0001-paybox-raise-ResponseError-on-malformed-signatures-4.patch

Benjamin Dauvergne, 11 mars 2021 12:54

Voir les différences: en ligne côte à côte

Subject: [PATCH] paybox: raise ResponseError on malformed signatures (#49705)

 eopayment/paybox.py  |  5 ++++-
 tests/test_paybox.py | 16 ++++++++++++++++
 2 files changed, 20 insertions(+), 1 deletion(-)

             signed = False
             if 'signature' in d:
                 sig = d['signature'][0]
                 sig = base64.b64decode(sig)
                 try:
                     sig = base64.b64decode(sig)
                 except (TypeError, ValueError):
                     raise ResponseError('invalid signature')
                 data = []
                 if callback:
                     for key in ('montant', 'reference', 'code_autorisation',

             self.assertIn('PBX_AUTOSEULE', form_params)
             self.assertEqual(form_params['PBX_AUTOSEULE'], 'O')
         def test_invalid_signature(self):
             backend = eopayment.Payment('paybox', BACKEND_PARAMS)
             order_id = '20160216'
             transaction = '1234'
             reference = '%s!%s' % (transaction, order_id)
             data = {
                 'montant': '4242',
                 'reference': reference,
                 'code_autorisation': 'A',
                 'erreur': '00000',
                 'date_transaction': '20200101',
                 'heure_transaction': '01:01:01',
                 'signature': 'a'}
             with pytest.raises(eopayment.ResponseError, match='invalid signature'):
                 backend.response(urllib.urlencode(data))
     @pytest.mark.parametrize('name,value,result', [
         ('shared_secret', '1f', True),
+    -

Produits Entr'ouvert » EOPayment