905100a189
* Disambiguate HTTPUnauthorized on user/password validation The HA core API usually returns 401 when the request does not have proper authentication tokens or they have expired. However the user/password validation endpoint may also return 401 when the given user/password is invalid. The supervisor is currently unable to distinguish both scenarios, and it needs to. See https://github.com/home-assistant/supervisor/issues/2408 * Return 404 if user& password are not found/valid * Fix test for invalid user/password
170 lines
5.4 KiB
Python
170 lines
5.4 KiB
Python
"""The tests for the hassio component."""
|
|
|
|
from unittest.mock import Mock, patch
|
|
|
|
from homeassistant.auth.providers.homeassistant import InvalidAuth
|
|
|
|
|
|
async def test_auth_success(hass, hassio_client_supervisor):
|
|
"""Test no auth needed for ."""
|
|
with patch(
|
|
"homeassistant.auth.providers.homeassistant."
|
|
"HassAuthProvider.async_validate_login",
|
|
) as mock_login:
|
|
resp = await hassio_client_supervisor.post(
|
|
"/api/hassio_auth",
|
|
json={"username": "test", "password": "123456", "addon": "samba"},
|
|
)
|
|
|
|
# Check we got right response
|
|
assert resp.status == 200
|
|
mock_login.assert_called_with("test", "123456")
|
|
|
|
|
|
async def test_auth_fails_no_supervisor(hass, hassio_client):
|
|
"""Test if only supervisor can access."""
|
|
with patch(
|
|
"homeassistant.auth.providers.homeassistant."
|
|
"HassAuthProvider.async_validate_login",
|
|
) as mock_login:
|
|
resp = await hassio_client.post(
|
|
"/api/hassio_auth",
|
|
json={"username": "test", "password": "123456", "addon": "samba"},
|
|
)
|
|
|
|
# Check we got right response
|
|
assert resp.status == 401
|
|
assert not mock_login.called
|
|
|
|
|
|
async def test_auth_fails_no_auth(hass, hassio_noauth_client):
|
|
"""Test if only supervisor can access."""
|
|
with patch(
|
|
"homeassistant.auth.providers.homeassistant."
|
|
"HassAuthProvider.async_validate_login",
|
|
) as mock_login:
|
|
resp = await hassio_noauth_client.post(
|
|
"/api/hassio_auth",
|
|
json={"username": "test", "password": "123456", "addon": "samba"},
|
|
)
|
|
|
|
# Check we got right response
|
|
assert resp.status == 401
|
|
assert not mock_login.called
|
|
|
|
|
|
async def test_login_error(hass, hassio_client_supervisor):
|
|
"""Test no auth needed for error."""
|
|
with patch(
|
|
"homeassistant.auth.providers.homeassistant."
|
|
"HassAuthProvider.async_validate_login",
|
|
Mock(side_effect=InvalidAuth()),
|
|
) as mock_login:
|
|
resp = await hassio_client_supervisor.post(
|
|
"/api/hassio_auth",
|
|
json={"username": "test", "password": "123456", "addon": "samba"},
|
|
)
|
|
|
|
# Check we got right response
|
|
assert resp.status == 404
|
|
mock_login.assert_called_with("test", "123456")
|
|
|
|
|
|
async def test_login_no_data(hass, hassio_client_supervisor):
|
|
"""Test auth with no data -> error."""
|
|
with patch(
|
|
"homeassistant.auth.providers.homeassistant."
|
|
"HassAuthProvider.async_validate_login",
|
|
Mock(side_effect=InvalidAuth()),
|
|
) as mock_login:
|
|
resp = await hassio_client_supervisor.post("/api/hassio_auth")
|
|
|
|
# Check we got right response
|
|
assert resp.status == 400
|
|
assert not mock_login.called
|
|
|
|
|
|
async def test_login_no_username(hass, hassio_client_supervisor):
|
|
"""Test auth with no username in data -> error."""
|
|
with patch(
|
|
"homeassistant.auth.providers.homeassistant."
|
|
"HassAuthProvider.async_validate_login",
|
|
Mock(side_effect=InvalidAuth()),
|
|
) as mock_login:
|
|
resp = await hassio_client_supervisor.post(
|
|
"/api/hassio_auth", json={"password": "123456", "addon": "samba"}
|
|
)
|
|
|
|
# Check we got right response
|
|
assert resp.status == 400
|
|
assert not mock_login.called
|
|
|
|
|
|
async def test_login_success_extra(hass, hassio_client_supervisor):
|
|
"""Test auth with extra data."""
|
|
with patch(
|
|
"homeassistant.auth.providers.homeassistant."
|
|
"HassAuthProvider.async_validate_login",
|
|
) as mock_login:
|
|
resp = await hassio_client_supervisor.post(
|
|
"/api/hassio_auth",
|
|
json={
|
|
"username": "test",
|
|
"password": "123456",
|
|
"addon": "samba",
|
|
"path": "/share",
|
|
},
|
|
)
|
|
|
|
# Check we got right response
|
|
assert resp.status == 200
|
|
mock_login.assert_called_with("test", "123456")
|
|
|
|
|
|
async def test_password_success(hass, hassio_client_supervisor):
|
|
"""Test no auth needed for ."""
|
|
with patch(
|
|
"homeassistant.auth.providers.homeassistant."
|
|
"HassAuthProvider.async_change_password",
|
|
) as mock_change:
|
|
resp = await hassio_client_supervisor.post(
|
|
"/api/hassio_auth/password_reset",
|
|
json={"username": "test", "password": "123456"},
|
|
)
|
|
|
|
# Check we got right response
|
|
assert resp.status == 200
|
|
mock_change.assert_called_with("test", "123456")
|
|
|
|
|
|
async def test_password_fails_no_supervisor(hass, hassio_client):
|
|
"""Test if only supervisor can access."""
|
|
resp = await hassio_client.post(
|
|
"/api/hassio_auth/password_reset",
|
|
json={"username": "test", "password": "123456"},
|
|
)
|
|
|
|
# Check we got right response
|
|
assert resp.status == 401
|
|
|
|
|
|
async def test_password_fails_no_auth(hass, hassio_noauth_client):
|
|
"""Test if only supervisor can access."""
|
|
resp = await hassio_noauth_client.post(
|
|
"/api/hassio_auth/password_reset",
|
|
json={"username": "test", "password": "123456"},
|
|
)
|
|
|
|
# Check we got right response
|
|
assert resp.status == 401
|
|
|
|
|
|
async def test_password_no_user(hass, hassio_client_supervisor):
|
|
"""Test changing password for invalid user."""
|
|
resp = await hassio_client_supervisor.post(
|
|
"/api/hassio_auth/password_reset",
|
|
json={"username": "test", "password": "123456"},
|
|
)
|
|
|
|
# Check we got right response
|
|
assert resp.status == 404
|