mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
31537 Commits
59 Branches
Tree: a3d88ea27c
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'a3d88ea27c'
${ noResults }
sonarqube/server/sonar-auth-github/src/test/java/org/sonar/auth/github/GitHubIdentityProviderTest....

GitHubIdentityProviderTest.java 7.0KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2021 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.auth.github;

  21. 

  22. import org.junit.Test;

  23. import org.sonar.api.config.internal.MapSettings;

  24. import org.sonar.api.server.authentication.OAuth2IdentityProvider;

  25. 

  26. import static org.assertj.core.api.Assertions.assertThat;

  27. import static org.assertj.core.api.Assertions.assertThatThrownBy;

  28. import static org.mockito.Mockito.mock;

  29. import static org.mockito.Mockito.verify;

  30. import static org.mockito.Mockito.when;

  31. 

  32. public class GitHubIdentityProviderTest {

  33. 

  34. 

  35.   private MapSettings settings = new MapSettings();

  36.   private GitHubSettings gitHubSettings = new GitHubSettings(settings.asConfig());

  37.   private UserIdentityFactoryImpl userIdentityFactory = mock(UserIdentityFactoryImpl.class);

  38.   private ScribeGitHubApi scribeApi = new ScribeGitHubApi(gitHubSettings);

  39.   private GitHubRestClient gitHubRestClient = new GitHubRestClient(gitHubSettings);

  40.   private GitHubIdentityProvider underTest = new GitHubIdentityProvider(gitHubSettings, userIdentityFactory, scribeApi, gitHubRestClient);

  41. 

  42.   @Test

  43.   public void check_fields() {

  44.     assertThat(underTest.getKey()).isEqualTo("github");

  45.     assertThat(underTest.getName()).isEqualTo("GitHub");

  46.     assertThat(underTest.getDisplay().getIconPath()).isEqualTo("/images/github.svg");

  47.     assertThat(underTest.getDisplay().getBackgroundColor()).isEqualTo("#444444");

  48.   }

  49. 

  50.   @Test

  51.   public void is_enabled() {

  52.     settings.setProperty("sonar.auth.github.clientId.secured", "id");

  53.     settings.setProperty("sonar.auth.github.clientSecret.secured", "secret");

  54.     settings.setProperty("sonar.auth.github.enabled", true);

  55.     assertThat(underTest.isEnabled()).isTrue();

  56. 

  57.     settings.setProperty("sonar.auth.github.enabled", false);

  58.     assertThat(underTest.isEnabled()).isFalse();

  59.   }

  60. 

  61.   @Test

  62.   public void should_allow_users_to_signup() {

  63.     assertThat(underTest.allowsUsersToSignUp()).as("default").isFalse();

  64. 

  65.     settings.setProperty("sonar.auth.github.allowUsersToSignUp", true);

  66.     assertThat(underTest.allowsUsersToSignUp()).isTrue();

  67.   }

  68. 

  69.   @Test

  70.   public void init() {

  71.     setSettings(true);

  72.     OAuth2IdentityProvider.InitContext context = mock(OAuth2IdentityProvider.InitContext.class);

  73.     when(context.generateCsrfState()).thenReturn("state");

  74.     when(context.getCallbackUrl()).thenReturn("http://localhost/callback");

  75.     settings.setProperty("sonar.auth.github.webUrl", "https://github.com/");

  76. 

  77.     underTest.init(context);

  78. 

  79.     verify(context).redirectTo("https://github.com/login/oauth/authorize" +

  80.       "?response_type=code" +

  81.       "&client_id=id" +

  82.       "&redirect_uri=http%3A%2F%2Flocalhost%2Fcallback&scope=user%3Aemail" +

  83.       "&state=state");

  84.   }

  85. 

  86.   @Test

  87.   public void init_when_group_sync() {

  88.     setSettings(true);

  89.     settings.setProperty("sonar.auth.github.groupsSync", "true");

  90.     settings.setProperty("sonar.auth.github.webUrl", "https://github.com/");

  91.     OAuth2IdentityProvider.InitContext context = mock(OAuth2IdentityProvider.InitContext.class);

  92.     when(context.generateCsrfState()).thenReturn("state");

  93.     when(context.getCallbackUrl()).thenReturn("http://localhost/callback");

  94. 

  95.     underTest.init(context);

  96. 

  97.     verify(context).redirectTo("https://github.com/login/oauth/authorize" +

  98.       "?response_type=code" +

  99.       "&client_id=id" +

  100.       "&redirect_uri=http%3A%2F%2Flocalhost%2Fcallback&scope=user%3Aemail%2Cread%3Aorg" +

  101.       "&state=state");

  102.   }

  103. 

  104.   @Test

  105.   public void init_when_organizations() {

  106.     setSettings(true);

  107.     settings.setProperty("sonar.auth.github.organizations", "example");

  108.     settings.setProperty("sonar.auth.github.webUrl", "https://github.com/");

  109.     OAuth2IdentityProvider.InitContext context = mock(OAuth2IdentityProvider.InitContext.class);

  110.     when(context.generateCsrfState()).thenReturn("state");

  111.     when(context.getCallbackUrl()).thenReturn("http://localhost/callback");

  112. 

  113.     underTest.init(context);

  114. 

  115.     verify(context).redirectTo("https://github.com/login/oauth/authorize" +

  116.       "?response_type=code" +

  117.       "&client_id=id" +

  118.       "&redirect_uri=http%3A%2F%2Flocalhost%2Fcallback" +

  119.       "&scope=user%3Aemail%2Cread%3Aorg" +

  120.       "&state=state");

  121.   }

  122. 

  123.   @Test

  124.   public void fail_to_init_when_disabled() {

  125.     setSettings(false);

  126.     OAuth2IdentityProvider.InitContext context = mock(OAuth2IdentityProvider.InitContext.class);

  127. 

  128.     assertThatThrownBy(() -> underTest.init(context))

  129.       .isInstanceOf(IllegalStateException.class)

  130.       .hasMessage("GitHub authentication is disabled");

  131.   }

  132. 

  133.   @Test

  134.   public void scope_includes_org_when_necessary() {

  135.     setSettings(false);

  136. 

  137.     settings.setProperty("sonar.auth.github.groupsSync", false);

  138.     settings.setProperty("sonar.auth.github.organizations", "");

  139.     assertThat(underTest.getScope()).isEqualTo("user:email");

  140. 

  141.     settings.setProperty("sonar.auth.github.groupsSync", true);

  142.     settings.setProperty("sonar.auth.github.organizations", "");

  143.     assertThat(underTest.getScope()).isEqualTo("user:email,read:org");

  144. 

  145.     settings.setProperty("sonar.auth.github.groupsSync", false);

  146.     settings.setProperty("sonar.auth.github.organizations", "example");

  147.     assertThat(underTest.getScope()).isEqualTo("user:email,read:org");

  148. 

  149.     settings.setProperty("sonar.auth.github.groupsSync", true);

  150.     settings.setProperty("sonar.auth.github.organizations", "example");

  151.     assertThat(underTest.getScope()).isEqualTo("user:email,read:org");

  152.   }

  153. 

  154.   @Test

  155.   public void organization_membership_required() {

  156.     setSettings(true);

  157.     settings.setProperty("sonar.auth.github.organizations", "example");

  158.     assertThat(underTest.isOrganizationMembershipRequired()).isTrue();

  159.     settings.setProperty("sonar.auth.github.organizations", "example0, example1");

  160.     assertThat(underTest.isOrganizationMembershipRequired()).isTrue();

  161.   }

  162. 

  163.   @Test

  164.   public void organization_membership_not_required() {

  165.     setSettings(true);

  166.     settings.setProperty("sonar.auth.github.organizations", "");

  167.     assertThat(underTest.isOrganizationMembershipRequired()).isFalse();

  168.   }

  169. 

  170.   private void setSettings(boolean enabled) {

  171.     if (enabled) {

  172.       settings.setProperty("sonar.auth.github.clientId.secured", "id");

  173.       settings.setProperty("sonar.auth.github.clientSecret.secured", "secret");

  174.       settings.setProperty("sonar.auth.github.enabled", true);

  175.     } else {

  176.       settings.setProperty("sonar.auth.github.enabled", false);

  177.     }

  178.   }

  179. }