[OIDC] Pending provider views, routes, forms (#12646)

* accounts/models: initial permissions helper

Signed-off-by: William Woodruff <[email protected]>

* warehouse: initial view/route skeleton for pending publishers

Signed-off-by: William Woodruff <[email protected]>

* templates/manage: devolve common OIDC components

Signed-off-by: William Woodruff <[email protected]>

* HTML, form work

Signed-off-by: William Woodruff <[email protected]>

* warehouse: `make translations`

Signed-off-by: William Woodruff <[email protected]>

* warehouse: stamp the new pending publisher form out

Signed-off-by: William Woodruff <[email protected]>

* warehouse: more pending OIDC provider scaffolding, deletions, ratelimiting

Signed-off-by: William Woodruff <[email protected]>

* migrations: rebase

Signed-off-by: William Woodruff <[email protected]>

* oidc/forms: handle connection errors against GitHub's API

Signed-off-by: William Woodruff <[email protected]>

* warehouse: pending provider events

Signed-off-by: William Woodruff <[email protected]>

* warehouse: `make translations`

Signed-off-by: William Woodruff <[email protected]>

* tests: make the tests pass

...coverage needs to be brought back up.

Signed-off-by: William Woodruff <[email protected]>

* tests: add another OIDC form test

Signed-off-by: William Woodruff <[email protected]>

* warehouse: reintroduce UniqueConstraint

Signed-off-by: William Woodruff <[email protected]>

* templates: initial help text for OIDC, restrict add form

Signed-off-by: William Woodruff <[email protected]>

* accounts/views: more constraints on pending registration

Signed-off-by: William Woodruff <[email protected]>

* accounts/views: warn the user if the OIDC provider has already been registered

...potentially by someone else.

Signed-off-by: William Woodruff <[email protected]>

* warehouse/local: `make translations`

Signed-off-by: William Woodruff <[email protected]>

* tests: some more account model tests for pending providers

Signed-off-by: William Woodruff <[email protected]>

* tests: more pending provider qualification tests

Signed-off-by: William Woodruff <[email protected]>

* tests: more form tests

Signed-off-by: William Woodruff <[email protected]>

* tests: round out form coverage

Signed-off-by: William Woodruff <[email protected]>

* tests, warehouse: more coverage

Signed-off-by: William Woodruff <[email protected]>

* tests, warehouse: more coverage

Signed-off-by: William Woodruff <[email protected]>

* warehouse/local: `make translations`

Signed-off-by: William Woodruff <[email protected]>

* tests, warehouse: round out coverage

Signed-off-by: William Woodruff <[email protected]>

* tests, warehouse: lintage

Signed-off-by: William Woodruff <[email protected]>

* warehouse/locale: `make translations`

Signed-off-by: William Woodruff <[email protected]>

* Apply suggestions from code review

Co-authored-by: Dustin Ingram <[email protected]>

* warehouse: `make translations`

Signed-off-by: William Woodruff <[email protected]>

* accounts/views: reformat

Signed-off-by: William Woodruff <[email protected]>

* tests, warehouse: fixups, fix tests

Signed-off-by: William Woodruff <[email protected]>

* tests, warehouse: remove some OIDC restrictions

Signed-off-by: William Woodruff <[email protected]>

* pages/help: remove talk of OIDC "flavors"

Too confusing.

Signed-off-by: William Woodruff <[email protected]>

* warehouse, tests: better error flashes

Signed-off-by: William Woodruff <[email protected]>

* warehouse: dedupe project name regexps

Signed-off-by: William Woodruff <[email protected]>

* warehouse: `make translations`

Signed-off-by: William Woodruff <[email protected]>

* Update warehouse/accounts/views.py

Co-authored-by: Dustin Ingram <[email protected]>

* warehouse, tests: tweak OIDC limit message

Signed-off-by: William Woodruff <[email protected]>

* warehouse, tests: drop OIDC helper

Signed-off-by: William Woodruff <[email protected]>

Signed-off-by: William Woodruff <[email protected]>
Co-authored-by: Dustin Ingram <[email protected]>

Author: woodruffw

tests/unit/accounts/test_views.py

@@ -9959,10 +9959,9 @@ def test_add_github_oidc_provider_oidc_not_enabled(self):
 
     def test_add_github_oidc_provider_admin_disabled(self, monkeypatch):
         project = pretend.stub()
-        metrics = pretend.stub(increment=pretend.call_recorder(lambda *a, **kw: None))
         request = pretend.stub(
             registry=pretend.stub(settings={"warehouse.oidc.enabled": True}),
-            find_service=lambda *a, **kw: metrics,
+            find_service=lambda *a, **kw: None,
             flags=pretend.stub(enabled=pretend.call_recorder(lambda f: True)),
             session=pretend.stub(flash=pretend.call_recorder(lambda *a, **kw: None)),
             _=lambda s: s,
@@ -9975,11 +9974,6 @@ def test_add_github_oidc_provider_admin_disabled(self, monkeypatch):
         )
 
         assert view.add_github_oidc_provider() == default_response
-        assert view.metrics.increment.calls == [
-            pretend.call(
-                "warehouse.oidc.add_provider.attempt", tags=["provider:GitHub"]
-            ),
-        ]
         assert request.session.flash.calls == [
             pretend.call(
                 (
@@ -10336,10 +10330,9 @@ def test_delete_oidc_provider_oidc_not_enabled(self):
 
     def test_delete_oidc_provider_admin_disabled(self, monkeypatch):
         project = pretend.stub()
-        metrics = pretend.stub(increment=pretend.call_recorder(lambda *a, **kw: None))
         request = pretend.stub(
             registry=pretend.stub(settings={"warehouse.oidc.enabled": True}),
-            find_service=lambda *a, **kw: metrics,
+            find_service=lambda *a, **kw: None,
             flags=pretend.stub(enabled=pretend.call_recorder(lambda f: True)),
             session=pretend.stub(flash=pretend.call_recorder(lambda *a, **kw: None)),
         )
@@ -10351,11 +10344,6 @@ def test_delete_oidc_provider_admin_disabled(self, monkeypatch):
         )
 
         assert view.delete_oidc_provider() == default_response
-        assert view.metrics.increment.calls == [
-            pretend.call(
-                "warehouse.oidc.delete_provider.attempt",
-            ),
-        ]
         assert request.session.flash.calls == [
             pretend.call(
                 (

tests/unit/manage/test_views.py

@@ -14,12 +14,51 @@
 import pytest
 import wtforms
 
-from requests import HTTPError, Timeout
+from requests import ConnectionError, HTTPError, Timeout
 from webob.multidict import MultiDict
 
 from warehouse.oidc import forms
 
 
+class TestPendingGitHubProviderForm:
+    def test_creation(self):
+        project_factory = pretend.stub()
+        form = forms.PendingGitHubProviderForm(
+            api_token="fake-token", project_factory=project_factory
+        )
+
+        assert form._project_factory == project_factory
+
+    def test_validate_project_name_already_in_use(self):
+        project_factory = ["some-project"]
+        form = forms.PendingGitHubProviderForm(
+            api_token="fake-token", project_factory=project_factory
+        )
+
+        field = pretend.stub(data="some-project")
+        with pytest.raises(wtforms.validators.ValidationError):
+            form.validate_project_name(field)
+
+    def test_validate(self, monkeypatch):
+        data = MultiDict(
+            {
+                "owner": "some-owner",
+                "repository": "some-repo",
+                "workflow_filename": "some-workflow.yml",
+                "project_name": "some-project",
+            }
+        )
+        form = forms.PendingGitHubProviderForm(
+            MultiDict(data), api_token=pretend.stub(), project_factory=[]
+        )
+
+        # We're testing only the basic validation here.
+        owner_info = {"login": "fake-username", "id": "1234"}
+        monkeypatch.setattr(form, "_lookup_owner", lambda o: owner_info)
+
+        assert form.validate()
+
+
 class TestGitHubProviderForm:
     @pytest.mark.parametrize(
         "token, headers",
@@ -138,6 +177,7 @@ def test_lookup_owner_http_timeout(self, monkeypatch):
             get=pretend.raiser(Timeout),
             Timeout=Timeout,
             HTTPError=HTTPError,
+            ConnectionError=ConnectionError,
         )
         monkeypatch.setattr(forms, "requests", requests)
 
@@ -152,6 +192,28 @@ def test_lookup_owner_http_timeout(self, monkeypatch):
             pretend.call("Timeout from GitHub user lookup API (possibly offline)")
         ]
 
+    def test_lookup_owner_connection_error(self, monkeypatch):
+        requests = pretend.stub(
+            get=pretend.raiser(ConnectionError),
+            Timeout=Timeout,
+            HTTPError=HTTPError,
+            ConnectionError=ConnectionError,
+        )
+        monkeypatch.setattr(forms, "requests", requests)
+
+        sentry_sdk = pretend.stub(capture_message=pretend.call_recorder(lambda s: None))
+        monkeypatch.setattr(forms, "sentry_sdk", sentry_sdk)
+
+        form = forms.GitHubProviderForm(api_token="fake-token")
+        with pytest.raises(wtforms.validators.ValidationError):
+            form._lookup_owner("some-owner")
+
+        assert sentry_sdk.capture_message.calls == [
+            pretend.call(
+                "Connection error from GitHub user lookup API (possibly offline)"
+            )
+        ]
+
     def test_lookup_owner_succeeds(self, monkeypatch):
         fake_owner_info = pretend.stub()
         response = pretend.stub(

tests/unit/oidc/test_forms.py

@@ -197,6 +197,9 @@ def add_policy(name, filename):
             domain=warehouse,
         ),
         pretend.call("manage.account", "/manage/account/", domain=warehouse),
+        pretend.call(
+            "manage.account.publishing", "/manage/account/publishing/", domain=warehouse
+        ),
         pretend.call(
             "manage.account.two-factor",
             "/manage/account/two-factor/",