Coverage for tests / test_tutorial / test_security / test_tutorial006.py: 100%

Shortcuts on this page

r m x toggle line displays

j k next/prev highlighted chunk

0 (zero) top of page

1 (one) first highlighted chunk

[ ] prev/next file

u up to the index

? show/hide this help

35 statements

« prev ^ index » next coverage.py v7.13.3, created at 2026-04-06 01:24 +0000

1import importlib 4 ctx1abcd

2from base64 import b64encode 4 ctx1abcd

4import pytest 4 ctx1abcd

5from fastapi.testclient import TestClient 4 ctx1abcd

6from inline_snapshot import snapshot 4 ctx1abcd

9@pytest.fixture( 4 ctx1abcd

10 name="client",

11 params=[

12 pytest.param("tutorial006_py310"),

13 pytest.param("tutorial006_an_py310"),

14 ],

15)

16def get_client(request: pytest.FixtureRequest): 4 ctx1abcd

17 mod = importlib.import_module(f"docs_src.security.{request.param}") 32 ctx1BCDEFGHIJKLMNOPQRSTUVWXYZ0123456

19 client = TestClient(mod.app) 32 ctx1BCDEFGHIJKLMNOPQRSTUVWXYZ0123456

20 return client 32 ctx1BCDEFGHIJKLMNOPQRSTUVWXYZ0123456

23def test_security_http_basic(client: TestClient): 4 ctx1abcd

24 response = client.get("/users/me", auth=("john", "secret")) 7 ctx1789!#$%

25 assert response.status_code == 200, response.text 7 ctx1789!#$%

26 assert response.json() == {"username": "john", "password": "secret"} 7 ctx1789!#$%

29def test_security_http_basic_no_credentials(client: TestClient): 4 ctx1abcd

30 response = client.get("/users/me") 8 ctx1lmnopqrs

31 assert response.json() == {"detail": "Not authenticated"} 8 ctx1lmnopqrs

32 assert response.status_code == 401, response.text 8 ctx1lmnopqrs

33 assert response.headers["WWW-Authenticate"] == "Basic" 8 ctx1lmnopqrs

36def test_security_http_basic_invalid_credentials(client: TestClient): 4 ctx1abcd

37 response = client.get( 8 ctx1tuvwxyzA

38 "/users/me", headers={"Authorization": "Basic notabase64token"}

39 )

40 assert response.status_code == 401, response.text 8 ctx1tuvwxyzA

41 assert response.headers["WWW-Authenticate"] == "Basic" 8 ctx1tuvwxyzA

42 assert response.json() == {"detail": "Not authenticated"} 8 ctx1tuvwxyzA

45def test_security_http_basic_non_basic_credentials(client: TestClient): 4 ctx1abcd

46 payload = b64encode(b"johnsecret").decode("ascii") 7 ctx1efghijk

47 auth_header = f"Basic {payload}" 7 ctx1efghijk

48 response = client.get("/users/me", headers={"Authorization": auth_header}) 7 ctx1efghijk

49 assert response.status_code == 401, response.text 7 ctx1efghijk

50 assert response.headers["WWW-Authenticate"] == "Basic" 7 ctx1efghijk

51 assert response.json() == {"detail": "Not authenticated"} 7 ctx1efghijk

54def test_openapi_schema(client: TestClient): 4 ctx1abcd

55 response = client.get("/openapi.json") 7 ctx1'()*+,-

56 assert response.status_code == 200, response.text 7 ctx1'()*+,-

57 assert response.json() == snapshot( 7 ctx1'()*+,-

58 {

59 "openapi": "3.1.0",

60 "info": {"title": "FastAPI", "version": "0.1.0"},

61 "paths": {

62 "/users/me": {

63 "get": {

64 "responses": {

65 "200": {

66 "description": "Successful Response",

67 "content": {"application/json": {"schema": {}}},

68 }

69 },

70 "summary": "Read Current User",

71 "operationId": "read_current_user_users_me_get",

72 "security": [{"HTTPBasic": []}],

73 }

74 }

75 },

76 "components": {

77 "securitySchemes": {"HTTPBasic": {"type": "http", "scheme": "basic"}}

78 },

79 }

80 )