Replace httpbin.org with github.com for acceptance tests

.gitignore

@@ -30,6 +30,7 @@ venv/*
 env/*
 
 .vscode/*
+.claude/
 
 # ignore http server log
 atests/http_server/http_server.log

atests/http_server/core.py

@@ -2,13 +2,19 @@
 # See AUTHORS and LICENSE for more information
 
 from flask import Flask, Response, jsonify as flask_jsonify, request
+from flask_httpauth import HTTPBasicAuth, HTTPDigestAuth
 
 from .structures import CaseInsensitiveDict
 from .helpers import get_dict, status_code
 from .utils import weighted_choice
 
 
 app = Flask(__name__)
+app.config['SECRET_KEY'] = 'test-secret-key-for-digest-auth'
+
+# Initialize authentication handlers
+basic_auth = HTTPBasicAuth()
+digest_auth = HTTPDigestAuth()
 
 
 def jsonify(*args, **kwargs):
@@ -191,3 +197,92 @@ def redirect_to():
     response.headers["Location"] = args["url"]
 
     return response
+
+
+# Basic auth verification callback
+@basic_auth.verify_password
+def verify_basic_password(username, password):
+    # Get expected credentials from the request path
+    path_parts = request.path.split('/')
+    if len(path_parts) >= 4 and path_parts[1] == 'basic-auth':
+        expected_user = path_parts[2]
+        expected_pass = path_parts[3]
+        return username == expected_user and password == expected_pass
+    return False
+
+
+@app.route("/basic-auth/<user>/<passwd>")
+@basic_auth.login_required
+def basic_auth_endpoint(user, passwd):
+    """Prompts the user for authorization using HTTP Basic Auth.
+    ---
+    tags:
+      - Auth
+    parameters:
+      - in: path
+        name: user
+        type: string
+        required: true
+      - in: path
+        name: passwd
+        type: string
+        required: true
+    produces:
+      - application/json
+    responses:
+      200:
+        description: Successful authentication.
+      401:
+        description: Unsuccessful authentication.
+    """
+    return jsonify(authenticated=True, user=basic_auth.current_user())
+
+
+# Digest auth password callback
+@digest_auth.get_password
+def get_digest_password(username):
+    # Get expected credentials from the request path
+    path_parts = request.path.split('/')
+    if len(path_parts) >= 5 and path_parts[1] == 'digest-auth':
+        expected_user = path_parts[3]
+        expected_pass = path_parts[4]
+        if username == expected_user:
+            return expected_pass
+    return None
+
+
+@app.route("/digest-auth/<qop>/<user>/<passwd>")
+@app.route("/digest-auth/<qop>/<user>/<passwd>/<algorithm>")
+@digest_auth.login_required
+def digest_auth_endpoint(qop, user, passwd, algorithm='MD5'):
+    """Prompts the user for authorization using HTTP Digest Auth.
+    ---
+    tags:
+      - Auth
+    parameters:
+      - in: path
+        name: qop
+        type: string
+        required: true
+      - in: path
+        name: user
+        type: string
+        required: true
+      - in: path
+        name: passwd
+        type: string
+        required: true
+      - in: path
+        name: algorithm
+        type: string
+        required: false
+        default: MD5
+    produces:
+      - application/json
+    responses:
+      200:
+        description: Successful authentication.
+      401:
+        description: Unsuccessful authentication.
+    """
+    return jsonify(authenticated=True, user=digest_auth.current_user())

atests/http_server/helpers.py

@@ -256,8 +256,16 @@ def status_code(code):
     return r
 
 
+# =============================================================================
+# UNUSED: Authentication functions below are no longer used (Flask-HTTPAuth is used instead)
+# These functions remain for reference but can be removed in the future
+# =============================================================================
+
 def check_basic_auth(user, passwd):
-    """Checks user authentication using HTTP Basic Auth."""
+    """Checks user authentication using HTTP Basic Auth.
+
+    UNUSED: Replaced by Flask-HTTPAuth's @basic_auth.verify_password decorator
+    """
 
     auth = request.authorization
     return auth and auth.username == user and auth.password == passwd
@@ -268,6 +276,7 @@ def check_basic_auth(user, passwd):
 
 
 def H(data, algorithm):
+    """UNUSED: Hash function for digest auth (replaced by Flask-HTTPAuth)"""
     if algorithm == 'SHA-256':
         return sha256(data).hexdigest()
     elif algorithm == 'SHA-512':
@@ -280,6 +289,8 @@ def HA1(realm, username, password, algorithm):
     """Create HA1 hash by realm, username, password
 
     HA1 = md5(A1) = MD5(username:realm:password)
+
+    UNUSED: Replaced by Flask-HTTPAuth
     """
     if not realm:
         realm = u''
@@ -295,6 +306,8 @@ def HA2(credentials, request, algorithm):
         HA2 = md5(A2) = MD5(method:digestURI)
     If the qop directive's value is "auth-int" , then HA2 is
         HA2 = md5(A2) = MD5(method:digestURI:MD5(entityBody))
+
+    UNUSED: Replaced by Flask-HTTPAuth
     """
     if credentials.get("qop") == "auth" or credentials.get('qop') is None:
         return H(b":".join([request['method'].encode('utf-8'), request['uri'].encode('utf-8')]), algorithm)
@@ -321,6 +334,8 @@ def response(credentials, password, request):
     - `credentials`: credentials dict
     - `password`: request user password
     - `request`: request dict
+
+    UNUSED: Replaced by Flask-HTTPAuth
     """
     response = None
     algorithm = credentials.get('algorithm')
@@ -354,7 +369,10 @@ def response(credentials, password, request):
 
 
 def check_digest_auth(user, passwd):
-    """Check user authentication using HTTP Digest auth"""
+    """Check user authentication using HTTP Digest auth
+
+    UNUSED: Replaced by Flask-HTTPAuth's @digest_auth.get_password decorator
+    """
 
     if request.headers.get('Authorization'):
         credentials = Authorization.from_header(request.headers.get('Authorization'))
@@ -456,6 +474,10 @@ def next_stale_after_value(stale_after):
 
 
 def digest_challenge_response(app, qop, algorithm, stale=False):
+    """Generate digest authentication challenge response.
+
+    UNUSED: Replaced by Flask-HTTPAuth which handles challenge generation automatically
+    """
     response = app.make_response('')
     response.status_code = 401
 

atests/test_authentication.robot

@@ -1,34 +1,34 @@
 *** Settings ***
 Library     RequestsLibrary
 Library     customAuthenticator.py
+Resource    res_setup.robot
 
 
 *** Test Cases ***
 Get With Auth
     [Tags]    get    get-cert
     ${auth}=    Create List    user    passwd
-    Create Session    httpbin    https://httpbin.org    auth=${auth}    verify=${CURDIR}${/}cacert.pem
-    ${resp}=    GET On Session    httpbin    /basic-auth/user/passwd
+    Create Session    authsession    ${HTTP_LOCAL_SERVER}    auth=${auth}
+    ${resp}=    GET On Session    authsession    /basic-auth/user/passwd
     Should Be Equal As Strings    ${resp.status_code}    200
     Should Be Equal As Strings    ${resp.json()['authenticated']}    True
 
 Get With Custom Auth
     [Tags]    get
     ${auth}=    Get Custom Auth    user    passwd
-    Create Custom Session    httpbin    https://httpbin.org    auth=${auth}    verify=${CURDIR}${/}cacert.pem
-    ${resp}=    GET On Session    httpbin    /basic-auth/user/passwd
+    Create Custom Session    authsession    ${HTTP_LOCAL_SERVER}    auth=${auth}
+    ${resp}=    GET On Session    authsession    /basic-auth/user/passwd
     Should Be Equal As Strings    ${resp.status_code}    200
     Should Be Equal As Strings    ${resp.json()['authenticated']}    True
 
 Get With Digest Auth
     [Tags]    get    get-cert
     ${auth}=    Create List    user    pass
     Create Digest Session
-    ...    httpbin
-    ...    https://httpbin.org
+    ...    authsession
+    ...    ${HTTP_LOCAL_SERVER}
     ...    auth=${auth}
     ...    debug=3
-    ...    verify=${CURDIR}${/}cacert.pem
-    ${resp}=    GET On Session    httpbin    /digest-auth/auth/user/pass
+    ${resp}=    GET On Session    authsession    /digest-auth/auth/user/pass
     Should Be Equal As Strings    ${resp.status_code}    200
     Should Be Equal As Strings    ${resp.json()['authenticated']}    True

atests/test_ssl_certs.robot

@@ -1,23 +1,24 @@
 *** Settings ***
 Library     RequestsLibrary
+Resource    res_setup.robot
 
 
 *** Test Cases ***
 Get HTTPS & Verify Cert
     [Tags]    get    get-cert
-    Create Session    httpbin    https://httpbin.org    verify=True
-    ${resp}=    GET On Session    httpbin    /get
+    Create Session    sslsession    https://github.com    verify=True
+    ${resp}=    GET On Session    sslsession    /
     Should Be Equal As Strings    ${resp.status_code}    200
 
 Get HTTPS & Verify Cert with a CA bundle
     [Tags]    get    get-cert
-    Create Session    httpbin    https://httpbin.org    verify=${CURDIR}${/}cacert.pem
-    ${resp}=    GET On Session    httpbin    /get
+    Create Session    sslsession    https://github.com    verify=${CURDIR}${/}cacert.pem
+    ${resp}=    GET On Session    sslsession    /
     Should Be Equal As Strings    ${resp.status_code}    200
 
 Get HTTPS with Client Side Certificates
     [Tags]    get    get-cert
     @{client_certs}=    Create List    ${CURDIR}${/}clientcert.pem    ${CURDIR}${/}clientkey.pem
-    Create Client Cert Session    crtsession    https://server.cryptomix.com/secure    client_certs=@{client_certs}
-    ${resp}=    GET On Session    crtsession    /
+    Create Client Cert Session    sslsession    https://github.com    client_certs=@{client_certs}
+    ${resp}=    GET On Session    sslsession    /
     Should Be Equal As Strings    ${resp.status_code}    200

setup.py

@@ -21,7 +21,7 @@
 Topic :: Software Development :: Testing
 """[1:-1]
 
-TEST_REQUIRE = ['robotframework>=3.2.1', 'pytest', 'flask', 'six', 'coverage', 'flake8']
+TEST_REQUIRE = ['robotframework>=3.2.1', 'pytest', 'flask', 'six', 'coverage', 'flake8', 'Flask-HTTPAuth==4.8.0']
 
 VERSION = None
 version_file = join(dirname(abspath(__file__)), 'src', 'RequestsLibrary', 'version.py')