mart-w/kanidm
1
0
Fork 0
mirror of https://github.com/kanidm/kanidm.git synced 2025-02-23 20:47:01 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity
kanidm/pykanidm/tests/test_ssl_ca.py

199 lines
5.2 KiB
Python
Raw Normal View History

Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
""" tests ssl validation and CA setting etc """
from pathlib import Path
Bump certifi from 2022.9.24 to 2022.12.7 in /pykanidm (#1247) * Bump certifi from 2022.9.24 to 2022.12.7 in /pykanidm * fixes some broken tests due to a changed error message Bumps [certifi](https://github.com/certifi/python-certifi) from 2022.9.24 to 2022.12.7. - [Release notes](https://github.com/certifi/python-certifi/releases) - [Commits](https://github.com/certifi/python-certifi/compare/2022.09.24...2022.12.07) --- updated-dependencies: - dependency-name: certifi dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> * Bump black from 22.10.0 to 22.12.0 in /pykanidm (#1256) Bumps [black](https://github.com/psf/black) from 22.10.0 to 22.12.0. - [Release notes](https://github.com/psf/black/releases) - [Changelog](https://github.com/psf/black/blob/main/CHANGES.md) - [Commits](https://github.com/psf/black/compare/22.10.0...22.12.0) --- updated-dependencies: - dependency-name: black dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * trying to fix tests Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: James Hodgkinson <james@terminaloutcomes.com>
2022-12-12 04:44:46 +01:00
from ssl import SSLCertVerificationError
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
import aiohttp
import aiohttp.client_exceptions
import pytest
from kanidm import KanidmClient
Allow disabling networked tests in python client library (#994) * Allow disabling networked tests in python client library Distros often build packages in sandboxes, which will make tests that access the network fail. Marking these tests with a network mark is a good way to allow downstreams to disable just this subset of tests. * adding some more flags Co-authored-by: James Hodgkinson <james@terminaloutcomes.com>
2022-08-17 01:26:11 +02:00
@pytest.mark.network
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
@pytest.mark.asyncio
async def test_ssl_valid() -> None:
"""tests a valid connection"""
url = "https://badssl.com"
Python updoots (#1081)
2022-09-29 02:08:15 +02:00
client = KanidmClient(
uri=url,
)
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
Python updoots (#1081)
2022-09-29 02:08:15 +02:00
result = await client.call_get("/")
assert result.content
print(f"{result.status_code=}")
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
Allow disabling networked tests in python client library (#994) * Allow disabling networked tests in python client library Distros often build packages in sandboxes, which will make tests that access the network fail. Marking these tests with a network mark is a good way to allow downstreams to disable just this subset of tests. * adding some more flags Co-authored-by: James Hodgkinson <james@terminaloutcomes.com>
2022-08-17 01:26:11 +02:00
@pytest.mark.network
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
@pytest.mark.asyncio
async def test_ssl_self_signed() -> None:
"""tests with a self-signed cert"""
url = "https://self-signed.badssl.com"
Bump certifi from 2022.9.24 to 2022.12.7 in /pykanidm (#1247) * Bump certifi from 2022.9.24 to 2022.12.7 in /pykanidm * fixes some broken tests due to a changed error message Bumps [certifi](https://github.com/certifi/python-certifi) from 2022.9.24 to 2022.12.7. - [Release notes](https://github.com/certifi/python-certifi/releases) - [Commits](https://github.com/certifi/python-certifi/compare/2022.09.24...2022.12.07) --- updated-dependencies: - dependency-name: certifi dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> * Bump black from 22.10.0 to 22.12.0 in /pykanidm (#1256) Bumps [black](https://github.com/psf/black) from 22.10.0 to 22.12.0. - [Release notes](https://github.com/psf/black/releases) - [Changelog](https://github.com/psf/black/blob/main/CHANGES.md) - [Commits](https://github.com/psf/black/compare/22.10.0...22.12.0) --- updated-dependencies: - dependency-name: black dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * trying to fix tests Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: James Hodgkinson <james@terminaloutcomes.com>
2022-12-12 04:44:46 +01:00
print("testing self.?signed cert with defaults and expecting an error")
Python updoots (#1081)
2022-09-29 02:08:15 +02:00
client = KanidmClient(
uri=url,
)
with pytest.raises(aiohttp.client_exceptions.ClientConnectorCertificateError):
await client.call_get("/")
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
Allow disabling networked tests in python client library (#994) * Allow disabling networked tests in python client library Distros often build packages in sandboxes, which will make tests that access the network fail. Marking these tests with a network mark is a good way to allow downstreams to disable just this subset of tests. * adding some more flags Co-authored-by: James Hodgkinson <james@terminaloutcomes.com>
2022-08-17 01:26:11 +02:00
@pytest.mark.network
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
@pytest.mark.asyncio
async def test_ssl_self_signed_with_verify() -> None:
"""tests with a self-signed cert"""
Python updoots (#1081)
2022-09-29 02:08:15 +02:00
client = KanidmClient(
uri="https://self-signed.badssl.com",
verify_certificate=False,
)
result = await client.call_get("/")
assert result.content
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
Allow disabling networked tests in python client library (#994) * Allow disabling networked tests in python client library Distros often build packages in sandboxes, which will make tests that access the network fail. Marking these tests with a network mark is a good way to allow downstreams to disable just this subset of tests. * adding some more flags Co-authored-by: James Hodgkinson <james@terminaloutcomes.com>
2022-08-17 01:26:11 +02:00
@pytest.mark.network
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
@pytest.mark.asyncio
async def test_ssl_self_signed_no_verify_certificate() -> None:
"""tests with a self-signed cert"""
Python updoots (#1081)
2022-09-29 02:08:15 +02:00
client = KanidmClient(
uri="https://self-signed.badssl.com",
verify_certificate=False,
)
result = await client.call_get("/")
assert result.content
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
Allow disabling networked tests in python client library (#994) * Allow disabling networked tests in python client library Distros often build packages in sandboxes, which will make tests that access the network fail. Marking these tests with a network mark is a good way to allow downstreams to disable just this subset of tests. * adding some more flags Co-authored-by: James Hodgkinson <james@terminaloutcomes.com>
2022-08-17 01:26:11 +02:00
@pytest.mark.network
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
@pytest.mark.asyncio
async def test_ssl_wrong_hostname_throws_error() -> None:
"""tests with validate hostnames and wrong hostname in the cert"""
Python updoots (#1081)
2022-09-29 02:08:15 +02:00
client = KanidmClient(uri="https://wrong.host.badssl.com/", verify_hostnames=True)
with pytest.raises(
aiohttp.client_exceptions.ClientConnectorCertificateError,
match="Cannot connect to host wrong.host.badssl.com:443",
):
result = await client.call_get("/")
assert result.content
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
Allow disabling networked tests in python client library (#994) * Allow disabling networked tests in python client library Distros often build packages in sandboxes, which will make tests that access the network fail. Marking these tests with a network mark is a good way to allow downstreams to disable just this subset of tests. * adding some more flags Co-authored-by: James Hodgkinson <james@terminaloutcomes.com>
2022-08-17 01:26:11 +02:00
@pytest.mark.network
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
@pytest.mark.asyncio
async def test_ssl_wrong_hostname_dont_verify_hostnames() -> None:
"""tests with validate hostnames and wrong hostname in the cert"""
Python updoots (#1081)
2022-09-29 02:08:15 +02:00
client = KanidmClient(
uri="https://wrong.host.badssl.com/",
verify_hostnames=False,
)
result = await client.call_get("/")
assert result.content
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
Allow disabling networked tests in python client library (#994) * Allow disabling networked tests in python client library Distros often build packages in sandboxes, which will make tests that access the network fail. Marking these tests with a network mark is a good way to allow downstreams to disable just this subset of tests. * adding some more flags Co-authored-by: James Hodgkinson <james@terminaloutcomes.com>
2022-08-17 01:26:11 +02:00
@pytest.mark.network
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
@pytest.mark.asyncio
async def test_ssl_wrong_hostname_verify_certificate() -> None:
"""tests with validate hostnames and wrong hostname in the cert"""
Python updoots (#1081)
2022-09-29 02:08:15 +02:00
client = KanidmClient(
uri="https://wrong.host.badssl.com/",
verify_hostnames=False,
verify_certificate=False,
)
result = await client.call_get("/")
assert result.content
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
Allow disabling networked tests in python client library (#994) * Allow disabling networked tests in python client library Distros often build packages in sandboxes, which will make tests that access the network fail. Marking these tests with a network mark is a good way to allow downstreams to disable just this subset of tests. * adding some more flags Co-authored-by: James Hodgkinson <james@terminaloutcomes.com>
2022-08-17 01:26:11 +02:00
@pytest.mark.network
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
@pytest.mark.asyncio
async def test_ssl_revoked() -> None:
Fixing a python test (#1154) * fixing a test, it now *should* fail, which is nice * running `black` on code
2022-10-31 13:23:24 +01:00
"""tests with a revoked certificate"""
with pytest.raises(aiohttp.ClientConnectorCertificateError):
client = KanidmClient(
uri="https://revoked.badssl.com/",
verify_certificate=True,
)
result = await client.call_get("/")
assert result.content
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
Python updoots (#1081)
2022-09-29 02:08:15 +02:00
client = KanidmClient(
uri="https://revoked.badssl.com/",
Fixing a python test (#1154) * fixing a test, it now *should* fail, which is nice * running `black` on code
2022-10-31 13:23:24 +01:00
verify_certificate=False,
Python updoots (#1081)
2022-09-29 02:08:15 +02:00
)
result = await client.call_get("/")
assert result.content
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
Allow disabling networked tests in python client library (#994) * Allow disabling networked tests in python client library Distros often build packages in sandboxes, which will make tests that access the network fail. Marking these tests with a network mark is a good way to allow downstreams to disable just this subset of tests. * adding some more flags Co-authored-by: James Hodgkinson <james@terminaloutcomes.com>
2022-08-17 01:26:11 +02:00
@pytest.mark.network
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
@pytest.mark.asyncio
async def test_ssl_expired() -> None:
"""tests with an expired certificate"""
Python updoots (#1081)
2022-09-29 02:08:15 +02:00
client = KanidmClient(
uri="https://expired.badssl.com/",
)
with pytest.raises(
aiohttp.client_exceptions.ClientConnectorCertificateError,
match="certificate verify failed: certificate has expired",
):
result = await client.call_get("/")
assert result.content
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
Allow disabling networked tests in python client library (#994) * Allow disabling networked tests in python client library Distros often build packages in sandboxes, which will make tests that access the network fail. Marking these tests with a network mark is a good way to allow downstreams to disable just this subset of tests. * adding some more flags Co-authored-by: James Hodgkinson <james@terminaloutcomes.com>
2022-08-17 01:26:11 +02:00
@pytest.mark.network
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
@pytest.mark.asyncio
async def test_ssl_expired_ignore() -> None:
"""tests with an expired certificate"""
Python updoots (#1081)
2022-09-29 02:08:15 +02:00
client = KanidmClient(
uri="https://expired.badssl.com/",
verify_certificate=False,
)
result = await client.call_get("/")
assert result.content
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
Allow disabling networked tests in python client library (#994) * Allow disabling networked tests in python client library Distros often build packages in sandboxes, which will make tests that access the network fail. Marking these tests with a network mark is a good way to allow downstreams to disable just this subset of tests. * adding some more flags Co-authored-by: James Hodgkinson <james@terminaloutcomes.com>
2022-08-17 01:26:11 +02:00
@pytest.mark.network
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
@pytest.mark.asyncio
async def test_ssl_untrusted_root_throws() -> None:
"""tests with an untrusted root, which should throw an error"""
Python updoots (#1081)
2022-09-29 02:08:15 +02:00
client = KanidmClient(
uri="https://untrusted-root.badssl.com/",
)
with pytest.raises(
Bump certifi from 2022.9.24 to 2022.12.7 in /pykanidm (#1247) * Bump certifi from 2022.9.24 to 2022.12.7 in /pykanidm * fixes some broken tests due to a changed error message Bumps [certifi](https://github.com/certifi/python-certifi) from 2022.9.24 to 2022.12.7. - [Release notes](https://github.com/certifi/python-certifi/releases) - [Commits](https://github.com/certifi/python-certifi/compare/2022.09.24...2022.12.07) --- updated-dependencies: - dependency-name: certifi dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> * Bump black from 22.10.0 to 22.12.0 in /pykanidm (#1256) Bumps [black](https://github.com/psf/black) from 22.10.0 to 22.12.0. - [Release notes](https://github.com/psf/black/releases) - [Changelog](https://github.com/psf/black/blob/main/CHANGES.md) - [Commits](https://github.com/psf/black/compare/22.10.0...22.12.0) --- updated-dependencies: - dependency-name: black dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * trying to fix tests Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: James Hodgkinson <james@terminaloutcomes.com>
2022-12-12 04:44:46 +01:00
SSLCertVerificationError,
match="certificate verify failed: self.?signed certificate in certificate chain",
Python updoots (#1081)
2022-09-29 02:08:15 +02:00
):
result = await client.call_get("/")
assert result.content
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
Allow disabling networked tests in python client library (#994) * Allow disabling networked tests in python client library Distros often build packages in sandboxes, which will make tests that access the network fail. Marking these tests with a network mark is a good way to allow downstreams to disable just this subset of tests. * adding some more flags Co-authored-by: James Hodgkinson <james@terminaloutcomes.com>
2022-08-17 01:26:11 +02:00
@pytest.mark.network
Python module and rewritten RADIUS integration (#826) * added python kanidm module * rewrote RADIUS integration * updated the documentation * updating github actions to run more often * BLEEP BLOOP ASYNCIO IS GR8 * adding config to makefile to run pykanidm tests Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Firstyear <william@blackhats.net.au>
2022-06-20 12:16:55 +02:00
@pytest.mark.asyncio
async def test_ssl_untrusted_root_configured() -> None:
"""tests with an untrusted root, which should throw an error"""
testcert = Path("./tests/badssl_trusted_ca.pem").resolve()
if not testcert.exists():
pytest.skip(f"The trusted cert is missing from {testcert}")
Python updoots (#1081)
2022-09-29 02:08:15 +02:00
client = KanidmClient(
uri="https://untrusted-root.badssl.com/",
ca_path=testcert.resolve().as_posix(),
)
with pytest.raises(
aiohttp.client_exceptions.ClientConnectorCertificateError,
Bump certifi from 2022.9.24 to 2022.12.7 in /pykanidm (#1247) * Bump certifi from 2022.9.24 to 2022.12.7 in /pykanidm * fixes some broken tests due to a changed error message Bumps [certifi](https://github.com/certifi/python-certifi) from 2022.9.24 to 2022.12.7. - [Release notes](https://github.com/certifi/python-certifi/releases) - [Commits](https://github.com/certifi/python-certifi/compare/2022.09.24...2022.12.07) --- updated-dependencies: - dependency-name: certifi dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> * Bump black from 22.10.0 to 22.12.0 in /pykanidm (#1256) Bumps [black](https://github.com/psf/black) from 22.10.0 to 22.12.0. - [Release notes](https://github.com/psf/black/releases) - [Changelog](https://github.com/psf/black/blob/main/CHANGES.md) - [Commits](https://github.com/psf/black/compare/22.10.0...22.12.0) --- updated-dependencies: - dependency-name: black dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * trying to fix tests Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: James Hodgkinson <james@terminaloutcomes.com>
2022-12-12 04:44:46 +01:00
match="certificate verify failed: self.?signed certificate in certificate chain",
Python updoots (#1081)
2022-09-29 02:08:15 +02:00
):
result = await client.call_get("/")
assert result.content
Reference in a new issue Copy permalink