trustchain-oc1-orchestral
/
authentik
Archived
10
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
This repository has been archived on 2024-05-31. You can view files and clone it, but cannot push or open issues or pull requests.
authentik/tests/e2e/test_source_oauth.py

380 lines
14 KiB
Python
Raw Normal View History

e2e: add tests for OAuth Source, update tests for new base templates
2020-07-08 22:41:14 +00:00
"""test OAuth Source"""
from os.path import abspath
pytest (#209)
2020-09-11 21:21:11 +00:00
from sys import platform
sources/saml: add mitigation for idp-initiated requests
2020-09-13 13:39:25 +00:00
from time import sleep
*: replace Dict from typing with normal dict
2021-02-18 12:41:03 +00:00
from typing import Any, Optional
pytest (#209)
2020-09-11 21:21:11 +00:00
from unittest.case import skipUnless
e2e: add tests for OAuth Source, update tests for new base templates
2020-07-08 22:41:14 +00:00
e2e: add oauth source test case with SameSite strict
2020-09-11 21:54:20 +00:00
from django.test import override_settings
root: automate system migrations, move docker to lifecycle folder
2020-09-09 22:14:59 +00:00
from docker.models.containers import Container
from docker.types import Healthcheck
e2e: add tests for OAuth Source, update tests for new base templates
2020-07-08 22:41:14 +00:00
from selenium.webdriver.common.by import By
from selenium.webdriver.common.keys import Keys
from selenium.webdriver.support import expected_conditions as ec
tests/e2e: fix oauth source tests
2021-02-27 23:27:18 +00:00
from selenium.webdriver.support.wait import WebDriverWait
build(deps): bump structlog from 20.1.0 to 20.2.0 (#445) * build(deps): bump structlog from 20.1.0 to 20.2.0 Bumps [structlog](https://github.com/hynek/structlog) from 20.1.0 to 20.2.0. - [Release notes](https://github.com/hynek/structlog/releases) - [Changelog](https://github.com/hynek/structlog/blob/master/CHANGELOG.rst) - [Commits](https://github.com/hynek/structlog/compare/20.1.0...20.2.0) Signed-off-by: dependabot[bot] <support@github.com> * *: use structlog.stdlib instead of structlog for type-hints Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-01-01 14:39:43 +00:00
from structlog.stdlib import get_logger
e2e: add test for OAuth Enrollment -> OAuth Authentication
2020-07-09 22:14:48 +00:00
from yaml import safe_dump
e2e: add tests for OAuth Source, update tests for new base templates
2020-07-08 22:41:14 +00:00
wip: rename to authentik (#361) * root: initial rename * web: rename custom element prefix * root: rename external functions with pb_ prefix * root: fix formatting * root: replace domain with goauthentik.io * proxy: update path * root: rename remaining prefixes * flows: rename file extension * root: pbadmin -> akadmin * docs: fix image filenames * lifecycle: ignore migration files * ci: copy default config from current source before loading last tagged * *: new sentry dsn * tests: fix missing python3.9-dev package * root: add additional migrations for service accounts created by outposts * core: mark system-created service accounts with attribute * policies/expression: fix pb_ replacement not working * web: fix last linting errors, add lit-analyse * policies/expressions: fix lint errors * web: fix sidebar display on screens where not all items fit * proxy: attempt to fix proxy pipeline * proxy: use go env GOPATH to get gopath * lib: fix user_default naming inconsistency * docs: add upgrade docs * docs: update screenshots to use authentik * admin: fix create button on empty-state of outpost * web: fix modal submit not refreshing SiteShell and Table * web: fix height of app-card and height of generic icon * web: fix rendering of subtext * admin: fix version check error not being caught * web: fix worker count not being shown * docs: update screenshots * root: new icon * web: fix lint error * admin: fix linting error * root: migrate coverage config to pyproject
2020-12-05 21:08:42 +00:00
from authentik.flows.models import Flow
from authentik.providers.oauth2.generators import (
e2e: fix formatting
2020-09-26 16:17:53 +00:00
generate_client_id,
generate_client_secret,
)
wip: rename to authentik (#361) * root: initial rename * web: rename custom element prefix * root: rename external functions with pb_ prefix * root: fix formatting * root: replace domain with goauthentik.io * proxy: update path * root: rename remaining prefixes * flows: rename file extension * root: pbadmin -> akadmin * docs: fix image filenames * lifecycle: ignore migration files * ci: copy default config from current source before loading last tagged * *: new sentry dsn * tests: fix missing python3.9-dev package * root: add additional migrations for service accounts created by outposts * core: mark system-created service accounts with attribute * policies/expression: fix pb_ replacement not working * web: fix last linting errors, add lit-analyse * policies/expressions: fix lint errors * web: fix sidebar display on screens where not all items fit * proxy: attempt to fix proxy pipeline * proxy: use go env GOPATH to get gopath * lib: fix user_default naming inconsistency * docs: add upgrade docs * docs: update screenshots to use authentik * admin: fix create button on empty-state of outpost * web: fix modal submit not refreshing SiteShell and Table * web: fix height of app-card and height of generic icon * web: fix rendering of subtext * admin: fix version check error not being caught * web: fix worker count not being shown * docs: update screenshots * root: new icon * web: fix lint error * admin: fix linting error * root: migrate coverage config to pyproject
2020-12-05 21:08:42 +00:00
from authentik.sources.oauth.models import OAuthSource
tests/e2e: fix oauth source tests
2021-02-27 23:27:18 +00:00
from tests.e2e.utils import SeleniumTestCase, apply_migration, object_manager, retry
e2e: add tests for OAuth Source, update tests for new base templates
2020-07-08 22:41:14 +00:00
build(deps-dev): bump bandit from 1.6.2 to 1.6.3 (#371) * build(deps-dev): bump bandit from 1.6.2 to 1.6.3 Bumps [bandit](https://github.com/PyCQA/bandit) from 1.6.2 to 1.6.3. - [Release notes](https://github.com/PyCQA/bandit/releases) - [Commits](https://github.com/PyCQA/bandit/compare/1.6.2...1.6.3) Signed-off-by: dependabot[bot] <support@github.com> * root: update for new bandit version Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
2020-12-07 10:21:07 +00:00
CONFIG_PATH = "/tmp/dex.yml" # nosec
e2e: fix typo, log when docker healthcheck fails
2020-08-14 16:09:49 +00:00
LOGGER = get_logger()
e2e: add tests for OAuth Source, update tests for new base templates
2020-07-08 22:41:14 +00:00
pytest (#209)
2020-09-11 21:21:11 +00:00
@skipUnless(platform.startswith("linux"), "requires local docker")
e2e: add tests for oauth1
2020-09-26 15:44:05 +00:00
class TestSourceOAuth2(SeleniumTestCase):
e2e: add tests for OAuth Source, update tests for new base templates
2020-07-08 22:41:14 +00:00
"""test OAuth Source flow"""
container: Container
def setUp(self):
e2e: remove static oauth secret
2020-07-09 12:59:25 +00:00
self.client_secret = generate_client_secret()
pytest (#209)
2020-09-11 21:21:11 +00:00
self.prepare_dex_config()
e2e: only initialise selenium after setting up container
2020-07-10 14:49:25 +00:00
super().setUp()
e2e: add tests for OAuth Source, update tests for new base templates
2020-07-08 22:41:14 +00:00
def prepare_dex_config(self):
"""Since Dex does not document which environment
variables can be used to configure clients"""
e2e: generate dex config dynamically
2020-07-09 21:13:14 +00:00
config = {
"enablePasswordDB": True,
"issuer": "http://127.0.0.1:5556/dex",
"logger": {"level": "debug"},
"staticClients": [
{
"id": "example-app",
"name": "Example App",
"redirectURIs": [
self.url(
wip: rename to authentik (#361) * root: initial rename * web: rename custom element prefix * root: rename external functions with pb_ prefix * root: fix formatting * root: replace domain with goauthentik.io * proxy: update path * root: rename remaining prefixes * flows: rename file extension * root: pbadmin -> akadmin * docs: fix image filenames * lifecycle: ignore migration files * ci: copy default config from current source before loading last tagged * *: new sentry dsn * tests: fix missing python3.9-dev package * root: add additional migrations for service accounts created by outposts * core: mark system-created service accounts with attribute * policies/expression: fix pb_ replacement not working * web: fix last linting errors, add lit-analyse * policies/expressions: fix lint errors * web: fix sidebar display on screens where not all items fit * proxy: attempt to fix proxy pipeline * proxy: use go env GOPATH to get gopath * lib: fix user_default naming inconsistency * docs: add upgrade docs * docs: update screenshots to use authentik * admin: fix create button on empty-state of outpost * web: fix modal submit not refreshing SiteShell and Table * web: fix height of app-card and height of generic icon * web: fix rendering of subtext * admin: fix version check error not being caught * web: fix worker count not being shown * docs: update screenshots * root: new icon * web: fix lint error * admin: fix linting error * root: migrate coverage config to pyproject
2020-12-05 21:08:42 +00:00
"authentik_sources_oauth:oauth-client-callback",
e2e: generate dex config dynamically
2020-07-09 21:13:14 +00:00
source_slug="dex",
)
],
"secret": self.client_secret,
}
],
"staticPasswords": [
{
"email": "admin@example.com",
# hash for password
"hash": "$2a$10$2b2cU8CPhOTaGrs1HRQuAueS7JTT5ZHsHSzYiFPm1leZck7Mc8T4W",
"userID": "08a8684b-db88-4b73-90a9-3cd1661f5466",
"username": "admin",
}
],
build(deps-dev): bump bandit from 1.6.2 to 1.6.3 (#371) * build(deps-dev): bump bandit from 1.6.2 to 1.6.3 Bumps [bandit](https://github.com/PyCQA/bandit) from 1.6.2 to 1.6.3. - [Release notes](https://github.com/PyCQA/bandit/releases) - [Commits](https://github.com/PyCQA/bandit/compare/1.6.2...1.6.3) Signed-off-by: dependabot[bot] <support@github.com> * root: update for new bandit version Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
2020-12-07 10:21:07 +00:00
"storage": {"config": {"file": "/tmp/dex.db"}, "type": "sqlite3"}, # nosec
e2e: generate dex config dynamically
2020-07-09 21:13:14 +00:00
"web": {"http": "0.0.0.0:5556"},
}
sources/oauth: fix UserOAuthSourceConnection not being assigned to user after enrollment sources/oauth: separate handle_new_connection into handle_existing_user_link and handle_enroll
2020-07-09 21:37:13 +00:00
with open(CONFIG_PATH, "w+") as _file:
e2e: add tests for OAuth Source, update tests for new base templates
2020-07-08 22:41:14 +00:00
safe_dump(config, _file)
*: replace Dict from typing with normal dict
2021-02-18 12:41:03 +00:00
def get_container_specs(self) -> Optional[dict[str, Any]]:
pytest (#209)
2020-09-11 21:21:11 +00:00
return {
e2e: don't use proxy for quay
2020-10-27 09:30:08 +00:00
"image": "quay.io/dexidp/dex:v2.24.0",
pytest (#209)
2020-09-11 21:21:11 +00:00
"detach": True,
"network_mode": "host",
"auto_remove": True,
"command": "serve /config.yml",
"healthcheck": Healthcheck(
e2e: add tests for OAuth Source, update tests for new base templates
2020-07-08 22:41:14 +00:00
test=["CMD", "wget", "--spider", "http://localhost:5556/dex/healthz"],
interval=5 * 100 * 1000000,
start_period=1 * 100 * 1000000,
),
pytest (#209)
2020-09-11 21:21:11 +00:00
"volumes": {abspath(CONFIG_PATH): {"bind": "/config.yml", "mode": "ro"}},
}
e2e: add tests for OAuth Source, update tests for new base templates
2020-07-08 22:41:14 +00:00
e2e: generate dex config dynamically
2020-07-09 21:13:14 +00:00
def create_objects(self):
"""Create required objects"""
e2e: add tests for OAuth Source, update tests for new base templates
2020-07-08 22:41:14 +00:00
# Bootstrap all needed objects
authentication_flow = Flow.objects.get(slug="default-source-authentication")
enrollment_flow = Flow.objects.get(slug="default-source-enrollment")
ci: ensure same checks as locally are run
2020-09-26 17:08:37 +00:00
OAuthSource.objects.create( # nosec
e2e: add tests for OAuth Source, update tests for new base templates
2020-07-08 22:41:14 +00:00
name="dex",
slug="dex",
authentication_flow=authentication_flow,
enrollment_flow=enrollment_flow,
provider_type="openid-connect",
authorization_url="http://127.0.0.1:5556/dex/auth",
ci: ensure same checks as locally are run
2020-09-26 17:08:37 +00:00
access_token_url="http://127.0.0.1:5556/dex/token",
e2e: add tests for OAuth Source, update tests for new base templates
2020-07-08 22:41:14 +00:00
profile_url="http://127.0.0.1:5556/dex/userinfo",
consumer_key="example-app",
e2e: remove static oauth secret
2020-07-09 12:59:25 +00:00
consumer_secret=self.client_secret,
e2e: add tests for OAuth Source, update tests for new base templates
2020-07-08 22:41:14 +00:00
)
e2e: add @retry decorator to make e2e tests more reliable
2020-10-20 16:42:26 +00:00
@retry()
tests/e2e: fix oauth source tests
2021-02-27 23:27:18 +00:00
@apply_migration("authentik_core", "0003_default_user")
@apply_migration("authentik_flows", "0008_default_flows")
@apply_migration("authentik_flows", "0009_source_flows")
@apply_migration("authentik_crypto", "0002_create_self_signed_kp")
@object_manager
e2e: generate dex config dynamically
2020-07-09 21:13:14 +00:00
def test_oauth_enroll(self):
"""test OAuth Source With With OIDC"""
self.create_objects()
e2e: add tests for OAuth Source, update tests for new base templates
2020-07-08 22:41:14 +00:00
self.driver.get(self.live_server_url)
tests/e2e: fix oauth source tests
2021-02-27 23:27:18 +00:00
flow_executor = self.get_shadow_root("ak-flow-executor")
identification_stage = self.get_shadow_root(
"ak-stage-identification", flow_executor
)
wait = WebDriverWait(identification_stage, self.wait_timeout)
wait.until(
e2e: add tests for OAuth Source, update tests for new base templates
2020-07-08 22:41:14 +00:00
ec.presence_of_element_located(
(By.CLASS_NAME, "pf-c-login__main-footer-links-item-link")
)
)
tests/e2e: fix oauth source tests
2021-02-27 23:27:18 +00:00
identification_stage.find_element(
e2e: add tests for OAuth Source, update tests for new base templates
2020-07-08 22:41:14 +00:00
By.CLASS_NAME, "pf-c-login__main-footer-links-item-link"
).click()
# Now we should be at the IDP, wait for the login field
self.wait.until(ec.presence_of_element_located((By.ID, "login")))
self.driver.find_element(By.ID, "login").send_keys("admin@example.com")
self.driver.find_element(By.ID, "password").send_keys("password")
self.driver.find_element(By.ID, "password").send_keys(Keys.ENTER)
# Wait until we're logged in
self.wait.until(
ec.presence_of_element_located((By.CSS_SELECTOR, "button[type=submit]"))
)
self.driver.find_element(By.CSS_SELECTOR, "button[type=submit]").click()
# At this point we've been redirected back
# and we're asked for the username
tests/e2e: fix oauth source tests
2021-02-27 23:27:18 +00:00
flow_executor = self.get_shadow_root("ak-flow-executor")
prompt_stage = self.get_shadow_root(
"ak-stage-prompt", flow_executor
)
prompt_stage.find_element(
By.CSS_SELECTOR, "input[name=username]"
).click()
prompt_stage.find_element(
By.CSS_SELECTOR, "input[name=username]"
).send_keys("foo")
prompt_stage.find_element(
By.CSS_SELECTOR, "input[name=username]"
).send_keys(Keys.ENTER)
e2e: add tests for OAuth Source, update tests for new base templates
2020-07-08 22:41:14 +00:00
tests: update e2e tests for SPA
2020-11-23 13:24:42 +00:00
# Wait until we've logged in
tests/e2e: fix URLs, use self.login()
2021-02-27 17:48:41 +00:00
self.wait_for_url(self.shell_url("/library"))
tests: fix URLs to use user-details instead of user-settings
2020-12-12 23:48:46 +00:00
self.driver.get(self.url("authentik_core:user-details"))
e2e: add tests for OAuth Source, update tests for new base templates
2020-07-08 22:41:14 +00:00
self.assertEqual(
self.driver.find_element(By.ID, "id_username").get_attribute("value"), "foo"
)
self.assertEqual(
*: apply new black styling
2020-09-30 17:34:22 +00:00
self.driver.find_element(By.ID, "id_name").get_attribute("value"),
"admin",
e2e: add tests for OAuth Source, update tests for new base templates
2020-07-08 22:41:14 +00:00
)
self.assertEqual(
self.driver.find_element(By.ID, "id_email").get_attribute("value"),
"admin@example.com",
)
e2e: add test for OAuth Enrollment -> OAuth Authentication
2020-07-09 22:14:48 +00:00
e2e: add @retry decorator to make e2e tests more reliable
2020-10-20 16:42:26 +00:00
@retry()
tests/e2e: fix oauth source tests
2021-02-27 23:27:18 +00:00
@apply_migration("authentik_core", "0003_default_user")
@apply_migration("authentik_flows", "0008_default_flows")
@apply_migration("authentik_flows", "0009_source_flows")
@apply_migration("authentik_crypto", "0002_create_self_signed_kp")
@object_manager
e2e: add oauth source test case with SameSite strict
2020-09-11 21:54:20 +00:00
@override_settings(SESSION_COOKIE_SAMESITE="strict")
def test_oauth_samesite_strict(self):
"""test OAuth Source With SameSite set to strict
(=will fail because session is not carried over)"""
self.create_objects()
self.driver.get(self.live_server_url)
tests/e2e: fix oauth source tests
2021-02-27 23:27:18 +00:00
flow_executor = self.get_shadow_root("ak-flow-executor")
identification_stage = self.get_shadow_root(
"ak-stage-identification", flow_executor
)
wait = WebDriverWait(identification_stage, self.wait_timeout)
wait.until(
e2e: add oauth source test case with SameSite strict
2020-09-11 21:54:20 +00:00
ec.presence_of_element_located(
(By.CLASS_NAME, "pf-c-login__main-footer-links-item-link")
)
)
tests/e2e: fix oauth source tests
2021-02-27 23:27:18 +00:00
identification_stage.find_element(
e2e: add oauth source test case with SameSite strict
2020-09-11 21:54:20 +00:00
By.CLASS_NAME, "pf-c-login__main-footer-links-item-link"
).click()
# Now we should be at the IDP, wait for the login field
self.wait.until(ec.presence_of_element_located((By.ID, "login")))
self.driver.find_element(By.ID, "login").send_keys("admin@example.com")
self.driver.find_element(By.ID, "password").send_keys("password")
self.driver.find_element(By.ID, "password").send_keys(Keys.ENTER)
# Wait until we're logged in
self.wait.until(
ec.presence_of_element_located((By.CSS_SELECTOR, "button[type=submit]"))
)
self.driver.find_element(By.CSS_SELECTOR, "button[type=submit]").click()
e2e: add @retry decorator to make e2e tests more reliable
2020-10-20 16:42:26 +00:00
@retry()
tests/e2e: fix oauth source tests
2021-02-27 23:27:18 +00:00
@apply_migration("authentik_core", "0003_default_user")
@apply_migration("authentik_flows", "0008_default_flows")
@apply_migration("authentik_flows", "0009_source_flows")
@apply_migration("authentik_crypto", "0002_create_self_signed_kp")
@object_manager
e2e: add test for OAuth Enrollment -> OAuth Authentication
2020-07-09 22:14:48 +00:00
def test_oauth_enroll_auth(self):
"""test OAuth Source With With OIDC (enroll and authenticate again)"""
self.test_oauth_enroll()
# We're logged in at the end of this, log out and re-login
wip: rename to authentik (#361) * root: initial rename * web: rename custom element prefix * root: rename external functions with pb_ prefix * root: fix formatting * root: replace domain with goauthentik.io * proxy: update path * root: rename remaining prefixes * flows: rename file extension * root: pbadmin -> akadmin * docs: fix image filenames * lifecycle: ignore migration files * ci: copy default config from current source before loading last tagged * *: new sentry dsn * tests: fix missing python3.9-dev package * root: add additional migrations for service accounts created by outposts * core: mark system-created service accounts with attribute * policies/expression: fix pb_ replacement not working * web: fix last linting errors, add lit-analyse * policies/expressions: fix lint errors * web: fix sidebar display on screens where not all items fit * proxy: attempt to fix proxy pipeline * proxy: use go env GOPATH to get gopath * lib: fix user_default naming inconsistency * docs: add upgrade docs * docs: update screenshots to use authentik * admin: fix create button on empty-state of outpost * web: fix modal submit not refreshing SiteShell and Table * web: fix height of app-card and height of generic icon * web: fix rendering of subtext * admin: fix version check error not being caught * web: fix worker count not being shown * docs: update screenshots * root: new icon * web: fix lint error * admin: fix linting error * root: migrate coverage config to pyproject
2020-12-05 21:08:42 +00:00
self.driver.get(self.url("authentik_flows:default-invalidation"))
tests/e2e: fix oauth source tests
2021-02-27 23:27:18 +00:00
sleep(1)
flow_executor = self.get_shadow_root("ak-flow-executor")
identification_stage = self.get_shadow_root(
"ak-stage-identification", flow_executor
)
wait = WebDriverWait(identification_stage, self.wait_timeout)
e2e: add test for OAuth Enrollment -> OAuth Authentication
2020-07-09 22:14:48 +00:00
tests/e2e: fix oauth source tests
2021-02-27 23:27:18 +00:00
wait.until(
e2e: add test for OAuth Enrollment -> OAuth Authentication
2020-07-09 22:14:48 +00:00
ec.presence_of_element_located(
(By.CLASS_NAME, "pf-c-login__main-footer-links-item-link")
)
)
tests/e2e: fix oauth source tests
2021-02-27 23:27:18 +00:00
identification_stage.find_element(
e2e: add test for OAuth Enrollment -> OAuth Authentication
2020-07-09 22:14:48 +00:00
By.CLASS_NAME, "pf-c-login__main-footer-links-item-link"
).click()
tests/e2e: fix oauth source tests
2021-02-27 23:27:18 +00:00
e2e: add test for OAuth Enrollment -> OAuth Authentication
2020-07-09 22:14:48 +00:00
# Now we should be at the IDP, wait for the login field
self.wait.until(ec.presence_of_element_located((By.ID, "login")))
self.driver.find_element(By.ID, "login").send_keys("admin@example.com")
self.driver.find_element(By.ID, "password").send_keys("password")
self.driver.find_element(By.ID, "password").send_keys(Keys.ENTER)
# Wait until we're logged in
self.wait.until(
ec.presence_of_element_located((By.CSS_SELECTOR, "button[type=submit]"))
)
self.driver.find_element(By.CSS_SELECTOR, "button[type=submit]").click()
tests: update e2e tests for SPA
2020-11-23 13:24:42 +00:00
# Wait until we've logged in
tests/e2e: fix URLs, use self.login()
2021-02-27 17:48:41 +00:00
self.wait_for_url(self.shell_url("/library"))
tests: fix URLs to use user-details instead of user-settings
2020-12-12 23:48:46 +00:00
self.driver.get(self.url("authentik_core:user-details"))
e2e: add test for OAuth Enrollment -> OAuth Authentication
2020-07-09 22:14:48 +00:00
self.assertEqual(
self.driver.find_element(By.ID, "id_username").get_attribute("value"), "foo"
)
self.assertEqual(
*: apply new black styling
2020-09-30 17:34:22 +00:00
self.driver.find_element(By.ID, "id_name").get_attribute("value"),
"admin",
e2e: add test for OAuth Enrollment -> OAuth Authentication
2020-07-09 22:14:48 +00:00
)
self.assertEqual(
self.driver.find_element(By.ID, "id_email").get_attribute("value"),
"admin@example.com",
)
e2e: add tests for oauth1
2020-09-26 15:44:05 +00:00
@skipUnless(platform.startswith("linux"), "requires local docker")
class TestSourceOAuth1(SeleniumTestCase):
ci: ensure same checks as locally are run
2020-09-26 17:08:37 +00:00
"""Test OAuth1 Source"""
e2e: add tests for oauth1
2020-09-26 15:44:05 +00:00
def setUp(self) -> None:
self.client_id = generate_client_id()
self.client_secret = generate_client_secret()
self.source_slug = "oauth1-test"
super().setUp()
*: replace Dict from typing with normal dict
2021-02-18 12:41:03 +00:00
def get_container_specs(self) -> Optional[dict[str, Any]]:
e2e: add tests for oauth1
2020-09-26 15:44:05 +00:00
return {
Managed objects (#519) * managed: add base manager and Ops * core: use ManagedModel for Token and PropertyMapping * providers/saml: implement managed objects for SAML Provider * sources/ldap: migrate to managed * providers/oauth2: migrate to managed * providers/proxy: migrate to managed * *: load .managed in apps * managed: add reconcile task, run on startup * providers/oauth2: fix import path for managed * providers/saml: don't set FriendlyName when mapping is none * *: use ObjectManager in tests to ensure objects exist * ci: use vmImage ubuntu-latest * providers/saml: add new mapping for username and user id * tests: remove docker proxy * tests/e2e: use updated attribute names * docs: update SAML docs * tests/e2e: fix remaining saml cases * outposts: make tokens as managed * *: make PropertyMapping SerializerModel * web: add page for property-mappings * web: add codemirror to common_styles because codemirror * docs: fix member-of in nextcloud * docs: nextcloud add admin * web: fix refresh reloading data two times * web: add loading lock to table to prevent double loads * web: add ability to use null in QueryArgs (value will be skipped) * web: add hide option to property mappings * web: fix linting
2021-02-03 20:18:31 +00:00
"image": "beryju/oauth1-test-server",
e2e: add tests for oauth1
2020-09-26 15:44:05 +00:00
"detach": True,
"network_mode": "host",
"auto_remove": True,
"environment": {
"OAUTH1_CLIENT_ID": self.client_id,
"OAUTH1_CLIENT_SECRET": self.client_secret,
"OAUTH1_REDIRECT_URI": (
self.url(
wip: rename to authentik (#361) * root: initial rename * web: rename custom element prefix * root: rename external functions with pb_ prefix * root: fix formatting * root: replace domain with goauthentik.io * proxy: update path * root: rename remaining prefixes * flows: rename file extension * root: pbadmin -> akadmin * docs: fix image filenames * lifecycle: ignore migration files * ci: copy default config from current source before loading last tagged * *: new sentry dsn * tests: fix missing python3.9-dev package * root: add additional migrations for service accounts created by outposts * core: mark system-created service accounts with attribute * policies/expression: fix pb_ replacement not working * web: fix last linting errors, add lit-analyse * policies/expressions: fix lint errors * web: fix sidebar display on screens where not all items fit * proxy: attempt to fix proxy pipeline * proxy: use go env GOPATH to get gopath * lib: fix user_default naming inconsistency * docs: add upgrade docs * docs: update screenshots to use authentik * admin: fix create button on empty-state of outpost * web: fix modal submit not refreshing SiteShell and Table * web: fix height of app-card and height of generic icon * web: fix rendering of subtext * admin: fix version check error not being caught * web: fix worker count not being shown * docs: update screenshots * root: new icon * web: fix lint error * admin: fix linting error * root: migrate coverage config to pyproject
2020-12-05 21:08:42 +00:00
"authentik_sources_oauth:oauth-client-callback",
e2e: add tests for oauth1
2020-09-26 15:44:05 +00:00
source_slug=self.source_slug,
)
),
},
}
def create_objects(self):
"""Create required objects"""
# Bootstrap all needed objects
authentication_flow = Flow.objects.get(slug="default-source-authentication")
enrollment_flow = Flow.objects.get(slug="default-source-enrollment")
ci: ensure same checks as locally are run
2020-09-26 17:08:37 +00:00
OAuthSource.objects.create( # nosec
e2e: add tests for oauth1
2020-09-26 15:44:05 +00:00
name="oauth1",
slug=self.source_slug,
authentication_flow=authentication_flow,
enrollment_flow=enrollment_flow,
provider_type="twitter",
request_token_url="http://localhost:5000/oauth/request_token",
access_token_url="http://localhost:5000/oauth/access_token",
authorization_url="http://localhost:5000/oauth/authorize",
profile_url="http://localhost:5000/api/me",
consumer_key=self.client_id,
consumer_secret=self.client_secret,
)
e2e: add @retry decorator to make e2e tests more reliable
2020-10-20 16:42:26 +00:00
@retry()
tests/e2e: fix oauth source tests
2021-02-27 23:27:18 +00:00
@apply_migration("authentik_core", "0003_default_user")
@apply_migration("authentik_flows", "0008_default_flows")
@apply_migration("authentik_flows", "0009_source_flows")
@apply_migration("authentik_crypto", "0002_create_self_signed_kp")
@object_manager
e2e: add tests for oauth1
2020-09-26 15:44:05 +00:00
def test_oauth_enroll(self):
"""test OAuth Source With With OIDC"""
self.create_objects()
self.driver.get(self.live_server_url)
tests/e2e: fix oauth source tests
2021-02-27 23:27:18 +00:00
flow_executor = self.get_shadow_root("ak-flow-executor")
identification_stage = self.get_shadow_root(
"ak-stage-identification", flow_executor
)
wait = WebDriverWait(identification_stage, self.wait_timeout)
wait.until(
e2e: add tests for oauth1
2020-09-26 15:44:05 +00:00
ec.presence_of_element_located(
(By.CLASS_NAME, "pf-c-login__main-footer-links-item-link")
)
)
tests/e2e: fix oauth source tests
2021-02-27 23:27:18 +00:00
identification_stage.find_element(
e2e: add tests for oauth1
2020-09-26 15:44:05 +00:00
By.CLASS_NAME, "pf-c-login__main-footer-links-item-link"
).click()
# Now we should be at the IDP, wait for the login field
self.wait.until(ec.presence_of_element_located((By.NAME, "username")))
self.driver.find_element(By.NAME, "username").send_keys("example-user")
self.driver.find_element(By.NAME, "username").send_keys(Keys.ENTER)
# Wait until we're logged in
self.wait.until(
ec.presence_of_element_located((By.CSS_SELECTOR, "[name='confirm']"))
)
self.driver.find_element(By.CSS_SELECTOR, "[name='confirm']").click()
# Wait until we've loaded the user info page
outposts: fix outpost mangling log output
2020-10-19 14:44:46 +00:00
sleep(2)
tests: update e2e tests for SPA
2020-11-23 13:24:42 +00:00
# Wait until we've logged in
tests/e2e: fix URLs, use self.login()
2021-02-27 17:48:41 +00:00
self.wait_for_url(self.shell_url("/library"))
tests: fix URLs to use user-details instead of user-settings
2020-12-12 23:48:46 +00:00
self.driver.get(self.url("authentik_core:user-details"))
e2e: add tests for oauth1
2020-09-26 15:44:05 +00:00
self.assertEqual(
e2e: fix formatting
2020-09-26 16:17:53 +00:00
self.driver.find_element(By.ID, "id_username").get_attribute("value"),
"example-user",
e2e: add tests for oauth1
2020-09-26 15:44:05 +00:00
)
self.assertEqual(
e2e: fix formatting
2020-09-26 16:17:53 +00:00
self.driver.find_element(By.ID, "id_name").get_attribute("value"),
"test name",
e2e: add tests for oauth1
2020-09-26 15:44:05 +00:00
)
self.assertEqual(
self.driver.find_element(By.ID, "id_email").get_attribute("value"),
"foo@example.com",
)