happyz
/
fastapi
mirror of https://github.com/tiangolo/fastapi.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge 8cdf7dbebe into 272204c0c7

This commit is contained in:
vishwa 2025-12-16 21:09:33 +00:00 committed by GitHub
parent 272204c0c7 8cdf7dbebe
commit 1bd85c1e60
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
7 changed files with 37 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
docs_src/security/tutorial006.py
View File

@ -3,7 +3,7 @@ from fastapi.security import HTTPBasic, HTTPBasicCredentials
app = FastAPI() app = FastAPI()
security = HTTPBasic() security = HTTPBasic(realm="simple")
@app.get("/users/me") @app.get("/users/me")

2
docs_src/security/tutorial006_an.py
View File

@ -4,7 +4,7 @@ from typing_extensions import Annotated
app = FastAPI() app = FastAPI()
security = HTTPBasic() security = HTTPBasic(realm="simple")
@app.get("/users/me") @app.get("/users/me")

2
docs_src/security/tutorial006_an_py39.py
View File

@ -5,7 +5,7 @@ from fastapi.security import HTTPBasic, HTTPBasicCredentials
app = FastAPI() app = FastAPI()
security = HTTPBasic() security = HTTPBasic(realm="simple")
@app.get("/users/me") @app.get("/users/me")

4
fastapi/security/http.py
View File

@ -154,13 +154,13 @@ class HTTPBasic(HTTPBase):
), ),
] = None, ] = None,
realm: Annotated[ realm: Annotated[
Optional[str], str,
Doc( Doc(
""" """
HTTP Basic authentication realm. HTTP Basic authentication realm.
""" """
), ),
] = None, ],
description: Annotated[ description: Annotated[
Optional[str], Optional[str],
Doc( Doc(

30
tests/test_security_http_basic_empty_realm.py Normal file
View File

@ -0,0 +1,30 @@
from fastapi import Depends, FastAPI
from fastapi.security import HTTPBasic, HTTPBasicCredentials
from fastapi.testclient import TestClient
app = FastAPI()
security = HTTPBasic(realm="")
@app.get("/users/me")
def read_current_user(credentials: HTTPBasicCredentials = Depends(security)):
return {"username": credentials.username, "password": credentials.password}
client = TestClient(app)
def test_security_http_basic_empty_realm():
response = client.get("/users/me", auth=("john", "secret"))
assert response.status_code == 200, response.text
assert response.json() == {"username": "john", "password": "secret"}
def test_security_http_basic_invalid_credentials_empty_realm():
response = client.get(
"/users/me", headers={"Authorization": "Basic notabase64token"}
)
assert response.status_code == 401, response.text
assert response.headers["WWW-Authenticate"] == "Basic"
assert response.json() == {"detail": "Invalid authentication credentials"}

2
tests/test_security_http_basic_optional.py
View File

@ -7,7 +7,7 @@ from fastapi.testclient import TestClient
app = FastAPI() app = FastAPI()
security = HTTPBasic(auto_error=False) security = HTTPBasic(realm="simple", auto_error=False)
@app.get("/users/me") @app.get("/users/me")

2
tests/test_tutorial/test_security/test_tutorial006.py
View File

@ -32,7 +32,7 @@ def test_security_http_basic_no_credentials(client: TestClient):
response = client.get("/users/me") response = client.get("/users/me")
assert response.json() == {"detail": "Not authenticated"} assert response.json() == {"detail": "Not authenticated"}
assert response.status_code == 401, response.text assert response.status_code == 401, response.text
assert response.headers["WWW-Authenticate"] == "Basic" assert response.headers["WWW-Authenticate"] == 'Basic realm="simple"'
def test_security_http_basic_invalid_credentials(client: TestClient): def test_security_http_basic_invalid_credentials(client: TestClient):