forked from apache/airflow
-
Notifications
You must be signed in to change notification settings - Fork 15
/
test_session.py
89 lines (70 loc) · 3.21 KB
/
test_session.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
# Licensed to the Apache Software Foundation (ASF) under one
# or more contributor license agreements. See the NOTICE file
# distributed with this work for additional information
# regarding copyright ownership. The ASF licenses this file
# to you under the Apache License, Version 2.0 (the
# "License"); you may not use this file except in compliance
# with the License. You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing,
# software distributed under the License is distributed on an
# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
# KIND, either express or implied. See the License for the
# specific language governing permissions and limitations
# under the License.
from unittest import mock
import pytest
from airflow.exceptions import AirflowConfigException
from airflow.www import app
from tests.test_utils.config import conf_vars
from tests.test_utils.decorators import dont_initialize_flask_app_submodules
def get_session_cookie(client):
return next((cookie for cookie in client.cookie_jar if cookie.name == 'session'), None)
def test_session_cookie_created_on_login(user_client):
assert get_session_cookie(user_client) is not None
def test_session_inaccessible_after_logout(user_client):
session_cookie = get_session_cookie(user_client)
assert session_cookie is not None
resp = user_client.get('/logout/')
assert resp.status_code == 302
# Try to access /home with the session cookie from earlier
user_client.set_cookie('session', session_cookie.value)
user_client.get('/home/')
assert resp.status_code == 302
def test_invalid_session_backend_option():
@dont_initialize_flask_app_submodules(
skip_all_except=[
"init_api_connexion",
"init_appbuilder",
"init_appbuilder_links",
"init_appbuilder_views",
"init_flash_views",
"init_jinja_globals",
"init_plugins",
"init_airflow_session_interface",
]
)
def poorly_configured_app_factory():
with conf_vars({("webserver", "session_backend"): "invalid_value_for_session_backend"}):
return app.create_app(testing=True)
expected_exc_regex = (
"^Unrecognized session backend specified in web_server_session_backend: "
r"'invalid_value_for_session_backend'\. Please set this to .+\.$"
)
with pytest.raises(AirflowConfigException, match=expected_exc_regex):
poorly_configured_app_factory()
def test_session_id_rotates(app, user_client):
old_session_cookie = get_session_cookie(user_client)
assert old_session_cookie is not None
resp = user_client.get('/logout/')
assert resp.status_code == 302
patch_path = "airflow.www.fab_security.manager.check_password_hash"
with mock.patch(patch_path) as check_password_hash:
check_password_hash.return_value = True
resp = user_client.post("/login/", data={"username": "test_user", "password": "test_user"})
assert resp.status_code == 302
new_session_cookie = get_session_cookie(user_client)
assert new_session_cookie is not None
assert old_session_cookie.value != new_session_cookie.value