427597ec14
* enterprise: fix expired license's users being counted Signed-off-by: Jens Langhammer <jens@goauthentik.io> * tests to the rescue Signed-off-by: Jens Langhammer <jens@goauthentik.io> * hmm Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>
261 lines
8.4 KiB
Python
261 lines
8.4 KiB
Python
"""Enterprise license tests"""
|
|
|
|
from datetime import timedelta
|
|
from time import mktime
|
|
from unittest.mock import MagicMock, patch
|
|
|
|
from django.test import TestCase
|
|
from django.utils.timezone import now
|
|
from rest_framework.exceptions import ValidationError
|
|
|
|
from authentik.core.models import User
|
|
from authentik.enterprise.license import LicenseKey
|
|
from authentik.enterprise.models import (
|
|
THRESHOLD_READ_ONLY_WEEKS,
|
|
THRESHOLD_WARNING_ADMIN_WEEKS,
|
|
THRESHOLD_WARNING_USER_WEEKS,
|
|
License,
|
|
LicenseUsage,
|
|
LicenseUsageStatus,
|
|
)
|
|
from authentik.lib.generators import generate_id
|
|
|
|
# Valid license expiry
|
|
expiry_valid = int(mktime((now() + timedelta(days=3000)).timetuple()))
|
|
# Valid license expiry, expires soon
|
|
expiry_soon = int(mktime((now() + timedelta(hours=10)).timetuple()))
|
|
# Invalid license expiry, recently expired
|
|
expiry_expired = int(mktime((now() - timedelta(hours=10)).timetuple()))
|
|
# Invalid license expiry, expired longer ago
|
|
expiry_expired_read_only = int(
|
|
mktime((now() - timedelta(weeks=THRESHOLD_READ_ONLY_WEEKS + 1)).timetuple())
|
|
)
|
|
|
|
|
|
class TestEnterpriseLicense(TestCase):
|
|
"""Enterprise license tests"""
|
|
|
|
@patch(
|
|
"authentik.enterprise.license.LicenseKey.validate",
|
|
MagicMock(
|
|
return_value=LicenseKey(
|
|
aud="",
|
|
exp=expiry_valid,
|
|
name=generate_id(),
|
|
internal_users=100,
|
|
external_users=100,
|
|
)
|
|
),
|
|
)
|
|
def test_valid(self):
|
|
"""Check license verification"""
|
|
lic = License.objects.create(key=generate_id())
|
|
self.assertTrue(lic.status.status().is_valid)
|
|
self.assertEqual(lic.internal_users, 100)
|
|
|
|
def test_invalid(self):
|
|
"""Test invalid license"""
|
|
with self.assertRaises(ValidationError):
|
|
License.objects.create(key=generate_id())
|
|
|
|
@patch(
|
|
"authentik.enterprise.license.LicenseKey.validate",
|
|
MagicMock(
|
|
return_value=LicenseKey(
|
|
aud="",
|
|
exp=expiry_valid,
|
|
name=generate_id(),
|
|
internal_users=100,
|
|
external_users=100,
|
|
)
|
|
),
|
|
)
|
|
def test_valid_multiple(self):
|
|
"""Check license verification"""
|
|
lic = License.objects.create(key=generate_id(), expiry=expiry_valid)
|
|
self.assertTrue(lic.status.status().is_valid)
|
|
lic2 = License.objects.create(key=generate_id(), expiry=expiry_valid)
|
|
self.assertTrue(lic2.status.status().is_valid)
|
|
total = LicenseKey.get_total()
|
|
self.assertEqual(total.internal_users, 200)
|
|
self.assertEqual(total.external_users, 200)
|
|
self.assertEqual(total.exp, expiry_valid)
|
|
self.assertTrue(total.status().is_valid)
|
|
|
|
@patch(
|
|
"authentik.enterprise.license.LicenseKey.validate",
|
|
MagicMock(
|
|
return_value=LicenseKey(
|
|
aud="",
|
|
exp=expiry_valid,
|
|
name=generate_id(),
|
|
internal_users=100,
|
|
external_users=100,
|
|
)
|
|
),
|
|
)
|
|
@patch(
|
|
"authentik.enterprise.license.LicenseKey.get_internal_user_count",
|
|
MagicMock(return_value=1000),
|
|
)
|
|
@patch(
|
|
"authentik.enterprise.license.LicenseKey.get_external_user_count",
|
|
MagicMock(return_value=1000),
|
|
)
|
|
@patch(
|
|
"authentik.enterprise.license.LicenseKey.record_usage",
|
|
MagicMock(),
|
|
)
|
|
def test_limit_exceeded_read_only(self):
|
|
"""Check license verification"""
|
|
License.objects.create(key=generate_id())
|
|
usage = LicenseUsage.objects.create(
|
|
internal_user_count=100,
|
|
external_user_count=100,
|
|
status=LicenseUsageStatus.VALID,
|
|
)
|
|
usage.record_date = now() - timedelta(weeks=THRESHOLD_READ_ONLY_WEEKS + 1)
|
|
usage.save(update_fields=["record_date"])
|
|
self.assertEqual(LicenseKey.get_total().summary().status, LicenseUsageStatus.READ_ONLY)
|
|
|
|
@patch(
|
|
"authentik.enterprise.license.LicenseKey.validate",
|
|
MagicMock(
|
|
return_value=LicenseKey(
|
|
aud="",
|
|
exp=expiry_valid,
|
|
name=generate_id(),
|
|
internal_users=100,
|
|
external_users=100,
|
|
)
|
|
),
|
|
)
|
|
@patch(
|
|
"authentik.enterprise.license.LicenseKey.get_internal_user_count",
|
|
MagicMock(return_value=1000),
|
|
)
|
|
@patch(
|
|
"authentik.enterprise.license.LicenseKey.get_external_user_count",
|
|
MagicMock(return_value=1000),
|
|
)
|
|
@patch(
|
|
"authentik.enterprise.license.LicenseKey.record_usage",
|
|
MagicMock(),
|
|
)
|
|
def test_limit_exceeded_user_warning(self):
|
|
"""Check license verification"""
|
|
License.objects.create(key=generate_id())
|
|
usage = LicenseUsage.objects.create(
|
|
internal_user_count=100,
|
|
external_user_count=100,
|
|
status=LicenseUsageStatus.VALID,
|
|
)
|
|
usage.record_date = now() - timedelta(weeks=THRESHOLD_WARNING_USER_WEEKS + 1)
|
|
usage.save(update_fields=["record_date"])
|
|
self.assertEqual(
|
|
LicenseKey.get_total().summary().status, LicenseUsageStatus.LIMIT_EXCEEDED_USER
|
|
)
|
|
|
|
@patch(
|
|
"authentik.enterprise.license.LicenseKey.validate",
|
|
MagicMock(
|
|
return_value=LicenseKey(
|
|
aud="",
|
|
exp=expiry_valid,
|
|
name=generate_id(),
|
|
internal_users=100,
|
|
external_users=100,
|
|
)
|
|
),
|
|
)
|
|
@patch(
|
|
"authentik.enterprise.license.LicenseKey.get_internal_user_count",
|
|
MagicMock(return_value=1000),
|
|
)
|
|
@patch(
|
|
"authentik.enterprise.license.LicenseKey.get_external_user_count",
|
|
MagicMock(return_value=1000),
|
|
)
|
|
@patch(
|
|
"authentik.enterprise.license.LicenseKey.record_usage",
|
|
MagicMock(),
|
|
)
|
|
def test_limit_exceeded_admin_warning(self):
|
|
"""Check license verification"""
|
|
License.objects.create(key=generate_id())
|
|
usage = LicenseUsage.objects.create(
|
|
internal_user_count=100,
|
|
external_user_count=100,
|
|
status=LicenseUsageStatus.VALID,
|
|
)
|
|
usage.record_date = now() - timedelta(weeks=THRESHOLD_WARNING_ADMIN_WEEKS + 1)
|
|
usage.save(update_fields=["record_date"])
|
|
self.assertEqual(
|
|
LicenseKey.get_total().summary().status, LicenseUsageStatus.LIMIT_EXCEEDED_ADMIN
|
|
)
|
|
|
|
@patch(
|
|
"authentik.enterprise.license.LicenseKey.validate",
|
|
MagicMock(
|
|
return_value=LicenseKey(
|
|
aud="",
|
|
exp=expiry_expired_read_only,
|
|
name=generate_id(),
|
|
internal_users=100,
|
|
external_users=100,
|
|
)
|
|
),
|
|
)
|
|
@patch(
|
|
"authentik.enterprise.license.LicenseKey.record_usage",
|
|
MagicMock(),
|
|
)
|
|
def test_expiry_read_only(self):
|
|
"""Check license verification"""
|
|
License.objects.create(key=generate_id())
|
|
self.assertEqual(LicenseKey.get_total().summary().status, LicenseUsageStatus.READ_ONLY)
|
|
|
|
@patch(
|
|
"authentik.enterprise.license.LicenseKey.validate",
|
|
MagicMock(
|
|
return_value=LicenseKey(
|
|
aud="",
|
|
exp=expiry_expired,
|
|
name=generate_id(),
|
|
internal_users=100,
|
|
external_users=100,
|
|
)
|
|
),
|
|
)
|
|
@patch(
|
|
"authentik.enterprise.license.LicenseKey.record_usage",
|
|
MagicMock(),
|
|
)
|
|
def test_expiry_expired(self):
|
|
"""Check license verification"""
|
|
User.objects.all().delete()
|
|
License.objects.all().delete()
|
|
License.objects.create(key=generate_id(), expiry=expiry_expired)
|
|
self.assertEqual(LicenseKey.get_total().summary().status, LicenseUsageStatus.EXPIRED)
|
|
|
|
@patch(
|
|
"authentik.enterprise.license.LicenseKey.validate",
|
|
MagicMock(
|
|
return_value=LicenseKey(
|
|
aud="",
|
|
exp=expiry_soon,
|
|
name=generate_id(),
|
|
internal_users=100,
|
|
external_users=100,
|
|
)
|
|
),
|
|
)
|
|
@patch(
|
|
"authentik.enterprise.license.LicenseKey.record_usage",
|
|
MagicMock(),
|
|
)
|
|
def test_expiry_soon(self):
|
|
"""Check license verification"""
|
|
License.objects.create(key=generate_id())
|
|
self.assertEqual(LicenseKey.get_total().summary().status, LicenseUsageStatus.EXPIRY_SOON)
|