"""The tests for the Home Assistant HTTP component.""" from datetime import timedelta from ipaddress import ip_network import logging from unittest.mock import Mock, patch import pytest import homeassistant.components.http as http from homeassistant.setup import async_setup_component from homeassistant.util import dt as dt_util from homeassistant.util.ssl import server_context_intermediate, server_context_modern from tests.common import async_fire_time_changed @pytest.fixture def mock_stack(): """Mock extract stack.""" with patch( "homeassistant.components.http.extract_stack", return_value=[ Mock( filename="/home/paulus/core/homeassistant/core.py", lineno="23", line="do_something()", ), Mock( filename="/home/paulus/core/homeassistant/components/hue/light.py", lineno="23", line="self.light.is_on", ), Mock( filename="/home/paulus/core/homeassistant/components/http/__init__.py", lineno="157", line="base_url", ), ], ): yield class TestView(http.HomeAssistantView): """Test the HTTP views.""" name = "test" url = "/hello" async def get(self, request): """Return a get request.""" return "hello" async def test_registering_view_while_running( hass, aiohttp_client, aiohttp_unused_port ): """Test that we can register a view while the server is running.""" await async_setup_component( hass, http.DOMAIN, {http.DOMAIN: {http.CONF_SERVER_PORT: aiohttp_unused_port()}} ) await hass.async_start() # This raises a RuntimeError if app is frozen hass.http.register_view(TestView) async def test_not_log_password(hass, aiohttp_client, caplog, legacy_auth): """Test access with password doesn't get logged.""" assert await async_setup_component(hass, "api", {"http": {}}) client = await aiohttp_client(hass.http.app) logging.getLogger("aiohttp.access").setLevel(logging.INFO) resp = await client.get("/api/", params={"api_password": "test-password"}) assert resp.status == 401 logs = caplog.text # Ensure we don't log API passwords assert "/api/" in logs assert "some-pass" not in logs async def test_proxy_config(hass): """Test use_x_forwarded_for must config together with trusted_proxies.""" assert ( await async_setup_component( hass, "http", { "http": { http.CONF_USE_X_FORWARDED_FOR: True, http.CONF_TRUSTED_PROXIES: ["127.0.0.1"], } }, ) is True ) async def test_proxy_config_only_use_xff(hass): """Test use_x_forwarded_for must config together with trusted_proxies.""" assert ( await async_setup_component( hass, "http", {"http": {http.CONF_USE_X_FORWARDED_FOR: True}} ) is not True ) async def test_proxy_config_only_trust_proxies(hass): """Test use_x_forwarded_for must config together with trusted_proxies.""" assert ( await async_setup_component( hass, "http", {"http": {http.CONF_TRUSTED_PROXIES: ["127.0.0.1"]}} ) is not True ) async def test_ssl_profile_defaults_modern(hass): """Test default ssl profile.""" assert await async_setup_component(hass, "http", {}) is True hass.http.ssl_certificate = "bla" with patch("ssl.SSLContext.load_cert_chain"), patch( "homeassistant.util.ssl.server_context_modern", side_effect=server_context_modern, ) as mock_context: await hass.async_start() await hass.async_block_till_done() assert len(mock_context.mock_calls) == 1 async def test_ssl_profile_change_intermediate(hass): """Test setting ssl profile to intermediate.""" assert ( await async_setup_component( hass, "http", {"http": {"ssl_profile": "intermediate"}} ) is True ) hass.http.ssl_certificate = "bla" with patch("ssl.SSLContext.load_cert_chain"), patch( "homeassistant.util.ssl.server_context_intermediate", side_effect=server_context_intermediate, ) as mock_context: await hass.async_start() await hass.async_block_till_done() assert len(mock_context.mock_calls) == 1 async def test_ssl_profile_change_modern(hass): """Test setting ssl profile to modern.""" assert ( await async_setup_component(hass, "http", {"http": {"ssl_profile": "modern"}}) is True ) hass.http.ssl_certificate = "bla" with patch("ssl.SSLContext.load_cert_chain"), patch( "homeassistant.util.ssl.server_context_modern", side_effect=server_context_modern, ) as mock_context: await hass.async_start() await hass.async_block_till_done() assert len(mock_context.mock_calls) == 1 async def test_cors_defaults(hass): """Test the CORS default settings.""" with patch("homeassistant.components.http.setup_cors") as mock_setup: assert await async_setup_component(hass, "http", {}) assert len(mock_setup.mock_calls) == 1 assert mock_setup.mock_calls[0][1][1] == ["https://cast.home-assistant.io"] async def test_storing_config(hass, aiohttp_client, aiohttp_unused_port): """Test that we store last working config.""" config = { http.CONF_SERVER_PORT: aiohttp_unused_port(), "use_x_forwarded_for": True, "trusted_proxies": ["192.168.1.100"], } assert await async_setup_component(hass, http.DOMAIN, {http.DOMAIN: config}) await hass.async_start() async_fire_time_changed(hass, dt_util.utcnow() + timedelta(seconds=200)) await hass.async_block_till_done() restored = await hass.components.http.async_get_last_config() restored["trusted_proxies"][0] = ip_network(restored["trusted_proxies"][0]) assert restored == http.HTTP_SCHEMA(config)