mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 210 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
16872 Commits
17 Branches
Tree: v1.11.7
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'v1.11.7'
${ noResults }
gitea/models/oauth2_application_test.go

oauth2_application_test.go 7.5KB
Raw Permalink Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228 
  1. // Copyright 2019 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package models

  6. 

  7. import (

  8. 	"testing"

  9. 

  10. 	"github.com/stretchr/testify/assert"

  11. )

  12. 

  13. //////////////////// Application

  14. 

  15. func TestOAuth2Application_GenerateClientSecret(t *testing.T) {

  16. 	assert.NoError(t, PrepareTestDatabase())

  17. 	app := AssertExistsAndLoadBean(t, &OAuth2Application{ID: 1}).(*OAuth2Application)

  18. 	secret, err := app.GenerateClientSecret()

  19. 	assert.NoError(t, err)

  20. 	assert.True(t, len(secret) > 0)

  21. 	AssertExistsAndLoadBean(t, &OAuth2Application{ID: 1, ClientSecret: app.ClientSecret})

  22. }

  23. 

  24. func BenchmarkOAuth2Application_GenerateClientSecret(b *testing.B) {

  25. 	assert.NoError(b, PrepareTestDatabase())

  26. 	app := AssertExistsAndLoadBean(b, &OAuth2Application{ID: 1}).(*OAuth2Application)

  27. 	for i := 0; i < b.N; i++ {

  28. 		_, _ = app.GenerateClientSecret()

  29. 	}

  30. }

  31. 

  32. func TestOAuth2Application_ContainsRedirectURI(t *testing.T) {

  33. 	app := &OAuth2Application{

  34. 		RedirectURIs: []string{"a", "b", "c"},

  35. 	}

  36. 	assert.True(t, app.ContainsRedirectURI("a"))

  37. 	assert.True(t, app.ContainsRedirectURI("b"))

  38. 	assert.True(t, app.ContainsRedirectURI("c"))

  39. 	assert.False(t, app.ContainsRedirectURI("d"))

  40. }

  41. 

  42. func TestOAuth2Application_ValidateClientSecret(t *testing.T) {

  43. 	assert.NoError(t, PrepareTestDatabase())

  44. 	app := AssertExistsAndLoadBean(t, &OAuth2Application{ID: 1}).(*OAuth2Application)

  45. 	secret, err := app.GenerateClientSecret()

  46. 	assert.NoError(t, err)

  47. 	assert.True(t, app.ValidateClientSecret([]byte(secret)))

  48. 	assert.False(t, app.ValidateClientSecret([]byte("fewijfowejgfiowjeoifew")))

  49. }

  50. 

  51. func TestGetOAuth2ApplicationByClientID(t *testing.T) {

  52. 	assert.NoError(t, PrepareTestDatabase())

  53. 	app, err := GetOAuth2ApplicationByClientID("da7da3ba-9a13-4167-856f-3899de0b0138")

  54. 	assert.NoError(t, err)

  55. 	assert.Equal(t, "da7da3ba-9a13-4167-856f-3899de0b0138", app.ClientID)

  56. 

  57. 	app, err = GetOAuth2ApplicationByClientID("invalid client id")

  58. 	assert.Error(t, err)

  59. 	assert.Nil(t, app)

  60. }

  61. 

  62. func TestCreateOAuth2Application(t *testing.T) {

  63. 	assert.NoError(t, PrepareTestDatabase())

  64. 	app, err := CreateOAuth2Application(CreateOAuth2ApplicationOptions{Name: "newapp", UserID: 1})

  65. 	assert.NoError(t, err)

  66. 	assert.Equal(t, "newapp", app.Name)

  67. 	assert.Len(t, app.ClientID, 36)

  68. 	AssertExistsAndLoadBean(t, &OAuth2Application{Name: "newapp"})

  69. }

  70. 

  71. func TestOAuth2Application_LoadUser(t *testing.T) {

  72. 	assert.NoError(t, PrepareTestDatabase())

  73. 	app := AssertExistsAndLoadBean(t, &OAuth2Application{ID: 1}).(*OAuth2Application)

  74. 	assert.NoError(t, app.LoadUser())

  75. 	assert.NotNil(t, app.User)

  76. }

  77. 

  78. func TestOAuth2Application_TableName(t *testing.T) {

  79. 	assert.Equal(t, "oauth2_application", new(OAuth2Application).TableName())

  80. }

  81. 

  82. func TestOAuth2Application_GetGrantByUserID(t *testing.T) {

  83. 	assert.NoError(t, PrepareTestDatabase())

  84. 	app := AssertExistsAndLoadBean(t, &OAuth2Application{ID: 1}).(*OAuth2Application)

  85. 	grant, err := app.GetGrantByUserID(1)

  86. 	assert.NoError(t, err)

  87. 	assert.Equal(t, int64(1), grant.UserID)

  88. 

  89. 	grant, err = app.GetGrantByUserID(34923458)

  90. 	assert.NoError(t, err)

  91. 	assert.Nil(t, grant)

  92. }

  93. 

  94. func TestOAuth2Application_CreateGrant(t *testing.T) {

  95. 	assert.NoError(t, PrepareTestDatabase())

  96. 	app := AssertExistsAndLoadBean(t, &OAuth2Application{ID: 1}).(*OAuth2Application)

  97. 	grant, err := app.CreateGrant(2)

  98. 	assert.NoError(t, err)

  99. 	assert.NotNil(t, grant)

  100. 	assert.Equal(t, int64(2), grant.UserID)

  101. 	assert.Equal(t, int64(1), grant.ApplicationID)

  102. }

  103. 

  104. //////////////////// Grant

  105. 

  106. func TestGetOAuth2GrantByID(t *testing.T) {

  107. 	assert.NoError(t, PrepareTestDatabase())

  108. 	grant, err := GetOAuth2GrantByID(1)

  109. 	assert.NoError(t, err)

  110. 	assert.Equal(t, int64(1), grant.ID)

  111. 

  112. 	grant, err = GetOAuth2GrantByID(34923458)

  113. 	assert.NoError(t, err)

  114. 	assert.Nil(t, grant)

  115. }

  116. 

  117. func TestOAuth2Grant_IncreaseCounter(t *testing.T) {

  118. 	assert.NoError(t, PrepareTestDatabase())

  119. 	grant := AssertExistsAndLoadBean(t, &OAuth2Grant{ID: 1, Counter: 1}).(*OAuth2Grant)

  120. 	assert.NoError(t, grant.IncreaseCounter())

  121. 	assert.Equal(t, int64(2), grant.Counter)

  122. 	AssertExistsAndLoadBean(t, &OAuth2Grant{ID: 1, Counter: 2})

  123. }

  124. 

  125. func TestOAuth2Grant_GenerateNewAuthorizationCode(t *testing.T) {

  126. 	assert.NoError(t, PrepareTestDatabase())

  127. 	grant := AssertExistsAndLoadBean(t, &OAuth2Grant{ID: 1}).(*OAuth2Grant)

  128. 	code, err := grant.GenerateNewAuthorizationCode("https://example2.com/callback", "CjvyTLSdR47G5zYenDA-eDWW4lRrO8yvjcWwbD_deOg", "S256")

  129. 	assert.NoError(t, err)

  130. 	assert.NotNil(t, code)

  131. 	assert.True(t, len(code.Code) > 32) // secret length > 32

  132. }

  133. 

  134. func TestOAuth2Grant_TableName(t *testing.T) {

  135. 	assert.Equal(t, "oauth2_grant", new(OAuth2Grant).TableName())

  136. }

  137. 

  138. func TestGetOAuth2GrantsByUserID(t *testing.T) {

  139. 	assert.NoError(t, PrepareTestDatabase())

  140. 	result, err := GetOAuth2GrantsByUserID(1)

  141. 	assert.NoError(t, err)

  142. 	assert.Len(t, result, 1)

  143. 	assert.Equal(t, int64(1), result[0].ID)

  144. 	assert.Equal(t, result[0].ApplicationID, result[0].Application.ID)

  145. 

  146. 	result, err = GetOAuth2GrantsByUserID(34134)

  147. 	assert.NoError(t, err)

  148. 	assert.Empty(t, result)

  149. }

  150. 

  151. func TestRevokeOAuth2Grant(t *testing.T) {

  152. 	assert.NoError(t, PrepareTestDatabase())

  153. 	assert.NoError(t, RevokeOAuth2Grant(1, 1))

  154. 	AssertNotExistsBean(t, &OAuth2Grant{ID: 1, UserID: 1})

  155. }

  156. 

  157. //////////////////// Authorization Code

  158. 

  159. func TestGetOAuth2AuthorizationByCode(t *testing.T) {

  160. 	assert.NoError(t, PrepareTestDatabase())

  161. 	code, err := GetOAuth2AuthorizationByCode("authcode")

  162. 	assert.NoError(t, err)

  163. 	assert.NotNil(t, code)

  164. 	assert.Equal(t, "authcode", code.Code)

  165. 	assert.Equal(t, int64(1), code.ID)

  166. 

  167. 	code, err = GetOAuth2AuthorizationByCode("does not exist")

  168. 	assert.NoError(t, err)

  169. 	assert.Nil(t, code)

  170. }

  171. 

  172. func TestOAuth2AuthorizationCode_ValidateCodeChallenge(t *testing.T) {

  173. 	// test plain

  174. 	code := &OAuth2AuthorizationCode{

  175. 		CodeChallengeMethod: "plain",

  176. 		CodeChallenge:       "test123",

  177. 	}

  178. 	assert.True(t, code.ValidateCodeChallenge("test123"))

  179. 	assert.False(t, code.ValidateCodeChallenge("ierwgjoergjio"))

  180. 

  181. 	// test S256

  182. 	code = &OAuth2AuthorizationCode{

  183. 		CodeChallengeMethod: "S256",

  184. 		CodeChallenge:       "CjvyTLSdR47G5zYenDA-eDWW4lRrO8yvjcWwbD_deOg",

  185. 	}

  186. 	assert.True(t, code.ValidateCodeChallenge("N1Zo9-8Rfwhkt68r1r29ty8YwIraXR8eh_1Qwxg7yQXsonBt"))

  187. 	assert.False(t, code.ValidateCodeChallenge("wiogjerogorewngoenrgoiuenorg"))

  188. 

  189. 	// test unknown

  190. 	code = &OAuth2AuthorizationCode{

  191. 		CodeChallengeMethod: "monkey",

  192. 		CodeChallenge:       "foiwgjioriogeiogjerger",

  193. 	}

  194. 	assert.False(t, code.ValidateCodeChallenge("foiwgjioriogeiogjerger"))

  195. 

  196. 	// test no code challenge

  197. 	code = &OAuth2AuthorizationCode{

  198. 		CodeChallengeMethod: "",

  199. 		CodeChallenge:       "foierjiogerogerg",

  200. 	}

  201. 	assert.True(t, code.ValidateCodeChallenge(""))

  202. }

  203. 

  204. func TestOAuth2AuthorizationCode_GenerateRedirectURI(t *testing.T) {

  205. 	code := &OAuth2AuthorizationCode{

  206. 		RedirectURI: "https://example.com/callback",

  207. 		Code:        "thecode",

  208. 	}

  209. 

  210. 	redirect, err := code.GenerateRedirectURI("thestate")

  211. 	assert.NoError(t, err)

  212. 	assert.Equal(t, redirect.String(), "https://example.com/callback?code=thecode&state=thestate")

  213. 

  214. 	redirect, err = code.GenerateRedirectURI("")

  215. 	assert.NoError(t, err)

  216. 	assert.Equal(t, redirect.String(), "https://example.com/callback?code=thecode")

  217. }

  218. 

  219. func TestOAuth2AuthorizationCode_Invalidate(t *testing.T) {

  220. 	assert.NoError(t, PrepareTestDatabase())

  221. 	code := AssertExistsAndLoadBean(t, &OAuth2AuthorizationCode{Code: "authcode"}).(*OAuth2AuthorizationCode)

  222. 	assert.NoError(t, code.Invalidate())

  223. 	AssertNotExistsBean(t, &OAuth2AuthorizationCode{Code: "authcode"})

  224. }

  225. 

  226. func TestOAuth2AuthorizationCode_TableName(t *testing.T) {

  227. 	assert.Equal(t, "oauth2_authorization_code", new(OAuth2AuthorizationCode).TableName())

  228. }