205 lines
6.0 KiB
Python
205 lines
6.0 KiB
Python
"""The tests for the Home Assistant HTTP component."""
|
|
from datetime import timedelta
|
|
from http import HTTPStatus
|
|
from ipaddress import ip_network
|
|
import logging
|
|
from unittest.mock import Mock, patch
|
|
|
|
import pytest
|
|
|
|
import homeassistant.components.http as http
|
|
from homeassistant.setup import async_setup_component
|
|
from homeassistant.util import dt as dt_util
|
|
from homeassistant.util.ssl import server_context_intermediate, server_context_modern
|
|
|
|
from tests.common import async_fire_time_changed
|
|
|
|
|
|
@pytest.fixture
|
|
def mock_stack():
|
|
"""Mock extract stack."""
|
|
with patch(
|
|
"homeassistant.components.http.extract_stack",
|
|
return_value=[
|
|
Mock(
|
|
filename="/home/paulus/core/homeassistant/core.py",
|
|
lineno="23",
|
|
line="do_something()",
|
|
),
|
|
Mock(
|
|
filename="/home/paulus/core/homeassistant/components/hue/light.py",
|
|
lineno="23",
|
|
line="self.light.is_on",
|
|
),
|
|
Mock(
|
|
filename="/home/paulus/core/homeassistant/components/http/__init__.py",
|
|
lineno="157",
|
|
line="base_url",
|
|
),
|
|
],
|
|
):
|
|
yield
|
|
|
|
|
|
class TestView(http.HomeAssistantView):
|
|
"""Test the HTTP views."""
|
|
|
|
name = "test"
|
|
url = "/hello"
|
|
|
|
async def get(self, request):
|
|
"""Return a get request."""
|
|
return "hello"
|
|
|
|
|
|
async def test_registering_view_while_running(
|
|
hass, aiohttp_client, aiohttp_unused_port
|
|
):
|
|
"""Test that we can register a view while the server is running."""
|
|
await async_setup_component(
|
|
hass, http.DOMAIN, {http.DOMAIN: {http.CONF_SERVER_PORT: aiohttp_unused_port()}}
|
|
)
|
|
|
|
await hass.async_start()
|
|
# This raises a RuntimeError if app is frozen
|
|
hass.http.register_view(TestView)
|
|
|
|
|
|
async def test_not_log_password(hass, hass_client_no_auth, caplog, legacy_auth):
|
|
"""Test access with password doesn't get logged."""
|
|
assert await async_setup_component(hass, "api", {"http": {}})
|
|
client = await hass_client_no_auth()
|
|
logging.getLogger("aiohttp.access").setLevel(logging.INFO)
|
|
|
|
resp = await client.get("/api/", params={"api_password": "test-password"})
|
|
|
|
assert resp.status == HTTPStatus.UNAUTHORIZED
|
|
logs = caplog.text
|
|
|
|
# Ensure we don't log API passwords
|
|
assert "/api/" in logs
|
|
assert "some-pass" not in logs
|
|
|
|
|
|
async def test_proxy_config(hass):
|
|
"""Test use_x_forwarded_for must config together with trusted_proxies."""
|
|
assert (
|
|
await async_setup_component(
|
|
hass,
|
|
"http",
|
|
{
|
|
"http": {
|
|
http.CONF_USE_X_FORWARDED_FOR: True,
|
|
http.CONF_TRUSTED_PROXIES: ["127.0.0.1"],
|
|
}
|
|
},
|
|
)
|
|
is True
|
|
)
|
|
|
|
|
|
async def test_proxy_config_only_use_xff(hass):
|
|
"""Test use_x_forwarded_for must config together with trusted_proxies."""
|
|
assert (
|
|
await async_setup_component(
|
|
hass, "http", {"http": {http.CONF_USE_X_FORWARDED_FOR: True}}
|
|
)
|
|
is not True
|
|
)
|
|
|
|
|
|
async def test_proxy_config_only_trust_proxies(hass):
|
|
"""Test use_x_forwarded_for must config together with trusted_proxies."""
|
|
assert (
|
|
await async_setup_component(
|
|
hass, "http", {"http": {http.CONF_TRUSTED_PROXIES: ["127.0.0.1"]}}
|
|
)
|
|
is not True
|
|
)
|
|
|
|
|
|
async def test_ssl_profile_defaults_modern(hass):
|
|
"""Test default ssl profile."""
|
|
assert await async_setup_component(hass, "http", {}) is True
|
|
|
|
hass.http.ssl_certificate = "bla"
|
|
|
|
with patch("ssl.SSLContext.load_cert_chain"), patch(
|
|
"homeassistant.util.ssl.server_context_modern",
|
|
side_effect=server_context_modern,
|
|
) as mock_context:
|
|
await hass.async_start()
|
|
await hass.async_block_till_done()
|
|
|
|
assert len(mock_context.mock_calls) == 1
|
|
|
|
|
|
async def test_ssl_profile_change_intermediate(hass):
|
|
"""Test setting ssl profile to intermediate."""
|
|
assert (
|
|
await async_setup_component(
|
|
hass, "http", {"http": {"ssl_profile": "intermediate"}}
|
|
)
|
|
is True
|
|
)
|
|
|
|
hass.http.ssl_certificate = "bla"
|
|
|
|
with patch("ssl.SSLContext.load_cert_chain"), patch(
|
|
"homeassistant.util.ssl.server_context_intermediate",
|
|
side_effect=server_context_intermediate,
|
|
) as mock_context:
|
|
await hass.async_start()
|
|
await hass.async_block_till_done()
|
|
|
|
assert len(mock_context.mock_calls) == 1
|
|
|
|
|
|
async def test_ssl_profile_change_modern(hass):
|
|
"""Test setting ssl profile to modern."""
|
|
assert (
|
|
await async_setup_component(hass, "http", {"http": {"ssl_profile": "modern"}})
|
|
is True
|
|
)
|
|
|
|
hass.http.ssl_certificate = "bla"
|
|
|
|
with patch("ssl.SSLContext.load_cert_chain"), patch(
|
|
"homeassistant.util.ssl.server_context_modern",
|
|
side_effect=server_context_modern,
|
|
) as mock_context:
|
|
await hass.async_start()
|
|
await hass.async_block_till_done()
|
|
|
|
assert len(mock_context.mock_calls) == 1
|
|
|
|
|
|
async def test_cors_defaults(hass):
|
|
"""Test the CORS default settings."""
|
|
with patch("homeassistant.components.http.setup_cors") as mock_setup:
|
|
assert await async_setup_component(hass, "http", {})
|
|
|
|
assert len(mock_setup.mock_calls) == 1
|
|
assert mock_setup.mock_calls[0][1][1] == ["https://cast.home-assistant.io"]
|
|
|
|
|
|
async def test_storing_config(hass, aiohttp_client, aiohttp_unused_port):
|
|
"""Test that we store last working config."""
|
|
config = {
|
|
http.CONF_SERVER_PORT: aiohttp_unused_port(),
|
|
"use_x_forwarded_for": True,
|
|
"trusted_proxies": ["192.168.1.100"],
|
|
}
|
|
|
|
assert await async_setup_component(hass, http.DOMAIN, {http.DOMAIN: config})
|
|
|
|
await hass.async_start()
|
|
|
|
async_fire_time_changed(hass, dt_util.utcnow() + timedelta(seconds=200))
|
|
await hass.async_block_till_done()
|
|
|
|
restored = await hass.components.http.async_get_last_config()
|
|
restored["trusted_proxies"][0] = ip_network(restored["trusted_proxies"][0])
|
|
|
|
assert restored == http.HTTP_SCHEMA(config)
|