'''
res = obj.getUserList(arg)
for item in res:
for _key, val in item.iteritems():
self.assertNotIn('-ERR', str(val))
return res
def test_sql_getUserId(self):
'''
SQL: test the existance of the user1 and user2
'''
res = self.y.getUserId("user1")
print "uid (user1): ", res
self.assertTrue(res == 1)
self.assertTrue(self.y.getUserInfo(res).get("surname") == "Eins")
res = self.y.getUserId("user2")
print "uid (user2): ", res
self.assertTrue(res == 2)
self.assertTrue(self.y.getUserInfo(res).get("surname") == "Zwo")
res = self.z.getUserId("user2")
self.assertTrue(res == 'user2')
def test_sql_checkpass(self):
'''
SQL: Check the password of user1 and user 2
'''
self.assertTrue(self.y.checkPass(self.y.getUserId("user1"),
"password"))
self.assertTrue(self.y.checkPass(self.y.getUserId("user2"),
"password"))
def test_sql_checkpass_wo_salt(self):
'''
SQL: Check the password of user1 and user 2 without column SALT
'''
self.assertTrue(self.z.checkPass(self.z.getUserId("user1"),
"password"))
self.assertTrue(self.z.checkPass(self.z.getUserId("user2"),
"password"))
def test_get_search_fields(self):
'''
SQL: Check the search field detection.
'''
search_fields = self.y.getSearchFields()
self.assertEqual(
set(search_fields.keys()),
set([
'username', 'userid', 'password', 'salt', 'givenname',
'surname', 'email'
]))
self.assertEqual(set(search_fields.values()), set(['numeric', 'text']))
def test_sql_search_escapes(self):
'''
SQL: Check that the SQL wildcards are correctly escaped.
'''
res1 = self.getUserList(self.y, {'givenname': 'Pro%ent'})
self.assertEqual(len(res1), 1)
self.assertEqual(res1[0]['username'], 'user_3')
res2 = self.getUserList(self.y, {'username': '******'})
self.assertEqual(len(res2), 1)
self.assertEqual(res2[0]['username'], 'user_3')
res3 = self.getUserList(self.y, {'username': '******'})
self.assertEqual(len(res3), 2)
self.assertEqual(set(s['username'] for s in res3),
set([u'user_3', u'userx3']))
res4 = self.getUserList(self.y, {'username': '******'})
self.assertEqual(len(res4), 4)
res5 = self.getUserList(self.y, {'surname': '....'})
self.assertEqual(set(s['userid'] for s in res5), set([1, 3]))
def test_sql_complex_search(self):
'''
SQL: test more complex search queries
'''
res1 = self.getUserList(self.y, {'userid': '> 2'})
self.assertEqual(len(res1), 2)
self.assertEqual(set(s['userid'] for s in res1), set((3, 4)))
res2 = self.getUserList(self.y, {'userid': ' <= 3 '})
self.assertEqual(len(res2), 3)
res3 = self.getUserList(self.y, {'userid': '>77'})
self.assertEqual(res3, [])
def test_sql_where(self):
'''
SQL: test with a where clause. The where clause in `self.w` only gives us
users with IDs > 2.
'''
res1 = self.getUserList(self.w, {})
self.assertEqual(set(s['username'] for s in res1),
set(('user_3', 'userx3')))
self.assertEqual(self.w.getUsername(1), "")
self.assertEqual(self.w.getUsername(2), "")
self.assertEqual(self.w.getUsername(3), "user_3")
self.assertEqual(self.w.getUsername(4), "userx3")
self.assertEqual(self.w.getUsername(5), "")
self.assertTrue(self.w.checkPass(self.w.getUserId('user_3'), 'test'))
self.assertFalse(self.w.checkPass(self.w.getUserId('user_3'),
'falsch'))
def test_sql_getUserList(self):
'''
SQL: testing the userlist
'''
# all users are two users
user_list = self.getUserList(self.y, {})
self.assertTrue(len(user_list) == 4)
# there is only one user that ends with '1'
user_list = self.getUserList(self.y, {"username": "******"})
self.assertTrue(len(user_list) == 1)
def test_sql_getUsername(self):
'''
SQL: testing getting the username
'''
self.assertTrue(self.y.getUsername(1) == "user1")
self.assertTrue(self.y.getUsername(2) == "user2")
self.assertTrue(self.y.getUsername(5) == "")
# also test in the resolver with id as strings
self.assertTrue(self.z.getUsername("user1") == "user1")
self.assertTrue(self.z.getUsername("user2") == "user2")
self.assertTrue(self.z.getUsername("user5") == "")
class TestSQLResolver(TestCase):
y = None
z = None
proc = None
def setUp(self):
'''
This is run before each test. Read configuration from the given JSON file.
'''
current_directory = os.path.dirname(os.path.abspath(__file__))
sql_config = {
"config": {
"Driver": "sqlite",
"Port": "",
"Database": "%s/data/linotp-users.sql" % current_directory,
"Server": "",
"User": "",
"Password": "",
"Table": "linotp_users",
"Map": json.dumps({
"username": "******",
"userid": "id",
"password": "******",
"salt": "salt",
"givenname": "givenname",
"surname": "surname",
"email": "email"})
},
"config2_map": json.dumps({
"username": "******",
"userid": "username",
"password": "******",
"givenname": "givenname",
"surname": "surname",
"email": "email"}),
"config3_where": "(1 = 0 OR linotp_users.id > 2 ) AND 1 = 1"
}
config = sql_config['config']
config2 = config.copy()
# A config with a differing Map (mapping string user IDs,
# not numerical user IDs)
config2['Map'] = sql_config['config2_map']
# Another config with a where clause (otherwise equals `config`)
config3 = config.copy()
config3['Where'] = sql_config['config3_where']
self.y = SQLResolver()
self.y.loadConfig(config, "")
self.z = SQLResolver()
self.z.loadConfig(config2, "")
self.w = SQLResolver()
self.w.loadConfig(config3, "")
def getUserList(self, obj, arg):
'''
call obj.getUserList(), but check that we have no errors
before returning.
'''
res = obj.getUserList(arg)
for item in res:
for _key, val in item.iteritems():
self.assertNotIn('-ERR', str(val))
return res
def test_sql_getUserId(self):
'''
SQL: test the existance of the user1 and user2
'''
res = self.y.getUserId("user1")
print "uid (user1): ", res
self.assertTrue(res == 1)
self.assertTrue(self.y.getUserInfo(res).get("surname") == "Eins")
res = self.y.getUserId("user2")
print "uid (user2): ", res
self.assertTrue(res == 2)
self.assertTrue(self.y.getUserInfo(res).get("surname") == "Zwo")
res = self.z.getUserId("user2")
self.assertTrue(res == 'user2')
def test_sql_checkpass(self):
'''
SQL: Check the password of user1 and user 2
'''
self.assertTrue(self.y.checkPass(self.y.getUserId("user1"),
"password"))
self.assertTrue(self.y.checkPass(self.y.getUserId("user2"),
"password"))
def test_sql_checkpass_wo_salt(self):
'''
SQL: Check the password of user1 and user 2 without column SALT
'''
self.assertTrue(self.z.checkPass(self.z.getUserId("user1"),
"password"))
self.assertTrue(self.z.checkPass(self.z.getUserId("user2"),
"password"))
def test_get_search_fields(self):
'''
SQL: Check the search field detection.
'''
search_fields = self.y.getSearchFields()
self.assertEqual(set(search_fields.keys()),
set(['username', 'userid', 'password', 'salt',
'givenname', 'surname', 'email']))
self.assertEqual(set(search_fields.values()), set(['numeric', 'text']))
def test_sql_search_escapes(self):
'''
SQL: Check that the SQL wildcards are correctly escaped.
'''
res1 = self.getUserList(self.y, {'givenname': 'Pro%ent'})
self.assertEqual(len(res1), 1)
self.assertEqual(res1[0]['username'], 'user_3')
res2 = self.getUserList(self.y, {'username': '******'})
self.assertEqual(len(res2), 1)
self.assertEqual(res2[0]['username'], 'user_3')
res3 = self.getUserList(self.y, {'username': '******'})
self.assertEqual(len(res3), 2)
self.assertEqual(set(s['username'] for s in res3),
set([u'user_3', u'userx3']))
res4 = self.getUserList(self.y, {'username': '******'})
self.assertEqual(len(res4), 4)
res5 = self.getUserList(self.y, {'surname': '....'})
self.assertEqual(set(s['userid'] for s in res5), set([1, 3]))
def test_sql_complex_search(self):
'''
SQL: test more complex search queries
'''
res1 = self.getUserList(self.y, {'userid': '> 2'})
self.assertEqual(len(res1), 2)
self.assertEqual(set(s['userid'] for s in res1), set((3, 4)))
res2 = self.getUserList(self.y, {'userid': ' <= 3 '})
self.assertEqual(len(res2), 3)
res3 = self.getUserList(self.y, {'userid': '>77'})
self.assertEqual(res3, [])
def test_sql_where(self):
'''
SQL: test with a where clause. The where clause in `self.w` only gives us
users with IDs > 2.
'''
res1 = self.getUserList(self.w, {})
self.assertEqual(set(s['username'] for s in res1),
set(('user_3', 'userx3')))
self.assertEqual(self.w.getUsername(1), "")
self.assertEqual(self.w.getUsername(2), "")
self.assertEqual(self.w.getUsername(3), "user_3")
self.assertEqual(self.w.getUsername(4), "userx3")
self.assertEqual(self.w.getUsername(5), "")
self.assertTrue(self.w.checkPass(self.w.getUserId('user_3'), 'test'))
self.assertFalse(self.w.checkPass(self.w.getUserId('user_3'),
'falsch'))
def test_sql_getUserList(self):
'''
SQL: testing the userlist
'''
# all users are two users
user_list = self.getUserList(self.y, {})
self.assertTrue(len(user_list) == 4)
# there is only one user that ends with '1'
user_list = self.getUserList(self.y, {"username": "******"})
self.assertTrue(len(user_list) == 1)
def test_sql_getUsername(self):
'''
SQL: testing getting the username
'''
self.assertTrue(self.y.getUsername(1) == "user1")
self.assertTrue(self.y.getUsername(2) == "user2")
self.assertTrue(self.y.getUsername(5) == "")
# also test in the resolver with id as strings
self.assertTrue(self.z.getUsername("user1") == "user1")
self.assertTrue(self.z.getUsername("user2") == "user2")
self.assertTrue(self.z.getUsername("user5") == "")
class TestSQLResolver(TestCase):
y = None
z = None
proc = None
def setUp(self):
"""
This is run before each test. Read configuration from the given JSON file.
"""
current_directory = os.path.dirname(os.path.abspath(__file__))
sql_config = {
"config": {
"Driver":
"sqlite",
"Port":
"",
"Database":
"%s/data/linotp-users.sql" % current_directory,
"Server":
"",
"User":
"",
"Password":
"",
"Table":
"linotp_users",
"Map":
json.dumps({
"username": "******",
"userid": "id",
"password": "******",
"salt": "salt",
"givenname": "givenname",
"surname": "surname",
"email": "email",
}),
},
"config2_map":
json.dumps({
"username": "******",
"userid": "username",
"password": "******",
"givenname": "givenname",
"surname": "surname",
"email": "email",
}),
"config3_where":
"(1 = 0 OR linotp_users.id > 2 ) AND 1 = 1",
}
config = sql_config["config"]
config2 = config.copy()
# A config with a differing Map (mapping string user IDs,
# not numerical user IDs)
config2["Map"] = sql_config["config2_map"]
# Another config with a where clause (otherwise equals `config`)
config3 = config.copy()
config3["Where"] = sql_config["config3_where"]
self.y = SQLResolver()
self.y.loadConfig(config, "")
self.z = SQLResolver()
self.z.loadConfig(config2, "")
self.w = SQLResolver()
self.w.loadConfig(config3, "")
def getUserList(self, obj, arg):
"""
call obj.getUserList(), but check that we have no errors
before returning.
"""
res = obj.getUserList(arg)
for item in res:
for _key, val in item.items():
assert "-ERR" not in str(val)
return res
def test_sql_getUserId(self):
"""
SQL: test the existance of the user1 and user2
"""
res = self.y.getUserId("user1")
print("uid (user1): ", res)
assert res == 1
assert self.y.getUserInfo(res).get("surname") == "Eins"
res = self.y.getUserId("user2")
print("uid (user2): ", res)
assert res == 2
assert self.y.getUserInfo(res).get("surname") == "Zwo"
res = self.z.getUserId("user2")
assert res == "user2"
def test_sql_checkpass(self):
"""
SQL: Check the password of user1 and user 2
"""
assert self.y.checkPass(self.y.getUserId("user1"), "password")
assert self.y.checkPass(self.y.getUserId("user2"), "password")
def test_sql_checkpass_wo_salt(self):
"""
SQL: Check the password of user1 and user 2 without column SALT
"""
assert self.z.checkPass(self.z.getUserId("user1"), "password")
assert self.z.checkPass(self.z.getUserId("user2"), "password")
def test_get_search_fields(self):
"""
SQL: Check the search field detection.
"""
search_fields = self.y.getSearchFields()
assert set(search_fields.keys()) == set([
"username",
"userid",
"password",
"salt",
"givenname",
"surname",
"email",
])
assert set(search_fields.values()) == set(["numeric", "text"])
def test_sql_search_escapes(self):
"""
SQL: Check that the SQL wildcards are correctly escaped.
"""
res1 = self.getUserList(self.y, {"givenname": "Pro%ent"})
assert len(res1) == 1
assert res1[0]["username"] == "user_3"
res2 = self.getUserList(self.y, {"username": "******"})
assert len(res2) == 1
assert res2[0]["username"] == "user_3"
res3 = self.getUserList(self.y, {"username": "******"})
assert len(res3) == 2
assert set(s["username"] for s in res3) == set(["user_3", "userx3"])
res4 = self.getUserList(self.y, {"username": "******"})
assert len(res4) == 4
res5 = self.getUserList(self.y, {"surname": "...."})
assert set(s["userid"] for s in res5) == set([1, 3])
def test_sql_complex_search(self):
"""
SQL: test more complex search queries
"""
res1 = self.getUserList(self.y, {"userid": "> 2"})
assert len(res1) == 2
assert set(s["userid"] for s in res1) == set((3, 4))
res2 = self.getUserList(self.y, {"userid": " <= 3 "})
assert len(res2) == 3
res3 = self.getUserList(self.y, {"userid": ">77"})
assert res3 == []
def test_sql_where(self):
"""
SQL: test with a where clause. The where clause in `self.w` only gives us
users with IDs > 2.
"""
res1 = self.getUserList(self.w, {})
assert set(s["username"] for s in res1) == set(("user_3", "userx3"))
assert self.w.getUsername(1) == ""
assert self.w.getUsername(2) == ""
assert self.w.getUsername(3) == "user_3"
assert self.w.getUsername(4) == "userx3"
assert self.w.getUsername(5) == ""
assert self.w.checkPass(self.w.getUserId("user_3"), "test")
assert not self.w.checkPass(self.w.getUserId("user_3"), "falsch")
def test_sql_getUserList(self):
"""
SQL: testing the userlist
"""
# all users are two users
user_list = self.getUserList(self.y, {})
assert len(user_list) == 4
# there is only one user that ends with '1'
user_list = self.getUserList(self.y, {"username": "******"})
assert len(user_list) == 1
def test_sql_getUsername(self):
"""
SQL: testing getting the username
"""
assert self.y.getUsername(1) == "user1"
assert self.y.getUsername(2) == "user2"
assert self.y.getUsername(5) == ""
# also test in the resolver with id as strings
assert self.z.getUsername("user1") == "user1"
assert self.z.getUsername("user2") == "user2"
assert self.z.getUsername("user5") == ""
