pyoidc-ozwillo/tests/test_oauth2_provider.py

from mako.lookup import TemplateLookup
from oic.oauth2 import rndstr
from oic.utils.authn.authn_context import AuthnBroker
from oic.utils.authn.client import verify_client
from oic.utils.authn.user import UserAuthnMethod
from oic.utils.authz import Implicit
from oic.utils.http_util import Response

from oic.oauth2.message import AuthorizationRequest
from oic.oauth2.message import AccessTokenRequest
from oic.oauth2.message import AccessTokenResponse
from oic.oauth2.message import TokenErrorResponse

from oic.utils import sdb
from oic.oauth2.consumer import Consumer
from oic.oauth2.provider import Provider

from utils_for_tests import _eq

CLIENT_CONFIG = {
    "client_id": "client1",
    "ca_certs": "/usr/local/etc/oic/ca_certs.txt",
}

CONSUMER_CONFIG = {
    "authz_page": "/authz",
    "flow_type": "code",
    #"password": args.passwd,
    "scope": [],
    "response_type": "code",
    #"expire_in": 600,
}

SERVER_INFO = {
    "version": "3.0",
    "issuer": "https://connect-op.heroku.com",
    "authorization_endpoint": "http://localhost:8088/authorization",
    "token_endpoint": "http://localhost:8088/token",
    #"userinfo_endpoint":"http://localhost:8088/user_info",
    #"check_id_endpoint":"http://localhost:8088/id_token",
    #"registration_endpoint":"https://connect-op.heroku.com/connect/client",
    #"scopes_supported":["openid","profile","email","address","PPID"],
    "flows_supported": ["code", "token", "code token"],
    #"identifiers_supported":["public","ppid"],
    #"x509_url":"https://connect-op.heroku.com/cert.pem"
}

CDB = {
    "a1b2c3": {
        "password": "hemligt",
        "client_secret": "drickyoughurt"
    },
    "client1": {
        "client_secret": "hemlighet",
        "redirect_uris": [("http://localhost:8087/authz", None)]
    }
}

PASSWD = {"user": "password"}

ROOT = '../oc3/'
tl = TemplateLookup(directories=[ROOT + 'templates', ROOT + 'htdocs'],
                    module_directory=ROOT + 'modules',
                    input_encoding='utf-8', output_encoding='utf-8')


class DummyAuthn(UserAuthnMethod):
    def __init__(self, srv, user):
        UserAuthnMethod.__init__(self, srv)
        self.user = user

    def authenticated_as(self, cookie=None, **kwargs):
        return {"uid": self.user}

AUTHN_BROKER = AuthnBroker()
AUTHN_BROKER.add("UNDEFINED", DummyAuthn(None, "username"))

# dealing with authorization
AUTHZ = Implicit()


def content_type(headers):
    for key, val in headers:
        if key == "Content-type":
            if val == "application/json":
                return "json"


def test_provider_init():
    provider = Provider("pyoicserv", sdb.SessionDB(SERVER_INFO["issuer"]), CDB,
                        AUTHN_BROKER, AUTHZ, verify_client)

    assert provider

    provider = Provider("pyoicserv", sdb.SessionDB(SERVER_INFO["issuer"]), CDB,
                        AUTHN_BROKER, AUTHZ, verify_client,
                        urlmap={"client1": ["https://example.com/authz"]})

    assert provider.urlmap["client1"] == ["https://example.com/authz"]


def test_provider_authorization_endpoint():
    provider = Provider("pyoicserv", sdb.SessionDB(SERVER_INFO["issuer"]), CDB,
                        AUTHN_BROKER, AUTHZ, verify_client)

    bib = {"scope": ["openid"],
           "state": "id-6da9ca0cc23959f5f33e8becd9b08cae",
           "redirect_uri": "http://localhost:8087authz",
           "response_type": ["code"],
           "client_id": "a1b2c3"}

    arq = AuthorizationRequest(**bib)

    QUERY_STRING = arq.to_urlencoded()

    resp = provider.authorization_endpoint(request=QUERY_STRING)

    assert isinstance(resp, Response)


def test_provider_authenticated():
    provider = Provider("pyoicserv", sdb.SessionDB(SERVER_INFO["issuer"]), CDB,
                        AUTHN_BROKER, AUTHZ, verify_client, symkey=rndstr(16))
    _session_db = {}
    cons = Consumer(_session_db, client_config=CLIENT_CONFIG,
                    server_info=SERVER_INFO, **CONSUMER_CONFIG)
    cons.debug = True

    sid, location = cons.begin("http://localhost:8087",
                               "http://localhost:8088/authorization")

    query_string = location.split("?")[1]

    resp = provider.authorization_endpoint(query_string)
    assert resp.status == "302 Found"
    print resp.headers
    print resp.message
    if content_type(resp.headers) == "json":
        resp = resp.message
    else:
        resp = resp.message.split("?")[1]
    aresp = cons.handle_authorization_response(query=resp)

    print aresp.keys()
    assert aresp.type() == "AuthorizationResponse"
    assert _eq(aresp.keys(), ['state', 'code'])

    print cons.grant[sid].keys()
    assert _eq(cons.grant[sid].keys(), ['tokens', 'code', 'exp_in',
                                               'seed', 'id_token',
                                               'grant_expiration_time'])


def test_provider_authenticated_token():
    provider = Provider("pyoicserv", sdb.SessionDB(SERVER_INFO["issuer"]), CDB,
                        AUTHN_BROKER, AUTHZ, verify_client, symkey=rndstr(16))
    _session_db = {}
    cons = Consumer(_session_db, client_config=CLIENT_CONFIG,
                    server_info=SERVER_INFO, **CONSUMER_CONFIG)
    cons.debug = True

    sid, location = cons.begin("http://localhost:8087",
                               "http://localhost:8088/authorization",
                               "token")

    QUERY_STRING = location.split("?")[1]
    resp = provider.authorization_endpoint(QUERY_STRING)
    print resp.headers
    print resp.message
    txt = resp.message
    assert "access_token=" in txt
    assert "token_type=Bearer" in txt


def test_token_endpoint():
    provider = Provider("pyoicserv", sdb.SessionDB(SERVER_INFO["issuer"]), CDB,
                        AUTHN_BROKER, AUTHZ, verify_client, symkey=rndstr(16))

    authreq = AuthorizationRequest(state="state",
                                   redirect_uri="http://example.com/authz",
                                   client_id="client1")

    _sdb = provider.sdb
    sid = _sdb.token.key(user="sub", areq=authreq)
    access_grant = _sdb.token(sid=sid)
    _sdb[sid] = {
        "oauth_state": "authz",
        "sub": "sub",
        "authzreq": "",
        "client_id": "client1",
        "code": access_grant,
        "code_used": False,
        "redirect_uri": "http://example.com/authz"
    }

    # Construct Access token request
    areq = AccessTokenRequest(code=access_grant,
                              redirect_uri="http://example.com/authz",
                              client_id="client1", client_secret="hemlighet",)

    print areq.to_dict()
    resp = provider.token_endpoint(request=areq.to_urlencoded())
    print resp.message
    atr = AccessTokenResponse().deserialize(resp.message, "json")

    print atr.keys()
    assert _eq(atr.keys(), ['access_token', 'expires_in', 'token_type',
                            'refresh_token'])


def test_token_endpoint_unauth():
    provider = Provider("pyoicserv", sdb.SessionDB(SERVER_INFO["issuer"]), CDB,
                        AUTHN_BROKER, AUTHZ,
                        verify_client, symkey=rndstr(16))

    authreq = AuthorizationRequest(state="state",
                                   redirect_uri="http://example.com/authz",
                                   client_id="client1")

    _sdb = provider.sdb
    sid = _sdb.token.key(user="sub", areq=authreq)
    access_grant = _sdb.token(sid=sid)
    _sdb[sid] = {
        "oauth_state": "authz",
        "sub": "sub",
        "authzreq": "",
        "client_id": "client1",
        "code": access_grant,
        "code_used": False,
        "redirect_uri": "http://example.com/authz"
    }

    # Construct Access token request
    areq = AccessTokenRequest(code=access_grant,
                              redirect_uri="http://example.com/authz",
                              client_id="client2", client_secret="hemlighet",)

    print areq.to_dict()
    resp = provider.token_endpoint(request=areq.to_urlencoded())
    print resp.message
    atr = TokenErrorResponse().deserialize(resp.message, "json")
    print atr.keys()
    assert _eq(atr.keys(), ['error_description', 'error'])

if __name__ == "__main__":
    test_provider_authenticated()
One step further into the refactoring. 2013-03-31 17:41:22 +02:00			`from mako.lookup import TemplateLookup`
Replaced M2Crypto with PyCrypto 2013-12-02 14:42:36 +01:00			`from oic.oauth2 import rndstr`
Made all the tests run OK 2013-09-23 12:08:42 +02:00			`from oic.utils.authn.authn_context import AuthnBroker`
Fixed tests 2013-05-01 09:08:21 +02:00			`from oic.utils.authn.client import verify_client`
			`from oic.utils.authn.user import UserAuthnMethod`
Fixed method name screw-up. 2014-01-22 14:49:46 +01:00			`from oic.utils.authz import Implicit`
One step further into the refactoring. 2013-03-31 17:41:22 +02:00			`from oic.utils.http_util import Response`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00
Complete rewrite of the base library classes. 2012-05-15 14:29:18 +02:00			`from oic.oauth2.message import AuthorizationRequest`
			`from oic.oauth2.message import AccessTokenRequest`
			`from oic.oauth2.message import AccessTokenResponse`
			`from oic.oauth2.message import TokenErrorResponse`

One step further into the refactoring. 2013-03-31 17:41:22 +02:00			`from oic.utils import sdb`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`from oic.oauth2.consumer import Consumer`
One step further into the refactoring. 2013-03-31 17:41:22 +02:00			`from oic.oauth2.provider import Provider`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00
Adapted tests to focus on content rather than on sort order 2014-11-24 23:18:29 +01:00			`from utils_for_tests import _eq`

Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`CLIENT_CONFIG = {`
Made all the tests run OK 2013-09-23 12:08:42 +02:00			`"client_id": "client1",`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`"ca_certs": "/usr/local/etc/oic/ca_certs.txt",`
			`}`

			`CONSUMER_CONFIG = {`
			`"authz_page": "/authz",`
			`"flow_type": "code",`
			`#"password": args.passwd,`
Complete rewrite of the base library classes. 2012-05-15 14:29:18 +02:00			`"scope": [],`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`"response_type": "code",`
			`#"expire_in": 600,`
			`}`

Moving from demanding WSGI based web service. 2013-03-14 15:14:38 +01:00			`SERVER_INFO = {`
			`"version": "3.0",`
			`"issuer": "https://connect-op.heroku.com",`
			`"authorization_endpoint": "http://localhost:8088/authorization",`
			`"token_endpoint": "http://localhost:8088/token",`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`#"userinfo_endpoint":"http://localhost:8088/user_info",`
			`#"check_id_endpoint":"http://localhost:8088/id_token",`
			`#"registration_endpoint":"https://connect-op.heroku.com/connect/client",`
			`#"scopes_supported":["openid","profile","email","address","PPID"],`
Moving from demanding WSGI based web service. 2013-03-14 15:14:38 +01:00			`"flows_supported": ["code", "token", "code token"],`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`#"identifiers_supported":["public","ppid"],`
			`#"x509_url":"https://connect-op.heroku.com/cert.pem"`
			`}`

			`CDB = {`
			`"a1b2c3": {`
			`"password": "hemligt",`
			`"client_secret": "drickyoughurt"`
			`},`
One step further into the refactoring. 2013-03-31 17:41:22 +02:00			`"client1": {`
Made all the tests run OK 2013-09-23 12:08:42 +02:00			`"client_secret": "hemlighet",`
			`"redirect_uris": [("http://localhost:8087/authz", None)]`
One step further into the refactoring. 2013-03-31 17:41:22 +02:00			`}`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`}`

One step further into the refactoring. 2013-03-31 17:41:22 +02:00			`PASSWD = {"user": "password"}`
Moving from demanding WSGI based web service. 2013-03-14 15:14:38 +01:00
One step further into the refactoring. 2013-03-31 17:41:22 +02:00			`ROOT = '../oc3/'`
			`tl = TemplateLookup(directories=[ROOT + 'templates', ROOT + 'htdocs'],`
			`module_directory=ROOT + 'modules',`
			`input_encoding='utf-8', output_encoding='utf-8')`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00

One step further into the refactoring. 2013-03-31 17:41:22 +02:00			`class DummyAuthn(UserAuthnMethod):`
			`def __init__(self, srv, user):`
			`UserAuthnMethod.__init__(self, srv)`
			`self.user = user`
Moving from demanding WSGI based web service. 2013-03-14 15:14:38 +01:00
Changed claims format 2013-05-28 16:02:12 +02:00			`def authenticated_as(self, cookie=None, **kwargs):`
One step further into the refactoring. 2013-03-31 17:41:22 +02:00			`return {"uid": self.user}`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00
Made all the tests run OK 2013-09-23 12:08:42 +02:00			`AUTHN_BROKER = AuthnBroker()`
Replaced M2Crypto with PyCrypto 2013-12-02 14:42:36 +01:00			`AUTHN_BROKER.add("UNDEFINED", DummyAuthn(None, "username"))`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00
One step further into the refactoring. 2013-03-31 17:41:22 +02:00			`# dealing with authorization`
Made all the tests run OK 2013-09-23 12:08:42 +02:00			`AUTHZ = Implicit()`


			`def content_type(headers):`
			`for key, val in headers:`
			`if key == "Content-type":`
			`if val == "application/json":`
			`return "json"`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00
Moving from demanding WSGI based web service. 2013-03-14 15:14:38 +01:00
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`def test_provider_init():`
Fixed tests 2014-11-24 10:48:53 +01:00			`provider = Provider("pyoicserv", sdb.SessionDB(SERVER_INFO["issuer"]), CDB,`
			`AUTHN_BROKER, AUTHZ, verify_client)`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00
			`assert provider`

Fixed tests 2014-11-24 10:48:53 +01:00			`provider = Provider("pyoicserv", sdb.SessionDB(SERVER_INFO["issuer"]), CDB,`
			`AUTHN_BROKER, AUTHZ, verify_client,`
One step further into the refactoring. 2013-03-31 17:41:22 +02:00			`urlmap={"client1": ["https://example.com/authz"]})`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00
			`assert provider.urlmap["client1"] == ["https://example.com/authz"]`

Moving from demanding WSGI based web service. 2013-03-14 15:14:38 +01:00
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`def test_provider_authorization_endpoint():`
Fixed tests 2014-11-24 10:48:53 +01:00			`provider = Provider("pyoicserv", sdb.SessionDB(SERVER_INFO["issuer"]), CDB,`
			`AUTHN_BROKER, AUTHZ, verify_client)`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00
			`bib = {"scope": ["openid"],`
			`"state": "id-6da9ca0cc23959f5f33e8becd9b08cae",`
			`"redirect_uri": "http://localhost:8087authz",`
			`"response_type": ["code"],`
			`"client_id": "a1b2c3"}`

Complete rewrite of the base library classes. 2012-05-15 14:29:18 +02:00			`arq = AuthorizationRequest(**bib)`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00
Moving from demanding WSGI based web service. 2013-03-14 15:14:38 +01:00			`QUERY_STRING = arq.to_urlencoded()`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00
Changed claims format 2013-05-28 16:02:12 +02:00			`resp = provider.authorization_endpoint(request=QUERY_STRING)`
Moving from demanding WSGI based web service. 2013-03-14 15:14:38 +01:00
			`assert isinstance(resp, Response)`

Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00
			`def test_provider_authenticated():`
Fixed tests 2014-11-24 10:48:53 +01:00			`provider = Provider("pyoicserv", sdb.SessionDB(SERVER_INFO["issuer"]), CDB,`
			`AUTHN_BROKER, AUTHZ, verify_client, symkey=rndstr(16))`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`_session_db = {}`
Moving from demanding WSGI based web service. 2013-03-14 15:14:38 +01:00			`cons = Consumer(_session_db, client_config=CLIENT_CONFIG,`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`server_info=SERVER_INFO, **CONSUMER_CONFIG)`
			`cons.debug = True`

Minor tweaks. 2014-10-01 11:37:06 +02:00			`sid, location = cons.begin("http://localhost:8087",`
			`"http://localhost:8088/authorization")`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00
Replaced M2Crypto with PyCrypto 2013-12-02 14:42:36 +01:00			`query_string = location.split("?")[1]`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00
Replaced M2Crypto with PyCrypto 2013-12-02 14:42:36 +01:00			`resp = provider.authorization_endpoint(query_string)`
Made all the tests run OK 2013-09-23 12:08:42 +02:00			`assert resp.status == "302 Found"`
One step further into the refactoring. 2013-03-31 17:41:22 +02:00			`print resp.headers`
Moving from demanding WSGI based web service. 2013-03-14 15:14:38 +01:00			`print resp.message`
Made all the tests run OK 2013-09-23 12:08:42 +02:00			`if content_type(resp.headers) == "json":`
			`resp = resp.message`
			`else:`
			`resp = resp.message.split("?")[1]`
One step further into the refactoring. 2013-03-31 17:41:22 +02:00			`aresp = cons.handle_authorization_response(query=resp)`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00
			`print aresp.keys()`
			`assert aresp.type() == "AuthorizationResponse"`
			`assert _eq(aresp.keys(), ['state', 'code'])`

Minor tweaks. 2014-10-01 11:37:06 +02:00			`print cons.grant[sid].keys()`
			`assert _eq(cons.grant[sid].keys(), ['tokens', 'code', 'exp_in',`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`'seed', 'id_token',`
			`'grant_expiration_time'])`

Moving from demanding WSGI based web service. 2013-03-14 15:14:38 +01:00
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`def test_provider_authenticated_token():`
Fixed tests 2014-11-24 10:48:53 +01:00			`provider = Provider("pyoicserv", sdb.SessionDB(SERVER_INFO["issuer"]), CDB,`
			`AUTHN_BROKER, AUTHZ, verify_client, symkey=rndstr(16))`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`_session_db = {}`
Moving from demanding WSGI based web service. 2013-03-14 15:14:38 +01:00			`cons = Consumer(_session_db, client_config=CLIENT_CONFIG,`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`server_info=SERVER_INFO, **CONSUMER_CONFIG)`
			`cons.debug = True`

Minor tweaks. 2014-10-01 11:37:06 +02:00			`sid, location = cons.begin("http://localhost:8087",`
			`"http://localhost:8088/authorization",`
			`"token")`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00
Moving from demanding WSGI based web service. 2013-03-14 15:14:38 +01:00			`QUERY_STRING = location.split("?")[1]`
One step further into the refactoring. 2013-03-31 17:41:22 +02:00			`resp = provider.authorization_endpoint(QUERY_STRING)`
			`print resp.headers`
			`print resp.message`
			`txt = resp.message`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`assert "access_token=" in txt`
			`assert "token_type=Bearer" in txt`

Moving from demanding WSGI based web service. 2013-03-14 15:14:38 +01:00

Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`def test_token_endpoint():`
Fixed tests 2014-11-24 10:48:53 +01:00			`provider = Provider("pyoicserv", sdb.SessionDB(SERVER_INFO["issuer"]), CDB,`
			`AUTHN_BROKER, AUTHZ, verify_client, symkey=rndstr(16))`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00
Complete rewrite of the base library classes. 2012-05-15 14:29:18 +02:00			`authreq = AuthorizationRequest(state="state",`
			`redirect_uri="http://example.com/authz",`
			`client_id="client1")`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00
			`_sdb = provider.sdb`
Changes in directory structure not represented in lots of files. Fixed that. Also Cherrypy seems to be eating URL fragments so a RP based on Cherrypy can't handle return_type other then 'code'. 2014-05-13 19:48:40 +02:00			`sid = _sdb.token.key(user="sub", areq=authreq)`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`access_grant = _sdb.token(sid=sid)`
			`_sdb[sid] = {`
			`"oauth_state": "authz",`
Changes in directory structure not represented in lots of files. Fixed that. Also Cherrypy seems to be eating URL fragments so a RP based on Cherrypy can't handle return_type other then 'code'. 2014-05-13 19:48:40 +02:00			`"sub": "sub",`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`"authzreq": "",`
			`"client_id": "client1",`
			`"code": access_grant,`
			`"code_used": False,`
Moving from demanding WSGI based web service. 2013-03-14 15:14:38 +01:00			`"redirect_uri": "http://example.com/authz"`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`}`

			`# Construct Access token request`
Complete rewrite of the base library classes. 2012-05-15 14:29:18 +02:00			`areq = AccessTokenRequest(code=access_grant,`
Moving from demanding WSGI based web service. 2013-03-14 15:14:38 +01:00			`redirect_uri="http://example.com/authz",`
			`client_id="client1", client_secret="hemlighet",)`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00
Moving from demanding WSGI based web service. 2013-03-14 15:14:38 +01:00			`print areq.to_dict()`
Changed claims format 2013-05-28 16:02:12 +02:00			`resp = provider.token_endpoint(request=areq.to_urlencoded())`
Moving from demanding WSGI based web service. 2013-03-14 15:14:38 +01:00			`print resp.message`
			`atr = AccessTokenResponse().deserialize(resp.message, "json")`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00
			`print atr.keys()`
			`assert _eq(atr.keys(), ['access_token', 'expires_in', 'token_type',`
			`'refresh_token'])`

Moving from demanding WSGI based web service. 2013-03-14 15:14:38 +01:00
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`def test_token_endpoint_unauth():`
Fixed tests 2014-11-24 10:48:53 +01:00			`provider = Provider("pyoicserv", sdb.SessionDB(SERVER_INFO["issuer"]), CDB,`
			`AUTHN_BROKER, AUTHZ,`
Replaced M2Crypto with PyCrypto 2013-12-02 14:42:36 +01:00			`verify_client, symkey=rndstr(16))`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00
Complete rewrite of the base library classes. 2012-05-15 14:29:18 +02:00			`authreq = AuthorizationRequest(state="state",`
			`redirect_uri="http://example.com/authz",`
			`client_id="client1")`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00
			`_sdb = provider.sdb`
Changes in directory structure not represented in lots of files. Fixed that. Also Cherrypy seems to be eating URL fragments so a RP based on Cherrypy can't handle return_type other then 'code'. 2014-05-13 19:48:40 +02:00			`sid = _sdb.token.key(user="sub", areq=authreq)`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`access_grant = _sdb.token(sid=sid)`
			`_sdb[sid] = {`
			`"oauth_state": "authz",`
Changes in directory structure not represented in lots of files. Fixed that. Also Cherrypy seems to be eating URL fragments so a RP based on Cherrypy can't handle return_type other then 'code'. 2014-05-13 19:48:40 +02:00			`"sub": "sub",`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`"authzreq": "",`
			`"client_id": "client1",`
			`"code": access_grant,`
			`"code_used": False,`
Moving from demanding WSGI based web service. 2013-03-14 15:14:38 +01:00			`"redirect_uri": "http://example.com/authz"`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`}`

			`# Construct Access token request`
Complete rewrite of the base library classes. 2012-05-15 14:29:18 +02:00			`areq = AccessTokenRequest(code=access_grant,`
			`redirect_uri="http://example.com/authz",`
Moving from demanding WSGI based web service. 2013-03-14 15:14:38 +01:00			`client_id="client2", client_secret="hemlighet",)`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00
Moving from demanding WSGI based web service. 2013-03-14 15:14:38 +01:00			`print areq.to_dict()`
Changed claims format 2013-05-28 16:02:12 +02:00			`resp = provider.token_endpoint(request=areq.to_urlencoded())`
Moving from demanding WSGI based web service. 2013-03-14 15:14:38 +01:00			`print resp.message`
			`atr = TokenErrorResponse().deserialize(resp.message, "json")`
Aligned the tests to changes in the API 2012-03-19 15:45:38 +01:00			`print atr.keys()`
fixed tests 2012-10-03 21:30:40 +02:00			`assert _eq(atr.keys(), ['error_description', 'error'])`
Changed claims format 2013-05-28 16:02:12 +02:00
			`if __name__ == "__main__":`
Minor tweaks. 2014-10-01 11:37:06 +02:00			`test_provider_authenticated()`