velvox
/
litecord
mirror of https://gitlab.com/litecord/litecord.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Implement admin ID for automated tests

This commit is contained in:
oauth2 2022-10-19 13:28:14 +02:00
parent febdee5bd9
commit acb5ba7eba
No known key found for this signature in database
GPG Key ID: 8F0BFB72D95A280C
3 changed files with 37 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
config.ci.py
View File

@ -48,6 +48,9 @@ class Config:
# Postgres credentials # Postgres credentials
POSTGRES = {} POSTGRES = {}
ADMIN_ID = None
ADMIN_TOKEN = None
class Development(Config): class Development(Config):
DEBUG = True DEBUG = True

27
config.example.py
View File

@ -17,6 +17,13 @@ along with this program. If not, see <http://www.gnu.org/licenses/>.
""" """
import os
from logbook import Logger
log = Logger(__name__)
MODE = "Development" MODE = "Development"
@ -69,6 +76,23 @@ class Config:
#: Shared secret for LVSP #: Shared secret for LVSP
LVSP_SECRET = "" LVSP_SECRET = ""
#: Admin credentials for automated testing
# The token is the value to pass in the Authorization header, and the ID
# is the user ID to use when it is passed.
ADMIN_ID = os.getenv("ADMIN_ID")
ADMIN_TOKEN = os.getenv("ADMIN_TOKEN")
if None in {ADMIN_ID, ADMIN_TOKEN} and not ADMIN_ID == ADMIN_TOKEN:
log.warning(
"Not both admin ID ({}) and token ({}) configured; ignoring",
ADMIN_ID,
ADMIN_TOKEN,
)
ADMIN_ID = ADMIN_TOKEN = None
if ADMIN_ID is not None:
ADMIN_ID = int(ADMIN_ID)
class Development(Config): class Development(Config):
DEBUG = True DEBUG = True
@ -91,3 +115,6 @@ class Production(Config):
"password": "some_production_password", "password": "some_production_password",
"database": "litecord_or_anything_else_really", "database": "litecord_or_anything_else_really",
} }
ADMIN_TOKEN = None
ADMIN_ID = None

6
litecord/auth.py
View File

@ -19,6 +19,7 @@ along with this program. If not, see <http://www.gnu.org/licenses/>.
import base64 import base64
import binascii import binascii
import os
import bcrypt import bcrypt
from itsdangerous import TimestampSigner, BadSignature from itsdangerous import TimestampSigner, BadSignature
@ -47,6 +48,9 @@ async def raw_token_check(token: str, db=None) -> int:
Forbidden Forbidden
If token validation fails. If token validation fails.
""" """
if app.config["ADMIN_TOKEN"] is not None:
return app.config["ADMIN_ID"]
db = db or app.db db = db or app.db
# just try by fragments instead of # just try by fragments instead of
@ -121,6 +125,8 @@ async def token_check() -> int:
async def admin_check() -> int: async def admin_check() -> int:
"""Check if the user is an admin.""" """Check if the user is an admin."""
user_id = await token_check() user_id = await token_check()
if user_id == app.config["ADMIN_ID"]:
return user_id
flags = await app.db.fetchval( flags = await app.db.fetchval(
""" """