func TestspotifyGetBeginAuthURL(t *testing.T) {
common.SetSecurityKey("ABC123")
state := &common.State{Map: objx.MSI("after", "http://www.chikin14niwa.com/")}
g := New("clientID", "secret", "http://myapp.com/")
url, err := g.GetBeginAuthURL(state, nil)
if assert.NoError(t, err) {
assert.Contains(t, url, "client_id=clientID")
assert.Contains(t, url, "redirect_uri=http%3A%2F%2Fmyapp.com%2F")
assert.Contains(t, url, "scope="+spotifyDefaultScope)
assert.Contains(t, url, "access_type="+oauth2.OAuth2AccessTypeOnline)
assert.Contains(t, url, "approval_prompt="+oauth2.OAuth2ApprovalPromptAuto)
}
state = &common.State{Map: objx.MSI("after", "http://www.chikin14niwa.com/")}
g = New("clientID", "secret", "http://myapp.com/")
url, err = g.GetBeginAuthURL(state, objx.MSI(oauth2.OAuth2KeyScope, "avatar"))
if assert.NoError(t, err) {
assert.Contains(t, url, "client_id=clientID")
assert.Contains(t, url, "redirect_uri=http%3A%2F%2Fmyapp.com%2F")
assert.Contains(t, url, "scope=avatar+"+spotifyDefaultScope)
assert.Contains(t, url, "access_type="+oauth2.OAuth2AccessTypeOnline)
assert.Contains(t, url, "approval_prompt="+oauth2.OAuth2ApprovalPromptAuto)
}
}
func TestGetUser(t *testing.T) {
g := New("clientID", "secret", "http://myapp.com/")
creds := &common.Credentials{Map: objx.MSI()}
testTripperFactory := new(test.TestTripperFactory)
testTripper := new(test.TestTripper)
testTripperFactory.On("NewTripper", mock.Anything, g).Return(testTripper, nil)
testResponse := new(http.Response)
testResponse.Header = make(http.Header)
testResponse.Header.Set("Content-Type", "application/json")
testResponse.StatusCode = 200
testResponse.Body = ioutil.NopCloser(strings.NewReader(`{"full_name":"their-name","id":"uniqueid","username":"******","avatar_url":"http://myface.com/","online":true}`))
testTripper.On("RoundTrip", mock.Anything).Return(testResponse, nil)
g.tripperFactory = testTripperFactory
user, err := g.GetUser(creds)
if assert.NoError(t, err) && assert.NotNil(t, user) {
assert.Equal(t, user.Name(), "their-name")
assert.Equal(t, user.AuthCode(), "")
assert.Equal(t, user.Nickname(), "loginname")
assert.Equal(t, user.Email(), "") // doesn't come from soundcloud
assert.Equal(t, user.AvatarURL(), "http://myface.com/")
assert.Equal(t, user.Data()["online"], true)
}
}
func TestRoundTrip(t *testing.T) {
underlyingTripper := new(testifyhttp.TestRoundTripper)
testProvider := new(test.TestProvider)
creds := &common.Credentials{Map: objx.MSI()}
creds.Set(OAuth2KeyAccessToken, "This is a real access token :)")
tripper := new(OAuth2Tripper)
tripper.underlyingTransport = underlyingTripper
tripper.credentials = creds
tripper.provider = testProvider
request, _ := http.NewRequest("GET", "something", nil)
underlyingTripper.On("RoundTrip", mock.Anything).Return(new(http.Response), nil)
response, err := tripper.RoundTrip(request)
if assert.NoError(t, err) {
if assert.NotNil(t, response) {
actualRequest := underlyingTripper.Calls[0].Arguments[0].(*http.Request)
if assert.NotEqual(t, &actualRequest, &request, "Actual request should be different") {
headerK, headerV := AuthorizationHeader(creds)
assert.Equal(t, actualRequest.Header.Get(headerK), headerV)
}
}
}
mock.AssertExpectationsForObjects(t, testProvider.Mock, underlyingTripper.Mock)
}
func TestGetUser(t *testing.T) {
testProvider := new(test.TestProvider)
creds := new(common.Credentials)
testTripperFactory := new(test.TestTripperFactory)
testTripper := new(test.TestTripper)
testTripperFactory.On("NewTripper", creds, testProvider).Return(testTripper, nil)
testResponse := new(http.Response)
testResponse.Header = make(http.Header)
testResponse.Header.Set("Content-Type", "application/json")
testResponse.StatusCode = 200
testResponse.Body = ioutil.NopCloser(strings.NewReader(`{"name":"their-name","id":"uniqueid","login":"******","email":"*****@*****.**","avatar_url":"http://myface.com/","blog":"http://blog.com/"}`))
testTripper.On("RoundTrip", mock.Anything).Return(testResponse, nil)
client := &http.Client{Transport: testTripper}
testProvider.On("GetClient", creds).Return(client, nil)
data, err := Get(testProvider, creds, "endpoint")
if assert.NoError(t, err) && assert.NotNil(t, data) {
assert.Equal(t, data["name"], "their-name")
assert.Equal(t, data["id"], "uniqueid")
assert.Equal(t, data["login"], "loginname")
assert.Equal(t, data["email"], "*****@*****.**")
assert.Equal(t, data["avatar_url"], "http://myface.com/")
assert.Equal(t, data["blog"], "http://blog.com/")
}
}
func TestProviderListProvider(t *testing.T) {
prov1 := new(test.TestProvider)
prov2 := new(test.TestProvider)
prov1.On("Name").Return("prov1")
prov2.On("Name").Return("prov2")
// build a list
list := WithProviders(prov1, prov2)
returnedProv, err := list.Provider("prov1")
if assert.NoError(t, err) {
assert.Equal(t, returnedProv, prov1)
}
// check nonsense name
returnedProv, err = list.Provider("no such provider")
if assert.Nil(t, returnedProv) {
assert.IsType(t, &common.MissingProviderError{}, err, "MissingProviderError expected")
}
mock.AssertExpectationsForObjects(t, prov1.Mock, prov2.Mock)
}
func TestOAuth2HandlerBeginAuthURLWithBaseWithoutState(t *testing.T) {
common.SetSecurityKey("rAALj6QhRjsTo3VKzfWuK21qNZ5bFfqPJ9sYNerSYeKKoMIPAi9vaIusjmqyLE3S")
base := "https://base.url/auth"
config := &common.Config{Map: objx.MSI()}
config.
Set("client_id", "client_id").
Set("redirect_uri", "redirect_uri").
Set("scope", "scope").
Set("access_type", "access_type").
Set("approval_prompt", "approval_prompt")
url, err := GetBeginAuthURLWithBase(base, nil, config)
if assert.NoError(t, err) {
assert.Contains(t, url, "client_id=client_id")
assert.Contains(t, url, "redirect_uri=redirect_uri")
assert.Contains(t, url, "scope=scope")
assert.Contains(t, url, "access_type=access_type")
assert.Contains(t, url, "approval_prompt=approval_prompt")
assert.NotContains(t, url, "state=")
}
}
func TestOAuth2HandlerBeginAuthURLWithBaseMultipleScope(t *testing.T) {
common.SetSecurityKey("rAALj6QhRjsTo3VKzfWuK21qNZ5bFfqPJ9sYNerSYeKKoMIPAi9vaIusjmqyLE3S")
base := "https://base.url/auth"
config := &common.Config{Map: objx.MSI()}
config.
Set("client_id", "client_id").
Set("redirect_uri", "redirect_uri").
Set("scope", "scope1 scope2").
Set("access_type", "access_type").
Set("approval_prompt", "approval_prompt")
state := &common.State{Map: objx.MSI("after", "http://www.chikin14niwa.com/")}
base64State, _ := state.Base64()
url, err := GetBeginAuthURLWithBase(base, state, config)
if assert.NoError(t, err) {
assert.Contains(t, url, "client_id=client_id")
assert.Contains(t, url, "redirect_uri=redirect_uri")
assert.Contains(t, url, "scope=scope1+scope2")
assert.Contains(t, url, "access_type=access_type")
assert.Contains(t, url, "approval_prompt=approval_prompt")
assert.Contains(t, url, "state="+base64State)
}
}
func TestGetUser(t *testing.T) {
g := New("clientID", "secret", "http://myapp.com/")
creds := &common.Credentials{Map: objx.MSI()}
testTripperFactory := new(test.TestTripperFactory)
testTripper := new(test.TestTripper)
testTripperFactory.On("NewTripper", mock.Anything, g).Return(testTripper, nil)
testResponse := new(http.Response)
testResponse.Header = make(http.Header)
testResponse.Header.Set("Content-Type", "application/json")
testResponse.StatusCode = 200
testResponse.Body = ioutil.NopCloser(strings.NewReader(`{
"display_name":"JMWizzler",
"email":"*****@*****.**",
"external_urls":{
"spotify":"https://open.spotify.com/user/wizzler"
},
"href":"https://api.spotify.com/v1/users/wizzler",
"id":"wizzler",
"images":[{
"height":null,
"url":"https://fbcdn.example.com/2330_n.jpg",
"width":null
}],
"type":"user",
"uri":"spotify:user:wizzler"
}`))
testTripper.On("RoundTrip", mock.Anything).Return(testResponse, nil)
g.tripperFactory = testTripperFactory
user, err := g.GetUser(creds)
if assert.NoError(t, err) && assert.NotNil(t, user) {
assert.Equal(t, user.Name(), "JMWizzler")
assert.Equal(t, user.AuthCode(), "") // doesn't come from spotify
assert.Equal(t, user.Nickname(), "") // doesn't come from spotify
assert.Equal(t, user.Email(), "*****@*****.**")
assert.Equal(t, user.AvatarURL(), "https://fbcdn.example.com/2330_n.jpg")
assert.Equal(t, user.Data()["href"], "https://api.spotify.com/v1/users/wizzler")
spotifyCreds := user.ProviderCredentials()[spotifyName]
if assert.NotNil(t, spotifyCreds) {
assert.Equal(t, "wizzler", spotifyCreds.Get(common.CredentialsKeyID).Str())
}
}
}
func TestOAuth2Provider_CompleteAuth_JSON(t *testing.T) {
config := &common.Config{
Map: objx.MSI(
OAuth2KeyRedirectUrl, OAuth2KeyRedirectUrl,
OAuth2KeyScope, OAuth2KeyScope,
OAuth2KeyClientID, OAuth2KeyClientID,
OAuth2KeySecret, OAuth2KeySecret,
OAuth2KeyAuthURL, OAuth2KeyAuthURL,
OAuth2KeyTokenURL, OAuth2KeyTokenURL)}
testTripperFactory := new(test.TestTripperFactory)
testTripper := new(test.TestTripper)
testProvider := new(test.TestProvider)
creds := new(common.Credentials)
testResponse := new(http.Response)
testResponse.Header = make(http.Header)
testResponse.Header.Set("Content-Type", "application/json")
testResponse.StatusCode = 200
testResponse.Body = ioutil.NopCloser(strings.NewReader(`{"expires_in":20,"access_token":"ACCESSTOKEN","refresh_token":"REFRESHTOKEN"}`))
testTripperFactory.On("NewTripper", common.EmptyCredentials, mock.Anything).Return(testTripper, nil)
testTripper.On("RoundTrip", mock.Anything).Return(testResponse, nil)
data := objx.MSI(OAuth2KeyCode, []string{"123"})
creds, err := CompleteAuth(testTripperFactory, data, config, testProvider)
if assert.NoError(t, err) {
if assert.NotNil(t, creds, "Creds should be returned") {
assert.Equal(t, creds.Get(OAuth2KeyAccessToken).Str(), "ACCESSTOKEN")
assert.Equal(t, creds.Get(OAuth2KeyRefreshToken).Str(), "REFRESHTOKEN")
assert.Equal(t, creds.Get(OAuth2KeyExpiresIn).Data().(time.Duration), time.Duration(20)*time.Second)
}
}
mock.AssertExpectationsForObjects(t, testTripperFactory.Mock, testTripper.Mock, testProvider.Mock)
}
func TestGetUser(t *testing.T) {
g := New("clientID", "secret", "http://myapp.com/")
creds := &common.Credentials{Map: objx.MSI()}
testTripperFactory := new(test.TestTripperFactory)
testTripper := new(test.TestTripper)
testTripperFactory.On("NewTripper", mock.Anything, g).Return(testTripper, nil)
testResponse := new(http.Response)
testResponse.Header = make(http.Header)
testResponse.Header.Set("Content-Type", "application/json")
testResponse.StatusCode = 200
testResponse.Body = ioutil.NopCloser(strings.NewReader(`{"name":"their-name","id":"uniqueid","login":"******","email":"*****@*****.**","avatar_url":"http://myface.com/","blog":"http://blog.com/"}`))
testTripper.On("RoundTrip", mock.Anything).Return(testResponse, nil)
g.tripperFactory = testTripperFactory
user, err := g.GetUser(creds)
if assert.NoError(t, err) && assert.NotNil(t, user) {
assert.Equal(t, user.Name(), "their-name")
assert.Equal(t, user.AuthCode(), "") // doesn't come from github
assert.Equal(t, user.Nickname(), "loginname")
assert.Equal(t, user.Email(), "*****@*****.**")
assert.Equal(t, user.AvatarURL(), "http://myface.com/")
assert.Equal(t, user.Data()["blog"], "http://blog.com/")
gitlabCreds := user.ProviderCredentials()[gitlabName]
if assert.NotNil(t, gitlabCreds) {
assert.Equal(t, "uniqueid", gitlabCreds.Get(common.CredentialsKeyID).Str())
}
}
}