Make ERP5TypeTestCase.publish() usable in live tests

A change that also applies to traditional tests is that the password does not need to be known when logging with basic authentication. If the given password is empty (e.g. 'ERP5TypeTestCase:'), password validation passes regardless the actual password: to keep things secure, this exception is only valid for the test thread and during the call to publish(). This is a simple way to deal with random passwords in live tests.

Make ERP5TypeTestCase.publish() usable in live tests
A change that also applies to traditional tests is that the password does not need to be known when logging with basic authentication. If the given password is empty (e.g. 'ERP5TypeTestCase:'), password validation passes regardless the actual password: to keep things secure, this exception is only valid for the test thread and during the call to publish(). This is a simple way to deal with random passwords in live tests.
89a17f04 · Julien Muchembled · 8159b324 · 89a17f04 · 89a17f04
Commit 89a17f04 authored Oct 18, 2017 by Julien Muchembled
Showing with 33 additions and 11 deletions

product/ERP5Type/tests/ERP5TypeLiveTestCase.py product/ERP5Type/tests/ERP5TypeLiveTestCase.py +9 -0

product/ERP5Type/tests/ERP5TypeTestCase.py product/ERP5Type/tests/ERP5TypeTestCase.py +24 -11

No files found.
--- a/product/ERP5Type/tests/ERP5TypeLiveTestCase.py
+++ b/product/ERP5Type/tests/ERP5TypeLiveTestCase.py
@@ -170,6 +170,15 @@ class ERP5TypeLiveTestCase(ERP5TypeTestCaseMixin):
      '''
      pass

+    def publish(self, *args, **kw):
+      from zope.security.management import thread_local
+      interaction = thread_local.interaction
+      try:
+        del thread_local.interaction
+        return super(ERP5TypeLiveTestCase, self).publish(*args, **kw)
+      finally:
+        thread_local.interaction = interaction
+
 from Products.ERP5Type.dynamic.component_package import ComponentDynamicPackage
 from Products.ERP5Type.tests.runUnitTest import ERP5TypeTestLoader


--- a/product/ERP5Type/tests/ERP5TypeTestCase.py
+++ b/product/ERP5Type/tests/ERP5TypeTestCase.py
@@ -718,7 +718,15 @@ class ERP5TypeTestCaseMixin(ProcessingNodeTestCase, PortalTestCase):
            raise TypeError, ''

        if basic:
-            env['HTTP_AUTHORIZATION'] = "Basic %s" % base64.encodestring(basic).replace('\012', '')
+          env['HTTP_AUTHORIZATION'] = "Basic %s" % \
+            base64.encodestring(basic).replace('\n', '')
+          from AccessControl import AuthEncoding
+          from thread import get_ident
+          me = get_ident()
+          orig_pw_validate = AuthEncoding.pw_validate
+          def pw_validate(reference, password):
+            return (me == get_ident() and not password
+                    or pw_validate(reference, password))

        if stdin is None:
            stdin = StringIO()
@@ -726,16 +734,21 @@ class ERP5TypeTestCaseMixin(ProcessingNodeTestCase, PortalTestCase):
        outstream = StringIO()
        response = Response(stdout=outstream, stderr=sys.stderr)

-        publish_module('Zope2',
-                       response=response,
-                       stdin=stdin,
-                       environ=env,
-                       extra=extra,
-                       debug=not handle_errors,
-                      )
-
-        # Restore security manager
-        setSecurityManager(sm)
+        try:
+          if basic:
+            AuthEncoding.pw_validate = pw_validate
+          publish_module('Zope2',
+                         response=response,
+                         stdin=stdin,
+                         environ=env,
+                         extra=extra,
+                         debug=not handle_errors,
+                        )
+        finally:
+          if basic:
+            AuthEncoding.pw_validate = orig_pw_validate
+          # Restore security manager
+          setSecurityManager(sm)

        # Make sure that the skin cache does not have objects that were
        # loaded with the connection used by the requested url.