Produits Entr'ouvert » Mandaye

    # Secret Key used for the encryption/decryption

    # Must be 16, 32 or 64 bytes long

    SECRET_KEY = 'whatever you want but keep it secret'

    python-crypto

import base64

from Crypto.Cipher import AES

from django.conf import settings

from jsonfield import JSONField

from mandayejs.mandaye.utils import get_password_field

    def save(self, *args, **kwargs):

        self.encrypt()

        super(UserCredentials, self).save(*args, **kwargs)

    def _get_cipher(self):

        """Return cipher object

        """

        return AES.new(getattr(settings, 'SECRET_KEY'), AES.MODE_CFB, "0000000000000000")

    def encrypt(self,):

        """Encrypt password

        """

        password_field_name = get_password_field()

        cipher = self._get_cipher()

        self.locators[password_field_name] = \

           base64.b64encode(cipher.encrypt(

               self.locators.get(password_field_name,'')

            )) 

        return self.locators

    def decrypt(self,):

        """Decrypt password

        """

        password_field_name = get_password_field()

        cipher = self._get_cipher()

        self.locators[password_field_name] = \

            cipher.decrypt(

                base64.b64decode(

                    self.locators.get(password_field_name,'')

            ))

        return self.locators

    def to_login_info(self, decrypt=False):

        if decrypt:

            self.decrypt()

def get_password_field():

    """Return name of the password field

    """

    try:

        field_name = [ field.get('name') for field in settings.SITE_LOCATORS if field.get('kind') == 'password' ]

        return field_name[0]

    except (IndexError,):

        return None

    login_info['locators'] = [ credentials.to_login_info(decrypt=True)]

import pytest

from django.conf import settings

from django.contrib.auth.models import User

from mandayejs.mandaye.models import UserCredentials

pytestmark = pytest.mark.django_db

def create_user(**kwargs):

    password = kwargs.pop('password', None) or kwargs.get('username')

    user, created = User.objects.get_or_create(**kwargs)

    if password:

        user.set_password(password)

        user.save()

    return user

def create_credentials(user, credentials):

    user, created = UserCredentials.objects.get_or_create(user=user, locators=credentials)

    return user

@pytest.fixture

def user_john(db):

    return create_user(username='john')    

@pytest.fixture

def cred_john(db,user_john):

    return create_credentials(user_john, {

            "username": "john",

            "password": "john password"

        })

@pytest.fixture(params=['cred_john'])

def credentials(request, cred_john):

    return locals().get(request.param)

def test_encryption(credentials):

    decrypted = credentials.decrypt()

    assert decrypted.get('password') == 'john password'

def test_migrate_users_command():

    pass

[tox]

envlist = django17

[testenv:django17]

setenv = DJANGO_SETTINGS_MODULE=mandayejs.settings

usedevelop = True

command = pytest -vs tests/tests.py 

deps = django>1.7,<1.8

    pytest

    pytest-django

[testenv:pylint]

usedevelop = True

command = pylint mandayejs

deps = pylint