2022-02-08 21:12:51 +00:00
|
|
|
import boto3
|
|
|
|
import pytest
|
|
|
|
from botocore.exceptions import ClientError
|
2023-11-30 15:55:51 +00:00
|
|
|
|
2022-02-08 21:12:51 +00:00
|
|
|
from moto import mock_apigatewayv2
|
|
|
|
|
|
|
|
|
|
|
|
@mock_apigatewayv2
|
|
|
|
def test_create_authorizer_minimum():
|
|
|
|
client = boto3.client("apigatewayv2", region_name="eu-west-1")
|
|
|
|
api_id = client.create_api(Name="test-api", ProtocolType="HTTP")["ApiId"]
|
|
|
|
|
|
|
|
resp = client.create_authorizer(
|
2022-09-15 20:31:42 +00:00
|
|
|
ApiId=api_id,
|
|
|
|
AuthorizerType="REQUEST",
|
|
|
|
IdentitySource=[],
|
|
|
|
Name="auth1",
|
|
|
|
AuthorizerPayloadFormatVersion="2.0",
|
2022-02-08 21:12:51 +00:00
|
|
|
)
|
|
|
|
|
2023-06-08 11:40:10 +00:00
|
|
|
assert "AuthorizerId" in resp
|
|
|
|
assert resp["AuthorizerType"] == "REQUEST"
|
|
|
|
assert resp["Name"] == "auth1"
|
2022-02-08 21:12:51 +00:00
|
|
|
|
|
|
|
|
|
|
|
@mock_apigatewayv2
|
|
|
|
def test_create_authorizer():
|
|
|
|
client = boto3.client("apigatewayv2", region_name="eu-west-1")
|
|
|
|
api_id = client.create_api(Name="test-api", ProtocolType="HTTP")["ApiId"]
|
|
|
|
|
|
|
|
resp = client.create_authorizer(
|
|
|
|
ApiId=api_id,
|
|
|
|
AuthorizerCredentialsArn="auth:creds:arn",
|
|
|
|
AuthorizerPayloadFormatVersion="2.0",
|
|
|
|
AuthorizerResultTtlInSeconds=3,
|
|
|
|
AuthorizerType="REQUEST",
|
|
|
|
AuthorizerUri="auth_uri",
|
|
|
|
EnableSimpleResponses=True,
|
|
|
|
IdentitySource=["$request.header.Authorization"],
|
|
|
|
IdentityValidationExpression="ive",
|
|
|
|
JwtConfiguration={"Audience": ["a1"], "Issuer": "moto.com"},
|
|
|
|
Name="auth1",
|
|
|
|
)
|
|
|
|
|
2023-06-08 11:40:10 +00:00
|
|
|
assert "AuthorizerId" in resp
|
|
|
|
assert resp["AuthorizerCredentialsArn"] == "auth:creds:arn"
|
|
|
|
assert resp["AuthorizerPayloadFormatVersion"] == "2.0"
|
|
|
|
assert resp["AuthorizerResultTtlInSeconds"] == 3
|
|
|
|
assert resp["AuthorizerType"] == "REQUEST"
|
|
|
|
assert resp["AuthorizerUri"] == "auth_uri"
|
|
|
|
assert resp["EnableSimpleResponses"] is True
|
|
|
|
assert resp["IdentitySource"] == ["$request.header.Authorization"]
|
|
|
|
assert resp["IdentityValidationExpression"] == "ive"
|
|
|
|
assert resp["JwtConfiguration"] == {"Audience": ["a1"], "Issuer": "moto.com"}
|
|
|
|
assert resp["Name"] == "auth1"
|
|
|
|
assert resp["AuthorizerPayloadFormatVersion"] == "2.0"
|
2022-02-08 21:12:51 +00:00
|
|
|
|
|
|
|
|
2022-09-15 20:31:42 +00:00
|
|
|
@mock_apigatewayv2
|
|
|
|
def test_create_authorizer_without_payloadformatversion():
|
|
|
|
client = boto3.client("apigatewayv2", region_name="eu-west-1")
|
|
|
|
api_id = client.create_api(Name="test-api", ProtocolType="HTTP")["ApiId"]
|
|
|
|
|
|
|
|
with pytest.raises(ClientError) as exc:
|
|
|
|
client.create_authorizer(
|
|
|
|
ApiId=api_id,
|
|
|
|
AuthorizerType="REQUEST",
|
|
|
|
AuthorizerUri="auth_uri",
|
|
|
|
IdentitySource=[""],
|
|
|
|
Name="auth1",
|
|
|
|
)
|
|
|
|
|
|
|
|
err = exc.value.response["Error"]
|
2023-06-08 11:40:10 +00:00
|
|
|
assert err["Code"] == "BadRequestException"
|
|
|
|
assert (
|
|
|
|
err["Message"]
|
|
|
|
== "AuthorizerPayloadFormatVersion is a required parameter for REQUEST authorizer"
|
2022-09-15 20:31:42 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
|
2022-02-08 21:12:51 +00:00
|
|
|
@mock_apigatewayv2
|
|
|
|
def test_get_authorizer():
|
|
|
|
client = boto3.client("apigatewayv2", region_name="eu-west-1")
|
|
|
|
api_id = client.create_api(Name="test-api", ProtocolType="HTTP")["ApiId"]
|
|
|
|
|
|
|
|
authorizer_id = client.create_authorizer(
|
2022-09-15 20:31:42 +00:00
|
|
|
ApiId=api_id,
|
|
|
|
AuthorizerType="REQUEST",
|
|
|
|
IdentitySource=[],
|
|
|
|
Name="auth1",
|
|
|
|
AuthorizerPayloadFormatVersion="2.0",
|
2022-02-08 21:12:51 +00:00
|
|
|
)["AuthorizerId"]
|
|
|
|
|
|
|
|
resp = client.get_authorizer(ApiId=api_id, AuthorizerId=authorizer_id)
|
|
|
|
|
2023-06-08 11:40:10 +00:00
|
|
|
assert "AuthorizerId" in resp
|
|
|
|
assert resp["AuthorizerType"] == "REQUEST"
|
|
|
|
assert resp["Name"] == "auth1"
|
|
|
|
assert resp["AuthorizerPayloadFormatVersion"] == "2.0"
|
2022-02-08 21:12:51 +00:00
|
|
|
|
|
|
|
|
|
|
|
@mock_apigatewayv2
|
|
|
|
def test_delete_authorizer():
|
|
|
|
client = boto3.client("apigatewayv2", region_name="eu-west-1")
|
2022-09-15 20:31:42 +00:00
|
|
|
api_id = client.create_api(Name="test-api", ProtocolType="WEBSOCKET")["ApiId"]
|
2022-02-08 21:12:51 +00:00
|
|
|
|
|
|
|
authorizer_id = client.create_authorizer(
|
|
|
|
ApiId=api_id, AuthorizerType="REQUEST", IdentitySource=[], Name="auth1"
|
|
|
|
)["AuthorizerId"]
|
|
|
|
|
|
|
|
client.delete_authorizer(ApiId=api_id, AuthorizerId=authorizer_id)
|
|
|
|
|
|
|
|
with pytest.raises(ClientError) as exc:
|
|
|
|
client.get_authorizer(ApiId=api_id, AuthorizerId="unknown")
|
|
|
|
|
|
|
|
err = exc.value.response["Error"]
|
2023-06-08 11:40:10 +00:00
|
|
|
assert err["Code"] == "NotFoundException"
|
2022-02-08 21:12:51 +00:00
|
|
|
|
|
|
|
|
|
|
|
@mock_apigatewayv2
|
|
|
|
def test_get_authorizer_unknown():
|
|
|
|
client = boto3.client("apigatewayv2", region_name="eu-west-1")
|
|
|
|
api_id = client.create_api(Name="test-api", ProtocolType="HTTP")["ApiId"]
|
|
|
|
|
|
|
|
with pytest.raises(ClientError) as exc:
|
|
|
|
client.get_authorizer(ApiId=api_id, AuthorizerId="unknown")
|
|
|
|
|
|
|
|
err = exc.value.response["Error"]
|
2023-06-08 11:40:10 +00:00
|
|
|
assert err["Code"] == "NotFoundException"
|
2022-02-08 21:12:51 +00:00
|
|
|
|
|
|
|
|
|
|
|
@mock_apigatewayv2
|
|
|
|
def test_update_authorizer_single():
|
|
|
|
client = boto3.client("apigatewayv2", region_name="eu-west-1")
|
|
|
|
api_id = client.create_api(Name="test-api", ProtocolType="HTTP")["ApiId"]
|
|
|
|
|
|
|
|
auth_id = client.create_authorizer(
|
|
|
|
ApiId=api_id,
|
|
|
|
AuthorizerCredentialsArn="auth:creds:arn",
|
|
|
|
AuthorizerPayloadFormatVersion="2.0",
|
|
|
|
AuthorizerResultTtlInSeconds=3,
|
|
|
|
AuthorizerType="REQUEST",
|
|
|
|
AuthorizerUri="auth_uri",
|
|
|
|
EnableSimpleResponses=True,
|
|
|
|
IdentitySource=["$request.header.Authorization"],
|
|
|
|
IdentityValidationExpression="ive",
|
|
|
|
JwtConfiguration={"Audience": ["a1"], "Issuer": "moto.com"},
|
|
|
|
Name="auth1",
|
|
|
|
)["AuthorizerId"]
|
|
|
|
|
|
|
|
resp = client.update_authorizer(ApiId=api_id, AuthorizerId=auth_id, Name="auth2")
|
|
|
|
|
2023-06-08 11:40:10 +00:00
|
|
|
assert "AuthorizerId" in resp
|
|
|
|
assert resp["AuthorizerCredentialsArn"] == "auth:creds:arn"
|
|
|
|
assert resp["AuthorizerPayloadFormatVersion"] == "2.0"
|
|
|
|
assert resp["AuthorizerResultTtlInSeconds"] == 3
|
|
|
|
assert resp["AuthorizerType"] == "REQUEST"
|
|
|
|
assert resp["AuthorizerUri"] == "auth_uri"
|
|
|
|
assert resp["EnableSimpleResponses"] is True
|
|
|
|
assert resp["IdentitySource"] == ["$request.header.Authorization"]
|
|
|
|
assert resp["IdentityValidationExpression"] == "ive"
|
|
|
|
assert resp["JwtConfiguration"] == {"Audience": ["a1"], "Issuer": "moto.com"}
|
|
|
|
assert resp["Name"] == "auth2"
|
2022-02-08 21:12:51 +00:00
|
|
|
|
|
|
|
|
|
|
|
@mock_apigatewayv2
|
|
|
|
def test_update_authorizer_all_attributes():
|
|
|
|
client = boto3.client("apigatewayv2", region_name="eu-west-1")
|
|
|
|
api_id = client.create_api(Name="test-api", ProtocolType="HTTP")["ApiId"]
|
|
|
|
|
|
|
|
auth_id = client.create_authorizer(
|
2022-09-15 20:31:42 +00:00
|
|
|
ApiId=api_id,
|
|
|
|
AuthorizerType="REQUEST",
|
|
|
|
IdentitySource=[],
|
|
|
|
Name="auth1",
|
|
|
|
AuthorizerPayloadFormatVersion="2.0",
|
2022-02-08 21:12:51 +00:00
|
|
|
)["AuthorizerId"]
|
|
|
|
|
|
|
|
auth_id = client.update_authorizer(
|
|
|
|
ApiId=api_id,
|
|
|
|
AuthorizerId=auth_id,
|
|
|
|
AuthorizerCredentialsArn="",
|
|
|
|
AuthorizerPayloadFormatVersion="3.0",
|
|
|
|
AuthorizerResultTtlInSeconds=5,
|
|
|
|
AuthorizerType="REQUEST",
|
|
|
|
AuthorizerUri="auth_uri",
|
|
|
|
EnableSimpleResponses=False,
|
|
|
|
IdentitySource=["$request.header.Authentication"],
|
|
|
|
IdentityValidationExpression="ive2",
|
|
|
|
JwtConfiguration={"Audience": ["a2"], "Issuer": "moto.com"},
|
|
|
|
Name="auth1",
|
|
|
|
)["AuthorizerId"]
|
|
|
|
|
|
|
|
resp = client.update_authorizer(ApiId=api_id, AuthorizerId=auth_id, Name="auth2")
|
|
|
|
|
2023-06-08 11:40:10 +00:00
|
|
|
assert "AuthorizerId" in resp
|
|
|
|
assert resp["AuthorizerCredentialsArn"] == ""
|
|
|
|
assert resp["AuthorizerPayloadFormatVersion"] == "3.0"
|
|
|
|
assert resp["AuthorizerResultTtlInSeconds"] == 5
|
|
|
|
assert resp["AuthorizerType"] == "REQUEST"
|
|
|
|
assert resp["AuthorizerUri"] == "auth_uri"
|
|
|
|
assert resp["EnableSimpleResponses"] is False
|
|
|
|
assert resp["IdentitySource"] == ["$request.header.Authentication"]
|
|
|
|
assert resp["IdentityValidationExpression"] == "ive2"
|
|
|
|
assert resp["JwtConfiguration"] == {"Audience": ["a2"], "Issuer": "moto.com"}
|
|
|
|
assert resp["Name"] == "auth2"
|