mirror of
https://github.com/lnbits/lnbits.git
synced 2025-04-09 04:18:11 +02:00
c9093715b7
no more superuser url! delete cookie on logout add usr login feature fix node management * Cleaned up login form * CreateUser * information leak * cleaner parsing usr from url * rename decorators * login secret * fix: add back `superuser` command * chore: remove `fastapi_login` * fix: extract `token` from cookie * chore: prepare to extract user * feat: check user * chore: code clean-up * feat: happy flow working * fix: usr only login * fix: user already logged in * feat: check user in URL * fix: verify password at DB level * fix: do not show `Login` controls if user already logged in * fix: separate login endpoints * fix: remove `usr` param * chore: update error message * refactor: register method * feat: logout * chore: move comments * fix: remove user auth check from API * fix: user check unnecessary * fix: redirect after logout * chore: remove garbage files * refactor: simplify constructor call * fix: hide user icon if not authorized * refactor: rename auth env vars * chore: code clean-up * fix: add types for `python-jose` * fix: add types for `passlib` * fix: return type * feat: set default value for `auth_secret_key` to hash of super user * fix: default value * feat: rework login page * feat: ui polishing * feat: google auth * feat: add google auth * chore: remove `authlib` dependency * refactor: extract `_handle_sso_login` method * refactor: convert methods to `properties` * refactor: rename: `user_api` to `auth_api` * feat: store user info from SSO * chore: re-arange the buttons * feat: conditional rendering of login options * feat: correctly render buttons * fix: re-add `Claim Bitcoin` from the main page * fix: create wallet must send new user * fix: no `username-password` auth method * refactor: rename auth method * fix: do not force API level UUID4 validation * feat: add validation for username * feat: add account page * feat: update account * feat: add `has_password` for user * fix: email not editable * feat: validate email for existing account * fix: register check * feat: reset password * chore: code clean-up * feat: handle token expired * fix: only redirect if `text/html` * refactor: remove `OAuth2PasswordRequestForm` * chore: remove `python-multipart` dependency * fix: handle no headers for exception * feat: add back button on error screen * feat: show user profile image * fix: check account creation permissions * fix: auth for internal api call * chore: add some docs * chore: code clean-up * fix: rebase stuff * fix: default value types * refactor: customize error messages * fix: move types libs to dev dependencies * doc: specify the `Authorization callback URL` * fix: pass missing superuser id in node ui test * fix: keep usr param on wallet redirect removing usr param causes an issue if the browser doesnt yet have an access token. * fix: do not redirect if `wal` query param not present * fix: add nativeBuildInputs and buildInputs overrides to flake.nix * bump fastapi-sso to 0.9.0 which fixes some security issues * refactor: move the `lnbits_admin_extensions` to decorators * chore: bring package config from `dev` * chore: re-add dependencies * chore: re-add cev dependencies * chore: re-add mypy ignores * feat: i18n * refactor: move admin ext check to decorator (fix after rebase) * fix: label mapping * fix: re-fetch user after first wallet was created * fix: unlikely case that `user` is not found * refactor translations (move '*' to code) * reorganize deps in pyproject.toml, add comment * update flake.lock and simplify flake.nix after upstreaming overrides for fastapi-sso, types-passlib, types-pyasn1, types-python-jose were upstreamed in https://github.com/nix-community/poetry2nix/pull/1463 * fix: more relaxed email verification (by @prusnak) * fix: remove `\b` (boundaries) since we re using `fullmatch` * chore: `make bundle` --------- Co-authored-by: dni ⚡ <office@dnilabs.com> Co-authored-by: Arc <ben@arc.wales> Co-authored-by: jackstar12 <jkranawetter05@gmail.com> Co-authored-by: Pavol Rusnak <pavol@rusnak.io>
173 lines
5.3 KiB
Python
173 lines
5.3 KiB
Python
import asyncio
|
|
import random
|
|
from http import HTTPStatus
|
|
|
|
import pytest
|
|
from pydantic import parse_obj_as
|
|
|
|
from lnbits import bolt11
|
|
from lnbits.nodes.base import ChannelPoint, ChannelState, NodeChannel
|
|
from tests.conftest import pytest_asyncio, settings
|
|
|
|
from ...helpers import (
|
|
WALLET,
|
|
get_random_invoice_data,
|
|
get_unconnected_node_uri,
|
|
mine_blocks,
|
|
)
|
|
|
|
pytestmark = pytest.mark.skipif(
|
|
WALLET.__node_cls__ is None, reason="Cant test if node implementation isnt avilable"
|
|
)
|
|
|
|
|
|
@pytest_asyncio.fixture()
|
|
async def node_client(client, from_super_user):
|
|
settings.lnbits_node_ui = True
|
|
settings.lnbits_public_node_ui = False
|
|
settings.lnbits_node_ui_transactions = True
|
|
params = client.params
|
|
client.params = {"usr": from_super_user.id}
|
|
yield client
|
|
client.params = params
|
|
settings.lnbits_node_ui = False
|
|
|
|
|
|
@pytest_asyncio.fixture()
|
|
async def public_node_client(node_client):
|
|
settings.lnbits_public_node_ui = True
|
|
yield node_client
|
|
settings.lnbits_public_node_ui = False
|
|
|
|
|
|
@pytest.mark.asyncio
|
|
async def test_node_info_not_found(client, from_super_user):
|
|
settings.lnbits_node_ui = False
|
|
response = await client.get("/node/api/v1/info", params={"usr": from_super_user.id})
|
|
assert response.status_code == HTTPStatus.SERVICE_UNAVAILABLE
|
|
|
|
|
|
@pytest.mark.asyncio
|
|
async def test_public_node_info_not_found(node_client):
|
|
response = await node_client.get("/node/public/api/v1/info")
|
|
assert response.status_code == HTTPStatus.SERVICE_UNAVAILABLE
|
|
|
|
|
|
@pytest.mark.asyncio
|
|
async def test_public_node_info(public_node_client):
|
|
response = await public_node_client.get("/node/public/api/v1/info")
|
|
assert response.status_code == 200
|
|
|
|
|
|
@pytest.mark.asyncio
|
|
async def test_node_info(node_client, from_super_user):
|
|
response = await node_client.get("/node/api/v1/info")
|
|
assert response.status_code == 200
|
|
|
|
|
|
@pytest.mark.asyncio
|
|
async def test_node_invoices(inkey_headers_from, node_client):
|
|
data = await get_random_invoice_data()
|
|
response = await node_client.post(
|
|
"/api/v1/payments", json=data, headers=inkey_headers_from
|
|
)
|
|
invoice = response.json()
|
|
|
|
response = await node_client.get("/node/api/v1/invoices", params={"limit": 1})
|
|
assert response.status_code == 200
|
|
invoices = response.json()["data"]
|
|
assert len(invoices) == 1
|
|
assert invoices[0]["payment_hash"] == invoice["payment_hash"]
|
|
|
|
|
|
@pytest.mark.asyncio
|
|
async def test_node_payments(node_client, real_invoice, adminkey_headers_from):
|
|
response = await node_client.post(
|
|
"/api/v1/payments", json=real_invoice, headers=adminkey_headers_from
|
|
)
|
|
assert response.status_code < 300
|
|
|
|
response = await node_client.get("/node/api/v1/payments", params={"limit": 1})
|
|
assert response.status_code == 200
|
|
payments = response.json()["data"]
|
|
assert len(payments) == 1
|
|
assert (
|
|
payments[0]["payment_hash"]
|
|
== bolt11.decode(real_invoice["bolt11"]).payment_hash
|
|
)
|
|
|
|
|
|
@pytest.mark.asyncio
|
|
async def test_channel_management(node_client):
|
|
async def get_channels():
|
|
response = await node_client.get("/node/api/v1/channels")
|
|
assert response.status_code == 200
|
|
return parse_obj_as(list[NodeChannel], response.json())
|
|
|
|
data = await get_channels()
|
|
close = random.choice(
|
|
[channel for channel in data if channel.state == ChannelState.ACTIVE]
|
|
)
|
|
assert close, "No active channel found"
|
|
|
|
response = await node_client.delete(
|
|
"/node/api/v1/channels",
|
|
params={"short_id": close.short_id, **close.point.dict()},
|
|
)
|
|
assert response.status_code == 200
|
|
|
|
data = await get_channels()
|
|
assert any(
|
|
channel.point == close.point and channel.state == ChannelState.CLOSED
|
|
for channel in data
|
|
)
|
|
|
|
response = await node_client.post(
|
|
"/node/api/v1/channels",
|
|
json={
|
|
"peer_id": close.peer_id,
|
|
"funding_amount": 100000,
|
|
},
|
|
)
|
|
assert response.status_code == 200
|
|
created = ChannelPoint(**response.json())
|
|
data = await get_channels()
|
|
assert any(
|
|
channel.point == created and channel.state == ChannelState.PENDING
|
|
for channel in data
|
|
)
|
|
|
|
# mine some blocks so that the newly created channel eventually
|
|
# gets confirmed to avoid a situation where no channels are
|
|
# left for testing
|
|
mine_blocks(5)
|
|
|
|
|
|
@pytest.mark.asyncio
|
|
async def test_peer_management(node_client):
|
|
connect_uri = get_unconnected_node_uri()
|
|
id = connect_uri.split("@")[0]
|
|
response = await node_client.post("/node/api/v1/peers", json={"uri": connect_uri})
|
|
assert response.status_code == 200
|
|
|
|
response = await node_client.get("/node/api/v1/peers")
|
|
assert response.status_code == 200
|
|
assert any(peer["id"] == id for peer in response.json())
|
|
|
|
response = await node_client.delete(f"/node/api/v1/peers/{id}")
|
|
assert response.status_code == 200
|
|
await asyncio.sleep(0.1)
|
|
|
|
response = await node_client.get("/node/api/v1/peers")
|
|
assert response.status_code == 200
|
|
assert not any(peer["id"] == id for peer in response.json())
|
|
|
|
response = await node_client.delete(f"/node/api/v1/peers/{id}")
|
|
assert response.status_code == 400
|
|
|
|
|
|
@pytest.mark.asyncio
|
|
async def test_connect_invalid_uri(node_client):
|
|
response = await node_client.post("/node/api/v1/peers", json={"uri": "invalid"})
|
|
assert response.status_code == 400
|