mirror of https://github.com/tiangolo/fastapi.git
✅ Add tests for OAuth2 Password scheme
This commit is contained in:
Sebastián Ramírez
parent
ece3252385
commit
315eb88900
|
|
@ -1,3 +1,6 @@
|
||||||
|
from typing import Optional
|
||||||
|
|
||||||
|
import fastapi
|
||||||
from fastapi import (
|
from fastapi import (
|
||||||
Body,
|
Body,
|
||||||
Cookie,
|
Cookie,
|
||||||
|
|
@ -10,8 +13,14 @@ from fastapi import (
|
||||||
Query,
|
Query,
|
||||||
Security,
|
Security,
|
||||||
)
|
)
|
||||||
from fastapi.security import HTTPBasic, OAuth2, OAuth2PasswordRequestForm
|
from fastapi.security import (
|
||||||
|
HTTPBasic,
|
||||||
|
OAuth2,
|
||||||
|
OAuth2PasswordBearer,
|
||||||
|
OAuth2PasswordRequestForm,
|
||||||
|
)
|
||||||
from pydantic import BaseModel
|
from pydantic import BaseModel
|
||||||
|
from starlette.exceptions import HTTPException
|
||||||
from starlette.responses import HTMLResponse, JSONResponse, PlainTextResponse
|
from starlette.responses import HTMLResponse, JSONResponse, PlainTextResponse
|
||||||
from starlette.status import HTTP_202_ACCEPTED
|
from starlette.status import HTTP_202_ACCEPTED
|
||||||
from starlette.testclient import TestClient
|
from starlette.testclient import TestClient
|
||||||
|
|
@ -240,14 +249,27 @@ def get_security_oauth2(sec=Security(reusable_oauth2, scopes=["read:user"])):
|
||||||
return sec
|
return sec
|
||||||
|
|
||||||
|
|
||||||
|
reusable_oauth2b = OAuth2PasswordBearer(tokenUrl="/token")
|
||||||
|
|
||||||
|
|
||||||
|
class User(BaseModel):
|
||||||
|
username: str
|
||||||
|
|
||||||
|
|
||||||
|
def get_current_user(oauth_header: str = Security(reusable_oauth2b)):
|
||||||
|
user = User(username=oauth_header)
|
||||||
|
return user
|
||||||
|
|
||||||
|
|
||||||
|
@app.get("/security/oauth2b")
|
||||||
|
def read_current_user(current_user: User = Depends(get_current_user)):
|
||||||
|
return current_user
|
||||||
|
|
||||||
|
|
||||||
@app.post("/token")
|
@app.post("/token")
|
||||||
def post_token(request_data: OAuth2PasswordRequestForm = Form(...)):
|
def post_token(request_data: OAuth2PasswordRequestForm = Form(...)):
|
||||||
print(request_data)
|
|
||||||
data = request_data.parse()
|
data = request_data.parse()
|
||||||
print(data)
|
access_token = data.username + ":" + data.password
|
||||||
|
|
||||||
print(request_data())
|
|
||||||
access_token = request_data.username + ":" + request_data.password
|
|
||||||
return {"access_token": access_token}
|
return {"access_token": access_token}
|
||||||
|
|
||||||
|
|
||||||
|
|
|
||||||
|
|
@ -0,0 +1,26 @@
|
||||||
|
import pytest
|
||||||
|
from starlette.testclient import TestClient
|
||||||
|
|
||||||
|
from .main import app
|
||||||
|
|
||||||
|
client = TestClient(app)
|
||||||
|
|
||||||
|
|
||||||
|
def test_security_oauth2_password_bearer():
|
||||||
|
response = client.get(
|
||||||
|
"/security/oauth2b", headers={"Authorization": "Bearer footokenbar"}
|
||||||
|
)
|
||||||
|
assert response.status_code == 200
|
||||||
|
assert response.json() == {"username": "footokenbar"}
|
||||||
|
|
||||||
|
|
||||||
|
def test_security_oauth2_password_bearer_wrong_header():
|
||||||
|
response = client.get("/security/oauth2b", headers={"Authorization": "footokenbar"})
|
||||||
|
assert response.status_code == 403
|
||||||
|
assert response.json() == {"detail": "Not authenticated"}
|
||||||
|
|
||||||
|
|
||||||
|
def test_security_oauth2_password_bearer_no_header():
|
||||||
|
response = client.get("/security/oauth2b")
|
||||||
|
assert response.status_code == 403
|
||||||
|
assert response.json() == {"detail": "Not authenticated"}
|
||||||
Loading…
Reference in New Issue