PyPI - django-bolt - Versions diffs - 0.1.0__cp310-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl - Mend

django-bolt 0.1.0__cp310-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of django-bolt might be problematic. Click here for more details.

Files changed (128) hide show

django_bolt/__init__.py +147 -0
django_bolt/_core.abi3.so +0 -0
django_bolt/admin/__init__.py +25 -0
django_bolt/admin/admin_detection.py +179 -0
django_bolt/admin/asgi_bridge.py +267 -0
django_bolt/admin/routes.py +91 -0
django_bolt/admin/static.py +155 -0
django_bolt/admin/static_routes.py +111 -0
django_bolt/api.py +1011 -0
django_bolt/apps.py +7 -0
django_bolt/async_collector.py +228 -0
django_bolt/auth/README.md +464 -0
django_bolt/auth/REVOCATION_EXAMPLE.md +391 -0
django_bolt/auth/__init__.py +84 -0
django_bolt/auth/backends.py +236 -0
django_bolt/auth/guards.py +224 -0
django_bolt/auth/jwt_utils.py +212 -0
django_bolt/auth/revocation.py +286 -0
django_bolt/auth/token.py +335 -0
django_bolt/binding.py +363 -0
django_bolt/bootstrap.py +77 -0
django_bolt/cli.py +133 -0
django_bolt/compression.py +104 -0
django_bolt/decorators.py +159 -0
django_bolt/dependencies.py +128 -0
django_bolt/error_handlers.py +305 -0
django_bolt/exceptions.py +294 -0
django_bolt/health.py +129 -0
django_bolt/logging/__init__.py +6 -0
django_bolt/logging/config.py +357 -0
django_bolt/logging/middleware.py +296 -0
django_bolt/management/__init__.py +1 -0
django_bolt/management/commands/__init__.py +0 -0
django_bolt/management/commands/runbolt.py +427 -0
django_bolt/middleware/__init__.py +32 -0
django_bolt/middleware/compiler.py +131 -0
django_bolt/middleware/middleware.py +247 -0
django_bolt/openapi/__init__.py +23 -0
django_bolt/openapi/config.py +196 -0
django_bolt/openapi/plugins.py +439 -0
django_bolt/openapi/routes.py +152 -0
django_bolt/openapi/schema_generator.py +581 -0
django_bolt/openapi/spec/__init__.py +68 -0
django_bolt/openapi/spec/base.py +74 -0
django_bolt/openapi/spec/callback.py +24 -0
django_bolt/openapi/spec/components.py +72 -0
django_bolt/openapi/spec/contact.py +21 -0
django_bolt/openapi/spec/discriminator.py +25 -0
django_bolt/openapi/spec/encoding.py +67 -0
django_bolt/openapi/spec/enums.py +41 -0
django_bolt/openapi/spec/example.py +36 -0
django_bolt/openapi/spec/external_documentation.py +21 -0
django_bolt/openapi/spec/header.py +132 -0
django_bolt/openapi/spec/info.py +50 -0
django_bolt/openapi/spec/license.py +28 -0
django_bolt/openapi/spec/link.py +66 -0
django_bolt/openapi/spec/media_type.py +51 -0
django_bolt/openapi/spec/oauth_flow.py +36 -0
django_bolt/openapi/spec/oauth_flows.py +28 -0
django_bolt/openapi/spec/open_api.py +87 -0
django_bolt/openapi/spec/operation.py +105 -0
django_bolt/openapi/spec/parameter.py +147 -0
django_bolt/openapi/spec/path_item.py +78 -0
django_bolt/openapi/spec/paths.py +27 -0
django_bolt/openapi/spec/reference.py +38 -0
django_bolt/openapi/spec/request_body.py +38 -0
django_bolt/openapi/spec/response.py +48 -0
django_bolt/openapi/spec/responses.py +44 -0
django_bolt/openapi/spec/schema.py +678 -0
django_bolt/openapi/spec/security_requirement.py +28 -0
django_bolt/openapi/spec/security_scheme.py +69 -0
django_bolt/openapi/spec/server.py +34 -0
django_bolt/openapi/spec/server_variable.py +32 -0
django_bolt/openapi/spec/tag.py +32 -0
django_bolt/openapi/spec/xml.py +44 -0
django_bolt/pagination.py +669 -0
django_bolt/param_functions.py +49 -0
django_bolt/params.py +337 -0
django_bolt/request_parsing.py +128 -0
django_bolt/responses.py +214 -0
django_bolt/router.py +48 -0
django_bolt/serialization.py +193 -0
django_bolt/status_codes.py +321 -0
django_bolt/testing/__init__.py +10 -0
django_bolt/testing/client.py +274 -0
django_bolt/testing/helpers.py +93 -0
django_bolt/tests/__init__.py +0 -0
django_bolt/tests/admin_tests/__init__.py +1 -0
django_bolt/tests/admin_tests/conftest.py +6 -0
django_bolt/tests/admin_tests/test_admin_with_django.py +278 -0
django_bolt/tests/admin_tests/urls.py +9 -0
django_bolt/tests/cbv/__init__.py +0 -0
django_bolt/tests/cbv/test_class_views.py +570 -0
django_bolt/tests/cbv/test_class_views_django_orm.py +703 -0
django_bolt/tests/cbv/test_class_views_features.py +1173 -0
django_bolt/tests/cbv/test_class_views_with_client.py +622 -0
django_bolt/tests/conftest.py +165 -0
django_bolt/tests/test_action_decorator.py +399 -0
django_bolt/tests/test_auth_secret_key.py +83 -0
django_bolt/tests/test_decorator_syntax.py +159 -0
django_bolt/tests/test_error_handling.py +481 -0
django_bolt/tests/test_file_response.py +192 -0
django_bolt/tests/test_global_cors.py +172 -0
django_bolt/tests/test_guards_auth.py +441 -0
django_bolt/tests/test_guards_integration.py +303 -0
django_bolt/tests/test_health.py +283 -0
django_bolt/tests/test_integration_validation.py +400 -0
django_bolt/tests/test_json_validation.py +536 -0
django_bolt/tests/test_jwt_auth.py +327 -0
django_bolt/tests/test_jwt_token.py +458 -0
django_bolt/tests/test_logging.py +837 -0
django_bolt/tests/test_logging_merge.py +419 -0
django_bolt/tests/test_middleware.py +492 -0
django_bolt/tests/test_middleware_server.py +230 -0
django_bolt/tests/test_model_viewset.py +323 -0
django_bolt/tests/test_models.py +24 -0
django_bolt/tests/test_pagination.py +1258 -0
django_bolt/tests/test_parameter_validation.py +178 -0
django_bolt/tests/test_syntax.py +626 -0
django_bolt/tests/test_testing_utilities.py +163 -0
django_bolt/tests/test_testing_utilities_simple.py +123 -0
django_bolt/tests/test_viewset_unified.py +346 -0
django_bolt/typing.py +273 -0
django_bolt/views.py +1110 -0
django_bolt-0.1.0.dist-info/METADATA +629 -0
django_bolt-0.1.0.dist-info/RECORD +128 -0
django_bolt-0.1.0.dist-info/WHEEL +4 -0
django_bolt-0.1.0.dist-info/entry_points.txt +2 -0

django_bolt/tests/test_jwt_token.py ADDED Viewed

@@ -0,0 +1,458 @@
+"""
+Test JWT Token class for Django-Bolt.
+Tests the Token dataclass for encoding/decoding JWTs with performance focus.
+"""
+import pytest
+from datetime import datetime, timedelta, timezone
+from django_bolt.auth import Token
+import jwt as pyjwt
+class TestTokenCreation:
+    """Test Token creation and validation"""
+    def test_create_basic_token(self):
+        """Test creating a basic token"""
+        exp = datetime.now(timezone.utc) + timedelta(hours=1)
+        token = Token(
+            sub="user123",
+            exp=exp,
+        )
+        assert token.sub == "user123"
+        assert token.exp == exp.replace(microsecond=0)  # Microseconds stripped
+        assert token.iat <= datetime.now(timezone.utc)
+    def test_create_token_with_staff_flags(self):
+        """Test creating token with staff/admin flags"""
+        exp = datetime.now(timezone.utc) + timedelta(hours=1)
+        token = Token(
+            sub="admin123",
+            exp=exp,
+            is_staff=True,
+            is_admin=True,
+        )
+        assert token.is_staff is True
+        assert token.is_admin is True
+    def test_create_token_with_permissions(self):
+        """Test creating token with permissions list"""
+        exp = datetime.now(timezone.utc) + timedelta(hours=1)
+        token = Token(
+            sub="user123",
+            exp=exp,
+            permissions=["users.view", "users.create", "posts.edit"],
+        )
+        assert len(token.permissions) == 3
+        assert "users.view" in token.permissions
+    def test_create_token_with_audience_issuer(self):
+        """Test creating token with aud and iss claims"""
+        exp = datetime.now(timezone.utc) + timedelta(hours=1)
+        token = Token(
+            sub="user123",
+            exp=exp,
+            aud="my-api",
+            iss="auth-service",
+        )
+        assert token.aud == "my-api"
+        assert token.iss == "auth-service"
+    def test_create_token_with_extras(self):
+        """Test creating token with custom extra claims"""
+        exp = datetime.now(timezone.utc) + timedelta(hours=1)
+        token = Token(
+            sub="user123",
+            exp=exp,
+            extras={
+                "tenant_id": "acme-corp",
+                "role": "manager",
+                "department": "engineering",
+            }
+        )
+        assert token.extras["tenant_id"] == "acme-corp"
+        assert token.extras["role"] == "manager"
+    def test_create_factory_method(self):
+        """Test Token.create() factory method"""
+        token = Token.create(
+            sub="user123",
+            expires_delta=timedelta(minutes=30),
+            issuer="my-service",
+            is_staff=True,
+            permissions=["read", "write"],
+            tenant="acme",
+        )
+        assert token.sub == "user123"
+        assert token.iss == "my-service"
+        assert token.is_staff is True
+        assert token.permissions == ["read", "write"]
+        assert token.extras["tenant"] == "acme"
+        # Check expiration is ~30 minutes from now
+        now = datetime.now(timezone.utc)
+        exp_delta = (token.exp - now).total_seconds()
+        assert 1790 < exp_delta < 1810  # ~30 minutes with some tolerance
+class TestTokenValidation:
+    """Test Token validation logic"""
+    def test_empty_subject_raises_error(self):
+        """Test that empty subject raises ValueError"""
+        exp = datetime.now(timezone.utc) + timedelta(hours=1)
+        with pytest.raises(ValueError, match="sub.*must be.*non-empty"):
+            Token(sub="", exp=exp)
+    def test_past_expiration_raises_error(self):
+        """Test that past expiration raises ValueError"""
+        exp = datetime.now(timezone.utc) - timedelta(hours=1)
+        with pytest.raises(ValueError, match="exp.*must be in the future"):
+            Token(sub="user123", exp=exp)
+    def test_future_iat_raises_error(self):
+        """Test that future iat raises ValueError"""
+        exp = datetime.now(timezone.utc) + timedelta(hours=2)
+        iat = datetime.now(timezone.utc) + timedelta(hours=1)
+        with pytest.raises(ValueError, match="iat.*must be current or past"):
+            Token(sub="user123", exp=exp, iat=iat)
+    def test_datetime_normalization(self):
+        """Test that datetimes are normalized to UTC without microseconds"""
+        exp = datetime.now(timezone.utc) + timedelta(hours=1)
+        exp_with_micros = exp.replace(microsecond=123456)
+        token = Token(sub="user123", exp=exp_with_micros)
+        # Should have microseconds stripped
+        assert token.exp.microsecond == 0
+        assert token.iat.microsecond == 0
+class TestTokenEncoding:
+    """Test Token encoding to JWT strings"""
+    def test_encode_basic_token(self):
+        """Test encoding a basic token"""
+        exp = datetime.now(timezone.utc) + timedelta(hours=1)
+        token = Token(sub="user123", exp=exp)
+        secret = "test-secret"
+        encoded = token.encode(secret=secret)
+        # Should be a valid JWT string (3 parts separated by dots)
+        assert isinstance(encoded, str)
+        parts = encoded.split('.')
+        assert len(parts) == 3
+        # Decode to verify contents
+        decoded = pyjwt.decode(encoded, secret, algorithms=["HS256"])
+        assert decoded["sub"] == "user123"
+        assert "exp" in decoded
+        assert "iat" in decoded
+    def test_encode_with_claims(self):
+        """Test encoding token with all claims"""
+        exp = datetime.now(timezone.utc) + timedelta(hours=1)
+        token = Token(
+            sub="user123",
+            exp=exp,
+            is_staff=True,
+            is_admin=False,
+            permissions=["read", "write"],
+            aud="my-api",
+            iss="auth-service",
+        )
+        secret = "test-secret"
+        encoded = token.encode(secret=secret)
+        decoded = pyjwt.decode(
+            encoded,
+            secret,
+            algorithms=["HS256"],
+            audience="my-api",
+            issuer="auth-service"
+        )
+        assert decoded["sub"] == "user123"
+        assert decoded["is_staff"] is True
+        assert decoded["is_admin"] is False
+        assert decoded["permissions"] == ["read", "write"]
+        assert decoded["aud"] == "my-api"
+        assert decoded["iss"] == "auth-service"
+    def test_encode_with_different_algorithms(self):
+        """Test encoding with different algorithms"""
+        exp = datetime.now(timezone.utc) + timedelta(hours=1)
+        token = Token(sub="user123", exp=exp)
+        for algorithm in ["HS256", "HS384", "HS512"]:
+            secret = "test-secret-for-" + algorithm
+            encoded = token.encode(secret=secret, algorithm=algorithm)
+            decoded = pyjwt.decode(encoded, secret, algorithms=[algorithm])
+            assert decoded["sub"] == "user123"
+    def test_encode_with_custom_headers(self):
+        """Test encoding with custom JWT headers"""
+        exp = datetime.now(timezone.utc) + timedelta(hours=1)
+        token = Token(sub="user123", exp=exp)
+        secret = "test-secret"
+        headers = {"kid": "key-id-123", "typ": "JWT"}
+        encoded = token.encode(secret=secret, headers=headers)
+        # Decode without verification to check headers
+        unverified = pyjwt.get_unverified_header(encoded)
+        assert unverified["kid"] == "key-id-123"
+class TestTokenDecoding:
+    """Test Token decoding from JWT strings"""
+    def test_decode_basic_token(self):
+        """Test decoding a basic token"""
+        exp = datetime.now(timezone.utc) + timedelta(hours=1)
+        original = Token(sub="user123", exp=exp)
+        secret = "test-secret"
+        encoded = original.encode(secret=secret)
+        # Decode back
+        decoded = Token.decode(encoded, secret=secret)
+        assert decoded.sub == "user123"
+        assert decoded.exp.timestamp() == pytest.approx(original.exp.timestamp(), abs=1)
+        assert decoded.iat.timestamp() == pytest.approx(original.iat.timestamp(), abs=1)
+    def test_decode_with_all_claims(self):
+        """Test decoding token with all claims"""
+        exp = datetime.now(timezone.utc) + timedelta(hours=1)
+        original = Token(
+            sub="admin123",
+            exp=exp,
+            is_staff=True,
+            is_admin=True,
+            permissions=["full-access"],
+            aud="my-api",
+            iss="auth-service",
+            jti="unique-id-123",
+        )
+        secret = "test-secret"
+        encoded = original.encode(secret=secret)
+        decoded = Token.decode(
+            encoded,
+            secret=secret,
+            audience="my-api",
+            issuer="auth-service"
+        )
+        assert decoded.sub == "admin123"
+        assert decoded.is_staff is True
+        assert decoded.is_admin is True
+        assert decoded.permissions == ["full-access"]
+        assert decoded.aud == "my-api"
+        assert decoded.iss == "auth-service"
+        assert decoded.jti == "unique-id-123"
+    def test_decode_with_extras(self):
+        """Test decoding token with extra claims"""
+        exp = datetime.now(timezone.utc) + timedelta(hours=1)
+        original = Token(
+            sub="user123",
+            exp=exp,
+            extras={"tenant": "acme", "role": "admin", "level": 5}
+        )
+        secret = "test-secret"
+        encoded = original.encode(secret=secret)
+        decoded = Token.decode(encoded, secret=secret)
+        assert decoded.extras["tenant"] == "acme"
+        assert decoded.extras["role"] == "admin"
+        assert decoded.extras["level"] == 5
+    def test_decode_expired_token_raises_error(self):
+        """Test that decoding expired token raises ValueError"""
+        # Create token that will be expired
+        payload = {
+            "sub": "user123",
+            "exp": int((datetime.now(timezone.utc) - timedelta(hours=1)).timestamp()),
+            "iat": int((datetime.now(timezone.utc) - timedelta(hours=2)).timestamp()),
+        }
+        secret = "test-secret"
+        encoded = pyjwt.encode(payload, secret, algorithm="HS256")
+        with pytest.raises(ValueError, match="Failed to decode token"):
+            Token.decode(encoded, secret=secret)
+    def test_decode_with_wrong_secret_raises_error(self):
+        """Test that decoding with wrong secret raises ValueError"""
+        exp = datetime.now(timezone.utc) + timedelta(hours=1)
+        token = Token(sub="user123", exp=exp)
+        encoded = token.encode(secret="secret1")
+        with pytest.raises(ValueError, match="Failed to decode token"):
+            Token.decode(encoded, secret="wrong-secret")
+    def test_decode_with_audience_mismatch_raises_error(self):
+        """Test that audience mismatch raises ValueError"""
+        exp = datetime.now(timezone.utc) + timedelta(hours=1)
+        token = Token(sub="user123", exp=exp, aud="api1")
+        secret = "test-secret"
+        encoded = token.encode(secret=secret)
+        with pytest.raises(ValueError, match="Failed to decode token"):
+            Token.decode(encoded, secret=secret, audience="wrong-audience")
+    def test_decode_skip_expiry_verification(self):
+        """Test decoding with expiry verification disabled"""
+        # Create expired token
+        payload = {
+            "sub": "user123",
+            "exp": int((datetime.now(timezone.utc) - timedelta(hours=1)).timestamp()),
+            "iat": int((datetime.now(timezone.utc) - timedelta(hours=2)).timestamp()),
+        }
+        secret = "test-secret"
+        encoded = pyjwt.encode(payload, secret, algorithm="HS256")
+        # Should succeed with verify_exp=False
+        decoded = Token.decode(encoded, secret=secret, verify_exp=False)
+        assert decoded.sub == "user123"
+class TestTokenToDictConversion:
+    """Test Token.to_dict() conversion"""
+    def test_to_dict_basic(self):
+        """Test converting token to dict"""
+        exp = datetime.now(timezone.utc) + timedelta(hours=1)
+        token = Token(sub="user123", exp=exp)
+        d = token.to_dict()
+        assert d["sub"] == "user123"
+        assert isinstance(d["exp"], int)  # Unix timestamp
+        assert isinstance(d["iat"], int)
+        assert d["exp"] > d["iat"]
+    def test_to_dict_with_optional_fields(self):
+        """Test to_dict with optional fields"""
+        exp = datetime.now(timezone.utc) + timedelta(hours=1)
+        token = Token(
+            sub="user123",
+            exp=exp,
+            aud="my-api",
+            iss="auth",
+            jti="unique",
+            is_staff=True,
+        )
+        d = token.to_dict()
+        assert d["aud"] == "my-api"
+        assert d["iss"] == "auth"
+        assert d["jti"] == "unique"
+        assert d["is_staff"] is True
+    def test_to_dict_excludes_none_values(self):
+        """Test that None values are excluded from dict"""
+        exp = datetime.now(timezone.utc) + timedelta(hours=1)
+        token = Token(
+            sub="user123",
+            exp=exp,
+            aud=None,
+            iss=None,
+        )
+        d = token.to_dict()
+        assert "aud" not in d
+        assert "iss" not in d
+    def test_to_dict_includes_extras(self):
+        """Test that extras are included in dict"""
+        exp = datetime.now(timezone.utc) + timedelta(hours=1)
+        token = Token(
+            sub="user123",
+            exp=exp,
+            extras={"custom1": "value1", "custom2": 42}
+        )
+        d = token.to_dict()
+        assert d["custom1"] == "value1"
+        assert d["custom2"] == 42
+class TestTokenRoundTrip:
+    """Test encoding and decoding round-trip"""
+    def test_round_trip_preserves_data(self):
+        """Test that encode->decode preserves all data"""
+        exp = datetime.now(timezone.utc) + timedelta(hours=1)
+        original = Token(
+            sub="user123",
+            exp=exp,
+            is_staff=True,
+            is_admin=False,
+            permissions=["read", "write", "delete"],
+            aud="my-api",
+            iss="auth-service",
+            extras={"tenant": "acme", "role": "manager"}
+        )
+        secret = "test-secret"
+        encoded = original.encode(secret=secret)
+        decoded = Token.decode(
+            encoded,
+            secret=secret,
+            audience="my-api",
+            issuer="auth-service"
+        )
+        # Compare all fields (timestamps may differ slightly due to rounding)
+        assert decoded.sub == original.sub
+        assert decoded.exp.timestamp() == pytest.approx(original.exp.timestamp(), abs=1)
+        assert decoded.is_staff == original.is_staff
+        assert decoded.is_admin == original.is_admin
+        assert decoded.permissions == original.permissions
+        assert decoded.aud == original.aud
+        assert decoded.iss == original.iss
+        assert decoded.extras == original.extras
+    def test_multiple_round_trips(self):
+        """Test multiple encode/decode cycles"""
+        exp = datetime.now(timezone.utc) + timedelta(hours=1)
+        token = Token(sub="user123", exp=exp, is_staff=True)
+        secret = "test-secret"
+        # Multiple round trips
+        for _ in range(3):
+            encoded = token.encode(secret=secret)
+            token = Token.decode(encoded, secret=secret)
+            assert token.sub == "user123"
+            assert token.is_staff is True
+if __name__ == "__main__":
+    pytest.main([__file__, "-v"])