Blob Blame Raw
# -*- coding: utf-8 -*-

"""
 (c) 2016 - Copyright Red Hat Inc

 Authors:
   Pierre-Yves Chibon <pingou@pingoured.fr>
   Farhaan Bukhsh <farhaan.bukhsh@gmail.com>

"""

from __future__ import unicode_literals, absolute_import

import unittest
import shutil
import sys
import os

import hashlib
import six
from mock import patch

sys.path.insert(
    0, os.path.join(os.path.dirname(os.path.abspath(__file__)), "..")
)

import pagure.lib.login
from pagure.exceptions import PagureException
import tests


class PagureLibLogintests(tests.Modeltests):
    """ Tests for pagure.lib.login """

    def test_id_generator(self):
        """ Test pagure.lib.login.id_generator. """
        self.assertEqual(
            pagure.lib.login.id_generator(size=3, chars=["a"]), "aaa"
        )

    def test_get_session_by_visitkey(self):
        """ Test pagure.lib.login.get_session_by_visitkey. """

        session = pagure.lib.login.get_session_by_visitkey(self.session, "foo")
        self.assertEqual(session, None)

    def test_generate_hashed_value(self):
        """ Test pagure.lib.login.generate_hashed_value. """
        password = pagure.lib.login.generate_hashed_value("foo")
        self.assertTrue(password.startswith("$2$"))
        self.assertEqual(len(password), 63)

    def test_check_password(self):
        """ Test pagure.lib.login.check_password. """

        # Version 2
        password = pagure.lib.login.generate_hashed_value("foo")
        self.assertTrue(pagure.lib.login.check_password("foo", password))
        self.assertFalse(pagure.lib.login.check_password("bar", password))

        # Version 1
        password = "%s%s" % (
            "foo",
            pagure.config.config.get("PASSWORD_SEED", None),
        )
        if isinstance(password, six.text_type):
            password = password.encode("utf-8")
        password = "$1$" + hashlib.sha512(password).hexdigest()
        password = password.encode("utf-8")
        self.assertTrue(pagure.lib.login.check_password("foo", password))
        self.assertFalse(pagure.lib.login.check_password("bar", password))

        # Invalid password  -  No version
        password = "%s%s" % (
            "foo",
            pagure.config.config.get("PASSWORD_SEED", None),
        )
        if isinstance(password, six.text_type):
            password = password.encode("utf-8")
        password = hashlib.sha512(password).hexdigest()
        password = password.encode("utf-8")
        self.assertRaises(
            PagureException, pagure.lib.login.check_password, "foo", password
        )

        # Invalid password  -  Invalid version
        password = b"$3$" + password
        self.assertRaises(
            PagureException, pagure.lib.login.check_password, "foo", password
        )
        password = "%s%s" % (
            "foo",
            pagure.config.config.get("PASSWORD_SEED", None),
        )
        if isinstance(password, six.text_type):
            password = password.encode("utf-8")
        password = hashlib.sha512(password).hexdigest()
        password = password.encode("utf-8")
        self.assertRaises(
            PagureException, pagure.lib.login.check_password, "foo", password
        )

        # Invalid password  -  Invalid version
        password = b"$3$" + password
        self.assertRaises(
            PagureException, pagure.lib.login.check_password, "foo", password
        )

    def test_unicode_required(self):
        """ Test to check for non-ascii password
        """
        self.assertRaises(
            ValueError,
            pagure.lib.login.generate_hashed_value,
            "hunter2".encode("utf-8"),
        )
        password = pagure.lib.login.generate_hashed_value("foo")
        self.assertRaises(
            ValueError,
            pagure.lib.login.check_password,
            "foo".encode("utf-8"),
            password,
        )


if __name__ == "__main__":
    unittest.main(verbosity=2)