Coverage for tests / test_security_api_key_header.py: 100%

Shortcuts on this page

r m x toggle line displays

j k next/prev highlighted chunk

0 (zero) top of page

1 (one) first highlighted chunk

[ ] prev/next file

u up to the index

? show/hide this help

29 statements

« prev ^ index » next coverage.py v7.13.3, created at 2026-04-06 01:24 +0000

1from fastapi import Depends, FastAPI, Security 4 ctx1adbc

2from fastapi.security import APIKeyHeader 4 ctx1adbc

3from fastapi.testclient import TestClient 4 ctx1adbc

4from inline_snapshot import snapshot 4 ctx1adbc

5from pydantic import BaseModel 4 ctx1adbc

7app = FastAPI() 4 ctx1adbc

9api_key = APIKeyHeader(name="key") 4 ctx1adbc

12class User(BaseModel): 4 ctx1adbc

13 username: str 3 ctx1abc

16def get_current_user(oauth_header: str = Security(api_key)): 4 ctx1adbc

17 user = User(username=oauth_header) 4 ctx1efgh

18 return user 4 ctx1efgh

21@app.get("/users/me") 4 ctx1adbc

22def read_current_user(current_user: User = Depends(get_current_user)): 4 ctx1adbc

23 return current_user 4 ctx1efgh

26client = TestClient(app) 4 ctx1adbc

29def test_security_api_key(): 4 ctx1adbc

30 response = client.get("/users/me", headers={"key": "secret"}) 4 ctx1efgh

31 assert response.status_code == 200, response.text 4 ctx1efgh

32 assert response.json() == {"username": "secret"} 4 ctx1efgh

35def test_security_api_key_no_key(): 4 ctx1adbc

36 response = client.get("/users/me") 4 ctx1ijkl

37 assert response.status_code == 401, response.text 4 ctx1ijkl

38 assert response.json() == {"detail": "Not authenticated"} 4 ctx1ijkl

39 assert response.headers["WWW-Authenticate"] == "APIKey" 4 ctx1ijkl

42def test_openapi_schema(): 4 ctx1adbc

43 response = client.get("/openapi.json") 4 ctx1mnop

44 assert response.status_code == 200, response.text 4 ctx1mnop

45 assert response.json() == snapshot( 4 ctx1mnop

46 {

47 "openapi": "3.1.0",

48 "info": {"title": "FastAPI", "version": "0.1.0"},

49 "paths": {

50 "/users/me": {

51 "get": {

52 "responses": {

53 "200": {

54 "description": "Successful Response",

55 "content": {"application/json": {"schema": {}}},

56 }

57 },

58 "summary": "Read Current User",

59 "operationId": "read_current_user_users_me_get",

60 "security": [{"APIKeyHeader": []}],

61 }

62 }

63 },

64 "components": {

65 "securitySchemes": {

66 "APIKeyHeader": {"type": "apiKey", "name": "key", "in": "header"}

67 }

68 },

69 }

70 )