def test_18_challenges(self):
db_token = Token.query.filter_by(serial=self.serial1).first()
token = TokenClass(db_token)
db_token.set_pin("test")
# No challenge request
req = token.is_challenge_request("test", User(login="******",
realm=self.realm1))
self.assertFalse(req, req)
# A challenge request
req = token.is_challenge_request("test",
User(login="******",
realm=self.realm1),
{"data": "a challenge"})
self.assertTrue(req, req)
resp = token.is_challenge_response(User(login="******",
realm=self.realm1),
"test123456")
self.assertFalse(resp, resp)
resp = token.is_challenge_response(User(login="******",
realm=self.realm1),
"test123456",
options={"transaction_id": "123456789"})
self.assertTrue(resp, resp)
# test if challenge is valid
C = Challenge("S123455", transaction_id="tid", challenge="Who are you?")
C.save()
self.assertTrue(C.is_valid())
def test_18_challenges(self):
db_token = Token.query.filter_by(serial=self.serial1).first()
token = TotpTokenClass(db_token)
resp = token.is_challenge_response(
User(login="******", realm=self.realm1), "test123456")
self.assertFalse(resp, resp)
transaction_id = "123456789"
C = Challenge(self.serial1,
transaction_id=transaction_id,
challenge="Who are you?")
C.save()
resp = token.is_challenge_response(
User(login="******", realm=self.realm1),
"test123456",
options={"transaction_id": transaction_id})
self.assertTrue(resp, resp)
# test if challenge is valid
C.is_valid()
def test_18_challenges(self):
db_token = Token.query.filter_by(serial=self.serial1).first()
token = TokenClass(db_token)
transaction_id = "123456789"
db_token.set_pin("test")
# No challenge request, since we have the wrong pin
req = token.is_challenge_request(
"testX", User(login="******", realm=self.realm1))
self.assertFalse(req, req)
# A challenge request, since we have the correct pin
req = token.is_challenge_request(
"test", User(login="******", realm=self.realm1))
self.assertTrue(req, req)
resp = token.is_challenge_response(
User(login="******", realm=self.realm1), "test123456")
self.assertFalse(resp, resp)
# A the token has not DB entry in the challenges table, basically
# "is_cahllenge_response"
resp = token.is_challenge_response(
User(login="******", realm=self.realm1),
"test123456",
options={"transaction_id": transaction_id})
self.assertTrue(resp)
# ... but is does not "has_db_challenge_response"
resp = token.has_db_challenge_response(
User(login="******", realm=self.realm1),
"test123456",
options={"transaction_id": transaction_id})
self.assertFalse(resp)
# Create a challenge
C = Challenge(serial=self.serial1,
transaction_id=transaction_id,
challenge="12")
C.save()
resp = token.is_challenge_response(
User(login="******", realm=self.realm1),
"test123456",
options={"transaction_id": transaction_id})
self.assertTrue(resp)
# test if challenge is valid
self.assertTrue(C.is_valid())
def test_18_challenges(self):
db_token = Token.query.filter_by(serial=self.serial1).first()
token = TokenClass(db_token)
transaction_id = "123456789"
db_token.set_pin("test")
# No challenge request
req = token.is_challenge_request(
"test", User(login="******", realm=self.realm1))
self.assertFalse(req, req)
# A challenge request
req = token.is_challenge_request(
"test", User(login="******", realm=self.realm1),
{"data": "a challenge"})
self.assertTrue(req, req)
resp = token.is_challenge_response(
User(login="******", realm=self.realm1), "test123456")
self.assertFalse(resp, resp)
resp = token.is_challenge_response(
User(login="******", realm=self.realm1),
"test123456",
options={"transaction_id": transaction_id})
# The token has not DB entry in the challenges table
self.assertFalse(resp)
# Create a challenge
C = Challenge(serial=self.serial1,
transaction_id=transaction_id,
challenge="12")
C.save()
resp = token.is_challenge_response(
User(login="******", realm=self.realm1),
"test123456",
options={"transaction_id": transaction_id})
self.assertTrue(resp)
# test if challenge is valid
self.assertTrue(C.is_valid())
