canaille-globuzma/tests/oidc/test_clean.py

import datetime

from canaille.commands import cli
from canaille.oidc.models import AuthorizationCode
from canaille.oidc.models import Token
from werkzeug.security import gen_salt


def test_clean_command(testclient, slapd_connection, client, user):
    AuthorizationCode.ldap_object_classes(slapd_connection)
    valid_code = AuthorizationCode(
        authorization_code_id=gen_salt(48),
        code="my-valid-code",
        client=client.dn,
        subject=user.dn,
        redirect_uri="https://foo.bar/callback",
        response_type="code",
        scope="openid profile",
        nonce="nonce",
        issue_date=datetime.datetime.now().replace(microsecond=0),
        lifetime=3600,
        challenge="challenge",
        challenge_method="method",
        revokation="",
    )
    valid_code.save()
    expired_code = AuthorizationCode(
        authorization_code_id=gen_salt(48),
        code="my-expired-code",
        client=client.dn,
        subject=user.dn,
        redirect_uri="https://foo.bar/callback",
        response_type="code",
        scope="openid profile",
        nonce="nonce",
        issue_date=(
            datetime.datetime.now().replace(microsecond=0) - datetime.timedelta(days=1)
        ),
        lifetime=3600,
        challenge="challenge",
        challenge_method="method",
        revokation="",
    )
    expired_code.save()

    Token.ldap_object_classes(slapd_connection)
    valid_token = Token(
        token_id=gen_salt(48),
        access_token="my-valid-token",
        client=client.dn,
        subject=user.dn,
        type=None,
        refresh_token=gen_salt(48),
        scope="openid profile",
        issue_date=(datetime.datetime.now().replace(microsecond=0)),
        lifetime=3600,
    )
    valid_token.save()
    expired_token = Token(
        token_id=gen_salt(48),
        access_token="my-expired-token",
        client=client.dn,
        subject=user.dn,
        type=None,
        refresh_token=gen_salt(48),
        scope="openid profile",
        issue_date=(
            datetime.datetime.now().replace(microsecond=0) - datetime.timedelta(days=1)
        ),
        lifetime=3600,
    )
    expired_token.save()

    assert AuthorizationCode.get(code="my-expired-code")
    assert Token.get(access_token="my-expired-token")
    assert expired_code.is_expired()
    assert expired_token.is_expired()

    runner = testclient.app.test_cli_runner()
    runner.invoke(cli, ["clean"])

    assert AuthorizationCode.all() == [valid_code]
    assert Token.all() == [valid_token]
Added a command to clean tokens and codes. Fixes #17 2020-10-23 09:31:16 +00:00			`import datetime`
pre-commit tox test 2021-12-20 22:57:27 +00:00
'canaille' command 2021-10-13 07:38:44 +00:00			`from canaille.commands import cli`
split oidc code from the rest 2022-01-11 18:49:06 +00:00			`from canaille.oidc.models import AuthorizationCode`
			`from canaille.oidc.models import Token`
Added a command to clean tokens and codes. Fixes #17 2020-10-23 09:31:16 +00:00			`from werkzeug.security import gen_salt`


			`def test_clean_command(testclient, slapd_connection, client, user):`
ldaputils variable renaming 2021-12-08 14:01:35 +00:00			`AuthorizationCode.ldap_object_classes(slapd_connection)`
Client deletion also delete related objects 2023-01-30 18:58:00 +00:00			`valid_code = AuthorizationCode(`
AuthorizationCode and Token have a new id parameter 2022-02-16 17:00:30 +00:00			`authorization_code_id=gen_salt(48),`
Client deletion also delete related objects 2023-01-30 18:58:00 +00:00			`code="my-valid-code",`
LdapObject an have attribute name different than the schema 2022-01-11 16:57:58 +00:00			`client=client.dn,`
			`subject=user.dn,`
			`redirect_uri="https://foo.bar/callback",`
			`response_type="code",`
			`scope="openid profile",`
			`nonce="nonce",`
Client deletion also delete related objects 2023-01-30 18:58:00 +00:00			`issue_date=datetime.datetime.now().replace(microsecond=0),`
			`lifetime=3600,`
LdapObject an have attribute name different than the schema 2022-01-11 16:57:58 +00:00			`challenge="challenge",`
			`challenge_method="method",`
			`revokation="",`
Added a command to clean tokens and codes. Fixes #17 2020-10-23 09:31:16 +00:00			`)`
Client deletion also delete related objects 2023-01-30 18:58:00 +00:00			`valid_code.save()`
			`expired_code = AuthorizationCode(`
			`authorization_code_id=gen_salt(48),`
			`code="my-expired-code",`
			`client=client.dn,`
			`subject=user.dn,`
			`redirect_uri="https://foo.bar/callback",`
			`response_type="code",`
			`scope="openid profile",`
			`nonce="nonce",`
			`issue_date=(`
			`datetime.datetime.now().replace(microsecond=0) - datetime.timedelta(days=1)`
			`),`
			`lifetime=3600,`
			`challenge="challenge",`
			`challenge_method="method",`
			`revokation="",`
			`)`
			`expired_code.save()`
Added a command to clean tokens and codes. Fixes #17 2020-10-23 09:31:16 +00:00
ldaputils variable renaming 2021-12-08 14:01:35 +00:00			`Token.ldap_object_classes(slapd_connection)`
Client deletion also delete related objects 2023-01-30 18:58:00 +00:00			`valid_token = Token(`
			`token_id=gen_salt(48),`
			`access_token="my-valid-token",`
			`client=client.dn,`
			`subject=user.dn,`
			`type=None,`
			`refresh_token=gen_salt(48),`
			`scope="openid profile",`
			`issue_date=(datetime.datetime.now().replace(microsecond=0)),`
			`lifetime=3600,`
			`)`
			`valid_token.save()`
			`expired_token = Token(`
AuthorizationCode and Token have a new id parameter 2022-02-16 17:00:30 +00:00			`token_id=gen_salt(48),`
Client deletion also delete related objects 2023-01-30 18:58:00 +00:00			`access_token="my-expired-token",`
LdapObject an have attribute name different than the schema 2022-01-11 16:57:58 +00:00			`client=client.dn,`
			`subject=user.dn,`
			`type=None,`
			`refresh_token=gen_salt(48),`
			`scope="openid profile",`
Client deletion also delete related objects 2023-01-30 18:58:00 +00:00			`issue_date=(`
			`datetime.datetime.now().replace(microsecond=0) - datetime.timedelta(days=1)`
			`),`
			`lifetime=3600,`
Added a command to clean tokens and codes. Fixes #17 2020-10-23 09:31:16 +00:00			`)`
Client deletion also delete related objects 2023-01-30 18:58:00 +00:00			`expired_token.save()`
Added a command to clean tokens and codes. Fixes #17 2020-10-23 09:31:16 +00:00
Client deletion also delete related objects 2023-01-30 18:58:00 +00:00			`assert AuthorizationCode.get(code="my-expired-code")`
			`assert Token.get(access_token="my-expired-token")`
			`assert expired_code.is_expired()`
			`assert expired_token.is_expired()`
Added a command to clean tokens and codes. Fixes #17 2020-10-23 09:31:16 +00:00
			`runner = testclient.app.test_cli_runner()`
'canaille' command 2021-10-13 07:38:44 +00:00			`runner.invoke(cli, ["clean"])`
Added a command to clean tokens and codes. Fixes #17 2020-10-23 09:31:16 +00:00
Client deletion also delete related objects 2023-01-30 18:58:00 +00:00			`assert AuthorizationCode.all() == [valid_code]`
			`assert Token.all() == [valid_token]`