Fix tests and test provider for real license format
This commit is contained in:
		
							parent
							
								
									7f358cb2bd
								
							
						
					
					
						commit
						2eabf1a291
					
				
					 4 changed files with 436 additions and 97 deletions
				
			
		|  | @ -9,9 +9,13 @@ from Crypto.PublicKey import RSA | |||
| from cryptography.hazmat.backends import default_backend | ||||
| from cryptography.hazmat.primitives.serialization import load_der_public_key | ||||
| 
 | ||||
| from util.license import decode_license, LICENSE_PRODUCT_NAME, LicenseValidationError | ||||
| from util.license import (decode_license, LicenseDecodeError, ExpirationType, | ||||
|                           MONTHLY_GRACE_PERIOD, YEARLY_GRACE_PERIOD, TRIAL_GRACE_PERIOD) | ||||
| 
 | ||||
| 
 | ||||
| def get_date(delta): | ||||
|   return str(datetime.now() + delta) | ||||
| 
 | ||||
| class TestLicense(unittest.TestCase): | ||||
|   def keys(self): | ||||
|     with open('test/data/test.pem') as f: | ||||
|  | @ -21,12 +25,12 @@ class TestLicense(unittest.TestCase): | |||
|                                      backend=default_backend()) | ||||
|     return (public_key, private_key) | ||||
| 
 | ||||
|   def create_license(self, license_data): | ||||
|   def create_license(self, license_data, keys=None): | ||||
|     jwt_data = { | ||||
|       'license': json.dumps(license_data), | ||||
|     } | ||||
| 
 | ||||
|     (public_key, private_key) = self.keys() | ||||
|     (public_key, private_key) = keys or self.keys() | ||||
| 
 | ||||
|     # Encode the license with the JWT key. | ||||
|     encoded = jwt.encode(jwt_data, private_key, algorithm='RS256') | ||||
|  | @ -34,102 +38,435 @@ class TestLicense(unittest.TestCase): | |||
|     # Decode it into a license object. | ||||
|     return decode_license(encoded, public_key_instance=public_key) | ||||
| 
 | ||||
|   def get_license(self, expiration_delta=None, **kwargs): | ||||
|     license_data = { | ||||
|       'expirationDate': str(datetime.now() + expiration_delta), | ||||
|   def test_license_decodeerror_invalid(self): | ||||
|     with self.assertRaises(LicenseDecodeError): | ||||
|       decode_license('some random stuff') | ||||
| 
 | ||||
|   def test_license_decodeerror_badkey(self): | ||||
|     (_, private_key) = self.keys() | ||||
|     jwt_data = { | ||||
|       'license': json.dumps({}), | ||||
|     } | ||||
| 
 | ||||
|     if kwargs: | ||||
|       sub = { | ||||
|         'productName': LICENSE_PRODUCT_NAME, | ||||
|       } | ||||
|     encoded_stuff = jwt.encode(jwt_data, private_key, algorithm='RS256') | ||||
|     with self.assertRaises(LicenseDecodeError): | ||||
|       # Note that since we don't give a key here, the prod one will be used, and it should fail. | ||||
|       decode_license(encoded_stuff) | ||||
| 
 | ||||
|       sub['trialOnly'] = kwargs.get('trial_only', False) | ||||
|       sub['inTrial'] = kwargs.get('in_trial', False) | ||||
|       sub['entitlements'] = kwargs.get('entitlements', []) | ||||
|   def assertValid(self, license, config=None): | ||||
|     results = license.validate(config or {}) | ||||
|     is_met = all([r.is_met() for r in results]) | ||||
|     self.assertTrue(is_met, [r for r in results if not r.is_met()]) | ||||
| 
 | ||||
|       if 'trial_end' in kwargs: | ||||
|         sub['trialEnd'] = str(datetime.now() + kwargs['trial_end']) | ||||
|   def assertNotValid(self, license, config=None, requirement=None, expired=None): | ||||
|     results = license.validate(config or {}) | ||||
|     is_met = all([r.is_met() for r in results]) | ||||
|     self.assertFalse(is_met) | ||||
| 
 | ||||
|       if 'service_end' in kwargs: | ||||
|         sub['serviceEnd'] = str(datetime.now() + kwargs['service_end']) | ||||
|     invalid_results = [r for r in results if not r.is_met()] | ||||
|     if requirement is not None: | ||||
|       self.assertEquals(invalid_results[0].requirement.name, requirement) | ||||
| 
 | ||||
|       if 'duration' in kwargs: | ||||
|         sub['durationPeriod'] = kwargs['duration'] | ||||
|     if expired is not None: | ||||
|       self.assertEquals(invalid_results[0].entitlement.expiration.expiration_type, expired) | ||||
| 
 | ||||
|       license_data['subscriptions'] = {'somesub': sub} | ||||
| 
 | ||||
|     decoded_license = self.create_license(license_data) | ||||
|     return decoded_license | ||||
| 
 | ||||
|   def test_license_itself_expired(self): | ||||
|     # License is expired. | ||||
|     license = self.get_license(timedelta(days=-30)) | ||||
| 
 | ||||
|   def test_no_qe_subscription(self): | ||||
|     # License is not expired, but there is no QE sub, so not valid. | ||||
|     license = self.get_license(timedelta(days=30)) | ||||
| 
 | ||||
|   def test_trial_withingrace(self): | ||||
|     license = self.get_license(timedelta(days=30), trial_only=True, trial_end=timedelta(days=-1)) | ||||
|     self.assertFalse(license.is_expired) | ||||
| 
 | ||||
|   def test_trial_outsidegrace(self): | ||||
|     license = self.get_license(timedelta(days=30), trial_only=True, trial_end=timedelta(days=-10)) | ||||
|     self.assertTrue(license.is_expired) | ||||
| 
 | ||||
|   def test_trial_intrial_withingrace(self): | ||||
|     license = self.get_license(timedelta(days=30), in_trial=True, service_end=timedelta(days=-1)) | ||||
|     self.assertFalse(license.is_expired) | ||||
| 
 | ||||
|   def test_trial_intrial_outsidegrace(self): | ||||
|     license = self.get_license(timedelta(days=30), in_trial=True, service_end=timedelta(days=-10)) | ||||
|     self.assertTrue(license.is_expired) | ||||
| 
 | ||||
|   def test_monthly_license_valid(self): | ||||
|     license = self.get_license(timedelta(days=30), service_end=timedelta(days=10), duration='months') | ||||
|     self.assertFalse(license.is_expired) | ||||
| 
 | ||||
|   def test_monthly_license_withingrace(self): | ||||
|     license = self.get_license(timedelta(days=30), service_end=timedelta(days=-10), duration='months') | ||||
|     self.assertFalse(license.is_expired) | ||||
| 
 | ||||
|   def test_monthly_license_outsidegrace(self): | ||||
|     license = self.get_license(timedelta(days=30), service_end=timedelta(days=-40), duration='months') | ||||
|     self.assertTrue(license.is_expired) | ||||
| 
 | ||||
|   def test_yearly_license_withingrace(self): | ||||
|     license = self.get_license(timedelta(days=30), service_end=timedelta(days=-40), duration='years') | ||||
|     self.assertFalse(license.is_expired) | ||||
| 
 | ||||
|   def test_yearly_license_outsidegrace(self): | ||||
|     license = self.get_license(timedelta(days=30), service_end=timedelta(days=-100), duration='years') | ||||
|     self.assertTrue(license.is_expired) | ||||
| 
 | ||||
|   def test_valid_license(self): | ||||
|     license = self.get_license(timedelta(days=300), service_end=timedelta(days=40), duration='years') | ||||
|     self.assertFalse(license.is_expired) | ||||
| 
 | ||||
|   def test_validate_basic_license(self): | ||||
|     decoded = self.get_license(timedelta(days=30), service_end=timedelta(days=40), | ||||
|                                duration='months', entitlements={}) | ||||
|     decoded.validate({'DISTRIBUTED_STORAGE_CONFIG': [{}]}) | ||||
| 
 | ||||
|   def test_validate_storage_entitlement_valid(self): | ||||
|     decoded = self.get_license(timedelta(days=30), service_end=timedelta(days=40), entitlements={ | ||||
|       'software.quay.regions': 2, | ||||
|   def test_missing_subscriptions(self): | ||||
|     license = self.create_license({ | ||||
|       "expirationDate": get_date(timedelta(days=10)), | ||||
|     }) | ||||
| 
 | ||||
|     decoded.validate({'DISTRIBUTED_STORAGE_CONFIG': [{}]}) | ||||
|     self.assertNotValid(license, requirement='software.quay') | ||||
| 
 | ||||
|   def test_validate_storage_entitlement_invalid(self): | ||||
|     decoded = self.get_license(timedelta(days=30), service_end=timedelta(days=40), entitlements={ | ||||
|       'software.quay.regions': 1, | ||||
|   def test_empty_subscriptions(self): | ||||
|     license = self.create_license({ | ||||
|       "expirationDate": get_date(timedelta(days=10)), | ||||
|       "subscriptions": {}, | ||||
|     }) | ||||
| 
 | ||||
|     with self.assertRaises(LicenseValidationError): | ||||
|       decoded.validate({'DISTRIBUTED_STORAGE_CONFIG': [{}, {}]}) | ||||
|     self.assertNotValid(license, requirement='software.quay') | ||||
| 
 | ||||
|   def test_missing_quay_entitlement(self): | ||||
|     license = self.create_license({ | ||||
|       "expirationDate": get_date(timedelta(days=10)), | ||||
|       "subscriptions": { | ||||
|         "somesub": { | ||||
|           "serviceEnd": get_date(timedelta(days=10)), | ||||
|           "entitlements": { | ||||
|             "software.quay.regions": 0, | ||||
|           }, | ||||
|         }, | ||||
|       }, | ||||
|     }) | ||||
| 
 | ||||
|     self.assertNotValid(license, requirement='software.quay') | ||||
| 
 | ||||
|   def test_valid_quay_entitlement(self): | ||||
|     license = self.create_license({ | ||||
|       "expirationDate": get_date(timedelta(days=10)), | ||||
|       "subscriptions": { | ||||
|         "somesub": { | ||||
|           "serviceEnd": get_date(timedelta(days=10)), | ||||
|           "entitlements": { | ||||
|             "software.quay": 1, | ||||
|             "software.quay.regions": 1, | ||||
|           }, | ||||
|         }, | ||||
|       }, | ||||
|     }) | ||||
| 
 | ||||
|     self.assertValid(license) | ||||
| 
 | ||||
|   def test_missing_expiration(self): | ||||
|     license = self.create_license({ | ||||
|       "subscriptions": { | ||||
|         "somesub": { | ||||
|           "serviceEnd": get_date(timedelta(days=10)), | ||||
|           "entitlements": { | ||||
|             "software.quay": 1, | ||||
|             "software.quay.regions": 1, | ||||
|           }, | ||||
|         }, | ||||
|       }, | ||||
|     }) | ||||
| 
 | ||||
|     self.assertNotValid(license, expired=ExpirationType.license_wide) | ||||
| 
 | ||||
|   def test_expired_license(self): | ||||
|     license = self.create_license({ | ||||
|       "expirationDate": get_date(timedelta(days=-10)), | ||||
|       "subscriptions": { | ||||
|         "somesub": { | ||||
|           "serviceEnd": get_date(timedelta(days=10)), | ||||
|           "entitlements": { | ||||
|             "software.quay": 1, | ||||
|             "software.quay.regions": 1, | ||||
|           }, | ||||
|         }, | ||||
|       }, | ||||
|     }) | ||||
| 
 | ||||
|     self.assertNotValid(license, expired=ExpirationType.license_wide) | ||||
| 
 | ||||
|   def test_expired_sub_implicit_monthly_withingrace(self): | ||||
|     license = self.create_license({ | ||||
|       "expirationDate": get_date(timedelta(days=10)), | ||||
|       "subscriptions": { | ||||
|         "somesub": { | ||||
|           "serviceEnd": get_date(MONTHLY_GRACE_PERIOD * -1 + timedelta(days=1)), | ||||
|           "entitlements": { | ||||
|             "software.quay": 1, | ||||
|             "software.quay.regions": 1, | ||||
|           }, | ||||
|         }, | ||||
|       }, | ||||
|     }) | ||||
| 
 | ||||
|     self.assertValid(license) | ||||
| 
 | ||||
|   def test_expired_sub_monthly_withingrace(self): | ||||
|     license = self.create_license({ | ||||
|       "expirationDate": get_date(timedelta(days=10)), | ||||
|       "subscriptions": { | ||||
|         "somesub": { | ||||
|           "serviceEnd": get_date(MONTHLY_GRACE_PERIOD * -1 + timedelta(days=1)), | ||||
|           "durationPeriod": "monthly", | ||||
|           "entitlements": { | ||||
|             "software.quay": 1, | ||||
|             "software.quay.regions": 1, | ||||
|           }, | ||||
|         }, | ||||
|       }, | ||||
|     }) | ||||
| 
 | ||||
|     self.assertValid(license) | ||||
| 
 | ||||
|   def test_expired_sub_monthly_outsidegrace(self): | ||||
|     license = self.create_license({ | ||||
|       "expirationDate": get_date(timedelta(days=10)), | ||||
|       "subscriptions": { | ||||
|         "somesub": { | ||||
|           "serviceEnd": get_date(MONTHLY_GRACE_PERIOD * -1 + timedelta(days=-1)), | ||||
|           "durationPeriod": "monthly", | ||||
|           "entitlements": { | ||||
|             "software.quay": 1, | ||||
|             "software.quay.regions": 1, | ||||
|           }, | ||||
|         }, | ||||
|       }, | ||||
|     }) | ||||
| 
 | ||||
|     self.assertNotValid(license, expired=ExpirationType.monthly) | ||||
| 
 | ||||
|   def test_expired_sub_yearly_withingrace(self): | ||||
|     license = self.create_license({ | ||||
|       "expirationDate": get_date(timedelta(days=10)), | ||||
|       "subscriptions": { | ||||
|         "somesub": { | ||||
|           "serviceEnd": get_date(YEARLY_GRACE_PERIOD * -1 + timedelta(days=1)), | ||||
|           "durationPeriod": "yearly", | ||||
|           "entitlements": { | ||||
|             "software.quay": 1, | ||||
|             "software.quay.regions": 1, | ||||
|           }, | ||||
|         }, | ||||
|       }, | ||||
|     }) | ||||
| 
 | ||||
|     self.assertValid(license) | ||||
| 
 | ||||
|   def test_expired_sub_yearly_outsidegrace(self): | ||||
|     license = self.create_license({ | ||||
|       "expirationDate": get_date(timedelta(days=10)), | ||||
|       "subscriptions": { | ||||
|         "somesub": { | ||||
|           "serviceEnd": get_date(YEARLY_GRACE_PERIOD * -1 + timedelta(days=-1)), | ||||
|           "durationPeriod": "yearly", | ||||
|           "entitlements": { | ||||
|             "software.quay": 1, | ||||
|             "software.quay.regions": 1, | ||||
|           }, | ||||
|         }, | ||||
|       }, | ||||
|     }) | ||||
| 
 | ||||
|     self.assertNotValid(license, expired=ExpirationType.yearly) | ||||
| 
 | ||||
|   def test_expired_sub_intrial_withingrace(self): | ||||
|     license = self.create_license({ | ||||
|       "expirationDate": get_date(timedelta(days=10)), | ||||
|       "subscriptions": { | ||||
|         "somesub": { | ||||
|           "serviceEnd": get_date(TRIAL_GRACE_PERIOD * -1 + timedelta(days=1)), | ||||
|           "inTrial": True, | ||||
|           "entitlements": { | ||||
|             "software.quay": 1, | ||||
|             "software.quay.regions": 1, | ||||
|           }, | ||||
|         }, | ||||
|       }, | ||||
|     }) | ||||
| 
 | ||||
|     self.assertValid(license) | ||||
| 
 | ||||
|   def test_expired_sub_intrial_outsidegrace(self): | ||||
|     license = self.create_license({ | ||||
|       "expirationDate": get_date(timedelta(days=10)), | ||||
|       "subscriptions": { | ||||
|         "somesub": { | ||||
|           "serviceEnd": get_date(TRIAL_GRACE_PERIOD * -1 + timedelta(days=-1)), | ||||
|           "inTrial": True, | ||||
|           "entitlements": { | ||||
|             "software.quay": 1, | ||||
|             "software.quay.regions": 1, | ||||
|           }, | ||||
|         }, | ||||
|       }, | ||||
|     }) | ||||
| 
 | ||||
|     self.assertNotValid(license, expired=ExpirationType.in_trial) | ||||
| 
 | ||||
|   def test_expired_sub_trialonly_withingrace(self): | ||||
|     license = self.create_license({ | ||||
|       "expirationDate": get_date(timedelta(days=10)), | ||||
|       "subscriptions": { | ||||
|         "somesub": { | ||||
|           "trialEnd": get_date(TRIAL_GRACE_PERIOD * -1 + timedelta(days=1)), | ||||
|           "trialOnly": True, | ||||
|           "entitlements": { | ||||
|             "software.quay": 1, | ||||
|             "software.quay.regions": 1, | ||||
|           }, | ||||
|         }, | ||||
|       }, | ||||
|     }) | ||||
| 
 | ||||
|     self.assertValid(license) | ||||
| 
 | ||||
|   def test_expired_sub_trialonly_outsidegrace(self): | ||||
|     license = self.create_license({ | ||||
|       "expirationDate": get_date(timedelta(days=10)), | ||||
|       "subscriptions": { | ||||
|         "somesub": { | ||||
|           "trialEnd": get_date(TRIAL_GRACE_PERIOD * -1 + timedelta(days=-1)), | ||||
|           "trialOnly": True, | ||||
|           "entitlements": { | ||||
|             "software.quay": 1, | ||||
|             "software.quay.regions": 1, | ||||
|           }, | ||||
|         }, | ||||
|       }, | ||||
|     }) | ||||
| 
 | ||||
|     self.assertNotValid(license, expired=ExpirationType.trial_only) | ||||
| 
 | ||||
|   def test_valid_quay_entitlement_regions(self): | ||||
|     license = self.create_license({ | ||||
|       "expirationDate": get_date(timedelta(days=10)), | ||||
|       "subscriptions": { | ||||
|         "somesub": { | ||||
|           "serviceEnd": get_date(timedelta(days=10)), | ||||
|           "entitlements": { | ||||
|             "software.quay": 1, | ||||
|             "software.quay.regions": 1, | ||||
|           }, | ||||
|         }, | ||||
|       }, | ||||
|     }) | ||||
| 
 | ||||
|     config = { | ||||
|       'DISTRIBUTED_STORAGE_CONFIG': [ | ||||
|         {'name': 'first'}, | ||||
|       ], | ||||
|     } | ||||
| 
 | ||||
|     self.assertValid(license, config=config) | ||||
| 
 | ||||
|   def test_invalid_quay_entitlement_regions(self): | ||||
|     license = self.create_license({ | ||||
|       "expirationDate": get_date(timedelta(days=10)), | ||||
|       "subscriptions": { | ||||
|         "somesub": { | ||||
|           "serviceEnd": get_date(timedelta(days=10)), | ||||
|           "entitlements": { | ||||
|             "software.quay": 1, | ||||
|             "software.quay.regions": 1, | ||||
|           }, | ||||
|         }, | ||||
|       }, | ||||
|     }) | ||||
| 
 | ||||
|     config = { | ||||
|       'DISTRIBUTED_STORAGE_CONFIG': [ | ||||
|         {'name': 'first'}, | ||||
|         {'name': 'second'}, | ||||
|       ], | ||||
|     } | ||||
| 
 | ||||
|     self.assertNotValid(license, config=config, requirement='software.quay.regions') | ||||
| 
 | ||||
|   def test_valid_regions_across_multiple_sub(self): | ||||
|     license = self.create_license({ | ||||
|       "expirationDate": get_date(timedelta(days=10)), | ||||
|       "subscriptions": { | ||||
|         "somesub": { | ||||
|           "serviceEnd": get_date(timedelta(days=10)), | ||||
|           "entitlements": { | ||||
|             "software.quay": 1, | ||||
|             "software.quay.regions": 1, | ||||
|           }, | ||||
|         }, | ||||
|         "anothersub": { | ||||
|           "serviceEnd": get_date(timedelta(days=20)), | ||||
|           "entitlements": { | ||||
|             "software.quay.regions": 5, | ||||
|           }, | ||||
|         }, | ||||
|       }, | ||||
|     }) | ||||
| 
 | ||||
|     config = { | ||||
|       'DISTRIBUTED_STORAGE_CONFIG': [ | ||||
|         {'name': 'first'}, | ||||
|         {'name': 'second'}, | ||||
|       ], | ||||
|     } | ||||
| 
 | ||||
|     self.assertValid(license, config=config) | ||||
| 
 | ||||
|   def test_valid_regions_across_multiple_sub_one_expired(self): | ||||
|     # Setup a license with one sub having too few regions, and another having enough, but it is | ||||
|     # expired. | ||||
|     license = self.create_license({ | ||||
|       "expirationDate": get_date(timedelta(days=10)), | ||||
|       "subscriptions": { | ||||
|         "somesub": { | ||||
|           "serviceEnd": get_date(timedelta(days=10)), | ||||
|           "entitlements": { | ||||
|             "software.quay": 1, | ||||
|             "software.quay.regions": 1, | ||||
|           }, | ||||
|         }, | ||||
|         "anothersub": { | ||||
|           "trialEnd": get_date(TRIAL_GRACE_PERIOD * -1 + timedelta(days=-1)), | ||||
|           "trialOnly": True, | ||||
|           "entitlements": { | ||||
|             "software.quay.regions": 5, | ||||
|           }, | ||||
|         }, | ||||
|       }, | ||||
|     }) | ||||
| 
 | ||||
|     config = { | ||||
|       'DISTRIBUTED_STORAGE_CONFIG': [ | ||||
|         {'name': 'first'}, | ||||
|         {'name': 'second'}, | ||||
|       ], | ||||
|     } | ||||
| 
 | ||||
|     self.assertNotValid(license, config=config, requirement='software.quay.regions', | ||||
|                         expired=ExpirationType.trial_only) | ||||
| 
 | ||||
|   def test_valid_regions_across_multiple_sub_one_expired(self): | ||||
|     license = self.create_license({ | ||||
|       "expirationDate": get_date(timedelta(days=10)), | ||||
|       "subscriptions": { | ||||
|         "somesub": { | ||||
|           "trialEnd": get_date(TRIAL_GRACE_PERIOD * -1 + timedelta(days=-1)), | ||||
|           "trialOnly": True, | ||||
|           "entitlements": { | ||||
|             "software.quay": 1, | ||||
|             "software.quay.regions": 3, | ||||
|           }, | ||||
|         }, | ||||
|         "anothersub": { | ||||
|           "serviceEnd": get_date(timedelta(days=20)), | ||||
|           "entitlements": { | ||||
|             "software.quay": 1, | ||||
|             "software.quay.regions": 5, | ||||
|           }, | ||||
|         }, | ||||
|       }, | ||||
|     }) | ||||
| 
 | ||||
|     config = { | ||||
|       'DISTRIBUTED_STORAGE_CONFIG': [ | ||||
|         {'name': 'first'}, | ||||
|         {'name': 'second'}, | ||||
|       ], | ||||
|     } | ||||
| 
 | ||||
|     self.assertValid(license, config=config) | ||||
| 
 | ||||
|   def test_quay_is_under_expired_sub(self): | ||||
|     license = self.create_license({ | ||||
|       "expirationDate": get_date(timedelta(days=10)), | ||||
|       "subscriptions": { | ||||
|         "somesub": { | ||||
|           "trialEnd": get_date(TRIAL_GRACE_PERIOD * -1 + timedelta(days=-1)), | ||||
|           "trialOnly": True, | ||||
|           "entitlements": { | ||||
|             "software.quay": 1, | ||||
|             "software.quay.regions": 3, | ||||
|           }, | ||||
|         }, | ||||
|         "anothersub": { | ||||
|           "serviceEnd": get_date(timedelta(days=20)), | ||||
|           "entitlements": { | ||||
|             "software.quay.regions": 5, | ||||
|           }, | ||||
|         }, | ||||
|       }, | ||||
|     }) | ||||
| 
 | ||||
|     config = { | ||||
|       'DISTRIBUTED_STORAGE_CONFIG': [ | ||||
|         {'name': 'first'}, | ||||
|         {'name': 'second'}, | ||||
|       ], | ||||
|     } | ||||
| 
 | ||||
|     self.assertNotValid(license, config=config, expired=ExpirationType.trial_only, | ||||
|                         requirement='software.quay') | ||||
| 
 | ||||
| if __name__ == '__main__': | ||||
|   unittest.main() | ||||
|  |  | |||
		Reference in a new issue