mirror/bracket
1
0
Fork 0
mirror of https://github.com/evroon/bracket.git synced 2026-01-01 18:48:59 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
implement-sso
bracket/backend/tests/integration_tests/api/auth_test.py
Erik Vroon 558c3163d1 Update pytest asyncio to 0.25.3 (#1110) 
Updates the requirements on
[pytest-asyncio](https://github.com/pytest-dev/pytest-asyncio) to permit
the latest version.
- [Release notes](https://github.com/pytest-dev/pytest-asyncio/releases)
- [Commits](pytest-dev/pytest-asyncio@v0.21.2...v0.25.3)
2025-02-08 11:12:32 +00:00

102 lines
3.7 KiB
Python
Raw Permalink Blame History

from collections.abc import Generator
from contextlib import contextmanager
from unittest.mock import Mock, patch
import jwt
import pytest
from bracket.config import config
from bracket.models.db.account import UserAccountType
from bracket.utils.dummy_records import DUMMY_CLUB, DUMMY_TOURNAMENT
from bracket.utils.http import HTTPMethod
from bracket.utils.types import JsonDict
from tests.integration_tests.api.shared import send_auth_request, send_request
from tests.integration_tests.mocks import MOCK_NOW, get_mock_token, get_mock_user
from tests.integration_tests.models import AuthContext
from tests.integration_tests.sql import inserted_club, inserted_tournament, inserted_user
@contextmanager
def mock_auth_time() -> Generator[None, None, None]:
with patch("bracket.routes.auth.datetime_utc.now", Mock(return_value=MOCK_NOW)):
yield
@pytest.mark.asyncio(loop_scope="session")
async def test_get_token_success(startup_and_shutdown_uvicorn_server: None) -> None:
mock_user = get_mock_user()
body = {
"username": mock_user.email,
"password": "mypassword",
}
with mock_auth_time():
async with inserted_user(mock_user):
response = JsonDict(await send_request(HTTPMethod.POST, "token", body))
assert "access_token" in response
assert response.get("token_type") == "bearer"
decoded = jwt.decode(response["access_token"], config.jwt_secret, algorithms=["HS256"])
assert decoded == {"user": mock_user.email, "exp": 7258723200}
@pytest.mark.asyncio(loop_scope="session")
async def test_get_token_invalid_credentials(startup_and_shutdown_uvicorn_server: None) -> None:
mock_user = get_mock_user()
body = {
"username": mock_user,
"password": "invalid password",
}
with mock_auth_time():
async with inserted_user(mock_user):
response = JsonDict(await send_request(HTTPMethod.POST, "token", body))
assert response == {"detail": "Incorrect email or password"}
@pytest.mark.asyncio(loop_scope="session")
async def test_auth_on_protected_endpoint(startup_and_shutdown_uvicorn_server: None) -> None:
mock_user = get_mock_user()
headers = {"Authorization": f"Bearer {get_mock_token(mock_user)}"}
async with inserted_user(mock_user) as user_inserted:
response = JsonDict(
await send_request(HTTPMethod.GET, f"users/{user_inserted.id}", {}, None, headers)
)
assert response == {
"data": {
"id": user_inserted.id,
"email": user_inserted.email,
"name": user_inserted.name,
"created": "2000-01-01T00:00:00Z",
"account_type": UserAccountType.REGULAR.value,
}
}
@pytest.mark.asyncio(loop_scope="session")
async def test_invalid_token(startup_and_shutdown_uvicorn_server: None) -> None:
headers = {"Authorization": "Bearer some.invalid.token"}
response = JsonDict(await send_request(HTTPMethod.GET, "users/me", {}, None, headers))
assert response == {"detail": "Could not validate credentials"}
@pytest.mark.asyncio(loop_scope="session")
async def test_not_authenticated_for_tournament(
startup_and_shutdown_uvicorn_server: None, auth_context: AuthContext
) -> None:
async with inserted_club(DUMMY_CLUB) as club_inserted:
async with inserted_tournament(
DUMMY_TOURNAMENT.model_copy(
update={"club_id": club_inserted.id, "dashboard_endpoint": "some-slug"}
)
) as tournament_inserted:
response = JsonDict(
await send_auth_request(
HTTPMethod.GET, f"tournaments/{tournament_inserted.id}/players", auth_context
)
)
assert response == {"detail": "Could not validate credentials"}
Reference in New Issue View Git Blame Copy Permalink