kennethreitz/httpbin
1
0
Fork 0
mirror of https://github.com/kennethreitz/httpbin.git synced 2026-06-05 06:46:16 +00:00
Code Issues Packages Projects Releases Wiki Activity

Fixed incorrect Bearer token extraction and added tests

Browse Source
This commit is contained in:
Helen Kosova
2018-05-24 20:38:29 +03:00
parent 4163debe38
commit 4dcfa3d47d
2 changed files with 34 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files
test_httpbin.py
+31
View File
@@ -280,6 +280,37 @@ class HttpbinTestCase(unittest.TestCase):
response = self.app.get('/brotli')
self.assertEqual(response.status_code, 200)
def test_bearer_auth(self):
token = 'abcd1234'
response = self.app.get(
'/bearer',
headers={'Authorization': 'Bearer ' + token}
)
self.assertEqual(response.status_code, 200)
assert json.loads(response.data.decode('utf-8'))['token'] == token
def test_bearer_auth_with_wrong_authorization_type(self):
"""Sending an non-Bearer Authorization header to /bearer should return a 401"""
auth_headers = (
('Authorization', 'Basic 1234abcd'),
('Authorization', ''),
('', '')
)
for header in auth_headers:
response = self.app.get(
'/bearer',
headers={header[0]: header[1]}
)
self.assertEqual(response.status_code, 401)
def test_bearer_auth_with_missing_token(self):
"""Sending an 'Authorization: Bearer' header with no token to /bearer should return a 401"""
response = self.app.get(
'/bearer',
headers={'Authorization': 'Bearer'}
)
self.assertEqual(response.status_code, 401)
def test_digest_auth_with_wrong_password(self):
auth_header = 'Digest username="user",realm="wrong",nonce="wrong",uri="/digest-auth/user/passwd/MD5",response="wrong",opaque="wrong"'
response = self.app.get(