6e3f1a1194
* Upgrade syntax with pyupgrade --py38-plus Signed-off-by: Hugo van Kemenade <1324225+hugovk@users.noreply.github.com> * Convert to f-strings with flynt Signed-off-by: Hugo van Kemenade <1324225+hugovk@users.noreply.github.com> * Format with Black Signed-off-by: Hugo van Kemenade <1324225+hugovk@users.noreply.github.com> * Remove redundant mock backport dependency Signed-off-by: Hugo van Kemenade <1324225+hugovk@users.noreply.github.com> * isort imports Signed-off-by: Hugo van Kemenade <1324225+hugovk@users.noreply.github.com> * Add changelog entry Signed-off-by: Hugo van Kemenade <1324225+hugovk@users.noreply.github.com> --------- Signed-off-by: Hugo van Kemenade <1324225+hugovk@users.noreply.github.com>
106 lines
3.6 KiB
Python
106 lines
3.6 KiB
Python
# SPDX-License-Identifier: Apache-2.0
|
|
#
|
|
# The OpenSearch Contributors require contributions made to
|
|
# this file be licensed under the Apache-2.0 license or a
|
|
# compatible open source license.
|
|
#
|
|
# Modifications Copyright OpenSearch Contributors. See
|
|
# GitHub history for details.
|
|
|
|
import uuid
|
|
from unittest.mock import Mock
|
|
|
|
import pytest
|
|
from _pytest.mark.structures import MarkDecorator
|
|
|
|
pytestmark: MarkDecorator = pytest.mark.asyncio
|
|
|
|
|
|
class TestAsyncSigner:
|
|
def mock_session(self) -> Mock:
|
|
access_key = uuid.uuid4().hex
|
|
secret_key = uuid.uuid4().hex
|
|
token = uuid.uuid4().hex
|
|
dummy_session = Mock()
|
|
dummy_session.access_key = access_key
|
|
dummy_session.secret_key = secret_key
|
|
dummy_session.token = token
|
|
|
|
del dummy_session.get_frozen_credentials
|
|
|
|
return dummy_session
|
|
|
|
async def test_aws_signer_async_as_http_auth(self) -> None:
|
|
region = "us-west-2"
|
|
|
|
from opensearchpy.helpers.asyncsigner import AWSV4SignerAsyncAuth
|
|
|
|
auth = AWSV4SignerAsyncAuth(self.mock_session(), region)
|
|
headers = auth("GET", "http://localhost")
|
|
assert "Authorization" in headers
|
|
assert "X-Amz-Date" in headers
|
|
assert "X-Amz-Security-Token" in headers
|
|
|
|
async def test_aws_signer_async_when_region_is_null(self) -> None:
|
|
session = self.mock_session()
|
|
|
|
from opensearchpy.helpers.asyncsigner import AWSV4SignerAsyncAuth
|
|
|
|
with pytest.raises(ValueError) as e:
|
|
AWSV4SignerAsyncAuth(session, None) # type: ignore
|
|
assert str(e.value) == "Region cannot be empty"
|
|
|
|
with pytest.raises(ValueError) as e:
|
|
AWSV4SignerAsyncAuth(session, "")
|
|
assert str(e.value) == "Region cannot be empty"
|
|
|
|
async def test_aws_signer_async_when_credentials_is_null(self) -> None:
|
|
region = "us-west-1"
|
|
|
|
from opensearchpy.helpers.asyncsigner import AWSV4SignerAsyncAuth
|
|
|
|
with pytest.raises(ValueError) as e:
|
|
AWSV4SignerAsyncAuth(None, region)
|
|
assert str(e.value) == "Credentials cannot be empty"
|
|
|
|
async def test_aws_signer_async_when_service_is_specified(self) -> None:
|
|
region = "us-west-2"
|
|
service = "aoss"
|
|
|
|
from opensearchpy.helpers.asyncsigner import AWSV4SignerAsyncAuth
|
|
|
|
auth = AWSV4SignerAsyncAuth(self.mock_session(), region, service)
|
|
headers = auth("GET", "http://localhost")
|
|
assert "Authorization" in headers
|
|
assert "X-Amz-Date" in headers
|
|
assert "X-Amz-Security-Token" in headers
|
|
assert "X-Amz-Content-SHA256" in headers
|
|
|
|
|
|
class TestAsyncSignerWithFrozenCredentials(TestAsyncSigner):
|
|
def mock_session(self, disable_get_frozen: bool = True) -> Mock:
|
|
access_key = uuid.uuid4().hex
|
|
secret_key = uuid.uuid4().hex
|
|
token = uuid.uuid4().hex
|
|
dummy_session = Mock()
|
|
dummy_session.access_key = access_key
|
|
dummy_session.secret_key = secret_key
|
|
dummy_session.token = token
|
|
dummy_session.get_frozen_credentials = Mock(return_value=dummy_session)
|
|
|
|
return dummy_session
|
|
|
|
async def test_aws_signer_async_frozen_credentials_as_http_auth(self) -> None:
|
|
region = "us-west-2"
|
|
|
|
from opensearchpy.helpers.asyncsigner import AWSV4SignerAsyncAuth
|
|
|
|
mock_session = self.mock_session()
|
|
|
|
auth = AWSV4SignerAsyncAuth(mock_session, region)
|
|
headers = auth("GET", "http://localhost")
|
|
assert "Authorization" in headers
|
|
assert "X-Amz-Date" in headers
|
|
assert "X-Amz-Security-Token" in headers
|
|
assert len(mock_session.get_frozen_credentials.mock_calls) == 1
|