def test_validate_lti_old_timestamp(self):
request = Request(uri='https://example.com/lti',
http_method='POST',
body=self.read_data_file('lti_old_timestamp.txt'))
parameters = LTIAuthBackend._get_validated_lti_params_from_values( # pylint: disable=protected-access
request=request,
current_time=1436900000,
lti_consumer_valid=True,
lti_consumer_secret='secret',
lti_max_timestamp_age=10)
self.assertFalse(parameters)
def test_validate_lti_invalid_signature(self):
request = Request(
uri='https://example.com/lti',
http_method='POST',
body=self.read_data_file('lti_invalid_signature.txt')
)
parameters = LTIAuthBackend._get_validated_lti_params_from_values( # pylint: disable=protected-access
request=request, current_time=1436823554,
lti_consumer_valid=True, lti_consumer_secret='secret',
lti_max_timestamp_age=10
)
self.assertFalse(parameters)
def test_validate_lti_valid_request(self):
request = Request(uri='https://example.com/lti',
http_method='POST',
body=self.read_data_file('lti_valid_request.txt'))
parameters = LTIAuthBackend._get_validated_lti_params_from_values( # pylint: disable=protected-access
request=request,
current_time=1436823554,
lti_consumer_valid=True,
lti_consumer_secret='secret',
lti_max_timestamp_age=10)
self.assertTrue(parameters)
self.assertDictContainsSubset(
{
'custom_extra': 'parameter',
'user_id': '292832126'
}, parameters)
def test_validate_lti_valid_request_with_get_params(self):
request = Request(
uri='https://example.com/lti?user_id=292832126<i_version=LTI-1p0',
http_method='POST',
body=self.read_data_file('lti_valid_request_with_get_params.txt')
)
parameters = LTIAuthBackend._get_validated_lti_params_from_values( # pylint: disable=protected-access
request=request, current_time=1436823554,
lti_consumer_valid=True, lti_consumer_secret='secret',
lti_max_timestamp_age=10
)
self.assertTrue(parameters)
self.assertDictContainsSubset({
'custom_extra': 'parameter',
'user_id': '292832126'
}, parameters)
