X-Git-Url: https://git.mdrn.pl/django-cas-provider.git/blobdiff_plain/979cc8e80c887caa8a91a86dd2ed2971bfe2bff5..243a932dd7165b4dbe5d8938f622450b4b7cdaa3:/cas_provider/tests.py diff --git a/cas_provider/tests.py b/cas_provider/tests.py index dbb1be1..2f87330 100644 --- a/cas_provider/tests.py +++ b/cas_provider/tests.py @@ -14,20 +14,21 @@ from django.conf import settings try: from urllib.parse import urlparse, parse_qsl, parse_qs - from urllib import request + from urllib.request import install_opener except: from urlparse import urlparse, parse_qsl, parse_qs - import urllib2 as request + from urllib2 import install_opener -dummy_urlopen_url = None +class DummyOpener(object): + url = None + @staticmethod + def open(url, *args, **kwargs): + DummyOpener.url = url -def dummy_urlopen(url): - cas_provider.tests.dummy_urlopen_url = url - pass class ViewsTest(TestCase): @@ -40,7 +41,7 @@ class ViewsTest(TestCase): def test_successful_login_with_proxy(self): - request.urlopen = dummy_urlopen # monkey patching request.urlopen so that the testcase doesnt really opens a url + install_opener(DummyOpener) # Don't really open any URLs proxyTarget = "http://my.sweet.service" response = self._login_user('root', '123') @@ -56,18 +57,18 @@ class ViewsTest(TestCase): self.assertIsNotNone(pgt.text) self.assertTrue(pgt.text.startswith('PGTIOU')) - pgtId = parse_qs(urlparse(cas_provider.tests.dummy_urlopen_url).query)['pgtId'] + pgtId = parse_qs(urlparse(DummyOpener.url).query)['pgtId'] #Step 2: Get the actual proxy ticket proxyTicketResponse = self.client.get(reverse('proxy'), {'targetService': proxyTarget, 'pgt': pgtId}, follow=False) - proxyTicketResponseXml = ElementTree.parse(StringIO(proxyTicketResponse.content)) + proxyTicketResponseXml = ElementTree.parse(StringIO(proxyTicketResponse.content.decode('utf-8'))) self.assertIsNotNone(proxyTicketResponseXml.find(CAS + "proxySuccess", namespaces=NSMAP)) self.assertIsNotNone(proxyTicketResponseXml.find(CAS + "proxySuccess/cas:proxyTicket", namespaces=NSMAP)) proxyTicket = proxyTicketResponseXml.find(CAS + "proxySuccess/cas:proxyTicket", namespaces=NSMAP); #Step 3: I have the proxy ticket I can talk to some other backend service as the currently logged in user! proxyValidateResponse = self.client.get(reverse('cas_proxy_validate'), {'ticket': proxyTicket.text, 'service': proxyTarget}) - proxyValidateResponseXml = ElementTree.parse(StringIO(proxyValidateResponse.content)) + proxyValidateResponseXml = ElementTree.parse(StringIO(proxyValidateResponse.content.decode('utf-8'))) auth_success_2 = proxyValidateResponseXml.find(CAS + 'authenticationSuccess', namespaces=NSMAP) user_2 = auth_success.find(CAS + "user", namespaces=NSMAP) @@ -78,7 +79,7 @@ class ViewsTest(TestCase): def test_successful_proxy_chaining(self): - request.urlopen = dummy_urlopen # monkey patching request.urlopen so that the testcase doesnt really opens a url + install_opener(DummyOpener) # Don't really open any URLs proxyTarget_1 = "http://my.sweet.service_1" proxyTarget_2 = "http://my.sweet.service_2" @@ -95,11 +96,11 @@ class ViewsTest(TestCase): self.assertIsNotNone(pgt_1.text) self.assertTrue(pgt_1.text.startswith('PGTIOU')) - pgtId_1 = parse_qs(urlparse(cas_provider.tests.dummy_urlopen_url).query)['pgtId'] + pgtId_1 = parse_qs(urlparse(DummyOpener.url).query)['pgtId'] #Step 2: Get the actual proxy ticket proxyTicketResponse_1 = self.client.get(reverse('proxy'), {'targetService': proxyTarget_1, 'pgt': pgtId_1}, follow=False) - proxyTicketResponseXml_1 = ElementTree.parse(StringIO(proxyTicketResponse_1.content)) + proxyTicketResponseXml_1 = ElementTree.parse(StringIO(proxyTicketResponse_1.content.decode('utf-8'))) self.assertIsNotNone(proxyTicketResponseXml_1.find(CAS + "proxySuccess", namespaces=NSMAP)) self.assertIsNotNone(proxyTicketResponseXml_1.find(CAS + "proxySuccess/cas:proxyTicket", namespaces=NSMAP)) proxyTicket_1 = proxyTicketResponseXml_1.find(CAS + "proxySuccess/cas:proxyTicket", namespaces=NSMAP); @@ -107,7 +108,7 @@ class ViewsTest(TestCase): #Step 3: I'm backend service 1 - I have the proxy ticket - I want to talk to back service 2 # proxyValidateResponse_1 = self.client.get(reverse('cas_proxy_validate'), {'ticket': proxyTicket_1.text, 'service': proxyTarget_1, 'pgtUrl': proxyTarget_2}) - proxyValidateResponseXml_1 = ElementTree.parse(StringIO(proxyValidateResponse_1.content)) + proxyValidateResponseXml_1 = ElementTree.parse(StringIO(proxyValidateResponse_1.content.decode('utf-8'))) auth_success_2 = proxyValidateResponseXml_1.find(CAS + 'authenticationSuccess', namespaces=NSMAP) user_2 = auth_success_2.find(CAS + "user", namespaces=NSMAP) @@ -123,17 +124,17 @@ class ViewsTest(TestCase): self.assertIsNotNone(pgt_2.text) self.assertTrue(pgt_2.text.startswith('PGTIOU')) - pgtId_2 = parse_qs(urlparse(cas_provider.tests.dummy_urlopen_url).query)['pgtId'] + pgtId_2 = parse_qs(urlparse(DummyOpener.url).query)['pgtId'] #Step 4: Get the second proxy ticket proxyTicketResponse_2 = self.client.get(reverse('proxy'), {'targetService': proxyTarget_2, 'pgt': pgtId_2}) - proxyTicketResponseXml_2 = ElementTree.parse(StringIO(proxyTicketResponse_2.content)) + proxyTicketResponseXml_2 = ElementTree.parse(StringIO(proxyTicketResponse_2.content.decode('utf-8'))) self.assertIsNotNone(proxyTicketResponseXml_2.find(CAS + "proxySuccess", namespaces=NSMAP)) self.assertIsNotNone(proxyTicketResponseXml_2.find(CAS + "proxySuccess/cas:proxyTicket", namespaces=NSMAP)) proxyTicket_2 = proxyTicketResponseXml_2.find(CAS + "proxySuccess/cas:proxyTicket", namespaces=NSMAP) proxyValidateResponse_3 = self.client.get(reverse('cas_proxy_validate'), {'ticket': proxyTicket_2.text, 'service': proxyTarget_2, 'pgtUrl': None}) - proxyValidateResponseXml_3 = ElementTree.parse(StringIO(proxyValidateResponse_3.content)) + proxyValidateResponseXml_3 = ElementTree.parse(StringIO(proxyValidateResponse_3.content.decode('utf-8'))) auth_success_3 = proxyValidateResponseXml_3.find(CAS + 'authenticationSuccess', namespaces=NSMAP) user_3 = auth_success_3.find(CAS + "user", namespaces=NSMAP) @@ -200,6 +201,25 @@ class ViewsTest(TestCase): user = User.objects.get(username=self.username) self.assertEqual(response.content, _cas2_sucess_response(user).content) + def test_cas2_validate_twice(self): + response = self._login_user('root', '123') + response2 = self._validate_cas2(response, True) + user = User.objects.get(username=self.username) + self.assertEqual(response2.content, _cas2_sucess_response(user).content) + + response2 = self._validate_cas2(response, True) + self.assertEqual(response2.content, _cas2_error_response(INVALID_TICKET).content) + + def test_cas2_validate_twice_with_pgt(self): + proxyTarget = "http://my.sweet.service_1" + response = self._login_user('root', '123') + response2 = self._validate_cas2(response, True, proxyTarget) + user = User.objects.get(username=self.username) + self.assertEqual(response2.content, _cas2_sucess_response(user).content) + + response2 = self._validate_cas2(response, True, proxyTarget) + self.assertEqual(response2.content, _cas2_error_response(INVALID_TICKET).content) + def test_cas2_custom_attrs(self): cas_collect_custom_attributes.connect(cas_mapping) response = self._login_user('editor', '123') @@ -260,7 +280,7 @@ class ViewsTest(TestCase): def test_generate_proxy_granting_ticket(self): - request.urlopen = dummy_urlopen # monkey patching request.urlopen so that the testcase doesnt really opens a url + install_opener(DummyOpener) # Don't really open any URLs url = 'http://my.call.back/callhere' user = User.objects.get(username = 'root') @@ -268,7 +288,7 @@ class ViewsTest(TestCase): pgt = generate_proxy_granting_ticket(url, st) self.assertIsNotNone(pgt) - calledUrl = cas_provider.tests.dummy_urlopen_url + calledUrl = DummyOpener.url parsedUrl = urlparse(calledUrl) params = parse_qs(parsedUrl.query) self.assertIsNotNone(params['pgtId'])