django-oidc-provider/oidc_provider/tests/test_end_session_endpoint.py

from django.core.management import call_command
from django.core.urlresolvers import reverse
from django.test import TestCase

from oidc_provider.lib.utils.token import (
    create_id_token,
    encode_id_token,
)
from oidc_provider import settings
from oidc_provider.tests.app.utils import (
    create_fake_client,
    create_fake_user,
)


class EndSessionTestCase(TestCase):
    """
    See: http://openid.net/specs/openid-connect-session-1_0.html#RPLogout
    """

    def setUp(self):
        call_command('creatersakey')
        self.user = create_fake_user()

        self.oidc_client = create_fake_client('id_token')
        self.LOGOUT_URL = 'http://example.com/logged-out/'
        self.oidc_client.post_logout_redirect_uris = [self.LOGOUT_URL]
        self.oidc_client.save()

        self.url = reverse('oidc_provider:end-session')

    def test_redirects(self):
        query_params = {
            'post_logout_redirect_uri': self.LOGOUT_URL,
        }
        response = self.client.get(self.url, query_params)
        # With no id_token the OP MUST NOT redirect to the requested redirect_uri.
        self.assertRedirects(response, settings.get('LOGIN_URL'), fetch_redirect_response=False)

        id_token_dic = create_id_token(user=self.user, aud=self.oidc_client.client_id)
        id_token = encode_id_token(id_token_dic, self.oidc_client)

        query_params['id_token_hint'] = id_token

        response = self.client.get(self.url, query_params)
        self.assertRedirects(response, self.LOGOUT_URL, fetch_redirect_response=False)
Fix tests for end session endpoint. 2016-11-01 19:01:03 +00:00			`from django.core.management import call_command`
Add tests for logout view 2015-07-24 10:13:31 +00:00			`from django.core.urlresolvers import reverse`
			`from django.test import TestCase`

Fix tests for end session endpoint. 2016-11-01 19:01:03 +00:00			`from oidc_provider.lib.utils.token import (`
			`create_id_token,`
			`encode_id_token,`
			`)`
			`from oidc_provider import settings`
			`from oidc_provider.tests.app.utils import (`
			`create_fake_client,`
			`create_fake_user,`
			`)`
Add tests for logout view 2015-07-24 10:13:31 +00:00

Fix urls and names. 2016-11-01 15:15:48 +00:00			`class EndSessionTestCase(TestCase):`
Fix tests for end session endpoint. 2016-11-01 19:01:03 +00:00			`"""`
			`See: http://openid.net/specs/openid-connect-session-1_0.html#RPLogout`
			`"""`
Bump version 0.2.0. 2015-09-25 20:24:58 +00:00
Add tests for logout view 2015-07-24 10:13:31 +00:00			`def setUp(self):`
Fix tests for end session endpoint. 2016-11-01 19:01:03 +00:00			`call_command('creatersakey')`
Add tests for logout view 2015-07-24 10:13:31 +00:00			`self.user = create_fake_user()`

Fix tests for end session endpoint. 2016-11-01 19:01:03 +00:00			`self.oidc_client = create_fake_client('id_token')`
			`self.LOGOUT_URL = 'http://example.com/logged-out/'`
			`self.oidc_client.post_logout_redirect_uris = [self.LOGOUT_URL]`
			`self.oidc_client.save()`
Add tests for logout view 2015-07-24 10:13:31 +00:00
Fix tests for end session endpoint. 2016-11-01 19:01:03 +00:00			`self.url = reverse('oidc_provider:end-session')`
Add tests for logout view 2015-07-24 10:13:31 +00:00
			`def test_redirects(self):`
Fix tests for end session endpoint. 2016-11-01 19:01:03 +00:00			`query_params = {`
			`'post_logout_redirect_uri': self.LOGOUT_URL,`
			`}`
			`response = self.client.get(self.url, query_params)`
			`# With no id_token the OP MUST NOT redirect to the requested redirect_uri.`
			`self.assertRedirects(response, settings.get('LOGIN_URL'), fetch_redirect_response=False)`

			`id_token_dic = create_id_token(user=self.user, aud=self.oidc_client.client_id)`
			`id_token = encode_id_token(id_token_dic, self.oidc_client)`
Add tests for logout view 2015-07-24 10:13:31 +00:00
Fix tests for end session endpoint. 2016-11-01 19:01:03 +00:00			`query_params['id_token_hint'] = id_token`
Add tests for logout view 2015-07-24 10:13:31 +00:00
Fix tests for end session endpoint. 2016-11-01 19:01:03 +00:00			`response = self.client.get(self.url, query_params)`
			`self.assertRedirects(response, self.LOGOUT_URL, fetch_redirect_response=False)`