X-Git-Url: http://git.squeep.com/?a=blobdiff_plain;f=test%2Fplugs%2Fauthentication_plug_test.exs;h=6158086ea212b421ba2d41d3a7fb6de19160942b;hb=627e5a0a4992cc19fc65a7e93a09c470c8e2bf33;hp=3f2f769e73e1125ce13d5d425c004db252894306;hpb=e32dbfc9a5477830dba7bf3e99621161e4454a29;p=akkoma diff --git a/test/plugs/authentication_plug_test.exs b/test/plugs/authentication_plug_test.exs index 3f2f769e7..6158086ea 100644 --- a/test/plugs/authentication_plug_test.exs +++ b/test/plugs/authentication_plug_test.exs @@ -1,110 +1,57 @@ +# Pleroma: A lightweight social networking server +# Copyright © 2017-2018 Pleroma Authors +# SPDX-License-Identifier: AGPL-3.0-only + defmodule Pleroma.Plugs.AuthenticationPlugTest do use Pleroma.Web.ConnCase, async: true alias Pleroma.Plugs.AuthenticationPlug + alias Pleroma.User - defp fetch_nil(_name) do - {:ok, nil} - end + setup %{conn: conn} do + user = %User{ + id: 1, + name: "dude", + password_hash: Comeonin.Pbkdf2.hashpwsalt("guy") + } - @user %{ - id: 1, - name: "dude", - password_hash: Comeonin.Pbkdf2.hashpwsalt("guy") - } + conn = + conn + |> assign(:auth_user, user) - defp fetch_user(_name) do - {:ok, @user} + %{user: user, conn: conn} end - defp basic_auth_enc(username, password) do - "Basic " <> Base.encode64("#{username}:#{password}") - end - - describe "without an authorization header" do - test "it halts the application" do - conn = build_conn() |> AuthenticationPlug.call(%{}) - - assert conn.status == 403 - assert conn.halted == true - end + test "it does nothing if a user is assigned", %{conn: conn} do + conn = + conn + |> assign(:user, %User{}) - test "it assigns a nil user if the 'optional' option is used" do - conn = build_conn() |> AuthenticationPlug.call(%{optional: true}) + ret_conn = + conn + |> AuthenticationPlug.call(%{}) - assert %{ user: nil } == conn.assigns - end + assert ret_conn == conn end - describe "with an authorization header for a nonexisting user" do - test "it halts the application" do - conn = - build_conn() - |> AuthenticationPlug.call(%{fetcher: &fetch_nil/1}) + test "with a correct password in the credentials, it assigns the auth_user", %{conn: conn} do + conn = + conn + |> assign(:auth_credentials, %{password: "guy"}) + |> AuthenticationPlug.call(%{}) - assert conn.status == 403 - assert conn.halted == true - end - - test "it assigns a nil user if the 'optional' option is used" do - conn = - build_conn() - |> AuthenticationPlug.call(%{optional: true, fetcher: &fetch_nil/1 }) - - assert %{ user: nil } == conn.assigns - end + assert conn.assigns.user == conn.assigns.auth_user end - describe "with an incorrect authorization header for a enxisting user" do - test "it halts the application" do - opts = %{ - fetcher: &fetch_user/1 - } - - header = basic_auth_enc("dude", "man") - - conn = - build_conn() - |> put_req_header("authorization", header) - |> AuthenticationPlug.call(opts) - - assert conn.status == 403 - assert conn.halted == true - end - - test "it assigns a nil user if the 'optional' option is used" do - opts = %{ - optional: true, - fetcher: &fetch_user/1 - } - - header = basic_auth_enc("dude", "man") - - conn = - build_conn() - |> put_req_header("authorization", header) - |> AuthenticationPlug.call(opts) - - assert %{ user: nil } == conn.assigns - end - end - - describe "with a correct authorization header for an existing user" do - test "it assigns the user" do - opts = %{ - optional: true, - fetcher: &fetch_user/1 - } - - header = basic_auth_enc("dude", "guy") + test "with a wrong password in the credentials, it does nothing", %{conn: conn} do + conn = + conn + |> assign(:auth_credentials, %{password: "wrong"}) - conn = - build_conn() - |> put_req_header("authorization", header) - |> AuthenticationPlug.call(opts) + ret_conn = + conn + |> AuthenticationPlug.call(%{}) - assert %{ user: @user } == conn.assigns - assert conn.halted == false - end + assert conn == ret_conn end end