kite/backend/tests at 3b84626da91eee60e0a02700244db2603e1c1cf6 - kite - Gitea: Git with a cup of tea

curo/kite

Files

T

History

curo1305 976d2ca2de feat(05-02): implement cloud_utils.py — SSRF validation and HKDF credential encryption

- validate_cloud_url(): blocks RFC-1918 (10.x, 172.16.x, 192.168.x), loopback (127.x),
  link-local (169.254.x), IPv6 loopback (::1), ULA (fc00::/7), and 'localhost' string;
  resolves DNS via socket.getaddrinfo BEFORE IP check (anti-DNS-rebinding per D-17)
- _derive_fernet_key(): creates fresh HKDF-SHA256 instance per call (AlreadyFinalized
  pitfall avoided per RESEARCH.md Pitfall 3); uses user_id as salt for per-user isolation
- encrypt_credentials(): Fernet-encrypts JSON-serialised credentials dict; returns str
- decrypt_credentials(): decrypts Fernet token back to original dict
- [Rule 1 - Bug] Fixed test_allows_public_https to use 8.8.8.8 IP (cloud.example.com
  does not resolve in offline CI environments)

2026-05-28 20:58:40 +02:00

..

__init__.py

chore: initial commit — existing single-user document scanner codebase

2026-05-22 08:53:28 +02:00

conftest.py

feat(05-01): add Phase 5 cloud fixtures to conftest.py

2026-05-28 20:51:41 +02:00

test_admin_api.py

feat(phase-4): Task 2 — SEC-08 CloudConnectionOut, SEC-09 delete-user cleanup, admin audit writes

2026-05-25 21:51:34 +02:00

test_alembic.py

test(03-01): add Wave 0 xfail stubs and shared fixtures for Phase 3

2026-05-23 13:42:37 +02:00

test_audit.py

feat(04-01): add Wave 0 xfail stubs for DOC-02, ADMIN-06, SEC-08, SEC-09

2026-05-25 18:25:18 +02:00

test_auth_api.py

feat(phase-4-05): PATCH /api/auth/me/preferences for pdf_open_mode (DOC-01)

2026-05-25 18:50:52 +02:00

test_auth_deps.py

feat(02-01): implement deps/auth.py FastAPI dependency chain with tests

2026-05-22 19:25:16 +02:00

test_auth_totp.py

feat(02-03): add TOTP setup/enable/disable, password reset, and frontend_url to config

2026-05-22 19:52:36 +02:00

test_classifier.py

feat(03-04): retire flat-file settings; wire per-user AI config via DB lookup

2026-05-23 20:32:55 +02:00

test_cloud_utils.py

feat(05-02): implement cloud_utils.py — SSRF validation and HKDF credential encryption

2026-05-28 20:58:40 +02:00

test_cloud.py

test(05-01): create test_cloud.py with 15 Phase 5 xfail stubs

2026-05-28 20:49:18 +02:00

test_documents.py

test(phase-4-05): add failing tests for document streaming proxy (DOC-02)

2026-05-25 18:47:24 +02:00

test_extractor.py

chore: initial commit — existing single-user document scanner codebase

2026-05-22 08:53:28 +02:00

test_folders.py

feat(phase-4): complete UX redesign — FileManagerView, FolderTreeItem, test suite, and all Phase 4 fixes

2026-05-28 17:10:52 +02:00

test_health.py

feat(01-05): final cutover — delete data/, prune config.py, async-only tests

2026-05-22 09:53:39 +02:00

test_lmstudio.py

feat(phase-4): complete UX redesign — FileManagerView, FolderTreeItem, test suite, and all Phase 4 fixes

2026-05-28 17:10:52 +02:00

test_quota.py

feat(03-02): implement presigned upload flow, quota enforcement, cleanup task

2026-05-23 14:32:12 +02:00

test_security.py

feat(04-01): add Wave 0 xfail stubs for DOC-02, ADMIN-06, SEC-08, SEC-09

2026-05-25 18:25:18 +02:00

test_settings.py

feat(03-04): retire flat-file settings; wire per-user AI config via DB lookup

2026-05-23 20:32:55 +02:00

test_shares.py

feat(04-01): add Wave 0 xfail stubs for FOLD and SHARE requirements

2026-05-25 18:23:40 +02:00

test_storage.py

feat(01-04): rewrite services/storage.py as async SQLAlchemy + MinIO orchestrator

2026-05-22 09:39:32 +02:00

test_task1_models_config.py

feat(02-01): add BackupCode ORM model, password_must_change field, Alembic migration, extend Settings

2026-05-22 19:19:52 +02:00

test_task2_auth_service.py

feat(02-01): implement services/auth.py full auth service layer and email_tasks.py

2026-05-22 19:23:42 +02:00

test_topics.py

feat(03-03): wire get_current_user into /api/topics/*; add load_topics_for_user; POST /api/admin/topics

2026-05-23 20:15:44 +02:00