def setup_class(self):
# Setup a server
self.server_gnupg_home = get_temporary_workdir()
self.server_gpg = create_gpg(self.server_gnupg_home.name)
self.server_passphrase = 'server-sicrit-passphrase'
input_data = self.server_gpg.gen_key_input(
key_length=1024,
passphrase=self.server_passphrase,
name_email='*****@*****.**')
# Generate the key, making sure it worked
self.server_key = self.server_gpg.gen_key(input_data)
assert self.server_key.fingerprint
# Export the key, making sure it worked
self.server_keydata = self.server_gpg.export_keys(
self.server_key.fingerprint,
armor=True,
minimal=True,
passphrase=self.server_passphrase)
assert self.server_keydata
# Setup a user
self.gnupg_home = get_temporary_workdir()
self.gpg = create_gpg(self.gnupg_home.name)
self.ga = GPGAuthSession(self.gpg, 'https://inexistant.example.com/',
'/auth/')
self.user_passphrase = 'user-sicrit-passphrase'
input_data = self.gpg.gen_key_input(
key_length=1024,
passphrase=self.user_passphrase,
name_email='*****@*****.**')
# test_user_fingerprint_raises_without_key
with pytest.raises(GPGAuthException):
assert self.ga.user_fingerprint
# Generate the key, making sure it worked
self.user_key = self.gpg.gen_key(input_data)
assert self.user_key.fingerprint
# Use private API to set the passphrase
self.ga._user_passphrase = self.user_passphrase
# Export the user key
self.user_keydata = self.gpg.export_keys(self.user_key.fingerprint,
armor=True,
minimal=True)
assert self.user_keydata
# … and import it in the server keyring
import_result = self.server_gpg.import_keys(self.user_keydata)
assert self.user_key.fingerprint in import_result.fingerprints
def test_import_user_private_key_from_file_works(caplog):
gpg_generator_home = get_temporary_workdir()
gpg_generator = create_gpg(gpg_generator_home.name)
# Generate a key
passphrase = 'test-passphrase'
input_data = gpg_generator.gen_key_input(key_length=1024,
passphrase=passphrase)
# Generate the key, making sure it worked
key = gpg_generator.gen_key(input_data)
assert key.fingerprint
# Export the key, making sure it worked
key_asc = gpg_generator.export_keys(key.fingerprint,
armor=True,
minimal=True,
secret=True,
passphrase=passphrase)
assert key_asc
# Create a temporary file, and use it
with NamedTemporaryFile(mode='w') as private_key_file:
private_key_file.write(key_asc)
private_key_file.flush()
# Setup a different gpg home
gpg_home = get_temporary_workdir()
gpg = create_gpg(gpg_home.name)
caplog.set_level(logging.INFO)
imported_fingerprint = import_user_private_key_from_file(
gpg, private_key_file.name)
# Check that it really worked
assert imported_fingerprint == key.fingerprint
# That we logged what we wanted
assert caplog.record_tuples == [
('requests_gpgauthlib.utils', logging.INFO,
'Importing the user private key; password prompt expected'),
('requests_gpgauthlib.utils', logging.INFO,
'GPG key 0x%s successfully imported' % key.fingerprint),
# FIXME: Check why that message is output twice
('requests_gpgauthlib.utils', logging.INFO,
'GPG key 0x%s successfully imported' % key.fingerprint)
]
def cli(ctx: Any, verbose: bool) -> None:
"""
Passbolt CLI.
"""
if verbose:
levels = {1: logging.WARNING, 2: logging.INFO, 3: logging.DEBUG}
logging.basicConfig(level=levels.get(verbose, logging.ERROR))
if 'config' not in ctx.obj:
config_path = get_config_path()
try:
ctx.obj['config'] = parse_config(config_path)
except FileNotFoundError:
ctx.obj['config'] = create_config_file(config_path, config_values_wizard())
if 'gpg' not in ctx.obj:
ctx.obj['gpg'] = create_gpg(get_workdir())
def test_import_user_private_key_from_empty_file_raises():
gpghome = get_temporary_workdir()
gpg = create_gpg(gpghome.name)
with NamedTemporaryFile(mode='w') as empty_key_file:
with pytest.raises(GPGAuthKeyImportError):
import_user_private_key_from_file(gpg, empty_key_file.name)
def test_import_user_private_key_from_inexistant_file_raises():
gpghome = get_temporary_workdir()
gpg = create_gpg(gpghome.name)
with pytest.raises(FileNotFoundError):
import_user_private_key_from_file(gpg, '/inexistant')
def test_create_gpg_has_its_home_where_we_say_we_want_it():
workdir = get_temporary_workdir()
gpg = create_gpg(workdir.name)
assert workdir.name in gpg.gnupghome
def test_create_gpg_gives_a_GPG_object():
workdir = get_temporary_workdir()
assert isinstance(create_gpg(workdir.name), GPG)
