MrDraw/tests/server/util/test_flask.py

# coding=utf-8
"""
Unit tests for ``octoprint.server.util.flask``.
"""

from __future__ import absolute_import

__author__ = "Gina Häußge <osd@foosel.net>"
__license__ = 'GNU Affero General Public License http://www.gnu.org/licenses/agpl.html'
__copyright__ = "Copyright (C) 2016 The OctoPrint Project - Released under terms of the AGPLv3 License"


import unittest
import mock
from ddt import ddt, data, unpack

from octoprint.server.util.flask import ReverseProxiedEnvironment, OctoPrintFlaskRequest, OctoPrintFlaskResponse

standard_environ = {
	"HTTP_HOST": "localhost:5000",
	"SERVER_NAME": "localhost",
	"SERVER_PORT": "5000",
	"SCRIPT_NAME": "",
	"PATH_INFO": "/",
	"wsgi.url_scheme": "http"
}

@ddt
class ReverseProxiedEnvironmentTest(unittest.TestCase):

	@data(
		# defaults
		({},
		 {}),

		# prefix set, path info not prefixed
		({
			"HTTP_X_SCRIPT_NAME": "/octoprint",
			"PATH_INFO": "/static/online.gif"
		}, {
			"SCRIPT_NAME": "/octoprint"
		}),

		# prefix set, path info prefixed
		({
			"HTTP_X_SCRIPT_NAME": "/octoprint",
			"PATH_INFO": "/octoprint/static/online.gif",
		}, {
			"SCRIPT_NAME": "/octoprint",
			"PATH_INFO": "/static/online.gif"
		}),

		# host set
		({
			"HTTP_X_FORWARDED_HOST": "example.com"
		}, {
			"HTTP_HOST": "example.com",
			"SERVER_NAME": "example.com",
			"SERVER_PORT": "80"
		}),

		# host set with port
		({
			"HTTP_X_FORWARDED_HOST": "example.com:1234"
		}, {
			"HTTP_HOST": "example.com:1234",
			"SERVER_NAME": "example.com",
			"SERVER_PORT": "1234"
		}),

		# host and scheme set
		({
			"HTTP_X_FORWARDED_HOST": "example.com",
			"HTTP_X_FORWARDED_PROTO": "https"
		}, {
			"HTTP_HOST": "example.com",
			"SERVER_NAME": "example.com",
			"SERVER_PORT": "443",
			"wsgi.url_scheme": "https"
		}),

		# host and scheme 2 set
		({
			"HTTP_X_FORWARDED_HOST": "example.com",
			"HTTP_X_SCHEME": "https"
		}, {
			"HTTP_HOST": "example.com",
			"SERVER_NAME": "example.com",
			"SERVER_PORT": "443",
			"wsgi.url_scheme": "https"
		}),

		# host, server and port headers set -> only host wins
		({
			"HTTP_X_FORWARDED_HOST": "example.com",
			"HTTP_X_FORWARDED_SERVER": "example2.com",
			"HTTP_X_FORWARDED_PORT": "444",
			"HTTP_X_FORWARDED_PROTO": "https"
		}, {
			"HTTP_HOST": "example.com",
			"SERVER_NAME": "example.com",
			"SERVER_PORT": "443",
			"wsgi.url_scheme": "https"
		}),

		# host set, server and port differ -> updated, standard port
		({
			"HTTP_HOST": "example.com",
			"wsgi.url_scheme": "https",
			"SERVER_NAME": "localhost",
			"SERVER_PORT": "80"
		 }, {
			"HTTP_HOST": "example.com",
			"SERVER_NAME": "example.com",
			"SERVER_PORT": "443",
		 }),

		# host set, server and port differ -> updated, non standard port
		({
			 "HTTP_HOST": "example.com:444",
			 "wsgi.url_scheme": "https",
			 "SERVER_NAME": "localhost",
			 "SERVER_PORT": "80"
		 }, {
			 "HTTP_HOST": "example.com:444",
			 "SERVER_NAME": "example.com",
			 "SERVER_PORT": "444",
		 }),

		# multiple scheme entries -> only use first one
		({
			"HTTP_X_FORWARDED_PROTO": "https,http",
		}, {
			"wsgi.url_scheme": "https"
		}),

		# host = none (should never happen but you never know) -> server & port used for reconstruction
		({
			"HTTP_HOST": None,
			"HTTP_X_FORWARDED_SERVER": "example.com",
			"HTTP_X_FORWARDED_PORT": "80"
		}, {
			"HTTP_HOST": "example.com",
			"SERVER_NAME": "example.com",
			"SERVER_PORT": "80"
		}),

		# host = none, default port -> server & port used for reconstruction (ipv4)
		({
			"HTTP_HOST": None,
			"SERVER_NAME": "127.0.0.1",
			"SERVER_PORT": "80"
		}, {
			"HTTP_HOST": "127.0.0.1",
			"SERVER_NAME": "127.0.0.1",
			"SERVER_PORT": "80"
		}),

		# host = none, non standard port -> server & port used for reconstruction (ipv4)
		({
			 "HTTP_HOST": None,
			 "SERVER_NAME": "127.0.0.1",
			 "SERVER_PORT": "444"
		 }, {
			 "HTTP_HOST": "127.0.0.1:444",
			 "SERVER_NAME": "127.0.0.1",
			 "SERVER_PORT": "444"
		 }),

		# host = none, default port -> server & port used for reconstruction (ipv6)
		({
			"HTTP_HOST": None,
			"SERVER_NAME": "fec1::1",
			"SERVER_PORT": "80"
		}, {
			"HTTP_HOST": "fec1::1",
			"SERVER_NAME": "fec1::1",
			"SERVER_PORT": "80"
		}),

		# host = none, non standard port -> server & port used for reconstruction (ipv6)
		({
			 "HTTP_HOST": None,
			 "SERVER_NAME": "fec1::1",
			 "SERVER_PORT": "444"
		 }, {
			 "HTTP_HOST": "[fec1::1]:444",
			 "SERVER_NAME": "fec1::1",
			 "SERVER_PORT": "444"
		 }),

		# host set, server and port not, default port -> server & port derived from host (ipv4)
		({
			"HTTP_HOST": "127.0.0.1",
			"SERVER_NAME": None,
			"SERVER_PORT": None
		}, {
			"HTTP_HOST": "127.0.0.1",
			"SERVER_NAME": "127.0.0.1",
			"SERVER_PORT": "80"
		}),

		# host set, server and port not, non standard port -> server & port derived from host (ipv4)
		({
			 "HTTP_HOST": "127.0.0.1:444",
			 "SERVER_NAME": None,
			 "SERVER_PORT": None
		 }, {
			 "HTTP_HOST": "127.0.0.1:444",
			 "SERVER_NAME": "127.0.0.1",
			 "SERVER_PORT": "444"
		 }),

		# host set, server and port not, default port -> server & port derived from host (ipv6)
		({
			 "HTTP_HOST": "fec1::1",
			 "SERVER_NAME": None,
			 "SERVER_PORT": None
		 }, {
			 "HTTP_HOST": "fec1::1",
			 "SERVER_NAME": "fec1::1",
			 "SERVER_PORT": "80"
		 }),

		# host set, server and port not, non standard port -> server & port derived from host (ipv6)
		({
			 "HTTP_HOST": "[fec1::1]:444",
			 "SERVER_NAME": None,
			 "SERVER_PORT": None
		 }, {
			 "HTTP_HOST": "[fec1::1]:444",
			 "SERVER_NAME": "fec1::1",
			 "SERVER_PORT": "444"
		 }),
	)
	@unpack
	def test_stock(self, environ, expected):
		reverse_proxied = ReverseProxiedEnvironment()

		merged_environ = dict(standard_environ)
		merged_environ.update(environ)

		actual = reverse_proxied(merged_environ)

		merged_expected = dict(standard_environ)
		merged_expected.update(environ)
		merged_expected.update(expected)

		self.assertDictEqual(merged_expected, actual)

	@data(
		# server and port headers set -> host derived with port
		({
			 "SERVER_NAME": "example2.com",
			 "SERVER_PORT": "444",
			 "HTTP_X_FORWARDED_PROTO": "https"
		 }, {
			 "HTTP_HOST": "example2.com:444",
			 "SERVER_NAME": "example2.com",
			 "SERVER_PORT": "444",
			 "wsgi.url_scheme": "https"
		 }),

		# server and port headers set, standard port -> host derived, no port
		({
			 "SERVER_NAME": "example.com",
			 "SERVER_PORT": "80",
		 }, {
			 "HTTP_HOST": "example.com",
			 "SERVER_NAME": "example.com",
			 "SERVER_PORT": "80",
		 }),

		# server and port forwarded headers set -> host derived with port
		({
			 "HTTP_X_FORWARDED_SERVER": "example2.com",
			 "HTTP_X_FORWARDED_PORT": "444",
			 "HTTP_X_FORWARDED_PROTO": "https"
		 }, {
			 "HTTP_HOST": "example2.com:444",
			 "SERVER_NAME": "example2.com",
			 "SERVER_PORT": "444",
			 "wsgi.url_scheme": "https"
		 }),

		# server and port forwarded headers set, standard port -> host derived, no port
		({
			 "HTTP_X_FORWARDED_SERVER": "example.com",
			 "HTTP_X_FORWARDED_PORT": "80",
		 }, {
			 "HTTP_HOST": "example.com",
			 "SERVER_NAME": "example.com",
			 "SERVER_PORT": "80",
		 }),
	)
	@unpack
	def test_nohost(self, environ, expected):
		reverse_proxied = ReverseProxiedEnvironment()

		merged_environ = dict(standard_environ)
		merged_environ.update(environ)
		del merged_environ["HTTP_HOST"]

		actual = reverse_proxied(merged_environ)

		merged_expected = dict(standard_environ)
		merged_expected.update(environ)
		merged_expected.update(expected)

		self.assertDictEqual(merged_expected, actual)

	@data(
		# prefix overridden
		({
			"prefix": "fallback_prefix"
		}, {
		}, {
			 "SCRIPT_NAME": "fallback_prefix",
		}),

		# scheme overridden
		({
			"scheme": "https"
		}, {
		}, {
			 "wsgi.url_scheme": "https"
		}),

		# host overridden, default port
		({
			"host": "example.com"
		}, {
		}, {
			 "HTTP_HOST": "example.com",
			"SERVER_NAME": "example.com",
			"SERVER_PORT": "80"
		}),

		# host overridden, included port
		({
			"host": "example.com:81"
		}, {
		}, {
			"HTTP_HOST": "example.com:81",
			"SERVER_NAME": "example.com",
			"SERVER_PORT": "81"
		}),

		# prefix not really overridden, forwarded headers take precedence
		({
			"prefix": "/octoprint"
		}, {
			"HTTP_X_SCRIPT_NAME": ""
		}, {
		}),

		# scheme not really overridden, forwarded headers take precedence
		({
			"scheme": "https"
		}, {
			"HTTP_X_FORWARDED_PROTO": "http"
		}, {
		}),

		# scheme 2 not really overridden, forwarded headers take precedence
		({
			"scheme": "https"
		}, {
			"HTTP_X_SCHEME": "http"
		}, {
		}),

		# host not really overridden, forwarded headers take precedence
		({
			"host": "example.com:444"
		}, {
			"HTTP_X_FORWARDED_HOST": "localhost:5000"
		}, {
		}),

		# server not really overridden, forwarded headers take precedence
		({
			"server": "example.com"
		}, {
			"HTTP_X_FORWARDED_SERVER": "localhost"
		}, {
		}),

		# port not really overridden, forwarded headers take precedence
		({
			"port": "444"
		}, {
			"HTTP_X_FORWARDED_PORT": "5000"
		}, {
		}),

		# server and port not really overridden, Host header wins
		({
			"server": "example.com",
			"port": "80"
		}, {
		}, {
		})
	)
	@unpack
	def test_fallbacks(self, fallbacks, environ, expected):
		reverse_proxied = ReverseProxiedEnvironment(**fallbacks)

		merged_environ = dict(standard_environ)
		merged_environ.update(environ)

		actual = reverse_proxied(merged_environ)

		merged_expected = dict(standard_environ)
		merged_expected.update(environ)
		merged_expected.update(expected)

		self.assertDictEqual(merged_expected, actual)

	@data(
		# server overridden
		({
			 "server": "example.com"
		 }, {
		 }, {
			 "HTTP_HOST": "example.com:5000",
			 "SERVER_NAME": "example.com",
			 "SERVER_PORT": "5000"
		 }),

		# port overridden, standard port
		({
			 "port": "80"
		 }, {
		 }, {
			 "HTTP_HOST": "localhost",
			 "SERVER_PORT": "80"
		 }),

		# port overridden, non standard port
		({
			 "port": "81"
		 }, {
		 }, {
			 "HTTP_HOST": "localhost:81",
			 "SERVER_PORT": "81"
		 }),

		# server and port overridden, default port
		({
			 "server": "example.com",
			 "port": "80"
		 }, {
		 }, {
			 "HTTP_HOST": "example.com",
			 "SERVER_NAME": "example.com",
			 "SERVER_PORT": "80"
		 }),

		# server and port overridden, non default port
		({
			 "server": "example.com",
			 "port": "81"
		 }, {
		 }, {
			 "HTTP_HOST": "example.com:81",
			 "SERVER_NAME": "example.com",
			 "SERVER_PORT": "81"
		 }),

	)
	@unpack
	def test_fallbacks_nohost(self, fallbacks, environ, expected):
		reverse_proxied = ReverseProxiedEnvironment(**fallbacks)

		merged_environ = dict(standard_environ)
		merged_environ.update(environ)
		del merged_environ["HTTP_HOST"]

		actual = reverse_proxied(merged_environ)

		merged_expected = dict(standard_environ)
		merged_expected.update(environ)
		merged_expected.update(expected)

		self.assertDictEqual(merged_expected, actual)

	def test_header_config_ok(self):
		result = ReverseProxiedEnvironment.to_header_candidates(["prefix-header1", "prefix-header2"])
		self.assertEquals(result, ["HTTP_PREFIX_HEADER1", "HTTP_PREFIX_HEADER2"])

	def test_header_config_string(self):
		result = ReverseProxiedEnvironment.to_header_candidates("prefix-header")
		self.assertEquals(result, ["HTTP_PREFIX_HEADER"])

	def test_header_config_none(self):
		result = ReverseProxiedEnvironment.to_header_candidates(None)
		self.assertEquals(result, [])

##~~

class OctoPrintFlaskRequestTest(unittest.TestCase):

	def setUp(self):
		self.orig_environment_wrapper = OctoPrintFlaskRequest.environment_wrapper

	def tearDown(self):
		OctoPrintFlaskRequest.environment_wrapper = staticmethod(self.orig_environment_wrapper)

	def test_environment_wrapper(self):
		def environment_wrapper(environ):
			environ.update({
				"TEST": "yes"
			})
			return environ

		OctoPrintFlaskRequest.environment_wrapper = staticmethod(environment_wrapper)
		request = OctoPrintFlaskRequest(standard_environ)

		self.assertTrue("TEST" in request.environ)

	def test_server_name(self):
		request = OctoPrintFlaskRequest(standard_environ)
		self.assertEquals("localhost", request.server_name)

	def test_server_port(self):
		request = OctoPrintFlaskRequest(standard_environ)
		self.assertEquals("5000", request.server_port)

	def test_cookie_suffix(self):
		request = OctoPrintFlaskRequest(standard_environ)
		self.assertEquals("_P5000", request.cookie_suffix)

	def test_cookies(self):
		environ = dict(standard_environ)
		environ["HTTP_COOKIE"] = "postfixed_P5000=postfixed_value; " \
		                         "postfixed_wrong_P5001=postfixed_wrong_value; " \
		                         "unpostfixed=unpostfixed_value; " \
		                         "both_P5000=both_postfixed_value; " \
		                         "both=both_unpostfixed_value;"

		request = OctoPrintFlaskRequest(environ)

		cookies = request.cookies
		self.assertDictEqual({"postfixed": u"postfixed_value",
		                      "postfixed_wrong_P5001": u"postfixed_wrong_value",
		                      "unpostfixed": u"unpostfixed_value",
		                      "both": u"both_postfixed_value"},
		                     cookies)

##~~

@ddt
class OctoPrintFlaskResponseTest(unittest.TestCase):

	@data([None, None],
	      ["/subfolder/", None],
	      [None, "/some/other/script/root"],
	      ["/subfolder/", "/some/other/script/root"])
	@unpack
	def test_cookie_set_and_delete(self, path, scriptroot):
		environ = dict(standard_environ)

		if scriptroot is not None:
			environ.update(dict(SCRIPT_NAME=scriptroot))

		request = OctoPrintFlaskRequest(environ)

		if path:
			expected_path_set = expected_path_delete = path
		else:
			expected_path_set = expected_path_delete = "/"
		if scriptroot:
			expected_path_set = scriptroot + expected_path_set

		if path is not None:
			kwargs = dict(path=path)
		else:
			kwargs = dict()

		with mock.patch("flask.request", new=request):
			response = OctoPrintFlaskResponse()

			# test set_cookie
			with mock.patch("flask.Response.set_cookie") as set_cookie_mock:
				response.set_cookie("some_key", "some_value", **kwargs)

				# set_cookie should have key and path values adjusted
				set_cookie_mock.assert_called_once_with(response, "some_key_P5000", "some_value", path=expected_path_set)

			# test delete_cookie
			with mock.patch("flask.Response.set_cookie") as set_cookie_mock:
				with mock.patch("flask.Response.delete_cookie") as delete_cookie_mock:
					response.delete_cookie("some_key", **kwargs)

					# delete_cookie internally calls set_cookie - so our delete_cookie call still uses the non modified
					# key and path values, set_cookie will translate those (as tested above)
					delete_cookie_mock.assert_called_once_with(response, "some_key", path=expected_path_delete, domain=None)

					# we also test if an additional set_cookie call for the non modified versions happens, as
					# implemented to ensure any old cookies from before introduction of the suffixes and path handling
					# are deleted as well
					set_cookie_mock.assert_called_once_with(response, "some_key", expires=0, max_age=0, path=expected_path_delete, domain=None)