def test_verify_action(self): token = xsrf.XSRFToken('*****@*****.**', 'secret', current_time=1354160000) token_string = token.generate_token_string('action') token.verify_token_string(token_string, 'action') self.assertRaises( xsrf.XSRFTokenInvalid, token.verify_token_string, xsrf.XSRFToken('*****@*****.**', 'differentsecret', current_time=1354160000).generate_token_string())
def test_verify_action(self): token = xsrf.XSRFToken("*****@*****.**", "secret", current_time=1354160000) token_string = token.generate_token_string("action") token.verify_token_string(token_string, "action") self.assertRaises( xsrf.XSRFTokenInvalid, token.verify_token_string, xsrf.XSRFToken("*****@*****.**", "differentsecret", current_time=1354160000).generate_token_string(), )
def test_verify_time_not_int(self): token = xsrf.XSRFToken('*****@*****.**', 'secret') self.assertRaises( xsrf.XSRFTokenMalformed, token.verify_token_string, base64.b64encode('NODE|NOTINT'))
def test_verify_no_delimiter(self): token = xsrf.XSRFToken('*****@*****.**', 'secret') self.assertRaises( xsrf.XSRFTokenMalformed, token.verify_token_string, base64.b64encode('NODELIMITER'))
def test_verify_bad_base_64(self): token = xsrf.XSRFToken('*****@*****.**', 'secret') self.assertRaises( xsrf.XSRFTokenMalformed, token.verify_token_string, 'wrong!!')
def test_verify_time_not_int(self): token = xsrf.XSRFToken("*****@*****.**", "secret") self.assertRaises( xsrf.XSRFTokenMalformed, token.verify_token_string, base64.b64encode(b"NODE|NOTINT"), )
def test_verify_no_delimiter(self): token = xsrf.XSRFToken("*****@*****.**", "secret") self.assertRaises( xsrf.XSRFTokenMalformed, token.verify_token_string, base64.b64encode(b"NODELIMITER"), )
def test_verify_substring(self): """Tests that a substring of the correct token fails to verify.""" token = xsrf.XSRFToken('*****@*****.**', 'secret', current_time=1354160000) token_string = token.generate_token_string() test_token, test_time = base64.urlsafe_b64decode(token_string).split('|') test_string = base64.urlsafe_b64encode('|'.join([test_token[:-1], test_time])) self.assertRaises(xsrf.XSRFTokenInvalid, token.verify_token_string, test_string)
def test_verify_timeout(self): token = xsrf.XSRFToken('*****@*****.**', 'secret', current_time=1354160000) token_string = token.generate_token_string() token.verify_token_string(token_string, timeout=10, current_time=1354160010) self.assertRaises(xsrf.XSRFTokenExpiredException, token.verify_token_string, token_string, timeout=10, current_time=1354160011)
def test_verify_bad_base_64(self): token = xsrf.XSRFToken("*****@*****.**", "secret") self.assertRaises(xsrf.XSRFTokenMalformed, token.verify_token_string, "wrong!!")