zulip/zerver/tests/test_external.py

# -*- coding: utf-8 -*-
from django.conf import settings
from django.core.exceptions import ValidationError
from django.http import HttpResponse

from zerver.forms import email_is_not_mit_mailing_list

from zerver.lib.rate_limiter import (
    add_ratelimit_rule,
    clear_history,
    remove_ratelimit_rule,
    RateLimitedUser,
)

from zerver.lib.actions import compute_mit_user_fullname
from zerver.lib.test_classes import (
    ZulipTestCase,
)

import DNS
import mock
import time

import urllib
from typing import Text

class MITNameTest(ZulipTestCase):
    def test_valid_hesiod(self) -> None:
        with mock.patch('DNS.dnslookup', return_value=[['starnine:*:84233:101:Athena Consulting Exchange User,,,:/mit/starnine:/bin/bash']]):
            self.assertEqual(compute_mit_user_fullname(self.mit_email("starnine")), "Athena Consulting Exchange User")
        with mock.patch('DNS.dnslookup', return_value=[['sipbexch:*:87824:101:Exch Sipb,,,:/mit/sipbexch:/bin/athena/bash']]):
            self.assertEqual(compute_mit_user_fullname("sipbexch@mit.edu"), "Exch Sipb")

    def test_invalid_hesiod(self) -> None:
        with mock.patch('DNS.dnslookup', side_effect=DNS.Base.ServerError('DNS query status: NXDOMAIN', 3)):
            self.assertEqual(compute_mit_user_fullname("1234567890@mit.edu"), "1234567890@mit.edu")
        with mock.patch('DNS.dnslookup', side_effect=DNS.Base.ServerError('DNS query status: NXDOMAIN', 3)):
            self.assertEqual(compute_mit_user_fullname("ec-discuss@mit.edu"), "ec-discuss@mit.edu")

    def test_mailinglist(self) -> None:
        with mock.patch('DNS.dnslookup', side_effect=DNS.Base.ServerError('DNS query status: NXDOMAIN', 3)):
            self.assertRaises(ValidationError, email_is_not_mit_mailing_list, "1234567890@mit.edu")
        with mock.patch('DNS.dnslookup', side_effect=DNS.Base.ServerError('DNS query status: NXDOMAIN', 3)):
            self.assertRaises(ValidationError, email_is_not_mit_mailing_list, "ec-discuss@mit.edu")

    def test_notmailinglist(self) -> None:
        with mock.patch('DNS.dnslookup', return_value=[['POP IMAP.EXCHANGE.MIT.EDU starnine']]):
            email_is_not_mit_mailing_list("sipbexch@mit.edu")

class RateLimitTests(ZulipTestCase):

    def setUp(self) -> None:
        settings.RATE_LIMITING = True
        add_ratelimit_rule(1, 5)

    def tearDown(self) -> None:
        settings.RATE_LIMITING = False
        remove_ratelimit_rule(1, 5)

    def send_api_message(self, email: Text, content: Text) -> HttpResponse:
        return self.client_post("/api/v1/messages", {"type": "stream",
                                                     "to": "Verona",
                                                     "client": "test suite",
                                                     "content": content,
                                                     "subject": "Test subject"},
                                **self.api_auth(email))

    def test_headers(self) -> None:
        user = self.example_user('hamlet')
        email = user.email
        clear_history(RateLimitedUser(user))

        result = self.send_api_message(email, "some stuff")
        self.assertTrue('X-RateLimit-Remaining' in result)
        self.assertTrue('X-RateLimit-Limit' in result)
        self.assertTrue('X-RateLimit-Reset' in result)

    def test_ratelimit_decrease(self) -> None:
        user = self.example_user('hamlet')
        email = user.email
        clear_history(RateLimitedUser(user))
        result = self.send_api_message(email, "some stuff")
        limit = int(result['X-RateLimit-Remaining'])

        result = self.send_api_message(email, "some stuff 2")
        newlimit = int(result['X-RateLimit-Remaining'])
        self.assertEqual(limit, newlimit + 1)

    def test_hit_ratelimits(self) -> None:
        user = self.example_user('cordelia')
        email = user.email
        clear_history(RateLimitedUser(user))

        start_time = time.time()
        for i in range(6):
            with mock.patch('time.time', return_value=(start_time + i * 0.1)):
                result = self.send_api_message(email, "some stuff %s" % (i,))

        self.assertEqual(result.status_code, 429)
        json = result.json()
        self.assertEqual(json.get("result"), "error")
        self.assertIn("API usage exceeded rate limit", json.get("msg"))
        self.assertEqual(json.get('retry-after'), 0.5)
        self.assertTrue('Retry-After' in result)
        self.assertEqual(result['Retry-After'], '0.5')

        # We actually wait a second here, rather than force-clearing our history,
        # to make sure the rate-limiting code automatically forgives a user
        # after some time has passed.
        with mock.patch('time.time', return_value=(start_time + 1.0)):
            result = self.send_api_message(email, "Good message")

            self.assert_json_success(result)
Extract test_external.py (imported from commit 838dd34f101025ba161291992a56972cd374104b) 2014-01-31 18:53:33 +01:00			`# -- coding: utf-8 --`
			`from django.conf import settings`
			`from django.core.exceptions import ValidationError`
Annotate test_external and test_signup. 2016-06-04 20:14:05 +02:00			`from django.http import HttpResponse`
Extract test_external.py (imported from commit 838dd34f101025ba161291992a56972cd374104b) 2014-01-31 18:53:33 +01:00
forms.py: Refactor MIT mailing list check into a modern style. No change to behavior. non_mit_mailing_list never returned False, so it was never possible to reach the line "Otherwise, the user is an MIT mailing list, and .." 2016-11-06 00:29:55 +01:00			`from zerver.forms import email_is_not_mit_mailing_list`
Extract test_external.py (imported from commit 838dd34f101025ba161291992a56972cd374104b) 2014-01-31 18:53:33 +01:00
			`from zerver.lib.rate_limiter import (`
			`add_ratelimit_rule,`
rate_limiter: Upgrade clear_user_history to generic API. Changes the name of the function to change_history as well. 2017-07-31 07:03:52 +02:00			`clear_history,`
Extract test_external.py (imported from commit 838dd34f101025ba161291992a56972cd374104b) 2014-01-31 18:53:33 +01:00			`remove_ratelimit_rule,`
rate_limiter: Upgrade clear_user_history to generic API. Changes the name of the function to change_history as well. 2017-07-31 07:03:52 +02:00			`RateLimitedUser,`
Extract test_external.py (imported from commit 838dd34f101025ba161291992a56972cd374104b) 2014-01-31 18:53:33 +01:00			`)`

			`from zerver.lib.actions import compute_mit_user_fullname`
tests: Split out ZulipTestCase and WebhookTestCase to a separate file. Fixes #1671. 2016-11-10 19:30:09 +01:00			`from zerver.lib.test_classes import (`
			`ZulipTestCase,`
			`)`
Extract test_external.py (imported from commit 838dd34f101025ba161291992a56972cd374104b) 2014-01-31 18:53:33 +01:00
MITNameTest: Mock network access from Hesiod lookups. The purpose of these tests is to check the logic, not that DNS is working on the relevant machine. 2016-04-28 07:17:10 +02:00			`import DNS`
			`import mock`
Extract test_external.py (imported from commit 838dd34f101025ba161291992a56972cd374104b) 2014-01-31 18:53:33 +01:00			`import time`

Change urllib import to be Python 3-specific. 2017-11-05 05:30:31 +01:00			`import urllib`
mypy: Convert zerver/tests/ to use typing.Text. 2016-12-04 18:38:56 +01:00			`from typing import Text`
Extract test_external.py (imported from commit 838dd34f101025ba161291992a56972cd374104b) 2014-01-31 18:53:33 +01:00
Make MITNameTest use ZulipTestCase instead of TestCase. 2017-05-23 02:33:04 +02:00			`class MITNameTest(ZulipTestCase):`
zerver/tests: Use python 3 syntax for typing. 2017-11-05 10:51:25 +01:00			`def test_valid_hesiod(self) -> None:`
MITNameTest: Mock network access from Hesiod lookups. The purpose of these tests is to check the logic, not that DNS is working on the relevant machine. 2016-04-28 07:17:10 +02:00			`with mock.patch('DNS.dnslookup', return_value=[['starnine:*:84233:101:Athena Consulting Exchange User,,,:/mit/starnine:/bin/bash']]):`
tests: Replace mit_user().email with mit_email(). 2017-05-24 21:21:35 +02:00			`self.assertEqual(compute_mit_user_fullname(self.mit_email("starnine")), "Athena Consulting Exchange User")`
MITNameTest: Mock network access from Hesiod lookups. The purpose of these tests is to check the logic, not that DNS is working on the relevant machine. 2016-04-28 07:17:10 +02:00			`with mock.patch('DNS.dnslookup', return_value=[['sipbexch:*:87824:101:Exch Sipb,,,:/mit/sipbexch:/bin/athena/bash']]):`
tests: s/assertEquals/assertEqual/ due to deprecation. Fixes #2730. 2016-12-16 02:01:34 +01:00			`self.assertEqual(compute_mit_user_fullname("sipbexch@mit.edu"), "Exch Sipb")`
MITNameTest: Mock network access from Hesiod lookups. The purpose of these tests is to check the logic, not that DNS is working on the relevant machine. 2016-04-28 07:17:10 +02:00
zerver/tests: Use python 3 syntax for typing. 2017-11-05 10:51:25 +01:00			`def test_invalid_hesiod(self) -> None:`
MITNameTest: Mock network access from Hesiod lookups. The purpose of these tests is to check the logic, not that DNS is working on the relevant machine. 2016-04-28 07:17:10 +02:00			`with mock.patch('DNS.dnslookup', side_effect=DNS.Base.ServerError('DNS query status: NXDOMAIN', 3)):`
tests: s/assertEquals/assertEqual/ due to deprecation. Fixes #2730. 2016-12-16 02:01:34 +01:00			`self.assertEqual(compute_mit_user_fullname("1234567890@mit.edu"), "1234567890@mit.edu")`
MITNameTest: Mock network access from Hesiod lookups. The purpose of these tests is to check the logic, not that DNS is working on the relevant machine. 2016-04-28 07:17:10 +02:00			`with mock.patch('DNS.dnslookup', side_effect=DNS.Base.ServerError('DNS query status: NXDOMAIN', 3)):`
tests: s/assertEquals/assertEqual/ due to deprecation. Fixes #2730. 2016-12-16 02:01:34 +01:00			`self.assertEqual(compute_mit_user_fullname("ec-discuss@mit.edu"), "ec-discuss@mit.edu")`
Extract test_external.py (imported from commit 838dd34f101025ba161291992a56972cd374104b) 2014-01-31 18:53:33 +01:00
zerver/tests: Use python 3 syntax for typing. 2017-11-05 10:51:25 +01:00			`def test_mailinglist(self) -> None:`
MITNameTest: Mock network access from Hesiod lookups. The purpose of these tests is to check the logic, not that DNS is working on the relevant machine. 2016-04-28 07:17:10 +02:00			`with mock.patch('DNS.dnslookup', side_effect=DNS.Base.ServerError('DNS query status: NXDOMAIN', 3)):`
forms.py: Refactor MIT mailing list check into a modern style. No change to behavior. non_mit_mailing_list never returned False, so it was never possible to reach the line "Otherwise, the user is an MIT mailing list, and .." 2016-11-06 00:29:55 +01:00			`self.assertRaises(ValidationError, email_is_not_mit_mailing_list, "1234567890@mit.edu")`
MITNameTest: Mock network access from Hesiod lookups. The purpose of these tests is to check the logic, not that DNS is working on the relevant machine. 2016-04-28 07:17:10 +02:00			`with mock.patch('DNS.dnslookup', side_effect=DNS.Base.ServerError('DNS query status: NXDOMAIN', 3)):`
forms.py: Refactor MIT mailing list check into a modern style. No change to behavior. non_mit_mailing_list never returned False, so it was never possible to reach the line "Otherwise, the user is an MIT mailing list, and .." 2016-11-06 00:29:55 +01:00			`self.assertRaises(ValidationError, email_is_not_mit_mailing_list, "ec-discuss@mit.edu")`
pep8: Fix E301 pep8 violations. Fix "E301: expected (1 or 2) blank line" pep8 violations. 2016-11-29 07:22:02 +01:00
zerver/tests: Use python 3 syntax for typing. 2017-11-05 10:51:25 +01:00			`def test_notmailinglist(self) -> None:`
MITNameTest: Mock network access from Hesiod lookups. The purpose of these tests is to check the logic, not that DNS is working on the relevant machine. 2016-04-28 07:17:10 +02:00			`with mock.patch('DNS.dnslookup', return_value=[['POP IMAP.EXCHANGE.MIT.EDU starnine']]):`
forms.py: Refactor MIT mailing list check into a modern style. No change to behavior. non_mit_mailing_list never returned False, so it was never possible to reach the line "Otherwise, the user is an MIT mailing list, and .." 2016-11-06 00:29:55 +01:00			`email_is_not_mit_mailing_list("sipbexch@mit.edu")`
Extract test_external.py (imported from commit 838dd34f101025ba161291992a56972cd374104b) 2014-01-31 18:53:33 +01:00
tests: Renamed AuthedTestCase to ZulipTestCase. 2016-08-23 02:08:42 +02:00			`class RateLimitTests(ZulipTestCase):`
Extract test_external.py (imported from commit 838dd34f101025ba161291992a56972cd374104b) 2014-01-31 18:53:33 +01:00
zerver/tests: Use python 3 syntax for typing. 2017-11-05 10:51:25 +01:00			`def setUp(self) -> None:`
Extract test_external.py (imported from commit 838dd34f101025ba161291992a56972cd374104b) 2014-01-31 18:53:33 +01:00			`settings.RATE_LIMITING = True`
			`add_ratelimit_rule(1, 5)`

zerver/tests: Use python 3 syntax for typing. 2017-11-05 10:51:25 +01:00			`def tearDown(self) -> None:`
Extract test_external.py (imported from commit 838dd34f101025ba161291992a56972cd374104b) 2014-01-31 18:53:33 +01:00			`settings.RATE_LIMITING = False`
			`remove_ratelimit_rule(1, 5)`

zerver/tests: Use python 3 syntax for typing. 2017-11-05 10:51:25 +01:00			`def send_api_message(self, email: Text, content: Text) -> HttpResponse:`
Remove legacy /api/v1/send_message endpoint. This was the original way to send messages via the Zulip API in the very early days of Zulip, but was replaced by the REST API back in 2013. Fixes: #730. 2016-09-27 21:41:42 +02:00			`return self.client_post("/api/v1/messages", {"type": "stream",`
			`"to": "Verona",`
			`"client": "test suite",`
			`"content": content,`
			`"subject": "Test subject"},`
			`**self.api_auth(email))`

zerver/tests: Use python 3 syntax for typing. 2017-11-05 10:51:25 +01:00			`def test_headers(self) -> None:`
Use self.example_user() in more places. This fixes most cases where we were assigning a user to the var email and then calling get_user_profile_by_email with that var. (This was fixed mostly with a script.) 2017-05-07 19:39:30 +02:00			`user = self.example_user('hamlet')`
			`email = user.email`
rate_limiter: Upgrade clear_user_history to generic API. Changes the name of the function to change_history as well. 2017-07-31 07:03:52 +02:00			`clear_history(RateLimitedUser(user))`
Extract test_external.py (imported from commit 838dd34f101025ba161291992a56972cd374104b) 2014-01-31 18:53:33 +01:00
RateLimitTests: Remove now-unnecessary API key logic. 2016-09-27 23:27:36 +02:00			`result = self.send_api_message(email, "some stuff")`
Extract test_external.py (imported from commit 838dd34f101025ba161291992a56972cd374104b) 2014-01-31 18:53:33 +01:00			`self.assertTrue('X-RateLimit-Remaining' in result)`
			`self.assertTrue('X-RateLimit-Limit' in result)`
			`self.assertTrue('X-RateLimit-Reset' in result)`

zerver/tests: Use python 3 syntax for typing. 2017-11-05 10:51:25 +01:00			`def test_ratelimit_decrease(self) -> None:`
Use self.example_user() in more places. This fixes most cases where we were assigning a user to the var email and then calling get_user_profile_by_email with that var. (This was fixed mostly with a script.) 2017-05-07 19:39:30 +02:00			`user = self.example_user('hamlet')`
			`email = user.email`
rate_limiter: Upgrade clear_user_history to generic API. Changes the name of the function to change_history as well. 2017-07-31 07:03:52 +02:00			`clear_history(RateLimitedUser(user))`
RateLimitTests: Remove now-unnecessary API key logic. 2016-09-27 23:27:36 +02:00			`result = self.send_api_message(email, "some stuff")`
Extract test_external.py (imported from commit 838dd34f101025ba161291992a56972cd374104b) 2014-01-31 18:53:33 +01:00			`limit = int(result['X-RateLimit-Remaining'])`

RateLimitTests: Remove now-unnecessary API key logic. 2016-09-27 23:27:36 +02:00			`result = self.send_api_message(email, "some stuff 2")`
Extract test_external.py (imported from commit 838dd34f101025ba161291992a56972cd374104b) 2014-01-31 18:53:33 +01:00			`newlimit = int(result['X-RateLimit-Remaining'])`
			`self.assertEqual(limit, newlimit + 1)`

zerver/tests: Use python 3 syntax for typing. 2017-11-05 10:51:25 +01:00			`def test_hit_ratelimits(self) -> None:`
Use self.example_user() in more places. This fixes most cases where we were assigning a user to the var email and then calling get_user_profile_by_email with that var. (This was fixed mostly with a script.) 2017-05-07 19:39:30 +02:00			`user = self.example_user('cordelia')`
			`email = user.email`
rate_limiter: Upgrade clear_user_history to generic API. Changes the name of the function to change_history as well. 2017-07-31 07:03:52 +02:00			`clear_history(RateLimitedUser(user))`
Extract test_external.py (imported from commit 838dd34f101025ba161291992a56972cd374104b) 2014-01-31 18:53:33 +01:00
testing: Make test_hit_ratelimits deterministic. On slower systems or virtual environments, when you are running tests in parallel mode, sometimes the time taken to send messages in this test exceeds 1 second which resets the limit. 2017-05-06 13:56:02 +02:00			`start_time = time.time()`
Extract test_external.py (imported from commit 838dd34f101025ba161291992a56972cd374104b) 2014-01-31 18:53:33 +01:00			`for i in range(6):`
testing: Make test_hit_ratelimits deterministic. On slower systems or virtual environments, when you are running tests in parallel mode, sometimes the time taken to send messages in this test exceeds 1 second which resets the limit. 2017-05-06 13:56:02 +02:00			`with mock.patch('time.time', return_value=(start_time + i * 0.1)):`
			`result = self.send_api_message(email, "some stuff %s" % (i,))`
Extract test_external.py (imported from commit 838dd34f101025ba161291992a56972cd374104b) 2014-01-31 18:53:33 +01:00
Use a different status code and include seconds remaining header in ratelimits This will make it slightly easier to consume the data from our clients. Ref: RFC 6585 §4 (imported from commit 6d323dc25db78a6d84a163add950f039e03e73d3) 2014-03-07 16:47:30 +01:00			`self.assertEqual(result.status_code, 429)`
result.json: Upgrade test_external. 2017-08-17 08:40:19 +02:00			`json = result.json()`
Extract test_external.py (imported from commit 838dd34f101025ba161291992a56972cd374104b) 2014-01-31 18:53:33 +01:00			`self.assertEqual(json.get("result"), "error")`
rate_limit: Make retry-after data machine-readable. Fixes #4831. 2017-05-22 20:12:59 +02:00			`self.assertIn("API usage exceeded rate limit", json.get("msg"))`
			`self.assertEqual(json.get('retry-after'), 0.5)`
Use a different status code and include seconds remaining header in ratelimits This will make it slightly easier to consume the data from our clients. Ref: RFC 6585 §4 (imported from commit 6d323dc25db78a6d84a163add950f039e03e73d3) 2014-03-07 16:47:30 +01:00			`self.assertTrue('Retry-After' in result)`
testing: Make test_hit_ratelimits deterministic. On slower systems or virtual environments, when you are running tests in parallel mode, sometimes the time taken to send messages in this test exceeds 1 second which resets the limit. 2017-05-06 13:56:02 +02:00			`self.assertEqual(result['Retry-After'], '0.5')`
Extract test_external.py (imported from commit 838dd34f101025ba161291992a56972cd374104b) 2014-01-31 18:53:33 +01:00
			`# We actually wait a second here, rather than force-clearing our history,`
			`# to make sure the rate-limiting code automatically forgives a user`
			`# after some time has passed.`
testing: Make test_hit_ratelimits deterministic. On slower systems or virtual environments, when you are running tests in parallel mode, sometimes the time taken to send messages in this test exceeds 1 second which resets the limit. 2017-05-06 13:56:02 +02:00			`with mock.patch('time.time', return_value=(start_time + 1.0)):`
Speed up rate limiting test in test_external. Patches out the `time.sleep` and mocks the `time.time` to one second ahead. Resolves #2239. 2016-12-08 23:08:39 +01:00			`result = self.send_api_message(email, "Good message")`
Extract test_external.py (imported from commit 838dd34f101025ba161291992a56972cd374104b) 2014-01-31 18:53:33 +01:00
Speed up rate limiting test in test_external. Patches out the `time.sleep` and mocks the `time.time` to one second ahead. Resolves #2239. 2016-12-08 23:08:39 +01:00			`self.assert_json_success(result)`