Home Explore Help
Sign In
yunoadmin
/
bambuddy
mirror of https://github.com/maziggy/bambuddy
1
0
Fork 0
Files Issues 0 Wiki
Tree: fdf818e54c
Branches Tags
bambuddy
/
backend
/
tests
/
unit
/
services
/
test_bambu_cloud.py

test_bambu_cloud.py 12 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307 
  1. """Tests for Bambu Cloud service - TOTP and email verification flows."""
    2. 

  2. 

  3. from unittest.mock import AsyncMock, MagicMock, patch
    4. 

  4. 

  5. import pytest
    6. 

  6. 

  7. from backend.app.services.bambu_cloud import BambuCloudService
    8. 

  8. 

  9. 

  10. class TestBambuCloudLogin:
    11. 

  11.     """Test login flow detection (email vs TOTP)."""
    12. 

  12. 

  13.     @pytest.fixture
    14. 

  14.     def cloud_service(self):
    15. 

  15.         """Create a BambuCloudService instance."""
    16. 

  16.         return BambuCloudService()
    17. 

  17. 

  18.     @pytest.mark.asyncio
    19. 

  19.     async def test_login_detects_email_verification(self, cloud_service):
    20. 

  20.         """When loginType is verifyCode, should return email verification type."""
    21. 

  21.         mock_response = MagicMock()
    22. 

  22.         mock_response.status_code = 200
    23. 

  23.         mock_response.json.return_value = {
    24. 

  24.             "loginType": "verifyCode",
    25. 

  25.         }
    26. 

  26. 

  27.         with patch.object(cloud_service._client, "post", new_callable=AsyncMock) as mock_post:
    28. 

  28.             mock_post.return_value = mock_response
    29. 

  29. 

  30.             result = await cloud_service.login_request("test@example.com", "password")
    31. 

  31. 

  32.             assert result["success"] is False
    33. 

  33.             assert result["needs_verification"] is True
    34. 

  34.             assert result["verification_type"] == "email"
    35. 

  35.             assert result["tfa_key"] is None
    36. 

  36.             assert "email" in result["message"].lower()
    37. 

  37. 

  38.     @pytest.mark.asyncio
    39. 

  39.     async def test_login_detects_totp(self, cloud_service):
    40. 

  40.         """When loginType is tfa, should return TOTP verification type with tfaKey."""
    41. 

  41.         mock_response = MagicMock()
    42. 

  42.         mock_response.status_code = 200
    43. 

  43.         mock_response.json.return_value = {
    44. 

  44.             "loginType": "tfa",
    45. 

  45.             "tfaKey": "test-tfa-key-123",
    46. 

  46.         }
    47. 

  47. 

  48.         with patch.object(cloud_service._client, "post", new_callable=AsyncMock) as mock_post:
    49. 

  49.             mock_post.return_value = mock_response
    50. 

  50. 

  51.             result = await cloud_service.login_request("test@example.com", "password")
    52. 

  52. 

  53.             assert result["success"] is False
    54. 

  54.             assert result["needs_verification"] is True
    55. 

  55.             assert result["verification_type"] == "totp"
    56. 

  56.             assert result["tfa_key"] == "test-tfa-key-123"
    57. 

  57.             assert "authenticator" in result["message"].lower()
    58. 

  58. 

  59.     @pytest.mark.asyncio
    60. 

  60.     async def test_login_direct_success(self, cloud_service):
    61. 

  61.         """When accessToken is returned directly, should succeed without verification."""
    62. 

  62.         mock_response = MagicMock()
    63. 

  63.         mock_response.status_code = 200
    64. 

  64.         mock_response.json.return_value = {
    65. 

  65.             "accessToken": "test-access-token",
    66. 

  66.             "refreshToken": "test-refresh-token",
    67. 

  67.         }
    68. 

  68. 

  69.         with patch.object(cloud_service._client, "post", new_callable=AsyncMock) as mock_post:
    70. 

  70.             mock_post.return_value = mock_response
    71. 

  71. 

  72.             result = await cloud_service.login_request("test@example.com", "password")
    73. 

  73. 

  74.             assert result["success"] is True
    75. 

  75.             assert result["needs_verification"] is False
    76. 

  76.             assert cloud_service.access_token == "test-access-token"
    77. 

  77. 

  78.     @pytest.mark.asyncio
    79. 

  79.     async def test_login_failure(self, cloud_service):
    80. 

  80.         """When login fails, should return error message."""
    81. 

  81.         mock_response = MagicMock()
    82. 

  82.         mock_response.status_code = 401
    83. 

  83.         mock_response.json.return_value = {
    84. 

  84.             "message": "Invalid credentials",
    85. 

  85.         }
    86. 

  86. 

  87.         with patch.object(cloud_service._client, "post", new_callable=AsyncMock) as mock_post:
    88. 

  88.             mock_post.return_value = mock_response
    89. 

  89. 

  90.             result = await cloud_service.login_request("test@example.com", "wrong-password")
    91. 

  91. 

  92.             assert result["success"] is False
    93. 

  93.             assert result["needs_verification"] is False
    94. 

  94.             assert "Invalid credentials" in result["message"]
    95. 

  95. 

  96. 

  97. class TestBambuCloudEmailVerification:
    98. 

  98.     """Test email verification flow."""
    99. 

  99. 

  100.     @pytest.fixture
    101. 

  101.     def cloud_service(self):
    102. 

  102.         """Create a BambuCloudService instance."""
    103. 

  103.         return BambuCloudService()
    104. 

  104. 

  105.     @pytest.mark.asyncio
    106. 

  106.     async def test_verify_code_success(self, cloud_service):
    107. 

  107.         """When email code is correct, should return success with token."""
    108. 

  108.         mock_response = MagicMock()
    109. 

  109.         mock_response.status_code = 200
    110. 

  110.         mock_response.json.return_value = {
    111. 

  111.             "accessToken": "test-access-token",
    112. 

  112.             "refreshToken": "test-refresh-token",
    113. 

  113.         }
    114. 

  114. 

  115.         with patch.object(cloud_service._client, "post", new_callable=AsyncMock) as mock_post:
    116. 

  116.             mock_post.return_value = mock_response
    117. 

  117. 

  118.             result = await cloud_service.verify_code("test@example.com", "123456")
    119. 

  119. 

  120.             assert result["success"] is True
    121. 

  121.             assert cloud_service.access_token == "test-access-token"
    122. 

  122. 

  123.     @pytest.mark.asyncio
    124. 

  124.     async def test_verify_code_failure(self, cloud_service):
    125. 

  125.         """When email code is incorrect, should return failure."""
    126. 

  126.         mock_response = MagicMock()
    127. 

  127.         mock_response.status_code = 400
    128. 

  128.         mock_response.json.return_value = {
    129. 

  129.             "message": "Invalid verification code",
    130. 

  130.         }
    131. 

  131. 

  132.         with patch.object(cloud_service._client, "post", new_callable=AsyncMock) as mock_post:
    133. 

  133.             mock_post.return_value = mock_response
    134. 

  134. 

  135.             result = await cloud_service.verify_code("test@example.com", "000000")
    136. 

  136. 

  137.             assert result["success"] is False
    138. 

  138.             assert "Invalid" in result["message"] or "Verification failed" in result["message"]
    139. 

  139. 

  140. 

  141. class TestBambuCloudTOTPVerification:
    142. 

  142.     """Test TOTP verification flow."""
    143. 

  143. 

  144.     @pytest.fixture
    145. 

  145.     def cloud_service(self):
    146. 

  146.         """Create a BambuCloudService instance."""
    147. 

  147.         return BambuCloudService()
    148. 

  148. 

  149.     @pytest.mark.asyncio
    150. 

  150.     async def test_verify_totp_success(self, cloud_service):
    151. 

  151.         """When TOTP code is correct, should return success with token."""
    152. 

  152.         mock_response = MagicMock()
    153. 

  153.         mock_response.status_code = 200
    154. 

  154.         mock_response.text = '{"token": "test-access-token"}'
    155. 

  155.         mock_response.json.return_value = {
    156. 

  156.             "token": "test-access-token",
    157. 

  157.         }
    158. 

  158.         mock_response.cookies = {}
    159. 

  159. 

  160.         with patch.object(cloud_service._client, "post", new_callable=AsyncMock) as mock_post:
    161. 

  161.             mock_post.return_value = mock_response
    162. 

  162. 

  163.             result = await cloud_service.verify_totp("test-tfa-key", "123456")
    164. 

  164. 

  165.             assert result["success"] is True
    166. 

  166.             assert cloud_service.access_token == "test-access-token"
    167. 

  167. 

  168.     @pytest.mark.asyncio
    169. 

  169.     async def test_verify_totp_uses_correct_endpoint(self, cloud_service):
    170. 

  170.         """TOTP verification should use bambulab.com, not api.bambulab.com."""
    171. 

  171.         mock_response = MagicMock()
    172. 

  172.         mock_response.status_code = 200
    173. 

  173.         mock_response.text = '{"token": "test-token"}'
    174. 

  174.         mock_response.json.return_value = {"token": "test-token"}
    175. 

  175.         mock_response.cookies = {}
    176. 

  176. 

  177.         with patch.object(cloud_service._client, "post", new_callable=AsyncMock) as mock_post:
    178. 

  178.             mock_post.return_value = mock_response
    179. 

  179. 

  180.             await cloud_service.verify_totp("test-tfa-key", "123456")
    181. 

  181. 

  182.             # Check the URL used
    183. 

  183.             call_args = mock_post.call_args
    184. 

  184.             url = call_args[0][0]
    185. 

  185.             assert "bambulab.com/api/sign-in/tfa" in url
    186. 

  186.             assert "api.bambulab.com" not in url
    187. 

  187. 

  188.     @pytest.mark.asyncio
    189. 

  189.     async def test_verify_totp_empty_response(self, cloud_service):
    190. 

  190.         """When TOTP returns empty response, should handle gracefully."""
    191. 

  191.         mock_response = MagicMock()
    192. 

  192.         mock_response.status_code = 400
    193. 

  193.         mock_response.text = ""
    194. 

  194. 

  195.         with patch.object(cloud_service._client, "post", new_callable=AsyncMock) as mock_post:
    196. 

  196.             mock_post.return_value = mock_response
    197. 

  197. 

  198.             result = await cloud_service.verify_totp("test-tfa-key", "123456")
    199. 

  199. 

  200.             assert result["success"] is False
    201. 

  201.             assert "empty response" in result["message"].lower()
    202. 

  202. 

  203.     @pytest.mark.asyncio
    204. 

  204.     async def test_verify_totp_cloudflare_blocked(self, cloud_service):
    205. 

  205.         """When Cloudflare blocks request, should handle gracefully."""
    206. 

  206.         mock_response = MagicMock()
    207. 

  207.         mock_response.status_code = 403
    208. 

  208.         mock_response.text = "<!DOCTYPE html><html><head><title>Just a moment...</title>"
    209. 

  209.         # json() raises an error when response is HTML
    210. 

  210.         mock_response.json.side_effect = ValueError("No JSON")
    211. 

  211. 

  212.         with patch.object(cloud_service._client, "post", new_callable=AsyncMock) as mock_post:
    213. 

  213.             mock_post.return_value = mock_response
    214. 

  214. 

  215.             result = await cloud_service.verify_totp("test-tfa-key", "123456")
    216. 

  216. 

  217.             assert result["success"] is False
    218. 

  218.             assert "Invalid response" in result["message"]
    219. 

  219. 

  220.     @pytest.mark.asyncio
    221. 

  221.     async def test_verify_totp_uses_honest_bambuddy_user_agent(self, cloud_service):
    222. 

  222.         """TOTP verification identifies as Bambuddy, not as a browser.
    223. 

  223. 

  224.         The TOTP endpoint previously sent a Chrome User-Agent + Origin/Referer
    225. 

  225.         headers under the assumption Cloudflare would block non-browser
    226. 

  226.         identification. Verified 2026-05-12 that ``https://bambulab.com/api/sign-in/tfa``
    227. 

  227.         accepts ``Bambuddy/X.Y.Z`` cleanly — the expected application-level
    228. 

  228.         response comes back, no Cloudflare interstitial. Browser impersonation
    229. 

  229.         was removed to stay clearly on the right side of Bambu Lab's
    230. 

  230.         "no falsified client identity" line from the 2026-05-12 cloud-access
    231. 

  231.         blog post.
    232. 

  232.         """
    233. 

  233.         mock_response = MagicMock()
    234. 

  234.         mock_response.status_code = 200
    235. 

  235.         mock_response.text = '{"token": "test-token"}'
    236. 

  236.         mock_response.json.return_value = {"token": "test-token"}
    237. 

  237.         mock_response.cookies = {}
    238. 

  238. 

  239.         with patch.object(cloud_service._client, "post", new_callable=AsyncMock) as mock_post:
    240. 

  240.             mock_post.return_value = mock_response
    241. 

  241. 

  242.             await cloud_service.verify_totp("test-tfa-key", "123456")
    243. 

  243. 

  244.             call_args = mock_post.call_args
    245. 

  245.             headers = call_args[1]["headers"]
    246. 

  246.             assert headers["User-Agent"].startswith("Bambuddy/")
    247. 

  247.             # Browser-impersonation strings must not creep back in
    248. 

  248.             assert "Mozilla" not in headers["User-Agent"]
    249. 

  249.             assert "Chrome" not in headers["User-Agent"]
    250. 

  250.             # Origin / Referer headers were spoofing bambulab.com origin — gone
    251. 

  251.             assert "Origin" not in headers
    252. 

  252.             assert "Referer" not in headers
    253. 

  253. 

  254. 

  255. class TestBambuCloudRegion:
    256. 

  256.     """Region routing — China-region instances must hit api.bambulab.cn."""
    257. 

  257. 

  258.     def test_global_region_uses_com_base(self):
    259. 

  259.         """Default / 'global' region should use api.bambulab.com."""
    260. 

  260.         cloud = BambuCloudService()  # default region
    261. 

  261.         assert cloud.base_url == "https://api.bambulab.com"
    262. 

  262. 

  263.         cloud_explicit = BambuCloudService(region="global")
    264. 

  264.         assert cloud_explicit.base_url == "https://api.bambulab.com"
    265. 

  265. 

  266.     def test_china_region_uses_cn_base(self):
    267. 

  267.         """'china' region should use api.bambulab.cn."""
    268. 

  268.         cloud = BambuCloudService(region="china")
    269. 

  269.         assert cloud.base_url == "https://api.bambulab.cn"
    270. 

  270. 

  271.     @pytest.mark.asyncio
    272. 

  272.     async def test_china_region_login_hits_cn_endpoint(self):
    273. 

  273.         """A login_request from a China-region instance must POST to api.bambulab.cn."""
    274. 

  274.         cloud = BambuCloudService(region="china")
    275. 

  275. 

  276.         mock_response = MagicMock()
    277. 

  277.         mock_response.status_code = 200
    278. 

  278.         mock_response.json.return_value = {"loginType": "verifyCode"}
    279. 

  279. 

  280.         with patch.object(cloud._client, "post", new_callable=AsyncMock) as mock_post:
    281. 

  281.             mock_post.return_value = mock_response
    282. 

  282. 

  283.             await cloud.login_request("test@example.com", "password")
    284. 

  284. 

  285.             url = mock_post.call_args[0][0]
    286. 

  286.             assert "api.bambulab.cn" in url
    287. 

  287.             assert "api.bambulab.com" not in url
    288. 

  288. 

  289.     @pytest.mark.asyncio
    290. 

  290.     async def test_china_region_totp_hits_cn_tfa_endpoint(self):
    291. 

  291.         """TOTP verification from a China-region instance uses the CN TFA endpoint."""
    292. 

  292.         cloud = BambuCloudService(region="china")
    293. 

  293. 

  294.         mock_response = MagicMock()
    295. 

  295.         mock_response.status_code = 200
    296. 

  296.         mock_response.text = '{"token": "t"}'
    297. 

  297.         mock_response.json.return_value = {"token": "t"}
    298. 

  298.         mock_response.cookies = {}
    299. 

  299. 

  300.         with patch.object(cloud._client, "post", new_callable=AsyncMock) as mock_post:
    301. 

  301.             mock_post.return_value = mock_response
    302. 

  302. 

  303.             await cloud.verify_totp("tfa-key", "123456")
    304. 

  304. 

  305.             url = mock_post.call_args[0][0]
    306. 

  306.             assert "bambulab.cn/api/sign-in/tfa" in url
    307. 

  307.             assert "bambulab.com" not in url
    308.