summaryrefslogtreecommitdiffstats
path: root/utils/test/testapi/opnfv_testapi/tests/unit/test_token.py
blob: ed3eda0f76af987757d1aff67139857058f1ef92 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
# All rights reserved. This program and the accompanying materials
# are made available under the terms of the Apache License, Version 2.0
# which accompanies this distribution, and is available at
# http://www.apache.org/licenses/LICENSE-2.0

import httplib
import unittest

from tornado import web

import fake_pymongo
from opnfv_testapi.common import message
from opnfv_testapi.resources import project_models
from opnfv_testapi.router import url_mappings
import test_base as base


class TestToken(base.TestBase):
    def get_app(self):
        return web.Application(
            url_mappings.mappings,
            db=fake_pymongo,
            debug=True,
            auth=True
        )


class TestTokenCreateProject(TestToken):
    def setUp(self):
        super(TestTokenCreateProject, self).setUp()
        self.req_d = project_models.ProjectCreateRequest('vping')
        fake_pymongo.tokens.insert({"access_token": "12345"})
        self.basePath = '/api/v1/projects'

    def test_projectCreateTokenInvalid(self):
        self.headers['X-Auth-Token'] = '1234'
        code, body = self.create_d()
        self.assertEqual(code, httplib.FORBIDDEN)
        self.assertIn(message.invalid_token(), body)

    def test_projectCreateTokenUnauthorized(self):
        self.headers.pop('X-Auth-Token')
        code, body = self.create_d()
        self.assertEqual(code, httplib.UNAUTHORIZED)
        self.assertIn(message.unauthorized(), body)

    def test_projectCreateTokenSuccess(self):
        self.headers['X-Auth-Token'] = '12345'
        code, body = self.create_d()
        self.assertEqual(code, httplib.OK)


class TestTokenDeleteProject(TestToken):
    def setUp(self):
        super(TestTokenDeleteProject, self).setUp()
        self.req_d = project_models.ProjectCreateRequest('vping')
        fake_pymongo.tokens.insert({"access_token": "12345"})
        self.basePath = '/api/v1/projects'

    def test_projectDeleteTokenIvalid(self):
        self.headers['X-Auth-Token'] = '12345'
        self.create_d()
        self.headers['X-Auth-Token'] = '1234'
        code, body = self.delete(self.req_d.name)
        self.assertEqual(code, httplib.FORBIDDEN)
        self.assertIn(message.invalid_token(), body)

    def test_projectDeleteTokenUnauthorized(self):
        self.headers['X-Auth-Token'] = '12345'
        self.create_d()
        self.headers.pop('X-Auth-Token')
        code, body = self.delete(self.req_d.name)
        self.assertEqual(code, httplib.UNAUTHORIZED)
        self.assertIn(message.unauthorized(), body)

    def test_projectDeleteTokenSuccess(self):
        self.headers['X-Auth-Token'] = '12345'
        self.create_d()
        code, body = self.delete(self.req_d.name)
        self.assertEqual(code, httplib.OK)


class TestTokenUpdateProject(TestToken):
    def setUp(self):
        super(TestTokenUpdateProject, self).setUp()
        self.req_d = project_models.ProjectCreateRequest('vping')
        fake_pymongo.tokens.insert({"access_token": "12345"})
        self.basePath = '/api/v1/projects'

    def test_projectUpdateTokenIvalid(self):
        self.headers['X-Auth-Token'] = '12345'
        self.create_d()
        code, body = self.get(self.req_d.name)
        self.headers['X-Auth-Token'] = '1234'
        req = project_models.ProjectUpdateRequest('newName', 'new description')
        code, body = self.update(req, self.req_d.name)
        self.assertEqual(code, httplib.FORBIDDEN)
        self.assertIn(message.invalid_token(), body)

    def test_projectUpdateTokenUnauthorized(self):
        self.headers['X-Auth-Token'] = '12345'
        self.create_d()
        code, body = self.get(self.req_d.name)
        self.headers.pop('X-Auth-Token')
        req = project_models.ProjectUpdateRequest('newName', 'new description')
        code, body = self.update(req, self.req_d.name)
        self.assertEqual(code, httplib.UNAUTHORIZED)
        self.assertIn(message.unauthorized(), body)

    def test_projectUpdateTokenSuccess(self):
        self.headers['X-Auth-Token'] = '12345'
        self.create_d()
        code, body = self.get(self.req_d.name)
        req = project_models.ProjectUpdateRequest('newName', 'new description')
        code, body = self.update(req, self.req_d.name)
        self.assertEqual(code, httplib.OK)

if __name__ == '__main__':
    unittest.main()