fixed decorator response to be the same a the original but with decrypted body

pqlMC · pqlMC · commit 126f99291e4d · 2019-06-18T19:26:09.000+01:00
fixed decorator tests
diff --git a/client_encryption/api_encryption.py b/client_encryption/api_encryption.py
@@ -29,10 +29,9 @@ def call_api_function(*args, **kwargs):
             kwargs["_preload_content"] = False
 
             response = func(*args, **kwargs)
+            response._body = self._decrypt_payload(response.getheaders(), response.data)
 
-            response_body = self._decrypt_payload(response.getheaders(), response.data)
-
-            return response_body
+            return response
 
         call_api_function.__fle__ = True
         return call_api_function
@@ -61,6 +60,7 @@ def _decrypt_payload(self, headers, body):
         """Encryption enforcement based on configuration - decrypt using session key params from header or body"""
 
         conf = self._encryption_conf
+        params = None
 
         if conf.use_http_headers:
             if conf.iv_field_name in headers and conf.encrypted_key_field_name in headers:
@@ -74,12 +74,12 @@ def _decrypt_payload(self, headers, body):
                     del headers[conf.encryption_key_fingerprint_field_name]
 
                 params = SessionKeyParams(conf, encrypted_key, iv, oaep_digest_algo)
-                payload = decrypt_payload(body, conf, params)
             else:
-                # skip decryption if not iv nor key is in headers
-                payload = body
-        else:
-            payload = decrypt_payload(body, conf)
+                # skip decryption and return original body if not iv nor key is in headers
+                return body
+
+        decrypted_body = decrypt_payload(body, conf, params)
+        payload = json.dumps(decrypted_body, indent=4).encode('utf-8')
 
         return payload
 
diff --git a/tests/test_api_encryption.py b/tests/test_api_encryption.py
@@ -62,14 +62,14 @@ def test_decrypt_payload_with_params_in_body(self):
 
         test_headers = {"Content-Type": "application/json"}
 
-        decrypted = api_encryption._decrypt_payload(body={
+        decrypted = json.loads(api_encryption._decrypt_payload(body={
             "encryptedData": {
                 "iv": "uldLBySPY3VrznePihFYGQ==",
                 "encryptedKey": "Jmh/bQPScUVFHSC9qinMGZ4lM7uetzUXcuMdEpC5g4C0Pb9HuaM3zC7K/509n7RTBZUPEzgsWtgi7m33nhpXsUo8WMcQkBIZlKn3ce+WRyZpZxcYtVoPqNn3benhcv7cq7yH1ktamUiZ5Dq7Ga+oQCaQEsOXtbGNS6vA5Bwa1pjbmMiRIbvlstInz8XTw8h/T0yLBLUJ0yYZmzmt+9i8qL8KFQ/PPDe5cXOCr1Aq2NTSixe5F2K/EI00q6D7QMpBDC7K6zDWgAOvINzifZ0DTkxVe4EE6F+FneDrcJsj+ZeIabrlRcfxtiFziH6unnXktta0sB1xcszIxXdMDbUcJA==",
                 "encryptedValue": "KGfmdUWy89BwhQChzqZJ4w==",
                 "oaepHashingAlgo": "SHA256"
             }
-        }, headers=test_headers)
+        }, headers=test_headers))
 
         self.assertNotIn("encryptedData", decrypted)
         self.assertDictEqual({"data": {}}, decrypted)
@@ -112,11 +112,11 @@ def test_decrypt_payload_with_params_in_headers(self):
                         }
 
         api_encryption = to_test.ApiEncryption(self._json_config)
-        decrypted = api_encryption._decrypt_payload(body={
+        decrypted = json.loads(api_encryption._decrypt_payload(body={
             "encryptedData": {
                 "encryptedValue": "KGfmdUWy89BwhQChzqZJ4w=="
             }
-        }, headers=test_headers)
+        }, headers=test_headers))
 
         self.assertNotIn("encryptedData", decrypted)
         self.assertDictEqual({"data": {}}, decrypted)
@@ -170,9 +170,10 @@ def test_add_encryption_layer_post(self):
             }
         }, headers={"Content-Type": "application/json"})
 
-        self.assertIn("data", response)
-        self.assertIn("secret", response["data"])
-        self.assertEqual(secret2-secret1, response["data"]["secret"])
+        self.assertIn("data", response.data)
+        self.assertIn("secret", response.data["data"])
+        self.assertEqual(secret2-secret1, response.data["data"]["secret"])
+        self.assertDictEqual({"Content-Type": "application/json"}, response.getheaders())
 
     def test_add_encryption_layer_delete(self):
         secret1 = 394
@@ -186,16 +187,18 @@ def test_add_encryption_layer_delete(self):
             }
         }, headers={"Content-Type": "application/json"})
 
-        self.assertEqual("OK", response)
+        self.assertEqual("OK", response.data)
+        self.assertDictEqual({"Content-Type": "application/json"}, response.getheaders())
 
     def test_add_encryption_layer_get(self):
         test_client = MockApiClient()
         to_test.add_encryption_layer(test_client, self._json_config)
         response = MockService(test_client).do_something_get(headers={"Content-Type": "application/json"})
 
-        self.assertIn("data", response)
-        self.assertIn("secret", response["data"])
-        self.assertEqual([53, 84, 75], response["data"]["secret"])
+        self.assertIn("data", response.data)
+        self.assertIn("secret", response.data["data"])
+        self.assertEqual([53, 84, 75], response.data["data"]["secret"])
+        self.assertDictEqual({"Content-Type": "application/json"}, response.getheaders())
 
     def test_add_header_encryption_layer_post_no_oaep_algo(self):
         self._set_header_params_config()
@@ -213,9 +216,10 @@ def test_add_header_encryption_layer_post_no_oaep_algo(self):
             "encryptedData": {}
         }, headers={"Content-Type": "application/json"})
 
-        self.assertIn("data", response)
-        self.assertIn("secret", response["data"])
-        self.assertEqual(secret2-secret1, response["data"]["secret"])
+        self.assertIn("data", response.data)
+        self.assertIn("secret", response.data["data"])
+        self.assertEqual(secret2-secret1, response.data["data"]["secret"])
+        self.assertDictEqual({"Content-Type": "application/json", "x-oaep-digest": "SHA256"}, response.getheaders())
 
     def test_add_header_encryption_layer_post_no_cert_fingerprint(self):
         self._set_header_params_config()
@@ -233,9 +237,10 @@ def test_add_header_encryption_layer_post_no_cert_fingerprint(self):
             "encryptedData": {}
         }, headers={"Content-Type": "application/json"})
 
-        self.assertIn("data", response)
-        self.assertIn("secret", response["data"])
-        self.assertEqual(secret2-secret1, response["data"]["secret"])
+        self.assertIn("data", response.data)
+        self.assertIn("secret", response.data["data"])
+        self.assertEqual(secret2-secret1, response.data["data"]["secret"])
+        self.assertDictEqual({"Content-Type": "application/json"}, response.getheaders())
 
     def test_add_header_encryption_layer_post_no_pubkey_fingerprint(self):
         self._set_header_params_config()
@@ -253,9 +258,10 @@ def test_add_header_encryption_layer_post_no_pubkey_fingerprint(self):
             "encryptedData": {}
         }, headers={"Content-Type": "application/json"})
 
-        self.assertIn("data", response)
-        self.assertIn("secret", response["data"])
-        self.assertEqual(secret2-secret1, response["data"]["secret"])
+        self.assertIn("data", response.data)
+        self.assertIn("secret", response.data["data"])
+        self.assertEqual(secret2-secret1, response.data["data"]["secret"])
+        self.assertDictEqual({"Content-Type": "application/json"}, response.getheaders())
 
     def test_add_header_encryption_layer_no_iv(self):
         self._set_header_params_config()
@@ -288,9 +294,10 @@ def test_add_header_encryption_layer_post(self):
             "encryptedData": {}
         }, headers={"Content-Type": "application/json"})
 
-        self.assertIn("data", response)
-        self.assertIn("secret", response["data"])
-        self.assertEqual(secret2-secret1, response["data"]["secret"])
+        self.assertIn("data", response.data)
+        self.assertIn("secret", response.data["data"])
+        self.assertEqual(secret2-secret1, response.data["data"]["secret"])
+        self.assertDictEqual({"Content-Type": "application/json"}, response.getheaders())
 
     def test_add_header_encryption_layer_delete(self):
         self._set_header_params_config()
@@ -307,7 +314,8 @@ def test_add_header_encryption_layer_delete(self):
             "encryptedData": {}
         }, headers={"Content-Type": "application/json"})
 
-        self.assertEqual("OK", response)
+        self.assertEqual("OK", response.data)
+        self.assertDictEqual({"Content-Type": "application/json"}, response.getheaders())
 
     def test_add_header_encryption_layer_get(self):
         self._set_header_params_config()
@@ -316,9 +324,10 @@ def test_add_header_encryption_layer_get(self):
         to_test.add_encryption_layer(test_client, self._json_config)
         response = MockService(test_client).do_something_get_use_headers(headers={"Content-Type": "application/json"})
 
-        self.assertIn("data", response)
-        self.assertIn("secret", response["data"])
-        self.assertEqual([53, 84, 75], response["data"]["secret"])
+        self.assertIn("data", response.data)
+        self.assertIn("secret", response.data["data"])
+        self.assertEqual([53, 84, 75], response.data["data"]["secret"])
+        self.assertDictEqual({"Content-Type": "application/json"}, response.getheaders())
 
     @patch('client_encryption.api_encryption.__oauth_warn')
     def test_add_encryption_layer_oauth_set(self, __oauth_warn):
