globuzma/canaille-globuzma
1
0
Fork 0
forked from Github-Mirrors/canaille
Code Pull requests Activity
canaille-globuzma/tests/backends/ldap/test_install.py
Éloi Rivard 16c3021a8f
refactor: Rename BaseBackend in Backend
2024-05-03 22:25:20 +02:00

119 lines
4.4 KiB
Python
Raw Blame History

import pytest
from flask_webtest import TestApp
from canaille import create_app
from canaille.app.configuration import settings_factory
from canaille.app.installation import InstallationException
from canaille.backends.ldap.backend import LDAPBackend
from canaille.backends.ldap.ldapobject import LDAPObject
from canaille.commands import cli
from . import CustomSlapdObject
@pytest.fixture
def configuration(ldap_configuration):
yield ldap_configuration
@pytest.fixture
def slapd_server():
slapd = CustomSlapdObject()
try:
slapd.start()
slapd.init_tree()
for ldif in (
"demo/ldif/memberof-config.ldif",
"demo/ldif/bootstrap-users-tree.ldif",
"demo/ldif/bootstrap-users.ldif",
):
slapd.ldapadd(None, ["-f", ldif])
yield slapd
finally:
slapd.stop()
def test_setup_ldap_tree(slapd_server, configuration):
output = slapd_server.slapcat().stdout.decode("utf-8")
assert "dn: ou=tokens,ou=oauth,dc=mydomain,dc=tld" not in output
testclient = TestApp(create_app(configuration, validate=False))
runner = testclient.app.test_cli_runner()
res = runner.invoke(cli, ["install"])
assert res.exit_code == 0, res.stdout
output = slapd_server.slapcat().stdout.decode("utf-8")
assert "dn: ou=tokens,ou=oauth,dc=mydomain,dc=tld" in output
def test_install_schemas(configuration, slapd_server):
configuration["CANAILLE_LDAP"]["ROOT_DN"] = slapd_server.suffix
configuration["CANAILLE_LDAP"]["URI"] = slapd_server.ldap_uri
configuration["CANAILLE_LDAP"]["BIND_DN"] = slapd_server.root_dn
configuration["CANAILLE_LDAP"]["BIND_PW"] = slapd_server.root_pw
config_obj = settings_factory(configuration)
config_dict = config_obj.model_dump()
with LDAPBackend(config_dict).session():
assert "oauthClient" not in LDAPObject.ldap_object_classes(force=True)
LDAPBackend.setup_schemas(config_dict)
with LDAPBackend(config_dict).session():
assert "oauthClient" in LDAPObject.ldap_object_classes(force=True)
def test_install_schemas_twice(configuration, slapd_server):
configuration["CANAILLE_LDAP"]["ROOT_DN"] = slapd_server.suffix
configuration["CANAILLE_LDAP"]["URI"] = slapd_server.ldap_uri
configuration["CANAILLE_LDAP"]["BIND_DN"] = slapd_server.root_dn
configuration["CANAILLE_LDAP"]["BIND_PW"] = slapd_server.root_pw
config_obj = settings_factory(configuration)
config_dict = config_obj.model_dump()
with LDAPBackend(config_dict).session():
assert "oauthClient" not in LDAPObject.ldap_object_classes(force=True)
LDAPBackend.setup_schemas(config_dict)
with LDAPBackend(config_dict).session():
assert "oauthClient" in LDAPObject.ldap_object_classes(force=True)
LDAPBackend.setup_schemas(config_dict)
def test_install_no_permissions_to_install_schemas(configuration, slapd_server):
configuration["CANAILLE_LDAP"]["ROOT_DN"] = slapd_server.suffix
configuration["CANAILLE_LDAP"]["URI"] = slapd_server.ldap_uri
configuration["CANAILLE_LDAP"]["BIND_DN"] = "uid=admin,ou=users,dc=mydomain,dc=tld"
configuration["CANAILLE_LDAP"]["BIND_PW"] = "admin"
config_obj = settings_factory(configuration)
config_dict = config_obj.model_dump()
with LDAPBackend(config_dict).session():
assert "oauthClient" not in LDAPObject.ldap_object_classes(force=True)
with pytest.raises(InstallationException):
LDAPBackend.setup_schemas(config_dict)
assert "oauthClient" not in LDAPObject.ldap_object_classes(force=True)
def test_install_schemas_command(configuration, slapd_server):
configuration["CANAILLE_LDAP"]["ROOT_DN"] = slapd_server.suffix
configuration["CANAILLE_LDAP"]["URI"] = slapd_server.ldap_uri
configuration["CANAILLE_LDAP"]["BIND_DN"] = slapd_server.root_dn
configuration["CANAILLE_LDAP"]["BIND_PW"] = slapd_server.root_pw
config_obj = settings_factory(configuration)
config_dict = config_obj.model_dump()
with LDAPBackend(config_dict).session():
assert "oauthClient" not in LDAPObject.ldap_object_classes(force=True)
testclient = TestApp(create_app(configuration, validate=False))
runner = testclient.app.test_cli_runner()
res = runner.invoke(cli, ["install"])
assert res.exit_code == 0, res.stdout
with LDAPBackend(config_dict).session():
assert "oauthClient" in LDAPObject.ldap_object_classes(force=True)
View git blame Copy permalink