tests/app/service/test_api_key_endpoints.py

import json
from datetime import timedelta, datetime

from flask import url_for
from app.models import ApiKey
from app.dao.api_key_dao import save_model_api_key, expire_api_key
from tests import create_authorization_header
from tests.app.conftest import sample_api_key as create_sample_api_key
from tests.app.conftest import sample_service as create_sample_service
from tests.app.conftest import sample_user as create_user


def test_api_key_should_create_new_api_key_for_service(notify_api, notify_db,
                                                       notify_db_session,
                                                       sample_service):
    with notify_api.test_request_context():
        with notify_api.test_client() as client:
            data = {'name': 'some secret name', 'created_by': str(sample_service.created_by.id)}
            auth_header = create_authorization_header()
            response = client.post(url_for('service.renew_api_key', service_id=sample_service.id),
                                   data=json.dumps(data),
                                   headers=[('Content-Type', 'application/json'), auth_header])
            assert response.status_code == 201
            assert response.get_data is not None
            saved_api_key = ApiKey.query.filter_by(service_id=sample_service.id).first()
            assert saved_api_key.service_id == sample_service.id
            assert saved_api_key.name == 'some secret name'


def test_api_key_should_return_error_when_service_does_not_exist(notify_api, notify_db, notify_db_session,
                                                                 sample_service):
    with notify_api.test_request_context():
        with notify_api.test_client() as client:
            import uuid
            missing_service_id = uuid.uuid4()
            auth_header = create_authorization_header()
            response = client.post(url_for('service.renew_api_key', service_id=missing_service_id),
                                   headers=[('Content-Type', 'application/json'), auth_header])
            assert response.status_code == 404


def test_revoke_should_expire_api_key_for_service(notify_api, notify_db, notify_db_session,
                                                  sample_api_key):
    with notify_api.test_request_context():
        with notify_api.test_client() as client:
            assert ApiKey.query.count() == 1
            auth_header = create_authorization_header()
            response = client.post(url_for('service.revoke_api_key',
                                           service_id=sample_api_key.service_id,
                                           api_key_id=sample_api_key.id),
                                   headers=[auth_header])
            assert response.status_code == 202
            api_keys_for_service = ApiKey.query.get(sample_api_key.id)
            assert api_keys_for_service.expiry_date is not None


def test_api_key_should_create_multiple_new_api_key_for_service(notify_api, notify_db,
                                                                notify_db_session,
                                                                sample_service):
    with notify_api.test_request_context():
        with notify_api.test_client() as client:
            assert ApiKey.query.count() == 0
            data = {'name': 'some secret name', 'created_by': str(sample_service.created_by.id)}
            auth_header = create_authorization_header()
            response = client.post(url_for('service.renew_api_key', service_id=sample_service.id),
                                   data=json.dumps(data),
                                   headers=[('Content-Type', 'application/json'), auth_header])
            assert response.status_code == 201
            assert ApiKey.query.count() == 1
            data = {'name': 'another secret name', 'created_by': str(sample_service.created_by.id)}
            auth_header = create_authorization_header()
            response2 = client.post(url_for('service.renew_api_key', service_id=sample_service.id),
                                    data=json.dumps(data),
                                    headers=[('Content-Type', 'application/json'), auth_header])
            assert response2.status_code == 201
            assert response2.get_data != response.get_data
            assert ApiKey.query.count() == 2


def test_get_api_keys_should_return_all_keys_for_service(notify_api, notify_db,
                                                         notify_db_session,
                                                         sample_api_key):
    with notify_api.test_request_context():
        with notify_api.test_client() as client:
            another_user = create_user(notify_db, notify_db_session, email='another@it.gov.uk')

            another_service = create_sample_service(
                notify_db,
                notify_db_session,
                service_name='another',
                user=another_user,
                email_from='another'
            )
            # key for another service
            create_sample_api_key(notify_db, notify_db_session, service=another_service)

            # this service already has one key, add two more, one expired
            create_sample_api_key(notify_db, notify_db_session, service=sample_api_key.service)
            one_to_expire = create_sample_api_key(notify_db, notify_db_session, service=sample_api_key.service)
            expire_api_key(service_id=one_to_expire.service_id, api_key_id=one_to_expire.id)

            assert ApiKey.query.count() == 4

            auth_header = create_authorization_header()
            response = client.get(url_for('service.get_api_keys',
                                          service_id=sample_api_key.service_id),
                                  headers=[('Content-Type', 'application/json'), auth_header])
            assert response.status_code == 200
            json_resp = json.loads(response.get_data(as_text=True))
            assert len(json_resp['apiKeys']) == 3


def test_get_api_keys_should_return_one_key_for_service(notify_api, notify_db,
                                                        notify_db_session,
                                                        sample_api_key):
    with notify_api.test_request_context():
        with notify_api.test_client() as client:
            auth_header = create_authorization_header()
            response = client.get(url_for('service.get_api_keys',
                                          service_id=sample_api_key.service_id,
                                          key_id=sample_api_key.id),
                                  headers=[('Content-Type', 'application/json'), auth_header])
            assert response.status_code == 200
            json_resp = json.loads(response.get_data(as_text=True))
            assert len(json_resp['apiKeys']) == 1
Allow services to have multiple api keys. /service/<service_id>/api-key/renew has been renamed to /service/<service_id>/api-key /service/<service_id>/api-key now creates a token and no longer expires the existing api key. Moved test for this endpoint to it's own file. 2016-01-20 10:57:46 +00:00			`import json`
Get api_keys for service endpoint 2016-01-20 15:23:32 +00:00			`from datetime import timedelta, datetime`
Allow services to have multiple api keys. /service/<service_id>/api-key/renew has been renamed to /service/<service_id>/api-key /service/<service_id>/api-key now creates a token and no longer expires the existing api key. Moved test for this endpoint to it's own file. 2016-01-20 10:57:46 +00:00
			`from flask import url_for`
			`from app.models import ApiKey`
Refactor the api_key_dao. The only update we should be doing to an api key is to expire/revoke the api key. Removed the update_dict from the the save method. Added an expire_api_key method that only updates the api key with an expiry date. 2016-06-22 15:27:28 +01:00			`from app.dao.api_key_dao import save_model_api_key, expire_api_key`
Allow services to have multiple api keys. /service/<service_id>/api-key/renew has been renamed to /service/<service_id>/api-key /service/<service_id>/api-key now creates a token and no longer expires the existing api key. Moved test for this endpoint to it's own file. 2016-01-20 10:57:46 +00:00			`from tests import create_authorization_header`
Added tests for get api endpoint 2016-01-20 15:41:19 +00:00			`from tests.app.conftest import sample_api_key as create_sample_api_key`
			`from tests.app.conftest import sample_service as create_sample_service`
			`from tests.app.conftest import sample_user as create_user`
Allow services to have multiple api keys. /service/<service_id>/api-key/renew has been renamed to /service/<service_id>/api-key /service/<service_id>/api-key now creates a token and no longer expires the existing api key. Moved test for this endpoint to it's own file. 2016-01-20 10:57:46 +00:00

Reverted commented out tests 2016-04-21 15:15:32 +01:00			`def test_api_key_should_create_new_api_key_for_service(notify_api, notify_db,`
			`notify_db_session,`
			`sample_service):`
			`with notify_api.test_request_context():`
			`with notify_api.test_client() as client:`
			`data = {'name': 'some secret name', 'created_by': str(sample_service.created_by.id)}`
Update python client to version 1.0.0. This version of the client removed the request method, path and body from the encode and decode methods. The biggest changes here is to the unit tests. 2016-05-04 16:08:23 +01:00			`auth_header = create_authorization_header()`
Reverted commented out tests 2016-04-21 15:15:32 +01:00			`response = client.post(url_for('service.renew_api_key', service_id=sample_service.id),`
			`data=json.dumps(data),`
			`headers=[('Content-Type', 'application/json'), auth_header])`
			`assert response.status_code == 201`
			`assert response.get_data is not None`
			`saved_api_key = ApiKey.query.filter_by(service_id=sample_service.id).first()`
			`assert saved_api_key.service_id == sample_service.id`
			`assert saved_api_key.name == 'some secret name'`
Added version history to api keys. This needed a bit of change to create history to handle foreign keys better. There may yet be a better way of doing this that I have not found yet in sqlalchemy docs. 2016-04-20 17:25:20 +01:00

Reverted commented out tests 2016-04-21 15:15:32 +01:00			`def test_api_key_should_return_error_when_service_does_not_exist(notify_api, notify_db, notify_db_session,`
			`sample_service):`
			`with notify_api.test_request_context():`
			`with notify_api.test_client() as client:`
			`import uuid`
			`missing_service_id = uuid.uuid4()`
Update python client to version 1.0.0. This version of the client removed the request method, path and body from the encode and decode methods. The biggest changes here is to the unit tests. 2016-05-04 16:08:23 +01:00			`auth_header = create_authorization_header()`
Reverted commented out tests 2016-04-21 15:15:32 +01:00			`response = client.post(url_for('service.renew_api_key', service_id=missing_service_id),`
			`headers=[('Content-Type', 'application/json'), auth_header])`
			`assert response.status_code == 404`
Added version history to api keys. This needed a bit of change to create history to handle foreign keys better. There may yet be a better way of doing this that I have not found yet in sqlalchemy docs. 2016-04-20 17:25:20 +01:00

Reverted commented out tests 2016-04-21 15:15:32 +01:00			`def test_revoke_should_expire_api_key_for_service(notify_api, notify_db, notify_db_session,`
			`sample_api_key):`
			`with notify_api.test_request_context():`
			`with notify_api.test_client() as client:`
			`assert ApiKey.query.count() == 1`
Update python client to version 1.0.0. This version of the client removed the request method, path and body from the encode and decode methods. The biggest changes here is to the unit tests. 2016-05-04 16:08:23 +01:00			`auth_header = create_authorization_header()`
Reverted commented out tests 2016-04-21 15:15:32 +01:00			`response = client.post(url_for('service.revoke_api_key',`
			`service_id=sample_api_key.service_id,`
			`api_key_id=sample_api_key.id),`
			`headers=[auth_header])`
			`assert response.status_code == 202`
			`api_keys_for_service = ApiKey.query.get(sample_api_key.id)`
			`assert api_keys_for_service.expiry_date is not None`
Added version history to api keys. This needed a bit of change to create history to handle foreign keys better. There may yet be a better way of doing this that I have not found yet in sqlalchemy docs. 2016-04-20 17:25:20 +01:00

Reverted commented out tests 2016-04-21 15:15:32 +01:00			`def test_api_key_should_create_multiple_new_api_key_for_service(notify_api, notify_db,`
			`notify_db_session,`
			`sample_service):`
			`with notify_api.test_request_context():`
			`with notify_api.test_client() as client:`
			`assert ApiKey.query.count() == 0`
			`data = {'name': 'some secret name', 'created_by': str(sample_service.created_by.id)}`
Update python client to version 1.0.0. This version of the client removed the request method, path and body from the encode and decode methods. The biggest changes here is to the unit tests. 2016-05-04 16:08:23 +01:00			`auth_header = create_authorization_header()`
Reverted commented out tests 2016-04-21 15:15:32 +01:00			`response = client.post(url_for('service.renew_api_key', service_id=sample_service.id),`
			`data=json.dumps(data),`
			`headers=[('Content-Type', 'application/json'), auth_header])`
			`assert response.status_code == 201`
			`assert ApiKey.query.count() == 1`
			`data = {'name': 'another secret name', 'created_by': str(sample_service.created_by.id)}`
Update python client to version 1.0.0. This version of the client removed the request method, path and body from the encode and decode methods. The biggest changes here is to the unit tests. 2016-05-04 16:08:23 +01:00			`auth_header = create_authorization_header()`
Reverted commented out tests 2016-04-21 15:15:32 +01:00			`response2 = client.post(url_for('service.renew_api_key', service_id=sample_service.id),`
			`data=json.dumps(data),`
			`headers=[('Content-Type', 'application/json'), auth_header])`
			`assert response2.status_code == 201`
			`assert response2.get_data != response.get_data`
			`assert ApiKey.query.count() == 2`
Get api_keys for service endpoint 2016-01-20 15:23:32 +00:00

			`def test_get_api_keys_should_return_all_keys_for_service(notify_api, notify_db,`
			`notify_db_session,`
			`sample_api_key):`
			`with notify_api.test_request_context():`
			`with notify_api.test_client() as client:`
Added tests for get api endpoint 2016-01-20 15:41:19 +00:00			`another_user = create_user(notify_db, notify_db_session, email='another@it.gov.uk')`
Added version history to api keys. This needed a bit of change to create history to handle foreign keys better. There may yet be a better way of doing this that I have not found yet in sqlalchemy docs. 2016-04-20 17:25:20 +01:00
Added functionality to archive a template. Renamed migration file. 2016-04-25 16:28:08 +01:00			`another_service = create_sample_service(`
			`notify_db,`
			`notify_db_session,`
			`service_name='another',`
			`user=another_user,`
			`email_from='another'`
			`)`
Added version history to api keys. This needed a bit of change to create history to handle foreign keys better. There may yet be a better way of doing this that I have not found yet in sqlalchemy docs. 2016-04-20 17:25:20 +01:00			`# key for another service`
Added tests for get api endpoint 2016-01-20 15:41:19 +00:00			`create_sample_api_key(notify_db, notify_db_session, service=another_service)`
Added version history to api keys. This needed a bit of change to create history to handle foreign keys better. There may yet be a better way of doing this that I have not found yet in sqlalchemy docs. 2016-04-20 17:25:20 +01:00
			`# this service already has one key, add two more, one expired`
			`create_sample_api_key(notify_db, notify_db_session, service=sample_api_key.service)`
			`one_to_expire = create_sample_api_key(notify_db, notify_db_session, service=sample_api_key.service)`
Refactor the api_key_dao. The only update we should be doing to an api key is to expire/revoke the api key. Removed the update_dict from the the save method. Added an expire_api_key method that only updates the api key with an expiry date. 2016-06-22 15:27:28 +01:00			`expire_api_key(service_id=one_to_expire.service_id, api_key_id=one_to_expire.id)`
Added version history to api keys. This needed a bit of change to create history to handle foreign keys better. There may yet be a better way of doing this that I have not found yet in sqlalchemy docs. 2016-04-20 17:25:20 +01:00
Added tests for get api endpoint 2016-01-20 15:41:19 +00:00			`assert ApiKey.query.count() == 4`
Get api_keys for service endpoint 2016-01-20 15:23:32 +00:00
Update python client to version 1.0.0. This version of the client removed the request method, path and body from the encode and decode methods. The biggest changes here is to the unit tests. 2016-05-04 16:08:23 +01:00			`auth_header = create_authorization_header()`
Get api_keys for service endpoint 2016-01-20 15:23:32 +00:00			`response = client.get(url_for('service.get_api_keys',`
			`service_id=sample_api_key.service_id),`
			`headers=[('Content-Type', 'application/json'), auth_header])`
			`assert response.status_code == 200`
			`json_resp = json.loads(response.get_data(as_text=True))`
			`assert len(json_resp['apiKeys']) == 3`
Updated get_api_keys endpoint to return one or many given key_id or not. 2016-01-21 12:13:17 +00:00

			`def test_get_api_keys_should_return_one_key_for_service(notify_api, notify_db,`
			`notify_db_session,`
			`sample_api_key):`
			`with notify_api.test_request_context():`
			`with notify_api.test_client() as client:`
Update python client to version 1.0.0. This version of the client removed the request method, path and body from the encode and decode methods. The biggest changes here is to the unit tests. 2016-05-04 16:08:23 +01:00			`auth_header = create_authorization_header()`
Updated get_api_keys endpoint to return one or many given key_id or not. 2016-01-21 12:13:17 +00:00			`response = client.get(url_for('service.get_api_keys',`
			`service_id=sample_api_key.service_id,`
			`key_id=sample_api_key.id),`
			`headers=[('Content-Type', 'application/json'), auth_header])`
			`assert response.status_code == 200`
			`json_resp = json.loads(response.get_data(as_text=True))`
			`assert len(json_resp['apiKeys']) == 1`