app-MAIL-temp/tests/test_utils.py

from typing import List, Optional
from urllib.parse import parse_qs

import pytest

from app.config import ALLOWED_REDIRECT_DOMAINS
from app.utils import random_string, random_words, sanitize_next_url, canonicalize_email


def test_random_words():
    s = random_words()
    assert s.find("_") > 0
    assert s.count("_") == 1
    assert len(s) > 3
    s = random_words(2, 3)
    assert s.count("_") == 1
    assert s[-1] in (str(i) for i in range(10))


def test_random_string():
    s = random_string()
    assert len(s) > 0


def generate_sanitize_url_cases() -> List:
    cases = [
        [None, None],
        ["", None],
        ["http://badhttp.com", None],
        ["https://badhttps.com", None],
        ["/", "/"],
        ["/auth", "/auth"],
        ["/some/path", "/some/path"],
        ["//somewhere.net", None],
        ["//\\\\evil.com", None],
    ]
    for domain in ALLOWED_REDIRECT_DOMAINS:
        cases.append([f"http://{domain}", f"http://{domain}"])
        cases.append([f"https://{domain}", f"https://{domain}"])
        cases.append([f"https://{domain}/sub", f"https://{domain}/sub"])
        cases.append([domain, None])
        cases.append([f"//{domain}", f"//{domain}"])
        cases.append([f"https://google.com\\@{domain}/haha", None])
    return cases


@pytest.mark.parametrize("url,expected", generate_sanitize_url_cases())
def test_sanitize_url(url: str, expected: Optional[str]):
    sanitized = sanitize_next_url(url)
    assert expected == sanitized


def test_parse_querystring():
    cases = [
        {"input": "", "expected": {}},
        {"input": "a=b", "expected": {"a": ["b"]}},
        {"input": "a=b&c=d", "expected": {"a": ["b"], "c": ["d"]}},
        {"input": "a=b&a=c", "expected": {"a": ["b", "c"]}},
    ]

    for case in cases:
        expected = case["expected"]
        res = parse_qs(case["input"])
        assert len(res) == len(expected)
        for k, v in expected.items():
            assert res[k] == v


def canonicalize_email_cases():
    for domain in ("gmail.com", "protonmail.com", "proton.me", "pm.me"):
        yield (f"a@{domain}", f"a@{domain}")
        yield (f"a.b@{domain}", f"ab@{domain}")
        yield (f"a.b+c@{domain}", f"ab@{domain}")
        yield ("a.b+c@other.com", "a.b+c@other.com")


@pytest.mark.parametrize("dirty,clean", canonicalize_email_cases())
def test_canonicalize_email(dirty: str, clean: str):
    assert canonicalize_email(dirty) == clean
Fix open redirect 2022-05-11 14:50:37 +02:00			`from typing import List, Optional`
Add login with proton 2022-03-14 09:33:31 +01:00			`from urllib.parse import parse_qs`
Properly validate //host.com urls when redirecting after receiving a next param 2022-03-29 17:53:00 +02:00
			`import pytest`

Add support for allowed redirect domains 2022-02-16 09:38:55 +01:00			`from app.config import ALLOWED_REDIRECT_DOMAINS`
Canonicalize emails from google and proton before registering users (#1493) * Revert "Revert "Use canonical email when registering users (#1458)" (#1474)" This reverts commit c8ab1c747e4ab82f7e6b146d3d6e83659e6977c4. * Only canonicalize gmail and proton Co-authored-by: Adrià Casajús <adria.casajus@proton.ch> 2022-12-14 11:50:36 +01:00			`from app.utils import random_string, random_words, sanitize_next_url, canonicalize_email`
add param WORDS_FILE_PATH, use random_words when generating email 2019-07-03 22:13:41 +02:00

			`def test_random_words():`
			`s = random_words()`
Feat: Use only sfw words with a number suffix (#1625) * Feat: Use only sfw words with a number suffix * Updated also custom aliases to have a number suffix * do not use _ as separator * use _ as separator for words-based suffix --------- Co-authored-by: Adrià Casajús <adria.casajus@proton.ch> Co-authored-by: Son <nguyenkims@users.noreply.github.com> 2023-03-13 19:55:16 +01:00			`assert s.find("_") > 0`
			`assert s.count("_") == 1`
			`assert len(s) > 3`
			`s = random_words(2, 3)`
use {word1}_{word2}{digits} as random alias address instead of {word1}{word2}{digits} (#1673) 2023-04-04 08:46:29 +02:00			`assert s.count("_") == 1`
Feat: Use only sfw words with a number suffix (#1625) * Feat: Use only sfw words with a number suffix * Updated also custom aliases to have a number suffix * do not use _ as separator * use _ as separator for words-based suffix --------- Co-authored-by: Adrià Casajús <adria.casajus@proton.ch> Co-authored-by: Son <nguyenkims@users.noreply.github.com> 2023-03-13 19:55:16 +01:00			`assert s[-1] in (str(i) for i in range(10))`
add param WORDS_FILE_PATH, use random_words when generating email 2019-07-03 22:13:41 +02:00

			`def test_random_string():`
			`s = random_string()`
			`assert len(s) > 0`
Only allow relative redirects 2022-02-15 15:16:31 +01:00

Properly validate //host.com urls when redirecting after receiving a next param 2022-03-29 17:53:00 +02:00			`def generate_sanitize_url_cases() -> List:`
Only allow relative redirects 2022-02-15 15:16:31 +01:00			`cases = [`
Properly validate //host.com urls when redirecting after receiving a next param 2022-03-29 17:53:00 +02:00			`[None, None],`
			`["", None],`
			`["http://badhttp.com", None],`
			`["https://badhttps.com", None],`
			`["/", "/"],`
			`["/auth", "/auth"],`
			`["/some/path", "/some/path"],`
			`["//somewhere.net", None],`
Fix double backslash open redirect (#1096) 2022-06-16 09:55:08 +02:00			`["//\\\\evil.com", None],`
Only allow relative redirects 2022-02-15 15:16:31 +01:00			`]`
Add support for allowed redirect domains 2022-02-16 09:38:55 +01:00			`for domain in ALLOWED_REDIRECT_DOMAINS:`
Properly validate //host.com urls when redirecting after receiving a next param 2022-03-29 17:53:00 +02:00			`cases.append([f"http://{domain}", f"http://{domain}"])`
			`cases.append([f"https://{domain}", f"https://{domain}"])`
			`cases.append([f"https://{domain}/sub", f"https://{domain}/sub"])`
			`cases.append([domain, None])`
			`cases.append([f"//{domain}", f"//{domain}"])`
Fix open redirect 2022-05-11 14:50:37 +02:00			`cases.append([f"https://google.com\\@{domain}/haha", None])`
Properly validate //host.com urls when redirecting after receiving a next param 2022-03-29 17:53:00 +02:00			`return cases`


			`@pytest.mark.parametrize("url,expected", generate_sanitize_url_cases())`
Fix open redirect 2022-05-11 14:50:37 +02:00			`def test_sanitize_url(url: str, expected: Optional[str]):`
Properly validate //host.com urls when redirecting after receiving a next param 2022-03-29 17:53:00 +02:00			`sanitized = sanitize_next_url(url)`
			`assert expected == sanitized`
Add login with proton 2022-03-14 09:33:31 +01:00

			`def test_parse_querystring():`
			`cases = [`
			`{"input": "", "expected": {}},`
			`{"input": "a=b", "expected": {"a": ["b"]}},`
			`{"input": "a=b&c=d", "expected": {"a": ["b"], "c": ["d"]}},`
			`{"input": "a=b&a=c", "expected": {"a": ["b", "c"]}},`
			`]`

			`for case in cases:`
			`expected = case["expected"]`
			`res = parse_qs(case["input"])`
			`assert len(res) == len(expected)`
			`for k, v in expected.items():`
			`assert res[k] == v`
Canonicalize emails from google and proton before registering users (#1493) * Revert "Revert "Use canonical email when registering users (#1458)" (#1474)" This reverts commit c8ab1c747e4ab82f7e6b146d3d6e83659e6977c4. * Only canonicalize gmail and proton Co-authored-by: Adrià Casajús <adria.casajus@proton.ch> 2022-12-14 11:50:36 +01:00

			`def canonicalize_email_cases():`
			`for domain in ("gmail.com", "protonmail.com", "proton.me", "pm.me"):`
			`yield (f"a@{domain}", f"a@{domain}")`
			`yield (f"a.b@{domain}", f"ab@{domain}")`
			`yield (f"a.b+c@{domain}", f"ab@{domain}")`
Break using an alias as a mailbox loop in the email_handler.py (#1624) * Do not allow to use email alias as account email when linking * Add missing status * Remove TODO * Also break contact as email loop * Better test names * Allow a reverse alias to send an email to an alias * Ident fix * Removed invalid test --------- Co-authored-by: Adrià Casajús <adria.casajus@proton.ch> 2023-03-13 13:01:00 +01:00			`yield ("a.b+c@other.com", "a.b+c@other.com")`
Canonicalize emails from google and proton before registering users (#1493) * Revert "Revert "Use canonical email when registering users (#1458)" (#1474)" This reverts commit c8ab1c747e4ab82f7e6b146d3d6e83659e6977c4. * Only canonicalize gmail and proton Co-authored-by: Adrià Casajús <adria.casajus@proton.ch> 2022-12-14 11:50:36 +01:00

			`@pytest.mark.parametrize("dirty,clean", canonicalize_email_cases())`
			`def test_canonicalize_email(dirty: str, clean: str):`
			`assert canonicalize_email(dirty) == clean`