a xdz[@sRddlZddlmZmZmZmZmZmZddlm Z ddl m Z ddl m Z ddlmZddlmZddlmZmZdd lmZmZmZzdd lmZWneydZYn0Gd d d eeZGd ddeZGdddeeZGdddeZGdddeeZGdddeZ GdddeZ!GdddeeZ"GdddeeZ#GdddeZ$Gdd d eZ%Gd!d"d"eeZ&Gd#d$d$e&Z'Gd%d&d&e&Z(Gd'd(d(e&Z)Gd)d*d*e&Z*Gd+d,d,eZ+Gd-d.d.eZ,Gd/d0d0eZ-Gd1d2d2eZ.Gd3d4d4eeZ/Gd5d6d6eZ0Gd7d8d8eZ1Gd9d:d:eZ2Gd;d<d|j|jddV}|dur0td||dS|}|dusRJdS)N openid.mode http_clientr user is None) get_argumentget_authenticated_usersettings Exceptionfinishauthenticate_redirect)ruserresrrrget"s  zOpenIdClientLoginHandler.getN__name__ __module__ __qualname__rr coroutiner(rrrrrsrc@seZdZddZdS)OpenIdServerAuthenticateHandlercCs$|ddkrtd|ddS)NrZcheck_authenticationzincorrect openid.mode %rz is_valid:true)r r#writerrrrpost1sz$OpenIdServerAuthenticateHandler.postNr*r+r,r1rrrrr.0sr.c@s8eZdZddZddZejddZejddZd S) OAuth1ClientLoginHandlercCs.||_|d|_|d|_|d|_dS)N/oauth1/server/request_token/oauth1/server/authorize/oauth1/server/access_token)_OAUTH_VERSIONr_OAUTH_REQUEST_TOKEN_URL_OAUTH_AUTHORIZE_URL_OAUTH_ACCESS_TOKEN_URL)rrversionrrrr8s  z#OAuth1ClientLoginHandler.initializecCs tdddSNasdfZqwerkeysecretdictr0rrr_oauth_consumer_token>sz.OAuth1ClientLoginHandler._oauth_consumer_tokenccsV|ddr>|j|jddV}|dur0td||dS|j|jddVdS)N oauth_tokenrrr)r r!r"r#r$authorize_redirectrr&rrrr(As  zOAuth1ClientLoginHandler.getcCs:|ddrtd|tdddkr0td|tddS) NZfail_in_get_userzfailing in get_useruiop5678r>zincorrect access token %rfoo@example.com)email)r r#rB)r access_tokenrrr_oauth_get_user_futureMs   z/OAuth1ClientLoginHandler._oauth_get_user_futureN) r*r+r,rrCr r-r(rLrrrrr37s  r3c@seZdZdZejddZdS)!OAuth1ClientLoginCoroutineHandlerzDReplaces OAuth1ClientLoginCoroutineHandler's get() with a coroutine.c csh|ddrZz|VWqdtyV}z$|d|d|WYd}~qdd}~00n |VdS)NrDzgot exception: %s)r r!r# set_statusr/rE)rerrrr(Ys  &z%OAuth1ClientLoginCoroutineHandler.getN)r*r+r,__doc__r r-r(rrrrrMVsrMc@s$eZdZddZddZddZdS)$OAuth1ClientRequestParametersHandlercCs ||_dSN)r7)rr;rrrrhsz/OAuth1ClientRequestParametersHandler.initializecCs tdddSr<rAr0rrrrCksz:OAuth1ClientRequestParametersHandler._oauth_consumer_tokencCs,|jdtdddtddd}||dS)Nzhttp://www.example.com/api/asdfrGrHr>bar)foo) parameters)Z_oauth_request_parametersrBr/)rparamsrrrr(ns  z(OAuth1ClientRequestParametersHandler.getN)r*r+r,rrCr(rrrrrRgsrRc@seZdZddZdS)OAuth1ServerRequestTokenHandlercCs|ddS)Nz(oauth_token=zxcv&oauth_token_secret=1234r/r0rrrr(xsz#OAuth1ServerRequestTokenHandler.getNr*r+r,r(rrrrrXwsrXc@seZdZddZdS)OAuth1ServerAccessTokenHandlercCs|ddS)Nz(oauth_token=uiop&oauth_token_secret=5678rYr0rrrr(}sz"OAuth1ServerAccessTokenHandler.getNrZrrrrr[|sr[c@seZdZddZddZdS)OAuth2ClientLoginHandlercCs|d|_dS)Nz/oauth2/server/authorize)rr9rrrrrsz#OAuth2ClientLoginHandler.initializecCs|}|dusJdSrS)rE)rr'rrrr(szOAuth2ClientLoginHandler.getN)r*r+r,rr(rrrrr\sr\c@s"eZdZddZejddZdS)FacebookClientLoginHandlercCs(|d|_|d|_|d|_dS)Nz/facebook/server/authorize/facebook/server/access_tokenz/facebook/server)rr9r:Z_FACEBOOK_BASE_URLrrrrrs  z%FacebookClientLoginHandler.initializeccsh|ddrD|j|j|jd|jd|ddV}||n |j|j|jdddiddS)Ncodefacebook_api_keyfacebook_secret) redirect_uri client_id client_secretr_scopezread_stream,offline_access)rbrc extra_params)r r!requestfull_urlr"r/rErFrrrr(s  zFacebookClientLoginHandler.getNr)rrrrr]sr]c@seZdZddZdS) FacebookServerAccessTokenHandlercCs|tddddS)Nr=irKZ expires_in)r/rBr0rrrr(sz$FacebookServerAccessTokenHandler.getNrZrrrrrisric@seZdZddZdS)FacebookServerMeHandlercCs|ddS)Nz{}rYr0rrrr(szFacebookServerMeHandler.getNrZrrrrrksrkc@seZdZddZddZdS)TwitterClientHandlercCs@|d|_|d|_|d|_|d|_|d|_dS)Nr4/twitter/server/access_tokenr5z/twitter/server/authenticatez /twitter/api)rr8r:r9Z_OAUTH_AUTHENTICATE_URLZ_TWITTER_BASE_URLrrrrrs     zTwitterClientHandler.initializecCs |jdS)Nr)r"r0rrrget_auth_http_clientsz)TwitterClientHandler.get_auth_http_clientN)r*r+r,rrnrrrrrlsrlc@seZdZejddZdS)TwitterClientLoginHandlerccsB|ddr4|V}|dur&td||dS|VdSNrDr)r r!r#r$rErFrrrr(s   zTwitterClientLoginHandler.getNr*r+r,r r-r(rrrrrosroc@seZdZejddZdS) TwitterClientAuthenticateHandlerccsB|ddr4|V}|dur&td||dS|VdSrp)r r!r#r$r%rFrrrr(s   z$TwitterClientAuthenticateHandler.getNrqrrrrrrsrrc@seZdZejddZdS)%TwitterClientLoginGenCoroutineHandlerccs0|ddr"|V}||n |VdS)NrD)r r!r$rErFrrrr(s   z)TwitterClientLoginGenCoroutineHandler.getNrqrrrrrssrsc@seZdZejddZdS)TwitterClientShowUserHandlerccs\z&|jd|dtddddV}Wn&tyL|d|dYn 0||dS) Nz/users/show/%snamehjklvbnmr>rKzerror from twitter request)Ztwitter_requestr rBr rOr$rresponserrrr(s    z TwitterClientShowUserHandler.getNrqrrrrrtsrtc@seZdZddZdS)TwitterServerAccessTokenHandlercCs|ddS)Nz8oauth_token=hjkl&oauth_token_secret=vbnm&screen_name=foorYr0rrrr(sz#TwitterServerAccessTokenHandler.getNrZrrrrr|sr|c@seZdZddZdS)TwitterServerShowUserHandlercCs|dkrtdd|jjvs Jd|jjvs0Jd|jjvs@J|ddksRJ|dd ksdJ|d d ksvJ|d d ksJ|t||ddS)Nerrorry oauth_nonceoauth_timestampoauth_signatureoauth_consumer_keytest_twitter_consumer_keyoauth_signature_method HMAC-SHA1 oauth_version1.0rDrv screen_nameru)rrg argumentsr r/rB capitalize)rrrrrr(sz TwitterServerShowUserHandler.getNrZrrrrr}sr}c@seZdZddZdS)%TwitterServerVerifyCredentialsHandlercCsd|jjvsJd|jjvs Jd|jjvs0J|ddksBJ|ddksTJ|dd ksfJ|d d ksxJ|td d ddS)NrrrrrrrrrrDrvrUFoor)rgrr r/rBr0rrrr(sz)TwitterServerVerifyCredentialsHandler.getNrZrrrrrsrc@seZdZddZddZddZddZd d Zd d Zd dZ e e dudddZ ddZddZddZddZddZddZdd Zd!d"Zd#d$Zd%d&Zd'd(Zd)d*ZdS)+AuthTestcCstdtt|dfdtt|ddfdttddfdtt|d dfd tt|d dfd ttd dfd tt|dfd tt|dfdtt|dfdt t|dfdt t|dfdt t|dfdt fdt fdtfdtfdtfdtfdtfdtfg|jdddddS)N/openid/client/loginr/oauth10/client/loginr)rr;/oauth10/client/request_params)r;/oauth10a/client/loginz1.0az /oauth10a/client/login_coroutine/oauth10a/client/request_params/oauth2/client/login/facebook/client/login/twitter/client/login/twitter/client/authenticate#/twitter/client/login_gen_coroutinez/twitter/client/show_userrr4r6r^z/facebook/server/mermz"/twitter/api/users/show/(.*)\.jsonz-/twitter/api/account/verify_credentials\.jsonrZtest_twitter_consumer_secretZtest_facebook_api_keyZtest_facebook_secret)rZtwitter_consumer_keyZtwitter_consumer_secretr`ra)rrrBr3rRrMr\r]rorrrsrtr.rXr[rirkr|r}rrr0rrrget_appsl   ;zAuthTest.get_appcCs4|jddd}||jd|d|jdvdS)NrFZfollow_redirects.z/openid/server/authenticate?Locationfetch assertEqualr_ assertTrueheadersrzrrrtest_openid_redirectUszAuthTest.test_openid_redirectcCs0|d}|t|j}||dddS)Nz/openid/client/login?openid.mode=blah&openid.ns.ax=http://openid.net/srv/ax/1.0&openid.ax.type.email=http://axschema.org/contact/email&openid.ax.value.email=foo@example.comrJrIrrethrowrbodyrrr{parsedrrrtest_openid_get_userZs  zAuthTest.test_openid_get_usercCsR|jddd}||jd||jdd|d|jdv|jddS) NrFrrr)/oauth1/server/authorize?oauth_token=zxcv(_oauth_request_token="enhjdg==|MTIzNA==" Set-Cookierrr_rrendswithrzrrrtest_oauth10_redirectes zAuthTest.test_oauth10_redirectcCsP|jdddid}|t|j}||dd||dtdd d dS) Nz&/oauth10/client/login?oauth_token=zxcvCookie&_oauth_request_token=enhjdg==|MTIzNA==rrJrIrKrGrHr>rrrrrrBrrrrtest_oauth10_get_userts zAuthTest.test_oauth10_get_usercCs\|d}|t|j}||dd||dd|d|v|d|vdS)Nrrr=rDrGrrrrrrrrrrrrtest_oauth10_request_parameters~s  z(AuthTest.test_oauth10_request_parameterscCsR|jddd}||jd||jdd|d|jdv|jddS) NrFrrrrrrrrzrrrtest_oauth10a_redirects zAuthTest.test_oauth10a_redirectNzmock package not presentc Cstjtd`}td|_ttd|jddd}Wdn1sH0Y| |j dWdn1st0YdS)Nr(ZboomzUncaught exceptionrFrry) rpatchobjectrXr#Z side_effectrr rrr_)rr(r{rrrtest_oauth10a_redirect_errors   ,z%AuthTest.test_oauth10a_redirect_errorcCsP|jdddid}|t|j}||dd||dtdd d dS) Nz'/oauth10a/client/login?oauth_token=zxcvrrrrJrIrKrGrHr>rrrrrtest_oauth10a_get_users zAuthTest.test_oauth10a_get_usercCs\|d}|t|j}||dd||dd|d|v|d|vdS)Nrrr=rDrGrrrrrrr test_oauth10a_request_parameterss  z)AuthTest.test_oauth10a_request_parameterscCs$|jdddid}||jddS)NzG/oauth10a/client/login_coroutine?oauth_token=zxcv&fail_in_get_user=truerrrrN)rrr_rzrrr*test_oauth10a_get_user_coroutine_exceptions z3AuthTest.test_oauth10a_get_user_coroutine_exceptioncCs4|jddd}||jd|d|jdvdS)NrFrrz/oauth2/server/authorize?rrrzrrrtest_oauth2_redirectszAuthTest.test_oauth2_redirectcCsz|jddd}||jd|d|jdv|jddd}||jdt|j}||d d ||d d dS) NrFrrz/facebook/server/authorize?rz /facebook/client/login?code=1234rKr=Zsession_expiresZ3600)rrr_rrrr)rr{r&rrrtest_facebook_logins zAuthTest.test_facebook_logincCsR|j|dd}||jd||jdd|d|jdv|jddS)NFrrrrrrr)rurlr{rrrbase_twitter_redirects zAuthTest.base_twitter_redirectcCs|ddS)Nrrr0rrrtest_twitter_redirectszAuthTest.test_twitter_redirectcCs|ddS)Nrrr0rrr#test_twitter_redirect_gen_coroutinesz,AuthTest.test_twitter_redirect_gen_coroutinecCsZ|jddd}||jd||jdd|jd|d|jdv|jddS) NrFrrrz-/twitter/server/authenticate?oauth_token=zxcvrrrrzrrr"test_twitter_authenticate_redirects z+AuthTest.test_twitter_authenticate_redirectcCsF|jdddid}|t|j}||ddddd ddd dS) Nz&/twitter/client/login?oauth_token=zxcvrrrrvrUrw)r?rr@r)rKrurusernamerrrrrtest_twitter_get_users" zAuthTest.test_twitter_get_usercCs.|d}||t|jddddS)Nz'/twitter/client/show_user?name=somebodyZSomebodyZsomebody)rur)rrrrrrzrrrtest_twitter_show_users  zAuthTest.test_twitter_show_usercCs*|d}||jd||jddS)Nz$/twitter/client/show_user?name=errorryserror from twitter request)rrr_rrzrrrtest_twitter_show_user_error s z%AuthTest.test_twitter_show_user_error)r*r+r,rrrrrrrunittestZskipIfrrrrrrrrrrrrrrrrrrrs*D       rc@s"eZdZddZejddZdS)GoogleLoginHandlercCs.||_|d|_|d|_|d|_dS)N /client/login/google/oauth2/authorize/google/oauth2/token)rr_OAUTH_REDIRECT_URIr9r:rrrrrs  zGoogleLoginHandler.initializeccs|dd}|durX||j|V}|j|jd|ddV}|d|d<||n4|j|j|jdd|jdddd gdd d id dS) Nr_/google/oauth2/userinforKrx google_oauthr?r@ZprofilerJpromptZselect_account)rbrcrdreZ response_typerf) r r!rZoauth2_requestrrr/rEr")rr_accessr&rrrr(s"      zGoogleLoginHandler.getNr)rrrrrsrc@seZdZddZdS)GoogleOAuth2AuthorizeHandlercCs$d}|t|dt|ddS)Nfake-authorization-coderb)r_)redirectr r rB)rr_rrrr(1sz GoogleOAuth2AuthorizeHandler.getNrZrrrrr0src@seZdZddZdS)GoogleOAuth2TokenHandlercCs&|ddksJ|ddddS)Nr_rfake-access-tokenz never-expiresrjr r$r0rrrr18szGoogleOAuth2TokenHandler.postNr2rrrrr7src@seZdZddZdS)GoogleOAuth2UserinfoHandlercCs&|ddksJ|ddddS)NrKrrrI)rurJrr0rrrr(AszGoogleOAuth2UserinfoHandler.getNrZrrrrr@src@seZdZddZddZdS)GoogleOAuth2TestcCs2tdtt|dfdtfdtfdtfgdddd S) NrrrrrZfake_google_client_idZfake_google_client_secretr>)r)rrrBrrrr0rrrrHs zGoogleOAuth2Test.get_appcCs(|d}|ddddt|jdS)NrrrIr)rurJrK)rZassertDictEqualrrrzrrrtest_google_loginXs z"GoogleOAuth2Test.test_google_loginN)r*r+r,rrrrrrrGsr)4rZ tornado.authrrrrrrZtornado.escaperZtornador Ztornado.httpclientr Ztornado.httputilr Z tornado.logr Ztornado.testingr rZ tornado.webrrrr ImportErrorrr.r3rMrRrXr[r\r]rirkrlrorrrsrtr|r}rrrrrrrrrrrsN