Home Explore Help
Sign In
SMusatov
/
ydb
mirror of https://github.com/ydb-platform/ydb.git
1
0
Fork 0
Files
Tree: b1860f19a3
Branches Tags
ydb
/
contrib
/
python
/
oauthlib
/
tests
/
oauth1
/
rfc5849
/
endpoints
/
test_request_token.py

test_request_token.py 3.8 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990 
  1. from unittest.mock import ANY, MagicMock
    2. 

  2. 

  3. from oauthlib.oauth1 import RequestValidator
    4. 

  4. from oauthlib.oauth1.rfc5849 import Client
    5. 

  5. from oauthlib.oauth1.rfc5849.endpoints import RequestTokenEndpoint
    6. 

  6. 

  7. from tests.unittest import TestCase
    8. 

  8. 

  9. 

  10. class RequestTokenEndpointTest(TestCase):
    11. 

  11. 

  12.     def setUp(self):
    13. 

  13.         self.validator = MagicMock(wraps=RequestValidator())
    14. 

  14.         self.validator.check_client_key.return_value = True
    15. 

  15.         self.validator.allowed_signature_methods = ['HMAC-SHA1']
    16. 

  16.         self.validator.get_client_secret.return_value = 'bar'
    17. 

  17.         self.validator.get_default_realms.return_value = ['foo']
    18. 

  18.         self.validator.timestamp_lifetime = 600
    19. 

  19.         self.validator.check_realms.return_value = True
    20. 

  20.         self.validator.validate_client_key.return_value = True
    21. 

  21.         self.validator.validate_requested_realms.return_value = True
    22. 

  22.         self.validator.validate_redirect_uri.return_value = True
    23. 

  23.         self.validator.validate_timestamp_and_nonce.return_value = True
    24. 

  24.         self.validator.dummy_client = 'dummy'
    25. 

  25.         self.validator.dummy_secret = 'dummy'
    26. 

  26.         self.validator.save_request_token = MagicMock()
    27. 

  27.         self.endpoint = RequestTokenEndpoint(self.validator)
    28. 

  28.         self.client = Client('foo', client_secret='bar', realm='foo',
    29. 

  29.                 callback_uri='https://c.b/cb')
    30. 

  30.         self.uri, self.headers, self.body = self.client.sign(
    31. 

  31.                 'https://i.b/request_token')
    32. 

  32. 

  33.     def test_check_redirect_uri(self):
    34. 

  34.         client = Client('foo')
    35. 

  35.         uri, headers, _ = client.sign(self.uri)
    36. 

  36.         h, b, s = self.endpoint.create_request_token_response(
    37. 

  37.                 uri, headers=headers)
    38. 

  38.         self.assertEqual(s, 400)
    39. 

  39.         self.assertIn('invalid_request', b)
    40. 

  40. 

  41.     def test_check_realms(self):
    42. 

  42.         self.validator.check_realms.return_value = False
    43. 

  43.         h, b, s = self.endpoint.create_request_token_response(
    44. 

  44.                 self.uri, headers=self.headers)
    45. 

  45.         self.assertEqual(s, 400)
    46. 

  46.         self.assertIn('invalid_request', b)
    47. 

  47. 

  48.     def test_validate_client_key(self):
    49. 

  49.         self.validator.validate_client_key.return_value = False
    50. 

  50.         h, b, s = self.endpoint.create_request_token_response(
    51. 

  51.                 self.uri, headers=self.headers)
    52. 

  52.         self.assertEqual(s, 401)
    53. 

  53. 

  54.     def test_validate_realms(self):
    55. 

  55.         self.validator.validate_requested_realms.return_value = False
    56. 

  56.         h, b, s = self.endpoint.create_request_token_response(
    57. 

  57.                 self.uri, headers=self.headers)
    58. 

  58.         self.assertEqual(s, 401)
    59. 

  59. 

  60.     def test_validate_redirect_uri(self):
    61. 

  61.         self.validator.validate_redirect_uri.return_value = False
    62. 

  62.         h, b, s = self.endpoint.create_request_token_response(
    63. 

  63.                 self.uri, headers=self.headers)
    64. 

  64.         self.assertEqual(s, 401)
    65. 

  65. 

  66.     def test_validate_signature(self):
    67. 

  67.         client = Client('foo', callback_uri='https://c.b/cb')
    68. 

  68.         _, headers, _ = client.sign(self.uri + '/extra')
    69. 

  69.         h, b, s = self.endpoint.create_request_token_response(
    70. 

  70.                 self.uri, headers=headers)
    71. 

  71.         self.assertEqual(s, 401)
    72. 

  72. 

  73.     def test_valid_request(self):
    74. 

  74.         h, b, s = self.endpoint.create_request_token_response(
    75. 

  75.                 self.uri, headers=self.headers)
    76. 

  76.         self.assertEqual(s, 200)
    77. 

  77.         self.assertIn('oauth_token', b)
    78. 

  78.         self.validator.validate_timestamp_and_nonce.assert_called_once_with(
    79. 

  79.              self.client.client_key, ANY, ANY, ANY,
    80. 

  80.              request_token=self.client.resource_owner_key)
    81. 

  81. 

  82.     def test_uri_provided_realm(self):
    83. 

  83.         client = Client('foo', callback_uri='https://c.b/cb',
    84. 

  84.                 client_secret='bar')
    85. 

  85.         uri = self.uri + '?realm=foo'
    86. 

  86.         _, headers, _ = client.sign(uri)
    87. 

  87.         h, b, s = self.endpoint.create_request_token_response(
    88. 

  88.                 uri, headers=headers)
    89. 

  89.         self.assertEqual(s, 200)
    90. 

  90.         self.assertIn('oauth_token', b)
    91.