i.dZddlZddlZddlZddlmZej jddddlm Z m Z m Z m Z m Z GddejZGdd ejZGd d ejZGd d ejZGddejZedk(rej*dyy)un auth.py 인증 모듈 테스트 테스터: 아르고스 대상 파일: /home/jay/workspace/dashboard/auth.py N)patchz/home/jay/workspace/dashboard)check_cors_originget_allowed_originsget_auth_configis_auth_requiredverify_basic_authc@eZdZdZdZdZdZdZdZdZ dZ d Z y ) TestGetAuthConfigu"get_auth_config() 함수 테스트ci}tjd|d5t}ddd|jd|j |dd|j |dd y#1swYHxYw) u+환경변수 미설정 시 기본값 확인 os.environTclearNenableduseradminpasswordchangeme)rdictr assertFalse assertEqualselfenvconfigs K/home/jay/workspace/.worktrees/task-2116-dev1/teams/dev1/tests/test_auth.pytest_defaults_when_no_env_varsz0TestGetAuthConfig.test_defaults_when_no_env_varssp ZZ c 6 '$&F '  *+ 1  +Z8  ' 's A--A6ctjdddid5t}ddd|jdy#1swYxYw)u+DASHBOARD_AUTH=true 설정 시 enabled=Truer DASHBOARD_AUTHtrueTr Nrrrr assertTruerrs r*test_enabled_true_when_dashboard_auth_truezTestGetAuthConfig.test_enabled_false_when_dashboard_auth_false)sH ZZ '7&A N '$&F '  *+ ' 'r$ctjdddid5t}ddd|jdy#1swYxYw)uPDASHBOARD_AUTH 값은 .lower() 처리로 대소문자 무관하게 'true' 비교r rTRUETr Nrr r"s rtest_enabled_case_insensitivez/TestGetAuthConfig.test_enabled_case_insensitive/sHZZ '7&@ M '$&F ' y)* ' 'r$cddd}tjd|d5t}ddd|jddy#1swYxYw) u0DASHBOARD_PASSWORD > DASHBOARD_PASS 우선순위secret_password fallback_passDASHBOARD_PASSWORDDASHBOARD_PASSr Tr Nrrrrrrs r:test_dashboard_password_takes_priority_over_dashboard_passzLTestGetAuthConfig.test_dashboard_password_takes_priority_over_dashboard_pass7sV#4- ZZ c 6 '$&F '  +->? ' ' AActjdddid5t}ddd|jddy#1swYxYw)u6DASHBOARD_PASSWORD 미설정 시 DASHBOARD_PASS 사용r r0r-Tr Nrr1r"s r.test_dashboard_pass_used_when_password_not_setz@TestGetAuthConfig.test_dashboard_pass_used_when_password_not_setAsK ZZ '7&IQU V '$&F '  +_= ' ' AA cddd}tjd|d5t}ddd|jddy#1swYxYw) uBDASHBOARD_PASSWORD가 빈 문자열이면 DASHBOARD_PASS로 폴백r-r.r Tr Nrr1rs rAtest_dashboard_password_empty_string_falls_back_to_dashboard_passzSTestGetAuthConfig.test_dashboard_password_empty_string_falls_back_to_dashboard_passGsW#%- ZZ c 6 '$&F '  +_= ' 'r3ctjdddid5t}ddd|jddy#1swYxYw)u&DASHBOARD_USER 커스텀 설정 확인r DASHBOARD_USERmyuserTr Nrr1r"s rtest_custom_userz"TestGetAuthConfig.test_custom_userRsI ZZ '7&B$ O '$&F ' 2 ' 'r6N) __name__ __module__ __qualname____doc__rr#r'r*r2r5r9r=rr r s.,9+ , +@> >3rCr c.eZdZdZdZdZdZdZdZy)TestIsAuthRequiredu'is_auth_required(path) 함수 테스트ctjdid5|jtd|jtd|jtddddy#1swYyxYw)u/AUTH 비활성화 시 모든 경로에서 Falser Tr /dashboard /api/status/Nrrrrrs r%test_returns_false_when_auth_disabledz8TestIsAuthRequired.test_returns_false_when_auth_disabled\sc ZZ b 5 4   -l; <   -m< =   -c2 3 4 4 4s AA11A:ctjdddid5|jtd|jtd|jtdd d d y #1swYy xYw) u(AUTH 활성화 시 일반 경로는 Truer rrTr rGrIz /api/dataNrrr!rrKs r3test_returns_true_for_normal_path_when_auth_enabledzFTestIsAuthRequired.test_returns_true_for_normal_path_when_auth_enabledcsc ZZ '7&@ M ; OO,\: ; OO,S1 2 OO,[9 : ; ; ;s AA33A<ctjdddid5|jtddddy#1swYyxYw)u<면제 경로 /api/status → AUTH 활성화 시에도 Falser rrTr rHNrJrKs r)test_exempt_path_api_status_returns_falsez   -m< = > > > ?Actjdddid5|jtddddy#1swYyxYw)u<면제 경로 /api/stream → AUTH 활성화 시에도 Falser rrTr z /api/streamNrJrKs r)test_exempt_path_api_stream_returns_falsezr?r@rArLrOrQrUrWrBrCrrErEYs14;> > ;rCrEcTeZdZdZdededefdZdZdZdZd Z d Z d Z d Z d Z y)TestVerifyBasicAuthu/verify_basic_auth(auth_header) 함수 테스트rrreturncxtj|d|jj}d|S)u,테스트용 Basic Auth 헤더 생성 헬퍼:Basic )base64 b64encodeencodedecode)rrr credentialss r_make_basic_headerz&TestVerifyBasicAuth._make_basic_header~s<&&$q ';'B'B'DELLN  }%%rCcddd}tjd|d5|jdd}t|\}}ddd|j |j dy#1swY-xYw)u)올바른 Basic auth → (True, username)rrr;r/r Tr Nrrrcrr!rrrheadersuccessusernames r0test_valid_credentials_returns_true_and_usernamezDTestVerifyBasicAuth.test_valid_credentials_returns_true_and_usernamesw&", ZZ c 6 :,,WjAF 1& 9 GX :   7+  : : !A++A4cddd}tjd|d5|jdd}t|\}}ddd|j |j y#1swY,xYw) u$잘못된 password → (False, None)rrrer Tr wrongpasswordNrrrcrr assertIsNonergs r&test_wrong_password_returns_false_nonez:TestVerifyBasicAuth.test_wrong_password_returns_false_nonesw&", ZZ c 6 :,,WoFF 1& 9 GX : ! (#  : : !A**A3cddd}tjd|d5|jdd}t|\}}ddd|j |j y#1swY,xYw) u$잘못된 username → (False, None)rrrer Tr wronguserNrorgs r"test_wrong_user_returns_false_nonez6TestVerifyBasicAuth.test_wrong_user_returns_false_nonesw&", ZZ c 6 :,,[*EF 1& 9 GX : ! (#  : :rrctjdid5td\}}ddd|j|j y#1swY,xYw)u빈 헤더 → (False, None)r Tr r8Nrrrrrprrirjs r$test_empty_header_returns_false_nonez8TestVerifyBasicAuth.test_empty_header_returns_false_nonesR ZZ b 5 6 1" 5 GX 6 ! (# 6 6 AActjdid5td\}}ddd|j|j y#1swY,xYw)u%"Bearer xxx" 형식 → (False, None)r Tr zBearer sometoken123Nrwrxs r$test_bearer_token_returns_false_nonez8TestVerifyBasicAuth.test_bearer_token_returns_false_nonesW ZZ b 5 I 12G H GX I ! (# I Irzctjdid5td\}}ddd|j|j y#1swY,xYw)u"잘못된 base64 → (False, None)r Tr zBasic !!!invalid_base64!!!Nrwrxs r&test_invalid_base64_returns_false_nonez:TestVerifyBasicAuth.test_invalid_base64_returns_false_nonesW ZZ b 5 P 12N O GX P ! (# P Przc tjdid5tjdj }t d|\}}ddd|j |jy#1swY,xYw)u0콜론 없는 base64 디코딩 → (False, None)r Tr snocolonr]N)rrr^r_rarrrp)rno_colonrirjs r+test_no_colon_in_decoded_returns_false_nonez?TestVerifyBasicAuth.test_no_colon_in_decoded_returns_false_nonesx ZZ b 5 G'' 3::r?r@rAstrrcrkrqruryr|r~rrrBrCrrYrY{sG9&s&c&c& , $ $$$$$ ,rCrYc(eZdZdZdZdZdZdZy)TestGetAllowedOriginsu&get_allowed_origins() 함수 테스트ctjdid5t}ddd|jd|jd||j t |dy#1swYIxYw)u기본값 확인r Tr Nhttp://100.76.130.39:8000http://localhost:8000)rrrassertInrlenroriginss rtest_default_originsz*TestGetAllowedOrigins.test_default_originssa ZZ b 5 ,)+G , 17; -w7 Wq)  , ,s A,,A5ctjdddid5t}ddd|jdgy#1swYxYw)u$CORS_ORIGINS 단일 커스텀 설정r CORS_ORIGINShttp://example.comTr N)rrrrrs rtest_custom_cors_origins_singlez5TestGetAllowedOrigins.test_custom_cors_origins_singlesJ ZZ ~7K<X Y ,)+G , #7"89 , ,s AA cd}tjdd|id5t}ddd|jt d|j d||j d ||j d |y#1swY[xYw) u4CORS_ORIGINS 다중 커스텀 설정 (콤마 구분)z6http://example.com,http://another.com,http://third.comr rTr Nrzhttp://another.comzhttp://third.com)rrrrrr)rcustomrs r!test_custom_cors_origins_multiplez7TestGetAllowedOrigins.test_custom_cors_origins_multipleszI ZZ ~v&>d K ,)+G , Wq) *G4 *G4 ('2  , ,s BB ctjdid5t}ddd|jty#1swY xYw)u%반환값이 list 타입인지 확인r Tr N)rrrassertIsInstancelistrs rtest_returns_list_typez,TestGetAllowedOrigins.test_returns_list_types? ZZ b 5 ,)+G , gt, , ,s AA N)r>r?r@rArrrrrBrCrrrs0*: 3-rCrc4eZdZdZdZdZdZdZdZdZ y) TestCheckCorsOriginu*check_cors_origin(origin) 함수 테스트ctjdid5td}ddd|jdy#1swYxYw)u)허용된 origin → 해당 origin 반환r Tr rNrrrrrresults r"test_allowed_origin_returns_originz6TestCheckCorsOrigin.test_allowed_origin_returns_originsG ZZ b 5 @&'>?F @ !89 @ @ AA ctjdid5td}ddd|jdy#1swYxYw)u<다른 허용된 origin (기본값) → 해당 origin 반환r Tr rNrrs r*test_another_allowed_origin_returns_originz>TestCheckCorsOrigin.test_another_allowed_origin_returns_originsG ZZ b 5 D&'BCF D !<= D Drctjdid5td}ddd|jy#1swYxYw)u#허용되지 않은 origin → Noner Tr zhttp://evil.comNrrrrprs r#test_disallowed_origin_returns_nonez7TestCheckCorsOrigin.test_disallowed_origin_returns_nones@ ZZ b 5 :&'89F : &! : : ?Actjdddid5td}ddd|jdy#1swYxYw)u7커스텀 CORS_ORIGINS 환경변수로 허용된 originr rhttp://myapp.comTr Nrrs rtest_custom_allowed_originz.TestCheckCorsOrigin.test_custom_allowed_originsJ ZZ ~7I&JRV W ;&'9:F ; !34 ; ;s AA ctjdddid5td}ddd|jy#1swYxYw)u=커스텀 CORS_ORIGINS 환경변수에 없는 origin → Noner rrTr rNrrs rtest_custom_disallowed_originz1TestCheckCorsOrigin.test_custom_disallowed_originsK ZZ ~7I&JRV W @&'>?F @ &! @ @s AA ctjdid5td}ddd|jy#1swYxYw)u빈 origin 문자열 → Noner Tr r8Nrrs rtest_empty_origin_returns_nonez2TestCheckCorsOrigin.test_empty_origin_returns_nones? ZZ b 5 +&r*F + &! + +rN) r>r?r@rArrrrrrrBrCrrrs#4: > " 5 " "rCr__main__r) verbosity)rAr^sysunittest unittest.mockrpathinsertauthrrrrrTestCaser rErYrrr>mainrBrCrrs  23?3))?3D;**;DS,(++S,l-H---D%"(++%"P zHMMArC