archive-gh-me/gitpod
1
0
Fork 0
mirror of https://github.com/gitpod-io/gitpod.git synced 2025-12-08 17:36:30 +00:00
Code Issues Projects Releases Wiki Activity
gitpod/components/public-api-server/pkg/auth/middleware_test.go

99 lines
2.5 KiB
Go
Raw Blame History

// Copyright (c) 2022 Gitpod GmbH. All rights reserved.
// Licensed under the GNU Affero General Public License (AGPL).
// See License.AGPL.txt in the project root for license information.
package auth
import (
"context"
"fmt"
"net/http"
"net/http/httptest"
"testing"
"github.com/bufbuild/connect-go"
"github.com/stretchr/testify/require"
)
func TestNewServerInterceptor(t *testing.T) {
requestPayload := "request"
type TokenResponse struct {
Token string `json:"token"`
}
type Header struct {
Key string
Value string
}
handler := connect.UnaryFunc(func(ctx context.Context, ar connect.AnyRequest) (connect.AnyResponse, error) {
token, _ := TokenFromContext(ctx)
return connect.NewResponse(&TokenResponse{Token: token.Value}), nil
})
scenarios := []struct {
Name string
Headers []Header
ExpectedError error
ExpectedToken string
}{
{
Name: "no headers return Unathenticated",
Headers: nil,
ExpectedError: connect.NewError(connect.CodeUnauthenticated, fmt.Errorf("No access token or cookie credentials available on request.")),
},
{
Name: "authorization header with bearer token returns ok",
Headers: []Header{{Key: "Authorization", Value: "Bearer foo"}},
ExpectedToken: "foo",
},
}
for _, s := range scenarios {
t.Run(s.Name, func(t *testing.T) {
ctx := context.Background()
request := connect.NewRequest(&requestPayload)
for _, header := range s.Headers {
request.Header().Add(header.Key, header.Value)
}
interceptor := NewServerInterceptor()
resp, err := interceptor.WrapUnary(handler)(ctx, request)
require.Equal(t, s.ExpectedError, err)
if err == nil {
require.Equal(t, &TokenResponse{
Token: s.ExpectedToken,
}, resp.Any())
}
})
}
}
func TestNewClientInterceptor(t *testing.T) {
expectedToken := "my_token"
tokenOnRequest := ""
// Setup a test server where we capture the token supplied, we don't actually care for the response.
srv := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
fmt.Println(r.Header)
token, err := BearerTokenFromHeaders(r.Header)
require.NoError(t, err)
// Capture the token supplied in the request so we can test for it
tokenOnRequest = token
w.WriteHeader(http.StatusNotFound)
}))
client := connect.NewClient[any, any](http.DefaultClient, srv.URL, connect.WithInterceptors(
NewClientInterceptor(expectedToken),
))
_, _ = client.CallUnary(context.Background(), connect.NewRequest[any](nil))
require.Equal(t, expectedToken, tokenOnRequest)
}
Reference in New Issue View Git Blame Copy Permalink