mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
31539 Commits
59 Branches
Tree: 3f9445c259
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '3f9445c259'
${ noResults }
sonarqube/server/sonar-alm-client/src/test/java/org/sonar/alm/client/bitbucket/bitbucketcloud/BitbucketCloudRestClientTes...

BitbucketCloudRestClientTest.java 14KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2021 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.alm.client.bitbucket.bitbucketcloud;

  21. 

  22. import com.google.gson.Gson;

  23. import java.io.IOException;

  24. import okhttp3.Call;

  25. import okhttp3.OkHttpClient;

  26. import okhttp3.Protocol;

  27. import okhttp3.Request;

  28. import okhttp3.Response;

  29. import okhttp3.mockwebserver.MockResponse;

  30. import okhttp3.mockwebserver.MockWebServer;

  31. import okhttp3.mockwebserver.RecordedRequest;

  32. import okhttp3.mockwebserver.SocketPolicy;

  33. import org.junit.After;

  34. import org.junit.Before;

  35. import org.junit.Test;

  36. import org.sonarqube.ws.client.OkHttpClientBuilder;

  37. 

  38. import static java.util.Arrays.asList;

  39. import static org.assertj.core.api.Assertions.assertThat;

  40. import static org.assertj.core.api.Assertions.assertThatExceptionOfType;

  41. import static org.assertj.core.api.Assertions.assertThatIllegalArgumentException;

  42. import static org.assertj.core.api.Assertions.tuple;

  43. import static org.mockito.ArgumentMatchers.any;

  44. import static org.mockito.Mockito.mock;

  45. import static org.mockito.Mockito.when;

  46. import static org.sonar.alm.client.bitbucket.bitbucketcloud.BitbucketCloudRestClient.JSON_MEDIA_TYPE;

  47. 

  48. public class BitbucketCloudRestClientTest {

  49.   private final MockWebServer server = new MockWebServer();

  50.   private BitbucketCloudRestClient underTest;

  51. 

  52.   @Before

  53.   public void prepare() throws IOException {

  54.     server.start();

  55. 

  56.     underTest = new BitbucketCloudRestClient(new OkHttpClientBuilder().build(), server.url("/").toString(), server.url("/").toString());

  57.   }

  58. 

  59.   @After

  60.   public void stopServer() throws IOException {

  61.     server.shutdown();

  62.   }

  63. 

  64.   @Test

  65.   public void get_repos() {

  66.     server.enqueue(new MockResponse()

  67.       .setHeader("Content-Type", "application/json;charset=UTF-8")

  68.       .setBody("{\n" +

  69.         "  \"values\": [\n" +

  70.         "    {\n" +

  71.         "      \"slug\": \"banana\",\n" +

  72.         "      \"uuid\": \"BANANA-UUID\",\n" +

  73.         "      \"name\": \"banana\",\n" +

  74.         "      \"project\": {\n" +

  75.         "        \"key\": \"HOY\",\n" +

  76.         "        \"uuid\": \"BANANA-PROJECT-UUID\",\n" +

  77.         "        \"name\": \"hoy\"\n" +

  78.         "      }\n" +

  79.         "    },\n" +

  80.         "    {\n" +

  81.         "      \"slug\": \"potato\",\n" +

  82.         "      \"uuid\": \"POTATO-UUID\",\n" +

  83.         "      \"name\": \"potato\",\n" +

  84.         "      \"project\": {\n" +

  85.         "        \"key\": \"HEY\",\n" +

  86.         "        \"uuid\": \"POTATO-PROJECT-UUID\",\n" +

  87.         "        \"name\": \"hey\"\n" +

  88.         "      }\n" +

  89.         "    }\n" +

  90.         "  ]\n" +

  91.         "}"));

  92. 

  93.     RepositoryList repositoryList = underTest.searchRepos("user:apppwd", "", null, 1, 100);

  94.     assertThat(repositoryList.getNext()).isNull();

  95.     assertThat(repositoryList.getValues())

  96.       .hasSize(2)

  97.       .extracting(Repository::getUuid, Repository::getName, Repository::getSlug,

  98.         g -> g.getProject().getUuid(), g -> g.getProject().getKey(), g -> g.getProject().getName())

  99.       .containsExactlyInAnyOrder(

  100.         tuple("BANANA-UUID", "banana", "banana", "BANANA-PROJECT-UUID", "HOY", "hoy"),

  101.         tuple("POTATO-UUID", "potato", "potato", "POTATO-PROJECT-UUID", "HEY", "hey"));

  102.   }

  103. 

  104.   @Test

  105.   public void get_repo() {

  106.     server.enqueue(new MockResponse()

  107.             .setHeader("Content-Type", "application/json;charset=UTF-8")

  108.             .setBody(

  109.                     "    {\n" +

  110.                             "      \"slug\": \"banana\",\n" +

  111.                             "      \"uuid\": \"BANANA-UUID\",\n" +

  112.                             "      \"name\": \"banana\",\n" +

  113.                             "      \"mainbranch\": {\n" +

  114.                             "        \"type\": \"branch\",\n" +

  115.                             "        \"name\": \"develop\"\n" +

  116.                             "       },"+

  117.                             "      \"project\": {\n" +

  118.                             "        \"key\": \"HOY\",\n" +

  119.                             "        \"uuid\": \"BANANA-PROJECT-UUID\",\n" +

  120.                             "        \"name\": \"hoy\"\n" +

  121.                             "      }\n" +

  122.                             "    }"));

  123. 

  124.     Repository repository = underTest.getRepo("user:apppwd", "workspace", "rep");

  125.     assertThat(repository.getUuid()).isEqualTo("BANANA-UUID");

  126.     assertThat(repository.getName()).isEqualTo("banana");

  127.     assertThat(repository.getSlug()).isEqualTo("banana");

  128.     assertThat(repository.getProject())

  129.             .extracting(Project::getUuid, Project::getKey, Project::getName)

  130.             .contains("BANANA-PROJECT-UUID", "HOY", "hoy");

  131.     assertThat(repository.getMainBranch())

  132.             .extracting(MainBranch::getType, MainBranch::getName)

  133.             .contains("branch", "develop");

  134.   }

  135. 

  136.   @Test

  137.   public void bbc_object_serialization_deserialization() {

  138.     Project project = new Project("PROJECT-UUID-ONE", "projectKey", "projectName");

  139.     MainBranch mainBranch = new MainBranch("branch", "develop");

  140.     Repository repository = new Repository("REPO-UUID-ONE", "repo-slug", "repoName", project, mainBranch);

  141.     RepositoryList repos = new RepositoryList(null, asList(repository), 1, 100);

  142.     server.enqueue(new MockResponse()

  143.       .setHeader("Content-Type", "application/json;charset=UTF-8")

  144.       .setBody(new Gson().toJson(repos)));

  145. 

  146.     RepositoryList repositoryList = underTest.searchRepos("user:apppwd", "", null, 1, 100);

  147.     assertThat(repositoryList.getNext()).isNull();

  148.     assertThat(repositoryList.getPage()).isOne();

  149.     assertThat(repositoryList.getPagelen()).isEqualTo(100);

  150.     assertThat(repositoryList.getValues())

  151.       .hasSize(1)

  152.       .extracting(Repository::getUuid, Repository::getName, Repository::getSlug,

  153.         g -> g.getProject().getUuid(), g -> g.getProject().getKey(), g -> g.getProject().getName(),

  154.               g -> g.getMainBranch().getType(), g -> g.getMainBranch().getName())

  155.       .containsExactlyInAnyOrder(

  156.               tuple("REPO-UUID-ONE", "repoName", "repo-slug",

  157.                       "PROJECT-UUID-ONE", "projectKey", "projectName",

  158.                       "branch", "develop"));

  159.   }

  160. 

  161.   @Test

  162.   public void failIfUnauthorized() {

  163.     server.enqueue(new MockResponse().setResponseCode(401).setBody("Unauthorized"));

  164. 

  165.     assertThatIllegalArgumentException()

  166.       .isThrownBy(() -> underTest.validate("clientId", "clientSecret", "workspace"))

  167.       .withMessage("Unable to contact Bitbucket Cloud servers");

  168.   }

  169. 

  170.   @Test

  171.   public void validate_fails_with_IAE_if_timeout() {

  172.     server.enqueue(new MockResponse().setSocketPolicy(SocketPolicy.NO_RESPONSE));

  173. 

  174.     assertThatIllegalArgumentException()

  175.       .isThrownBy(() -> underTest.validate("clientId", "clientSecret", "workspace"));

  176.   }

  177. 

  178.   @Test

  179.   public void validate_success() throws Exception {

  180.     String tokenResponse = "{\"scopes\": \"webhook pullrequest:write\", \"access_token\": \"token\", \"expires_in\": 7200, "

  181.       + "\"token_type\": \"bearer\", \"state\": \"client_credentials\", \"refresh_token\": \"abc\"}";

  182. 

  183.     server.enqueue(new MockResponse().setBody(tokenResponse));

  184.     server.enqueue(new MockResponse().setBody("OK"));

  185. 

  186.     underTest.validate("clientId", "clientSecret", "workspace");

  187. 

  188.     RecordedRequest request = server.takeRequest();

  189.     assertThat(request.getPath()).isEqualTo("/");

  190.     assertThat(request.getHeader("Authorization")).isNotNull();

  191.     assertThat(request.getBody().readUtf8()).isEqualTo("grant_type=client_credentials");

  192.   }

  193. 

  194.   @Test

  195.   public void validate_with_invalid_workspace() {

  196.     String tokenResponse = "{\"scopes\": \"webhook pullrequest:write\", \"access_token\": \"token\", \"expires_in\": 7200, "

  197.       + "\"token_type\": \"bearer\", \"state\": \"client_credentials\", \"refresh_token\": \"abc\"}";

  198.     server.enqueue(new MockResponse().setBody(tokenResponse).setResponseCode(200).setHeader("Content-Type", JSON_MEDIA_TYPE));

  199.     String response = "{\"type\": \"error\", \"error\": {\"message\": \"No workspace with identifier 'workspace'.\"}}";

  200. 

  201.     server.enqueue(new MockResponse().setBody(response).setResponseCode(404).setHeader("Content-Type", JSON_MEDIA_TYPE));

  202. 

  203.     assertThatExceptionOfType(IllegalArgumentException.class)

  204.       .isThrownBy(() -> underTest.validate("clientId", "clientSecret", "workspace"))

  205.       .withMessage("Error returned by Bitbucket Cloud: No workspace with identifier 'workspace'.");

  206.   }

  207. 

  208.   @Test

  209.   public void validate_with_private_consumer() {

  210.     String response = "{\"error_description\": \"Cannot use client_credentials with a consumer marked as \\\"public\\\". "

  211.       + "Calls for auto generated consumers should use urn:bitbucket:oauth2:jwt instead.\", \"error\": \"invalid_grant\"}";

  212. 

  213.     server.enqueue(new MockResponse().setBody(response).setResponseCode(400).setHeader("Content-Type", JSON_MEDIA_TYPE));

  214. 

  215.     assertThatExceptionOfType(IllegalArgumentException.class)

  216.       .isThrownBy(() -> underTest.validate("clientId", "clientSecret", "workspace"))

  217.       .withMessage("Unable to contact Bitbucket Cloud servers: Configure the OAuth consumer in the Bitbucket workspace to be a private consumer");

  218.   }

  219. 

  220.   @Test

  221.   public void validate_with_invalid_credentials() {

  222.     String response = "{\"error_description\": \"Invalid OAuth client credentials\", \"error\": \"unauthorized_client\"}";

  223. 

  224.     server.enqueue(new MockResponse().setBody(response).setResponseCode(400).setHeader("Content-Type", JSON_MEDIA_TYPE));

  225. 

  226.     assertThatExceptionOfType(IllegalArgumentException.class)

  227.       .isThrownBy(() -> underTest.validate("clientId", "clientSecret", "workspace"))

  228.       .withMessage("Unable to contact Bitbucket Cloud servers: Check your credentials");

  229.   }

  230. 

  231.   @Test

  232.   public void validate_with_insufficient_privileges() {

  233.     String tokenResponse = "{\"scopes\": \"webhook pullrequest:write\", \"access_token\": \"token\", \"expires_in\": 7200, "

  234.       + "\"token_type\": \"bearer\", \"state\": \"client_credentials\", \"refresh_token\": \"abc\"}";

  235.     server.enqueue(new MockResponse().setBody(tokenResponse).setResponseCode(200).setHeader("Content-Type", JSON_MEDIA_TYPE));

  236. 

  237.     String error = "{\"type\": \"error\", \"error\": {\"message\": \"Your credentials lack one or more required privilege scopes.\", \"detail\": "

  238.       + "{\"granted\": [\"email\"], \"required\": [\"account\"]}}}\n";

  239.     server.enqueue(new MockResponse().setBody(error).setResponseCode(400).setHeader("Content-Type", JSON_MEDIA_TYPE));

  240. 

  241.     assertThatExceptionOfType(IllegalArgumentException.class)

  242.       .isThrownBy(() -> underTest.validate("clientId", "clientSecret", "workspace"))

  243.       .withMessage("Error returned by Bitbucket Cloud: Your credentials lack one or more required privilege scopes.");

  244.   }

  245. 

  246.   @Test

  247.   public void validate_app_password_success() throws Exception {

  248.     String reposResponse = "{\"pagelen\": 10,\n" +

  249.       "\"values\": [],\n" +

  250.       "\"page\": 1,\n" +

  251.       "\"size\": 0\n" +

  252.       "}";

  253. 

  254.     server.enqueue(new MockResponse().setBody(reposResponse));

  255.     server.enqueue(new MockResponse().setBody("OK"));

  256. 

  257.     underTest.validateAppPassword("user:password", "workspace");

  258. 

  259.     RecordedRequest request = server.takeRequest();

  260.     assertThat(request.getPath()).isEqualTo("/2.0/repositories/workspace");

  261.     assertThat(request.getHeader("Authorization")).isNotNull();

  262.   }

  263. 

  264.   @Test

  265.   public void validate_app_password_with_invalid_credentials() {

  266.     server.enqueue(new MockResponse().setResponseCode(401).setHeader("Content-Type", JSON_MEDIA_TYPE));

  267. 

  268.     assertThatExceptionOfType(IllegalArgumentException.class)

  269.       .isThrownBy(() -> underTest.validateAppPassword("wrong:wrong", "workspace"))

  270.       .withMessage("Unable to contact Bitbucket Cloud servers");

  271.   }

  272. 

  273.   @Test

  274.   public void nullErrorBodyIsSupported() throws IOException {

  275.     OkHttpClient clientMock = mock(OkHttpClient.class);

  276.     Call callMock = mock(Call.class);

  277. 

  278.     when(callMock.execute()).thenReturn(new Response.Builder()

  279.       .request(new Request.Builder().url("http://any.test").build())

  280.       .protocol(Protocol.HTTP_1_1)

  281.       .code(500)

  282.       .message("")

  283.       .build());

  284.     when(clientMock.newCall(any())).thenReturn(callMock);

  285. 

  286.     underTest = new BitbucketCloudRestClient(clientMock);

  287. 

  288.     assertThatIllegalArgumentException()

  289.       .isThrownBy(() -> underTest.validate("clientId", "clientSecret", "workspace"))

  290.       .withMessage("Unable to contact Bitbucket Cloud servers");

  291.   }

  292. 

  293.   @Test

  294.   public void invalidJsonResponseBodyIsSupported() {

  295.     server.enqueue(new MockResponse().setResponseCode(500)

  296.       .setHeader("content-type", "application/json; charset=utf-8")

  297.       .setBody("not a JSON string"));

  298. 

  299.     assertThatIllegalArgumentException()

  300.       .isThrownBy(() -> underTest.validate("clientId", "clientSecret", "workspace"))

  301.       .withMessage("Unable to contact Bitbucket Cloud servers");

  302.   }

  303. 

  304.   @Test

  305.   public void responseBodyWithoutErrorFieldIsSupported() {

  306.     server.enqueue(new MockResponse().setResponseCode(500)

  307.       .setHeader("content-type", "application/json; charset=utf-8")

  308.       .setBody("{\"foo\": \"bar\"}"));

  309. 

  310.     assertThatIllegalArgumentException()

  311.       .isThrownBy(() -> underTest.validate("clientId", "clientSecret", "workspace"))

  312.       .withMessage("Unable to contact Bitbucket Cloud servers");

  313.   }

  314. }