We use cookies to ensure you get the best experience on our website
Halaman utama Jelajahi Bantuan
Daftar Masuk
0ct0pu5
/
desec-stack
1
0
Fork 0
Berkas Masalah 0 Permintaan Tarik 0 Wiki
Pohon: ac02fd4d59
Ranting Tag
desec-stack
/
api
/
desecapi
/
tests
/
testdomains.py

testdomains.py 11 KB
Riwayat Mentahan

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251 
  1. from django.core.urlresolvers import reverse
    2. 

  2. from rest_framework import status
    3. 

  3. from rest_framework.test import APITestCase
    4. 

  4. from .utils import utils
    5. 

  5. from django.db import transaction
    6. 

  6. from desecapi.models import Domain
    7. 

  7. from django.core import mail
    8. 

  8. import httpretty
    9. 

  9. from django.conf import settings
    10. 

  10. 

  11. 

  12. class UnauthenticatedDomainTests(APITestCase):
    13. 

  13.     def testExpectUnauthorizedOnGet(self):
    14. 

  14.         url = reverse('domain-list')
    15. 

  15.         response = self.client.get(url, format='json')
    16. 

  16.         self.assertEqual(response.status_code, status.HTTP_401_UNAUTHORIZED)
    17. 

  17. 

  18.     def testExpectUnauthorizedOnPost(self):
    19. 

  19.         url = reverse('domain-list')
    20. 

  20.         response = self.client.post(url, format='json')
    21. 

  21.         self.assertEqual(response.status_code, status.HTTP_401_UNAUTHORIZED)
    22. 

  22. 

  23.     def testExpectUnauthorizedOnPut(self):
    24. 

  24.         url = reverse('domain-detail', args=(1,))
    25. 

  25.         response = self.client.put(url, format='json')
    26. 

  26.         self.assertEqual(response.status_code, status.HTTP_401_UNAUTHORIZED)
    27. 

  27. 

  28.     def testExpectUnauthorizedOnDelete(self):
    29. 

  29.         url = reverse('domain-detail', args=(1,))
    30. 

  30.         response = self.client.delete(url, format='json')
    31. 

  31.         self.assertEqual(response.status_code, status.HTTP_401_UNAUTHORIZED)
    32. 

  32. 

  33. 

  34. class AuthenticatedDomainTests(APITestCase):
    35. 

  35.     def setUp(self):
    36. 

  36.         if not hasattr(self, 'owner'):
    37. 

  37.             self.owner = utils.createUser()
    38. 

  38.             self.ownedDomains = [utils.createDomain(self.owner), utils.createDomain(self.owner)]
    39. 

  39.             self.otherDomains = [utils.createDomain(), utils.createDomain()]
    40. 

  40.             self.token = utils.createToken(user=self.owner)
    41. 

  41.             self.client.credentials(HTTP_AUTHORIZATION='Token ' + self.token)
    42. 

  42. 

  43.     def testExpectOnlyOwnedDomains(self):
    44. 

  44.         url = reverse('domain-list')
    45. 

  45.         response = self.client.get(url, format='json')
    46. 

  46.         self.assertEqual(response.status_code, status.HTTP_200_OK)
    47. 

  47.         self.assertEqual(len(response.data), 2)
    48. 

  48.         self.assertEqual(response.data[0]['name'], self.ownedDomains[0].name)
    49. 

  49.         self.assertEqual(response.data[1]['name'], self.ownedDomains[1].name)
    50. 

  50. 

  51.     def testCanDeleteOwnedDomain(self):
    52. 

  52.         url = reverse('domain-detail', args=(self.ownedDomains[1].pk,))
    53. 

  53.         response = self.client.delete(url)
    54. 

  54.         self.assertEqual(response.status_code, status.HTTP_204_NO_CONTENT)
    55. 

  55.         response = self.client.get(url)
    56. 

  56.         self.assertEqual(response.status_code, status.HTTP_404_NOT_FOUND)
    57. 

  57. 

  58.     def testCantDeleteOtherDomains(self):
    59. 

  59.         url = reverse('domain-detail', args=(self.otherDomains[1].pk,))
    60. 

  60.         response = self.client.delete(url)
    61. 

  61.         self.assertEqual(response.status_code, status.HTTP_404_NOT_FOUND)
    62. 

  62. 

  63.     def testCanGetOwnedDomains(self):
    64. 

  64.         url = reverse('domain-detail', args=(self.ownedDomains[1].pk,))
    65. 

  65.         response = self.client.get(url)
    66. 

  66.         self.assertEqual(response.status_code, status.HTTP_200_OK)
    67. 

  67.         self.assertEqual(response.data['name'], self.ownedDomains[1].name)
    68. 

  68. 

  69.     def testCantGetOtherDomains(self):
    70. 

  70.         url = reverse('domain-detail', args=(self.otherDomains[1].pk,))
    71. 

  71.         response = self.client.get(url)
    72. 

  72.         self.assertEqual(response.status_code, status.HTTP_404_NOT_FOUND)
    73. 

  73. 

  74.     def testCanPutOwnedDomain(self):
    75. 

  75.         url = reverse('domain-detail', args=(self.ownedDomains[1].pk,))
    76. 

  76.         response = self.client.get(url)
    77. 

  77.         newname = utils.generateDomainname()
    78. 

  78.         response.data['name'] = newname
    79. 

  79.         response = self.client.put(url, response.data)
    80. 

  80.         self.assertEqual(response.status_code, status.HTTP_200_OK)
    81. 

  81.         response = self.client.get(url)
    82. 

  82.         self.assertEqual(response.status_code, status.HTTP_200_OK)
    83. 

  83.         self.assertEqual(response.data['name'], newname)
    84. 

  84. 

  85.     def testCantPutOtherDomains(self):
    86. 

  86.         url = reverse('domain-detail', args=(self.otherDomains[1].pk,))
    87. 

  87.         response = self.client.put(url, {})
    88. 

  88.         self.assertEqual(response.status_code, status.HTTP_404_NOT_FOUND)
    89. 

  89. 

  90.     def testCanPostDomains(self):
    91. 

  91.         url = reverse('domain-list')
    92. 

  92.         data = {'name': utils.generateDomainname()}
    93. 

  93.         response = self.client.post(url, data)
    94. 

  94.         self.assertEqual(response.status_code, status.HTTP_201_CREATED)
    95. 

  95.         self.assertEqual(len(mail.outbox), 0)
    96. 

  96. 

  97.     def testCantPostSameDomainTwice(self):
    98. 

  98.         url = reverse('domain-list')
    99. 

  99.         data = {'name': utils.generateDomainname()}
    100. 

  100.         response = self.client.post(url, data)
    101. 

  101.         self.assertEqual(response.status_code, status.HTTP_201_CREATED)
    102. 

  102.         response = self.client.post(url, data)
    103. 

  103.         self.assertEqual(response.status_code, status.HTTP_409_CONFLICT)
    104. 

  104. 

  105.     def testCanPostComplicatedDomains(self):
    106. 

  106.         url = reverse('domain-list')
    107. 

  107.         data = {'name': 'very.long.domain.name.' + utils.generateDomainname()}
    108. 

  108.         response = self.client.post(url, data)
    109. 

  109.         self.assertEqual(response.status_code, status.HTTP_201_CREATED)
    110. 

  110. 

  111.     def testCanUpdateARecord(self):
    112. 

  112.         url = reverse('domain-detail', args=(self.ownedDomains[1].pk,))
    113. 

  113.         response = self.client.get(url)
    114. 

  114.         response.data['arecord'] = '10.13.3.7'
    115. 

  115.         response = self.client.put(url, response.data)
    116. 

  116.         self.assertEqual(response.status_code, status.HTTP_200_OK)
    117. 

  117.         response = self.client.get(url)
    118. 

  118.         self.assertEqual(response.status_code, status.HTTP_200_OK)
    119. 

  119.         self.assertEqual(response.data['arecord'], '10.13.3.7')
    120. 

  120. 

  121.     def testCanUpdateAAAARecord(self):
    122. 

  122.         url = reverse('domain-detail', args=(self.ownedDomains[1].pk,))
    123. 

  123.         response = self.client.get(url)
    124. 

  124.         response.data['aaaarecord'] = 'fe80::a11:10ff:fee0:ff77'
    125. 

  125.         response = self.client.put(url, response.data)
    126. 

  126.         self.assertEqual(response.status_code, status.HTTP_200_OK)
    127. 

  127.         response = self.client.get(url)
    128. 

  128.         self.assertEqual(response.status_code, status.HTTP_200_OK)
    129. 

  129.         self.assertEqual(response.data['aaaarecord'], 'fe80::a11:10ff:fee0:ff77')
    130. 

  130. 

  131.     def testPostingCausesPdnsAPICall(self):
    132. 

  132.         httpretty.enable()
    133. 

  133.         httpretty.register_uri(httpretty.POST, settings.POWERDNS_API + '/zones')
    134. 

  134. 

  135.         url = reverse('domain-list')
    136. 

  136.         data = {'name': utils.generateDomainname()}
    137. 

  137.         response = self.client.post(url, data)
    138. 

  138. 

  139.         self.assertTrue(data['name'] in httpretty.last_request().parsed_body)
    140. 

  140.         self.assertTrue('ns1.desec.io' in httpretty.last_request().parsed_body)
    141. 

  141. 

  142.     def testPostingWithRecordsCausesPdnsAPIPatch(self):
    143. 

  143.         name = utils.generateDomainname()
    144. 

  144. 

  145.         httpretty.enable()
    146. 

  146.         httpretty.register_uri(httpretty.POST, settings.POWERDNS_API + '/zones')
    147. 

  147.         httpretty.register_uri(httpretty.PATCH, settings.POWERDNS_API + '/zones/' + name + '.')
    148. 

  148. 

  149.         url = reverse('domain-list')
    150. 

  150.         data = {'name': name, 'arecord': '1.3.3.7', 'aaaarecord': 'dead::beef'}
    151. 

  151.         response = self.client.post(url, data)
    152. 

  152. 

  153.         self.assertEqual(httpretty.last_request().method, 'PATCH')
    154. 

  154.         self.assertTrue(data['name'] in httpretty.last_request().parsed_body)
    155. 

  155.         self.assertTrue('1.3.3.7' in httpretty.last_request().parsed_body)
    156. 

  156.         self.assertTrue('dead::beef' in httpretty.last_request().parsed_body)
    157. 

  157. 

  158.     def testUpdateingCausesPdnsAPICall(self):
    159. 

  159.         url = reverse('domain-detail', args=(self.ownedDomains[1].pk,))
    160. 

  160.         response = self.client.get(url)
    161. 

  161. 

  162.         httpretty.enable()
    163. 

  163.         httpretty.register_uri(httpretty.PATCH, settings.POWERDNS_API + '/zones/' + response.data['name'] + '.')
    164. 

  164. 

  165.         response.data['arecord'] = '10.13.3.7'
    166. 

  166.         response = self.client.put(url, response.data)
    167. 

  167. 

  168.         self.assertTrue('10.13.3.7' in httpretty.last_request().parsed_body)
    169. 

  169. 

  170.     def testDomainDetailURL(self):
    171. 

  171.         url = reverse('domain-detail', args=(self.ownedDomains[1].pk,))
    172. 

  172.         urlByName = reverse('domain-detail/byName', args=(self.ownedDomains[1].name,))
    173. 

  173. 

  174.         self.assertTrue(("/%d" % self.ownedDomains[1].pk) in url)
    175. 

  175.         self.assertTrue("/" + self.ownedDomains[1].name in urlByName)
    176. 

  176. 

  177. 

  178. class AuthenticatedDynDomainTests(APITestCase):
    179. 

  179.     def setUp(self):
    180. 

  180.         if not hasattr(self, 'owner'):
    181. 

  181.             self.owner = utils.createUser(dyn=True)
    182. 

  182.             self.ownedDomains = [utils.createDomain(self.owner, dyn=True), utils.createDomain(self.owner, dyn=True)]
    183. 

  183.             self.otherDomains = [utils.createDomain(), utils.createDomain()]
    184. 

  184.             self.token = utils.createToken(user=self.owner)
    185. 

  185.             self.client.credentials(HTTP_AUTHORIZATION='Token ' + self.token)
    186. 

  186. 

  187.     def testCanPostDynDomains(self):
    188. 

  188.         url = reverse('domain-list')
    189. 

  189.         data = {'name': utils.generateDynDomainname()}
    190. 

  190.         response = self.client.post(url, data)
    191. 

  191.         email = str(mail.outbox[0].message())
    192. 

  192.         self.assertEqual(response.status_code, status.HTTP_201_CREATED)
    193. 

  193.         self.assertEqual(len(mail.outbox), 1)
    194. 

  194.         self.assertTrue(data['name'] in email)
    195. 

  195.         self.assertTrue(self.token in email)
    196. 

  196. 

  197.     def testCantPostNonDynDomains(self):
    198. 

  198.         url = reverse('domain-list')
    199. 

  199. 

  200.         data = {'name': utils.generateDomainname()}
    201. 

  201.         response = self.client.post(url, data)
    202. 

  202.         self.assertEqual(response.status_code, status.HTTP_409_CONFLICT)
    203. 

  203. 

  204.         data = {'name': 'very.long.domain.' + utils.generateDynDomainname()}
    205. 

  205.         response = self.client.post(url, data)
    206. 

  206.         self.assertEqual(response.status_code, status.HTTP_409_CONFLICT)
    207. 

  207. 

  208. 

  209.     def testLimitDynDomains(self):
    210. 

  210.         httpretty.enable()
    211. 

  211.         httpretty.register_uri(httpretty.POST, settings.POWERDNS_API + '/zones')
    212. 

  212. 

  213.         outboxlen = len(mail.outbox)
    214. 

  214. 

  215.         url = reverse('domain-list')
    216. 

  216.         for i in range(settings.LIMIT_USER_DOMAIN_COUNT_DEFAULT-2):
    217. 

  217.             data = {'name': utils.generateDynDomainname()}
    218. 

  218.             response = self.client.post(url, data)
    219. 

  219.             self.assertEqual(response.status_code, status.HTTP_201_CREATED)
    220. 

  220.             self.assertEqual(len(mail.outbox), outboxlen+i+1)
    221. 

  221. 

  222.         data = {'name': utils.generateDynDomainname()}
    223. 

  223.         response = self.client.post(url, data)
    224. 

  224.         self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
    225. 

  225.         self.assertEqual(len(mail.outbox), outboxlen + settings.LIMIT_USER_DOMAIN_COUNT_DEFAULT-2)
    226. 

  226. 

  227.     def testCantUseInvalidCharactersInDomainNamePDNS(self):
    228. 

  228.         httpretty.enable()
    229. 

  229.         httpretty.register_uri(httpretty.POST, settings.POWERDNS_API + '/zones')
    230. 

  230. 

  231.         outboxlen = len(mail.outbox)
    232. 

  232.         invalidnames = [
    233. 

  233.             'with space.dedyn.io',
    234. 

  234.             'another space.de',
    235. 

  235.             ' spaceatthebeginning.com',
    236. 

  236.             'percentage%sign.com',
    237. 

  237.             '%percentagesign.dedyn.io',
    238. 

  238.             'slash/desec.io',
    239. 

  239.             '/slashatthebeginning.dedyn.io',
    240. 

  240.             '\\backslashatthebeginning.dedyn.io',
    241. 

  241.             'backslash\\inthemiddle.at',
    242. 

  242.             '@atsign.com',
    243. 

  243.             'at@sign.com',
    244. 

  244.         ]
    245. 

  245. 

  246.         url = reverse('domain-list')
    247. 

  247.         for domainname in invalidnames:
    248. 

  248.             data = {'name': domainname}
    249. 

  249.             response = self.client.post(url, data)
    250. 

  250.             self.assertEqual(response.status_code, status.HTTP_400_BAD_REQUEST)
    251. 

  251.             self.assertEqual(len(mail.outbox), outboxlen)
    252.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5