def setUp(self):
self.connection = StrictRedis()
self.connection.flushall()
self.guard = ContributionsGuard(self.connection)
self.anon_user = {'user_id': None, 'user_ip': '127.0.0.1'}
self.auth_user = {'user_id': 33, 'user_ip': None}
self.task = Task(id=22)
def new_task(project_id):
"""Return a new task for a project."""
# Check if the request has an arg:
try:
tasks = _retrieve_new_task(project_id)
if type(tasks) is Response:
return tasks
# If there is a task for the user, return it
if tasks is not None:
guard = ContributionsGuard(sentinel.master)
for task in tasks:
guard.stamp(task, get_user_id_or_ip())
data = [task.dictize() for task in tasks]
if len(data) == 0:
response = make_response(json.dumps({}))
elif len(data) == 1:
response = make_response(json.dumps(data[0]))
else:
response = make_response(json.dumps(data))
response.mimetype = "application/json"
return response
return Response(json.dumps({}), mimetype="application/json")
except Exception as e:
print(e)
return error.format_exception(e, target='project', action='GET')
def new_task(project_id):
"""Return a new task for a project."""
# Check if the request has an arg:
try:
tasks = _retrieve_new_task(project_id)
if type(tasks) is Response:
return tasks
# If there is a task for the user, return it
if tasks is not None:
guard = ContributionsGuard(sentinel.master)
for task in tasks:
guard.stamp(task, get_user_id_or_ip())
data = [task.dictize() for task in tasks]
if len(data) == 0:
response = make_response(json.dumps({}))
elif len(data) == 1:
response = make_response(json.dumps(data[0]))
else:
response = make_response(json.dumps(data))
response.mimetype = "application/json"
return response
return Response(json.dumps({}), mimetype="application/json")
except Exception as e:
return error.format_exception(e, target='project', action='GET')
def setUp(self):
sentinel = Sentinel(app=FakeApp())
self.connection = sentinel.master
self.connection.flushall()
self.guard = ContributionsGuard(self.connection)
self.anon_user = {'user_id': None, 'user_ip': '127.0.0.1'}
self.auth_user = {'user_id': 33, 'user_ip': None}
self.task = Task(id=22)
def setUp(self):
sentinel = Sentinel(settings_test.REDIS_SENTINEL)
db = getattr(settings_test, 'REDIS_DB', 0)
self.connection = sentinel.master_for('redis-master', db=db)
self.connection.flushall()
self.guard = ContributionsGuard(self.connection)
self.anon_user = {'user_id': None, 'user_ip': '127.0.0.1'}
self.auth_user = {'user_id': 33, 'user_ip': None}
self.task = Task(id=22)
def new_task(project_id):
"""Return a new task for a project."""
# Check if the request has an arg:
try:
task = _retrieve_new_task(project_id)
# If there is a task for the user, return it
if task is not None:
guard = ContributionsGuard(sentinel.master)
guard.stamp(task, get_user_id_or_ip())
response = make_response(json.dumps(task.dictize()))
response.mimetype = "application/json"
return response
return Response(json.dumps({}), mimetype="application/json")
except Exception as e:
return error.format_exception(e, target='project', action='GET')
def test_taskrun_submission(self):
""" Test submissions with locked scheduler """
owner = UserFactory.create(id=500)
user = UserFactory.create(id=501)
project = ProjectFactory.create(owner=owner)
project.info['sched'] = Schedulers.locked
project_repo.save(project)
task1 = TaskFactory.create(project=project, info='task 1', n_answers=1)
task2 = TaskFactory.create(project=project, info='task 2', n_answers=1)
self.set_proj_passwd_cookie(project, user)
res = self.app.get('api/project/{}/newtask?api_key={}'
.format(project.id, user.api_key))
rec_task1 = json.loads(res.data)
res = self.app.get('api/project/{}/newtask?api_key={}'
.format(project.id, owner.api_key))
rec_task2 = json.loads(res.data)
# users get different tasks
assert rec_task1['info'] != rec_task2['info']
# submit answer for the wrong task
# stamp contribution guard first
guard = ContributionsGuard(sentinel.master)
guard.stamp(task1, {'user_id': owner.id})
tr = {
'project_id': project.id,
'task_id': task1.id,
'info': 'hello'
}
res = self.app.post('api/taskrun?api_key={}'.format(owner.api_key),
data=json.dumps(tr))
assert res.status_code == 403, res.status_code
# submit answer for the right task
tr['task_id'] = task2.id
res = self.app.post('api/taskrun?api_key={}'.format(owner.api_key),
data=json.dumps(tr))
assert res.status_code == 200, res.status_code
tr['task_id'] = task1.id
res = self.app.post('api/taskrun?api_key={}'.format(user.api_key),
data=json.dumps(tr))
assert res.status_code == 200, res.status_code
def setUp(self):
self.connection = StrictRedis()
self.connection.flushall()
self.guard = ContributionsGuard(self.connection)
self.anon_user = {'user_id': None, 'user_ip': '127.0.0.1'}
self.auth_user = {'user_id': 33, 'user_ip': None}
self.task = Task(id=22)
def _update_object(self, taskrun):
"""Update task_run object with user id or ip."""
task = task_repo.get_task(taskrun.task_id)
guard = ContributionsGuard(sentinel.master)
self._validate_project_and_task(taskrun, task)
self._ensure_task_was_requested(task, guard)
self._add_user_info(taskrun)
self._add_timestamps(taskrun, task, guard)
def setUp(self):
sentinel = Sentinel(settings_test.REDIS_SENTINEL)
db = getattr(settings_test, 'REDIS_DB', 0)
self.connection = sentinel.master_for('mymaster', db=db)
self.connection.flushall()
self.guard = ContributionsGuard(self.connection)
self.anon_user = {'user_id': None, 'user_ip': '127.0.0.1'}
self.auth_user = {'user_id': 33, 'user_ip': None}
self.task = Task(id=22)
def _update_object(self, taskrun):
"""Update task_run object with user id or ip."""
self.check_can_post(taskrun.project_id,
taskrun.task_id, get_user_id_or_ip())
task = task_repo.get_task(taskrun.task_id)
guard = ContributionsGuard(sentinel.master)
self._validate_project_and_task(taskrun, task)
self._ensure_task_was_requested(task, guard)
self._add_user_info(taskrun)
self._add_created_timestamp(taskrun, task, guard)
def new_task(project_id):
"""Return a new task for a project."""
# Check if the request has an arg:
try:
tasks, timeout, cookie_handler = _retrieve_new_task(project_id)
if type(tasks) is Response:
return tasks
user_id_or_ip = get_user_id_or_ip()
# If there is a task for the user, return it
if tasks is not None:
guard = ContributionsGuard(sentinel.master, timeout=timeout)
for task in tasks:
guard.stamp(task, user_id_or_ip)
if not guard.check_task_presented_timestamp(
task, user_id_or_ip):
guard.stamp_presented_time(task, user_id_or_ip)
else:
# user returning back for the same task
# original presented time has not expired yet
# to continue original presented time, extend expiry
guard.extend_task_presented_timestamp_expiry(
task, user_id_or_ip)
data = [
TaskAuth.dictize_with_access_control(task) for task in tasks
]
add_task_signature(data)
if len(data) == 0:
response = make_response(json.dumps({}))
elif len(data) == 1:
response = make_response(json.dumps(data[0]))
else:
response = make_response(json.dumps(data))
response.mimetype = "application/json"
cookie_handler(response)
return response
return Response(json.dumps({}), mimetype="application/json")
except Exception as e:
return error.format_exception(e, target='project', action='GET')
class TestContributionsGuard(object):
def setUp(self):
sentinel = Sentinel(settings_test.REDIS_SENTINEL)
db = getattr(settings_test, 'REDIS_DB', 0)
self.connection = sentinel.master_for('redis-master', db=db)
self.connection.flushall()
self.guard = ContributionsGuard(self.connection)
self.anon_user = {'user_id': None, 'user_ip': '127.0.0.1'}
self.auth_user = {'user_id': 33, 'user_ip': None}
self.task = Task(id=22)
def test_stamp_registers_specific_user_id_and_task(self):
key = b'pybossa:task_requested:user:33:task:22'
self.guard.stamp(self.task, self.auth_user)
assert key in list(self.connection.keys()), list(
self.connection.keys())
def test_stamp_registers_specific_user_ip_and_task_if_no_id_provided(self):
key = b'pybossa:task_requested:user:127.0.0.1:task:22'
self.guard.stamp(self.task, self.anon_user)
assert key in list(self.connection.keys()), list(
self.connection.keys())
def test_stamp_expires_in_one_hour(self):
key = 'pybossa:task_requested:user:33:task:22'
ONE_HOUR = 60 * 60
self.guard.stamp(self.task, self.auth_user)
assert self.connection.ttl(key) == ONE_HOUR, self.connection.ttl(key)
@patch('pybossa.contributions_guard.make_timestamp')
def test_stamp_adds_a_timestamp_when_the_task_is_stamped(
self, make_timestamp):
make_timestamp.return_value = b'now'
key = b'pybossa:task_requested:user:127.0.0.1:task:22'
self.guard.stamp(self.task, self.anon_user)
assert self.connection.get(key) == b'now', self.connection.get(key)
def test_check_task_stamped_returns_False_for_non_stamped_task(self):
assert self.guard.check_task_stamped(self.task,
self.auth_user) is False
def test_check_task_stamped_returns_True_for_auth_user_who_requested_task(
self):
self.guard.stamp(self.task, self.auth_user)
assert self.guard.check_task_stamped(self.task, self.auth_user) is True
def test_check_task_stamped_returns_True_for_anon_user_who_requested_task(
self):
self.guard.stamp(self.task, self.anon_user)
assert self.guard.check_task_stamped(self.task, self.anon_user) is True
def test_retrieve_timestamp_returns_None_for_non_stamped_task(self):
assert self.guard.retrieve_timestamp(self.task, self.auth_user) is None
@patch('pybossa.contributions_guard.make_timestamp')
def test_retrieve_timestamp_returns_the_timestamp_for_stamped_task(
self, make_timestamp):
make_timestamp.return_value = 'now'
self.guard.stamp(self.task, self.auth_user)
assert self.guard.retrieve_timestamp(self.task,
self.auth_user) == 'now'
class TestContributionsGuard(object):
def setUp(self):
self.connection = StrictRedis()
self.connection.flushall()
self.guard = ContributionsGuard(self.connection)
self.anon_user = {'user_id': None, 'user_ip': '127.0.0.1'}
self.auth_user = {'user_id': 33, 'user_ip': None}
self.task = Task(id=22)
def test_stamp_registers_specific_user_id_and_task(self):
key = 'pybossa:task_requested:user:33:task:22'
self.guard.stamp(self.task, self.auth_user)
assert key in self.connection.keys(), self.connection.keys()
def test_stamp_registers_specific_user_ip_and_task_if_no_id_provided(self):
key = 'pybossa:task_requested:user:127.0.0.1:task:22'
self.guard.stamp(self.task, self.anon_user)
assert key in self.connection.keys(), self.connection.keys()
def test_stamp_expires_in_one_hour(self):
key = 'pybossa:task_requested:user:33:task:22'
ONE_HOUR = 60 * 60
self.guard.stamp(self.task, self.auth_user)
assert self.connection.ttl(key) == ONE_HOUR, self.connection.ttl(key)
@patch('pybossa.contributions_guard.make_timestamp')
def test_stamp_adds_a_timestamp_when_the_task_is_stamped(self, make_timestamp):
make_timestamp.return_value = "now"
key = 'pybossa:task_requested:user:127.0.0.1:task:22'
self.guard.stamp(self.task, self.anon_user)
assert self.connection.get(key) == 'now'
def test_check_task_stamped_returns_False_for_non_stamped_task(self):
assert self.guard.check_task_stamped(self.task, self.auth_user) is False
def test_check_task_stamped_returns_True_for_auth_user_who_requested_task(self):
self.guard.stamp(self.task, self.auth_user)
assert self.guard.check_task_stamped(self.task, self.auth_user) is True
def test_check_task_stamped_returns_True_for_anon_user_who_requested_task(self):
self.guard.stamp(self.task, self.anon_user)
assert self.guard.check_task_stamped(self.task, self.anon_user) is True
def test_retrieve_timestamp_returns_None_for_non_stamped_task(self):
assert self.guard.retrieve_timestamp(self.task, self.auth_user) is None
@patch('pybossa.contributions_guard.make_timestamp')
def test_retrieve_timestamp_returs_the_timestamp_for_stamped_task(self, make_timestamp):
make_timestamp.return_value = "now"
self.guard.stamp(self.task, self.auth_user)
assert self.guard.retrieve_timestamp(self.task, self.auth_user) == 'now'
class TestContributionsGuard(object):
def setUp(self):
self.connection = StrictRedis()
self.connection.flushall()
self.guard = ContributionsGuard(self.connection)
self.anon_user = {'user_id': None, 'user_ip': '127.0.0.1'}
self.auth_user = {'user_id': 33, 'user_ip': None}
self.task = Task(id=22)
def test_stamp_registers_specific_user_id_and_task(self):
key = 'pybossa:task_requested:user:33:task:22'
self.guard.stamp(self.task, self.auth_user)
assert key in self.connection.keys(), self.connection.keys()
def test_stamp_registers_specific_user_ip_and_task_if_no_id_provided(self):
key = 'pybossa:task_requested:user:127.0.0.1:task:22'
self.guard.stamp(self.task, self.anon_user)
assert key in self.connection.keys(), self.connection.keys()
def test_stamp_expires_in_one_hour(self):
key = 'pybossa:task_requested:user:33:task:22'
ONE_HOUR = 60 * 60
self.guard.stamp(self.task, self.auth_user)
assert self.connection.ttl(key) == ONE_HOUR, self.connection.ttl(key)
@patch('pybossa.contributions_guard.make_timestamp')
def test_stamp_adds_a_timestamp_when_the_task_is_stamped(
self, make_timestamp):
make_timestamp.return_value = "now"
key = 'pybossa:task_requested:user:127.0.0.1:task:22'
self.guard.stamp(self.task, self.anon_user)
assert self.connection.get(key) == 'now'
def test_check_task_stamped_returns_False_for_non_stamped_task(self):
assert self.guard.check_task_stamped(self.task,
self.auth_user) is False
def test_check_task_stamped_returns_True_for_auth_user_who_requested_task(
self):
self.guard.stamp(self.task, self.auth_user)
assert self.guard.check_task_stamped(self.task, self.auth_user) is True
def test_check_task_stamped_returns_True_for_anon_user_who_requested_task(
self):
self.guard.stamp(self.task, self.anon_user)
assert self.guard.check_task_stamped(self.task, self.anon_user) is True
def test_retrieve_timestamp_returns_None_for_non_stamped_task(self):
assert self.guard.retrieve_timestamp(self.task, self.auth_user) is None
@patch('pybossa.contributions_guard.make_timestamp')
def test_retrieve_timestamp_returs_the_timestamp_for_stamped_task(
self, make_timestamp):
make_timestamp.return_value = "now"
self.guard.stamp(self.task, self.auth_user)
assert self.guard.retrieve_timestamp(self.task,
self.auth_user) == 'now'
