2021-03-17 13:33:06 +03:00
|
|
|
package oauth
|
|
|
|
|
|
|
|
import (
|
|
|
|
"context"
|
|
|
|
"testing"
|
|
|
|
"time"
|
|
|
|
|
|
|
|
"github.com/go-pg/pg/v10"
|
|
|
|
"github.com/go-pg/pg/v10/orm"
|
2021-03-17 18:01:31 +03:00
|
|
|
"github.com/google/uuid"
|
2021-03-17 13:33:06 +03:00
|
|
|
"github.com/gotosocial/gotosocial/internal/api"
|
|
|
|
"github.com/gotosocial/gotosocial/internal/config"
|
|
|
|
"github.com/gotosocial/gotosocial/internal/gtsmodel"
|
|
|
|
"github.com/gotosocial/oauth2/v4"
|
|
|
|
"github.com/sirupsen/logrus"
|
|
|
|
"github.com/stretchr/testify/suite"
|
|
|
|
"golang.org/x/crypto/bcrypt"
|
|
|
|
)
|
|
|
|
|
|
|
|
type OauthTestSuite struct {
|
|
|
|
suite.Suite
|
2021-03-17 18:01:31 +03:00
|
|
|
tokenStore oauth2.TokenStore
|
|
|
|
clientStore oauth2.ClientStore
|
|
|
|
conn *pg.DB
|
|
|
|
testUser *gtsmodel.User
|
|
|
|
testClient *oauthClient
|
|
|
|
config *config.Config
|
2021-03-17 13:33:06 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
const ()
|
|
|
|
|
|
|
|
// SetupSuite sets some variables on the suite that we can use as consts (more or less) throughout
|
|
|
|
func (suite *OauthTestSuite) SetupSuite() {
|
|
|
|
encryptedPassword, err := bcrypt.GenerateFromPassword([]byte("test-password"), bcrypt.DefaultCost)
|
|
|
|
if err != nil {
|
|
|
|
logrus.Panicf("error encrypting user pass: %s", err)
|
|
|
|
}
|
2021-03-17 18:01:31 +03:00
|
|
|
|
|
|
|
userID := uuid.NewString()
|
2021-03-17 13:33:06 +03:00
|
|
|
suite.testUser = >smodel.User{
|
2021-03-17 18:01:31 +03:00
|
|
|
ID: userID,
|
2021-03-17 13:33:06 +03:00
|
|
|
EncryptedPassword: string(encryptedPassword),
|
2021-03-20 02:18:44 +03:00
|
|
|
Email: "user@localhost",
|
2021-03-17 13:33:06 +03:00
|
|
|
CreatedAt: time.Now(),
|
|
|
|
UpdatedAt: time.Now(),
|
2021-03-19 01:27:43 +03:00
|
|
|
AccountID: "some-account-id-it-doesn't-matter-really-since-this-user-doesn't-actually-have-an-account!",
|
2021-03-17 18:01:31 +03:00
|
|
|
}
|
|
|
|
suite.testClient = &oauthClient{
|
|
|
|
ID: "a-known-client-id",
|
|
|
|
Secret: "some-secret",
|
2021-03-20 02:18:44 +03:00
|
|
|
Domain: "http://localhost:8080",
|
2021-03-17 18:01:31 +03:00
|
|
|
UserID: userID,
|
2021-03-17 13:33:06 +03:00
|
|
|
}
|
2021-03-19 01:27:43 +03:00
|
|
|
|
|
|
|
// because go tests are run within the test package directory, we need to fiddle with the templateconfig
|
|
|
|
// basedir in a way that we wouldn't normally have to do when running the binary, in order to make
|
|
|
|
// the templates actually load
|
|
|
|
c := config.Empty()
|
|
|
|
c.TemplateConfig.BaseDir = "../../web/template/"
|
|
|
|
suite.config = c
|
2021-03-17 13:33:06 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
// SetupTest creates a postgres connection and creates the oauth_clients table before each test
|
|
|
|
func (suite *OauthTestSuite) SetupTest() {
|
|
|
|
suite.conn = pg.Connect(&pg.Options{})
|
|
|
|
if err := suite.conn.Ping(context.Background()); err != nil {
|
|
|
|
logrus.Panicf("db connection error: %s", err)
|
|
|
|
}
|
|
|
|
|
|
|
|
models := []interface{}{
|
|
|
|
&oauthClient{},
|
|
|
|
&oauthToken{},
|
|
|
|
>smodel.User{},
|
|
|
|
}
|
|
|
|
|
|
|
|
for _, m := range models {
|
|
|
|
if err := suite.conn.Model(m).CreateTable(&orm.CreateTableOptions{
|
|
|
|
IfNotExists: true,
|
|
|
|
}); err != nil {
|
|
|
|
logrus.Panicf("db connection error: %s", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
suite.tokenStore = NewPGTokenStore(context.Background(), suite.conn, logrus.New())
|
|
|
|
suite.clientStore = NewPGClientStore(suite.conn)
|
|
|
|
|
|
|
|
if _, err := suite.conn.Model(suite.testUser).Insert(); err != nil {
|
|
|
|
logrus.Panicf("could not insert test user into db: %s", err)
|
|
|
|
}
|
|
|
|
|
2021-03-17 18:01:31 +03:00
|
|
|
if _, err := suite.conn.Model(suite.testClient).Insert(); err != nil {
|
|
|
|
logrus.Panicf("could not insert test client into db: %s", err)
|
|
|
|
}
|
|
|
|
|
2021-03-17 13:33:06 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
// TearDownTest drops the oauth_clients table and closes the pg connection after each test
|
|
|
|
func (suite *OauthTestSuite) TearDownTest() {
|
|
|
|
models := []interface{}{
|
|
|
|
&oauthClient{},
|
|
|
|
&oauthToken{},
|
|
|
|
>smodel.User{},
|
|
|
|
}
|
|
|
|
for _, m := range models {
|
|
|
|
if err := suite.conn.Model(m).DropTable(&orm.DropTableOptions{}); err != nil {
|
|
|
|
logrus.Panicf("drop table error: %s", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
if err := suite.conn.Close(); err != nil {
|
|
|
|
logrus.Panicf("error closing db connection: %s", err)
|
|
|
|
}
|
|
|
|
suite.conn = nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func (suite *OauthTestSuite) TestAPIInitialize() {
|
|
|
|
log := logrus.New()
|
2021-03-17 21:52:36 +03:00
|
|
|
log.SetLevel(logrus.TraceLevel)
|
2021-03-17 13:33:06 +03:00
|
|
|
|
|
|
|
r := api.New(suite.config, log)
|
|
|
|
api := New(suite.tokenStore, suite.clientStore, suite.conn, log)
|
|
|
|
api.AddRoutes(r)
|
|
|
|
go r.Start()
|
|
|
|
time.Sleep(30 * time.Second)
|
2021-03-19 01:27:43 +03:00
|
|
|
// http://localhost:8080/oauth/authorize?client_id=a-known-client-id&response_type=code&redirect_uri=https://example.org
|
2021-03-20 02:18:44 +03:00
|
|
|
// http://localhost:8080/oauth/authorize?client_id=a-known-client-id&response_type=code&redirect_uri=urn:ietf:wg:oauth:2.0:oob
|
2021-03-17 13:33:06 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
func TestOauthTestSuite(t *testing.T) {
|
|
|
|
suite.Run(t, new(OauthTestSuite))
|
|
|
|
}
|