func (s *agentAuthenticatorSuite) TestNotSupportedTag(c *gc.C) {
srv := newServer(c, s.State)
defer srv.Stop()
authenticator, err := apiserver.ServerAuthenticatorForTag(srv, names.NewServiceTag("not-support"))
c.Assert(err, gc.ErrorMatches, "unexpected login entity tag: invalid request")
c.Assert(authenticator, gc.IsNil)
}
func (s *agentAuthenticatorSuite) TestUnitGetsAgentAuthenticator(c *gc.C) {
srv := newServer(c, s.State)
defer srv.Stop()
authenticator, err := apiserver.ServerAuthenticatorForTag(srv, names.NewUnitTag("wordpress/0"))
c.Assert(err, jc.ErrorIsNil)
_, ok := authenticator.(*authentication.AgentAuthenticator)
c.Assert(ok, jc.IsTrue)
}
func (s *agentAuthenticatorSuite) TestAuthenticatorForTag(c *gc.C) {
fact := factory.NewFactory(s.State)
user := fact.MakeUser(c, &factory.UserParams{Password: "******"})
srv := newServer(c, s.State)
defer srv.Stop()
authenticator, err := apiserver.ServerAuthenticatorForTag(srv, user.Tag())
c.Assert(err, jc.ErrorIsNil)
c.Assert(authenticator, gc.NotNil)
userFinder := userFinder{user}
entity, err := authenticator.Authenticate(userFinder, user.Tag(), params.LoginRequest{
Credentials: "password",
Nonce: "nonce",
})
c.Assert(err, jc.ErrorIsNil)
c.Assert(entity, gc.DeepEquals, user)
}
