o "4gC@sddlmZddlmZddlmZddlmZddlZddl m Z ddl m Z ddl mZd d Zd d Zd dZddZddZddZddZejdddgddZddZejddgejdd d!gd"d#Zd$d%Zd&d'ZdS)()ANY)settings)get_user_model)reverseN)assertTemplateUsed)"AUTHENTICATION_METHODS_SESSION_KEY) AuthenticatorcCs||$}|jtddd}d|vsJ|jtdd|id}Wdn1s+wY|dtjks9J|jtttdd d d gksIJdS) Nmfa_login_webauthnXMLHttpRequestHTTP_X_REQUESTED_WITHrequest_options credentialdatalocationmfaTwebauthn)atidmethod passwordlesstype) getrjsonpostrLOGIN_REDIRECT_URLsessionrr)clientpasskeywebauthn_authentication_bypassrrespr"n/var/www/html/authentication-server/venv/lib/python3.10/site-packages/allauth/mfa/webauthn/tests/test_views.pytest_passkey_logins$  r$cCs|td}|jdksJ|dtdsJ|td}t|d||}|td}|jtd|dd d }Wdn1sGwY|ddksTJdS) Nmfa_view_recovery_codes.raccount_reauthenticatemfa_reauthenticatezmfa/reauthenticate.htmlmfa_reauthenticate_webauthnz/redir)rnextr)rr status_code startswithrr) auth_clientruser_with_recovery_codesr r!rr"r"r#test_reauthenticate#s  r/cCs&|td}|dtdksJdS)Nr r account_login)rr)rr!r"r"r#6test_get_passkey_login_challenge_redirects_if_not_ajax7sr1cCsZ|jtddd}|jdksJ|ddksJ|}|ddtd gd d iiks+JdS) Nr r r z content-typezapplication/jsonr publicKey testserver preferred) challengerpIdallowCredentialsuserVerification)rrr+rr)rdbr!rr"r"r# test_get_passkey_login_challenge<s r;cCs.|jtdddid}|dtdksJdS)Nr rz{}rrr0)rr)rrr!r"r"r#test_invalid_passkey_loginOsr<cCs|tdd|jid}|dtdsJ|I|tdd|jid}t|d|jtdd|jidddid }|dtd ksFJ||jddksSJt|dks[JWddS1sfwYdS) Nmfa_edit_webauthnpkkwargsrr'zmfa/webauthn/edit_form.htmlnameRenamedrmfa_list_webauthn) rrr>r,rrrefresh_from_dbrstrr-rreauthentication_bypassr!r"r"r#test_rename_keyTs "rHcCs|tdd|jid}|dtdsJ|0|tdd|jid}t|d|tdd|jid}|dtdksBJWddS1sMwYdS)Nmfa_remove_webauthnr>r?rr'z.mfa/webauthn/authenticator_confirm_delete.htmlrC)rrr>r,rrrFr"r"r#test_remove_keyds "rJrFTc Cs8|||}|jtdd|id}|dtdsJWdn1s&wY|d|td}t|d|||#}|jtd||rKdndd d}|dtd s\JWdn1sfwYtjj|tjjd }| j |ks~Jtjj |tjj d  WddS1swYdS) Nmfa_add_webauthnrrrr'zmfa/webauthn/add_form.htmlon)rrr%)userr)rrr,rrrobjectsTypeWEBAUTHNwrapis_passwordlessfilterRECOVERY_CODESexists)r-rNwebauthn_registration_bypassrGrrr! authenticatorr"r"r# test_add_keyrs6      "rYcCs|td}t|ddS)NrCz$mfa/webauthn/authenticator_list.html)rrr)r-r!r"r"r#test_list_keyssrZemail_verifiedrrrcCsr||d*}|dkr|td}n |jtdd|id}|dtdks'JWddS1s2wYdS)NFrrKrrr mfa_index)rrr)r-rNrWrGrrr!r"r"r#test_add_with_unverified_emails  "r]cCs|jtddddd}|dtdksJ||d}|jdks$Jtjjdd }||d }|jtdd |id}Wdn1sGwY|dtjksUJdS) Naccount_signup_by_passkeyz pass@key.orgr)emailusernamerrmfa_signup_webauthnr2)r_Tr)rrr+rrOrrr)rr:rWr!rNrr"r"r#test_passkey_signups  rbcCs|td|j|d}|jdksJ|dtdksJ|| }|td}|jdks0J|tdd|i}Wdn1sDwY|jdksPJ|dtjksYJ|jtdt |jd d t t t j j d gkspJdS) Nr0)loginpasswordr&rmfa_authenticater2rrd)rrr`r)rrrr) rrr`r+rrrrrrrrPrQ)ruser_with_passkeyr user_passwordr r!rr"r"r#test_webauthn_logins"   rh) unittest.mockr django.confrdjango.contrib.authr django.urlsrpytestpytest_django.assertsrallauth.account.authenticationrallauth.mfa.modelsrr$r/r1r;r<rHrJmark parametrizerYrZr]rbrhr"r"r"r#s.       !