o hPF@s$ddlZddlmZddlmZddlmZddlmZddl m Z ddl m Z ddl mZdd lmZd d Zd d ZddZddZddZddZddZddZddZddZddZd d!Zd"d#Zd$d%Zd&d'Zd(d)Z d*d+Z!d,d-Z"d.d/Z#d0d1Z$d2d3Z%d4d5Z&d6d7Z'dS)8N) HTTPStatus)patch)reverse)assertTemplateUsed) EmailAddress) get_adapter) SocialAccount) AuthProcesscCs0d|_|j|dddtjdd}t|ddS)NF+headless:socialaccount:redirect_to_providerdummyzhttps://unsafe.org/hackprovider callback_urlprocessdata'socialaccount/authentication_error.html) HEADLESS_ONLYpostr LOGINrclientheadless_reversedbsettingsresprj/var/www/html/env_mimamsha/lib/python3.10/site-packages/allauth/headless/socialaccount/tests/test_views.pytest_bad_redirectsrcCs0|j|dddtjdd}|jtjksJdS)Nr r /r r)rr r status_coderFOUND)rrrrrrrtest_valid_redirectsr"cCsP|j|dddtjdd}t|ddr|jtjksJdS|jtjks&JdS)Nr unknownrr rrF)rr rgetattrr rr!OKrrrrtest_unknown_provider_redirect(s r&c Cstjj||dd}tjj||dd}||d}|}|dtjks&Jt|ddks0J|j|d|j |j dd d }|j tjksGJ|tjd d d ddg|d dddgdks`Jtjj |j drlJtjj |j dsxJdS)Np123userr uidp456'headless:socialaccount:manage_providersstatusrr accountapplication/jsonr content_typezUnittest ServerzUnittest client_idz=https://unittest.example.com/.well-known/openid-configurationprovider_redirectprovider_token) client_idopenid_configuration_urlflowsidnamedisplayr r*)r-r)pk)robjectscreategetjsonrr%lendeleter r*r filterr=exists) auth_clientr)r provider_idaccount_to_delaccount_to_keeprrrrrtest_manage_providers7sB  rJcCsN|j|d|dddd}|jtjksJ|tjdddgd ks%JdS) Nr,r#r/r1r2account_not_foundzUnknown account.codemessager-errors)rCr r BAD_REQUESTrA)rFr)rrGrrrrtest_disconnect_bad_request^s rRcCs||jdgd||tjj|d|d}|j|d||jddd}|jt j ks/J| t j d d d gd ks?JdS) Npassword) update_fields123r)r*r r,r/r1r2 no_passwordz$Your account has no password set up.rLrO) set_unusable_passwordsave force_loginrr>r?rCr*r rrQrA)rFr)rrGr0rrrrtest_disconnect_not_allowedks  r[cCs`tdddd}|j|ddd|itjdd d }|jtjks"Jtj j ddd  s.JdS) N{a@b.comTr9emailemail_verified%headless:socialaccount:provider_tokenr id_tokenr tokenrr1r2r_verified) rAdumpsrr rr rr%rr>rDrE)rrrrbrrrrtest_valid_token~" rhcCsj|j|ddd|ddddtjdd d }|jtjks J|}|tjd d d dgdks3JdS)Nragoogler APPSrr6rbr6rcr1r2zInvalid token. invalid_tokenrd)rNrMparamrO)rr rr rrQrA)rrrgoogle_provider_settingsrrrrrtest_invalid_tokens"  rpcCsd|_|dddddddd }td |d )|j|d d d|ddddtjddd}|jtjks:JWddS1sEwYdS)N mandatoryrk client_id2secret2)r6secretzuid-from-id-tokenr]T)subr_r`z?allauth.socialaccount.providers.google.views._verify_and_decode) return_valuerarjr rr6rlrcr1r2) ACCOUNT_EMAIL_VERIFICATIONappendrrr rr rr%)rrrror user_factoryrbrrrrtest_valid_token_multiple_appss*  "rzcCs"d|_|td}t|ddS)zlAuthentication errors use the regular "Third-Party Login Failure" template if headless is not used. Fgoogle_callbackrN)rr@rr)rrrorrrrr#test_auth_error_no_headless_requestsr|cCs:||ddd}|tdd|}|ddksJdS) zaAuthentication errors redirect to the next URL with ?error params for headless requests. T/fooheadlessnextr{?state=location&/foo?error=unknown&error_process=loginN)r@r)rrrosociallogin_setup_statestaterrrr test_auth_error_headless_requestsrcCs2d|_ddi|_|td}|ddksJdS)Authentication errors redirect to a fallback error URL for headless-only, in case no next can be recovered from the state. Tsocialaccount_login_error/3rdparty/failurer{rzDhttp://testserver/3rdparty/failure?error=unknown&error_process=loginNrHEADLESS_FRONTEND_URLSr@r)rrrrorrrr7test_auth_error_no_headless_state_request_headless_onlys   rcCsJ||ddd}d|_ddi|_|tdd|}|dd ks#Jd S) rTr}r~rrr{rrrNr)rrrrorrrrrr4test_auth_error_headless_state_request_headless_onlys  rcCstdddd}td$}d|_|j|ddd |itjd d d }|jtj ks*JWdn1s4wYt j j ddd  rEJdS)Nr\r]Tr^Lallauth.socialaccount.adapter.DefaultSocialAccountAdapter.is_open_for_signupFrar rbrcr1r2re)rArgrrvrr rr r FORBIDDENrr>rDrE)rrrrbiofsrrrrtest_token_signup_closeds. rcCsLd|_d|_d|_d}td|i}|j|ddd|itjd d d }|jt j ks+Jd d |ddDd}|ddksBJ| |d}|jt j ksQJ|gdddgddd|dddddt j dksnJ|j|dddid d }|jt j ksJdd |ddDd}|ddksJt jjdd sJdS)!NrqTFrUr9rar rbrcr1r2cSg|] }|dr|qS is_pendingr@.0frrr (z(test_provider_signup..rr8rprovider_signup&headless:socialaccount:provider_signupDummyr4r5)r8r9r:r;r))r<has_usable_password)r_r0r))rr-r_r]cSrrrrrrrrFr verify_email)r_)rwACCOUNT_EMAIL_REQUIREDACCOUNT_USERNAME_REQUIREDrArgrr rr r UNAUTHORIZEDr@r%rr>rDrE)rrrr account_uidrbr pending_flowrrrtest_provider_signupsZ   rcCsd|_d|_d|_tddi}|j|ddd|itjd d d }|jt j ks)Jd d |ddDd}|ddks@Jt d}d|_ |j|dddid d }Wdn1s^wY|jt j kskJdS)NrqTFr9r\rar rbrcr1r2cSrrrrrrrr`rz&test_signup_closed..rr8rrrrr_r])rwrrrArgrr rr rrrrvr)rrrrrbrrrrrrtest_signup_closedKs@  rcCsn||dddd}|jtdd|ddid }|jtjks J|d dks(Jtjj|d d d s5JdS)Nconnectr}Trrrdummy_authenticaterr9r\rrr rUr() rrr rr!rr>rDrE)r)rFrrrrrrrr test_connectpsrcCsZd|_||dddd}|jtdd|ddid }|jtjks#J|d d ks+JdS) NTrr}rrrr9r\rrz:/foo?error=reauthentication_required&error_process=connect)!ACCOUNT_REAUTHENTICATION_REQUIREDrrr rr!)r)rFrrrrrrrrr&test_connect_reauthentication_requiredsrc Cs|}tjj|ddd||tjddd}|jtdd|d d id }|jtj ks-J|d d ks5Jtjj |ddd rBJdS)NrUr rVr}Trrrr9r\rrz0/foo?error=connected_other&error_process=connectr() rr>r?r CONNECTrrr rr!rDrE) r)ryrFrrr other_userrrrrrtest_connect_already_connecteds"  rcCs`tdddd}|j|ddd|itjdd d }|jtjks"Jtj j d |d  s.JdS) Nr\r]Tr^rar rbrcr1r2rUr*r)) rArgrr rr rr%rr>rDrE)r)rFrrrbrrrrtest_token_connectrircCs|}tjj|dddtdddd}|j|ddd |itjd d d }tjjd|d  r2J|j t j ks:J|t j dddgdksJJdS)NrUr rVr\r]Tr^rarbrcr1r2rconnected_otherzDThe third-party account is already connected to a different account.rLrO) rr>r?rArgrr rrDrEr rrQ)r)rFrrryrrbrrrr$test_token_connect_already_connecteds4 rcCs,|j|dddidd}|jtjksJdS)Nrr_r]r1r2)rr rCONFLICTrrrr test_provider_signup_not_pendingsrc Cstd|}tdddd}tdQtd4}ddi|_|j|d ||jj|d t j d d d }|j t j ks;JtjjddsFJWdn1sPwYWddSWddS1shwYdS)Nr\r]Tr^z]allauth.socialaccount.providers.openid_connect.views.OpenIDConnectOAuth2Adapter.openid_configz7allauth.socialaccount.internal.jwtkit.verify_and_decoderurUra)r6rbrcr1r2)r*)r get_providerrArgrrvrappr6r rr rr%rr>rDrE)rrropenid_connect_provider_idr rbvadrrrrtest_valid_openid_connect_tokens8   "r)(rAhttpr unittest.mockr django.urlsrpytest_django.assertsrallauth.account.modelsrallauth.socialaccount.adapterrallauth.socialaccount.modelsr.allauth.socialaccount.providers.base.constantsr rr"r&rJrRr[rhrprzr|rrrrrrrrrrrrrrrrrs@          '    9%%