mirror of
https://github.com/absmach/magistrala.git
synced 2026-06-23 04:10:28 +00:00
Dušan Borovčanin
187 lines
5.1 KiB
Go
187 lines
5.1 KiB
Go
// Copyright (c) Abstract Machines
|
|
// SPDX-License-Identifier: Apache-2.0
|
|
|
|
package sdk_test
|
|
|
|
import (
|
|
"context"
|
|
"net/http"
|
|
"testing"
|
|
|
|
grpcTokenV1 "github.com/absmach/magistrala/api/grpc/token/v1"
|
|
apiutil "github.com/absmach/magistrala/api/http/util"
|
|
smqauth "github.com/absmach/magistrala/auth"
|
|
smqauthn "github.com/absmach/magistrala/pkg/authn"
|
|
"github.com/absmach/magistrala/pkg/errors"
|
|
svcerr "github.com/absmach/magistrala/pkg/errors/service"
|
|
sdk "github.com/absmach/magistrala/pkg/sdk"
|
|
"github.com/stretchr/testify/assert"
|
|
"github.com/stretchr/testify/mock"
|
|
)
|
|
|
|
func TestIssueToken(t *testing.T) {
|
|
ts, svc, _ := setupUsers()
|
|
defer ts.Close()
|
|
|
|
client := generateTestUser(t)
|
|
token := generateTestToken()
|
|
|
|
conf := sdk.Config{
|
|
UsersURL: ts.URL,
|
|
}
|
|
mgsdk := sdk.NewSDK(conf)
|
|
|
|
cases := []struct {
|
|
desc string
|
|
login sdk.Login
|
|
svcRes *grpcTokenV1.Token
|
|
svcErr error
|
|
response sdk.Token
|
|
err errors.SDKError
|
|
}{
|
|
{
|
|
desc: "issue token successfully",
|
|
login: sdk.Login{
|
|
Username: client.Credentials.Username,
|
|
Password: client.Credentials.Secret,
|
|
},
|
|
svcRes: &grpcTokenV1.Token{
|
|
AccessToken: token.AccessToken,
|
|
RefreshToken: &token.RefreshToken,
|
|
AccessType: smqauth.AccessKey.String(),
|
|
},
|
|
svcErr: nil,
|
|
response: token,
|
|
err: nil,
|
|
},
|
|
{
|
|
desc: "issue token with invalid identity",
|
|
login: sdk.Login{
|
|
Username: invalidIdentity,
|
|
Password: client.Credentials.Secret,
|
|
},
|
|
svcRes: &grpcTokenV1.Token{},
|
|
svcErr: svcerr.ErrAuthentication,
|
|
response: sdk.Token{},
|
|
err: errors.NewSDKErrorWithStatus(svcerr.ErrAuthentication, http.StatusUnauthorized),
|
|
},
|
|
{
|
|
desc: "issue token with invalid secret",
|
|
login: sdk.Login{
|
|
Username: client.Credentials.Username,
|
|
Password: "invalid",
|
|
},
|
|
svcRes: &grpcTokenV1.Token{},
|
|
svcErr: svcerr.ErrLogin,
|
|
response: sdk.Token{},
|
|
err: errors.NewSDKErrorWithStatus(svcerr.ErrLogin, http.StatusUnauthorized),
|
|
},
|
|
{
|
|
desc: "issue token with empty identity",
|
|
login: sdk.Login{
|
|
Username: "",
|
|
Password: client.Credentials.Secret,
|
|
},
|
|
svcRes: &grpcTokenV1.Token{},
|
|
svcErr: nil,
|
|
response: sdk.Token{},
|
|
err: errors.NewSDKErrorWithStatus(apiutil.ErrMissingUsernameEmail, http.StatusBadRequest),
|
|
},
|
|
{
|
|
desc: "issue token with empty secret",
|
|
login: sdk.Login{
|
|
Username: client.Credentials.Username,
|
|
Password: "",
|
|
},
|
|
svcRes: &grpcTokenV1.Token{},
|
|
svcErr: nil,
|
|
response: sdk.Token{},
|
|
err: errors.NewSDKErrorWithStatus(apiutil.ErrMissingPass, http.StatusBadRequest),
|
|
},
|
|
}
|
|
for _, tc := range cases {
|
|
t.Run(tc.desc, func(t *testing.T) {
|
|
svcCall := svc.On("IssueToken", mock.Anything, tc.login.Username, tc.login.Password, tc.login.Description).Return(tc.svcRes, tc.svcErr)
|
|
resp, err := mgsdk.CreateToken(context.Background(), tc.login)
|
|
assert.Equal(t, tc.err, err)
|
|
assert.Equal(t, tc.response, resp)
|
|
if tc.err == nil {
|
|
ok := svcCall.Parent.AssertCalled(t, "IssueToken", mock.Anything, tc.login.Username, tc.login.Password, tc.login.Description)
|
|
assert.True(t, ok)
|
|
}
|
|
svcCall.Unset()
|
|
})
|
|
}
|
|
}
|
|
|
|
func TestRefreshToken(t *testing.T) {
|
|
ts, svc, auth := setupUsers()
|
|
defer ts.Close()
|
|
|
|
token := generateTestToken()
|
|
|
|
conf := sdk.Config{
|
|
UsersURL: ts.URL,
|
|
}
|
|
mgsdk := sdk.NewSDK(conf)
|
|
|
|
cases := []struct {
|
|
desc string
|
|
token string
|
|
svcRes *grpcTokenV1.Token
|
|
svcErr error
|
|
identifyErr error
|
|
response sdk.Token
|
|
err errors.SDKError
|
|
}{
|
|
{
|
|
desc: "refresh token successfully",
|
|
token: token.RefreshToken,
|
|
svcRes: &grpcTokenV1.Token{
|
|
AccessToken: token.AccessToken,
|
|
RefreshToken: &token.RefreshToken,
|
|
AccessType: token.AccessType,
|
|
},
|
|
response: token,
|
|
err: nil,
|
|
},
|
|
{
|
|
desc: "refresh token with invalid token",
|
|
token: invalidToken,
|
|
svcRes: nil,
|
|
identifyErr: svcerr.ErrAuthentication,
|
|
response: sdk.Token{},
|
|
err: errors.NewSDKErrorWithStatus(svcerr.ErrAuthentication, http.StatusUnauthorized),
|
|
},
|
|
{
|
|
desc: "refresh token with empty token",
|
|
token: "",
|
|
response: sdk.Token{},
|
|
err: errors.NewSDKErrorWithStatus(apiutil.ErrBearerToken, http.StatusUnauthorized),
|
|
},
|
|
}
|
|
for _, tc := range cases {
|
|
t.Run(tc.desc, func(t *testing.T) {
|
|
authCall := auth.On("Authenticate", mock.Anything, mock.Anything).Return(smqauthn.Session{DomainUserID: validID, UserID: validID, DomainID: validID}, tc.identifyErr)
|
|
svcCall := svc.On("RefreshToken", mock.Anything, smqauthn.Session{DomainUserID: validID, UserID: validID, DomainID: validID}, tc.token).Return(tc.svcRes, tc.svcErr)
|
|
resp, err := mgsdk.RefreshToken(context.Background(), tc.token)
|
|
assert.Equal(t, tc.err, err)
|
|
assert.Equal(t, tc.response, resp)
|
|
if tc.err == nil {
|
|
ok := svcCall.Parent.AssertCalled(t, "RefreshToken", mock.Anything, smqauthn.Session{DomainUserID: validID, UserID: validID, DomainID: validID}, tc.token)
|
|
assert.True(t, ok)
|
|
}
|
|
svcCall.Unset()
|
|
authCall.Unset()
|
|
})
|
|
}
|
|
}
|
|
|
|
func generateTestToken() sdk.Token {
|
|
return sdk.Token{
|
|
AccessToken: "access_token",
|
|
RefreshToken: "refresh_token",
|
|
AccessType: smqauth.AccessKey.String(),
|
|
}
|
|
}
|