o "4gA@s0ddlZddlZddlZddlZddlZddlZddlZddlmZm Z ddl m Z ddl m Z ddlmZddlmZddlmZddlmZddlZdd lmZdd lmZmZdd lmZdd lm Z dd l!m"Z"m#Z#ddl$m%Z%m&Z&m'Z'ddZ(GdddZ)ddZ*GdddZ+Gddde+Z,dS)N)parse_qsurlparse)settings)get_user_model)RequestFactory)override_settings)reverse) urlencode) EmailAddress) user_email user_username) app_settings) get_adapter) SocialAccount SocialApp)MockedResponseTestCasemocked_responsecCsftd}t||}|r|dStjj||d|dd}tjj r1ddl m }|j |j|S)N/rapp123iddummy)providername client_idkeysecret)Site)rgetr list_appsrobjectscreateallauthr SITES_ENABLEDdjango.contrib.sites.modelsrsitesadd get_current) provider_idrequestappsapprr+m/var/www/html/authentication-server/venv/lib/python3.10/site-packages/allauth/socialaccount/tests/__init__.py setup_apps  r-csxeZdZUeed<ddZddZfddZedd d d Z ed ddd ddZ dddZ ddZ ddZ ZS)OAuthTestsMixinr'cCdSNr+selfr+r+r,get_mocked_response1z#OAuthTestsMixin.get_mocked_responsecCtr0NotImplementedErrorr1r+r+r,get_expected_to_str4r4z#OAuthTestsMixin.get_expected_to_strcs8tt|t|j|_td}|j||_ dSNr) superr.setUpr-r'r*rr get_providerr)r2r( __class__r+r,r;7s  zOAuthTestsMixin.setUpFSOCIALACCOUNT_AUTO_SIGNUPcCs|}|durtd|jjdS||}||td|j td}|j dj }t t |jttddd}|jjtd|d}|j|dd d |j d }||tjj ||jjd }|}||||||dS) N&Cannot test provider %s, no oauth mocksocialaccount_signupformii)emailusername)data/accounts/profile/Ffetch_redirect_responseuserrJr)r3warningswarnridloginassertRedirectsrclientrcontext sociallogindictr rJstrrandom randrangepost assertFalsehas_usable_passwordrrget_provider_account assertEqualto_strr8get_avatar_urlget_profile_url get_brand)r2 resp_mocksresprSrFrJaccountprovider_accountr+r+r, test_login=s,    zOAuthTestsMixin.test_loginT)r@SOCIALACCOUNT_EMAIL_REQUIREDACCOUNT_EMAIL_REQUIREDcCsT|}|std|jjdS||}|j|ddd||jd dS)NrArGFrHrJ) r3rLrMrrNrOrPrYrRrZ)r2rarbr+r+r,test_auto_signupXs z OAuthTestsMixin.test_auto_signuprOcCsttddddi|jt|jjddtt|d}Wdn1s*wYt |d}t |j }t|jjd }| |d d  |d t|g|R|j|}Wd|S1skwY|S) N)oauth_token=token&oauth_token_secret=psst content-type text/html_login?processlocation _callbackoauth_callbackr)rrrQrXrrrNr rTrrquery assertGreaterfindget_access_token_responser)r2rarprbpq complete_urlr+r+r,rOfs2   zOAuthTestsMixin.logincCstddddiS)Nrirjrkrl)rr1r+r+r,rw{s z)OAuthTestsMixin.get_access_token_responsecCs4|jt|jjd}||dttdddS)Nrr%socialaccount/authentication_error.%sACCOUNT_TEMPLATE_EXTENSIONhtml)rQrrrrNassertTemplateUsedgetattrrr2rbr+r+r,test_authentication_errors z)OAuthTestsMixin.test_authentication_error)rO)__name__ __module__ __qualname__rU__annotations__r3r8r;rrerhrOrwr __classcell__r+r+r=r,r..s     r.cs&Gfdddtt}dj|_|S)NcseZdZjZdS)z!create_oauth_tests..ClassN)rrrrNr'r+rr+r,Classs r OAuthTests_)r.rrNr)rrr+rr,create_oauth_testss rcseZdZUeed<ddZddZdefddZdefd d Zd-d d Z ddZ fddZ ddZ ddZ ddZeddddZeddddZeddddZed d d.d!d"Zed d d#d$Zd/d'd(Zd)d*Zd+d,ZZS)0OAuth2TestsMixinr'cCr/r0r+r1r+r+r,r3r4z$OAuth2TestsMixin.get_mocked_responsecCr5r0r6r1r+r+r,r8r4z$OAuth2TestsMixin.get_expected_to_strreturncCdS)Ntestacr+r1r+r+r,get_access_tokenr4z!OAuth2TestsMixin.get_access_tokencCr)Ntestrfr+r1r+r+r,get_refresh_tokenr4z"OAuth2TestsMixin.get_refresh_tokenTcCs.tj|d}|r||d<t|S)N)uid access_token refresh_token)uuiduuid4hexrrjsondumps)r2with_refresh_tokenresponser+r+r,get_login_response_jsons   z(OAuth2TestsMixin.get_login_response_jsoncGst|Sr0)rr2 responsesr+r+r,rsz OAuth2TestsMixin.mocked_responsecstt||dSr0)r:rr;setup_providerr1r=r+r,r;s zOAuth2TestsMixin.setUpcCs.t|j|_td|_|j|j|_dSr9)r-r'r*rrr(r<rr1r+r+r,rs zOAuth2TestsMixin.setup_providercCsntj|jji}|}d|d<|j|jj|id||jiWddS1s0wYdS)NFOAUTH_PKCE_ENABLEDSOCIALACCOUNT_PROVIDERS) r PROVIDERSrr*rcopyrr\get_pkce_params)r2provider_settingsprovider_settings_with_pkce_setr+r+r, test_provider_has_no_pkce_paramss "z1OAuth2TestsMixin.test_provider_has_no_pkce_paramscCstj|jji}|}d|d<|j|jj|id8|j}|t | hdt |d d}t|}|d}|d|ksKJWddS1sVwYdS) NTrr> code_verifiercode_challengecode_challenge_methodrascii=r)r rrr*rrrrr\setkeyshashlibsha256encodebase64urlsafe_b64encodedigestrstrip)r2rr pkce_paramshashed_verifierrcode_challenge_without_paddingr+r+r,test_provider_has_pkce_paramss$     "z.OAuth2TestsMixin.test_provider_has_pkce_paramsFr?cCs@|}|std|jjdS||}||tddS)NrArB)r3rLrMrrNrOrPr)r2 resp_mockrbr+r+r,reszOAuth2TestsMixin.test_logincCtj|jji}|}d|d<|j|jj|id.|}|s4t d|jj  WddS| |}| |t dWddS1sLwYdS)NFrrrArBr rrr*rrrr3rLrMrNrOrPr)r2r$provider_settings_with_pkce_disabledrrbr+r+r,test_login_with_pkce_disableds&  "z.OAuth2TestsMixin.test_login_with_pkce_disabledcCr)NTrrrArBr)r2r#provider_settings_with_pkce_enabledrrbr+r+r,test_login_with_pkce_enableds&  "z-OAuth2TestsMixin.test_login_with_pkce_enabled)SOCIALACCOUNT_STORE_TOKENSc CsRd}tdd}t||t|d|d|tjj||ddd|jj |j dd|j | dd |rC|j | d dd t jj ||jjjpO|jjd }|}|||||||jr|j}|||jt|jdd }d|vr|d}n d|vr|d}nd}||j |dSdS)Nzuser@example.comT) is_activerJtest)rJrDprimaryverified)rEpasswordconnectroF)rrprKrr refreshToken)!rr r set_passwordsaver rr rQrOrEr3rfilterrr*r'rNrr[r\r]r8r^r_r`socialtoken_setrtokenrloadsr token_secret) r2multiple_loginrDrJsardtrbrr+r+r,test_account_tokenssH       z$OAuth2TestsMixin.test_account_tokenscCs|jdddS)z fails if a login missing a refresh token, deletes the previously saved refresh token. Systems such as google's oauth only send a refresh token on first login. T)rN)rr1r+r+r,+test_account_refresh_token_saved_next_login8szrc@sreZdZddddZdddgdd Zdddgdd Zd d Zd d ZddZddZ ddZ e ddddZ dS)OpenIDConnectTestsz/login /userinfoz/token)authorization_endpointuserinfo_endpointtoken_endpointz&https://secure.gravatar.com/avatar/123#ness@some.oidc.server.onett.exampleiNess)picturerDsub identitiesrcGst|d|jiS)Ncallback)r_mocked_responsesrr+r+r,rsz"OpenIDConnectTests.mocked_responsecCr)Nrr+r1r+r+r,r8r4z&OpenIDConnectTests.get_expected_to_strcCsVt|j|_|j|j_d|j_ddi|j_|jtd|_|j |j|_dS)Nopenid_connect server_urlzhttps://unittest.example.comr) r-r'r*rrrrrr(r<r1r+r+r,rs   z!OpenIDConnectTests.setup_providercCr)NTr+r1r+r+r,r3sz&OpenIDConnectTests.get_mocked_responsecOs<|drtdt|jS|drtdt|jSdS)Nz!/.well-known/openid-configurationrir)rrrroidc_info_contentuserinfo_content)r2urlrrr+r+r,rs  z$OpenIDConnectTests._mocked_responsesTr?cCs>|}|j|dddtjj|jjd}||j|jdS)NrGFrHr) rOrPrrrr*r'assertDictEqual extra_data)r2rbrr+r+r,test_login_auto_signupsz)OpenIDConnectTests.test_login_auto_signupN) rrrrrrrr8rr3rrrr+r+r+r,rs0 r)-rrrrVrrrL urllib.parserr django.confrdjango.contrib.authr django.testrdjango.test.utilsr django.urlsrdjango.utils.httpr allauth.app_settingsr!allauth.account.modelsr allauth.account.utilsr r allauth.socialaccountr allauth.socialaccount.adapterrallauth.socialaccount.modelsrr allauth.testsrrrr-r.rrrr+r+r+r,s6         _w