(factory, server)
| 64 | |
| 65 | |
| 66 | def test_invalid_scope(factory, server): |
| 67 | server.scopes_supported = ["profile"] |
| 68 | request = factory.post( |
| 69 | "/oauth/token", |
| 70 | data={ |
| 71 | "grant_type": "password", |
| 72 | "username": "foo", |
| 73 | "password": "ok", |
| 74 | "scope": "invalid", |
| 75 | }, |
| 76 | HTTP_AUTHORIZATION=create_basic_auth("client-id", "client-secret"), |
| 77 | ) |
| 78 | resp = server.create_token_response(request) |
| 79 | assert resp.status_code == 400 |
| 80 | data = json.loads(resp.content) |
| 81 | assert data["error"] == "invalid_scope" |
| 82 | |
| 83 | |
| 84 | def test_invalid_request(factory, server): |
nothing calls this directly
no test coverage detected
searching dependent graphs…