mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
30413 Commits
59 Branches
Tree: 0f33764b53
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '0f33764b53'
${ noResults }
sonarqube/server/sonar-auth-github/src/test/java/org/sonar/auth/github/GitHubIdentityProviderTest....

GitHubIdentityProviderTest.java 7.0KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2021 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.auth.github;

  21. 

  22. import org.junit.Rule;

  23. import org.junit.Test;

  24. import org.junit.rules.ExpectedException;

  25. import org.sonar.api.config.internal.MapSettings;

  26. import org.sonar.api.server.authentication.OAuth2IdentityProvider;

  27. 

  28. import static org.assertj.core.api.Assertions.assertThat;

  29. import static org.mockito.Mockito.mock;

  30. import static org.mockito.Mockito.verify;

  31. import static org.mockito.Mockito.when;

  32. 

  33. public class GitHubIdentityProviderTest {

  34. 

  35.   @Rule

  36.   public ExpectedException thrown = ExpectedException.none();

  37. 

  38.   private MapSettings settings = new MapSettings();

  39.   private GitHubSettings gitHubSettings = new GitHubSettings(settings.asConfig());

  40.   private UserIdentityFactoryImpl userIdentityFactory = mock(UserIdentityFactoryImpl.class);

  41.   private ScribeGitHubApi scribeApi = new ScribeGitHubApi(gitHubSettings);

  42.   private GitHubRestClient gitHubRestClient = new GitHubRestClient(gitHubSettings);

  43.   private GitHubIdentityProvider underTest = new GitHubIdentityProvider(gitHubSettings, userIdentityFactory, scribeApi, gitHubRestClient);

  44. 

  45.   @Test

  46.   public void check_fields() {

  47.     assertThat(underTest.getKey()).isEqualTo("github");

  48.     assertThat(underTest.getName()).isEqualTo("GitHub");

  49.     assertThat(underTest.getDisplay().getIconPath()).isEqualTo("/images/github.svg");

  50.     assertThat(underTest.getDisplay().getBackgroundColor()).isEqualTo("#444444");

  51.   }

  52. 

  53.   @Test

  54.   public void is_enabled() {

  55.     settings.setProperty("sonar.auth.github.clientId.secured", "id");

  56.     settings.setProperty("sonar.auth.github.clientSecret.secured", "secret");

  57.     settings.setProperty("sonar.auth.github.enabled", true);

  58.     assertThat(underTest.isEnabled()).isTrue();

  59. 

  60.     settings.setProperty("sonar.auth.github.enabled", false);

  61.     assertThat(underTest.isEnabled()).isFalse();

  62.   }

  63. 

  64.   @Test

  65.   public void should_allow_users_to_signup() {

  66.     assertThat(underTest.allowsUsersToSignUp()).as("default").isFalse();

  67. 

  68.     settings.setProperty("sonar.auth.github.allowUsersToSignUp", true);

  69.     assertThat(underTest.allowsUsersToSignUp()).isTrue();

  70.   }

  71. 

  72.   @Test

  73.   public void init() {

  74.     setSettings(true);

  75.     OAuth2IdentityProvider.InitContext context = mock(OAuth2IdentityProvider.InitContext.class);

  76.     when(context.generateCsrfState()).thenReturn("state");

  77.     when(context.getCallbackUrl()).thenReturn("http://localhost/callback");

  78.     settings.setProperty("sonar.auth.github.webUrl", "https://github.com/");

  79. 

  80.     underTest.init(context);

  81. 

  82.     verify(context).redirectTo("https://github.com/login/oauth/authorize" +

  83.       "?response_type=code" +

  84.       "&client_id=id" +

  85.       "&redirect_uri=http%3A%2F%2Flocalhost%2Fcallback&scope=user%3Aemail" +

  86.       "&state=state");

  87.   }

  88. 

  89.   @Test

  90.   public void init_when_group_sync() {

  91.     setSettings(true);

  92.     settings.setProperty("sonar.auth.github.groupsSync", "true");

  93.     settings.setProperty("sonar.auth.github.webUrl", "https://github.com/");

  94.     OAuth2IdentityProvider.InitContext context = mock(OAuth2IdentityProvider.InitContext.class);

  95.     when(context.generateCsrfState()).thenReturn("state");

  96.     when(context.getCallbackUrl()).thenReturn("http://localhost/callback");

  97. 

  98.     underTest.init(context);

  99. 

  100.     verify(context).redirectTo("https://github.com/login/oauth/authorize" +

  101.       "?response_type=code" +

  102.       "&client_id=id" +

  103.       "&redirect_uri=http%3A%2F%2Flocalhost%2Fcallback&scope=user%3Aemail%2Cread%3Aorg" +

  104.       "&state=state");

  105.   }

  106. 

  107.   @Test

  108.   public void init_when_organizations() {

  109.     setSettings(true);

  110.     settings.setProperty("sonar.auth.github.organizations", "example");

  111.     settings.setProperty("sonar.auth.github.webUrl", "https://github.com/");

  112.     OAuth2IdentityProvider.InitContext context = mock(OAuth2IdentityProvider.InitContext.class);

  113.     when(context.generateCsrfState()).thenReturn("state");

  114.     when(context.getCallbackUrl()).thenReturn("http://localhost/callback");

  115. 

  116.     underTest.init(context);

  117. 

  118.     verify(context).redirectTo("https://github.com/login/oauth/authorize" +

  119.       "?response_type=code" +

  120.       "&client_id=id" +

  121.       "&redirect_uri=http%3A%2F%2Flocalhost%2Fcallback" +

  122.       "&scope=user%3Aemail%2Cread%3Aorg" +

  123.       "&state=state");

  124.   }

  125. 

  126.   @Test

  127.   public void fail_to_init_when_disabled() {

  128.     setSettings(false);

  129.     OAuth2IdentityProvider.InitContext context = mock(OAuth2IdentityProvider.InitContext.class);

  130. 

  131.     thrown.expect(IllegalStateException.class);

  132.     thrown.expectMessage("GitHub authentication is disabled");

  133.     underTest.init(context);

  134.   }

  135. 

  136.   @Test

  137.   public void scope_includes_org_when_necessary() {

  138.     setSettings(false);

  139. 

  140.     settings.setProperty("sonar.auth.github.groupsSync", false);

  141.     settings.setProperty("sonar.auth.github.organizations", "");

  142.     assertThat(underTest.getScope()).isEqualTo("user:email");

  143. 

  144.     settings.setProperty("sonar.auth.github.groupsSync", true);

  145.     settings.setProperty("sonar.auth.github.organizations", "");

  146.     assertThat(underTest.getScope()).isEqualTo("user:email,read:org");

  147. 

  148.     settings.setProperty("sonar.auth.github.groupsSync", false);

  149.     settings.setProperty("sonar.auth.github.organizations", "example");

  150.     assertThat(underTest.getScope()).isEqualTo("user:email,read:org");

  151. 

  152.     settings.setProperty("sonar.auth.github.groupsSync", true);

  153.     settings.setProperty("sonar.auth.github.organizations", "example");

  154.     assertThat(underTest.getScope()).isEqualTo("user:email,read:org");

  155.   }

  156. 

  157.   @Test

  158.   public void organization_membership_required() {

  159.     setSettings(true);

  160.     settings.setProperty("sonar.auth.github.organizations", "example");

  161.     assertThat(underTest.isOrganizationMembershipRequired()).isTrue();

  162.     settings.setProperty("sonar.auth.github.organizations", "example0, example1");

  163.     assertThat(underTest.isOrganizationMembershipRequired()).isTrue();

  164.   }

  165. 

  166.   @Test

  167.   public void organization_membership_not_required() {

  168.     setSettings(true);

  169.     settings.setProperty("sonar.auth.github.organizations", "");

  170.     assertThat(underTest.isOrganizationMembershipRequired()).isFalse();

  171.   }

  172. 

  173.   private void setSettings(boolean enabled) {

  174.     if (enabled) {

  175.       settings.setProperty("sonar.auth.github.clientId.secured", "id");

  176.       settings.setProperty("sonar.auth.github.clientSecret.secured", "secret");

  177.       settings.setProperty("sonar.auth.github.enabled", true);

  178.     } else {

  179.       settings.setProperty("sonar.auth.github.enabled", false);

  180.     }

  181.   }

  182. }