# -*- coding: utf-8 -* # Cork - Authentication module for the Bottle web framework # Copyright (C) 2013 Federico Ceratto and others, see AUTHORS file. # Released under LGPLv3+ license, see LICENSE.txt # # Functional testing - test the Cork module against diffent database backends from base64 import b64encode, b64decode from pytest import raises import bottle import mock import os import pytest import time from cork import Cork, AAAException, AuthException from cork.backends import JsonBackend from cork.backends import MongoDBBackend from cork.backends import SQLiteBackend from cork.backends import SqlAlchemyBackend from conftest import assert_is_redirect try: import pymongo pymongo_available = True except ImportError: pymongo_available = False try: import MySQLdb MySQLdb_available = True except ImportError: MySQLdb_available = False ### Mocked classes class MockedSession(object): """Mock Beaker session """ def __init__(self, username=None): self.__username = username self.__saved = False def get(self, k, default): assert k in ('username') if self.__username is None: return default return self.__username def __getitem__(self, k): assert k in ('username') if self.__username is None: raise KeyError() return self.__username def __setitem__(self, k, v): assert k in ('username') self.__username = v self.__saved = False def delete(self): """Used during logout to delete the current session""" self.__username = None def save(self): self.__saved = True #TODO: implement tests around MockedSession __saved class MockedSessionCork(Cork): """Mocked Cork instance where the session is replaced with MockedSession """ @property def _beaker_session(self): return self._mocked_beaker_session ### Fixtures and helpers ## Backends def setup_sqlite_db(request): # in-memory SQLite DB using the SQLiteBackend backend module. b = SQLiteBackend(':memory:', initialize=True) b.connection.executescript(""" INSERT INTO users (username, email_addr, desc, role, hash, creation_date) VALUES ( 'admin', 'admin@localhost.local', 'admin test user', 'admin', 'cLzRnzbEwehP6ZzTREh3A4MXJyNo+TV8Hs4//EEbPbiDoo+dmNg22f2RJC282aSwgyWv/O6s3h42qrA6iHx8yfw=', '2012-10-28 20:50:26.286723' ); INSERT INTO roles (role, level) VALUES ('special', 200); INSERT INTO roles (role, level) VALUES ('admin', 100); INSERT INTO roles (role, level) VALUES ('editor', 60); INSERT INTO roles (role, level) VALUES ('user', 50); """) return b def setup_json_db(request, tmpdir): # Setup test directory with valid JSON files and return JsonBackend instance tmpdir.join('users.json').write("""{"admin": {"email_addr": "admin@localhost.local", "desc": null, "role": "admin", "hash": "69f75f38ac3bfd6ac813794f3d8c47acc867adb10b806e8979316ddbf6113999b6052efe4ba95c0fa9f6a568bddf60e8e5572d9254dbf3d533085e9153265623", "creation_date": "2012-04-09 14:22:27.075596", "last_login": "2012-10-28 20:50:26.286723"}}""") tmpdir.join('roles.json').write("""{"special": 200, "admin": 100, "user": 50, "editor": 60}""") tmpdir.join('register.json').write("""{}""") return JsonBackend(tmpdir) def setup_sqlalchemy_with_sqlite_in_memory_db(request): # Setup an SqlAlchemyBackend backend using an in-memory SQLite DB mb = SqlAlchemyBackend('sqlite:///:memory:', initialize=True) ## Purge DB mb._drop_all_tables() assert len(mb.roles) == 0 assert len(mb.users) == 0 # Create roles mb.roles.insert({'role': 'special', 'level': 200}) mb.roles.insert({'role': 'admin', 'level': 100}) mb.roles.insert({'role': 'editor', 'level': 60}) mb.roles.insert({'role': 'user', 'level': 50}) # Create admin mb.users.insert({ "username": "admin", "email_addr": "admin@localhost.local", "desc": "admin test user", "role": "admin", "hash": "cLzRnzbEwehP6ZzTREh3A4MXJyNo+TV8Hs4//EEbPbiDoo+dmNg22f2RJC282aSwgyWv/O6s3h42qrA6iHx8yfw=", "creation_date": "2012-10-28 20:50:26.286723", "last_login": "2012-10-28 20:50:26.286723" }) assert len(mb.roles) == 4 assert len(mb.users) == 1 def fin(): mb._drop_all_tables() assert len(mb.roles) == 0 assert len(mb.users) == 0 request.addfinalizer(fin) return mb #def purge_test_db(self): # # Purge DB # mb = connect_to_test_db() # mb._drop_all_tables() def setup_mongo_db(request): # FIXME no last_login? t0 = time.time() def timer(s, max_time=None): delta = time.time() - t0 print("%s %f" % (s, delta)) if max_time is not None: assert delta < max_time mb = MongoDBBackend(db_name='cork-functional-test', initialize=True) timer('connect + init') # Purge DB mb.users._coll.drop() mb.roles._coll.drop() mb.pending_registrations._coll.drop() timer('purge') # Create admin mb.users._coll.insert({ "login": "admin", "email_addr": "admin@localhost.local", "desc": "admin test user", "role": "admin", "hash": "cLzRnzbEwehP6ZzTREh3A4MXJyNo+TV8Hs4//EEbPbiDoo+dmNg22f2RJC282aSwgyWv/O6s3h42qrA6iHx8yfw=", "creation_date": "2012-10-28 20:50:26.286723" }) timer('create') # Create users mb.roles._coll.insert({'role': 'special', 'val': 200}) mb.roles._coll.insert({'role': 'admin', 'val': 100}) mb.roles._coll.insert({'role': 'editor', 'val': 60}) mb.roles._coll.insert({'role': 'user', 'val': 50}) timer('create users') def fin(): mb.users._coll.drop() mb.roles._coll.drop() request.addfinalizer(fin) timer('mongo setup', 8) return mb def setup_mysql_db(request): if os.environ.get('TRAVIS', False): # Using Travis-CI - https://travis-ci.org/ password = '' db_name = 'myapp_test' else: password = '' db_name = 'cork_functional_test' uri = "mysql://root:%s@localhost/%s" % (password, db_name) mb = SqlAlchemyBackend(uri, initialize=True) ## Purge DB mb._drop_all_tables() assert len(mb.roles) == 0 assert len(mb.users) == 0 # Create roles mb.roles.insert({'role': 'special', 'level': 200}) mb.roles.insert({'role': 'admin', 'level': 100}) mb.roles.insert({'role': 'editor', 'level': 60}) mb.roles.insert({'role': 'user', 'level': 50}) # Create admin mb.users.insert({ "username": "admin", "email_addr": "admin@localhost.local", "desc": "admin test user", "role": "admin", "hash": "cLzRnzbEwehP6ZzTREh3A4MXJyNo+TV8Hs4//EEbPbiDoo+dmNg22f2RJC282aSwgyWv/O6s3h42qrA6iHx8yfw=", "creation_date": "2012-10-28 20:50:26.286723", "last_login": "2012-10-28 20:50:26.286723" }) assert len(mb.roles) == 4 assert len(mb.users) == 1 def fin(): return # TODO: fix mb._drop_all_tables() assert len(mb.roles) == 0 assert len(mb.users) == 0 request.addfinalizer(fin) return mb def setup_postgresql_db(request): if os.environ.get('TRAVIS', False): # Using Travis-CI - https://travis-ci.org/ db_name = 'myapp_test' else: db_name = 'cork_functional_test' uri = "postgresql+psycopg2://postgres:@/%s" % db_name mb = SqlAlchemyBackend(uri, initialize=True) # Purge DB mb._drop_all_tables() assert len(mb.roles) == 0 assert len(mb.users) == 0 # Create roles mb.roles.insert({'role': 'special', 'level': 200}) mb.roles.insert({'role': 'admin', 'level': 100}) mb.roles.insert({'role': 'editor', 'level': 60}) mb.roles.insert({'role': 'user', 'level': 50}) # Create admin mb.users.insert({ "username": "admin", "email_addr": "admin@localhost.local", "desc": "admin test user", "role": "admin", "hash": "cLzRnzbEwehP6ZzTREh3A4MXJyNo+TV8Hs4//EEbPbiDoo+dmNg22f2RJC282aSwgyWv/O6s3h42qrA6iHx8yfw=", "creation_date": "2012-10-28 20:50:26.286723", "last_login": "2012-10-28 20:50:26.286723" }) assert len(mb.roles) == 4 assert len(mb.users) == 1 def fin(): mb._drop_all_tables() assert len(mb.roles) == 0 assert len(mb.users) == 0 request.addfinalizer(fin) return mb ## General fixtures @pytest.fixture(params=[ 'json', 'mongodb', 'mysql', 'postgresql', 'sqlalchemy', 'sqlite', ]) def backend(tmpdir, request): # Create backend instances backend_type = request.param if backend_type == 'json': return setup_json_db(request, tmpdir) if backend_type == 'sqlite': return setup_sqlite_db(request) if backend_type == 'sqlalchemy': return setup_sqlalchemy_with_sqlite_in_memory_db(request) if backend_type == 'mongodb': pytest.skip() if not pymongo_available: pytest.skip() return setup_mongo_db(request) if backend_type == 'mysql': if not MySQLdb_available: pytest.skip() return setup_mysql_db(request) if backend_type == 'postgresql': return setup_postgresql_db(request) raise Exception() @pytest.fixture def aaa_unauth(templates_dir, backend): # Session without any authenticated user aaa = MockedSessionCork( templates_dir, backend=backend, smtp_server='localhost', email_sender='test@localhost', ) aaa._mocked_beaker_session = MockedSession() return aaa @pytest.fixture def aaa_admin(templates_dir, backend): # Session with an admin user aaa = MockedSessionCork( templates_dir, backend=backend, email_sender='test@localhost', smtp_server='localhost', ) aaa._mocked_beaker_session = MockedSession(username='admin') return aaa def test_create_and_validate_user(aaa_admin): assert len(aaa_admin._store.users) == 1, "Only the admin user should be present" aaa_admin.create_user(u'phil', 'user', u'hunter123') assert len(aaa_admin._store.users) == 2, "Two users should be present" assert 'phil' in aaa_admin._store.users assert aaa_admin._store.users['phil']['role'] == 'user' assert u'phil' in aaa_admin._store.users if hasattr(aaa_admin._store, '_engine'): eng = aaa_admin._store._engine for row in eng.execute("SELECT * FROM users").fetchall(): name = row[0] # py2: unicode with mysql, str with others print(repr(row)) login = aaa_admin.login('phil', 'hunter123') assert login == True, "Login must succeed" assert aaa_admin._beaker_session['username'] == 'phil' def test_create_and_validate_user_unicode(aaa_admin): assert len(aaa_admin._store.users) == 1, "Only the admin user should be present" if False and hasattr(aaa_admin._store, '_engine'): from sqlalchemy import create_engine, delete, select eng = aaa_admin._store._engine query = select(['users'], aaa_admin._store.users._key_col == 'foo') eng.execute(query).fetchall() if u"hiॐ" in aaa_admin._store.users: assert False aaa_admin.create_user(u'phil_åöॐ', 'user', u'neko_猫') if hasattr(aaa_admin._store, '_engine'): eng = aaa_admin._store._engine for row in eng.execute("SELECT * FROM users").fetchall(): name = row[0] # py2: unicode with mysql, str with others assert len(aaa_admin._store.users) == 2, "Two users should be present" assert u'phil_åöॐ' in aaa_admin._store.users assert aaa_admin._store.users[u'phil_åöॐ']['role'] == 'user' login = aaa_admin.login(u'phil_åöॐ', u'neko_猫') assert login == True, "Login must succeed" assert aaa_admin._beaker_session['username'] == u'phil_åöॐ'