Mercurial Repository: p/roundup/code: test/rest

comparison test/rest_common.py @ 8177:2967f37e73e4

refactor: issue2551289. invalid REST Accept header stops request Sending a POST, PUT (maybe PATCH) with an accept header that is not application/json or xml (if enabled) used to complete the request before throwing a 406 error. This was wrong. Now it reports an error without dispatching/processing the requested transaction. This is the first of a series of refactors of the dispatch method to make it faster and more readable by using return early pattern and extracting methods from the code. changes: The following now return 406 errors not 400 errors invalid version specified with @apiver in URL. invalid version specified with @apiver in payload body invalid version specified in accept headers as application/vnd.roundup.test-vz+json or version property Parsing the accept header returns a 400 when presented with a parameter without an = sign or other parse error. They used to return a 406 which is wrong since the header is malformed rather than having a value I can't respond to. Some error messages were made clearer. Results in the case of an error are proper json error object rather than text/plain strings. New test added for testdetermine_output_formatBadAccept that test the new method using the same test cases as for testDispatchBadAccept. I intend to extend the test coverage for determine_output_format to cover more cases. This should be a faster unit test than for dispatch. Removed .lower() calls for accept_mime_type as the input values are taken from the values in the __accepted_content_type dict which only has lower case values.

author	John Rouillard <rouilj@ieee.org>
date	Sun, 08 Dec 2024 01:09:34 -0500
parents	8e310a7b5e09
children	d02ce1d14acd

comparison

equal deleted inserted replaced

-:736f769b48c8
+:2967f37e73e4
 self.assertEqual(self.server.client.response_code, 415)
 self.assertNotIn("Accept-Patch",
 self.server.client.additional_headers)
 self.server.client.additional_headers = {}
+def testdetermine_output_formatBadAccept(self):
+dof = self.server.determine_output_format
+# simulate: /rest/data/issue expect failure unknown accept settings
+body=b'{ "title": "Joe Doe has problems", \
+"nosy": [ "1", "3" ], \
+"assignedto": "2", \
+"abool": true, \
+"afloat": 2.3, \
+"anint": 567890 \
+}'
+env = { "CONTENT_TYPE": "application/json",
+"CONTENT_LENGTH": len(body),
+"REQUEST_METHOD": "POST"
+}
+self.server.client.env.update(env)
+headers={"accept": "application/zot; version=1; q=0.5",
+"content-type": env['CONTENT_TYPE'],
+"content-length": env['CONTENT_LENGTH'],
+}
+self.headers=headers
+# we need to generate a FieldStorage the looks like
+#  FieldStorage(None, None, 'string') rather than
+#  FieldStorage(None, None, [])
+body_file=BytesIO(body)  # FieldStorage needs a file
+form = client.BinaryFieldStorage(body_file,
+headers=headers,
+environ=env)
+self.server.client.request.headers.get=self.get_header
+(output_type, uri, error) = dof("/rest/data/issue")
+self.assertEqual(self.server.client.response_code, 406)
+self.assertIn(b"Requested content type(s) 'application/zot; version=1; q=0.5' not available.\nAcceptable mime types are: */*, application/json",
+s2b(error['error']['msg']))
+# simulate: /rest/data/issue works, multiple acceptable output, one
+# is valid
+self.server.client.response_code = ""
+env = { "CONTENT_TYPE": "application/json",
+"CONTENT_LENGTH": len(body),
+"REQUEST_METHOD": "POST"
+}
+self.server.client.env.update(env)
+headers={"accept": "application/zot; version=1; q=0.75, "
+"application/json; version=1; q=0.5",
+"content-type": env['CONTENT_TYPE'],
+"content-length": env['CONTENT_LENGTH'],
+}
+self.headers=headers
+# we need to generate a FieldStorage the looks like
+#  FieldStorage(None, None, 'string') rather than
+#  FieldStorage(None, None, [])
+body_file=BytesIO(body)  # FieldStorage needs a file
+form = client.BinaryFieldStorage(body_file,
+headers=headers,
+environ=env)
+self.server.client.request.headers.get=self.get_header
+(output_type, uri, error) = dof("/rest/data/issue")
+self.assertEqual(self.server.client.response_code, "")
+self.assertEqual(output_type, "json")
+self.assertEqual(uri, "/rest/data/issue")
+self.assertEqual(error, None)
+# test 3 accept is empty. This triggers */* so passes
+self.server.client.response_code = ""
+headers={"accept": "",
+"content-type": env['CONTENT_TYPE'],
+"content-length": env['CONTENT_LENGTH'],
+}
+self.headers=headers
+# we need to generate a FieldStorage the looks like
+#  FieldStorage(None, None, 'string') rather than
+#  FieldStorage(None, None, [])
+body_file=BytesIO(body)  # FieldStorage needs a file
+form = client.BinaryFieldStorage(body_file,
+headers=headers,
+environ=env)
+self.server.client.request.headers.get=self.get_header
+(output_type, uri, error) = dof("/rest/data/issue")
+self.assertEqual(self.server.client.response_code, "")
+self.assertEqual(output_type, "json")
+self.assertEqual(uri, "/rest/data/issue")
+self.assertEqual(error, None)
+# test 4 accept is random junk.
+headers={"accept": "Xyzzy I am not a mime, type;",
+"content-type": env['CONTENT_TYPE'],
+"content-length": env['CONTENT_LENGTH'],
+}
+self.headers=headers
+# we need to generate a FieldStorage the looks like
+#  FieldStorage(None, None, 'string') rather than
+#  FieldStorage(None, None, [])
+body_file=BytesIO(body)  # FieldStorage needs a file
+form = client.BinaryFieldStorage(body_file,
+headers=headers,
+environ=env)
+self.server.client.request.headers.get=self.get_header
+(output_type, uri, error) = dof("/rest/data/issue")
+self.assertEqual(self.server.client.response_code, 400)
+self.assertEqual(output_type, None)
+self.assertEqual(uri, "/rest/data/issue")
+self.assertIn('Unable to parse Accept Header. Invalid media type: Xyzzy I am not a mime. Acceptable types: */* application/json', error['error']['msg'])
+# test 5 accept mimetype is ok, param is not
+headers={"accept": "*/*; foo",
+"content-type": env['CONTENT_TYPE'],
+"content-length": env['CONTENT_LENGTH'],
+}
+self.headers=headers
+# we need to generate a FieldStorage the looks like
+#  FieldStorage(None, None, 'string') rather than
+#  FieldStorage(None, None, [])
+body_file=BytesIO(body)  # FieldStorage needs a file
+form = client.BinaryFieldStorage(body_file,
+headers=headers,
+environ=env)
+self.server.client.request.headers.get=self.get_header
+(output_type, uri, error) = dof("/rest/data/issue")
+self.assertEqual(self.server.client.response_code, 400)
+self.assertEqual(output_type, None)
+self.assertEqual(uri, "/rest/data/issue")
+self.assertIn('Unable to parse Accept Header. Invalid param: foo. Acceptable types: */* application/json', error['error']['msg'])
 def testDispatchBadAccept(self):
 # simulate: /rest/data/issue expect failure unknown accept settings
 body=b'{ "title": "Joe Doe has problems", \
 "nosy": [ "1", "3" ], \
 "assignedto": "2", \
 environ=env)
 self.server.client.request.headers.get=self.get_header
 results = self.server.dispatch(env["REQUEST_METHOD"],
 "/rest/data/issue",
 form)
 print(results)
+json_dict = json.loads(b2s(results))
 self.assertEqual(self.server.client.response_code, 406)
-self.assertIn(b"Requested content type 'application/zot; version=1; q=0.5' is not available.\nAcceptable types: */*, application/json", results)
+self.assertIn("Requested content type(s) 'application/zot; version=1; q=0.5' not available.\nAcceptable mime types are: */*, application/json",
+json_dict['error']['msg'])
 # simulate: /rest/data/issue works, multiple acceptable output, one
 # is valid
 env = { "CONTENT_TYPE": "application/json",
 "CONTENT_LENGTH": len(body),
 form)
 print(results)
 self.assertEqual(self.server.client.response_code, 201)
 json_dict = json.loads(b2s(results))
-# ERROR this should be 1. What's happening is that the code
+self.assertEqual(json_dict['data']['id'], "1")
-# for handling 406 error code runs through everything and creates
-# the item. Then it throws a 406 after the work is done when it
-# realizes it can't respond as requested. So the 406 post above
-# creates issue 1 and this one creates issue 2.
-self.assertEqual(json_dict['data']['id'], "2")
 # test 3 accept is empty. This triggers */* so passes
 headers={"accept": "",
 "content-type": env['CONTENT_TYPE'],
 form)
 print(results)
 self.assertEqual(self.server.client.response_code, 201)
 json_dict = json.loads(b2s(results))
-# This is one more than above. Will need to be fixed
+self.assertEqual(json_dict['data']['id'], "2")
-# When error above is fixed.
-self.assertEqual(json_dict['data']['id'], "3")
 # test 4 accept is random junk.
 headers={"accept": "Xyzzy I am not a mime, type;",
 "content-type": env['CONTENT_TYPE'],
 "content-length": env['CONTENT_LENGTH'],
 results = self.server.dispatch(env["REQUEST_METHOD"],
 "/rest/data/issue",
 form)
 print(results)
-self.assertEqual(self.server.client.response_code, 406)
+self.assertEqual(self.server.client.response_code, 400)
 json_dict = json.loads(b2s(results))
 self.assertIn('Unable to parse Accept Header. Invalid media type: Xyzzy I am not a mime. Acceptable types: */* application/json', json_dict['error']['msg'])
 # test 5 accept mimetype is ok, param is not
 headers={"accept": "*/*; foo",
 results = self.server.dispatch(env["REQUEST_METHOD"],
 "/rest/data/issue",
 form)
 print(results)
-self.assertEqual(self.server.client.response_code, 406)
+self.assertEqual(self.server.client.response_code, 400)
 json_dict = json.loads(b2s(results))
 self.assertIn('Unable to parse Accept Header. Invalid param: foo. Acceptable types: */* application/json', json_dict['error']['msg'])
 def testStatsGen(self):
 # check stats being returned by put and get ops
 environ=env)
 self.server.client.request.headers.get=self.get_header
 results = self.server.dispatch('PUT',
 "/rest/data/user/%s/realname"%self.joeid,
 form)
-self.assertEqual(self.server.client.response_code, 400)
+self.assertEqual(self.server.client.response_code, 406)
 del(self.headers)
 # TEST #2
 # Set joe's 'realname' using json data.
 # simulate: /rest/data/user/<id>/realname
 form)
 self.assertEqual(self.server.client.response_code, 406)
 print(results)
 try:  # only verify local copy not system installed copy
 from roundup.dicttoxml import dicttoxml
-includexml = ', application/xml'
+includexml = ', xml'
 except ImportError:
 includexml = ''
-response="Requested content type 'jon' is not available.\n" \
+json_dict = json.loads(b2s(results))
-"Acceptable types: */*, application/json%s\n"%includexml
+response= ("Content type 'jon' requested in URL is not available.\n"
-self.assertEqual(b2s(results), response)
+"Acceptable types: json%s\n") % includexml
+self.assertEqual(json_dict['error']['msg'], response)
 # TEST #9
 # GET: test that version can be set with accept:
 #    ... ; version=z
 # or
 self.server.client.request.headers.get=self.get_header
 results = self.server.dispatch('GET',
 "/rest/data/issue/1", form)
 print("9a: " + b2s(results))
 json_dict = json.loads(b2s(results))
-self.assertEqual(json_dict['error']['status'], 400)
+# note bad @apiver returns 400 not 406.
+self.assertEqual(json_dict['error']['status'], 406)
 self.assertEqual(json_dict['error']['msg'],
 "Unrecognized api version: L. See /rest without "
 "specifying api version for supported versions.")
 headers={"accept": "application/json; version=z" }
 self.server.client.request.headers.get=self.get_header
 results = self.server.dispatch('GET',
 "/rest/data/issue/1", form)
 print("9b: " + b2s(results))
 json_dict = json.loads(b2s(results))
-self.assertEqual(json_dict['error']['status'], 400)
+self.assertEqual(self.server.client.response_code, 406)
+self.assertEqual(json_dict['error']['status'], 406)
 self.assertEqual(json_dict['error']['msg'],
 "Unrecognized api version: z. See /rest without "
 "specifying api version for supported versions.")
 headers={"accept": "application/vnd.roundup.test-vz+json" }
 self.headers=headers
 self.server.client.request.headers.get=self.get_header
 results = self.server.dispatch('GET',
 "/rest/data/issue/1", self.empty_form)
 print("9c:" + b2s(results))
-self.assertEqual(self.server.client.response_code, 400)
+self.assertEqual(self.server.client.response_code, 406)
 json_dict = json.loads(b2s(results))
-self.assertEqual(json_dict['error']['status'], 400)
+self.assertEqual(json_dict['error']['status'], 406)
 self.assertEqual(json_dict['error']['msg'],
 "Unrecognized api version: z. See /rest without "
 "specifying api version for supported versions.")
 # verify that version priority is correct; should be version=...
 self.headers=headers
 self.server.client.request.headers.get=self.get_header
 results = self.server.dispatch('GET',
 "/rest/data/issue/1", self.empty_form)
 print("9d: " + b2s(results))
-self.assertEqual(self.server.client.response_code, 400)
+self.assertEqual(self.server.client.response_code, 406)
 json_dict = json.loads(b2s(results))
-self.assertEqual(json_dict['error']['status'], 400)
+self.assertEqual(json_dict['error']['status'], 406)
 self.assertEqual(json_dict['error']['msg'],
 "Unrecognized api version: a. See /rest without "
 "specifying api version for supported versions.")
 # TEST #10
 results = self.server.dispatch('GET',
 "/rest/data/status/1",
 self.empty_form)
 print(results)
 json_dict = json.loads(b2s(results))
-self.assertEqual(self.server.client.response_code, 400)
+self.assertEqual(self.server.client.response_code, 406)
 self.assertEqual(self.server.client.additional_headers['Content-Type'],
 "application/json")
 self.assertEqual(json_dict['error']['msg'],
 "Unrecognized api version: 99. See /rest "
 "without specifying api version for "

Mercurial > p > roundup > code

comparison test/rest_common.py @ 8177:2967f37e73e4