browser2: Handle cookies in the request/response cycle
Unlike the one by python-requests, it is secure, and generally behaves like a real browser. Basic test added.
This commit is contained in:
Laurent Bachelier
Romain Bignon
parent
57e16e9fe4
commit
2d70d11822
2 changed files with 54 additions and 6 deletions
|
|
@ -25,6 +25,8 @@ import requests
|
||||||
from requests.status_codes import codes
|
from requests.status_codes import codes
|
||||||
from copy import deepcopy
|
from copy import deepcopy
|
||||||
|
|
||||||
|
from .cookiejar import CookieJar
|
||||||
|
|
||||||
|
|
||||||
# TODO define __all__
|
# TODO define __all__
|
||||||
|
|
||||||
|
|
@ -116,9 +118,13 @@ class BaseBrowser(object):
|
||||||
def __init__(self):
|
def __init__(self):
|
||||||
profile = self.PROFILE
|
profile = self.PROFILE
|
||||||
self._setup_session(profile)
|
self._setup_session(profile)
|
||||||
|
self._setup_cookies()
|
||||||
self.url = None
|
self.url = None
|
||||||
self.response = None
|
self.response = None
|
||||||
|
|
||||||
|
def _setup_cookies(self):
|
||||||
|
self.cookies = CookieJar()
|
||||||
|
|
||||||
def _setup_session(self, profile):
|
def _setup_session(self, profile):
|
||||||
"""
|
"""
|
||||||
Set up a python-requests session for our usage.
|
Set up a python-requests session for our usage.
|
||||||
|
|
@ -139,7 +145,10 @@ class BaseBrowser(object):
|
||||||
"""
|
"""
|
||||||
Follow redirects *properly*.
|
Follow redirects *properly*.
|
||||||
* Mimic what browsers do on 302
|
* Mimic what browsers do on 302
|
||||||
* TODO Handle cookies securely
|
* Handle cookies securely
|
||||||
|
|
||||||
|
Returns a new Response object with the history of previous
|
||||||
|
responses in it.
|
||||||
|
|
||||||
:type response: :class:`requests.Response`
|
:type response: :class:`requests.Response`
|
||||||
:type orig_args: dict
|
:type orig_args: dict
|
||||||
|
|
@ -252,9 +261,14 @@ class BaseBrowser(object):
|
||||||
allow_redirects=True, referrer=None,
|
allow_redirects=True, referrer=None,
|
||||||
**kwargs):
|
**kwargs):
|
||||||
"""
|
"""
|
||||||
Makes a GET request, or a POST if data is not None, unless a `method`
|
Make an HTTP request like a browser does:
|
||||||
is explicitly provided.
|
* follow redirects (unless disabled)
|
||||||
An empty `data` (not None) *will* make a post.
|
* handle cookies
|
||||||
|
* provide referrers (unless disabled)
|
||||||
|
|
||||||
|
Unless a `method` is explicitly provided, it makes a GET request,
|
||||||
|
or a POST if data is not None,
|
||||||
|
An empty `data` (not None, like '' or {}) *will* make a POST.
|
||||||
|
|
||||||
It is a wrapper around session.request().
|
It is a wrapper around session.request().
|
||||||
All session.request() options are available.
|
All session.request() options are available.
|
||||||
|
|
@ -295,7 +309,7 @@ class BaseBrowser(object):
|
||||||
kwargs.setdefault('headers', {}).setdefault('Content-Length', '0')
|
kwargs.setdefault('headers', {}).setdefault('Content-Length', '0')
|
||||||
|
|
||||||
# Use our own redirection handling
|
# Use our own redirection handling
|
||||||
# python-requests's sucks to much to be allowed.
|
# python-requests's one sucks too much to be allowed.
|
||||||
kwargs.setdefault('config', {}).setdefault('strict_mode', False)
|
kwargs.setdefault('config', {}).setdefault('strict_mode', False)
|
||||||
kwargs['allow_redirects'] = False
|
kwargs['allow_redirects'] = False
|
||||||
|
|
||||||
|
|
@ -308,13 +322,24 @@ class BaseBrowser(object):
|
||||||
if self.TIMEOUT:
|
if self.TIMEOUT:
|
||||||
kwargs.setdefault('timeout', self.TIMEOUT)
|
kwargs.setdefault('timeout', self.TIMEOUT)
|
||||||
|
|
||||||
|
cookies = kwargs.pop('cookies', None)
|
||||||
|
# get the relevant cookies for the URL
|
||||||
|
# from the jar (unless they are overriden)
|
||||||
|
if cookies is None:
|
||||||
|
cookies = self.cookies.for_request(url)
|
||||||
|
kwargs['cookies'] = cookies
|
||||||
|
|
||||||
# call python-requests
|
# call python-requests
|
||||||
response = self.session.request(method, url, **kwargs)
|
response = self.session.request(method, url, **kwargs)
|
||||||
|
|
||||||
|
# read cookies
|
||||||
|
self.cookies.from_response(response)
|
||||||
|
|
||||||
if allow_redirects:
|
if allow_redirects:
|
||||||
response = self.follow_redirects(response, orig_args)
|
response = self.follow_redirects(response, orig_args)
|
||||||
|
|
||||||
# erase all cookies, python-requests does not handle them securely
|
# erase all cookies, python-requests does not handle them securely
|
||||||
self.session.cookies = {}
|
self.session.cookies.clear()
|
||||||
|
|
||||||
return response
|
return response
|
||||||
|
|
||||||
|
|
|
||||||
|
|
@ -367,3 +367,26 @@ def test_cookiejar():
|
||||||
assert cj.remove(cookie6) is False # already removed
|
assert cj.remove(cookie6) is False # already removed
|
||||||
cj.flush(now, session=True)
|
cj.flush(now, session=True)
|
||||||
assert len(cj.all()) == 1
|
assert len(cj.all()) == 1
|
||||||
|
|
||||||
|
|
||||||
|
def test_cookienav():
|
||||||
|
"""
|
||||||
|
Test browsing while getting new cookies
|
||||||
|
"""
|
||||||
|
b = BaseBrowser()
|
||||||
|
r = b.location(HTTPBIN + 'cookies')
|
||||||
|
assert len(json.loads(r.text)['cookies']) == 0
|
||||||
|
|
||||||
|
r = b.location(HTTPBIN + 'cookies/set/hello/world')
|
||||||
|
assert len(json.loads(r.text)['cookies']) == 1
|
||||||
|
assert json.loads(r.text)['cookies']['hello'] == 'world'
|
||||||
|
r = b.location(HTTPBIN + 'cookies/set/hello2/world2')
|
||||||
|
assert len(json.loads(r.text)['cookies']) == 2
|
||||||
|
assert json.loads(r.text)['cookies']['hello2'] == 'world2'
|
||||||
|
|
||||||
|
r = b.location(REQUESTBIN)
|
||||||
|
assert 'session' in r.cookies # requestbin should give this by default
|
||||||
|
assert 'hello' not in r.cookies # we didn't send the wrong cookie
|
||||||
|
# return to httpbin, check we didn't give the wrong cookie
|
||||||
|
r = b.location(HTTPBIN + 'cookies')
|
||||||
|
assert 'session' not in json.loads(r.text)['cookies']
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue