1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
|
import requests
import os
import pytest
from requests.packages.urllib3.exceptions import InsecureRequestWarning
from requests.packages.urllib3 import disable_warnings
from requests_kerberos import HTTPKerberosAuth, REQUIRED
"""
This test is designed to run functional tests against a live website
secured with Kerberos authentication. See .travis.sh for the script that
is used to setup a Kerberos realm and Apache site.
For this test to run the 2 environment variables need to be set
KERBEROS_PRINCIPAL: The principal to authenticate with (user@REALM.COM)
Before running this test you need to ensure you have gotten a valid
ticket for the user in that realm using kinit.
KERBEROS_URL: The URL (http://host.realm.com) to authenticate with
This need to be set up before hand
"""
def test_successful_http_call():
principal = os.environ.get('KERBEROS_PRINCIPAL', None)
url = os.environ.get('KERBEROS_URL', None)
# Skip the test if not set
if principal is None:
pytest.skip("KERBEROS_PRINCIPAL is not set, skipping functional tests")
if url is None:
pytest.skip("KERBEROS_URL is not set, skipping functional tests")
session = requests.Session()
if url.startswith("https://"):
session.verify = False
disable_warnings(InsecureRequestWarning)
session.auth = HTTPKerberosAuth(mutual_authentication=REQUIRED, principal=principal)
request = requests.Request('GET', url)
prepared_request = session.prepare_request(request)
response = session.send(prepared_request)
assert response.status_code == 200, "HTTP response with kerberos auth did not return a 200 error code"
|
