mirror of
https://github.com/NomaDamas/k-skill.git
synced 2026-06-24 02:04:11 +00:00
68e6829052* Add a guided Hola Poke Yeoksam skill without widening repo scope Issue #120 only needs a repository skill payload, discoverability docs, and regression coverage. This change adds the new skill, wires it into existing docs surfaces, and locks the remote-MCP-only contract in tests so future edits keep the phone-only event flow and verbatim message relay behavior. Constraint: The upstream Hola Poke flow lives on a remote MCP server, so this repo should not add proxy/runtime code Constraint: Tests must be written before refining the new docs/skill wording Rejected: Add local package or proxy support for Hola Poke | would over-scope a docs-only skill addition Confidence: high Scope-risk: narrow Reversibility: clean Directive: Keep this skill limited to 올라포케 역삼점 and treat the MCP response message as the event source of truth Tested: node --test scripts/skill-docs.test.js --test-name-pattern='hola-poke-yeoksam' Tested: npm run ci Tested: Live MCP initialize/tools/list/get_menu/get_shop_info/enter_event(phone_format) smoke checks against https://hola-poke-yeoksam-skill.onrender.com/mcp Not-tested: Successful live event entry with a real phone number * Help users find nearby public restrooms from Korean location queries This adds a new public-restroom-nearby skill and reusable package that resolves a user-provided location, narrows the official 공중화장실정보 dataset by region when possible, and ranks nearby restroom results with opening-time hints and map links. Constraint: Must use free official/open surfaces without introducing new dependencies Constraint: Must follow TDD and keep release/docs metadata aligned in the same change Rejected: Add a proxy route first | direct official CSV access already works and keeps scope narrower Rejected: Use nationwide-only ranking without regional narrowing | too much noisy data for dense urban anchors Confidence: high Scope-risk: moderate Reversibility: clean Directive: If Kakao place-panel or localdata CSV schema changes, update parser fixtures before broad logic changes Tested: npm run ci; live smoke via searchNearbyPublicRestroomsByLocationQuery('광화문', { limit: 3 }); architect review APPROVED Not-tested: Non-Seoul live smoke across every regional orgCode * Pin the Hola Poke MCP contract in repo-owned regression fixtures The earlier issue #120 regression only matched prose, so this follow-up records the verified remote MCP tool/result snapshot in a checked-in fixture and makes both docs surfaces byte-align to it. That keeps the discoverability docs honest while turning the review claim into a real contract lock for tools/list, get_menu, get_shop_info, and the invalid-phone event flow. Constraint: The upstream remote MCP server can change independently of this repo Rejected: Keep prose-only regex checks | would not catch contract drift Confidence: high Scope-risk: narrow Reversibility: clean Directive: Refresh the fixture, both JSON fences, and the live-smoke evidence together whenever the upstream contract changes Tested: node --test scripts/skill-docs.test.js --test-name-pattern='hola-poke-yeoksam'; npm run ci; live MCP smoke check against https://hola-poke-yeoksam-skill.onrender.com/mcp (initialize, tools/list, get_menu, get_shop_info, invalid enter_event) Not-tested: Successful enter_event with a real phone number (intentionally avoided to prevent live event participation) * Keep nearby restroom lookups resilient to flaky Kakao place panels The review caught two regressions in the new public-restroom-nearby package: a single broken Kakao panel aborted anchor resolution, and coordinate search dropped maxDistanceMeters before normalization. This change adds targeted regression coverage first, keeps per-candidate HTTP failures recoverable, and hardens request errors with explicit status/url metadata so fallback logic no longer depends on parsing error strings. Constraint: Must preserve the published package surface and keep the fix scoped to PR #123 follow-up Rejected: Swallow all panel errors | would hide non-HTTP failures like network faults Rejected: Parse request error messages for status codes | brittle coupling to string formatting Confidence: high Scope-risk: narrow Reversibility: clean Directive: Keep recoverable Kakao panel handling aligned with request() error annotations if request() changes again Tested: npm test --workspace public-restroom-nearby Tested: npm run ci Tested: live smoke searchNearbyPublicRestroomsByLocationQuery('광화문', { limit: 3 }) Tested: LSP diagnostics on packages/public-restroom-nearby/src/index.js and test/index.test.js Not-tested: Live Kakao fallback against a real upstream 5xx place-panel response * Keep the Hola Poke contract claims aligned with verified coverage The reviewed fixture-based regression already locks the documented remote snapshot, but the docs still implied the enter_event success path had live proof. Narrow the docs and the regression so they explicitly say the success fields are pinned by the recorded snapshot while the live smoke only verifies the invalid-phone retry path. Constraint: Live success-path verification would trigger a real event entry and is intentionally avoided Rejected: Leave the broader wording in place | review feedback showed it overstated the live evidence Confidence: high Scope-risk: narrow Reversibility: clean Directive: If a safe non-mutating success-path probe becomes available, update the docs and fixture wording together Tested: node --test scripts/skill-docs.test.js --test-name-pattern='hola-poke-yeoksam'; npm run ci; live MCP smoke against https://hola-poke-yeoksam-skill.onrender.com/mcp (initialize, tools/list, get_menu subset, get_shop_info subset, invalid enter_event) Not-tested: Real enter_event success-path invocation * Document the restroom distance-cap contract with regression coverage The approved issue-117 code fix already restored maxDistanceMeters behavior, but the published docs did not lock or explain that contract. This follow-up adds a failing-first doc regression, then updates the feature guide and package README with the verified 100m example so users and future reviewers see the same behavior the package now ships. Constraint: Must stay scoped to the existing PR #123 follow-up without reopening the implementation surface Rejected: Leave the behavior implicit in code/tests only | published docs would lag the verified contract Confidence: high Scope-risk: narrow Reversibility: clean Directive: Keep the public-restroom-nearby docs and skill-docs regression aligned with live maxDistanceMeters smoke evidence if the sample query changes Tested: node --test scripts/skill-docs.test.js (red then green) Tested: npm test --workspace public-restroom-nearby Tested: npm run ci Tested: live smoke searchNearbyPublicRestroomsByLocationQuery('광화문', { limit: 3 }) Tested: live smoke searchNearbyPublicRestroomsByLocationQuery('광화문', { limit: 3, maxDistanceMeters: 100 }) Tested: architect review APPROVED Not-tested: Alternative landmark queries with a non-zero maxDistanceMeters hit set * Expose KRX partial failures instead of misreporting stock lookups The Korean stock proxy used to silently drop failed market snapshots during search and could turn an empty holiday trade snapshot into a 502 by falling back into base-info lookup. This change surfaces degraded market metadata on partial search success, short-circuits empty trade snapshots to not_found, and refreshes the user docs to use a real trading day in examples. Constraint: KOSPI base-info approval is granted separately from other KRX routes Constraint: Healthy markets should still return usable search results during a partial outage Rejected: Return 502 on every partial search failure | hides still-usable markets and breaks current clients unnecessarily Confidence: high Scope-risk: narrow Reversibility: clean Directive: Keep degraded search metadata when any market snapshot fetch fails so partial outages stay visible Tested: npm test --workspace k-skill-proxy Tested: node --test scripts/skill-docs.test.js Tested: npm run ci Not-tested: Live KOSPI base-info behavior after the new KRX permission is approved * Adopt kordoc for the hwp skill workflow Issue #119 replaces the previous HWP guidance with kordoc so the skill matches the newer agent-native document flow. The docs and regression tests now center the HWP skill on kordoc parsing, JSON extraction, diffing, form filling, and Markdown-to-HWPX round-tripping, while the install/source references stay in sync. Constraint: The repository treats skill behavior as documentation contracts backed by regression tests Constraint: The requested branch/PR flow must target dev with TDD and verified execution evidence Rejected: Keep @ohah/hwpjs or hwp-mcp as fallback guidance | issue #119 explicitly approves replacing the prior stack with kordoc Confidence: high Scope-risk: narrow Reversibility: clean Directive: Keep future hwp skill/docs/tests aligned to a single kordoc-first contract unless a new issue explicitly reintroduces multi-backend routing Tested: node --test scripts/skill-docs.test.js; npm run ci; temp-dir kordoc roundtrip via markdownToHwpx -> sample.hwpx -> kordoc CLI markdown output; architect review APPROVED Not-tested: Live parsing of user-provided proprietary HWP/HWPX samples outside the generated roundtrip fixture * Prevent degraded stock search outages from sticking in cache Reviewer feedback showed that partial KRX market failures could be cached as full search answers, masking recovery on the next identical request. This change adds a regression that fails first, skips route-level caching for degraded search payloads, and keeps the trade-info empty-snapshot contract documented alongside the partial-failure response semantics. Constraint: Existing PR #124 already targets dev and must remain the follow-up lane for issue #99 Constraint: Proxy behavior must stay read-only and dependency-free Rejected: Cache degraded search payloads for a short TTL | still risks transient false negatives during the TTL window Rejected: Broaden trade-info fallback behavior | empty snapshots should stay explicit not_found results Confidence: high Scope-risk: narrow Reversibility: clean Directive: Keep degraded search responses out of the long-lived route cache unless a future design adds explicit revalidation semantics Tested: npm test --workspace k-skill-proxy; node --test scripts/skill-docs.test.js; npm run ci; explicit buildServer degraded-search recovery repro Not-tested: Live KRX production endpoints from this branch * Align HWP docs with the published kordoc surface The issue #119 follow-up needs the repository contract to match what the currently published kordoc package actually supports. This narrows the HWP skill/docs/tests to the verified install requirement and supported CLI/Node API surfaces, and removes unsupported fill/mcp claims. Constraint: Published kordoc CLI fails at startup without pdfjs-dist Constraint: Docs/tests must reflect the current npm package behavior, not intended future features Rejected: Keep fill/mcp examples with caveats | still documents unsupported entrypoints Confidence: high Scope-risk: narrow Directive: Reintroduce fill/mcp docs only after verifying the published package exposes them in both CLI and Node API Tested: node --test scripts/skill-docs.test.js; npm run ci; temp-dir clean install smoke; temp-dir kordoc+pdfjs-dist watch/parse/extractFormFields/compare/markdownToHwpx/roundtrip smoke; Claude architect review Not-tested: Real-world HWPX template that produces non-empty extractFormFields output * Keep HWP docs runnable against the published kordoc package The follow-up closes the last runnable-contract gaps from review by documenting the working one-shot npx form and separating Node API examples into a local project install path. The regression suite now locks both install notes so future edits do not drift back to broken command shapes. Constraint: Published kordoc CLI still requires pdfjs-dist at startup Constraint: Global NODE_PATH does not make ESM imports from kordoc resolvable in the documented examples Rejected: Keep bare `npx kordoc` examples | fails in a clean environment Rejected: Keep global-install Node API guidance | ESM import remains unresolved Confidence: high Scope-risk: narrow Reversibility: clean Directive: Keep HWP docs aligned to verified published kordoc surfaces until the package contract changes upstream Tested: node --test scripts/skill-docs.test.js Tested: npm run ci Tested: temp-dir local npm install kordoc pdfjs-dist plus markdownToHwpx -> sample.hwpx -> one-shot kordoc roundtrip smoke Not-tested: upstream unpublished kordoc features beyond the verified CLI and Node API surfaces * Add Korean scholarship search skill and reporting workflow (#116) * Add nationwide scholarship search skill workflow * Rename scholarship skill to 장학금 주세요 쮜에발 * Fix scholarship skill validation in CI * Trigger GitHub PR diff refresh after dev rebase on main * Fix scholarship helper status handling and test coverage * Use KST as scholarship helper default date basis * Rename scholarship skill display name --------- Co-authored-by: Jeffrey (Dongkyu) Kim <vkehfdl1@gmail.com> * Feature/#121 (#127) * Recover KakaoTalk mac skill auth when upstream user_id detection fails Issue #121 reproduces on a real MacBook because `kakaocli auth` can fail even when the encrypted hex-named DB exists. This change adds a thin repo-owned helper that recovers the active user_id from plist revision hashes, caches the validated DB/key tuple, and reuses it for read-only `kakaocli` commands. The skill and feature docs now steer users to the helper when upstream auto-detection stops at candidate key mismatch, and regression tests lock the recovery flow before the implementation. Constraint: Must stay a thin adapter around upstream kakaocli rather than forking the CLI Constraint: Must verify on a real local macOS KakaoTalk install where issue #121 reproduces Rejected: Full kakaocli reimplementation inside k-skill | too broad for the user_id/key-derivation failure scope Rejected: Docs-only workaround | does not actually fix the broken auth path for users Confidence: high Scope-risk: moderate Reversibility: clean Directive: Keep this helper limited to auth/key recovery and read-only passthrough unless upstream gaps widen materially Tested: python3 -m unittest scripts.test_kakaotalk_mac Tested: node --test scripts/skill-docs.test.js Tested: npm run ci Tested: python3 scripts/kakaotalk_mac.py auth --refresh --max-user-id 800000000 --workers 8 --chunk-size 2000000 Tested: python3 scripts/kakaotalk_mac.py chats --limit 1 --json Not-tested: Other kakaocli subcommands beyond auth/chats/messages/search/query/schema * Protect the KakaoTalk helper's safe recovery path Address the PR follow-up by treating malformed auth cache files as cache misses, removing write-capable passthrough from the wrapper surface, and redacting human-readable auth output so the cached SQLCipher key is not echoed back into terminal history. The docs and regression suite now describe and enforce the read-only contract that the helper is meant to preserve. Constraint: Helper must remain a read-only recovery wrapper around local kakaocli access Rejected: Keep query support with SQL validation | still leaves a risky write-capable escape hatch Confidence: high Scope-risk: narrow Reversibility: clean Directive: Do not re-expose arbitrary SQL passthrough or print the SQLCipher key in default text output Tested: python3 -m unittest scripts.test_kakaotalk_mac; node --test scripts/skill-docs.test.js; npm run ci; python3 scripts/kakaotalk_mac.py auth --refresh --max-user-id 800000000 --workers 8 --chunk-size 2000000; python3 scripts/kakaotalk_mac.py chats --limit 1 --json; python3 scripts/kakaotalk_mac.py auth --cache-path <bad-json>; python3 scripts/kakaotalk_mac.py query --help Not-tested: External automation consumers that depend on shell/json auth output beyond the documented helper flows * Lock the helper CLI surface against accidental regressions The approved issue #121 fixes already hardened the KakaoTalk Mac helper, but the test suite still only exercised the passthrough validator directly. Add an explicit parser-level regression so the public CLI contract stays read-only and `query` cannot quietly reappear in future edits. Constraint: Follow-up is on the existing feature/#121 PR branch and must stay minimal Rejected: Re-open helper implementation changes | current code already satisfies the approved review findings Confidence: high Scope-risk: narrow Reversibility: clean Directive: Keep parser exposure tests aligned with READ_ONLY_COMMANDS whenever helper subcommands change Tested: python3 -m unittest scripts.test_kakaotalk_mac; node --test scripts/skill-docs.test.js; npm run ci; python3 scripts/kakaotalk_mac.py auth --refresh --max-user-id 800000000 --workers 8 --chunk-size 2000000; python3 scripts/kakaotalk_mac.py chats --limit 1 --json; python3 scripts/kakaotalk_mac.py auth --cache-path <bad-json> Not-tested: No new production code paths changed in this follow-up * Honor explicit Kakao auth recovery overrides The helper now treats manual auth overrides as a cache-bypassing recovery request and rejects invalid brute-force tuning flags at the CLI boundary so users get deterministic behavior instead of stale cached tuples or Python tracebacks. Regression coverage locks both paths before the PR follow-up lands. Constraint: The helper must remain a thin read-only wrapper around kakaocli auth recovery Rejected: Require --refresh whenever --user-id/--uuid is passed | worse UX than honoring overrides directly Confidence: high Scope-risk: narrow Reversibility: clean Directive: Keep explicit auth overrides ahead of cache reuse unless the CLI contract is redesigned and documented Tested: python3 -m unittest scripts.test_kakaotalk_mac; node --test scripts/skill-docs.test.js; npm run ci; python3 scripts/kakaotalk_mac.py auth --refresh --max-user-id 800000000 --workers 8 --chunk-size 2000000; python3 scripts/kakaotalk_mac.py chats --limit 1 --json; python3 scripts/kakaotalk_mac.py auth --cache-path <bad-json>; python3 scripts/kakaotalk_mac.py auth --refresh --max-user-id -1; python3 scripts/kakaotalk_mac.py auth --refresh --workers 2 --chunk-size 0 --max-user-id 10; python3 scripts/kakaotalk_mac.py auth --cache-path <temp-cache> --user-id 999; python3 scripts/kakaotalk_mac.py auth --cache-path <temp-cache> --uuid <live-uuid> Not-tested: Manual override success with a truly alternate valid user_id/uuid pair on a multi-account local install * Feature/#129 (#131) * Add official KBL results support so basketball queries use live league data Issue #129 needs a read-only skill and reusable package for KBL schedules, results, and standings. The implementation follows the existing sports package pattern and uses the league's live JSON APIs after verifying they respond successfully in real requests. Constraint: Must use official KBL JSON surfaces before considering scraping Constraint: Packaging changes must pass npm run ci and include docs plus Changesets updates Rejected: Browser scraping first | official api.kbl.or.kr endpoints are live and simpler to maintain Rejected: Reuse KBO/K League package shapes verbatim | KBL payload and team/status fields differ materially Confidence: high Scope-risk: moderate Reversibility: clean Directive: Keep seasonGrade=1 as the default KBL path unless future docs/tests explicitly widen to D-League flows Tested: npm run ci; npm run lint --workspace kbl-results; npm test --workspace kbl-results; live getKBLSummary("2026-04-01", { team: "KCC", includeStandings: true }) Not-tested: Historical standings snapshots for past seasons via alternative KBL endpoints * Prevent optional standings lookups from over-fetching the KBL API The new kbl-results summary helper exposes includeStandings=false, so the regression suite now proves that path stays schedule-only and never calls the standings endpoint when the caller opts out. Constraint: The KBL package should preserve the caller's no-standings contract Rejected: Rely on manual inspection of the helper options | a targeted test is cheaper and safer Confidence: high Scope-risk: narrow Reversibility: clean Directive: Keep includeStandings=false side-effect free unless the public API contract changes explicitly Tested: npm test --workspace kbl-results; npm run lint --workspace kbl-results Not-tested: Full-repo CI before stacking this commit onto the rebased branch --------- Co-authored-by: minsing-jin <ironman0722@naver.com>
273 lines
11 KiB
Python
273 lines
11 KiB
Python
from __future__ import annotations
|
|
|
|
import hashlib
|
|
import json
|
|
import io
|
|
import tempfile
|
|
import unittest
|
|
from pathlib import Path
|
|
from unittest import mock
|
|
|
|
import scripts.kakaotalk_mac as kakaotalk_mac
|
|
|
|
|
|
def sha512_hex(value: int) -> str:
|
|
return hashlib.sha512(str(value).encode("utf-8")).hexdigest()
|
|
|
|
|
|
def make_resolved_auth(
|
|
*,
|
|
user_id: int = 123,
|
|
uuid: str = "uuid",
|
|
database_path: Path | None = None,
|
|
database_name: str = "db-name",
|
|
key: str = "super-secret",
|
|
source: str = "cache",
|
|
) -> kakaotalk_mac.ResolvedAuth:
|
|
return kakaotalk_mac.ResolvedAuth(
|
|
user_id=user_id,
|
|
uuid=uuid,
|
|
database_path=database_path or Path("/tmp/kakaotalk.db"),
|
|
database_name=database_name,
|
|
key=key,
|
|
source=source,
|
|
)
|
|
|
|
|
|
class KakaoTalkMacHelperTests(unittest.TestCase):
|
|
def test_parse_plist_xml_extracts_candidates_and_active_hash(self) -> None:
|
|
active_hash = sha512_hex(123456)
|
|
xml_text = f"""<?xml version="1.0" encoding="UTF-8"?>
|
|
<plist version="1.0">
|
|
<dict>
|
|
<key>AlertKakaoIDsList</key>
|
|
<array>
|
|
<integer>111</integer>
|
|
<integer>222</integer>
|
|
</array>
|
|
<key>userId</key>
|
|
<integer>333</integer>
|
|
<key>DESIGNATEDFRIENDSREVISION:{active_hash}</key>
|
|
<integer>5</integer>
|
|
</dict>
|
|
</plist>
|
|
"""
|
|
|
|
parsed = kakaotalk_mac.parse_plist_xml(xml_text)
|
|
|
|
self.assertEqual(parsed["AlertKakaoIDsList"], [111, 222])
|
|
self.assertEqual(kakaotalk_mac.collect_candidate_user_ids(parsed), [333, 111, 222])
|
|
self.assertEqual(kakaotalk_mac.find_active_account_hash(parsed), active_hash)
|
|
|
|
def test_discover_database_files_filters_hex_names(self) -> None:
|
|
with tempfile.TemporaryDirectory() as tempdir:
|
|
root = Path(tempdir)
|
|
expected = [
|
|
root / ("a" * 78),
|
|
root / ("b" * 78 + ".db"),
|
|
]
|
|
for path in expected:
|
|
path.write_text("", encoding="utf-8")
|
|
(root / ("c" * 40)).write_text("", encoding="utf-8")
|
|
(root / ("d" * 78 + "-wal")).write_text("", encoding="utf-8")
|
|
|
|
discovered = kakaotalk_mac.discover_database_files(root)
|
|
|
|
self.assertEqual(discovered, expected)
|
|
|
|
def test_recover_user_id_from_sha512_supports_single_worker_search(self) -> None:
|
|
target_user_id = 123456
|
|
recovered = kakaotalk_mac.recover_user_id_from_sha512(
|
|
sha512_hex(target_user_id),
|
|
max_user_id=200000,
|
|
workers=1,
|
|
chunk_size=5000,
|
|
)
|
|
|
|
self.assertEqual(recovered, target_user_id)
|
|
|
|
def test_resolve_auth_retries_with_hash_recovered_user_id_and_caches_result(self) -> None:
|
|
target_user_id = 654321
|
|
active_hash = sha512_hex(target_user_id)
|
|
|
|
with tempfile.TemporaryDirectory() as tempdir:
|
|
cache_path = Path(tempdir) / "auth-cache.json"
|
|
database_path = Path(tempdir) / "kakaotalk.db"
|
|
database_path.write_text("", encoding="utf-8")
|
|
verification_calls: list[int] = []
|
|
|
|
state = kakaotalk_mac.DetectionState(
|
|
uuid="42C34717-27C3-538C-81E4-8B568287C7A0",
|
|
candidate_user_ids=[111, 222],
|
|
active_account_hash=active_hash,
|
|
database_files=[database_path],
|
|
)
|
|
|
|
def verify(candidate: kakaotalk_mac.ResolvedAuth) -> bool:
|
|
verification_calls.append(candidate.user_id)
|
|
return candidate.user_id == target_user_id
|
|
|
|
resolved = kakaotalk_mac.resolve_auth_state(
|
|
state,
|
|
verify_access=verify,
|
|
cache_path=cache_path,
|
|
max_user_id=700000,
|
|
workers=1,
|
|
chunk_size=10000,
|
|
)
|
|
|
|
cache_payload = json.loads(cache_path.read_text(encoding="utf-8"))
|
|
|
|
self.assertEqual(verification_calls, [111, 222, target_user_id])
|
|
self.assertEqual(resolved.user_id, target_user_id)
|
|
self.assertEqual(resolved.database_path, database_path)
|
|
self.assertEqual(cache_payload["user_id"], target_user_id)
|
|
self.assertEqual(cache_payload["database_path"], str(database_path))
|
|
|
|
def test_load_cached_auth_treats_corrupt_json_as_cache_miss(self) -> None:
|
|
with tempfile.TemporaryDirectory() as tempdir:
|
|
cache_path = Path(tempdir) / "auth-cache.json"
|
|
cache_path.write_text("{bad json\n", encoding="utf-8")
|
|
|
|
self.assertIsNone(kakaotalk_mac.load_cached_auth(cache_path))
|
|
|
|
def test_resolve_auth_reuses_detection_when_cache_is_corrupt(self) -> None:
|
|
with tempfile.TemporaryDirectory() as tempdir:
|
|
cache_path = Path(tempdir) / "auth-cache.json"
|
|
cache_path.write_text("{bad json\n", encoding="utf-8")
|
|
database_path = Path(tempdir) / "kakaotalk.db"
|
|
database_path.write_text("", encoding="utf-8")
|
|
resolved = make_resolved_auth(database_path=database_path, source="hash-recovery")
|
|
|
|
with (
|
|
mock.patch.object(kakaotalk_mac, "collect_detection_state", return_value=mock.sentinel.state) as collect_state,
|
|
mock.patch.object(kakaotalk_mac, "resolve_auth_state", return_value=resolved) as resolve_state,
|
|
):
|
|
cached = kakaotalk_mac.resolve_auth(
|
|
refresh=False,
|
|
cache_path=cache_path,
|
|
user_id_override=None,
|
|
uuid_override=None,
|
|
max_user_id=1000,
|
|
workers=1,
|
|
chunk_size=100,
|
|
)
|
|
|
|
self.assertEqual(cached, resolved)
|
|
collect_state.assert_called_once_with(None)
|
|
resolve_state.assert_called_once()
|
|
|
|
def test_resolve_auth_bypasses_cache_when_user_id_override_is_supplied(self) -> None:
|
|
with tempfile.TemporaryDirectory() as tempdir:
|
|
cache_path = Path(tempdir) / "auth-cache.json"
|
|
database_path = Path(tempdir) / "kakaotalk.db"
|
|
database_path.write_text("", encoding="utf-8")
|
|
persistable = make_resolved_auth(database_path=database_path, source="cache")
|
|
kakaotalk_mac.persist_auth_cache(persistable, cache_path)
|
|
override_result = make_resolved_auth(user_id=999, database_path=database_path, source="candidate")
|
|
|
|
with (
|
|
mock.patch.object(kakaotalk_mac, "collect_detection_state", return_value=mock.sentinel.state) as collect_state,
|
|
mock.patch.object(kakaotalk_mac, "resolve_auth_state", return_value=override_result) as resolve_state,
|
|
):
|
|
resolved = kakaotalk_mac.resolve_auth(
|
|
refresh=False,
|
|
cache_path=cache_path,
|
|
user_id_override=999,
|
|
uuid_override=None,
|
|
max_user_id=1000,
|
|
workers=1,
|
|
chunk_size=100,
|
|
)
|
|
|
|
self.assertEqual(resolved, override_result)
|
|
collect_state.assert_called_once_with(None)
|
|
resolve_state.assert_called_once_with(
|
|
mock.sentinel.state,
|
|
verify_access=kakaotalk_mac.verify_database_access,
|
|
cache_path=cache_path,
|
|
user_id_override=999,
|
|
max_user_id=1000,
|
|
workers=1,
|
|
chunk_size=100,
|
|
)
|
|
|
|
def test_resolve_auth_bypasses_cache_when_uuid_override_is_supplied(self) -> None:
|
|
with tempfile.TemporaryDirectory() as tempdir:
|
|
cache_path = Path(tempdir) / "auth-cache.json"
|
|
database_path = Path(tempdir) / "kakaotalk.db"
|
|
database_path.write_text("", encoding="utf-8")
|
|
persistable = make_resolved_auth(database_path=database_path, source="cache")
|
|
kakaotalk_mac.persist_auth_cache(persistable, cache_path)
|
|
override_result = make_resolved_auth(uuid="override-uuid", database_path=database_path, source="candidate")
|
|
|
|
with (
|
|
mock.patch.object(kakaotalk_mac, "collect_detection_state", return_value=mock.sentinel.state) as collect_state,
|
|
mock.patch.object(kakaotalk_mac, "resolve_auth_state", return_value=override_result) as resolve_state,
|
|
):
|
|
resolved = kakaotalk_mac.resolve_auth(
|
|
refresh=False,
|
|
cache_path=cache_path,
|
|
user_id_override=None,
|
|
uuid_override="override-uuid",
|
|
max_user_id=1000,
|
|
workers=1,
|
|
chunk_size=100,
|
|
)
|
|
|
|
self.assertEqual(resolved, override_result)
|
|
collect_state.assert_called_once_with("override-uuid")
|
|
resolve_state.assert_called_once_with(
|
|
mock.sentinel.state,
|
|
verify_access=kakaotalk_mac.verify_database_access,
|
|
cache_path=cache_path,
|
|
user_id_override=None,
|
|
max_user_id=1000,
|
|
workers=1,
|
|
chunk_size=100,
|
|
)
|
|
|
|
def test_render_auth_text_redacts_key_material(self) -> None:
|
|
resolved = make_resolved_auth(key="super-secret-key", source="hash-recovery")
|
|
|
|
rendered = kakaotalk_mac.render_auth(resolved, output_format="text", cache_path=Path("/tmp/cache.json"))
|
|
|
|
self.assertNotIn("super-secret-key", rendered)
|
|
self.assertNotIn("--key", rendered)
|
|
self.assertIn("python3 scripts/kakaotalk_mac.py chats --limit 10 --json", rendered)
|
|
|
|
def test_build_passthrough_command_rejects_non_read_only_command(self) -> None:
|
|
auth = make_resolved_auth()
|
|
|
|
with self.assertRaises(kakaotalk_mac.AuthResolutionError):
|
|
kakaotalk_mac.build_passthrough_command("query", auth, ["DELETE FROM chat_logs"])
|
|
|
|
def test_build_parser_only_exposes_read_only_commands(self) -> None:
|
|
parser = kakaotalk_mac.build_parser()
|
|
subcommands = parser._subparsers._group_actions[0].choices
|
|
|
|
self.assertEqual(sorted(subcommands), ["auth", "chats", "messages", "schema", "search"])
|
|
self.assertNotIn("query", subcommands)
|
|
|
|
def test_build_parser_rejects_negative_max_user_id(self) -> None:
|
|
parser = kakaotalk_mac.build_parser()
|
|
stderr = io.StringIO()
|
|
|
|
with self.assertRaises(SystemExit) as exit_context, mock.patch("sys.stderr", stderr):
|
|
parser.parse_args(["auth", "--max-user-id", "-1"])
|
|
|
|
self.assertEqual(exit_context.exception.code, 2)
|
|
self.assertIn("must be non-negative", stderr.getvalue())
|
|
|
|
def test_build_parser_rejects_non_positive_chunk_size(self) -> None:
|
|
parser = kakaotalk_mac.build_parser()
|
|
stderr = io.StringIO()
|
|
|
|
with self.assertRaises(SystemExit) as exit_context, mock.patch("sys.stderr", stderr):
|
|
parser.parse_args(["auth", "--chunk-size", "0"])
|
|
|
|
self.assertEqual(exit_context.exception.code, 2)
|
|
self.assertIn("must be positive", stderr.getvalue())
|
|
|
|
if __name__ == "__main__":
|
|
unittest.main()
|