FitTrackee/fittrackee/tests/oauth2/test_oauth2_scopes.py

import pytest
from flask import Flask

from fittrackee.users.models import User

from ..mixins import ApiTestCaseMixin


class TestOAuth2Scopes(ApiTestCaseMixin):
    @pytest.mark.parametrize(
        'endpoint_url,scope',
        [
            ('/api/auth/profile', 'profile:read'),
            ('/api/workouts', 'workouts:read'),
        ],
    )
    def test_oauth_client_can_access_authorized_endpoints(
        self, app: Flask, user_1: User, endpoint_url: str, scope: str
    ) -> None:
        (
            client,
            oauth_client,
            access_token,
            _,
        ) = self.create_oauth_client_and_issue_token(app, user_1, scope=scope)

        response = client.get(
            endpoint_url,
            content_type='application/json',
            headers=dict(Authorization=f'Bearer {access_token}'),
        )

        self.assert_not_insufficient_scope_error(response)

    @pytest.mark.parametrize(
        'endpoint_url,scope',
        [
            ('/api/auth/profile', 'workouts:read'),
            ('/api/workouts', 'profile:read'),
        ],
    )
    def test_oauth_client_can_not_access_unauthorized_endpoints(
        self, app: Flask, user_1: User, endpoint_url: str, scope: str
    ) -> None:
        (
            client,
            oauth_client,
            access_token,
            _,
        ) = self.create_oauth_client_and_issue_token(app, user_1, scope=scope)

        response = client.get(
            endpoint_url,
            content_type='application/json',
            headers=dict(Authorization=f'Bearer {access_token}'),
        )

        self.assert_insufficient_scope(response)
API - add scope on endpoints 2022-05-27 18:19:12 +02:00			`import pytest`
			`from flask import Flask`

			`from fittrackee.users.models import User`

			`from ..mixins import ApiTestCaseMixin`


API - update OAuth2 scopes 2022-06-15 19:16:14 +02:00			`class TestOAuth2Scopes(ApiTestCaseMixin):`
API - add scope on endpoints 2022-05-27 18:19:12 +02:00			`@pytest.mark.parametrize(`
API - update OAuth2 scopes 2022-06-15 19:16:14 +02:00			`'endpoint_url,scope',`
API - add scope on endpoints 2022-05-27 18:19:12 +02:00			`[`
API - update OAuth2 scopes 2022-06-15 19:16:14 +02:00			`('/api/auth/profile', 'profile:read'),`
			`('/api/workouts', 'workouts:read'),`
API - add scope on endpoints 2022-05-27 18:19:12 +02:00			`],`
			`)`
API - update OAuth2 scopes 2022-06-15 19:16:14 +02:00			`def test_oauth_client_can_access_authorized_endpoints(`
			`self, app: Flask, user_1: User, endpoint_url: str, scope: str`
API - add scope on endpoints 2022-05-27 18:19:12 +02:00			`) -> None:`
			`(`
			`client,`
			`oauth_client,`
			`access_token,`
API - add routes to manage oauth clients 2022-05-28 15:36:18 +02:00			`_,`
API - update OAuth2 scopes 2022-06-15 19:16:14 +02:00			`) = self.create_oauth_client_and_issue_token(app, user_1, scope=scope)`
API - add scope on endpoints 2022-05-27 18:19:12 +02:00
			`response = client.get(`
			`endpoint_url,`
			`content_type='application/json',`
			`headers=dict(Authorization=f'Bearer {access_token}'),`
			`)`

API - update OAuth2 scopes 2022-06-15 19:16:14 +02:00			`self.assert_not_insufficient_scope_error(response)`
API - add scope on endpoints 2022-05-27 18:19:12 +02:00
			`@pytest.mark.parametrize(`
API - update OAuth2 scopes 2022-06-15 19:16:14 +02:00			`'endpoint_url,scope',`
API - add scope on endpoints 2022-05-27 18:19:12 +02:00			`[`
API - update OAuth2 scopes 2022-06-15 19:16:14 +02:00			`('/api/auth/profile', 'workouts:read'),`
			`('/api/workouts', 'profile:read'),`
API - add scope on endpoints 2022-05-27 18:19:12 +02:00			`],`
			`)`
API - update OAuth2 scopes 2022-06-15 19:16:14 +02:00			`def test_oauth_client_can_not_access_unauthorized_endpoints(`
			`self, app: Flask, user_1: User, endpoint_url: str, scope: str`
API - add scope on endpoints 2022-05-27 18:19:12 +02:00			`) -> None:`
			`(`
			`client,`
			`oauth_client,`
			`access_token,`
API - add routes to manage oauth clients 2022-05-28 15:36:18 +02:00			`_,`
API - update OAuth2 scopes 2022-06-15 19:16:14 +02:00			`) = self.create_oauth_client_and_issue_token(app, user_1, scope=scope)`
API - add scope on endpoints 2022-05-27 18:19:12 +02:00
			`response = client.get(`
API - update OAuth2 scopes 2022-06-15 19:16:14 +02:00			`endpoint_url,`
API - add scope on endpoints 2022-05-27 18:19:12 +02:00			`content_type='application/json',`
			`headers=dict(Authorization=f'Bearer {access_token}'),`
			`)`

API - update OAuth2 scopes 2022-06-15 19:16:14 +02:00			`self.assert_insufficient_scope(response)`