Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Log keyring tracebacks #890

Merged
merged 19 commits into from May 30, 2022
Merged

Log keyring tracebacks #890

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
19 commits
Select commit Hold shift + click to select a range
3d4163c
Use logger.exception instead of logger.warning to handle keyring fail…
Apr 14, 2022
942a76c
Revert logging back to warning
Apr 20, 2022
f851116
Add changelog entry
Apr 20, 2022
c305ce0
Merge branch 'main' into auth-logging
bhrutledge May 21, 2022
4911d58
Parameterize test
bhrutledge May 21, 2022
3851a2b
Use re.search for caplog
bhrutledge May 21, 2022
62abc9d
Group similar tests
bhrutledge May 21, 2022
2471d91
Rework missing HOME setup
bhrutledge May 28, 2022
e8afbe4
Refactor fixtures
bhrutledge May 28, 2022
45c1fe4
Normalize prompt tests
bhrutledge May 28, 2022
6246b94
Fix incorrect non-interactive test
bhrutledge May 28, 2022
5a6f7cc
Reload keyring to reproduce test failure
bhrutledge May 28, 2022
e7efaa8
Patch pwd instead of os
bhrutledge May 28, 2022
306ec40
Make assertions more specific
bhrutledge May 28, 2022
41dc6bf
Move monkeypatch to keyring
bhrutledge May 28, 2022
0e0ea1a
Test attributes instead of methods
bhrutledge May 28, 2022
5b2275f
Use more specific log messages
bhrutledge May 28, 2022
eecdc9f
Normalize keyring monkeypatch
bhrutledge May 28, 2022
be07265
Merge branch 'main' into auth-logging
bhrutledge May 28, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
1 change: 1 addition & 0 deletions changelog/890.bugfix.rst
View file
Open in desktop
@@ -0,0 +1 @@
Improve logging when keyring fails.
111 changes: 78 additions & 33 deletions tests/test_auth.py
View file
Open in desktop
@@ -1,5 +1,6 @@
import getpass
import logging
import re

import pytest

Expand All @@ -13,23 +14,23 @@ def config() -> utils.RepositoryConfig:
return dict(repository="system")


def test_get_password_keyring_overrides_prompt(monkeypatch, config):
def test_get_username_keyring_defers_to_prompt(monkeypatch, entered_username, config):
class MockKeyring:
@staticmethod
def get_password(system, user):
return f"{user}@{system} sekure pa55word"
def get_credential(system, user):
return None

monkeypatch.setattr(auth, "keyring", MockKeyring)

pw = auth.Resolver(config, auth.CredentialInput("user")).password
assert pw == "user@system sekure pa55word"
username = auth.Resolver(config, auth.CredentialInput()).username
assert username == "entered user"


def test_get_password_keyring_defers_to_prompt(monkeypatch, entered_password, config):
class MockKeyring:
@staticmethod
def get_password(system, user):
return
return None

monkeypatch.setattr(auth, "keyring", MockKeyring)

Expand All @@ -51,7 +52,7 @@ def test_empty_password_bypasses_prompt(monkeypatch, entered_password, config):

def test_no_username_non_interactive_aborts(config):
with pytest.raises(exceptions.NonInteractive):
auth.Private(config, auth.CredentialInput("user")).password
auth.Private(config, auth.CredentialInput()).username


def test_no_password_non_interactive_aborts(config):
Expand Down Expand Up @@ -124,55 +125,99 @@ def test_get_password_keyring_missing_non_interactive_aborts(
auth.Private(config, auth.CredentialInput("user")).password


@pytest.fixture
def keyring_no_backends(monkeypatch):
"""Simulate missing keyring backend raising RuntimeError on get_password."""

def test_get_username_keyring_runtime_error_logged(
entered_username, monkeypatch, config, caplog
):
class FailKeyring:
"""Simulate missing keyring backend raising RuntimeError on get_credential."""

@staticmethod
def get_password(system, username):
def get_credential(system, username):
raise RuntimeError("fail!")

monkeypatch.setattr(auth, "keyring", FailKeyring())
monkeypatch.setattr(auth, "keyring", FailKeyring)

assert auth.Resolver(config, auth.CredentialInput()).username == "entered user"

@pytest.fixture
def keyring_no_backends_get_credential(monkeypatch):
"""Simulate missing keyring backend raising RuntimeError on get_credential."""
assert re.search(
r"Error getting username from keyring.+Traceback.+RuntimeError: fail!",
caplog.text,
re.DOTALL,
)


def test_get_password_keyring_runtime_error_logged(
entered_username, entered_password, monkeypatch, config, caplog
):
class FailKeyring:
"""Simulate missing keyring backend raising RuntimeError on get_password."""

@staticmethod
def get_credential(system, username):
def get_password(system, username):
raise RuntimeError("fail!")

monkeypatch.setattr(auth, "keyring", FailKeyring())
monkeypatch.setattr(auth, "keyring", FailKeyring)

assert auth.Resolver(config, auth.CredentialInput()).password == "entered pw"

def test_get_username_runtime_error_suppressed(
entered_username, keyring_no_backends_get_credential, caplog, config
):
assert auth.Resolver(config, auth.CredentialInput()).username == "entered user"
assert caplog.messages == ["fail!"]
assert re.search(
r"Error getting password from keyring.+Traceback.+RuntimeError: fail!",
caplog.text,
re.DOTALL,
)


def test_get_password_runtime_error_suppressed(
entered_password, keyring_no_backends, caplog, config
):
assert auth.Resolver(config, auth.CredentialInput("user")).password == "entered pw"
assert caplog.messages == ["fail!"]

def _raise_home_key_error():
"""Simulate environment from https://github.com/pypa/twine/issues/889."""
try:
raise KeyError("HOME")
except KeyError:
raise KeyError("uid not found: 999")

def test_get_username_return_none(entered_username, monkeypatch, config):
"""Prompt for username when it's not in keyring."""

def test_get_username_keyring_key_error_logged(
entered_username, monkeypatch, config, caplog
):
class FailKeyring:
@staticmethod
def get_credential(system, username):
return None
_raise_home_key_error()

monkeypatch.setattr(auth, "keyring", FailKeyring)

monkeypatch.setattr(auth, "keyring", FailKeyring())
assert auth.Resolver(config, auth.CredentialInput()).username == "entered user"

assert re.search(
r"Error getting username from keyring"
r".+Traceback"
r".+KeyError: 'HOME'"
r".+KeyError: 'uid not found: 999'",
caplog.text,
re.DOTALL,
)
bhrutledge marked this conversation as resolved.
Show resolved Hide resolved


def test_get_password_keyring_key_error_logged(
entered_username, entered_password, monkeypatch, config, caplog
):
class FailKeyring:
@staticmethod
def get_password(system, username):
_raise_home_key_error()

monkeypatch.setattr(auth, "keyring", FailKeyring)

assert auth.Resolver(config, auth.CredentialInput()).password == "entered pw"

assert re.search(
r"Error getting password from keyring"
r".+Traceback"
r".+KeyError: 'HOME'"
r".+KeyError: 'uid not found: 999'",
caplog.text,
re.DOTALL,
)


def test_logs_cli_values(caplog):
caplog.set_level(logging.INFO, "twine")
Expand Down
4 changes: 2 additions & 2 deletions twine/auth.py
View file
Open in desktop
Expand Up @@ -63,7 +63,7 @@ def get_username_from_keyring(self) -> Optional[str]:
# To support keyring prior to 15.2
pass
except Exception as exc:
logger.warning(str(exc))
logger.warning("Error getting username from keyring", exc_info=exc)
return None

def get_password_from_keyring(self) -> Optional[str]:
Expand All @@ -73,7 +73,7 @@ def get_password_from_keyring(self) -> Optional[str]:
logger.info("Querying keyring for password")
return cast(str, keyring.get_password(system, username))
except Exception as exc:
logger.warning(str(exc))
logger.warning("Error getting password from keyring", exc_info=exc)
return None

def username_from_keyring_or_prompt(self) -> str:
Expand Down