def setup_client(self): http_client = SynchronousHttpClient() http_client.set_basic_auth( urlparse(self.http_uri).netloc.split(':')[0], self.ari_user, self.ari_pass) self.client = SwaggerClient(self.ari_url, http_client=http_client) logger.info('ARI client setup done.')
def test_auth_leak(self): httpretty.register_uri(httpretty.GET, "http://hackerz.py", body='expected') uut = SynchronousHttpClient() uut.set_basic_auth("swagger.py", 'unit', 'peekaboo') resp = uut.request('GET', "http://hackerz.py", params={'foo': 'bar'}) self.assertEqual(200, resp.status_code) self.assertEqual('expected', resp.text) self.assertEqual({'foo': ['bar']}, httpretty.last_request().querystring) self.assertTrue( httpretty.last_request().headers.get('Authorization') is None)
def test_auth_leak(self): httpretty.register_uri( httpretty.GET, "http://hackerz.py", body='expected') uut = SynchronousHttpClient() uut.set_basic_auth("swagger.py", 'unit', 'peekaboo') resp = uut.request('GET', "http://hackerz.py", params={'foo': 'bar'}) self.assertEqual(200, resp.status_code) self.assertEqual('expected', resp.text) self.assertEqual({'foo': ['bar']}, httpretty.last_request().querystring) self.assertTrue( httpretty.last_request().headers.get('Authorization') is None)
def test_basic_auth(self): httpretty.register_uri( httpretty.GET, "http://swagger.py/client-test", body='expected') uut = SynchronousHttpClient() uut.set_basic_auth("swagger.py", 'unit', 'peekaboo') resp = uut.request('GET', "http://swagger.py/client-test", params={'foo': 'bar'}) self.assertEqual(200, resp.status_code) self.assertEqual('expected', resp.text) self.assertEqual({'foo': ['bar']}, httpretty.last_request().querystring) self.assertEqual('Basic %s' % base64.b64encode("unit:peekaboo"), httpretty.last_request().headers.get('Authorization'))
def test_basic_auth(self): httpretty.register_uri(httpretty.GET, "http://swagger.py/client-test", body='expected') uut = SynchronousHttpClient() uut.set_basic_auth("swagger.py", 'unit', 'peekaboo') resp = uut.request('GET', "http://swagger.py/client-test", params={'foo': 'bar'}) self.assertEqual(200, resp.status_code) self.assertEqual('expected', resp.text) self.assertEqual({'foo': ['bar']}, httpretty.last_request().querystring) self.assertEqual('Basic %s' % base64.b64encode("unit:peekaboo"), httpretty.last_request().headers.get('Authorization'))
def test_auth_leak(self): httpretty.register_uri(httpretty.GET, "http://hackerz.py", body='expected') client = SynchronousHttpClient() client.set_basic_auth("swagger.py", 'unit', 'peekaboo') params = self._default_params() params['params'] = {'foo': 'bar'} params['url'] = 'http://hackerz.py' resp = client.start_request(params).wait() self.assertEqual(200, resp.status_code) self.assertEqual('expected', resp.text) self.assertEqual({'foo': ['bar']}, httpretty.last_request().querystring) self.assertTrue( httpretty.last_request().headers.get('Authorization') is None)