1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
|
# -*- coding: utf-8 -*-
from __future__ import absolute_import, unicode_literals
from ....unittest import TestCase
import json
import mock
from oauthlib.common import Request
from oauthlib.oauth2.rfc6749.grant_types import ResourceOwnerPasswordCredentialsGrant
from oauthlib.oauth2.rfc6749.tokens import BearerToken
from oauthlib.oauth2.rfc6749.request_validator import RequestValidator
from oauthlib.oauth2.rfc6749.errors import (InvalidRequestError,
UnsupportedGrantTypeError,
InvalidGrantError,
InvalidClientError)
class ResourceOwnerPasswordCredentialsGrantTest(TestCase):
def setUp(self):
mock_client = mock.MagicMock()
mock_client.user.return_value = 'mocked user'
self.request = Request('http://a.b/path')
self.request.grant_type = 'password'
self.request.username = 'john'
self.request.password = 'doe'
self.request.client = mock_client
self.request.scopes = ('mocked', 'scopes')
self.mock_validator = mock.MagicMock()
self.auth = ResourceOwnerPasswordCredentialsGrant(
request_validator=self.mock_validator)
def set_client(self, request, *args, **kwargs):
request.client = mock.MagicMock()
request.client.client_id = 'mocked'
return True
def test_create_token_response(self):
bearer = BearerToken(self.mock_validator)
headers, body, status_code = self.auth.create_token_response(
self.request, bearer)
token = json.loads(body)
self.assertIn('access_token', token)
self.assertIn('token_type', token)
self.assertIn('expires_in', token)
self.assertIn('refresh_token', token)
# ensure client_authentication_required() is properly called
args, _ = self.mock_validator.client_authentication_required.call_args_list[0]
self.assertEqual(args, (self.request,))
# fail client authentication
self.mock_validator.validate_user = mock.Mock()
self.mock_validator.validate_user.return_value = True
self.mock_validator.authenticate_client = mock.Mock()
self.mock_validator.authenticate_client.return_value = False
status_code = self.auth.create_token_response(self.request, bearer)[2]
self.assertEqual(status_code, 400)
# mock client_authentication_required() returning False then fail
self.mock_validator.client_authentication_required = mock.Mock()
self.mock_validator.client_authentication_required.return_value = False
self.mock_validator.authenticate_client_id = mock.Mock()
self.mock_validator.authenticate_client_id.return_value = False
status_code = self.auth.create_token_response(self.request, bearer)[2]
self.assertEqual(status_code, 400)
def test_error_response(self):
pass
def test_scopes(self):
pass
def test_validate_token_request(self):
mock_validator = mock.MagicMock(spec=RequestValidator)
mock_validator.validate_user = self.set_client
auth = ResourceOwnerPasswordCredentialsGrant(
request_validator=mock_validator)
request = Request('http://a.b/path')
# no params
self.assertRaises(InvalidRequestError, auth.validate_token_request,
request)
# right params but with duplicates
request = Request('http://a.b/path/?scope=one', body='scope=another')
request.client_id = 'client_id'
request.username = 'user'
request.password = 'pass'
request.grant_type = 'password'
self.assertRaises(InvalidRequestError, auth.validate_token_request,
request)
# wrong grant type
request = Request('http://a.b/path')
request.client_id = 'client_id'
request.username = 'user'
request.password = 'pass'
request.grant_type = 'foo'
self.assertRaises(UnsupportedGrantTypeError,
auth.validate_token_request, request)
# wrong user
request.grant_type = 'password'
mock_validator.validate_user = mock.Mock()
mock_validator.validate_user.return_value = False
self.assertRaises(InvalidGrantError, auth.validate_token_request,
request)
# user ok but request.client.client_id missing
mock_validator.validate_user.return_value = True
request.client = mock.Mock()
del request.client.client_id
self.assertRaises(NotImplementedError, auth.validate_token_request,
request)
# everything fine
request.client = mock.Mock()
mock_validator.validate_grant_type.return_value = True
auth.validate_token_request(request)
|