vrr/free-claude-code
2
0
Fork 0
mirror of https://github.com/Alishahryar1/free-claude-code.git synced 2026-05-20 17:40:50 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
free-claude-code/tests/api/test_auth.py
Alishahryar1 f9fc614563 Allow unauthenticated root probes
2026-05-10 16:03:19 -07:00

95 lines
2.7 KiB
Python
Raw Permalink Blame History

from unittest.mock import patch
from fastapi.testclient import TestClient
from api.app import create_app
from api.dependencies import get_settings
from config.settings import Settings
app = create_app()
def test_anthropic_auth_token_required_and_accepts_x_api_key():
client = TestClient(app)
settings = Settings()
settings.anthropic_auth_token = "s3cr3t"
app.dependency_overrides[get_settings] = lambda: settings
payload = {
"model": "claude-3-sonnet",
"messages": [{"role": "user", "content": "hello"}],
}
with patch("api.routes.get_token_count", return_value=1):
# No header -> 401
r = client.post("/v1/messages/count_tokens", json=payload)
assert r.status_code == 401
# X-API-Key header -> 200
r = client.post(
"/v1/messages/count_tokens", json=payload, headers={"X-API-Key": "s3cr3t"}
)
assert r.status_code == 200
assert r.json()["input_tokens"] == 1
app.dependency_overrides.clear()
def test_anthropic_auth_token_accepts_bearer_authorization():
client = TestClient(app)
settings = Settings()
settings.anthropic_auth_token = "b3artoken"
app.dependency_overrides[get_settings] = lambda: settings
payload = {
"model": "claude-3-sonnet",
"messages": [{"role": "user", "content": "hello"}],
}
with patch("api.routes.get_token_count", return_value=2):
# Authorization Bearer -> 200
r = client.post(
"/v1/messages/count_tokens",
json=payload,
headers={"Authorization": "Bearer b3artoken"},
)
assert r.status_code == 200
assert r.json()["input_tokens"] == 2
app.dependency_overrides.clear()
def test_anthropic_auth_token_applies_to_models_endpoint():
client = TestClient(app)
settings = Settings()
settings.anthropic_auth_token = "models-token"
app.dependency_overrides[get_settings] = lambda: settings
r = client.get("/v1/models")
assert r.status_code == 401
r = client.get("/v1/models", headers={"X-API-Key": "models-token"})
assert r.status_code == 200
assert "data" in r.json()
app.dependency_overrides.clear()
def test_root_get_requires_auth_but_root_probes_are_public():
client = TestClient(app)
settings = Settings()
settings.anthropic_auth_token = "root-token"
app.dependency_overrides[get_settings] = lambda: settings
response = client.get("/")
assert response.status_code == 401
head = client.head("/")
assert head.status_code == 204
assert head.headers["Allow"] == "GET, HEAD, OPTIONS"
options = client.options("/")
assert options.status_code == 204
assert options.headers["Allow"] == "GET, HEAD, OPTIONS"
app.dependency_overrides.clear()
Reference in a new issue View git blame Copy permalink