Extract token validation in tests into function assert_access_token()

jirutka · Dec 8, 2015 · 19e49d7 · 19e49d7
1 parent c2d0e36
commit 19e49d7
Show file tree

Hide file tree

Showing 2 changed files with 22 additions and 21 deletions.
diff --git a/integration/support/__init__.py b/integration/support/__init__.py
@@ -13,6 +13,17 @@ def __init__(self, status, error_code, error_desc):
         })
 
 
+def assert_access_token(request, access_token):
+    header = get_authorization_header(request)
+    method, token = header.split(' ')
+
+    if method != 'Bearer':
+        raise OAuthError(400, 'invalid_request', "Invalid authorization method: %s" % method)
+
+    if token != access_token:
+        raise OAuthError(401, 'invalid_token', "Invalid access token: %s" % token)
+
+
 def free_tcp_port():
     sock = socket()
     try:
@@ -22,6 +33,14 @@ def free_tcp_port():
         sock.close()
 
 
+def get_authorization_header(request):
+    auth = request.headers.get('Authorization')
+    if auth:
+        return auth
+    raise OAuthError(401, 'unauthorized',
+                     'Full authentication is required to access this resource')
+
+
 def merge_dicts(*dicts):
     result = {}
     for d in dicts:

diff --git a/integration/support/oaas_mock.py b/integration/support/oaas_mock.py
@@ -1,8 +1,8 @@
 from base64 import b64decode
 from urllib.parse import urlencode
 
-from . import OAuthError
-from bottle import Bottle, ConfigDict, HTTPError, LocalRequest, abort, redirect
+from . import OAuthError, assert_access_token, get_authorization_header
+from bottle import Bottle, ConfigDict, LocalRequest, abort, redirect
 
 __all__ = ['OAuthServerMock']
 
@@ -85,11 +85,7 @@ def handle_refresh_token():
 
     @app.get('/userinfo')
     def get_userinfo():
-        auth = get_authorization_header(request)
-        token = parse_token_auth(auth)
-
-        if token != conf.access_token:
-            raise OAuthError(401, 'invalid_token', "Invalid access token: %s" % token)
+        assert_access_token(request, conf.access_token)
 
         return {
             'username': conf.username
@@ -107,17 +103,3 @@ def parse_client_auth(header):
     method, credentials = header.split(' ')
     assert method == 'Basic', 'Expected method Basic'
     return tuple(b64decode(credentials).decode().split(':'))
-
-
-def parse_token_auth(header):
-    method, token = header.split(' ')
-    assert method == 'Bearer'
-    return token
-
-
-def get_authorization_header(request):
-    auth = request.headers.get('Authorization')
-    if auth:
-        return auth
-    raise OAuthError(401, 'unauthorized',
-                     'Full authentication is required to access this resource')