Validator confirm_scopes becomes get_original_scopes. #182, #183

author: Ib Lundgren <ib.lundgren@gmail.com> 2013-06-21 11:30:42 +0100
committer: Ib Lundgren <ib.lundgren@gmail.com> 2013-06-21 11:30:42 +0100
commit: 035d46c73ab7feb4719e4642dafc9bb21aa8bd2c (patch)
tree: 32eda1466db3655d03d0ebdce760da774d85baa9 /tests
parent: 6d762fce70fcd4edc70358c4b7ef72591cc7518a (diff)
download: oauthlib-035d46c73ab7feb4719e4642dafc9bb21aa8bd2c.tar.gz
1 files changed, 24 insertions, 1 deletions
diff --git a/tests/oauth2/rfc6749/test_grant_types.py b/tests/oauth2/rfc6749/test_grant_types.py
index 932680b..3830d3b 100644
--- a/tests/oauth2/rfc6749/test_grant_types.py
+++ b/tests/oauth2/rfc6749/test_grant_types.py
@@ -202,12 +202,13 @@ class RefreshTokenGrantTest(TestCase):
         self.request.grant_type = 'refresh_token'
         self.request.refresh_token = 'lsdkfhj230'
         self.request.client = mock_client
-        self.request.scopes = ('mocked', 'scopes')
+        self.request.scope = 'foo'
         self.mock_validator = mock.MagicMock()
         self.auth = RefreshTokenGrant(
                 request_validator=self.mock_validator)
 
     def test_create_token_response(self):
+        self.mock_validator.get_original_scopes.return_value = ['foo', 'bar']
         bearer = BearerToken(self.mock_validator)
         uri, headers, body, status_code = self.auth.create_token_response(
                 self.request, bearer)
@@ -215,6 +216,28 @@ class RefreshTokenGrantTest(TestCase):
         self.assertIn('access_token', token)
         self.assertIn('token_type', token)
         self.assertIn('expires_in', token)
+        self.assertEqual(token['scope'], 'foo')
+
+    def test_create_token_inherit_scope(self):
+        self.request.scope = None
+        self.mock_validator.get_original_scopes.return_value = ['foo', 'bar']
+        bearer = BearerToken(self.mock_validator)
+        uri, headers, body, status_code = self.auth.create_token_response(
+                self.request, bearer)
+        token = json.loads(body)
+        self.assertIn('access_token', token)
+        self.assertIn('token_type', token)
+        self.assertIn('expires_in', token)
+        self.assertEqual(token['scope'], 'foo bar')
+
+    def test_invalid_scope(self):
+        self.mock_validator.get_original_scopes.return_value = ['baz']
+        bearer = BearerToken(self.mock_validator)
+        uri, headers, body, status_code = self.auth.create_token_response(
+                self.request, bearer)
+        token = json.loads(body)
+        self.assertEqual(token['error'], 'invalid_scope')
+        self.assertEqual(status_code, 401)
 
     def test_invalid_token(self):
         self.mock_validator.validate_refresh_token.return_value = False
author	Ib Lundgren <ib.lundgren@gmail.com>	2013-06-21 11:30:42 +0100
committer	Ib Lundgren <ib.lundgren@gmail.com>	2013-06-21 11:30:42 +0100
commit	035d46c73ab7feb4719e4642dafc9bb21aa8bd2c (patch)
tree	32eda1466db3655d03d0ebdce760da774d85baa9 /tests
parent	6d762fce70fcd4edc70358c4b7ef72591cc7518a (diff)
download	oauthlib-035d46c73ab7feb4719e4642dafc9bb21aa8bd2c.tar.gz