thePR0M3TH3AN/seedPass
1
0
Fork 0
mirror of https://github.com/PR0M3TH3AN/SeedPass.git synced 2025-09-10 00:09:04 +00:00
Code Issues Packages Projects Releases Wiki Activity

Hash JWT token in API

Browse Source
This commit is contained in:
thePR0M3TH3AN
2025-08-03 08:50:57 -04:00
parent 9d80f7b607
commit 9d9f8a8bae
2 changed files with 13 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
src/tests/test_api.py
View File

@@ -4,6 +4,7 @@ import sys
import pytest
from fastapi.testclient import TestClient
import hashlib
sys.path.append(str(Path(__file__).resolve().parents[1]))
@@ -48,6 +49,12 @@ def client(monkeypatch):
return client, token
def test_token_hashed(client):
_, token = client
assert api._token != token
assert api._token == hashlib.sha256(token.encode()).hexdigest()
def test_cors_and_auth(client):
cl, token = client
headers = {"Authorization": f"Bearer {token}", "Origin": "http://example.com"}