diff options
author | Ib Lundgren <ib.lundgren@gmail.com> | 2013-06-18 21:28:15 +0100 |
---|---|---|
committer | Ib Lundgren <ib.lundgren@gmail.com> | 2013-06-18 21:28:15 +0100 |
commit | 1a972155fe1e678f44e08e7a355e87160d789160 (patch) | |
tree | 9cc8b820c01cdd3bc5a4d83fd8d5d13841d033bc /tests/oauth1/rfc5849/endpoints/test_resource.py | |
parent | 73a618068c70dc7698960f55c2ed5fc70074fde9 (diff) | |
download | oauthlib-1a972155fe1e678f44e08e7a355e87160d789160.tar.gz |
Resource token endpoint. #95
Diffstat (limited to 'tests/oauth1/rfc5849/endpoints/test_resource.py')
-rw-r--r-- | tests/oauth1/rfc5849/endpoints/test_resource.py | 78 |
1 files changed, 78 insertions, 0 deletions
diff --git a/tests/oauth1/rfc5849/endpoints/test_resource.py b/tests/oauth1/rfc5849/endpoints/test_resource.py new file mode 100644 index 0000000..0937fdb --- /dev/null +++ b/tests/oauth1/rfc5849/endpoints/test_resource.py @@ -0,0 +1,78 @@ +from __future__ import unicode_literals, absolute_import + +from mock import MagicMock +from ....unittest import TestCase + +from oauthlib.oauth1.rfc5849 import Client +from oauthlib.oauth1 import RequestValidator +from oauthlib.oauth1.rfc5849.endpoints import ResourceEndpoint + + +class ResourceEndpointTest(TestCase): + + def setUp(self): + self.validator = MagicMock(wraps=RequestValidator()) + self.validator.check_client_key.return_value = True + self.validator.check_access_token.return_value = True + self.validator.allowed_signature_methods = ['HMAC-SHA1'] + self.validator.get_client_secret.return_value = 'bar' + self.validator.get_access_token_secret.return_value = 'secret' + self.validator.timestamp_lifetime = 600 + self.validator.validate_client_key.return_value = True + self.validator.validate_access_token.return_value = True + self.validator.validate_timestamp_and_nonce.return_value = True + self.validator.validate_realm.return_value = True + self.validator.dummy_client = 'dummy' + self.validator.dummy_secret = 'dummy' + self.validator.dummy_access_token = 'dummy' + self.endpoint = ResourceEndpoint(self.validator) + self.client = Client('foo', + client_secret='bar', + resource_owner_key='token', + resource_owner_secret='secret') + self.uri, self.headers, self.body = self.client.sign( + 'https://i.b/protected_resource') + + def test_missing_parameters(self): + self.validator.check_access_token.return_value = False + v, r = self.endpoint.validate_protected_resource_request( + self.uri) + self.assertFalse(v) + + def test_check_access_token(self): + self.validator.check_access_token.return_value = False + v, r = self.endpoint.validate_protected_resource_request( + self.uri, headers=self.headers) + self.assertFalse(v) + + def test_validate_client_key(self): + self.validator.validate_client_key.return_value = False + v, r = self.endpoint.validate_protected_resource_request( + self.uri, headers=self.headers) + self.assertFalse(v) + + def test_validate_access_token(self): + self.validator.validate_access_token.return_value = False + v, r = self.endpoint.validate_protected_resource_request( + self.uri, headers=self.headers) + self.assertFalse(v) + + def test_validate_realm(self): + self.validator.validate_realm.return_value = False + v, r = self.endpoint.validate_protected_resource_request( + self.uri, headers=self.headers) + self.assertFalse(v) + + def test_validate_signature(self): + client = Client('foo', + resource_owner_key='token', + resource_owner_secret='secret') + _, headers, _ = client.sign(self.uri + '/extra') + v, r = self.endpoint.validate_protected_resource_request( + self.uri, headers=headers) + self.assertFalse(v) + + def test_valid_request(self): + v, r = self.endpoint.validate_protected_resource_request( + self.uri, headers=self.headers) + self.assertTrue(v) |