示例#1
0
def test_find_by_subject(session, client, jwt):
    """Assert that user find by subject is working as expected."""
    user = User.find_by_sub(TEST_TOKEN['sub'])
    if not user:
        User.create_from_jwt_token(TEST_TOKEN, 'PS12345')
        user = User.find_by_sub(TEST_TOKEN['sub'])

    assert user
    assert user.id
    assert user.username == 'username_TEST1'
    assert user.iss == 'issuer_TEST1'
    assert user.sub == 'subject_TEST1'
    assert user.firstname == 'given_name_TEST1'
    assert user.lastname == 'family_name_TEST1'
示例#2
0
def test_update_user_profile(session, client, jwt):
    """Assert that updating a user profile is working as expected."""
    user = User.find_by_jwt_token(TEST_TOKEN)
    if not user:
        user = User.create_from_jwt_token(TEST_TOKEN, 'PS12345')
        user.user_profile = UserProfile.create_from_json(ALL_JSON, user.id)

    user_profile = user.user_profile
    user_profile.update_profile(COMBO_JSON)
    save_json = user_profile.json
    assert save_json['paymentConfirmationDialog'] == COMBO_JSON[
        'paymentConfirmationDialog']
    assert save_json['selectConfirmationDialog'] == COMBO_JSON[
        'selectConfirmationDialog']
示例#3
0
def test_create_user_profile(session, client, jwt):
    """Assert that creating a user profile is working as expected."""
    user = User.find_by_jwt_token(TEST_TOKEN)
    if not user:
        user = User.create_from_jwt_token(TEST_TOKEN, 'PS12345')

    user_profile = UserProfile.create_from_json(ALL_JSON, user.id)
    user_profile.save()
    save_json = user_profile.json
    assert save_json['paymentConfirmationDialog'] == ALL_JSON[
        'paymentConfirmationDialog']
    assert save_json['selectConfirmationDialog'] == ALL_JSON[
        'selectConfirmationDialog']
    assert save_json['defaultDropDowns'] == ALL_JSON['defaultDropDowns']
    assert save_json['defaultTableFilters'] == ALL_JSON['defaultTableFilters']
示例#4
0
def test_get_or_create(session, client, jwt):
    """Assert that get or create user is working as expected."""
    user = User.get_or_create_user_by_jwt(TEST_TOKEN, 'PS12345')

    assert user
    assert user.id
    assert user.username == 'username_TEST1'
    assert user.iss == 'issuer_TEST1'
    assert user.sub == 'subject_TEST1'
    assert user.firstname == 'given_name_TEST1'
    assert user.lastname == 'family_name_TEST1'
示例#5
0
    def get():
        """Get existing user profile UI settings for the user represented by the request JWT."""
        try:
            # Quick check: always require an account ID.
            account_id = resource_utils.get_account_id(request)
            if not is_staff(jwt) and account_id is None:
                return resource_utils.account_required_response()

            # Verify request JWT and account ID
            if not authorized(account_id, jwt):
                return resource_utils.unauthorized_error_response(account_id)

            token = g.jwt_oidc_token_info
            current_app.logger.debug(
                f'Getting user profile for account {account_id} with token: {token}'
            )

            # Try to fetch existing user from JWT.
            user = User.find_by_jwt_token(token, account_id)
            current_app.logger.debug(
                f'User profile query completed for account {account_id}.')
            if not user:
                # If user does not exist, create user and user profile with the default settings.
                current_app.logger.debug(
                    f'No user found for {account_id} request token: creating records.'
                )
                user = User.create_from_jwt_token(token, account_id)
                user.user_profile = UserProfile.create_from_json(None, user.id)
                user.user_profile.save()

            return user.user_profile.json, HTTPStatus.OK

        except BusinessException as exception:
            return resource_utils.business_exception_response(exception)
        except Exception as default_exception:  # noqa: B902; return nicer default error
            current_app.logger.error(
                f'Get user profile {account_id} failed: ' +
                repr(default_exception))
            return resource_utils.default_exception_response(default_exception)
示例#6
0
    def patch():
        """Update user profile UI settings for the user represented by the request JWT."""
        try:
            # Quick check: always require an account ID.
            account_id = resource_utils.get_account_id(request)
            if not is_staff(jwt) and account_id is None:
                return resource_utils.account_required_response()

            # Verify request JWT and account ID
            if not authorized(account_id, jwt):
                return resource_utils.unauthorized_error_response(account_id)

            request_json = request.get_json(silent=True)
            current_app.logger.debug(
                f'Updating user profile for {account_id} with values: {request_json}'
            )
            # Validate against the schema.
            if not bypass_validation(request_json):
                valid_format, errors = schema_utils.validate(
                    request_json, 'userProfile', 'common')
                if not valid_format:
                    return resource_utils.validation_error_response(
                        errors, VAL_ERROR)

            token = g.jwt_oidc_token_info
            current_app.logger.debug(
                f'Updating user profile for {account_id} with token: {token}')

            # Try to fetch existing user from JWT.
            user = User.find_by_jwt_token(token)
            if not user:
                # If user does not exist, create user and user profile with the default settings.
                current_app.logger.error(
                    f'Update user profile no user found for {account_id} request token.'
                )
                return resource_utils.not_found_error_response(
                    'user profile', account_id)

            user_profile = user.user_profile
            user_profile.update_profile(request_json)
            return user_profile.json, HTTPStatus.OK

        except BusinessException as exception:
            return resource_utils.business_exception_response(exception)
        except Exception as default_exception:  # noqa: B902; return nicer default error
            current_app.logger.error(
                f'Get user profile {account_id} failed: ' +
                repr(default_exception))
            return resource_utils.default_exception_response(default_exception)
示例#7
0
def test_jwt_properties(session, client, jwt, token):
    """Assert that user jwt properties are as expected."""
    assert jwt
    firstname = token.get('given_name', None)
    if not firstname:
        firstname = token.get('firstname', None)
    lastname = token.get('family_name', None)
    if not lastname:
        lastname = token.get('lastname', None)
    user = User(username=token.get('username', None),
                firstname=firstname,
                lastname=lastname,
                iss=token['iss'],
                sub=token['sub'])
    assert user.username == 'username'
    assert user.iss == 'issuer'
    assert user.sub == 'subject'
    assert user.firstname == 'given_name'
    assert user.lastname == 'family_name'