This SDK provides a convenient Python interface to the SecureDrop Journalist Interface API. The development of the SDK was primarily motivated by the creation of the SecureDrop Workstation based on Qubes OS.
The SDK is currently used by the SecureDrop Client that is a component of the SecureDrop Workstation. When used in Qubes OS, the SDK uses the securedrop-proxy service, as the VM which runs the client does not have network access by design.
virtualenv --python=python3 .venv
source .venv/bin/activate
pip install --require-hashes -r dev-requirements.txt
make testWe cover all the API calls supported by the SecureDrop Journalist Interface API.
To install the SDK into your virtualenv for testing purposes:
pip uninstall securedrop-sdk
pip install git+https://github.com/freedomofpress/securedrop-sdk@my_branch#egg=securedrop-sdk
When tests are run, they replay recorded API request and response data instead of making actual API calls to a server. This is why tests can pass even when there is no server running. If you want to add new tests that make API calls or if the server ever changes its API, then you'll need to record new request and response data by following the steps outlined in Generating new cassettes.
Note: We have a CI test that does not use the recorded API request and response data in order to make sure we are testing the latest changes to the SDK against the latest server API (see test-against-latest-api in https://github.com/freedomofpress/securedrop-sdk/blob/main/.circleci/config.yml).
To run all tests and checks, run:
make checkTo run all tests, run:
make testTo run all tests that make API calls over HTTP, run:
make test TESTS=tests/test_api.pyTo run all tests that make API calls over qrexec, run:
make test TESTS=tests/test_apiproxy.pyTo run a single test, specify file name, class name, and test name, e.g.:
make test TESTS=tests/test_api.py::TestAPI::test_get_sourcesWe use vcrpy to record and replay API calls made over HTTP and a decorator called @dastollervey_datasaver to record and replay API calls made over qrexec. Each request made from a test and its response from the server is stored in a "cassette" in the data directory. Tests replay these cassettes instead of making actual API calls to a server.
If the server changes its API, then you'll see the following warning indicating that a request failed to be found in an existing cassette and that you'll need to regenerate cassettes:
Can't overwrite existing cassette ('<path-to-cassette-for-a-functional-test>') in your current record mode ('once').
The steps to generate new cassettes are split into two sections: Generating cassettes for API calls over HTTP and Generating cassettes for API calls over qrexec.
-
Start the server in a docker container by running:
NUM_SOURCES=5 make dev
-
[Skip if adding a new test] Delete the cassettes you wish to regenerate or just delete all yaml files by running:
rm data/*.yml -
Generate new cassettes that make API calls over HTTP by running:
make test TESTS=tests/test_api.py
Note: Some tests alter source and conversation data on the server so you may need to restart the server in between test runs.
In order to generate cassettes for tests that make API calls over qrexec, you'll need to run the server and proxy on a separate VM. If this is the first time you are generating cassettes, then you'll need to first follow the steps outlined in the Setup for qrexec communication section.
Once your VMs are set up, follow these steps:
-
Start the server in a docker container on a separate VM (called
dev-serverif you followed the instructions from Setup for qrexec communication) by running:NUM_SOURCES=5 make dev
-
[Skip if adding a new test] Delete the cassettes you wish to regenerate or just delete all json files by running:
rm data/*.json -
Comment out the
@dastollervey_datasaverdecorator above the test you want to generate a new cassette for or just generate all new cassettes by commenting out the decorator above all methods in thetest_apiproxy.py::TestAPIProxyclass. -
Make qrexec calls to the server and collect real response data:
make test TESTS=tests/test_apiproxy.py -
Uncomment the
@dastollervey_datasaverdecorator wherever you commented it out. -
Record new cassettes from the response data collected in step 4:
make test TESTS=tests/test_apiproxy.py
Note: If you get a 403 error it's becuase the test is trying to reuse an old TOTP code, so wait for 60 seconds and try again. Some tests alter source and conversation data on the server so you should restart the server in between test runs.
Note: Remember that file download checks don't read actual file path in the APIProxy tests as it requires QubesOS setup. You can manually uncomment those lines to execute them on QubesOS setup.
If this is the first time you are generating new cassettes that make API calls over qrexec, then you'll need to set up a new VM for running the server and proxy following these steps:
-
Create a new template cloned from the debian-10 template called dev-server-template.
-
Install the lastest proxy package:
wget https://apt.freedom.press/pool/main/s/securedrop-proxy/<latest-package>.deb dpkg -i <latest-package>.deb
-
Create
/etc/sd-proxy.yamlwith the following contents (assuming the VM you'll be running the SDK functional tests from is called dev-client):host: 127.0.0.1 scheme: http port: 8081 target_vm: dev-client dev: False -
Install Docker.
-
Create a new Qubes VM called dev-server from the dev-server-template VM you just created.
-
Clone
securedropon dev-server and run the server in a Docker container:git clone https://github.com/freedomofpress/securedrop virtualenv .venv --python=python3 source .venv/bin/activate pip install -r securedrop/requirements/python3/develop-requirements.txt NUM_SOURCES=5 make dev -
Open a terminal in dev-client and create
/etc/sd-sdk.confwith the following contents:
[proxy]
name=dev-server
- Update
/etc/qubes-rpc/policy/securedrop.Proxyin dom0 by adding the following line to the top of the file:
dev-client dev-server allow
-
Verify qrexec communication between VMs is set up properly. a. Make sure the server is running in a docker container in the
dev-serverVM that you just created. b. Comment out the@dastollervey_datasaverdecorator above thetest_apiproxy.py::TestAPIProxy::setUpmethod so thattest_api_authmakes an actual API call over qrexec. c. Runtest_api_auth:```bash make test TESTS=tests/test_apiproxy.py::TestAPIProxy::test_api_auth ```Note: If the test fails, run
journalctl -fin dom0 before trying again to see if access fromdev-clienttodev-serveris being denied. A successful log looks like this:``` Aug 28 15:45:13 dom0 qrexec[1474]: securedrop.Proxy: dev-client -> dev-server: allowed to dev-server ```
To make a release, you should:
- Create a branch named
release/$new_version_number - Update
CHANGELOG.mdandsetup.py - Commit the changes.
- Create a PR and get the PR reviewed and merged into
master. git tag $new_version_numberand push the new tag.- Checkout the new tag locally.
- Push the new release source tarball to the PSF's PyPI following this documentation. Do not upload the wheel (by deleting it from your
dist/directory prior to upload). - If you want to publish the new SDK release to the FPF PyPI mirror, Hop over to the the
securedrop-debian-packagingrepo and follow the build-a-package instructions to push the package up to our PyPI mirror: https://pypi.org/simple
Please read CONTRIBUTING.md for details on our code of conduct, and the process for submitting pull requests to us.
We use SemVer for versioning. For the versions available, see the tags on this repository.
The Python SecureDrop SDK is licensed in the GPLv3. See LICENSE for more details.