Context("when the token is verified", func() {
BeforeEach(func() {
fakeProviderB.VerifyReturns(true, nil)
})
It("responds OK", func() {
Expect(response.StatusCode).To(Equal(http.StatusOK))
})
It("verifies using the provider's HTTP client", func() {
Expect(fakeProviderB.ClientCallCount()).To(Equal(1))
_, clientToken := fakeProviderB.ClientArgsForCall(0)
Expect(clientToken).To(Equal(token))
Expect(fakeProviderB.VerifyCallCount()).To(Equal(1))
_, client := fakeProviderB.VerifyArgsForCall(0)
Expect(client).To(Equal(httpClient))
})
Describe("the ATC-Authorization cookie", func() {
var cookie *http.Cookie
JustBeforeEach(func() {
cookies := response.Cookies()
Expect(cookies).To(HaveLen(1))
cookie = cookies[0]
})
It("set to a signed token that expires in 1 day", func() {
Expect(cookie.Name).To(Equal(auth.CookieName))
Expect(cookie.Expires).To(BeTemporally("~", time.Now().Add(auth.CookieAge), 5*time.Second))
