nielsperetzke
/
healthchecks
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 32 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1759 Commits
2 Branches
15 MiB
Tree: c196dc16d7
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'c196dc16d7'
${ noResults }
healthchecks/hc/accounts/tests/test_add_webauthn.py

98 lines
3.1 KiB
Raw Normal View History

Refactor for testability, add more test cases
4 years ago
Add checks for RP_ID, add a 2FA section in README
4 years ago
Refactor for testability, add more test cases
4 years ago
Add checks for RP_ID, add a 2FA section in README
4 years ago
Add support for 2FA using TOTP Fixes: #354
3 years ago
Refactor for testability, add more test cases
4 years ago
Add support for 2FA using TOTP Fixes: #354
3 years ago
Refactor for testability, add more test cases
4 years ago
Add checks for RP_ID, add a 2FA section in README
4 years ago
Refactor for testability, add more test cases
4 years ago
Update the "Set Password" function to use confirmation codes
4 years ago
Refactor for testability, add more test cases
4 years ago
Update the "Set Password" function to use confirmation codes
4 years ago
Refactor for testability, add more test cases
4 years ago
Add Base64Field field (base64-encoded binary data)
4 years ago
Update the "Set Password" function to use confirmation codes
4 years ago
Add Base64Field field (base64-encoded binary data)
4 years ago
Update the "Set Password" function to use confirmation codes
4 years ago
Add Base64Field field (base64-encoded binary data)
4 years ago
Add logic to handle exceptions thrown by the fido2 library
4 years ago
 
  1. from unittest.mock import patch
  2. 

  3. from django.test.utils import override_settings
  4. from hc.test import BaseTestCase
  5. from hc.accounts.models import Credential
  6. 

  7. 

  8. @override_settings(RP_ID="testserver")
  9. class AddWebauthnTestCase(BaseTestCase):
  10.     def setUp(self):
  11.         super().setUp()
  12. 

  13.         self.url = "/accounts/two_factor/webauthn/"
  14. 

  15.     def test_it_requires_sudo_mode(self):
  16.         self.client.login(username="[email protected]", password="password")
  17. 

  18.         r = self.client.get(self.url)
  19.         self.assertContains(r, "We have sent a confirmation code")
  20. 

  21.     @override_settings(RP_ID=None)
  22.     def test_it_requires_rp_id(self):
  23.         self.client.login(username="[email protected]", password="password")
  24.         self.set_sudo_flag()
  25. 

  26.         r = self.client.get(self.url)
  27.         self.assertEqual(r.status_code, 404)
  28. 

  29.     def test_it_shows_form(self):
  30.         self.client.login(username="[email protected]", password="password")
  31.         self.set_sudo_flag()
  32. 

  33.         r = self.client.get(self.url)
  34.         self.assertContains(r, "Add Security Key")
  35. 

  36.         # It should put a "state" key in the session:
  37.         self.assertIn("state", self.client.session)
  38. 

  39.     @patch("hc.accounts.views._get_credential_data")
  40.     def test_it_adds_credential(self, mock_get_credential_data):
  41.         mock_get_credential_data.return_value = b"dummy-credential-data"
  42. 

  43.         self.client.login(username="[email protected]", password="password")
  44.         self.set_sudo_flag()
  45. 

  46.         payload = {
  47.             "name": "My New Key",
  48.             "client_data_json": "e30=",
  49.             "attestation_object": "e30=",
  50.         }
  51. 

  52.         r = self.client.post(self.url, payload, follow=True)
  53.         self.assertRedirects(r, "/accounts/profile/")
  54.         self.assertContains(r, "Added security key <strong>My New Key</strong>")
  55. 

  56.         c = Credential.objects.get()
  57.         self.assertEqual(c.name, "My New Key")
  58. 

  59.     def test_it_rejects_bad_base64(self):
  60.         self.client.login(username="[email protected]", password="password")
  61.         self.set_sudo_flag()
  62. 

  63.         payload = {
  64.             "name": "My New Key",
  65.             "client_data_json": "not valid base64",
  66.             "attestation_object": "not valid base64",
  67.         }
  68. 

  69.         r = self.client.post(self.url, payload)
  70.         self.assertEqual(r.status_code, 400)
  71. 

  72.     def test_it_requires_client_data_json(self):
  73.         self.client.login(username="[email protected]", password="password")
  74.         self.set_sudo_flag()
  75. 

  76.         payload = {
  77.             "name": "My New Key",
  78.             "attestation_object": "e30=",
  79.         }
  80. 

  81.         r = self.client.post(self.url, payload)
  82.         self.assertEqual(r.status_code, 400)
  83. 

  84.     @patch("hc.accounts.views._get_credential_data")
  85.     def test_it_handles_authentication_failure(self, mock_get_credential_data):
  86.         mock_get_credential_data.return_value = None
  87. 

  88.         self.client.login(username="[email protected]", password="password")
  89.         self.set_sudo_flag()
  90. 

  91.         payload = {
  92.             "name": "My New Key",
  93.             "client_data_json": "e30=",
  94.             "attestation_object": "e30=",
  95.         }
  96. 

  97.         r = self.client.post(self.url, payload, follow=True)
  98.         self.assertEqual(r.status_code, 400)