CTFd/tests/helpers.py

from CTFd import create_app
from CTFd.models import *
from sqlalchemy_utils import database_exists, create_database, drop_database
from sqlalchemy.engine.url import make_url
import datetime
import six
import gc

if six.PY2:
    text_type = unicode
    binary_type = str
else:
    text_type = str
    binary_type = bytes


def create_ctfd(ctf_name="CTFd", name="admin", email="admin@ctfd.io", password="password", setup=True):
    app = create_app('CTFd.config.TestingConfig')

    if setup:
        app = setup_ctfd(app, ctf_name, name, email, password)
    return app


def setup_ctfd(app, ctf_name="CTFd", name="admin", email="admin@ctfd.io", password="password"):
    with app.app_context():
        with app.test_client() as client:
            data = {}
            r = client.get('/setup')  # Populate session with nonce
            with client.session_transaction() as sess:
                data = {
                    "ctf_name": ctf_name,
                    "name": name,
                    "email": email,
                    "password": password,
                    "nonce": sess.get('nonce')
                }
            client.post('/setup', data=data)
    return app


def destroy_ctfd(app):
    with app.app_context():
        app.db.session.commit()
        app.db.session.close_all()
        gc.collect()  # Garbage collect (necessary in the case of dataset freezes to clean database connections)
        app.db.drop_all()
    drop_database(app.config['SQLALCHEMY_DATABASE_URI'])


def register_user(app, name="user", email="user@ctfd.io", password="password"):
    with app.app_context():
        with app.test_client() as client:
            r = client.get('/register')
            with client.session_transaction() as sess:
                data = {
                    "name": name,
                    "email": email,
                    "password": password,
                    "nonce": sess.get('nonce')
                }
            client.post('/register', data=data)


def login_as_user(app, name="user", password="password"):
    with app.app_context():
        with app.test_client() as client:
            r = client.get('/login')
            with client.session_transaction() as sess:
                data = {
                    "name": name,
                    "password": password,
                    "nonce": sess.get('nonce')
                }
            client.post('/login', data=data)
            return client


def get_scores(user):
    scores = user.get('/scores')
    print(scores.get_data(as_text=True))
    scores = json.loads(scores.get_data(as_text=True))
    print(scores)
    return scores['standings']


def gen_challenge(db, name='chal_name', description='chal_description', value=100, category='chal_category', type='standard', hidden=False):
    chal = Challenges(name, description, value, category)
    if hidden:
        chal.hidden = hidden
    db.session.add(chal)
    db.session.commit()
    return chal


def gen_award(db, teamid, name="award_name", value=100):
    award = Awards(teamid, name, value)
    db.session.add(award)
    db.session.commit()
    return award


def gen_tag(db, chal, tag='tag_tag'):
    tag = Tags(chal, tag)
    db.session.add(tag)
    db.session.commit()
    return tag


def gen_file():
    pass


def gen_flag(db, chal, flag='flag', key_type='static'):
    key = Keys(chal, flag, key_type)
    db.session.add(key)
    db.session.commit()
    return key


def gen_team(db, name='name', email='user@ctfd.io', password='password'):
    team = Teams(name, email, password)
    db.session.add(team)
    db.session.commit()
    return team


def gen_hint(db, chal, hint="This is a hint", cost=0, type=0):
    hint = Hints(chal, hint, cost, type)
    db.session.add(hint)
    db.session.commit()
    return hint


def gen_solve(db, teamid, chalid, ip='127.0.0.1', flag='rightkey'):
    solve = Solves(teamid, chalid, ip, flag)
    solve.date = datetime.datetime.utcnow()
    db.session.add(solve)
    db.session.commit()
    return solve


def gen_wrongkey(db, teamid, chalid, ip='127.0.0.1', flag='wrongkey'):
    wrongkey = WrongKeys(teamid, chalid, ip, flag)
    wrongkey.date = datetime.datetime.utcnow()
    db.session.add(wrongkey)
    db.session.commit()
    return wrongkey


def gen_tracking(db, ip, team):
    tracking = Tracking(ip, team)
    db.session.add(tracking)
    db.session.commit()
    return tracking


def gen_page(db, route, html):
    page = Pages(route, html)
    db.session.add(page)
    db.session.commit()
    return page
Starting to write tests test_index test_register_user test_user_isnt_admin 2017-01-07 07:44:27 +00:00			`from CTFd import create_app`
Plugins enhanced utils (#231) * Updating utils functions to be monkey patchable * Also fixing a team email update issue * Adding more tests 2017-03-23 00:00:45 +00:00			`from CTFd.models import *`
Starting to write tests test_index test_register_user test_user_isnt_admin 2017-01-07 07:44:27 +00:00			`from sqlalchemy_utils import database_exists, create_database, drop_database`
			`from sqlalchemy.engine.url import make_url`
Top ten endpoint honors users with the same name (#379) * Make the /top/10 endpoint honor users with the same name 2017-09-08 03:29:41 +00:00			`import datetime`
Fixing unlocking hints for challenges with unicode names (#383) * Fixing unlocking hints for challenges with unicode names * Add tests for unlocking hints with no cost 2017-09-09 04:17:48 +00:00			`import six`
Update requirements (#406) * Updating to use dataset and datafreeze * Use a new datafreeze serializer to get around Python 3 issues. * Update requirements.txt * Add simple test for export_ctf() 2017-10-08 01:29:03 +00:00			`import gc`
Fixing unlocking hints for challenges with unicode names (#383) * Fixing unlocking hints for challenges with unicode names * Add tests for unlocking hints with no cost 2017-09-09 04:17:48 +00:00
			`if six.PY2:`
			`text_type = unicode`
			`binary_type = str`
			`else:`
			`text_type = str`
			`binary_type = bytes`
Starting to write tests test_index test_register_user test_user_isnt_admin 2017-01-07 07:44:27 +00:00
Latest set of changes (#190) * PEP 8 compliance (#183) * Group imports: standard library, third party, local * Remove unnecessary spaces * Comments should start with a # and a single space * Adding tests for GETs on user facing pages * Adding more user facing tests 51% test coverage * Fixes #182 * Cleaning up Pages Fixes a bug with CSS updating 2017-01-10 08:35:48 +00:00
Fixes unstyled Setup UI (#291) * Changing /static to /themes * Adding test to make sure setup behavior works 2017-06-18 22:54:20 +00:00			`def create_ctfd(ctf_name="CTFd", name="admin", email="admin@ctfd.io", password="password", setup=True):`
Latest set of changes (#190) * PEP 8 compliance (#183) * Group imports: standard library, third party, local * Remove unnecessary spaces * Comments should start with a # and a single space * Adding tests for GETs on user facing pages * Adding more user facing tests 51% test coverage * Fixes #182 * Cleaning up Pages Fixes a bug with CSS updating 2017-01-10 08:35:48 +00:00			`app = create_app('CTFd.config.TestingConfig')`
Starting to write tests test_index test_register_user test_user_isnt_admin 2017-01-07 07:44:27 +00:00
Fixes unstyled Setup UI (#291) * Changing /static to /themes * Adding test to make sure setup behavior works 2017-06-18 22:54:20 +00:00			`if setup:`
Adding functions to register plugin assets (#397) * Adds functions to register plugin assets 2017-09-30 01:22:10 +00:00			`app = setup_ctfd(app, ctf_name, name, email, password)`
			`return app`


			`def setup_ctfd(app, ctf_name="CTFd", name="admin", email="admin@ctfd.io", password="password"):`
			`with app.app_context():`
			`with app.test_client() as client:`
			`data = {}`
			`r = client.get('/setup') # Populate session with nonce`
			`with client.session_transaction() as sess:`
			`data = {`
			`"ctf_name": ctf_name,`
			`"name": name,`
			`"email": email,`
			`"password": password,`
			`"nonce": sess.get('nonce')`
			`}`
			`client.post('/setup', data=data)`
Starting to write tests test_index test_register_user test_user_isnt_admin 2017-01-07 07:44:27 +00:00			`return app`


Fixing large ip solves (#307) * Switching to using strings to store IP addresses because of the issues with storing them properly, Fixes #302, Fixes $306 * Only runs migrations when using a real database because SQlite is too inflexible to support migrations properly * Removes calls to the ip helper functions but they can remain in case someone needs them in a plugin. 2017-07-08 21:53:14 +00:00			`def destroy_ctfd(app):`
Adopting a challenge type layout from deckar01 (#399) * Adopting a challenge type layout from deckar01 * Move standard challenge modals into the plugin * Migration to change challenge type id to a string * Travis testing now builds with MySQL, SQLite, and Postgres * Rework get_standings to use the row ID instead of the saved time because of differences in database time precision 2017-10-06 01:39:28 +00:00			`with app.app_context():`
			`app.db.session.commit()`
			`app.db.session.close_all()`
Update requirements (#406) * Updating to use dataset and datafreeze * Use a new datafreeze serializer to get around Python 3 issues. * Update requirements.txt * Add simple test for export_ctf() 2017-10-08 01:29:03 +00:00			`gc.collect() # Garbage collect (necessary in the case of dataset freezes to clean database connections)`
Adopting a challenge type layout from deckar01 (#399) * Adopting a challenge type layout from deckar01 * Move standard challenge modals into the plugin * Migration to change challenge type id to a string * Travis testing now builds with MySQL, SQLite, and Postgres * Rework get_standings to use the row ID instead of the saved time because of differences in database time precision 2017-10-06 01:39:28 +00:00			`app.db.drop_all()`
Fixing large ip solves (#307) * Switching to using strings to store IP addresses because of the issues with storing them properly, Fixes #302, Fixes $306 * Only runs migrations when using a real database because SQlite is too inflexible to support migrations properly * Removes calls to the ip helper functions but they can remain in case someone needs them in a plugin. 2017-07-08 21:53:14 +00:00			`drop_database(app.config['SQLALCHEMY_DATABASE_URI'])`


Starting to write tests test_index test_register_user test_user_isnt_admin 2017-01-07 07:44:27 +00:00			`def register_user(app, name="user", email="user@ctfd.io", password="password"):`
			`with app.app_context():`
			`with app.test_client() as client:`
			`r = client.get('/register')`
			`with client.session_transaction() as sess:`
			`data = {`
			`"name": name,`
			`"email": email,`
			`"password": password,`
			`"nonce": sess.get('nonce')`
			`}`
			`client.post('/register', data=data)`


			`def login_as_user(app, name="user", password="password"):`
			`with app.app_context():`
			`with app.test_client() as client:`
			`r = client.get('/login')`
			`with client.session_transaction() as sess:`
			`data = {`
			`"name": name,`
			`"password": password,`
			`"nonce": sess.get('nonce')`
			`}`
			`client.post('/login', data=data)`
Plugins enhanced utils (#231) * Updating utils functions to be monkey patchable * Also fixing a team email update issue * Adding more tests 2017-03-23 00:00:45 +00:00			`return client`


Fixing scoring logic (#320) * fix inconsistent scoring: take awards into account in user.place() (#319) * Adding tests 2017-07-18 02:18:23 +00:00			`def get_scores(user):`
			`scores = user.get('/scores')`
Adopting a challenge type layout from deckar01 (#399) * Adopting a challenge type layout from deckar01 * Move standard challenge modals into the plugin * Migration to change challenge type id to a string * Travis testing now builds with MySQL, SQLite, and Postgres * Rework get_standings to use the row ID instead of the saved time because of differences in database time precision 2017-10-06 01:39:28 +00:00			`print(scores.get_data(as_text=True))`
Fixing scoring logic (#320) * fix inconsistent scoring: take awards into account in user.place() (#319) * Adding tests 2017-07-18 02:18:23 +00:00			`scores = json.loads(scores.get_data(as_text=True))`
Adopting a challenge type layout from deckar01 (#399) * Adopting a challenge type layout from deckar01 * Move standard challenge modals into the plugin * Migration to change challenge type id to a string * Travis testing now builds with MySQL, SQLite, and Postgres * Rework get_standings to use the row ID instead of the saved time because of differences in database time precision 2017-10-06 01:39:28 +00:00			`print(scores)`
Fixing scoring logic (#320) * fix inconsistent scoring: take awards into account in user.place() (#319) * Adding tests 2017-07-18 02:18:23 +00:00			`return scores['standings']`


Hidden challenges now return 404 and can't be solved (#432) * Hidden challenges now return 404 and can't be solved 2017-10-28 17:31:34 +00:00			`def gen_challenge(db, name='chal_name', description='chal_description', value=100, category='chal_category', type='standard', hidden=False):`
Plugins enhanced utils (#231) * Updating utils functions to be monkey patchable * Also fixing a team email update issue * Adding more tests 2017-03-23 00:00:45 +00:00			`chal = Challenges(name, description, value, category)`
Hidden challenges now return 404 and can't be solved (#432) * Hidden challenges now return 404 and can't be solved 2017-10-28 17:31:34 +00:00			`if hidden:`
			`chal.hidden = hidden`
Plugins enhanced utils (#231) * Updating utils functions to be monkey patchable * Also fixing a team email update issue * Adding more tests 2017-03-23 00:00:45 +00:00			`db.session.add(chal)`
			`db.session.commit()`
			`return chal`


			`def gen_award(db, teamid, name="award_name", value=100):`
			`award = Awards(teamid, name, value)`
			`db.session.add(award)`
			`db.session.commit()`
			`return award`


			`def gen_tag(db, chal, tag='tag_tag'):`
			`tag = Tags(chal, tag)`
			`db.session.add(tag)`
			`db.session.commit()`
			`return tag`


			`def gen_file():`
			`pass`


Use strings for key type (#409) * Store key_type as string in the database * Give keys plugin the ability to know where the modals are stored and pass this information to the client 2017-10-14 20:37:41 +00:00			`def gen_flag(db, chal, flag='flag', key_type='static'):`
Plugins enhanced utils (#231) * Updating utils functions to be monkey patchable * Also fixing a team email update issue * Adding more tests 2017-03-23 00:00:45 +00:00			`key = Keys(chal, flag, key_type)`
			`db.session.add(key)`
			`db.session.commit()`
			`return key`


			`def gen_team(db, name='name', email='user@ctfd.io', password='password'):`
			`team = Teams(name, email, password)`
			`db.session.add(team)`
			`db.session.commit()`
			`return team`


Users should always be able to get their score, even if banned (#333) * Users should always be able to get their score, even if banned * Fixing scoring logic when users haven't solved problems * Hide None descriptions for awards 2017-08-06 23:33:02 +00:00			`def gen_hint(db, chal, hint="This is a hint", cost=0, type=0):`
			`hint = Hints(chal, hint, cost, type)`
			`db.session.add(hint)`
			`db.session.commit()`
			`return hint`


Fixing large ip solves (#307) * Switching to using strings to store IP addresses because of the issues with storing them properly, Fixes #302, Fixes $306 * Only runs migrations when using a real database because SQlite is too inflexible to support migrations properly * Removes calls to the ip helper functions but they can remain in case someone needs them in a plugin. 2017-07-08 21:53:14 +00:00			`def gen_solve(db, teamid, chalid, ip='127.0.0.1', flag='rightkey'):`
			`solve = Solves(teamid, chalid, ip, flag)`
Top ten endpoint honors users with the same name (#379) * Make the /top/10 endpoint honor users with the same name 2017-09-08 03:29:41 +00:00			`solve.date = datetime.datetime.utcnow()`
Plugins enhanced utils (#231) * Updating utils functions to be monkey patchable * Also fixing a team email update issue * Adding more tests 2017-03-23 00:00:45 +00:00			`db.session.add(solve)`
			`db.session.commit()`
			`return solve`

General fixes and PEP8 enforcement (#258) * Fixing index page links when you deploy on a subdirectory * Updating travis for pep8 * autopep8 with just formatting changes 2017-05-12 04:34:20 +00:00
Fixing large ip solves (#307) * Switching to using strings to store IP addresses because of the issues with storing them properly, Fixes #302, Fixes $306 * Only runs migrations when using a real database because SQlite is too inflexible to support migrations properly * Removes calls to the ip helper functions but they can remain in case someone needs them in a plugin. 2017-07-08 21:53:14 +00:00			`def gen_wrongkey(db, teamid, chalid, ip='127.0.0.1', flag='wrongkey'):`
			`wrongkey = WrongKeys(teamid, chalid, ip, flag)`
Top ten endpoint honors users with the same name (#379) * Make the /top/10 endpoint honor users with the same name 2017-09-08 03:29:41 +00:00			`wrongkey.date = datetime.datetime.utcnow()`
Plugins enhanced utils (#231) * Updating utils functions to be monkey patchable * Also fixing a team email update issue * Adding more tests 2017-03-23 00:00:45 +00:00			`db.session.add(wrongkey)`
			`db.session.commit()`
			`return wrongkey`


			`def gen_tracking(db, ip, team):`
			`tracking = Tracking(ip, team)`
			`db.session.add(tracking)`
			`db.session.commit()`
General fixes and PEP8 enforcement (#258) * Fixing index page links when you deploy on a subdirectory * Updating travis for pep8 * autopep8 with just formatting changes 2017-05-12 04:34:20 +00:00			`return tracking`
Pages functionality improved (#267) * Pages now support Markdown * Pages now have a preview tab * Adding a media library to Pages 2017-06-03 18:25:31 +00:00

			`def gen_page(db, route, html):`
			`page = Pages(route, html)`
			`db.session.add(page)`
			`db.session.commit()`
			`return page`