python/aiohttp-security
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Initial commit

Browse Source
This commit is contained in:
Andrew Svetlov
2015-07-08 20:30:24 +03:00
commit 7c702e5df9
26 changed files with 1802 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

148
tests/test_cookies_identity.py Normal file
View File

@@ -0,0 +1,148 @@
import asyncio
import socket
import unittest
import aiohttp
from aiohttp import web
from aiohttp_security import (remember, setup, forget,
AbstractAuthorizationPolicy)
from aiohttp_security.cookies_identity import CookiesIdentityPolicy
from aiohttp_security.api import IDENTITY_KEY
class Autz(AbstractAuthorizationPolicy):
@asyncio.coroutine
def permits(self, identity, permission, context=None):
pass
@asyncio.coroutine
def authorized_userid(self, identity):
pass
class TestCookiesIdentity(unittest.TestCase):
def setUp(self):
self.loop = asyncio.new_event_loop()
asyncio.set_event_loop(None)
self.client = aiohttp.ClientSession(loop=self.loop)
def tearDown(self):
self.client.close()
self.loop.run_until_complete(self.handler.finish_connections())
self.srv.close()
self.loop.run_until_complete(self.srv.wait_closed())
self.loop.close()
def find_unused_port(self):
s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
s.bind(('127.0.0.1', 0))
port = s.getsockname()[1]
s.close()
return port
@asyncio.coroutine
def create_server(self):
app = web.Application(loop=self.loop)
setup(app, CookiesIdentityPolicy(), Autz())
port = self.find_unused_port()
self.handler = app.make_handler(
debug=True, keep_alive_on=False)
srv = yield from self.loop.create_server(
self.handler, '127.0.0.1', port)
url = "http://127.0.0.1:{}".format(port)
self.srv = srv
return app, srv, url
def test_remember(self):
@asyncio.coroutine
def handler(request):
response = web.Response()
hdrs = yield from remember(request, 'Andrew')
response.headers.extend(hdrs)
return response
@asyncio.coroutine
def go():
app, srv, url = yield from self.create_server()
app.router.add_route('GET', '/', handler)
resp = yield from self.client.get(url+'/')
self.assertEqual(200, resp.status)
self.assertEqual('Andrew',
self.client.cookies['AIOHTTP_SECURITY'].value)
yield from resp.release()
self.loop.run_until_complete(go())
def test_identify(self):
@asyncio.coroutine
def create(request):
response = web.Response()
hdrs = yield from remember(request, 'Andrew')
response.headers.extend(hdrs)
return response
@asyncio.coroutine
def check(request):
policy = request.app[IDENTITY_KEY]
user_id = yield from policy.identify(request)
self.assertEqual('Andrew', user_id)
return web.Response()
@asyncio.coroutine
def go():
app, srv, url = yield from self.create_server()
app.router.add_route('GET', '/', check)
app.router.add_route('POST', '/', create)
resp = yield from self.client.post(url+'/')
self.assertEqual(200, resp.status)
yield from resp.release()
resp = yield from self.client.get(url+'/')
self.assertEqual(200, resp.status)
yield from resp.release()
self.loop.run_until_complete(go())
def test_forget(self):
@asyncio.coroutine
def index(request):
return web.Response()
@asyncio.coroutine
def login(request):
response = web.HTTPFound(location='/')
hdrs = yield from remember(request, 'Andrew')
response.headers.extend(hdrs)
return response
@asyncio.coroutine
def logout(request):
response = web.HTTPFound(location='/')
hdrs = yield from forget(request)
response.headers.extend(hdrs)
return response
@asyncio.coroutine
def go():
app, srv, url = yield from self.create_server()
app.router.add_route('GET', '/', index)
app.router.add_route('POST', '/login', login)
app.router.add_route('POST', '/logout', logout)
resp = yield from self.client.post(url+'/login')
self.assertEqual(200, resp.status)
self.assertEqual(url+'/', resp.url)
self.assertEqual('Andrew',
self.client.cookies['AIOHTTP_SECURITY'].value)
yield from resp.release()
resp = yield from self.client.post(url+'/logout')
self.assertEqual(200, resp.status)
self.assertEqual(url+'/', resp.url)
self.assertEqual('', self.client.cookies['AIOHTTP_SECURITY'].value)
yield from resp.release()
self.loop.run_until_complete(go())

161
tests/test_dict_autz.py Normal file
View File

@@ -0,0 +1,161 @@
import asyncio
import socket
import unittest
import aiohttp
from aiohttp import web
from aiohttp_security import (remember, setup,
authorized_userid, permits,
AbstractAuthorizationPolicy)
from aiohttp_security.cookies_identity import CookiesIdentityPolicy
class Autz(AbstractAuthorizationPolicy):
@asyncio.coroutine
def permits(self, identity, permission, context=None):
if identity == 'UserID':
return permission in {'read', 'write'}
else:
return False
@asyncio.coroutine
def authorized_userid(self, identity):
if identity == 'UserID':
return 'Andrew'
else:
return None
class TestCookiesIdentity(unittest.TestCase):
def setUp(self):
self.loop = asyncio.new_event_loop()
asyncio.set_event_loop(None)
self.client = aiohttp.ClientSession(loop=self.loop)
def tearDown(self):
self.client.close()
self.loop.run_until_complete(self.handler.finish_connections())
self.srv.close()
self.loop.run_until_complete(self.srv.wait_closed())
self.loop.close()
def find_unused_port(self):
s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
s.bind(('127.0.0.1', 0))
port = s.getsockname()[1]
s.close()
return port
@asyncio.coroutine
def create_server(self):
app = web.Application(loop=self.loop)
setup(app, CookiesIdentityPolicy(), Autz())
port = self.find_unused_port()
self.handler = app.make_handler(
debug=True, keep_alive_on=False)
srv = yield from self.loop.create_server(
self.handler, '127.0.0.1', port)
url = "http://127.0.0.1:{}".format(port)
self.srv = srv
return app, srv, url
def test_authorized_userid(self):
@asyncio.coroutine
def login(request):
response = web.HTTPFound(location='/')
hdrs = yield from remember(request, 'UserID')
response.headers.extend(hdrs)
return response
@asyncio.coroutine
def check(request):
userid = yield from authorized_userid(request)
self.assertEqual('Andrew', userid)
return web.Response(text=userid)
@asyncio.coroutine
def go():
app, srv, url = yield from self.create_server()
app.router.add_route('GET', '/', check)
app.router.add_route('POST', '/login', login)
resp = yield from self.client.post(url+'/login')
self.assertEqual(200, resp.status)
txt = yield from resp.text()
self.assertEqual('Andrew', txt)
yield from resp.release()
self.loop.run_until_complete(go())
def test_authorized_userid_not_authorized(self):
@asyncio.coroutine
def check(request):
userid = yield from authorized_userid(request)
self.assertIsNone(userid)
return web.Response()
@asyncio.coroutine
def go():
app, srv, url = yield from self.create_server()
app.router.add_route('GET', '/', check)
resp = yield from self.client.get(url+'/')
self.assertEqual(200, resp.status)
yield from resp.release()
self.loop.run_until_complete(go())
def test_permits(self):
@asyncio.coroutine
def login(request):
response = web.HTTPFound(location='/')
hdrs = yield from remember(request, 'UserID')
response.headers.extend(hdrs)
return response
@asyncio.coroutine
def check(request):
ret = yield from permits(request, 'read')
self.assertTrue(ret)
ret = yield from permits(request, 'write')
self.assertTrue(ret)
ret = yield from permits(request, 'unknown')
self.assertFalse(ret)
return web.Response()
@asyncio.coroutine
def go():
app, srv, url = yield from self.create_server()
app.router.add_route('GET', '/', check)
app.router.add_route('POST', '/login', login)
resp = yield from self.client.post(url+'/login')
self.assertEqual(200, resp.status)
yield from resp.release()
self.loop.run_until_complete(go())
def test_permits_unauthorized(self):
@asyncio.coroutine
def check(request):
ret = yield from permits(request, 'read')
self.assertFalse(ret)
ret = yield from permits(request, 'write')
self.assertFalse(ret)
ret = yield from permits(request, 'unknown')
self.assertFalse(ret)
return web.Response()
@asyncio.coroutine
def go():
app, srv, url = yield from self.create_server()
app.router.add_route('GET', '/', check)
resp = yield from self.client.get(url+'/')
self.assertEqual(200, resp.status)
yield from resp.release()
self.loop.run_until_complete(go())