This repository has been archived by the owner on Jan 25, 2018. It is now read-only.
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Andy McKay
committed
Oct 3, 2012
1 parent
ad04ff2
commit 85cd006
Showing
4 changed files
with
55 additions
and
5 deletions.
There are no files selected for viewing
Empty file.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,10 +1,24 @@ | ||
import json | ||
|
||
from django import test | ||
from django.core.urlresolvers import reverse | ||
|
||
import jwt | ||
from nose.tools import eq_ | ||
|
||
from moz_inapp_pay.tests import JWTtester | ||
|
||
class TestVerify(JWTtester): | ||
|
||
def setUp(self): | ||
self.url = '/en-US' + reverse('verify') | ||
|
||
def test_get(self): | ||
eq_(self.client.get(self.url).status_code, 405) | ||
|
||
class TestVerify(test.TestCase): | ||
def test_post_bad(self): | ||
eq_(self.client.post(self.url).status_code, 400) | ||
|
||
def hello(self): | ||
eq_(self.client.get(reverse('verify')).status_code, 200) | ||
def test_post_some_jwt(self): | ||
payload = self.request() | ||
eq_(self.client.post(self.url, payload).status_code, 200) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,5 +1,33 @@ | ||
from django import http | ||
from django.conf import settings | ||
from django.views.decorators.http import require_POST | ||
|
||
import commonware.log | ||
|
||
from moz_inapp_pay.exc import InvalidJWT, RequestExpired | ||
from moz_inapp_pay.verify import verify_jwt | ||
from session_csrf import anonymous_csrf_exempt | ||
|
||
log = commonware.log.getLogger('w.pay') | ||
|
||
|
||
def error(msg, request): | ||
log.error(msg, exc_info=True) | ||
if settings.DEBUG: | ||
raise | ||
else: | ||
return http.HttpResponseBadRequest() | ||
|
||
@anonymous_csrf_exempt | ||
@require_POST | ||
def verify(request): | ||
return http.HttpResponse('Hello world.') | ||
data = request.body | ||
try: | ||
res = verify_jwt(data, settings.KEY, settings.SECRET) | ||
except (InvalidJWT, RequestExpired): | ||
return error(u'Failed to parse JWT', error) | ||
if not res: | ||
print res | ||
return http.HttpResponseBadRequest() | ||
|
||
return http.HttpResponse('ok') |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters