File: conftest.py

package info (click to toggle)
python-globus-sdk 4.3.0-1
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid
  • size: 5,172 kB
  • sloc: python: 35,227; sh: 44; makefile: 35
file content (161 lines) | stat: -rw-r--r-- 5,159 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
 
import time
import uuid
from unittest import mock

import pytest

import globus_sdk
from globus_sdk.testing import RegisteredResponse
from globus_sdk.token_storage import TokenStorageData


@pytest.fixture
def id_token_sub():
    return str(uuid.UUID(int=1))


@pytest.fixture
def cc_auth_client():
    client = globus_sdk.ConfidentialAppAuthClient("dummy_id", "dummy_secret")
    with client.retry_config.tune(max_retries=0):
        yield client


@pytest.fixture
def mock_token_data_by_resource_server():
    expiration_time = int(time.time()) + 3600
    ret = {
        "resource_server_1": TokenStorageData(
            resource_server="resource_server_1",
            identity_id="user_id",
            scope="scope1",
            access_token="access_token_1",
            refresh_token="refresh_token_1",
            expires_at_seconds=expiration_time,
            token_type="Bearer",
        ),
        "resource_server_2": TokenStorageData(
            resource_server="resource_server_2",
            identity_id="user_id",
            scope="scope2 scope2:0 scope2:1",
            access_token="access_token_2",
            refresh_token="refresh_token_2",
            expires_at_seconds=expiration_time,
            token_type="Bearer",
        ),
    }
    return ret


@pytest.fixture
def mock_response():
    res = mock.Mock()
    expiration_time = int(time.time()) + 3600
    res.by_resource_server = {
        "resource_server_1": {
            "access_token": "access_token_1",
            "expires_at_seconds": expiration_time,
            "refresh_token": "refresh_token_1",
            "resource_server": "resource_server_1",
            "scope": "scope1",
            "token_type": "Bearer",
        },
        "resource_server_2": {
            "access_token": "access_token_2",
            "expires_at_seconds": expiration_time,
            "refresh_token": "refresh_token_2",
            "resource_server": "resource_server_2",
            "scope": "scope2 scope2:0 scope2:1",
            "token_type": "Bearer",
        },
    }
    res.decode_id_token.return_value = {"sub": "user_id"}

    return res


@pytest.fixture
def dependent_token_response(cc_auth_client):
    expiration_time = int(time.time()) + 3600
    RegisteredResponse(
        service="auth",
        path="/v2/oauth2/token",
        method="POST",
        json=[
            {
                "access_token": "access_token_1",
                "expires_at_seconds": expiration_time,
                "refresh_token": "refresh_token_1",
                "resource_server": "resource_server_1",
                "scope": "scope1",
                "token_type": "Bearer",
            },
            {
                "access_token": "access_token_2",
                "expires_at_seconds": expiration_time,
                "refresh_token": "refresh_token_2",
                "resource_server": "resource_server_2",
                "scope": "scope2 scope2:0 scope2:1",
                "token_type": "Bearer",
            },
        ],
    ).add()
    return cc_auth_client.oauth2_get_dependent_tokens("dummy_tok")


@pytest.fixture
def authorization_code_response(cc_auth_client, id_token_sub):
    cc_auth_client.oauth2_start_flow("https://example.com/redirect-uri", "dummy-scope")

    expiration_time = int(time.time()) + 3600
    RegisteredResponse(
        service="auth",
        path="/v2/oauth2/token",
        method="POST",
        json={
            "access_token": "access_token_1",
            "expires_at_seconds": expiration_time,
            "refresh_token": "refresh_token_1",
            "resource_server": "resource_server_1",
            "scope": "scope1",
            "token_type": "Bearer",
            "id_token": "dummy_id_token",
            "other_tokens": [
                {
                    "access_token": "access_token_2",
                    "expires_at_seconds": expiration_time,
                    "refresh_token": "refresh_token_2",
                    "resource_server": "resource_server_2",
                    "scope": "scope2 scope2:0 scope2:1",
                    "token_type": "Bearer",
                },
            ],
        },
    ).add()

    # because it's more difficult to mock the full decode_id_token() interaction in
    # detail, directly mock the result of it to return the desired subject (identity_id)
    # value
    response = cc_auth_client.oauth2_exchange_code_for_tokens("dummy_code")
    with mock.patch.object(response, "decode_id_token", lambda: {"sub": id_token_sub}):
        yield response


@pytest.fixture
def refresh_token_response(cc_auth_client):
    expiration_time = int(time.time()) + 3600
    RegisteredResponse(
        service="auth",
        path="/v2/oauth2/token",
        method="POST",
        json={
            "access_token": "access_token_1",
            "expires_at_seconds": expiration_time,
            "refresh_token": "refresh_token_1",
            "resource_server": "resource_server_1",
            "scope": "scope1",
            "token_type": "Bearer",
            "other_tokens": [],
        },
    ).add()
    return cc_auth_client.oauth2_refresh_token("dummy_token")