API - add missing tests on Authorization Code Grant (code challenge)

2022-06-19 18:47:42 +02:00
parent 40a5fcccf3
commit 6b497bd72f
2 changed files with 138 additions and 4 deletions
--- a/fittrackee/tests/mixins.py
+++ b/fittrackee/tests/mixins.py
@@ -106,7 +106,10 @@ class ApiTestCaseMixin(OAuth2Mixin, RandomMixin):
        oauth_client: OAuth2Client,
        auth_token: str,
        scope: Optional[str] = None,
+        code_challenge: Optional[Dict] = None,
    ) -> Union[List[str], str]:
+        if code_challenge is None:
+            code_challenge = {}
        response = client.post(
            '/api/oauth/authorize',
            data={
@@ -114,6 +117,7 @@ class ApiTestCaseMixin(OAuth2Mixin, RandomMixin):
                'confirm': True,
                'response_type': 'code',
                'scope': 'read' if not scope else scope,
+                **code_challenge,
            },
            headers=dict(
                Authorization=f'Bearer {auth_token}',
@@ -234,11 +238,14 @@ class ApiTestCaseMixin(OAuth2Mixin, RandomMixin):
        )

    @staticmethod
-    def assert_invalid_request(response: TestResponse) -> Dict:
+    def assert_invalid_request(
+        response: TestResponse, error_description: Optional[str] = None
+    ) -> Dict:
        return assert_oauth_errored_response(
            response,
            400,
            error='invalid_request',
+            error_description=error_description,
        )

    @staticmethod