68 lines
1.8 KiB
Python
68 lines
1.8 KiB
Python
import os
|
|
import posixpath
|
|
import sys
|
|
|
|
import pytest
|
|
|
|
from werkzeug.security import check_password_hash
|
|
from werkzeug.security import generate_password_hash
|
|
from werkzeug.security import safe_join
|
|
|
|
|
|
def test_default_password_method():
|
|
value = generate_password_hash("secret")
|
|
assert value.startswith("scrypt:")
|
|
|
|
|
|
@pytest.mark.xfail(
|
|
sys.implementation.name == "pypy", reason="scrypt unavailable on pypy"
|
|
)
|
|
def test_scrypt():
|
|
value = generate_password_hash("secret", method="scrypt")
|
|
assert check_password_hash(value, "secret")
|
|
assert value.startswith("scrypt:32768:8:1$")
|
|
|
|
|
|
def test_pbkdf2():
|
|
value = generate_password_hash("secret", method="pbkdf2")
|
|
assert check_password_hash(value, "secret")
|
|
assert value.startswith("pbkdf2:sha256:600000$")
|
|
|
|
|
|
def test_salted_hashes():
|
|
hash1 = generate_password_hash("secret")
|
|
hash2 = generate_password_hash("secret")
|
|
assert hash1 != hash2
|
|
assert check_password_hash(hash1, "secret")
|
|
assert check_password_hash(hash2, "secret")
|
|
|
|
|
|
def test_require_salt():
|
|
with pytest.raises(ValueError):
|
|
generate_password_hash("secret", salt_length=0)
|
|
|
|
|
|
def test_invalid_method():
|
|
with pytest.raises(ValueError, match="Invalid hash method"):
|
|
generate_password_hash("secret", "sha256")
|
|
|
|
|
|
def test_safe_join():
|
|
assert safe_join("foo", "bar/baz") == posixpath.join("foo", "bar/baz")
|
|
assert safe_join("foo", "../bar/baz") is None
|
|
if os.name == "nt":
|
|
assert safe_join("foo", "foo\\bar") is None
|
|
|
|
|
|
def test_safe_join_os_sep():
|
|
import werkzeug.security as sec
|
|
|
|
prev_value = sec._os_alt_seps
|
|
sec._os_alt_seps = "*"
|
|
assert safe_join("foo", "bar/baz*") is None
|
|
sec._os_alt_steps = prev_value
|
|
|
|
|
|
def test_safe_join_empty_trusted():
|
|
assert safe_join("", "c:test.txt") == "./c:test.txt"
|