Coverage for tests/test_tutorial/test_security/test_tutorial006.py: 100%

Shortcuts on this page

r m x toggle line displays

j k next/prev highlighted chunk

0 (zero) top of page

1 (one) first highlighted chunk

[ ] prev/next file

u up to the index

? show/hide this help

35 statements

« prev ^ index » next coverage.py v7.6.1, created at 2025-05-05 00:03 +0000

1import importlib 6 ctx1abcdef

2from base64 import b64encode 6 ctx1abcdef

4import pytest 6 ctx1abcdef

5from fastapi.testclient import TestClient 6 ctx1abcdef

7from ...utils import needs_py39 6 ctx1abcdef

10@pytest.fixture( 6 ctx1abcdef

11 name="client",

12 params=[

13 "tutorial006",

14 "tutorial006_an",

15 pytest.param("tutorial006_an_py39", marks=needs_py39),

16 ],

17)

18def get_client(request: pytest.FixtureRequest): 6 ctx1abcdef

19 mod = importlib.import_module(f"docs_src.security.{request.param}") 6 ctx1abcdef

21 client = TestClient(mod.app) 6 ctx1abcdef

22 return client 6 ctx1abcdef

25def test_security_http_basic(client: TestClient): 6 ctx1abcdef

26 response = client.get("/users/me", auth=("john", "secret")) 6 ctx1yzABCD

27 assert response.status_code == 200, response.text 6 ctx1yzABCD

28 assert response.json() == {"username": "john", "password": "secret"} 6 ctx1yzABCD

31def test_security_http_basic_no_credentials(client: TestClient): 6 ctx1abcdef

32 response = client.get("/users/me") 6 ctx1mnopqr

33 assert response.json() == {"detail": "Not authenticated"} 6 ctx1mnopqr

34 assert response.status_code == 401, response.text 6 ctx1mnopqr

35 assert response.headers["WWW-Authenticate"] == "Basic" 6 ctx1mnopqr

38def test_security_http_basic_invalid_credentials(client: TestClient): 6 ctx1abcdef

39 response = client.get( 6 ctx1stuvwx

40 "/users/me", headers={"Authorization": "Basic notabase64token"}

41 )

42 assert response.status_code == 401, response.text 6 ctx1stuvwx

43 assert response.headers["WWW-Authenticate"] == "Basic" 6 ctx1stuvwx

44 assert response.json() == {"detail": "Invalid authentication credentials"} 6 ctx1stuvwx

47def test_security_http_basic_non_basic_credentials(client: TestClient): 6 ctx1abcdef

48 payload = b64encode(b"johnsecret").decode("ascii") 6 ctx1ghijkl

49 auth_header = f"Basic {payload}" 6 ctx1ghijkl

50 response = client.get("/users/me", headers={"Authorization": auth_header}) 6 ctx1ghijkl

51 assert response.status_code == 401, response.text 6 ctx1ghijkl

52 assert response.headers["WWW-Authenticate"] == "Basic" 6 ctx1ghijkl

53 assert response.json() == {"detail": "Invalid authentication credentials"} 6 ctx1ghijkl

56def test_openapi_schema(client: TestClient): 6 ctx1abcdef

57 response = client.get("/openapi.json") 6 ctx1EFGHIJ

58 assert response.status_code == 200, response.text 6 ctx1EFGHIJ

59 assert response.json() == { 6 ctx1EFGHIJ

60 "openapi": "3.1.0",

61 "info": {"title": "FastAPI", "version": "0.1.0"},

62 "paths": {

63 "/users/me": {

64 "get": {

65 "responses": {

66 "200": {

67 "description": "Successful Response",

68 "content": {"application/json": {"schema": {}}},

69 }

70 },

71 "summary": "Read Current User",

72 "operationId": "read_current_user_users_me_get",

73 "security": [{"HTTPBasic": []}],

74 }

75 }

76 },

77 "components": {

78 "securitySchemes": {"HTTPBasic": {"type": "http", "scheme": "basic"}}

79 },

80 }