mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 210 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
11351 Commits
17 Branches
Tree: 7417628f8d
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '7417628f8d'
${ noResults }
gitea/integrations/api_oauth2_apps_test.go

api_oauth2_apps_test.go 5.4KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163 
  1. // Copyright 2020 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.package models

  4. 

  5. package integrations

  6. 

  7. import (

  8. 	"fmt"

  9. 	"net/http"

  10. 	"testing"

  11. 

  12. 	"code.gitea.io/gitea/models"

  13. 	api "code.gitea.io/gitea/modules/structs"

  14. 

  15. 	"github.com/stretchr/testify/assert"

  16. )

  17. 

  18. func TestOAuth2Application(t *testing.T) {

  19. 	defer prepareTestEnv(t)()

  20. 	testAPICreateOAuth2Application(t)

  21. 	testAPIListOAuth2Applications(t)

  22. 	testAPIGetOAuth2Application(t)

  23. 	testAPIUpdateOAuth2Application(t)

  24. 	testAPIDeleteOAuth2Application(t)

  25. }

  26. 

  27. func testAPICreateOAuth2Application(t *testing.T) {

  28. 	user := models.AssertExistsAndLoadBean(t, &models.User{ID: 2}).(*models.User)

  29. 	appBody := api.CreateOAuth2ApplicationOptions{

  30. 		Name: "test-app-1",

  31. 		RedirectURIs: []string{

  32. 			"http://www.google.com",

  33. 		},

  34. 	}

  35. 

  36. 	req := NewRequestWithJSON(t, "POST", "/api/v1/user/applications/oauth2", &appBody)

  37. 	req = AddBasicAuthHeader(req, user.Name)

  38. 	resp := MakeRequest(t, req, http.StatusCreated)

  39. 

  40. 	var createdApp *api.OAuth2Application

  41. 	DecodeJSON(t, resp, &createdApp)

  42. 

  43. 	assert.EqualValues(t, appBody.Name, createdApp.Name)

  44. 	assert.Len(t, createdApp.ClientSecret, 44)

  45. 	assert.Len(t, createdApp.ClientID, 36)

  46. 	assert.NotEmpty(t, createdApp.Created)

  47. 	assert.EqualValues(t, appBody.RedirectURIs[0], createdApp.RedirectURIs[0])

  48. 	models.AssertExistsAndLoadBean(t, &models.OAuth2Application{UID: user.ID, Name: createdApp.Name})

  49. }

  50. 

  51. func testAPIListOAuth2Applications(t *testing.T) {

  52. 	user := models.AssertExistsAndLoadBean(t, &models.User{ID: 2}).(*models.User)

  53. 	session := loginUser(t, user.Name)

  54. 	token := getTokenForLoggedInUser(t, session)

  55. 

  56. 	existApp := models.AssertExistsAndLoadBean(t, &models.OAuth2Application{

  57. 		UID:  user.ID,

  58. 		Name: "test-app-1",

  59. 		RedirectURIs: []string{

  60. 			"http://www.google.com",

  61. 		},

  62. 	}).(*models.OAuth2Application)

  63. 

  64. 	urlStr := fmt.Sprintf("/api/v1/user/applications/oauth2?token=%s", token)

  65. 	req := NewRequest(t, "GET", urlStr)

  66. 	resp := session.MakeRequest(t, req, http.StatusOK)

  67. 

  68. 	var appList api.OAuth2ApplicationList

  69. 	DecodeJSON(t, resp, &appList)

  70. 	expectedApp := appList[0]

  71. 

  72. 	assert.EqualValues(t, existApp.Name, expectedApp.Name)

  73. 	assert.EqualValues(t, existApp.ClientID, expectedApp.ClientID)

  74. 	assert.Len(t, expectedApp.ClientID, 36)

  75. 	assert.Empty(t, expectedApp.ClientSecret)

  76. 	assert.EqualValues(t, existApp.RedirectURIs[0], expectedApp.RedirectURIs[0])

  77. 	models.AssertExistsAndLoadBean(t, &models.OAuth2Application{ID: expectedApp.ID, Name: expectedApp.Name})

  78. }

  79. 

  80. func testAPIDeleteOAuth2Application(t *testing.T) {

  81. 	user := models.AssertExistsAndLoadBean(t, &models.User{ID: 2}).(*models.User)

  82. 	session := loginUser(t, user.Name)

  83. 	token := getTokenForLoggedInUser(t, session)

  84. 

  85. 	oldApp := models.AssertExistsAndLoadBean(t, &models.OAuth2Application{

  86. 		UID:  user.ID,

  87. 		Name: "test-app-1",

  88. 	}).(*models.OAuth2Application)

  89. 

  90. 	urlStr := fmt.Sprintf("/api/v1/user/applications/oauth2/%d?token=%s", oldApp.ID, token)

  91. 	req := NewRequest(t, "DELETE", urlStr)

  92. 	session.MakeRequest(t, req, http.StatusNoContent)

  93. 

  94. 	models.AssertNotExistsBean(t, &models.OAuth2Application{UID: oldApp.UID, Name: oldApp.Name})

  95. 

  96. 	// Delete again will return not found

  97. 	req = NewRequest(t, "DELETE", urlStr)

  98. 	session.MakeRequest(t, req, http.StatusNotFound)

  99. }

  100. 

  101. func testAPIGetOAuth2Application(t *testing.T) {

  102. 	user := models.AssertExistsAndLoadBean(t, &models.User{ID: 2}).(*models.User)

  103. 	session := loginUser(t, user.Name)

  104. 	token := getTokenForLoggedInUser(t, session)

  105. 

  106. 	existApp := models.AssertExistsAndLoadBean(t, &models.OAuth2Application{

  107. 		UID:  user.ID,

  108. 		Name: "test-app-1",

  109. 		RedirectURIs: []string{

  110. 			"http://www.google.com",

  111. 		},

  112. 	}).(*models.OAuth2Application)

  113. 

  114. 	urlStr := fmt.Sprintf("/api/v1/user/applications/oauth2/%d?token=%s", existApp.ID, token)

  115. 	req := NewRequest(t, "GET", urlStr)

  116. 	resp := session.MakeRequest(t, req, http.StatusOK)

  117. 

  118. 	var app api.OAuth2Application

  119. 	DecodeJSON(t, resp, &app)

  120. 	expectedApp := app

  121. 

  122. 	assert.EqualValues(t, existApp.Name, expectedApp.Name)

  123. 	assert.EqualValues(t, existApp.ClientID, expectedApp.ClientID)

  124. 	assert.Len(t, expectedApp.ClientID, 36)

  125. 	assert.Empty(t, expectedApp.ClientSecret)

  126. 	assert.EqualValues(t, len(expectedApp.RedirectURIs), 1)

  127. 	assert.EqualValues(t, existApp.RedirectURIs[0], expectedApp.RedirectURIs[0])

  128. 	models.AssertExistsAndLoadBean(t, &models.OAuth2Application{ID: expectedApp.ID, Name: expectedApp.Name})

  129. }

  130. 

  131. func testAPIUpdateOAuth2Application(t *testing.T) {

  132. 	user := models.AssertExistsAndLoadBean(t, &models.User{ID: 2}).(*models.User)

  133. 

  134. 	existApp := models.AssertExistsAndLoadBean(t, &models.OAuth2Application{

  135. 		UID:  user.ID,

  136. 		Name: "test-app-1",

  137. 		RedirectURIs: []string{

  138. 			"http://www.google.com",

  139. 		},

  140. 	}).(*models.OAuth2Application)

  141. 

  142. 	appBody := api.CreateOAuth2ApplicationOptions{

  143. 		Name: "test-app-1",

  144. 		RedirectURIs: []string{

  145. 			"http://www.google.com/",

  146. 			"http://www.github.com/",

  147. 		},

  148. 	}

  149. 

  150. 	urlStr := fmt.Sprintf("/api/v1/user/applications/oauth2/%d", existApp.ID)

  151. 	req := NewRequestWithJSON(t, "PATCH", urlStr, &appBody)

  152. 	req = AddBasicAuthHeader(req, user.Name)

  153. 	resp := MakeRequest(t, req, http.StatusOK)

  154. 

  155. 	var app api.OAuth2Application

  156. 	DecodeJSON(t, resp, &app)

  157. 	expectedApp := app

  158. 

  159. 	assert.EqualValues(t, len(expectedApp.RedirectURIs), 2)

  160. 	assert.EqualValues(t, expectedApp.RedirectURIs[0], appBody.RedirectURIs[0])

  161. 	assert.EqualValues(t, expectedApp.RedirectURIs[1], appBody.RedirectURIs[1])

  162. 	models.AssertExistsAndLoadBean(t, &models.OAuth2Application{ID: expectedApp.ID, Name: expectedApp.Name})

  163. }