fix message error to lowercase

Author: IndominusByte

fastapi_jwt_auth/auth_jwt.py

@@ -92,7 +92,7 @@ def _get_secret_key(self, algorithm: str, process: str) -> str:
         if algorithm in symmetric_algorithms:
             if not self._secret_key:
                 raise RuntimeError(
-                    "AUTHJWT_SECRET_KEY must be set when using symmetric algorithm {}".format(algorithm)
+                    "authjwt_secret_key must be set when using symmetric algorithm {}".format(algorithm)
                 )
 
             return self._secret_key
@@ -105,15 +105,15 @@ def _get_secret_key(self, algorithm: str, process: str) -> str:
         if process == "encode":
             if not self._private_key:
                 raise RuntimeError(
-                    "AUTHJWT_PRIVATE_KEY must be set when using asymmetric algorithm {}".format(algorithm)
+                    "authjwt_private_key must be set when using asymmetric algorithm {}".format(algorithm)
                 )
 
             return self._private_key
 
         if process == "decode":
             if not self._public_key:
                 raise RuntimeError(
-                    "AUTHJWT_PUBLIC_KEY must be set when using asymmetric algorithm {}".format(algorithm)
+                    "authjwt_public_key must be set when using asymmetric algorithm {}".format(algorithm)
                 )
 
             return self._public_key
@@ -209,7 +209,7 @@ def _check_token_is_revoked(self, raw_token: Dict[str,Union[str,int,bool]]) -> N
         if not self._has_token_in_denylist_callback():
             raise RuntimeError("A token_in_denylist_callback must be provided via "
                 "the '@AuthJWT.token_in_denylist_loader' if "
-                "AUTHJWT_DENYLIST_ENABLED is 'True'")
+                "authjwt_denylist_enabled is 'True'")
 
         if self._token_in_denylist_callback.__func__(raw_token):
             raise RevokedTokenError(status_code=401,message="Token has been revoked")
@@ -317,7 +317,7 @@ def set_access_cookies(self,encoded_access_token: str, max_age: Optional[int] =
         """
         if not self.jwt_in_cookies:
             raise RuntimeWarning(
-                "set_access_cookies() called without 'AUTHJWT_TOKEN_LOCATION' configured to use cookies"
+                "set_access_cookies() called without 'authjwt_token_location' configured to use cookies"
             )
 
         if max_age and not isinstance(max_age,int):
@@ -358,7 +358,7 @@ def set_refresh_cookies(self, encoded_refresh_token: str, max_age: Optional[int]
         """
         if not self.jwt_in_cookies:
             raise RuntimeWarning(
-                "set_refresh_cookies() called without 'AUTHJWT_TOKEN_LOCATION' configured to use cookies"
+                "set_refresh_cookies() called without 'authjwt_token_location' configured to use cookies"
             )
 
         if max_age and not isinstance(max_age,int):
@@ -402,7 +402,7 @@ def unset_access_cookies(self) -> None:
         """
         if not self.jwt_in_cookies:
             raise RuntimeWarning(
-                "unset_access_cookies() called without 'AUTHJWT_TOKEN_LOCATION' configured to use cookies"
+                "unset_access_cookies() called without 'authjwt_token_location' configured to use cookies"
             )
 
         self._response.delete_cookie(
@@ -424,7 +424,7 @@ def unset_refresh_cookies(self) -> None:
         """
         if not self.jwt_in_cookies:
             raise RuntimeWarning(
-                "unset_refresh_cookies() called without 'AUTHJWT_TOKEN_LOCATION' configured to use cookies"
+                "unset_refresh_cookies() called without 'authjwt_token_location' configured to use cookies"
             )
 
         self._response.delete_cookie(

fastapi_jwt_auth/config.py

@@ -76,6 +76,8 @@ def validate_cookie_samesite(cls, v):
 
     @validator('authjwt_csrf_methods', each_item=True)
     def validate_csrf_methods(cls, v):
+        if v.upper() not in {"GET", "HEAD", "POST", "PUT", "DELETE", "PATCH"}:
+            raise ValueError("The 'authjwt_csrf_methods' must be between http request methods")
         return v.upper()
 
     class Config:

tests/test_config.py

@@ -80,14 +80,14 @@ def get_expired_false():
 def test_secret_key_not_exist(client,Authorize):
     AuthJWT._secret_key = None
 
-    with pytest.raises(RuntimeError,match=r"AUTHJWT_SECRET_KEY"):
+    with pytest.raises(RuntimeError,match=r"authjwt_secret_key"):
         Authorize.create_access_token(subject='test')
 
     Authorize._secret_key = "secret"
     token = Authorize.create_access_token(subject=1)
     Authorize._secret_key = None
 
-    with pytest.raises(RuntimeError,match=r"AUTHJWT_SECRET_KEY"):
+    with pytest.raises(RuntimeError,match=r"authjwt_secret_key"):
         client.get('/protected',headers={"Authorization":f"Bearer {token}"})
 
 def test_denylist_enabled_without_callback(client):
@@ -398,3 +398,8 @@ def get_invalid_refresh_csrf_header_name():
         @AuthJWT.load_config
         def get_invalid_csrf_methods():
             return [("authjwt_csrf_methods",[1,2,3])]
+
+    with pytest.raises(ValidationError,match=r"authjwt_csrf_methods"):
+        @AuthJWT.load_config
+        def get_invalid_csrf_methods_value():
+            return [("authjwt_csrf_methods",['posts'])]

tests/test_decode_token.py

@@ -241,7 +241,7 @@ class SettingsAsymmetricOne(BaseSettings):
     def get_settings_asymmetric_one():
         return SettingsAsymmetricOne()
 
-    with pytest.raises(RuntimeError,match=r"AUTHJWT_PRIVATE_KEY"):
+    with pytest.raises(RuntimeError,match=r"authjwt_private_key"):
         Authorize.create_access_token(subject=1)
 
     DIR = os.path.abspath(os.path.dirname(__file__))
@@ -259,7 +259,7 @@ def get_settings_asymmetric_two():
         return SettingsAsymmetricTwo()
 
     token = Authorize.create_access_token(subject=1)
-    with pytest.raises(RuntimeError,match=r"AUTHJWT_PUBLIC_KEY"):
+    with pytest.raises(RuntimeError,match=r"authjwt_public_key"):
         client.get('/protected',headers={'Authorization':f"Bearer {token}"})
 
     AuthJWT._private_key = None