def test_auth_include(monkeypatch): monkeypatch.setenv('WSGI_AUTH_CREDENTIALS', 'foo:bar') monkeypatch.setenv('WSGI_AUTH_PATHS', '/healthcheck') application = wsgi_basic_auth.BasicAuth(wsgi_app) app = TestApp(application) app.get('/', status=200) app.get('/healthcheck/foo', status=401)
def test_auth(monkeypatch): monkeypatch.setenv('WSGI_AUTH_CREDENTIALS', 'foo:bar') application = wsgi_basic_auth.BasicAuth(wsgi_app) app = TestApp(application) app.get('/', status=401) app.authorization = ('Basic', ('foo', 'bar')) app.get('/', status=200)
def test_auth_hash(monkeypatch): monkeypatch.setenv('WSGI_AUTH_CREDENTIALS', 'foo:$apr1$yIPw8J/l$0mPnNW9gbONm8oUgO5EUX1') # foo:bar application = wsgi_basic_auth.BasicAuth(wsgi_app, hash_schemes=['apr_md5_crypt']) app = TestApp(application) app.get('/', status=401) app.authorization = ('Basic', ('foo', 'baz')) app.get('/', status=401) app.authorization = ('Basic', ('foo', 'bar')) app.get('/', status=200)
def test_no_auth(monkeypatch): monkeypatch.delenv('WSGI_AUTH_CREDENTIALS', None) application = wsgi_basic_auth.BasicAuth(wsgi_app) app = TestApp(application) response = app.get('/') assert response.status_code == 200
import os from django.core.wsgi import get_wsgi_application os.environ.setdefault("DJANGO_SETTINGS_MODULE", "bugbounty.settings") application = get_wsgi_application() # Throw the whole site behind basic auth, if requested. This is temporary # until the site gets ATO'd. if 'WSGI_AUTH_CREDENTIALS' in os.environ: import wsgi_basic_auth application = wsgi_basic_auth.BasicAuth(application)