mirror/fastapi
1
0
Fork 0
mirror of https://github.com/fastapi/fastapi.git synced 2026-05-18 13:27:45 -04:00
Code Issues Packages Projects Releases Wiki Activity

Add tests for OAuth2 Password scheme

Browse Source
This commit is contained in:
Sebastián Ramírez
2018-12-10 20:12:28 +04:00
parent ece3252385
commit 315eb88900
2 changed files with 54 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

34
tests/main.py
View File

@@ -1,3 +1,6 @@
from typing import Optional
import fastapi
from fastapi import (
Body,
Cookie,
@@ -10,8 +13,14 @@ from fastapi import (
Query,
Security,
)
from fastapi.security import HTTPBasic, OAuth2, OAuth2PasswordRequestForm
from fastapi.security import (
HTTPBasic,
OAuth2,
OAuth2PasswordBearer,
OAuth2PasswordRequestForm,
)
from pydantic import BaseModel
from starlette.exceptions import HTTPException
from starlette.responses import HTMLResponse, JSONResponse, PlainTextResponse
from starlette.status import HTTP_202_ACCEPTED
from starlette.testclient import TestClient
@@ -240,14 +249,27 @@ def get_security_oauth2(sec=Security(reusable_oauth2, scopes=["read:user"])):
return sec
reusable_oauth2b = OAuth2PasswordBearer(tokenUrl="/token")
class User(BaseModel):
username: str
def get_current_user(oauth_header: str = Security(reusable_oauth2b)):
user = User(username=oauth_header)
return user
@app.get("/security/oauth2b")
def read_current_user(current_user: User = Depends(get_current_user)):
return current_user
@app.post("/token")
def post_token(request_data: OAuth2PasswordRequestForm = Form(...)):
print(request_data)
data = request_data.parse()
print(data)
print(request_data())
access_token = request_data.username + ":" + request_data.password
access_token = data.username + ":" + data.password
return {"access_token": access_token}

26
tests/test_security.py Normal file
View File

@@ -0,0 +1,26 @@
import pytest
from starlette.testclient import TestClient
from .main import app
client = TestClient(app)
def test_security_oauth2_password_bearer():
response = client.get(
"/security/oauth2b", headers={"Authorization": "Bearer footokenbar"}
)
assert response.status_code == 200
assert response.json() == {"username": "footokenbar"}
def test_security_oauth2_password_bearer_wrong_header():
response = client.get("/security/oauth2b", headers={"Authorization": "footokenbar"})
assert response.status_code == 403
assert response.json() == {"detail": "Not authenticated"}
def test_security_oauth2_password_bearer_no_header():
response = client.get("/security/oauth2b")
assert response.status_code == 403
assert response.json() == {"detail": "Not authenticated"}