SelfPrivacy/selfprivacy-rest-api
1
0
Fork 0
mirror of https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git synced 2024-11-05 02:53:11 +00:00
Code Issues Projects Releases Wiki Activity
selfprivacy-rest-api/tests/test_graphql/test_ssh.py

625 lines
19 KiB
Python
Raw Normal View History

Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
# pylint: disable=redefined-outer-name
# pylint: disable=unused-argument
import pytest
feature(ssh): change ssh settings from graphql
2023-12-15 09:46:59 +00:00
from selfprivacy_api.graphql.mutations.system_mutations import SystemMutations
test(ssh): add graphql ssh status query test
2023-12-15 10:09:35 +00:00
from selfprivacy_api.graphql.queries.system import System
test(ssh): add root key when none
2023-12-20 12:08:15 +00:00
# only allowed in fixtures
from selfprivacy_api.actions.ssh import remove_ssh_key, get_ssh_settings
test(ssh): add graphql ssh status query test
2023-12-15 10:09:35 +00:00
from tests.common import read_json, generate_system_query
test(ssh): get root key
2023-12-21 08:13:08 +00:00
from tests.test_graphql.common import (
assert_empty,
assert_ok,
get_data,
assert_errorcode,
)
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
class ProcessMock:
"""Mock subprocess.Popen"""
def __init__(self, args, **kwargs):
self.args = args
self.kwargs = kwargs
test(ssh): cleanup
2023-12-15 11:22:20 +00:00
def communicate(self): # pylint: disable=no-method-argument
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
return (b"NEW_HASHED", None)
returncode = 0
@pytest.fixture
def mock_subprocess_popen(mocker):
mock = mocker.patch("subprocess.Popen", autospec=True, return_value=ProcessMock)
return mock
@pytest.fixture
def some_users(mocker, datadir):
mocker.patch("selfprivacy_api.utils.USERDATA_FILE", new=datadir / "some_users.json")
assert read_json(datadir / "some_users.json")["users"] == [
{
"username": "user1",
"hashedPassword": "HASHED_PASSWORD_1",
"sshKeys": ["ssh-rsa KEY user1@pc"],
},
{"username": "user2", "hashedPassword": "HASHED_PASSWORD_2", "sshKeys": []},
{"username": "user3", "hashedPassword": "HASHED_PASSWORD_3"},
]
return datadir
test(ssh): add root key when none
2023-12-20 12:08:15 +00:00
@pytest.fixture
def no_rootkeys(generic_userdata):
for rootkey in get_ssh_settings().rootKeys:
remove_ssh_key("root", rootkey)
assert get_ssh_settings().rootKeys == []
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
# TESTS ########################################################
API_CREATE_SSH_KEY_MUTATION = """
mutation addSshKey($sshInput: SshMutationInput!) {
refactor(api): Group mutations I've learned that there is no problem in grouping mutations like we do with queries. This is a big mistake from my side, now we have legacy not so conveniently placed endpoints. I've grouped all mutations, left the copies of old ones flattened in the root for backwards compatibility. We will migrate to mutation groups on client side, and backups now only use grouped mutations. Tests are updated.
2023-06-21 03:46:56 +00:00
users {
addSshKey(sshInput: $sshInput) {
success
message
code
user {
username
sshKeys
}
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
}
}
}
"""
feature(ssh): change ssh settings from graphql
2023-12-15 09:46:59 +00:00
API_SET_SSH_SETTINGS = """
test(ssh): try disabling ssh
2023-12-15 10:43:07 +00:00
mutation enableSsh($settings: SSHSettingsInput!) {
feature(ssh): change ssh settings from graphql
2023-12-15 09:46:59 +00:00
system {
test(ssh): try disabling ssh
2023-12-15 10:43:07 +00:00
changeSshSettings(settings: $settings) {
feature(ssh): change ssh settings from graphql
2023-12-15 09:46:59 +00:00
success
message
code
enable
test(ssh): add graphql ssh status query test
2023-12-15 10:09:35 +00:00
passwordAuthentication
feature(ssh): change ssh settings from graphql
2023-12-15 09:46:59 +00:00
}
}
}
test(ssh): add one more root key
2023-12-20 12:41:29 +00:00
feature(ssh): change ssh settings from graphql
2023-12-15 09:46:59 +00:00
"""
test(ssh): add graphql ssh status query test
2023-12-15 10:09:35 +00:00
API_SSH_SETTINGS_QUERY = """
settings {
ssh {
enable
passwordAuthentication
}
}
"""
test(ssh): add one more root key
2023-12-20 12:41:29 +00:00
API_ROOTKEYS_QUERY = """
settings {
ssh {
rootSshKeys
}
}
"""
test(ssh): add test for unauthorized settings getting
2023-12-18 11:50:24 +00:00
def api_ssh_settings_raw(client):
return client.post(
test(ssh): add graphql ssh status query test
2023-12-15 10:09:35 +00:00
"/graphql",
json={"query": generate_system_query([API_SSH_SETTINGS_QUERY])},
)
test(ssh): add test for unauthorized settings getting
2023-12-18 11:50:24 +00:00
test(ssh): add one more root key
2023-12-20 12:41:29 +00:00
def api_rootkeys_raw(client):
return client.post(
"/graphql",
json={"query": generate_system_query([API_ROOTKEYS_QUERY])},
)
def api_add_ssh_key(authorized_client, user: str, key: str):
response = authorized_client.post(
"/graphql",
json={
"query": API_CREATE_SSH_KEY_MUTATION,
"variables": {
"sshInput": {
"username": user,
"sshKey": key,
},
},
},
)
data = get_data(response)
result = data["users"]["addSshKey"]
assert result is not None
return result
def api_rootkeys(authorized_client):
response = api_rootkeys_raw(authorized_client)
data = get_data(response)
result = data["system"]["settings"]["ssh"]["rootSshKeys"]
assert result is not None
return result
test(ssh): add test for unauthorized settings getting
2023-12-18 11:50:24 +00:00
def api_ssh_settings(authorized_client):
response = api_ssh_settings_raw(authorized_client)
test(ssh): add graphql ssh status query test
2023-12-15 10:09:35 +00:00
data = get_data(response)
result = data["system"]["settings"]["ssh"]
assert result is not None
return result
test(ssh): full ssh enablement-via-gql readwrite testing
2023-12-18 14:16:30 +00:00
def api_set_ssh_settings_dict(authorized_client, dict):
test(ssh): try disabling ssh
2023-12-15 10:43:07 +00:00
response = authorized_client.post(
"/graphql",
json={
"query": API_SET_SSH_SETTINGS,
"variables": {
test(ssh): full ssh enablement-via-gql readwrite testing
2023-12-18 14:16:30 +00:00
"settings": dict,
test(ssh): try disabling ssh
2023-12-15 10:43:07 +00:00
},
},
)
data = get_data(response)
result = data["system"]["changeSshSettings"]
assert result is not None
return result
test(ssh): full ssh enablement-via-gql readwrite testing
2023-12-18 14:16:30 +00:00
def api_set_ssh_settings(authorized_client, enable: bool, password_auth: bool):
return api_set_ssh_settings_dict(
authorized_client,
{
"enable": enable,
"passwordAuthentication": password_auth,
},
)
test(ssh): try disabling ssh
2023-12-15 10:43:07 +00:00
def test_graphql_ssh_query(authorized_client, some_users):
test(ssh): add graphql ssh status query test
2023-12-15 10:09:35 +00:00
settings = api_ssh_settings(authorized_client)
assert settings["enable"] is True
assert settings["passwordAuthentication"] is True
feature(ssh): change ssh settings from graphql
2023-12-15 09:46:59 +00:00
test(ssh): add test for unauthorized settings getting
2023-12-18 11:50:24 +00:00
def test_graphql_get_ssh_settings_unauthorized(client, some_users):
response = api_ssh_settings_raw(client)
assert_empty(response)
def test_graphql_change_ssh_settings_unauthorized(client, some_users):
feature(ssh): change ssh settings from graphql
2023-12-15 09:46:59 +00:00
response = client.post(
"/graphql",
json={
"query": API_SET_SSH_SETTINGS,
"variables": {
"sshInput": {
"enable": True,
"passwordAuthentication": True,
},
},
},
)
assert_empty(response)
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
test(ssh): test that query is in sync
2023-12-15 11:02:31 +00:00
def assert_includes(smaller_dict: dict, bigger_dict: dict):
for item in smaller_dict.items():
assert item in bigger_dict.items()
test(ssh): full ssh enablement-via-gql readwrite testing
2023-12-18 14:16:30 +00:00
available_settings = [
{"enable": True, "passwordAuthentication": True},
{"enable": True, "passwordAuthentication": False},
{"enable": False, "passwordAuthentication": True},
{"enable": False, "passwordAuthentication": False},
]
original_settings = [
{"enable": True, "passwordAuthentication": True},
{"enable": True, "passwordAuthentication": False},
{"enable": False, "passwordAuthentication": True},
{"enable": False, "passwordAuthentication": False},
]
@pytest.mark.parametrize("original_settings", original_settings)
@pytest.mark.parametrize("settings", available_settings)
def test_graphql_readwrite_ssh_settings(
authorized_client, some_users, settings, original_settings
test(ssh): flip flop ssh
2023-12-15 10:51:47 +00:00
):
test(ssh): try disabling ssh
2023-12-15 10:43:07 +00:00
test(ssh): full ssh enablement-via-gql readwrite testing
2023-12-18 14:16:30 +00:00
# Userdata-related tests like undefined fields are in actions-level tests.
output = api_set_ssh_settings_dict(authorized_client, original_settings)
test(ssh): test that query is in sync
2023-12-15 11:02:31 +00:00
assert_includes(api_ssh_settings(authorized_client), output)
test(ssh): flip flop ssh
2023-12-15 10:51:47 +00:00
test(ssh): full ssh enablement-via-gql readwrite testing
2023-12-18 14:16:30 +00:00
output = api_set_ssh_settings_dict(authorized_client, settings)
test(ssh): flip flop ssh
2023-12-15 10:51:47 +00:00
assert_ok(output)
test(ssh): full ssh enablement-via-gql readwrite testing
2023-12-18 14:16:30 +00:00
assert_includes(settings, output)
if "enable" not in settings.keys():
assert output["enable"] == original_settings["enable"]
test(ssh): test that query is in sync
2023-12-15 11:02:31 +00:00
assert_includes(api_ssh_settings(authorized_client), output)
test(ssh): flip flop ssh
2023-12-15 10:51:47 +00:00
test(ssh): full ssh enablement-via-gql readwrite testing
2023-12-18 14:16:30 +00:00
forbidden_settings = [
# we include this here so that if the next version makes the fields
# optional, the tests will remind the person that tests are to be extended accordingly
{"enable": True},
{"passwordAuthentication": True},
]
@pytest.mark.parametrize("original_settings", original_settings)
@pytest.mark.parametrize("settings", forbidden_settings)
def test_graphql_readwrite_ssh_settings_partial(
authorized_client, some_users, settings, original_settings
):
output = api_set_ssh_settings_dict(authorized_client, original_settings)
with pytest.raises(Exception):
output = api_set_ssh_settings_dict(authorized_client, settings)
test(ssh): flip flop ssh
2023-12-15 10:51:47 +00:00
test(ssh): try disabling ssh
2023-12-15 10:43:07 +00:00
test(ssh): cleanup
2023-12-15 11:22:20 +00:00
def test_graphql_disable_twice(authorized_client, some_users):
test(ssh): test idempotency of enablement
2023-12-15 11:09:20 +00:00
output = api_set_ssh_settings(authorized_client, enable=False, password_auth=False)
assert_ok(output)
test(ssh): cleanup
2023-12-15 11:22:20 +00:00
assert output["enable"] is False
assert output["passwordAuthentication"] is False
test(ssh): test idempotency of enablement
2023-12-15 11:09:20 +00:00
output = api_set_ssh_settings(authorized_client, enable=False, password_auth=False)
assert_ok(output)
test(ssh): cleanup
2023-12-15 11:22:20 +00:00
assert output["enable"] is False
assert output["passwordAuthentication"] is False
test(ssh): test idempotency of enablement
2023-12-15 11:09:20 +00:00
test(ssh): cleanup
2023-12-15 11:22:20 +00:00
def test_graphql_enable_twice(authorized_client, some_users):
test(ssh): test idempotency of enablement
2023-12-15 11:09:20 +00:00
output = api_set_ssh_settings(authorized_client, enable=True, password_auth=True)
assert_ok(output)
test(ssh): cleanup
2023-12-15 11:22:20 +00:00
assert output["enable"] is True
assert output["passwordAuthentication"] is True
test(ssh): test idempotency of enablement
2023-12-15 11:09:20 +00:00
assert_includes(api_ssh_settings(authorized_client), output)
output = api_set_ssh_settings(authorized_client, enable=True, password_auth=True)
assert_ok(output)
test(ssh): cleanup
2023-12-15 11:22:20 +00:00
assert output["enable"] is True
assert output["passwordAuthentication"] is True
test(ssh): test idempotency of enablement
2023-12-15 11:09:20 +00:00
assert_includes(api_ssh_settings(authorized_client), output)
test(ssh): add one more root key
2023-12-20 12:41:29 +00:00
############## KEYS
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
def test_graphql_add_ssh_key_unauthorized(client, some_users, mock_subprocess_popen):
response = client.post(
"/graphql",
json={
"query": API_CREATE_SSH_KEY_MUTATION,
"variables": {
"sshInput": {
"username": "user1",
"sshKey": "ssh-rsa KEY test_key@pc",
},
},
},
)
test(tokens-repo): use assert_empty consistently
2023-01-06 09:54:07 +00:00
assert_empty(response)
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
def test_graphql_add_ssh_key(authorized_client, some_users, mock_subprocess_popen):
response = authorized_client.post(
"/graphql",
json={
"query": API_CREATE_SSH_KEY_MUTATION,
"variables": {
"sshInput": {
"username": "user1",
"sshKey": "ssh-rsa KEY test_key@pc",
},
},
},
)
assert response.status_code == 200
Migrate to FastAPI (#13) Co-authored-by: inexcode <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/13
2022-08-25 17:03:56 +00:00
assert response.json().get("data") is not None
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
refactor(api): Group mutations I've learned that there is no problem in grouping mutations like we do with queries. This is a big mistake from my side, now we have legacy not so conveniently placed endpoints. I've grouped all mutations, left the copies of old ones flattened in the root for backwards compatibility. We will migrate to mutation groups on client side, and backups now only use grouped mutations. Tests are updated.
2023-06-21 03:46:56 +00:00
assert response.json()["data"]["users"]["addSshKey"]["code"] == 201
assert response.json()["data"]["users"]["addSshKey"]["message"] is not None
assert response.json()["data"]["users"]["addSshKey"]["success"] is True
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
refactor(api): Group mutations I've learned that there is no problem in grouping mutations like we do with queries. This is a big mistake from my side, now we have legacy not so conveniently placed endpoints. I've grouped all mutations, left the copies of old ones flattened in the root for backwards compatibility. We will migrate to mutation groups on client side, and backups now only use grouped mutations. Tests are updated.
2023-06-21 03:46:56 +00:00
assert response.json()["data"]["users"]["addSshKey"]["user"]["username"] == "user1"
assert response.json()["data"]["users"]["addSshKey"]["user"]["sshKeys"] == [
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
"ssh-rsa KEY user1@pc",
"ssh-rsa KEY test_key@pc",
]
test(ssh): get root key
2023-12-21 08:13:08 +00:00
def test_graphql_get_root_key(authorized_client, some_users):
assert api_rootkeys(authorized_client) == ["ssh-ed25519 KEY test@pc"]
test(ssh): get root key when none
2023-12-21 08:24:17 +00:00
def test_graphql_get_root_key_when_none(authorized_client, no_rootkeys):
assert api_rootkeys(authorized_client) == []
test(ssh): add root key when none
2023-12-20 12:08:15 +00:00
def test_graphql_add_root_ssh_key(authorized_client, no_rootkeys):
test(ssh): add one more root key
2023-12-20 12:41:29 +00:00
output = api_add_ssh_key(authorized_client, "root", "ssh-rsa KEY test_key@pc")
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
test(ssh): add one more root key
2023-12-20 12:41:29 +00:00
assert output["code"] == 201
assert output["message"] is not None
assert output["success"] is True
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
test(ssh): add one more root key
2023-12-20 12:41:29 +00:00
assert output["user"]["username"] == "root"
assert output["user"]["sshKeys"] == ["ssh-rsa KEY test_key@pc"]
assert api_rootkeys(authorized_client) == ["ssh-rsa KEY test_key@pc"]
def test_graphql_add_root_ssh_key_one_more(authorized_client, no_rootkeys):
output = api_add_ssh_key(authorized_client, "root", "ssh-rsa KEY test_key@pc")
assert output["user"]["sshKeys"] == ["ssh-rsa KEY test_key@pc"]
output = api_add_ssh_key(authorized_client, "root", "ssh-rsa KEY2 test_key@pc")
assert output["code"] == 201
assert output["message"] is not None
assert output["success"] is True
assert output["user"]["username"] == "root"
expected_keys = [
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
"ssh-rsa KEY test_key@pc",
test(ssh): add one more root key
2023-12-20 12:41:29 +00:00
"ssh-rsa KEY2 test_key@pc",
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
]
test(ssh): add one more root key
2023-12-20 12:41:29 +00:00
assert output["user"]["sshKeys"] == expected_keys
assert api_rootkeys(authorized_client) == expected_keys
test(ssh): get root key
2023-12-21 08:13:08 +00:00
test(ssh): adding same key
2023-12-20 13:09:43 +00:00
def test_graphql_add_root_ssh_key_same(authorized_client, no_rootkeys):
key = "ssh-rsa KEY test_key@pc"
output = api_add_ssh_key(authorized_client, "root", key)
assert output["user"]["sshKeys"] == [key]
output = api_add_ssh_key(authorized_client, "root", key)
assert_errorcode(output, 409)
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
test(ssh): get root key
2023-12-21 08:13:08 +00:00
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
def test_graphql_add_main_ssh_key(authorized_client, some_users, mock_subprocess_popen):
response = authorized_client.post(
"/graphql",
json={
"query": API_CREATE_SSH_KEY_MUTATION,
"variables": {
"sshInput": {
"username": "tester",
"sshKey": "ssh-rsa KEY test_key@pc",
},
},
},
)
assert response.status_code == 200
Migrate to FastAPI (#13) Co-authored-by: inexcode <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/13
2022-08-25 17:03:56 +00:00
assert response.json().get("data") is not None
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
refactor(api): Group mutations I've learned that there is no problem in grouping mutations like we do with queries. This is a big mistake from my side, now we have legacy not so conveniently placed endpoints. I've grouped all mutations, left the copies of old ones flattened in the root for backwards compatibility. We will migrate to mutation groups on client side, and backups now only use grouped mutations. Tests are updated.
2023-06-21 03:46:56 +00:00
assert response.json()["data"]["users"]["addSshKey"]["code"] == 201
assert response.json()["data"]["users"]["addSshKey"]["message"] is not None
assert response.json()["data"]["users"]["addSshKey"]["success"] is True
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
refactor(api): Group mutations I've learned that there is no problem in grouping mutations like we do with queries. This is a big mistake from my side, now we have legacy not so conveniently placed endpoints. I've grouped all mutations, left the copies of old ones flattened in the root for backwards compatibility. We will migrate to mutation groups on client side, and backups now only use grouped mutations. Tests are updated.
2023-06-21 03:46:56 +00:00
assert response.json()["data"]["users"]["addSshKey"]["user"]["username"] == "tester"
assert response.json()["data"]["users"]["addSshKey"]["user"]["sshKeys"] == [
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
"ssh-rsa KEY test@pc",
"ssh-rsa KEY test_key@pc",
]
def test_graphql_add_bad_ssh_key(authorized_client, some_users, mock_subprocess_popen):
response = authorized_client.post(
"/graphql",
json={
"query": API_CREATE_SSH_KEY_MUTATION,
"variables": {
"sshInput": {
"username": "user1",
"sshKey": "trust me, this is the ssh key",
},
},
},
)
assert response.status_code == 200
Migrate to FastAPI (#13) Co-authored-by: inexcode <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/13
2022-08-25 17:03:56 +00:00
assert response.json().get("data") is not None
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
refactor(api): Group mutations I've learned that there is no problem in grouping mutations like we do with queries. This is a big mistake from my side, now we have legacy not so conveniently placed endpoints. I've grouped all mutations, left the copies of old ones flattened in the root for backwards compatibility. We will migrate to mutation groups on client side, and backups now only use grouped mutations. Tests are updated.
2023-06-21 03:46:56 +00:00
assert response.json()["data"]["users"]["addSshKey"]["code"] == 400
assert response.json()["data"]["users"]["addSshKey"]["message"] is not None
assert response.json()["data"]["users"]["addSshKey"]["success"] is False
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
def test_graphql_add_ssh_key_nonexistent_user(
authorized_client, some_users, mock_subprocess_popen
):
response = authorized_client.post(
"/graphql",
json={
"query": API_CREATE_SSH_KEY_MUTATION,
"variables": {
"sshInput": {
"username": "user666",
"sshKey": "ssh-rsa KEY test_key@pc",
},
},
},
)
assert response.status_code == 200
Migrate to FastAPI (#13) Co-authored-by: inexcode <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/13
2022-08-25 17:03:56 +00:00
assert response.json().get("data") is not None
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
refactor(api): Group mutations I've learned that there is no problem in grouping mutations like we do with queries. This is a big mistake from my side, now we have legacy not so conveniently placed endpoints. I've grouped all mutations, left the copies of old ones flattened in the root for backwards compatibility. We will migrate to mutation groups on client side, and backups now only use grouped mutations. Tests are updated.
2023-06-21 03:46:56 +00:00
assert response.json()["data"]["users"]["addSshKey"]["code"] == 404
assert response.json()["data"]["users"]["addSshKey"]["message"] is not None
assert response.json()["data"]["users"]["addSshKey"]["success"] is False
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
API_REMOVE_SSH_KEY_MUTATION = """
mutation removeSshKey($sshInput: SshMutationInput!) {
refactor(api): Group mutations I've learned that there is no problem in grouping mutations like we do with queries. This is a big mistake from my side, now we have legacy not so conveniently placed endpoints. I've grouped all mutations, left the copies of old ones flattened in the root for backwards compatibility. We will migrate to mutation groups on client side, and backups now only use grouped mutations. Tests are updated.
2023-06-21 03:46:56 +00:00
users {
removeSshKey(sshInput: $sshInput) {
success
message
code
user {
username
sshKeys
}
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
}
}
}
"""
def test_graphql_remove_ssh_key_unauthorized(client, some_users, mock_subprocess_popen):
response = client.post(
"/graphql",
json={
"query": API_REMOVE_SSH_KEY_MUTATION,
"variables": {
"sshInput": {
"username": "user1",
"sshKey": "ssh-rsa KEY test_key@pc",
},
},
},
)
test(tokens-repo): use assert_empty consistently
2023-01-06 09:54:07 +00:00
assert_empty(response)
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
def test_graphql_remove_ssh_key(authorized_client, some_users, mock_subprocess_popen):
response = authorized_client.post(
"/graphql",
json={
"query": API_REMOVE_SSH_KEY_MUTATION,
"variables": {
"sshInput": {
"username": "user1",
"sshKey": "ssh-rsa KEY user1@pc",
},
},
},
)
assert response.status_code == 200
Migrate to FastAPI (#13) Co-authored-by: inexcode <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/13
2022-08-25 17:03:56 +00:00
assert response.json().get("data") is not None
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
refactor(api): Group mutations I've learned that there is no problem in grouping mutations like we do with queries. This is a big mistake from my side, now we have legacy not so conveniently placed endpoints. I've grouped all mutations, left the copies of old ones flattened in the root for backwards compatibility. We will migrate to mutation groups on client side, and backups now only use grouped mutations. Tests are updated.
2023-06-21 03:46:56 +00:00
assert response.json()["data"]["users"]["removeSshKey"]["code"] == 200
assert response.json()["data"]["users"]["removeSshKey"]["message"] is not None
assert response.json()["data"]["users"]["removeSshKey"]["success"] is True
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
refactor(api): Group mutations I've learned that there is no problem in grouping mutations like we do with queries. This is a big mistake from my side, now we have legacy not so conveniently placed endpoints. I've grouped all mutations, left the copies of old ones flattened in the root for backwards compatibility. We will migrate to mutation groups on client side, and backups now only use grouped mutations. Tests are updated.
2023-06-21 03:46:56 +00:00
assert (
response.json()["data"]["users"]["removeSshKey"]["user"]["username"] == "user1"
)
assert response.json()["data"]["users"]["removeSshKey"]["user"]["sshKeys"] == []
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
def test_graphql_remove_root_ssh_key(
authorized_client, some_users, mock_subprocess_popen
):
response = authorized_client.post(
"/graphql",
json={
"query": API_REMOVE_SSH_KEY_MUTATION,
"variables": {
"sshInput": {
"username": "root",
"sshKey": "ssh-ed25519 KEY test@pc",
},
},
},
)
assert response.status_code == 200
Migrate to FastAPI (#13) Co-authored-by: inexcode <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/13
2022-08-25 17:03:56 +00:00
assert response.json().get("data") is not None
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
refactor(api): Group mutations I've learned that there is no problem in grouping mutations like we do with queries. This is a big mistake from my side, now we have legacy not so conveniently placed endpoints. I've grouped all mutations, left the copies of old ones flattened in the root for backwards compatibility. We will migrate to mutation groups on client side, and backups now only use grouped mutations. Tests are updated.
2023-06-21 03:46:56 +00:00
assert response.json()["data"]["users"]["removeSshKey"]["code"] == 200
assert response.json()["data"]["users"]["removeSshKey"]["message"] is not None
assert response.json()["data"]["users"]["removeSshKey"]["success"] is True
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
refactor(api): Group mutations I've learned that there is no problem in grouping mutations like we do with queries. This is a big mistake from my side, now we have legacy not so conveniently placed endpoints. I've grouped all mutations, left the copies of old ones flattened in the root for backwards compatibility. We will migrate to mutation groups on client side, and backups now only use grouped mutations. Tests are updated.
2023-06-21 03:46:56 +00:00
assert (
response.json()["data"]["users"]["removeSshKey"]["user"]["username"] == "root"
)
assert response.json()["data"]["users"]["removeSshKey"]["user"]["sshKeys"] == []
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
def test_graphql_remove_main_ssh_key(
authorized_client, some_users, mock_subprocess_popen
):
response = authorized_client.post(
"/graphql",
json={
"query": API_REMOVE_SSH_KEY_MUTATION,
"variables": {
"sshInput": {
"username": "tester",
"sshKey": "ssh-rsa KEY test@pc",
},
},
},
)
assert response.status_code == 200
Migrate to FastAPI (#13) Co-authored-by: inexcode <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/13
2022-08-25 17:03:56 +00:00
assert response.json().get("data") is not None
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
refactor(api): Group mutations I've learned that there is no problem in grouping mutations like we do with queries. This is a big mistake from my side, now we have legacy not so conveniently placed endpoints. I've grouped all mutations, left the copies of old ones flattened in the root for backwards compatibility. We will migrate to mutation groups on client side, and backups now only use grouped mutations. Tests are updated.
2023-06-21 03:46:56 +00:00
assert response.json()["data"]["users"]["removeSshKey"]["code"] == 200
assert response.json()["data"]["users"]["removeSshKey"]["message"] is not None
assert response.json()["data"]["users"]["removeSshKey"]["success"] is True
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
refactor(api): Group mutations I've learned that there is no problem in grouping mutations like we do with queries. This is a big mistake from my side, now we have legacy not so conveniently placed endpoints. I've grouped all mutations, left the copies of old ones flattened in the root for backwards compatibility. We will migrate to mutation groups on client side, and backups now only use grouped mutations. Tests are updated.
2023-06-21 03:46:56 +00:00
assert (
response.json()["data"]["users"]["removeSshKey"]["user"]["username"] == "tester"
)
assert response.json()["data"]["users"]["removeSshKey"]["user"]["sshKeys"] == []
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
def test_graphql_remove_nonexistent_ssh_key(
authorized_client, some_users, mock_subprocess_popen
):
response = authorized_client.post(
"/graphql",
json={
"query": API_REMOVE_SSH_KEY_MUTATION,
"variables": {
"sshInput": {
"username": "user1",
"sshKey": "ssh-rsa KEY test_key@pc",
},
},
},
)
assert response.status_code == 200
Migrate to FastAPI (#13) Co-authored-by: inexcode <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/13
2022-08-25 17:03:56 +00:00
assert response.json().get("data") is not None
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
refactor(api): Group mutations I've learned that there is no problem in grouping mutations like we do with queries. This is a big mistake from my side, now we have legacy not so conveniently placed endpoints. I've grouped all mutations, left the copies of old ones flattened in the root for backwards compatibility. We will migrate to mutation groups on client side, and backups now only use grouped mutations. Tests are updated.
2023-06-21 03:46:56 +00:00
assert response.json()["data"]["users"]["removeSshKey"]["code"] == 404
assert response.json()["data"]["users"]["removeSshKey"]["message"] is not None
assert response.json()["data"]["users"]["removeSshKey"]["success"] is False
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
def test_graphql_remove_ssh_key_nonexistent_user(
authorized_client, some_users, mock_subprocess_popen
):
response = authorized_client.post(
"/graphql",
json={
"query": API_REMOVE_SSH_KEY_MUTATION,
"variables": {
"sshInput": {
"username": "user666",
"sshKey": "ssh-rsa KEY test_key@pc",
},
},
},
)
assert response.status_code == 200
Migrate to FastAPI (#13) Co-authored-by: inexcode <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/13
2022-08-25 17:03:56 +00:00
assert response.json().get("data") is not None
Add GraphQJ user and ssh management (#12) Co-authored-by: Inex Code <inex.code@selfprivacy.org> Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api/pulls/12 Co-authored-by: def <dettlaff@riseup.net> Co-committed-by: def <dettlaff@riseup.net>
2022-08-01 10:40:40 +00:00
refactor(api): Group mutations I've learned that there is no problem in grouping mutations like we do with queries. This is a big mistake from my side, now we have legacy not so conveniently placed endpoints. I've grouped all mutations, left the copies of old ones flattened in the root for backwards compatibility. We will migrate to mutation groups on client side, and backups now only use grouped mutations. Tests are updated.
2023-06-21 03:46:56 +00:00
assert response.json()["data"]["users"]["removeSshKey"]["code"] == 404
assert response.json()["data"]["users"]["removeSshKey"]["message"] is not None
assert response.json()["data"]["users"]["removeSshKey"]["success"] is False
Reference in a new issue Copy permalink