Scott.Idem/OSIT-AE-API-FastAPI
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
6bfbff309a4846cb2f2e96a04db20bb32afa9e28
OSIT-AE-API-FastAPI/tests/archive/test_e2e_passcode_auth.py
Scott Idem 37c84de57b chore(tests): consolidate E2E test suite into standardized primary scripts 
- Combined 10+ one-off tests into 4 primary functional suites (Search, Auth, Lifecycle, Vision).
- Archived original scripts to tests/archive/.
- Updated README with the new standardized inventory.
- Applied clean output formatting across the new suite.
2026-02-03 16:50:18 -05:00

81 lines
2.5 KiB
Python
Raw Blame History

import requests
import json
import jwt
import sys
# Configuration
BASE_URL = "https://dev-api.oneskyit.com"
SITE_ID = "ltOdfNtjZLo" # Found from DB
VALID_PASSCODE = "10241024" # 'super' role for this site
INVALID_PASSCODE = "wrong-code-123"
def test_passcode_authentication():
print(f"\n--- Testing Passcode Authentication for Site: {SITE_ID} ---")
url = f"{BASE_URL}/api/authenticate_passcode"
payload = {
"site_id": SITE_ID,
"passcode": VALID_PASSCODE
}
try:
# 1. Test Valid Auth
print(f"[1] Requesting JWT with VALID passcode...")
response = requests.post(url, json=payload)
print(f"Status: {response.status_code}")
if response.status_code != 200:
print(f"❌ Auth Failed! Response: {response.text}")
return None
data = response.json()
token = data.get('data', {}).get('jwt')
role = data.get('data', {}).get('role')
if not token:
print("❌ No token in response.")
return None
print(f"✅ Success! Token received for role: '{role}'")
# 2. Inspect JWT Payload
print("\n[2] Inspecting JWT Payload (Unverified)...")
decoded = jwt.decode(token, options={"verify_signature": False})
print(f"Payload: {json.dumps(decoded, indent=2)}")
# Check for role flags
if decoded.get('super') is True:
print("✅ SUCCESS: 'super' flag is correctly set in JWT.")
else:
print("❌ FAILURE: 'super' flag missing or False in JWT.")
sys.exit(1)
# 3. Test Invalid Auth
print("\n[3] Requesting JWT with INVALID passcode...")
payload_bad = {
"site_id": SITE_ID,
"passcode": INVALID_PASSCODE
}
resp_bad = requests.post(url, json=payload_bad)
print(f"Status: {resp_bad.status_code}")
if resp_bad.status_code == 401:
print("✅ SUCCESS: Invalid passcode correctly rejected (401).")
else:
print(f"❌ FAILURE: Unexpected status for bad passcode: {resp_bad.status_code}")
sys.exit(1)
return token
except Exception as e:
print(f"❌ Error during test: {e}")
return None
if __name__ == "__main__":
token = test_passcode_authentication()
if token:
print("\n🎉 Passcode Authentication E2E Test Passed!")
else:
print("\n❌ Test FAILED.")
sys.exit(1)
Reference in New Issue View Git Blame Copy Permalink