PyPI - django-bolt - Versions diffs - 0.1.0__cp310-abi3-win_amd64.whl → 0.1.2__cp310-abi3-win_amd64.whl - Mend

django-bolt 0.1.0__cp310-abi3-win_amd64.whl → 0.1.2__cp310-abi3-win_amd64.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of django-bolt might be problematic. Click here for more details.

Files changed (56) hide show

django_bolt/__init__.py +2 -2
django_bolt/_core.pyd +0 -0
django_bolt/_json.py +169 -0
django_bolt/admin/static_routes.py +15 -21
django_bolt/api.py +181 -61
django_bolt/auth/__init__.py +2 -2
django_bolt/decorators.py +15 -3
django_bolt/dependencies.py +30 -24
django_bolt/error_handlers.py +2 -1
django_bolt/openapi/plugins.py +3 -2
django_bolt/openapi/schema_generator.py +65 -20
django_bolt/pagination.py +2 -1
django_bolt/responses.py +3 -2
django_bolt/serialization.py +5 -4
{django_bolt-0.1.0.dist-info → django_bolt-0.1.2.dist-info}/METADATA +181 -201
{django_bolt-0.1.0.dist-info → django_bolt-0.1.2.dist-info}/RECORD +18 -55
django_bolt/auth/README.md +0 -464
django_bolt/auth/REVOCATION_EXAMPLE.md +0 -391
django_bolt/tests/__init__.py +0 -0
django_bolt/tests/admin_tests/__init__.py +0 -1
django_bolt/tests/admin_tests/conftest.py +0 -6
django_bolt/tests/admin_tests/test_admin_with_django.py +0 -278
django_bolt/tests/admin_tests/urls.py +0 -9
django_bolt/tests/cbv/__init__.py +0 -0
django_bolt/tests/cbv/test_class_views.py +0 -570
django_bolt/tests/cbv/test_class_views_django_orm.py +0 -703
django_bolt/tests/cbv/test_class_views_features.py +0 -1173
django_bolt/tests/cbv/test_class_views_with_client.py +0 -622
django_bolt/tests/conftest.py +0 -165
django_bolt/tests/test_action_decorator.py +0 -399
django_bolt/tests/test_auth_secret_key.py +0 -83
django_bolt/tests/test_decorator_syntax.py +0 -159
django_bolt/tests/test_error_handling.py +0 -481
django_bolt/tests/test_file_response.py +0 -192
django_bolt/tests/test_global_cors.py +0 -172
django_bolt/tests/test_guards_auth.py +0 -441
django_bolt/tests/test_guards_integration.py +0 -303
django_bolt/tests/test_health.py +0 -283
django_bolt/tests/test_integration_validation.py +0 -400
django_bolt/tests/test_json_validation.py +0 -536
django_bolt/tests/test_jwt_auth.py +0 -327
django_bolt/tests/test_jwt_token.py +0 -458
django_bolt/tests/test_logging.py +0 -837
django_bolt/tests/test_logging_merge.py +0 -419
django_bolt/tests/test_middleware.py +0 -492
django_bolt/tests/test_middleware_server.py +0 -230
django_bolt/tests/test_model_viewset.py +0 -323
django_bolt/tests/test_models.py +0 -24
django_bolt/tests/test_pagination.py +0 -1258
django_bolt/tests/test_parameter_validation.py +0 -178
django_bolt/tests/test_syntax.py +0 -626
django_bolt/tests/test_testing_utilities.py +0 -163
django_bolt/tests/test_testing_utilities_simple.py +0 -123
django_bolt/tests/test_viewset_unified.py +0 -346
{django_bolt-0.1.0.dist-info → django_bolt-0.1.2.dist-info}/WHEEL +0 -0
{django_bolt-0.1.0.dist-info → django_bolt-0.1.2.dist-info}/entry_points.txt +0 -0

django_bolt/tests/test_guards_auth.py DELETED Viewed

@@ -1,441 +0,0 @@
-"""
-Test guards and authentication system for Django-Bolt.
-Tests the new DRF-inspired guards and authentication classes.
-"""
-import jwt
-import time
-import pytest
-from django_bolt import BoltAPI
-from django_bolt.auth import (
-    JWTAuthentication,
-    APIKeyAuthentication,
-    AuthContext,
-    AllowAny,
-    IsAuthenticated,
-    IsAdminUser,
-    IsStaff,
-    HasPermission,
-    HasAnyPermission,
-    HasAllPermissions
-)
-class TestAuthenticationClasses:
-    """Test authentication class configurations"""
-    def test_jwt_authentication_basic(self):
-        """Test JWT authentication class initialization"""
-        auth = JWTAuthentication(secret="test-secret")
-        assert auth.secret == "test-secret"
-        assert auth.algorithms == ["HS256"]
-        assert auth.scheme_name == "jwt"
-        metadata = auth.to_metadata()
-        assert metadata["type"] == "jwt"
-        assert metadata["secret"] == "test-secret"
-        assert metadata["algorithms"] == ["HS256"]
-    def test_jwt_authentication_with_options(self):
-        """Test JWT authentication with all options"""
-        auth = JWTAuthentication(
-            secret="my-secret",
-            algorithms=["HS256", "HS384"],
-            header="x-auth-token",
-            audience="my-app",
-            issuer="auth-server"
-        )
-        metadata = auth.to_metadata()
-        assert metadata["secret"] == "my-secret"
-        assert metadata["algorithms"] == ["HS256", "HS384"]
-        assert metadata["header"] == "x-auth-token"
-        assert metadata["audience"] == "my-app"
-        assert metadata["issuer"] == "auth-server"
-    def test_api_key_authentication(self):
-        """Test API key authentication class"""
-        auth = APIKeyAuthentication(
-            api_keys={"key1", "key2", "key3"},
-            header="x-api-key"
-        )
-        assert auth.scheme_name == "api_key"
-        metadata = auth.to_metadata()
-        assert metadata["type"] == "api_key"
-        assert set(metadata["api_keys"]) == {"key1", "key2", "key3"}
-        assert metadata["header"] == "x-api-key"
-    def test_api_key_with_permissions(self):
-        """Test API key authentication with permission mapping"""
-        auth = APIKeyAuthentication(
-            api_keys={"admin-key", "read-key"},
-            key_permissions={
-                "admin-key": ["users.create", "users.delete"],
-                "read-key": ["users.view"]
-            }
-        )
-        metadata = auth.to_metadata()
-        assert "admin-key" in metadata["key_permissions"]
-        assert "users.create" in metadata["key_permissions"]["admin-key"]
-class TestPermissionGuards:
-    """Test permission guard classes"""
-    def test_allow_any(self):
-        """Test AllowAny guard"""
-        guard = AllowAny()
-        assert guard.guard_name == "allow_any"
-        assert guard.to_metadata() == {"type": "allow_any"}
-        # Should allow without auth context
-        assert guard.has_permission(None) == True
-    def test_is_authenticated(self):
-        """Test IsAuthenticated guard"""
-        guard = IsAuthenticated()
-        assert guard.guard_name == "is_authenticated"
-        assert guard.to_metadata() == {"type": "is_authenticated"}
-        # Should deny without auth context
-        assert guard.has_permission(None) == False
-        # Should allow with auth context
-        ctx = AuthContext(user_id="user123")
-        assert guard.has_permission(ctx) == True
-    def test_is_admin(self):
-        """Test IsAdminUser guard"""
-        guard = IsAdminUser()
-        assert guard.guard_name == "is_admin"
-        # Should deny without auth
-        assert guard.has_permission(None) == False
-        # Should deny non-admin user
-        ctx = AuthContext(user_id="user123", is_admin=False)
-        assert guard.has_permission(ctx) == False
-        # Should allow admin user
-        ctx = AuthContext(user_id="admin", is_admin=True)
-        assert guard.has_permission(ctx) == True
-    def test_is_staff(self):
-        """Test IsStaff guard"""
-        guard = IsStaff()
-        assert guard.guard_name == "is_staff"
-        # Should deny non-staff
-        ctx = AuthContext(user_id="user", is_staff=False)
-        assert guard.has_permission(ctx) == False
-        # Should allow staff
-        ctx = AuthContext(user_id="staff", is_staff=True)
-        assert guard.has_permission(ctx) == True
-    def test_has_permission(self):
-        """Test HasPermission guard"""
-        guard = HasPermission("users.delete")
-        assert guard.guard_name == "has_permission"
-        metadata = guard.to_metadata()
-        assert metadata["type"] == "has_permission"
-        assert metadata["permission"] == "users.delete"
-        # Should deny without permission
-        ctx = AuthContext(user_id="user", permissions={"users.view"})
-        assert guard.has_permission(ctx) == False
-        # Should allow with permission
-        ctx = AuthContext(user_id="user", permissions={"users.delete", "users.view"})
-        assert guard.has_permission(ctx) == True
-    def test_has_any_permission(self):
-        """Test HasAnyPermission guard"""
-        guard = HasAnyPermission("users.create", "users.update")
-        metadata = guard.to_metadata()
-        assert metadata["type"] == "has_any_permission"
-        assert set(metadata["permissions"]) == {"users.create", "users.update"}
-        # Should deny without any permission
-        ctx = AuthContext(user_id="user", permissions={"users.view"})
-        assert guard.has_permission(ctx) == False
-        # Should allow with one permission
-        ctx = AuthContext(user_id="user", permissions={"users.view", "users.create"})
-        assert guard.has_permission(ctx) == True
-    def test_has_all_permissions(self):
-        """Test HasAllPermissions guard"""
-        guard = HasAllPermissions("users.create", "users.delete")
-        metadata = guard.to_metadata()
-        assert metadata["type"] == "has_all_permissions"
-        # Should deny without all permissions
-        ctx = AuthContext(user_id="user", permissions={"users.create"})
-        assert guard.has_permission(ctx) == False
-        # Should allow with all permissions
-        ctx = AuthContext(user_id="user", permissions={"users.create", "users.delete", "users.view"})
-        assert guard.has_permission(ctx) == True
-class TestRouteDecoratorAPI:
-    """Test route decorator with guards and auth parameters"""
-    def test_route_with_guards(self):
-        """Test route decorator with guards parameter"""
-        api = BoltAPI()
-        @api.get("/admin", guards=[IsAdminUser()])
-        async def admin_endpoint():
-            return {"message": "admin only"}
-        # Check that metadata was compiled
-        handler = api._handlers[0]
-        handler_id = 0
-        assert handler_id in api._handler_middleware
-        metadata = api._handler_middleware[handler_id]
-        assert "guards" in metadata
-        assert len(metadata["guards"]) == 1
-        assert metadata["guards"][0]["type"] == "is_admin"
-    def test_route_with_auth_override(self):
-        """Test route with custom auth backend"""
-        api = BoltAPI()
-        @api.get(
-            "/api-only",
-            auth=[APIKeyAuthentication(api_keys={"key1"})],
-            guards=[IsAuthenticated()]
-        )
-        async def api_endpoint():
-            return {"message": "API key only"}
-        handler_id = 0
-        metadata = api._handler_middleware[handler_id]
-        assert "auth_backends" in metadata
-        assert len(metadata["auth_backends"]) == 1
-        assert metadata["auth_backends"][0]["type"] == "api_key"
-        assert "guards" in metadata
-        assert metadata["guards"][0]["type"] == "is_authenticated"
-    def test_route_with_multiple_guards(self):
-        """Test route with multiple guards"""
-        api = BoltAPI()
-        @api.get("/restricted", guards=[
-            IsAuthenticated(),
-            IsStaff(),
-            HasPermission("users.delete")
-        ])
-        async def restricted_endpoint():
-            return {"message": "highly restricted"}
-        handler_id = 0
-        metadata = api._handler_middleware[handler_id]
-        assert len(metadata["guards"]) == 3
-        assert metadata["guards"][0]["type"] == "is_authenticated"
-        assert metadata["guards"][1]["type"] == "is_staff"
-        assert metadata["guards"][2]["type"] == "has_permission"
-    def test_public_route_with_allow_any(self):
-        """Test that AllowAny explicitly bypasses global defaults"""
-        api = BoltAPI()
-        @api.get("/public", guards=[AllowAny()])
-        async def public_endpoint():
-            return {"message": "public"}
-        handler_id = 0
-        metadata = api._handler_middleware[handler_id]
-        assert "guards" in metadata
-        assert metadata["guards"][0]["type"] == "allow_any"
-class TestMetadataCompilation:
-    """Test that metadata is properly compiled and merged"""
-    def test_global_auth_defaults(self):
-        """Test that global auth defaults are used when no per-route auth"""
-        import django
-        from django.conf import settings
-        if not settings.configured:
-            settings.configure(
-                SECRET_KEY="test-key",
-                BOLT_AUTHENTICATION_CLASSES=[
-                    JWTAuthentication(secret="global-secret")
-                ],
-                BOLT_DEFAULT_PERMISSION_CLASSES=[IsAuthenticated()]
-            )
-            django.setup()
-        api = BoltAPI()
-        @api.get("/default-protected")
-        async def protected():
-            return {"message": "uses global defaults"}
-        # Should use global defaults
-        handler_id = 0
-        if handler_id in api._handler_middleware:
-            metadata = api._handler_middleware[handler_id]
-            # Global defaults should be applied
-            assert "auth_backends" in metadata or "guards" in metadata
-    def test_per_route_override_precedence(self):
-        """Test that per-route auth/guards override global defaults"""
-        api = BoltAPI()
-        @api.get(
-            "/override",
-            auth=[APIKeyAuthentication(api_keys={"key1"})],
-            guards=[AllowAny()]
-        )
-        async def override_endpoint():
-            return {"message": "overrides global"}
-        handler_id = 0
-        metadata = api._handler_middleware[handler_id]
-        # Should have per-route config, not global
-        assert metadata["auth_backends"][0]["type"] == "api_key"
-        assert metadata["guards"][0]["type"] == "allow_any"
-class TestJWTTokenHandling:
-    """Test JWT token creation and validation patterns"""
-    def test_create_valid_jwt(self):
-        """Test creating a valid JWT token"""
-        secret = "test-secret"
-        payload = {
-            "sub": "user123",
-            "exp": int(time.time()) + 3600,
-            "iat": int(time.time()),
-            "is_staff": True,
-            "is_admin": False,
-            "permissions": ["users.view", "users.create"]
-        }
-        token = jwt.encode(payload, secret, algorithm="HS256")
-        # Verify we can decode it
-        decoded = jwt.decode(token, secret, algorithms=["HS256"])
-        assert decoded["sub"] == "user123"
-        assert decoded["is_staff"] == True
-        assert "users.view" in decoded["permissions"]
-    def test_expired_jwt(self):
-        """Test that expired tokens are rejected"""
-        secret = "test-secret"
-        payload = {
-            "sub": "user123",
-            "exp": int(time.time()) - 100,  # Expired 100 seconds ago
-            "iat": int(time.time()) - 200,
-        }
-        token = jwt.encode(payload, secret, algorithm="HS256")
-        # Should raise ExpiredSignatureError
-        with pytest.raises(jwt.ExpiredSignatureError):
-            jwt.decode(token, secret, algorithms=["HS256"])
-    def test_invalid_signature(self):
-        """Test that tokens with wrong signature are rejected"""
-        token = jwt.encode({"sub": "user"}, "secret1", algorithm="HS256")
-        # Try to decode with different secret
-        with pytest.raises(jwt.InvalidSignatureError):
-            jwt.decode(token, "secret2", algorithms=["HS256"])
-class TestContextPopulation:
-    """Test that request context is properly populated with auth data"""
-    def test_context_structure(self):
-        """Test expected context structure"""
-        # This would be tested in integration tests
-        # Here we document the expected structure
-        expected_context = {
-            "user_id": "user123",
-            "is_staff": False,
-            "is_admin": False,
-            "auth_backend": "jwt",
-            "permissions": ["users.view"],
-            "auth_claims": {
-                "sub": "user123",
-                "exp": 1234567890,
-                "iat": 1234567800,
-                # ... other JWT claims
-            }
-        }
-        # Verify structure
-        assert "user_id" in expected_context
-        assert "is_staff" in expected_context
-        assert "is_admin" in expected_context
-        assert "auth_backend" in expected_context
-class TestEdgeCases:
-    """Test edge cases and error conditions"""
-    def test_empty_guards_list(self):
-        """Test route with empty guards list"""
-        api = BoltAPI()
-        @api.get("/no-guards", guards=[])
-        async def no_guards():
-            return {"message": "no guards"}
-        # Should not create metadata if guards list is empty
-        handler_id = 0
-        # Empty guards should result in no metadata or default behavior
-    def test_none_auth_parameter(self):
-        """Test route with auth=None (should use global defaults)"""
-        api = BoltAPI()
-        @api.get("/default-auth", auth=None, guards=[IsAuthenticated()])
-        async def default_auth():
-            return {"message": "uses global auth"}
-        # Should fall back to global defaults
-        handler_id = 0
-        metadata = api._handler_middleware.get(handler_id)
-        # Verify it uses global defaults or no auth
-    def test_mixed_guard_types(self):
-        """Test route with mix of instance and class guards"""
-        api = BoltAPI()
-        @api.get("/mixed", guards=[IsAuthenticated(), IsStaff])
-        async def mixed_guards():
-            return {"message": "mixed guards"}
-        handler_id = 0
-        metadata = api._handler_middleware[handler_id]
-        # Both should be compiled correctly
-        assert len(metadata["guards"]) == 2
-    def test_permission_guard_with_special_chars(self):
-        """Test permission with dots and underscores"""
-        guard = HasPermission("myapp.custom_permission.delete")
-        metadata = guard.to_metadata()
-        assert metadata["permission"] == "myapp.custom_permission.delete"
-if __name__ == "__main__":
-    pytest.main([__file__, "-v"])