Skip to content

E
edx-platform
Switch branch/tag
Find file
Normal viewHistoryPermalink
mixins.py 1.19 KB
Newer Older
Configure LMS to select oauth2 providing library.
1df04022
 
J. Cliff Dyer committed
1 2 3 
"""
OAuth Dispatch test mixins
"""
Updated access token view to return a JWT as an access token
6941fcd7
 
Clinton Blackburn committed
4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 
import jwt
from django.conf import settings


class AccessTokenMixin(object):
    """ Mixin for tests dealing with OAuth 2 access tokens. """

    def assert_valid_jwt_access_token(self, access_token, user, scopes=None):
        """
        Verify the specified JWT access token is valid, and belongs to the specified user.

        Args:
            access_token (str): JWT
            user (User): User whose information is contained in the JWT payload.

        Returns:
            dict: Decoded JWT payload
        """
        scopes = scopes or []
        audience = settings.JWT_AUTH['JWT_AUDIENCE']
        issuer = settings.JWT_AUTH['JWT_ISSUER']
        payload = jwt.decode(
            access_token,
            settings.JWT_AUTH['JWT_SECRET_KEY'],
            algorithms=[settings.JWT_AUTH['JWT_ALGORITHM']],
            audience=audience,
            issuer=issuer
        )

        expected = {
            'aud': audience,
            'iss': issuer,
            'preferred_username': user.username,
        }

        if 'email' in scopes:
            expected['email'] = user.email

        self.assertDictContainsSubset(expected, payload)

        return payload