apigeecli 0.53.2__tar.gz → 0.53.4__tar.gz

{apigeecli-0.53.2/apigeecli.egg-info → apigeecli-0.53.4}/PKG-INFO

@@ -1,12 +1,13 @@
 Metadata-Version: 2.1
 Name: apigeecli
-Version: 0.53.2
-Summary: apigee-cli is an unofficial command-line interface tool designed to simplify the use of the Apigee Edge Management API
+Version: 0.53.4
+Summary: The Apigee Edge command-line interface is an unofficial Python command-line tool built to simplify and automate Apigee Edge API usage, with support for SSO, MFA, and basic authentication.
 Home-page: https://github.com/darumatic/apigee-cli
 Author: Matthew Delotavo
 Author-email: matthew.t.delotavo@gmail.com
 License: Apache license 2.0
 Project-URL: Documentation, https://darumatic.github.io/apigee-cli/index.html
+Platform: UNKNOWN
 Classifier: Development Status :: 4 - Beta
 Classifier: Environment :: Console
 Classifier: Intended Audience :: Developers
@@ -22,23 +23,23 @@ License-File: NOTICE
 apigee-cli
 ==========
 
-⚠️ **Warning:** This project is no longer actively maintained and was created specifically for previous Darumatic clients.
-
 |License| |Python version| |Downloads|
 
-apigee-cli is a command-line interface tool designed to simplify the use of the Apigee Edge Management API. 
-It provides a user-friendly experience with features such as SSO support.
+.. warning::
+
+   This tool is no longer actively maintained.
+
+The Apigee Edge command-line interface is an unofficial Python command-line tool built to simplify and automate Apigee Edge API usage, with support for SSO, MFA, and basic authentication.
+
+Initially developed for Darumatic clients, this project remains available as a working proof of concept, proven reliable in production CI/CD pipelines. The custom plugins feature will remain functional even if Apigee Edge APIs stop working.
 
-It can be used for general administrative tasks, as a developer package, 
-and to support automation for common development tasks such as CI/CD. 
+I have created private forks for clients, where I continued to add features, fixes, and unit tests. However, I do not intend to maintain this public version. Feel free to explore and learn from the code.
 
-With the apigee-cli, you can manage your Apigee Edge credentials using environment variables, config files, 
-or command-line arguments. 
+If you’re up for a challenge, try updating the code to work with Apigee X :)
 
-The tool is highly experimental and is not affiliated with Apigee or Google. 
+.. note::
 
-For more information on getting started with the apigee-cli or for troubleshooting help, 
-refer to the documentation and links provided.
+   **apigee-cli** is highly experimental and is not affiliated with Apigee or Google.
 
 ------------
 Installation
@@ -144,6 +145,24 @@ We built and use the Apigee CLI to implement and distribute features that allow
 to manage CI/CD, perform self-service operations and promote our DevOps workflows
 which are difficult to perform using official tools.
 
+-------------
+Running Tests
+-------------
+
+This project uses `unittest` for testing its codebase. In order to run the tests, you will need to install the `coverage.py` tool. You can install it using pip:
+
+.. code-block:: bash
+
+   pip3 install coverage
+
+Once `coverage.py` is installed, you can run the tests using the `runtests` script:
+
+.. code-block:: bash
+
+   ./runtests
+
+This script will run all the tests in the `tests` directory and generate a coverage report.
+
 ------------
 Getting Help
 ------------
@@ -224,3 +243,5 @@ This is not an officially supported Google product.
 
 .. _`Apigee CI/CD Docker releases`: https://hub.docker.com/r/darumatic/apigee-cicd
 
+
+

{apigeecli-0.53.2 → apigeecli-0.53.4}/README.rst

@@ -2,23 +2,23 @@
 apigee-cli
 ==========
 
-⚠️ **Warning:** This project is no longer actively maintained and was created specifically for previous Darumatic clients.
-
 |License| |Python version| |Downloads|
 
-apigee-cli is a command-line interface tool designed to simplify the use of the Apigee Edge Management API. 
-It provides a user-friendly experience with features such as SSO support.
+.. warning::
+
+   This tool is no longer actively maintained.
+
+The Apigee Edge command-line interface is an unofficial Python command-line tool built to simplify and automate Apigee Edge API usage, with support for SSO, MFA, and basic authentication.
 
-It can be used for general administrative tasks, as a developer package, 
-and to support automation for common development tasks such as CI/CD. 
+Initially developed for Darumatic clients, this project remains available as a working proof of concept, proven reliable in production CI/CD pipelines. The custom plugins feature will remain functional even if Apigee Edge APIs stop working.
 
-With the apigee-cli, you can manage your Apigee Edge credentials using environment variables, config files, 
-or command-line arguments. 
+I have created private forks for clients, where I continued to add features, fixes, and unit tests. However, I do not intend to maintain this public version. Feel free to explore and learn from the code.
 
-The tool is highly experimental and is not affiliated with Apigee or Google. 
+If you’re up for a challenge, try updating the code to work with Apigee X :)
 
-For more information on getting started with the apigee-cli or for troubleshooting help, 
-refer to the documentation and links provided.
+.. note::
+
+   **apigee-cli** is highly experimental and is not affiliated with Apigee or Google.
 
 ------------
 Installation
@@ -124,6 +124,24 @@ We built and use the Apigee CLI to implement and distribute features that allow
 to manage CI/CD, perform self-service operations and promote our DevOps workflows
 which are difficult to perform using official tools.
 
+-------------
+Running Tests
+-------------
+
+This project uses `unittest` for testing its codebase. In order to run the tests, you will need to install the `coverage.py` tool. You can install it using pip:
+
+.. code-block:: bash
+
+   pip3 install coverage
+
+Once `coverage.py` is installed, you can run the tests using the `runtests` script:
+
+.. code-block:: bash
+
+   ./runtests
+
+This script will run all the tests in the `tests` directory and generate a coverage report.
+
 ------------
 Getting Help
 ------------

{apigeecli-0.53.2 → apigeecli-0.53.4}/apigee/__init__.py

@@ -6,9 +6,9 @@ from apigee import utils_init
 
 APP = "apigeecli"
 CMD = "apigee"
-__version__ = "0.53.2"
-description = "apigee-cli is an unofficial command-line interface tool designed to simplify the use of the Apigee Edge Management API"
-long_description = """apigee-cli is an unofficial command-line interface tool designed to simplify the use of the Apigee Edge Management API. It provides a user-friendly experience with features such as SSO support. It can be used for general administrative tasks, as a developer package, and to support automation for common development tasks such as CI/CD. With the apigee-cli, you can manage your Apigee Edge credentials using environment variables, config files, or command-line arguments. The tool is highly experimental and is not affiliated with Apigee or Google. For more information on getting started with the apigee-cli or for troubleshooting help, refer to the documentation and links provided."""
+__version__ = "0.53.4"
+description = "The Apigee Edge command-line interface is an unofficial Python command-line tool built to simplify and automate Apigee Edge API usage, with support for SSO, MFA, and basic authentication."
+long_description = """This tool is no longer actively maintained. Initially developed for Darumatic clients, this project remains available as a working proof of concept, proven reliable in production CI/CD pipelines. The custom plugins feature will remain functional even if Apigee Edge APIs stop working."""
 
 APIGEE_CLI_DIRECTORY = utils_init.join_path_components(Path.home(), ".apigee")
 APIGEE_CLI_PLUGINS_DIRECTORY = utils_init.join_path_components(APIGEE_CLI_DIRECTORY, "plugins")

{apigeecli-0.53.2 → apigeecli-0.53.4}/apigee/apis/api_puller_with_dependency_extraction.py

@@ -19,14 +19,14 @@ class ApiPullerWithDependencyExtraction:
     def __init__(self, auth, org_name, revision_number, environment, working_directory=None):
         self.auth = auth
         self.org_name = org_name
-        self._working_directory = working_directory
+        self.working_directory = working_directory
         self.revision_number = revision_number
         self.environment = environment
-        self._keyvaluemaps_dir = "keyvaluemaps"
-        self._targetservers_dir = "targetservers"
-        self._caches_dir = "caches"
-        self._apiproxy_dir = self._working_directory
-        self.zip_file = str(Path(self._apiproxy_dir).with_suffix(".zip"))
+        self.keyvaluemaps_dir = "keyvaluemaps"
+        self.targetservers_dir = "targetservers"
+        self.caches_dir = "caches"
+        self.apiproxy_dir = self.working_directory
+        self.zip_file = str(Path(self.apiproxy_dir).with_suffix(".zip"))
 
     @property
     def working_directory(self):

{apigeecli-0.53.2 → apigeecli-0.53.4}/apigee/auth.py

@@ -37,21 +37,21 @@ def attach_is_token_option(func, profile):
             "--token/--no-token",
             default=is_token,
             show_default=True,
-            help="specify to use oauth without MFA",
+            help="specify to use OAuth without MFA",
         )(func)
     elif is_token_envvar in (True, "True", "true", "1"):
         func = click.option(
             "--token/--no-token",
             default=is_token_envvar,
             show_default=True,
-            help="specify to use oauth without MFA",
+            help="specify to use OAuth without MFA",
         )(func)
     else:
         func = click.option(
             "--token/--no-token",
             default=False,
             show_default=True,
-            help="specify to use oauth without MFA",
+            help="specify to use OAuth without MFA",
         )(func)
     return func
 
@@ -222,75 +222,68 @@ def get_access_token_for_mfa(
         )
 
 
-def get_access_token(auth, username, password, oauth_url, post_headers, session):
+def get_access_token(auth, username, password, oauth_url, post_headers, session, passcode):
     if auth.token or APIGEE_CLI_IS_MACHINE_USER:
         return get_access_token_for_token(auth, username, password, oauth_url, post_headers, session)
     elif auth.mfa_secret:
         return get_access_token_for_mfa(auth, username, password, oauth_url, post_headers, session)
     elif auth.zonename:
-        return get_access_token_for_sso(auth, username, password, oauth_url, post_headers, session)
+        return get_access_token_for_sso(auth, username, password, oauth_url, post_headers, session, passcode)
 
 
 def get_access_token_for_sso(
-    auth, username, password, oauth_url, post_headers, session
+    auth, username, password, oauth_url, post_headers, session, passcode
 ):
     refresh_token = validate_refresh_token(auth)
     oauth_url = APIGEE_ZONENAME_OAUTH_URL.format(zonename=auth.zonename)
     passcode_url = APIGEE_SAML_LOGIN_URL.format(zonename=auth.zonename)
+
     if not refresh_token:
-        post_body = get_sso_access_token_parameters(passcode_url)
+        if not passcode:
+            passcode = get_sso_temporary_authentication_code(passcode_url)
+        post_body = f"passcode={passcode}&grant_type=password&response_type=token"
     else:
         # Should we notify users that the refresh token is being used to verify the access token?
         #console.echo("Refresh Token found, renewing access token with Refresh Token...")
         post_body = f"grant_type=refresh_token&refresh_token={refresh_token}"
 
     try:
-        try:
-            response_post = session.post(
-                f"{oauth_url}", headers=post_headers, data=post_body
-            )
-            response_data = response_post.json()
-            response_data["access_token"]
-            # If we didn't have a refresh token previously, save the refresh token we just got.
-            if not refresh_token:
-                with open(APIGEE_CLI_REFRESH_TOKEN_FILE, "w") as f:
-                    f.write(response_data["refresh_token"])
-            return response_data
-        except KeyError:
-            sys.exit("Temporary Authentication Code or Refresh Token is invalid. Please try again.")
+        response_post = session.post(
+            f"{oauth_url}", headers=post_headers, data=post_body
+        )
+        response_data = response_post.json()
+        response_data["access_token"]
+
+        # If we didn't have a refresh token previously, save the refresh token we just got.
+        if not refresh_token:
+            with open(APIGEE_CLI_REFRESH_TOKEN_FILE, "w") as f:
+                f.write(response_data["refresh_token"])
+        return response_data
+    except KeyError:
+        sys.exit("Temporary Authentication Code or Refresh Token is invalid. Please try again.")
     except ConnectionError as ce:
         console.echo(ce)
-    except KeyError:
-        pass
 
 
 def get_config_value(config_section, config_key):
-    try:
-        config = configparser.ConfigParser()
-        config.read(APIGEE_CLI_CREDENTIALS_FILE)
-        if config_section in config:
+    config = configparser.ConfigParser()
+    config.read(APIGEE_CLI_CREDENTIALS_FILE)
+    if config_section in config:
+        if config_key in config[config_section]:
             return config[config_section][config_key]
-    except Exception:
-        return
 
 
-def get_sso_access_token_parameters(passcode_url):
+def get_sso_temporary_authentication_code(passcode_url):
     webbrowser.open(passcode_url)
-    console.echo(
-        "SSO authorization page has automatically been opened in your default browser."
-    )
-    console.echo(
-        "Follow the instructions in the browser to complete this authorization request."
-    )
-    console.echo(
-        f"""\nIf your browser did not automatically open, go to the following URL and sign in:\n\n{passcode_url}\n\nthen copy the Temporary Authentication Code.\n"""
-    )
+    console.echo("SSO authorization page has automatically been opened in your default browser.")
+    console.echo("Follow the instructions in the browser to complete this authorization request.")
+    console.echo(f"""\nIf your browser did not automatically open, go to the following URL and sign in:\n\n{passcode_url}\n\nthen copy the Temporary Authentication Code.\n""")
 
     passcode = click.prompt("Please enter the Temporary Authentication Code")
-    return f"passcode={passcode}&grant_type=password&response_type=token"
+    return passcode
 
 
-def retrieve_access_token(authentication, session=None):
+def retrieve_access_token(authentication, passcode=None):
     oauth_url = APIGEE_OAUTH_URL
     username = authentication.username
     password = authentication.password
@@ -302,7 +295,7 @@ def retrieve_access_token(authentication, session=None):
         "Accept": "application/json;charset=utf-8",
         "Authorization": "Basic ZWRnZWNsaTplZGdlY2xpc2VjcmV0",
     }
-    response_data = get_access_token(authentication, username, password, oauth_url, post_headers, session)
+    response_data = get_access_token(authentication, username, password, oauth_url, post_headers, session, passcode)
     try:
         return response_data["access_token"]
     except KeyError as error:
@@ -366,19 +359,18 @@ def auth():
     pass
 
 
-@auth.command(name="get-access-token", help="request a fresh access token")
+@auth.command(name="get-access-token", help="Request a fresh access token")
 @common_auth_options
 @common_verbose_options
 @common_silent_options
+@click.option('--passcode', help='Apigee SAML temporary authentication code to use when getting an Apigee access token (optional)')
 def get_access_token_command(
-    username, password, mfa_secret, token, zonename, org, profile, **kwargs
+    username, password, mfa_secret, token, zonename, org, profile, passcode, **kwargs
 ):
-    console.echo(
-        retrieve_access_token(generate_authentication(username, password, mfa_secret, token, zonename))
-    )
+    console.echo(retrieve_access_token(generate_authentication(username, password, mfa_secret, token, zonename), passcode))
 
 
-@auth.command(help="view the current access token")
+@auth.command(help="View the current access token")
 @common_auth_options
 @common_verbose_options
 @common_silent_options
@@ -392,11 +384,7 @@ def view_access_token(
         console.echo(validate_access_token(authentication_object))
     else:
         # Show the user/password base64 basic auth value
-        console.echo(
-            base64.b64encode(
-                f"{authentication_object.username}:{authentication_object.password}".encode()
-            ).decode()
-        )
+        console.echo(base64.b64encode(f"{authentication_object.username}:{authentication_object.password}".encode()).decode())
 
 
 @auth.command(help="Clear cached access token and refresh token")

{apigeecli-0.53.2 → apigeecli-0.53.4}/apigee/backups/backups.py

@@ -396,7 +396,7 @@ class Backups:
             except HTTPError as e:
                 self.handle_apiproduct_download_error(e, apiproduct)
             except Exception as e:
-                    self.handle_general_exception(type(e).__name__, apiproduct)
+                self.handle_general_exception(type(e).__name__, apiproduct)
             self.update_progress_bar(description="API Products")
 
     def get_apiproduct_content(self, apiproduct):
@@ -498,7 +498,7 @@ class Backups:
             except HTTPError as e:
                 self.handle_developer_download_error(e, developer)
             except Exception as e:
-                    self.handle_general_exception(e, developer)
+                self.handle_general_exception(e, developer)
             self.update_progress_bar(description="Developers")
 
     def get_developer_details(self, developer):

{apigeecli-0.53.2 → apigeecli-0.53.4}/apigee/encryption_utils.py

@@ -1,5 +1,4 @@
 import base64
-
 import gnupg
 
 ENCRYPTED_HEADER_BEGIN = "-----BEGIN ENCRYPTED APIGEE CLI MESSAGE-----"
@@ -8,22 +7,20 @@ ENCRYPTED_HEADER_END = "-----END ENCRYPTED APIGEE CLI MESSAGE-----"
 
 def encrypt_message_with_gpg(secret, message, encoded=True):
     gpg = gnupg.GPG()
-    if encoded:
-        return base64.b64encode(
-            str(
-                gpg.encrypt(
-                    message, symmetric="AES256", passphrase=secret, recipients=None
-                )
-            ).encode()
-        ).decode()
-    return str(
-        gpg.encrypt(message, symmetric="AES256", passphrase=secret, recipients=None)
+    encrypted_message = gpg.encrypt(
+        message, symmetric="AES256", passphrase=secret, recipients=None
     )
+    if encoded:
+        return base64.b64encode(str(encrypted_message).encode()).decode()
+    return str(encrypted_message)
 
 
 def has_encrypted_header(message):
-    return message.startswith(ENCRYPTED_HEADER_BEGIN) and message.endswith(
-        ENCRYPTED_HEADER_END
+    if not isinstance(message, str):
+        return False
+    return (
+        message.startswith(ENCRYPTED_HEADER_BEGIN)
+        and message.endswith(ENCRYPTED_HEADER_END)
     )
 
 
@@ -33,5 +30,6 @@ def decrypt_message_with_gpg(secret, message, encoded=True):
         return ""
     message = message[len(ENCRYPTED_HEADER_BEGIN) : -len(ENCRYPTED_HEADER_END)]
     if encoded:
-        return str(gpg.decrypt(base64.b64decode(message).decode(), passphrase=secret))
+        decoded_message = base64.b64decode(message).decode()
+        return str(gpg.decrypt(decoded_message, passphrase=secret))
     return str(gpg.decrypt(message, passphrase=secret))

{apigeecli-0.53.2 → apigeecli-0.53.4/apigeecli.egg-info}/PKG-INFO

@@ -1,12 +1,13 @@
 Metadata-Version: 2.1
 Name: apigeecli
-Version: 0.53.2
-Summary: apigee-cli is an unofficial command-line interface tool designed to simplify the use of the Apigee Edge Management API
+Version: 0.53.4
+Summary: The Apigee Edge command-line interface is an unofficial Python command-line tool built to simplify and automate Apigee Edge API usage, with support for SSO, MFA, and basic authentication.
 Home-page: https://github.com/darumatic/apigee-cli
 Author: Matthew Delotavo
 Author-email: matthew.t.delotavo@gmail.com
 License: Apache license 2.0
 Project-URL: Documentation, https://darumatic.github.io/apigee-cli/index.html
+Platform: UNKNOWN
 Classifier: Development Status :: 4 - Beta
 Classifier: Environment :: Console
 Classifier: Intended Audience :: Developers
@@ -22,23 +23,23 @@ License-File: NOTICE
 apigee-cli
 ==========
 
-⚠️ **Warning:** This project is no longer actively maintained and was created specifically for previous Darumatic clients.
-
 |License| |Python version| |Downloads|
 
-apigee-cli is a command-line interface tool designed to simplify the use of the Apigee Edge Management API. 
-It provides a user-friendly experience with features such as SSO support.
+.. warning::
+
+   This tool is no longer actively maintained.
+
+The Apigee Edge command-line interface is an unofficial Python command-line tool built to simplify and automate Apigee Edge API usage, with support for SSO, MFA, and basic authentication.
+
+Initially developed for Darumatic clients, this project remains available as a working proof of concept, proven reliable in production CI/CD pipelines. The custom plugins feature will remain functional even if Apigee Edge APIs stop working.
 
-It can be used for general administrative tasks, as a developer package, 
-and to support automation for common development tasks such as CI/CD. 
+I have created private forks for clients, where I continued to add features, fixes, and unit tests. However, I do not intend to maintain this public version. Feel free to explore and learn from the code.
 
-With the apigee-cli, you can manage your Apigee Edge credentials using environment variables, config files, 
-or command-line arguments. 
+If you’re up for a challenge, try updating the code to work with Apigee X :)
 
-The tool is highly experimental and is not affiliated with Apigee or Google. 
+.. note::
 
-For more information on getting started with the apigee-cli or for troubleshooting help, 
-refer to the documentation and links provided.
+   **apigee-cli** is highly experimental and is not affiliated with Apigee or Google.
 
 ------------
 Installation
@@ -144,6 +145,24 @@ We built and use the Apigee CLI to implement and distribute features that allow
 to manage CI/CD, perform self-service operations and promote our DevOps workflows
 which are difficult to perform using official tools.
 
+-------------
+Running Tests
+-------------
+
+This project uses `unittest` for testing its codebase. In order to run the tests, you will need to install the `coverage.py` tool. You can install it using pip:
+
+.. code-block:: bash
+
+   pip3 install coverage
+
+Once `coverage.py` is installed, you can run the tests using the `runtests` script:
+
+.. code-block:: bash
+
+   ./runtests
+
+This script will run all the tests in the `tests` directory and generate a coverage report.
+
 ------------
 Getting Help
 ------------
@@ -224,3 +243,5 @@ This is not an officially supported Google product.
 
 .. _`Apigee CI/CD Docker releases`: https://hub.docker.com/r/darumatic/apigee-cicd
 
+
+

{apigeecli-0.53.2 → apigeecli-0.53.4}/apigeecli.egg-info/SOURCES.txt

@@ -91,4 +91,7 @@ apigeecli.egg-info/dependency_links.txt
 apigeecli.egg-info/entry_points.txt
 apigeecli.egg-info/requires.txt
 apigeecli.egg-info/top_level.txt
-tests/__init__.py
+tests/__init__.py
+tests/test_auth.py
+tests/test_echo.py
+tests/test_encryption_utils.py

{apigeecli-0.53.2 → apigeecli-0.53.4}/apigeecli.egg-info/entry_points.txt

@@ -1,2 +1,3 @@
 [console_scripts]
 apigee = apigee.__main__:main
+

{apigeecli-0.53.2 → apigeecli-0.53.4}/apigeecli.egg-info/requires.txt

@@ -1,11 +1,11 @@
-click==8.1.3
+GitPython==3.1.30
+PyJWT==2.6.0
 click-aliases==1.0.1
 click-option-group==0.5.5
+click==8.1.3
 colorama==0.4.6
 coverage==7.0.1
-GitPython==3.1.30
 pudb==2022.1.3
-PyJWT==2.6.0
 pyotp==2.8.0
 python-gnupg<0.5.0,>=0.3.5
 requests==2.28.1

apigeecli-0.53.4/tests/test_auth.py

@@ -0,0 +1,63 @@
+import unittest
+from unittest.mock import patch, MagicMock
+
+from apigee.auth import get_access_token_for_sso
+
+class TestAuth(unittest.TestCase):
+    def setUp(self):
+        self.auth = MagicMock()
+        self.username = "test_user"
+        self.password = "test_password"
+        self.oauth_url = "https://example.com/oauth"
+        self.post_headers = {"Content-Type": "application/x-www-form-urlencoded"}
+        self.session = MagicMock()
+
+    @patch("apigee.auth.validate_refresh_token")
+    @patch("apigee.auth.get_sso_temporary_authentication_code")
+    @patch("builtins.open")
+    def test_get_access_token_for_sso_no_refresh_token(self, mock_open, mock_get_sso_temporary_authentication_code, mock_validate_refresh_token):
+        mock_validate_refresh_token.return_value = None
+        mock_get_sso_temporary_authentication_code.return_value = "test_passcode"
+
+        response_data = {
+            "access_token": "test_access_token",
+            "refresh_token": "test_refresh_token"
+        }
+        self.session.post.return_value.json.return_value = response_data
+
+        result = get_access_token_for_sso(
+            self.auth, self.username, self.password, self.oauth_url, self.post_headers, self.session, None
+        )
+
+        mock_get_sso_temporary_authentication_code.assert_called_once_with(f"https://{self.auth.zonename}.login.apigee.com/passcode")
+        self.session.post.assert_called_once_with(
+            f"https://{self.auth.zonename}.login.apigee.com/oauth/token", headers=self.post_headers, data="passcode=test_passcode&grant_type=password&response_type=token"
+        )
+        self.assertEqual(result, response_data)
+        # mock_open.assert_not_called()
+        mock_open.assert_called_once_with('/home/mdelotavo/.apigee/refresh_token', 'w')
+
+    @patch("apigee.auth.validate_refresh_token")
+    @patch("builtins.open")
+    def test_get_access_token_for_sso_with_refresh_token(self, mock_open, mock_validate_refresh_token):
+        mock_validate_refresh_token.return_value = "test_refresh_token"
+
+        response_data = {
+            "access_token": "test_access_token",
+            "refresh_token": "test_refresh_token"
+        }
+        self.session.post.return_value.json.return_value = response_data
+
+        result = get_access_token_for_sso(
+            self.auth, self.username, self.password, self.oauth_url, self.post_headers, self.session, None
+        )
+
+        self.session.post.assert_called_once_with(
+            f"https://{self.auth.zonename}.login.apigee.com/oauth/token", headers=self.post_headers, data="grant_type=refresh_token&refresh_token=test_refresh_token"
+        )
+        self.assertEqual(result, response_data)
+        # mock_open.assert_called_once_with('/root/.apigee/refresh_token', 'w')
+        mock_open.assert_not_called()
+
+if __name__ == '__main__':
+    unittest.main()

apigeecli-0.53.4/tests/test_echo.py

@@ -0,0 +1,35 @@
+import unittest
+from unittest.mock import patch
+from apigee.console import echo
+
+class TestEcho(unittest.TestCase):
+    @patch('builtins.print')
+    @patch('sys.exit')
+    def test_echo_silent(self, mock_exit, mock_print):
+        echo('Hello', make_silent=True, exit_status=1)
+        mock_print.assert_not_called()
+        mock_exit.assert_called_once_with(1)
+
+    @patch('builtins.print')
+    @patch('sys.exit')
+    def test_echo_not_silent(self, mock_exit, mock_print):
+        echo('Hello', make_silent=False)
+        mock_print.assert_called_once_with('Hello', end='\n', flush=False)
+        mock_exit.assert_not_called()
+
+    @patch('builtins.print')
+    @patch('sys.exit')
+    def test_echo_verbosity(self, mock_exit, mock_print):
+        echo('Hello', current_verbosity=1, expected_verbosity=0)
+        mock_print.assert_called_once_with('Hello', end='\n', flush=False)
+        mock_exit.assert_not_called()
+
+    @patch('builtins.print')
+    @patch('sys.exit')
+    def test_echo_no_verbosity(self, mock_exit, mock_print):
+        echo('Hello', current_verbosity=0, expected_verbosity=1)
+        mock_print.assert_not_called()
+        mock_exit.assert_not_called()
+
+if __name__ == '__main__':
+    unittest.main()

apigeecli-0.53.4/tests/test_encryption_utils.py

@@ -0,0 +1,32 @@
+import unittest
+
+from apigee.encryption_utils import (ENCRYPTED_HEADER_BEGIN, ENCRYPTED_HEADER_END,
+                           decrypt_message_with_gpg, encrypt_message_with_gpg)
+
+class TestEncryptionUtils(unittest.TestCase):
+    ciphertext = None
+
+    @classmethod
+    def setUpClass(cls):
+        cls.secret = "password123!"
+        cls.plaintext = "Hello, World!"
+        cls.ciphertext = f"{ENCRYPTED_HEADER_BEGIN}{encrypt_message_with_gpg(cls.secret, cls.plaintext)}{ENCRYPTED_HEADER_END}"
+
+    def test_decrypt_message_with_gpg_encoded(self):
+        result = decrypt_message_with_gpg(self.secret, self.ciphertext, encoded=True)
+        self.assertEqual(result, self.plaintext)
+
+    def test_decrypt_message_with_gpg_encoded_plaintext_none(self):
+        result = decrypt_message_with_gpg(self.secret, None, encoded=True)
+        self.assertEqual(result, "")
+
+    def test_decrypt_message_with_gpg_encoded_plaintext_empty(self):
+        result = decrypt_message_with_gpg(self.secret, "", encoded=True)
+        self.assertEqual(result, "")
+
+    def test_decrypt_message_with_gpg_no_encrypted_header(self):
+        result = decrypt_message_with_gpg(self.secret, self.plaintext)
+        self.assertEqual(result, "")
+
+if __name__ == '__main__':
+    unittest.main()