mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 211 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
13291 Commits
17 Branches
Tree: 8720f876c7
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '8720f876c7'
${ noResults }
gitea/integrations/api_oauth2_apps_test.go

api_oauth2_apps_test.go 5.5KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165 
  1. // Copyright 2020 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.package models

  4. 

  5. package integrations

  6. 

  7. import (

  8. 	"fmt"

  9. 	"net/http"

  10. 	"testing"

  11. 

  12. 	"code.gitea.io/gitea/models/auth"

  13. 	"code.gitea.io/gitea/models/unittest"

  14. 	user_model "code.gitea.io/gitea/models/user"

  15. 	api "code.gitea.io/gitea/modules/structs"

  16. 

  17. 	"github.com/stretchr/testify/assert"

  18. )

  19. 

  20. func TestOAuth2Application(t *testing.T) {

  21. 	defer prepareTestEnv(t)()

  22. 	testAPICreateOAuth2Application(t)

  23. 	testAPIListOAuth2Applications(t)

  24. 	testAPIGetOAuth2Application(t)

  25. 	testAPIUpdateOAuth2Application(t)

  26. 	testAPIDeleteOAuth2Application(t)

  27. }

  28. 

  29. func testAPICreateOAuth2Application(t *testing.T) {

  30. 	user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2}).(*user_model.User)

  31. 	appBody := api.CreateOAuth2ApplicationOptions{

  32. 		Name: "test-app-1",

  33. 		RedirectURIs: []string{

  34. 			"http://www.google.com",

  35. 		},

  36. 	}

  37. 

  38. 	req := NewRequestWithJSON(t, "POST", "/api/v1/user/applications/oauth2", &appBody)

  39. 	req = AddBasicAuthHeader(req, user.Name)

  40. 	resp := MakeRequest(t, req, http.StatusCreated)

  41. 

  42. 	var createdApp *api.OAuth2Application

  43. 	DecodeJSON(t, resp, &createdApp)

  44. 

  45. 	assert.EqualValues(t, appBody.Name, createdApp.Name)

  46. 	assert.Len(t, createdApp.ClientSecret, 56)

  47. 	assert.Len(t, createdApp.ClientID, 36)

  48. 	assert.NotEmpty(t, createdApp.Created)

  49. 	assert.EqualValues(t, appBody.RedirectURIs[0], createdApp.RedirectURIs[0])

  50. 	unittest.AssertExistsAndLoadBean(t, &auth.OAuth2Application{UID: user.ID, Name: createdApp.Name})

  51. }

  52. 

  53. func testAPIListOAuth2Applications(t *testing.T) {

  54. 	user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2}).(*user_model.User)

  55. 	session := loginUser(t, user.Name)

  56. 	token := getTokenForLoggedInUser(t, session)

  57. 

  58. 	existApp := unittest.AssertExistsAndLoadBean(t, &auth.OAuth2Application{

  59. 		UID:  user.ID,

  60. 		Name: "test-app-1",

  61. 		RedirectURIs: []string{

  62. 			"http://www.google.com",

  63. 		},

  64. 	}).(*auth.OAuth2Application)

  65. 

  66. 	urlStr := fmt.Sprintf("/api/v1/user/applications/oauth2?token=%s", token)

  67. 	req := NewRequest(t, "GET", urlStr)

  68. 	resp := session.MakeRequest(t, req, http.StatusOK)

  69. 

  70. 	var appList api.OAuth2ApplicationList

  71. 	DecodeJSON(t, resp, &appList)

  72. 	expectedApp := appList[0]

  73. 

  74. 	assert.EqualValues(t, existApp.Name, expectedApp.Name)

  75. 	assert.EqualValues(t, existApp.ClientID, expectedApp.ClientID)

  76. 	assert.Len(t, expectedApp.ClientID, 36)

  77. 	assert.Empty(t, expectedApp.ClientSecret)

  78. 	assert.EqualValues(t, existApp.RedirectURIs[0], expectedApp.RedirectURIs[0])

  79. 	unittest.AssertExistsAndLoadBean(t, &auth.OAuth2Application{ID: expectedApp.ID, Name: expectedApp.Name})

  80. }

  81. 

  82. func testAPIDeleteOAuth2Application(t *testing.T) {

  83. 	user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2}).(*user_model.User)

  84. 	session := loginUser(t, user.Name)

  85. 	token := getTokenForLoggedInUser(t, session)

  86. 

  87. 	oldApp := unittest.AssertExistsAndLoadBean(t, &auth.OAuth2Application{

  88. 		UID:  user.ID,

  89. 		Name: "test-app-1",

  90. 	}).(*auth.OAuth2Application)

  91. 

  92. 	urlStr := fmt.Sprintf("/api/v1/user/applications/oauth2/%d?token=%s", oldApp.ID, token)

  93. 	req := NewRequest(t, "DELETE", urlStr)

  94. 	session.MakeRequest(t, req, http.StatusNoContent)

  95. 

  96. 	unittest.AssertNotExistsBean(t, &auth.OAuth2Application{UID: oldApp.UID, Name: oldApp.Name})

  97. 

  98. 	// Delete again will return not found

  99. 	req = NewRequest(t, "DELETE", urlStr)

  100. 	session.MakeRequest(t, req, http.StatusNotFound)

  101. }

  102. 

  103. func testAPIGetOAuth2Application(t *testing.T) {

  104. 	user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2}).(*user_model.User)

  105. 	session := loginUser(t, user.Name)

  106. 	token := getTokenForLoggedInUser(t, session)

  107. 

  108. 	existApp := unittest.AssertExistsAndLoadBean(t, &auth.OAuth2Application{

  109. 		UID:  user.ID,

  110. 		Name: "test-app-1",

  111. 		RedirectURIs: []string{

  112. 			"http://www.google.com",

  113. 		},

  114. 	}).(*auth.OAuth2Application)

  115. 

  116. 	urlStr := fmt.Sprintf("/api/v1/user/applications/oauth2/%d?token=%s", existApp.ID, token)

  117. 	req := NewRequest(t, "GET", urlStr)

  118. 	resp := session.MakeRequest(t, req, http.StatusOK)

  119. 

  120. 	var app api.OAuth2Application

  121. 	DecodeJSON(t, resp, &app)

  122. 	expectedApp := app

  123. 

  124. 	assert.EqualValues(t, existApp.Name, expectedApp.Name)

  125. 	assert.EqualValues(t, existApp.ClientID, expectedApp.ClientID)

  126. 	assert.Len(t, expectedApp.ClientID, 36)

  127. 	assert.Empty(t, expectedApp.ClientSecret)

  128. 	assert.Len(t, expectedApp.RedirectURIs, 1)

  129. 	assert.EqualValues(t, existApp.RedirectURIs[0], expectedApp.RedirectURIs[0])

  130. 	unittest.AssertExistsAndLoadBean(t, &auth.OAuth2Application{ID: expectedApp.ID, Name: expectedApp.Name})

  131. }

  132. 

  133. func testAPIUpdateOAuth2Application(t *testing.T) {

  134. 	user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2}).(*user_model.User)

  135. 

  136. 	existApp := unittest.AssertExistsAndLoadBean(t, &auth.OAuth2Application{

  137. 		UID:  user.ID,

  138. 		Name: "test-app-1",

  139. 		RedirectURIs: []string{

  140. 			"http://www.google.com",

  141. 		},

  142. 	}).(*auth.OAuth2Application)

  143. 

  144. 	appBody := api.CreateOAuth2ApplicationOptions{

  145. 		Name: "test-app-1",

  146. 		RedirectURIs: []string{

  147. 			"http://www.google.com/",

  148. 			"http://www.github.com/",

  149. 		},

  150. 	}

  151. 

  152. 	urlStr := fmt.Sprintf("/api/v1/user/applications/oauth2/%d", existApp.ID)

  153. 	req := NewRequestWithJSON(t, "PATCH", urlStr, &appBody)

  154. 	req = AddBasicAuthHeader(req, user.Name)

  155. 	resp := MakeRequest(t, req, http.StatusOK)

  156. 

  157. 	var app api.OAuth2Application

  158. 	DecodeJSON(t, resp, &app)

  159. 	expectedApp := app

  160. 

  161. 	assert.Len(t, expectedApp.RedirectURIs, 2)

  162. 	assert.EqualValues(t, expectedApp.RedirectURIs[0], appBody.RedirectURIs[0])

  163. 	assert.EqualValues(t, expectedApp.RedirectURIs[1], appBody.RedirectURIs[1])

  164. 	unittest.AssertExistsAndLoadBean(t, &auth.OAuth2Application{ID: expectedApp.ID, Name: expectedApp.Name})

  165. }