mirror of
https://github.com/quay/quay.git
synced 2026-01-26 06:21:37 +03:00
38be6d05d0
* Convert all Python2 to Python3 syntax. * Removes oauth2lib dependency * Replace mockredis with fakeredis * byte/str conversions * Removes nonexisting __nonzero__ in Python3 * Python3 Dockerfile and related * [PROJQUAY-98] Replace resumablehashlib with rehash * PROJQUAY-123 - replace gpgme with python3-gpg * [PROJQUAY-135] Fix unhashable class error * Update external dependencies for Python 3 - Move github.com/app-registry/appr to github.com/quay/appr - github.com/coderanger/supervisor-stdout - github.com/DevTable/container-cloud-config - Update to latest mockldap with changes applied from coreos/mockldap - Update dependencies in requirements.txt and requirements-dev.txt * Default FLOAT_REPR function to str in json encoder and removes keyword assignment True, False, and str were not keywords in Python2... * [PROJQUAY-165] Replace package `bencode` with `bencode.py` - Bencode is not compatible with Python 3.x and is no longer maintained. Bencode.py appears to be a drop-in replacement/fork that is compatible with Python 3. * Make sure monkey.patch is called before anything else ( * Removes anunidecode dependency and replaces it with text_unidecode * Base64 encode/decode pickle dumps/loads when storing value in DB Base64 encodes/decodes the serialized values when storing them in the DB. Also make sure to return a Python3 string instead of a Bytes when coercing for db, otherwise, Postgres' TEXT field will convert it into a hex representation when storing the value. * Implement __hash__ on Digest class In Python 3, if a class defines __eq__() but not __hash__(), its instances will not be usable as items in hashable collections (e.g sets). * Remove basestring check * Fix expected message in credentials tests * Fix usage of Cryptography.Fernet for Python3 (#219) - Specifically, this addresses the issue where Byte<->String conversions weren't being applied correctly. * Fix utils - tar+stream layer format utils - filelike util * Fix storage tests * Fix endpoint tests * Fix workers tests * Fix docker's empty layer bytes * Fix registry tests * Appr * Enable CI for Python 3.6 * Skip buildman tests Skip buildman tests while it's being rewritten to allow ci to pass. * Install swig for CI * Update expected exception type in redis validation test * Fix gpg signing calls Fix gpg calls for updated gpg wrapper, and add signing tests. * Convert / to // for Python3 integer division * WIP: Update buildman to use asyncio instead of trollius. This dependency is considered deprecated/abandoned and was only used as an implementation/backport of asyncio on Python 2.x This is a work in progress, and is included in the PR just to get the rest of the tests passing. The builder is actually being rewritten. * Target Python 3.8 * Removes unused files - Removes unused files that were added accidentally while rebasing - Small fixes/cleanup - TODO tasks comments * Add TODO to verify rehash backward compat with resumablehashlib * Revert "[PROJQUAY-135] Fix unhashable class error" and implements __hash__ instead. This reverts commit 735e38e3c1d072bf50ea864bc7e119a55d3a8976. Instead, defines __hash__ for encryped fields class, using the parent field's implementation. * Remove some unused files ad imports Co-authored-by: Kenny Lee Sin Cheong <kenny.lee@redhat.com> Co-authored-by: Tom McKay <thomasmckay@redhat.com>
62 lines
2.6 KiB
Python
62 lines
2.6 KiB
Python
import pytest
|
|
|
|
from mock import patch
|
|
|
|
from data import model
|
|
from data.users.shared import can_create_user
|
|
|
|
from test.fixtures import *
|
|
|
|
|
|
@pytest.mark.parametrize(
|
|
"open_creation, invite_only, email, has_invite, can_create",
|
|
[
|
|
# Open user creation => always allowed.
|
|
(True, False, None, False, True),
|
|
# Open user creation => always allowed.
|
|
(True, False, "foo@example.com", False, True),
|
|
# Invite only user creation + no invite => disallowed.
|
|
(True, True, None, False, False),
|
|
# Invite only user creation + no invite => disallowed.
|
|
(True, True, "foo@example.com", False, False),
|
|
# Invite only user creation + invite => allowed.
|
|
(True, True, "foo@example.com", True, True),
|
|
# No open creation => Disallowed.
|
|
(False, True, "foo@example.com", False, False),
|
|
(False, True, "foo@example.com", True, False),
|
|
# Blacklisted emails => Disallowed.
|
|
(True, False, "foo@blacklisted.com", False, False),
|
|
(True, False, "foo@blacklisted.org", False, False),
|
|
(True, False, "foo@BlAcKlIsTeD.CoM", False, False), # Verify Capitalization
|
|
(True, False, "foo@mail.bLacklisted.Com", False, False), # Verify unicode
|
|
(True, False, "foo@blacklisted.net", False, True), # Avoid False Positives
|
|
(True, False, "foo@myblacklisted.com", False, True), # Avoid partial domain matches
|
|
(True, False, "fooATblacklisted.com", False, True), # Ignore invalid email addresses
|
|
],
|
|
)
|
|
@pytest.mark.parametrize("blacklisting_enabled", [True, False])
|
|
def test_can_create_user(
|
|
open_creation, invite_only, email, has_invite, can_create, blacklisting_enabled, app
|
|
):
|
|
|
|
# Mock list of blacklisted domains
|
|
blacklisted_domains = ["blacklisted.com", "blacklisted.org"]
|
|
|
|
if has_invite:
|
|
inviter = model.user.get_user("devtable")
|
|
team = model.team.get_organization_team("buynlarge", "owners")
|
|
model.team.add_or_invite_to_team(inviter, team, email=email)
|
|
|
|
with patch("features.USER_CREATION", open_creation):
|
|
with patch("features.INVITE_ONLY_USER_CREATION", invite_only):
|
|
with patch("features.BLACKLISTED_EMAILS", blacklisting_enabled):
|
|
if (
|
|
email
|
|
and any(domain in email.lower() for domain in blacklisted_domains)
|
|
and not blacklisting_enabled
|
|
):
|
|
can_create = (
|
|
True # blacklisted domains can be used, if blacklisting is disabled
|
|
)
|
|
assert can_create_user(email, blacklisted_domains) == can_create
|