Add an AppSpecificAuthToken data model for app-specific auth tokens. These will be used for the Docker CLI in place of username+password

2017-12-08 17:05:59 -05:00 · 2017-12-08 17:05:59 -05:00 · 524d77f527
commit 524d77f527
parent 53b762a875
50 changed files with 943 additions and 289 deletions
--- a/util/config/validators/test/test_validate_apptokenauth.py
+++ b/util/config/validators/test/test_validate_apptokenauth.py
@ -0,0 +1,29 @@
+import pytest
+
+from util.config.validators import ConfigValidationException
+from util.config.validators.validate_apptokenauth import AppTokenAuthValidator
+
+from test.fixtures import *
+
+@pytest.mark.parametrize('unvalidated_config', [
+  ({'AUTHENTICATION_TYPE': 'AppToken'}),
+  ({'AUTHENTICATION_TYPE': 'AppToken', 'FEATURE_APP_SPECIFIC_TOKENS': False}),
+  ({'AUTHENTICATION_TYPE': 'AppToken', 'FEATURE_APP_SPECIFIC_TOKENS': True, 
+    'FEATURE_DIRECT_LOGIN': True}),
+])
+def test_validate_invalid_auth_config(unvalidated_config, app):
+  validator = AppTokenAuthValidator()
+
+  with pytest.raises(ConfigValidationException):
+    validator.validate(unvalidated_config, None, None)
+
+
+def test_validate_auth(app):
+  config = {
+    'AUTHENTICATION_TYPE': 'AppToken',
+    'FEATURE_APP_SPECIFIC_TOKENS': True,
+    'FEATURE_DIRECT_LOGIN': False,
+  }
+
+  validator = AppTokenAuthValidator()
+  validator.validate(config, None, None)
--- a/util/config/validators/test/test_validate_oidcauth.py
+++ b/util/config/validators/test/test_validate_oidcauth.py
@ -1,34 +0,0 @@
-import pytest
-
-from util.config.validators import ConfigValidationException
-from util.config.validators.validate_oidcauth import OIDCAuthValidator
-
-from test.fixtures import *
-
-@pytest.mark.parametrize('unvalidated_config', [
-  ({'AUTHENTICATION_TYPE': 'OIDC'}),
-  ({'AUTHENTICATION_TYPE': 'OIDC', 'INTERNAL_OIDC_SERVICE_ID': 'someservice'}),
-  ({'AUTHENTICATION_TYPE': 'OIDC', 'INTERNAL_OIDC_SERVICE_ID': 'someservice', 
-    'SOMESERVICE_LOGIN_CONFIG': {}, 'FEATURE_REQUIRE_ENCRYPTED_BASIC_AUTH': True}),
-])
-def test_validate_invalid_oidc_auth_config(unvalidated_config, app):
-  validator = OIDCAuthValidator()
-
-  with pytest.raises(ConfigValidationException):
-    validator.validate(unvalidated_config, None, None)
-
-
-def test_validate_oidc_auth(app):
-  config = {
-    'AUTHENTICATION_TYPE': 'OIDC',
-    'INTERNAL_OIDC_SERVICE_ID': 'someservice',
-    'SOMESERVICE_LOGIN_CONFIG': {
-      'CLIENT_ID': 'foo',
-      'CLIENT_SECRET': 'bar',
-      'OIDC_SERVER': 'http://someserver',
-    },
-    'HTTPCLIENT': None,
-  }
-
-  validator = OIDCAuthValidator()
-  validator.validate(config, None, None)