haiwen/seahub
1
0
Fork 0
mirror of https://github.com/haiwen/seahub.git synced 2025-04-27 19:05:16 +00:00
Code Issues Releases Wiki Activity
master
seahub/tests/api/test_auth.py
llj 13800cd8eb
Cleanup (#4437) 
* [cleanup] system admin: removed 'settings' related code & files

* [cleanup] system admin: removed 'statistics' related code & files

* [cleanup] system admin - users: removed unused code & files

* [cleanup] system admin - orgs: removed unused code & files

* [system admin / institutions] cleanup

* [system admin / notifications] cleanup

* [system admin / links] cleanup

* [system admin / logs] cleanup

* [system admin / virus scan] cleanup

* [system admin / invitations] cleanup

* system admin / terms] cleanup

* [system admin / users] cleanup

* [system admin] cleanup

* [system admin] cleanup

* [system admin] cleanup

* modification

* modification
2020-02-28 09:49:24 +08:00

121 lines
4.1 KiB
Python
Raw Permalink Blame History

#coding: UTF-8
"""
Test auth related api, such as login/logout.
"""
import os
import time
import requests
import pytest
from tests.common.common import USERNAME, PASSWORD, BASE_URL, SEAFILE_BASE_URL
from tests.common.utils import randstring, urljoin
from tests.api.urls import (
AUTH_PING_URL, TOKEN_URL, DOWNLOAD_REPO_URL, LOGOUT_DEVICE_URL,
CLIENT_LOGIN_TOKEN_URL
)
from tests.api.apitestbase import ApiTestBase
if not BASE_URL.endswith('/'):
BASE_URL = BASE_URL + '/'
TRAVIS = 'TRAVIS' in os.environ
def fake_ccnet_id():
return randstring(length=40)
class AuthTest(ApiTestBase):
"""This tests involves creating/deleting api tokens, so for this test we
use a specific auth token so that it won't affect other test cases.
"""
def test_auth_token_missing(self):
return self.get(AUTH_PING_URL, token=None, use_token=False,
expected=403)
def test_auth_token_is_empty(self):
return self.get(AUTH_PING_URL, token='', expected=401)
def test_auth_token_contains_space(self):
return self.get(AUTH_PING_URL, token='token with space', expected=401)
def test_random_auth_token(self):
return self.get(AUTH_PING_URL, token='randomtoken', expected=401)
@pytest.mark.xfail
def test_logout_device(self):
token = self._desktop_login()
self._do_auth_ping(token, expected=200)
with self.get_tmp_repo() as repo:
sync_token = self._clone_repo(token, repo.repo_id)
self._get_repo_info(sync_token, repo.repo_id)
self._logout(token)
self._do_auth_ping(token, expected=401)
# self._get_repo_info(sync_token, repo.repo_id, expected=400)
def test_generate_client_login_token(self):
url = self._get_client_login_url()
r = requests.get(url)
assert r.url == BASE_URL
r = requests.get(url)
assert r.url == urljoin(BASE_URL, 'accounts/login/?next=/'), \
'a client login token can only be used once'
@pytest.mark.skipif(not TRAVIS, reason="only run this test on travis builds") # pylint: disable=E1101
def test_client_login_token_should_expire_shortly(self):
url = self._get_client_login_url()
time.sleep(30)
r = requests.get(url)
assert r.url == urljoin(BASE_URL, 'accounts/login/?next=/'), \
'a client login should be expired after 30 seconds'
def test_client_login_token_redirect_to_next_url(self):
url = self._get_client_login_url()
url += '&next=/profile/'
r = requests.get(url)
assert r.url == urljoin(BASE_URL, '/profile/')
def test_client_login_token_wont_enter_sudo_mode(self):
url = self._get_client_login_url(admin=True)
url += '&next=/sys/info'
r = requests.get(url)
assert r.url == urljoin(BASE_URL, '/sys/sudo/?next=/sys/info/')
def _desktop_login(self):
data = {
'username': USERNAME,
'password': PASSWORD,
'platform': 'windows',
'device_id': fake_ccnet_id(),
'device_name': 'fake-device-name',
'client_version': '4.1.0',
'platform_version': '',
}
return self.post(TOKEN_URL, data=data, use_token=False).json()['token']
def _do_auth_ping(self, token, **kwargs):
return self.get(AUTH_PING_URL, token=token, **kwargs)
def _clone_repo(self, token, repo_id):
return self.get(DOWNLOAD_REPO_URL % repo_id, token=token).json()['token']
def _get_repo_info(self, sync_token, repo_id, **kwargs):
headers = {
'Seafile-Repo-Token': sync_token
}
url = urljoin(SEAFILE_BASE_URL,
'repo/%s/permission-check/?op=upload' % repo_id)
self.get(url, use_token=False, headers=headers, **kwargs)
def _logout(self, token):
self.post(LOGOUT_DEVICE_URL, token=token)
def _get_client_login_url(self, admin=False):
post = self.admin_post if admin else self.post
token = post(CLIENT_LOGIN_TOKEN_URL).json()['token']
assert len(token) == 32
return urljoin(BASE_URL, 'client-login/') + '?token=' + token
Reference in New Issue View Git Blame Copy Permalink