mirror of
https://github.com/absmach/magistrala.git
synced 2026-06-23 04:10:28 +00:00
Dušan Borovčanin
1419 lines
40 KiB
Go
1419 lines
40 KiB
Go
// Copyright (c) Abstract Machines
|
|
// SPDX-License-Identifier: Apache-2.0
|
|
|
|
package api_test
|
|
|
|
import (
|
|
"context"
|
|
"crypto/aes"
|
|
"crypto/cipher"
|
|
"crypto/rand"
|
|
"encoding/hex"
|
|
"encoding/json"
|
|
"fmt"
|
|
"io"
|
|
"net/http"
|
|
"net/http/httptest"
|
|
"strconv"
|
|
"strings"
|
|
"testing"
|
|
|
|
apiutil "github.com/absmach/supermq/api/http/util"
|
|
"github.com/absmach/supermq/bootstrap"
|
|
bsapi "github.com/absmach/supermq/bootstrap/api"
|
|
"github.com/absmach/supermq/bootstrap/mocks"
|
|
"github.com/absmach/supermq/internal/testsutil"
|
|
smqlog "github.com/absmach/supermq/logger"
|
|
smqauthn "github.com/absmach/supermq/pkg/authn"
|
|
authnmocks "github.com/absmach/supermq/pkg/authn/mocks"
|
|
"github.com/absmach/supermq/pkg/errors"
|
|
svcerr "github.com/absmach/supermq/pkg/errors/service"
|
|
"github.com/stretchr/testify/assert"
|
|
"github.com/stretchr/testify/mock"
|
|
)
|
|
|
|
const (
|
|
validToken = "validToken"
|
|
domainID = "b4d7d79e-fd99-4c2b-ac09-524e43df6888"
|
|
invalidToken = "invalid"
|
|
email = "test@example.com"
|
|
unknown = "unknown"
|
|
channelsNum = 3
|
|
contentType = "application/json"
|
|
wrongID = "wrong_id"
|
|
|
|
addName = "name"
|
|
addContent = "config"
|
|
instanceID = "5de9b29a-feb9-11ed-be56-0242ac120002"
|
|
validID = "d4ebb847-5d0e-4e46-bdd9-b6aceaaa3a22"
|
|
)
|
|
|
|
var (
|
|
encKey = []byte("1234567891011121")
|
|
metadata = map[string]interface{}{"meta": "data"}
|
|
addExternalID = testsutil.GenerateUUID(&testing.T{})
|
|
addExternalKey = testsutil.GenerateUUID(&testing.T{})
|
|
addClientID = testsutil.GenerateUUID(&testing.T{})
|
|
addClientSecret = testsutil.GenerateUUID(&testing.T{})
|
|
addReq = struct {
|
|
ClientID string `json:"client_id"`
|
|
ClientSecret string `json:"client_secret"`
|
|
ExternalID string `json:"external_id"`
|
|
ExternalKey string `json:"external_key"`
|
|
Channels []string `json:"channels"`
|
|
Name string `json:"name"`
|
|
Content string `json:"content"`
|
|
}{
|
|
ClientID: addClientID,
|
|
ClientSecret: addClientSecret,
|
|
ExternalID: addExternalID,
|
|
ExternalKey: addExternalKey,
|
|
Channels: []string{"1"},
|
|
Name: "name",
|
|
Content: "config",
|
|
}
|
|
|
|
updateReq = struct {
|
|
Channels []string `json:"channels,omitempty"`
|
|
Content string `json:"content,omitempty"`
|
|
State bootstrap.State `json:"state,omitempty"`
|
|
ClientCert string `json:"client_cert,omitempty"`
|
|
ClientSecret string `json:"client_secret,omitempty"`
|
|
CACert string `json:"ca_cert,omitempty"`
|
|
}{
|
|
Channels: []string{"1"},
|
|
Content: "config update",
|
|
State: 1,
|
|
ClientCert: "newcert",
|
|
ClientSecret: "newkey",
|
|
CACert: "newca",
|
|
}
|
|
|
|
missingIDRes = toJSON(apiutil.ErrorRes{Err: apiutil.ErrMissingID.Error(), Msg: apiutil.ErrValidation.Error()})
|
|
missingKeyRes = toJSON(apiutil.ErrorRes{Err: apiutil.ErrBearerKey.Error(), Msg: apiutil.ErrValidation.Error()})
|
|
bsErrorRes = toJSON(apiutil.ErrorRes{Msg: bootstrap.ErrBootstrap.Error()})
|
|
extKeyRes = toJSON(apiutil.ErrorRes{Msg: bootstrap.ErrExternalKey.Error()})
|
|
extSecKeyRes = toJSON(apiutil.ErrorRes{Msg: bootstrap.ErrExternalKeySecure.Error()})
|
|
)
|
|
|
|
type testRequest struct {
|
|
client *http.Client
|
|
method string
|
|
url string
|
|
contentType string
|
|
token string
|
|
key string
|
|
body io.Reader
|
|
}
|
|
|
|
func newConfig() bootstrap.Config {
|
|
return bootstrap.Config{
|
|
ClientID: addClientID,
|
|
ClientSecret: addClientSecret,
|
|
ExternalID: addExternalID,
|
|
ExternalKey: addExternalKey,
|
|
Channels: []bootstrap.Channel{
|
|
{
|
|
ID: "1",
|
|
Metadata: metadata,
|
|
},
|
|
},
|
|
Name: addName,
|
|
Content: addContent,
|
|
ClientCert: "newcert",
|
|
ClientKey: "newkey",
|
|
CACert: "newca",
|
|
}
|
|
}
|
|
|
|
func (tr testRequest) make() (*http.Response, error) {
|
|
req, err := http.NewRequest(tr.method, tr.url, tr.body)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
if tr.token != "" {
|
|
req.Header.Set("Authorization", apiutil.BearerPrefix+tr.token)
|
|
}
|
|
if tr.key != "" {
|
|
req.Header.Set("Authorization", apiutil.ClientPrefix+tr.key)
|
|
}
|
|
|
|
if tr.contentType != "" {
|
|
req.Header.Set("Content-Type", tr.contentType)
|
|
}
|
|
|
|
return tr.client.Do(req)
|
|
}
|
|
|
|
func enc(in []byte) ([]byte, error) {
|
|
block, err := aes.NewCipher(encKey)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
ciphertext := make([]byte, aes.BlockSize+len(in))
|
|
iv := ciphertext[:aes.BlockSize]
|
|
if _, err := io.ReadFull(rand.Reader, iv); err != nil {
|
|
return nil, err
|
|
}
|
|
stream := cipher.NewCFBEncrypter(block, iv)
|
|
stream.XORKeyStream(ciphertext[aes.BlockSize:], in)
|
|
return ciphertext, nil
|
|
}
|
|
|
|
func dec(in []byte) ([]byte, error) {
|
|
block, err := aes.NewCipher(encKey)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
if len(in) < aes.BlockSize {
|
|
return nil, errors.ErrMalformedEntity
|
|
}
|
|
iv := in[:aes.BlockSize]
|
|
in = in[aes.BlockSize:]
|
|
stream := cipher.NewCFBDecrypter(block, iv)
|
|
stream.XORKeyStream(in, in)
|
|
return in, nil
|
|
}
|
|
|
|
func newBootstrapServer() (*httptest.Server, *mocks.Service, *authnmocks.Authentication) {
|
|
logger := smqlog.NewMock()
|
|
svc := new(mocks.Service)
|
|
authn := new(authnmocks.Authentication)
|
|
mux := bsapi.MakeHandler(svc, authn, bootstrap.NewConfigReader(encKey), logger, instanceID)
|
|
return httptest.NewServer(mux), svc, authn
|
|
}
|
|
|
|
func toJSON(data interface{}) string {
|
|
jsonData, err := json.Marshal(data)
|
|
if err != nil {
|
|
return ""
|
|
}
|
|
return string(jsonData)
|
|
}
|
|
|
|
func TestAdd(t *testing.T) {
|
|
bs, svc, auth := newBootstrapServer()
|
|
defer bs.Close()
|
|
c := newConfig()
|
|
|
|
data := toJSON(addReq)
|
|
|
|
neID := addReq
|
|
neID.ClientID = testsutil.GenerateUUID(t)
|
|
neData := toJSON(neID)
|
|
|
|
invalidChannels := addReq
|
|
invalidChannels.Channels = []string{wrongID}
|
|
wrongData := toJSON(invalidChannels)
|
|
|
|
cases := []struct {
|
|
desc string
|
|
req string
|
|
domainID string
|
|
token string
|
|
session smqauthn.Session
|
|
contentType string
|
|
status int
|
|
location string
|
|
authenticateErr error
|
|
err error
|
|
}{
|
|
{
|
|
desc: "add a config with invalid token",
|
|
req: data,
|
|
domainID: domainID,
|
|
token: invalidToken,
|
|
contentType: contentType,
|
|
status: http.StatusUnauthorized,
|
|
location: "",
|
|
authenticateErr: svcerr.ErrAuthentication,
|
|
err: svcerr.ErrAuthentication,
|
|
},
|
|
{
|
|
desc: "add a valid config",
|
|
req: data,
|
|
domainID: domainID,
|
|
token: validToken,
|
|
contentType: contentType,
|
|
status: http.StatusCreated,
|
|
location: "/clients/configs/" + c.ClientID,
|
|
err: nil,
|
|
},
|
|
{
|
|
desc: "add a config with wrong content type",
|
|
req: data,
|
|
domainID: domainID,
|
|
token: validToken,
|
|
contentType: "",
|
|
status: http.StatusUnsupportedMediaType,
|
|
location: "",
|
|
err: apiutil.ErrUnsupportedContentType,
|
|
},
|
|
{
|
|
desc: "add an existing config",
|
|
req: data,
|
|
domainID: domainID,
|
|
token: validToken,
|
|
contentType: contentType,
|
|
status: http.StatusConflict,
|
|
location: "",
|
|
err: svcerr.ErrConflict,
|
|
},
|
|
{
|
|
desc: "add a config with non-existent ID",
|
|
req: neData,
|
|
domainID: domainID,
|
|
token: validToken,
|
|
contentType: contentType,
|
|
status: http.StatusConflict,
|
|
location: "",
|
|
err: svcerr.ErrConflict,
|
|
},
|
|
{
|
|
desc: "add a config with invalid channels",
|
|
req: wrongData,
|
|
domainID: domainID,
|
|
token: validToken,
|
|
contentType: contentType,
|
|
status: http.StatusConflict,
|
|
location: "",
|
|
err: svcerr.ErrConflict,
|
|
},
|
|
{
|
|
desc: "add a config with wrong JSON",
|
|
req: "{\"external_id\": 5}",
|
|
domainID: domainID,
|
|
token: validToken,
|
|
contentType: contentType,
|
|
status: http.StatusBadRequest,
|
|
err: svcerr.ErrMalformedEntity,
|
|
},
|
|
{
|
|
desc: "add a config with invalid request format",
|
|
req: "}",
|
|
domainID: domainID,
|
|
token: validToken,
|
|
contentType: contentType,
|
|
status: http.StatusBadRequest,
|
|
location: "",
|
|
err: svcerr.ErrMalformedEntity,
|
|
},
|
|
{
|
|
desc: "add a config with empty JSON",
|
|
req: "{}",
|
|
domainID: domainID,
|
|
token: validToken,
|
|
contentType: contentType,
|
|
status: http.StatusBadRequest,
|
|
location: "",
|
|
err: apiutil.ErrInvalidQueryParams,
|
|
},
|
|
{
|
|
desc: "add a config with an empty request",
|
|
req: "",
|
|
domainID: domainID,
|
|
token: validToken,
|
|
contentType: contentType,
|
|
status: http.StatusBadRequest,
|
|
location: "",
|
|
err: svcerr.ErrMalformedEntity,
|
|
},
|
|
}
|
|
|
|
for _, tc := range cases {
|
|
t.Run(tc.desc, func(t *testing.T) {
|
|
if tc.token == validToken {
|
|
tc.session = smqauthn.Session{DomainUserID: domainID + "_" + validID, UserID: validID, DomainID: domainID}
|
|
}
|
|
authCall := auth.On("Authenticate", mock.Anything, tc.token).Return(tc.session, tc.authenticateErr)
|
|
|
|
svcCall := svc.On("Add", mock.Anything, tc.session, tc.token, mock.Anything).Return(c, tc.err)
|
|
req := testRequest{
|
|
client: bs.Client(),
|
|
method: http.MethodPost,
|
|
url: fmt.Sprintf("%s/%s/clients/configs", bs.URL, tc.domainID),
|
|
contentType: tc.contentType,
|
|
token: tc.token,
|
|
body: strings.NewReader(tc.req),
|
|
}
|
|
res, err := req.make()
|
|
assert.Nil(t, err, fmt.Sprintf("%s: unexpected error %s", tc.desc, err))
|
|
location := res.Header.Get("Location")
|
|
assert.Equal(t, tc.status, res.StatusCode, fmt.Sprintf("%s: expected status code %d got %d", tc.desc, tc.status, res.StatusCode))
|
|
assert.Equal(t, tc.location, location, fmt.Sprintf("%s: expected location '%s' got '%s'", tc.desc, tc.location, location))
|
|
svcCall.Unset()
|
|
authCall.Unset()
|
|
})
|
|
}
|
|
}
|
|
|
|
func TestView(t *testing.T) {
|
|
bs, svc, auth := newBootstrapServer()
|
|
defer bs.Close()
|
|
c := newConfig()
|
|
|
|
var channels []channel
|
|
for _, ch := range c.Channels {
|
|
channels = append(channels, channel{ID: ch.ID, Name: ch.Name, Metadata: ch.Metadata})
|
|
}
|
|
|
|
data := config{
|
|
ClientID: c.ClientID,
|
|
ClientSecret: c.ClientSecret,
|
|
State: c.State,
|
|
Channels: channels,
|
|
ExternalID: c.ExternalID,
|
|
ExternalKey: c.ExternalKey,
|
|
Name: c.Name,
|
|
Content: c.Content,
|
|
}
|
|
|
|
cases := []struct {
|
|
desc string
|
|
token string
|
|
session smqauthn.Session
|
|
id string
|
|
status int
|
|
res config
|
|
authenticateErr error
|
|
err error
|
|
}{
|
|
{
|
|
desc: "view a config with invalid token",
|
|
token: invalidToken,
|
|
id: c.ClientID,
|
|
status: http.StatusUnauthorized,
|
|
res: config{},
|
|
authenticateErr: svcerr.ErrAuthentication,
|
|
err: svcerr.ErrAuthentication,
|
|
},
|
|
{
|
|
desc: "view a config",
|
|
token: validToken,
|
|
id: c.ClientID,
|
|
status: http.StatusOK,
|
|
res: data,
|
|
err: nil,
|
|
},
|
|
{
|
|
desc: "view a non-existing config",
|
|
token: validToken,
|
|
id: wrongID,
|
|
status: http.StatusNotFound,
|
|
res: config{},
|
|
err: svcerr.ErrNotFound,
|
|
},
|
|
{
|
|
desc: "view a config with an empty token",
|
|
token: "",
|
|
id: c.ClientID,
|
|
status: http.StatusUnauthorized,
|
|
res: config{},
|
|
err: apiutil.ErrBearerToken,
|
|
},
|
|
{
|
|
desc: "view config without authorization",
|
|
token: validToken,
|
|
id: c.ClientID,
|
|
status: http.StatusForbidden,
|
|
res: config{},
|
|
err: svcerr.ErrAuthorization,
|
|
},
|
|
}
|
|
|
|
for _, tc := range cases {
|
|
t.Run(tc.desc, func(t *testing.T) {
|
|
if tc.token == validToken {
|
|
tc.session = smqauthn.Session{DomainUserID: domainID + "_" + validID, UserID: validID, DomainID: domainID}
|
|
}
|
|
authCall := auth.On("Authenticate", mock.Anything, tc.token).Return(tc.session, tc.authenticateErr)
|
|
svcCall := svc.On("View", mock.Anything, tc.session, tc.id).Return(c, tc.err)
|
|
req := testRequest{
|
|
client: bs.Client(),
|
|
method: http.MethodGet,
|
|
url: fmt.Sprintf("%s/%s/clients/configs/%s", bs.URL, domainID, tc.id),
|
|
token: tc.token,
|
|
}
|
|
res, err := req.make()
|
|
assert.Nil(t, err, fmt.Sprintf("%s: unexpected error %s", tc.desc, err))
|
|
|
|
assert.Equal(t, tc.status, res.StatusCode, fmt.Sprintf("%s: expected status code %d got %d", tc.desc, tc.status, res.StatusCode))
|
|
var view config
|
|
if err := json.NewDecoder(res.Body).Decode(&view); err != io.EOF {
|
|
assert.Nil(t, err, fmt.Sprintf("Decoding expected to succeed %s: %s", tc.desc, err))
|
|
}
|
|
|
|
assert.ElementsMatch(t, tc.res.Channels, view.Channels, fmt.Sprintf("%s: expected response '%s' got '%s'", tc.desc, tc.res.Channels, view.Channels))
|
|
// Empty channels to prevent order mismatch.
|
|
tc.res.Channels = []channel{}
|
|
view.Channels = []channel{}
|
|
assert.Equal(t, tc.res, view, fmt.Sprintf("%s: expected response '%s' got '%s'", tc.desc, tc.res, view))
|
|
svcCall.Unset()
|
|
authCall.Unset()
|
|
})
|
|
}
|
|
}
|
|
|
|
func TestUpdate(t *testing.T) {
|
|
bs, svc, auth := newBootstrapServer()
|
|
defer bs.Close()
|
|
c := newConfig()
|
|
|
|
data := toJSON(updateReq)
|
|
|
|
cases := []struct {
|
|
desc string
|
|
req string
|
|
id string
|
|
token string
|
|
session smqauthn.Session
|
|
contentType string
|
|
status int
|
|
authenticateErr error
|
|
err error
|
|
}{
|
|
{
|
|
desc: "update with invalid token",
|
|
req: data,
|
|
id: c.ClientID,
|
|
token: invalidToken,
|
|
contentType: contentType,
|
|
status: http.StatusUnauthorized,
|
|
authenticateErr: svcerr.ErrAuthentication,
|
|
err: svcerr.ErrAuthentication,
|
|
},
|
|
{
|
|
desc: "update with an empty token",
|
|
req: data,
|
|
id: c.ClientID,
|
|
token: "",
|
|
contentType: contentType,
|
|
status: http.StatusUnauthorized,
|
|
err: apiutil.ErrBearerToken,
|
|
},
|
|
{
|
|
desc: "update a valid config",
|
|
req: data,
|
|
id: c.ClientID,
|
|
token: validToken,
|
|
contentType: contentType,
|
|
status: http.StatusOK,
|
|
err: nil,
|
|
},
|
|
{
|
|
desc: "update a config with wrong content type",
|
|
req: data,
|
|
id: c.ClientID,
|
|
token: validToken,
|
|
contentType: "",
|
|
status: http.StatusUnsupportedMediaType,
|
|
err: apiutil.ErrUnsupportedContentType,
|
|
},
|
|
{
|
|
desc: "update a non-existing config",
|
|
req: data,
|
|
id: wrongID,
|
|
token: validToken,
|
|
contentType: contentType,
|
|
status: http.StatusNotFound,
|
|
err: svcerr.ErrNotFound,
|
|
},
|
|
{
|
|
desc: "update a config with invalid request format",
|
|
req: "}",
|
|
id: c.ClientID,
|
|
token: validToken,
|
|
contentType: contentType,
|
|
status: http.StatusBadRequest,
|
|
err: svcerr.ErrMalformedEntity,
|
|
},
|
|
{
|
|
desc: "update a config with an empty request",
|
|
id: c.ClientID,
|
|
req: "",
|
|
token: validToken,
|
|
contentType: contentType,
|
|
status: http.StatusBadRequest,
|
|
err: svcerr.ErrMalformedEntity,
|
|
},
|
|
}
|
|
|
|
for _, tc := range cases {
|
|
t.Run(tc.desc, func(t *testing.T) {
|
|
if tc.token == validToken {
|
|
tc.session = smqauthn.Session{DomainUserID: domainID + "_" + validID, UserID: validID, DomainID: domainID}
|
|
}
|
|
authCall := auth.On("Authenticate", mock.Anything, tc.token).Return(tc.session, tc.authenticateErr)
|
|
svcCall := svc.On("Update", mock.Anything, tc.session, mock.Anything).Return(tc.err)
|
|
req := testRequest{
|
|
client: bs.Client(),
|
|
method: http.MethodPut,
|
|
url: fmt.Sprintf("%s/%s/clients/configs/%s", bs.URL, domainID, tc.id),
|
|
contentType: tc.contentType,
|
|
token: tc.token,
|
|
body: strings.NewReader(tc.req),
|
|
}
|
|
res, err := req.make()
|
|
assert.Nil(t, err, fmt.Sprintf("%s: unexpected error %s", tc.desc, err))
|
|
assert.Equal(t, tc.status, res.StatusCode, fmt.Sprintf("%s: expected status code %d got %d", tc.desc, tc.status, res.StatusCode))
|
|
svcCall.Unset()
|
|
authCall.Unset()
|
|
})
|
|
}
|
|
}
|
|
|
|
func TestUpdateCert(t *testing.T) {
|
|
bs, svc, auth := newBootstrapServer()
|
|
defer bs.Close()
|
|
c := newConfig()
|
|
|
|
data := toJSON(updateReq)
|
|
|
|
cases := []struct {
|
|
desc string
|
|
req string
|
|
id string
|
|
token string
|
|
session smqauthn.Session
|
|
contentType string
|
|
status int
|
|
authenticateErr error
|
|
err error
|
|
}{
|
|
{
|
|
desc: "update with invalid token",
|
|
req: data,
|
|
id: c.ClientID,
|
|
token: invalidToken,
|
|
contentType: contentType,
|
|
status: http.StatusUnauthorized,
|
|
authenticateErr: svcerr.ErrAuthentication,
|
|
err: svcerr.ErrAuthentication,
|
|
},
|
|
{
|
|
desc: "update with an empty token",
|
|
req: data,
|
|
id: c.ClientID,
|
|
token: "",
|
|
contentType: contentType,
|
|
status: http.StatusUnauthorized,
|
|
err: apiutil.ErrBearerToken,
|
|
},
|
|
{
|
|
desc: "update a valid config",
|
|
req: data,
|
|
id: c.ClientID,
|
|
token: validToken,
|
|
contentType: contentType,
|
|
status: http.StatusOK,
|
|
err: nil,
|
|
},
|
|
{
|
|
desc: "update a config with wrong content type",
|
|
req: data,
|
|
id: c.ClientID,
|
|
token: validToken,
|
|
contentType: "",
|
|
status: http.StatusUnsupportedMediaType,
|
|
err: apiutil.ErrUnsupportedContentType,
|
|
},
|
|
{
|
|
desc: "update a non-existing config",
|
|
req: data,
|
|
id: wrongID,
|
|
token: validToken,
|
|
contentType: contentType,
|
|
status: http.StatusNotFound,
|
|
err: svcerr.ErrNotFound,
|
|
},
|
|
{
|
|
desc: "update a config with invalid request format",
|
|
req: "}",
|
|
id: c.ClientSecret,
|
|
token: validToken,
|
|
contentType: contentType,
|
|
status: http.StatusBadRequest,
|
|
err: svcerr.ErrMalformedEntity,
|
|
},
|
|
{
|
|
desc: "update a config with an empty request",
|
|
id: c.ClientID,
|
|
req: "",
|
|
token: validToken,
|
|
contentType: contentType,
|
|
status: http.StatusBadRequest,
|
|
err: svcerr.ErrMalformedEntity,
|
|
},
|
|
}
|
|
|
|
for _, tc := range cases {
|
|
t.Run(tc.desc, func(t *testing.T) {
|
|
if tc.token == validToken {
|
|
tc.session = smqauthn.Session{DomainUserID: domainID + "_" + validID, UserID: validID, DomainID: domainID}
|
|
}
|
|
authCall := auth.On("Authenticate", mock.Anything, tc.token).Return(tc.session, tc.authenticateErr)
|
|
svcCall := svc.On("UpdateCert", mock.Anything, mock.Anything, mock.Anything, mock.Anything, mock.Anything, mock.Anything).Return(c, tc.err)
|
|
req := testRequest{
|
|
client: bs.Client(),
|
|
method: http.MethodPatch,
|
|
url: fmt.Sprintf("%s/%s/clients/configs/certs/%s", bs.URL, domainID, tc.id),
|
|
contentType: tc.contentType,
|
|
token: tc.token,
|
|
body: strings.NewReader(tc.req),
|
|
}
|
|
res, err := req.make()
|
|
assert.Nil(t, err, fmt.Sprintf("%s: unexpected error %s", tc.desc, err))
|
|
assert.Equal(t, tc.status, res.StatusCode, fmt.Sprintf("%s: expected status code %d got %d", tc.desc, tc.status, res.StatusCode))
|
|
svcCall.Unset()
|
|
authCall.Unset()
|
|
})
|
|
}
|
|
}
|
|
|
|
func TestUpdateConnections(t *testing.T) {
|
|
bs, svc, auth := newBootstrapServer()
|
|
defer bs.Close()
|
|
c := newConfig()
|
|
data := toJSON(updateReq)
|
|
|
|
invalidChannels := updateReq
|
|
invalidChannels.Channels = []string{wrongID}
|
|
|
|
wrongData := toJSON(invalidChannels)
|
|
|
|
cases := []struct {
|
|
desc string
|
|
req string
|
|
id string
|
|
token string
|
|
session smqauthn.Session
|
|
contentType string
|
|
status int
|
|
authenticateErr error
|
|
err error
|
|
}{
|
|
{
|
|
desc: "update connections with invalid token",
|
|
req: data,
|
|
id: c.ClientID,
|
|
token: invalidToken,
|
|
contentType: contentType,
|
|
status: http.StatusUnauthorized,
|
|
authenticateErr: svcerr.ErrAuthentication,
|
|
err: svcerr.ErrAuthentication,
|
|
},
|
|
{
|
|
desc: "update connections with an empty token",
|
|
req: data,
|
|
id: c.ClientID,
|
|
token: "",
|
|
contentType: contentType,
|
|
status: http.StatusUnauthorized,
|
|
err: apiutil.ErrBearerToken,
|
|
},
|
|
{
|
|
desc: "update connections valid config",
|
|
req: data,
|
|
id: c.ClientID,
|
|
token: validToken,
|
|
contentType: contentType,
|
|
status: http.StatusOK,
|
|
err: nil,
|
|
},
|
|
{
|
|
desc: "update connections with wrong content type",
|
|
req: data,
|
|
id: c.ClientID,
|
|
token: validToken,
|
|
contentType: "",
|
|
status: http.StatusUnsupportedMediaType,
|
|
err: apiutil.ErrUnsupportedContentType,
|
|
},
|
|
{
|
|
desc: "update connections for a non-existing config",
|
|
req: data,
|
|
id: wrongID,
|
|
token: validToken,
|
|
contentType: contentType,
|
|
status: http.StatusNotFound,
|
|
err: svcerr.ErrNotFound,
|
|
},
|
|
{
|
|
desc: "update connections with invalid channels",
|
|
req: wrongData,
|
|
id: c.ClientID,
|
|
token: validToken,
|
|
contentType: contentType,
|
|
status: http.StatusNotFound,
|
|
err: svcerr.ErrNotFound,
|
|
},
|
|
{
|
|
desc: "update a config with invalid request format",
|
|
req: "}",
|
|
id: c.ClientID,
|
|
token: validToken,
|
|
contentType: contentType,
|
|
status: http.StatusBadRequest,
|
|
err: svcerr.ErrMalformedEntity,
|
|
},
|
|
{
|
|
desc: "update a config with an empty request",
|
|
id: c.ClientID,
|
|
req: "",
|
|
token: validToken,
|
|
contentType: contentType,
|
|
status: http.StatusBadRequest,
|
|
err: svcerr.ErrMalformedEntity,
|
|
},
|
|
}
|
|
|
|
for _, tc := range cases {
|
|
t.Run(tc.desc, func(t *testing.T) {
|
|
if tc.token == validToken {
|
|
tc.session = smqauthn.Session{DomainUserID: domainID + "_" + validID, UserID: validID, DomainID: domainID}
|
|
}
|
|
authCall := auth.On("Authenticate", mock.Anything, tc.token).Return(tc.session, tc.authenticateErr)
|
|
repoCall := svc.On("UpdateConnections", mock.Anything, tc.session, tc.token, mock.Anything, mock.Anything).Return(tc.err)
|
|
req := testRequest{
|
|
client: bs.Client(),
|
|
method: http.MethodPut,
|
|
url: fmt.Sprintf("%s/%s/clients/configs/connections/%s", bs.URL, domainID, tc.id),
|
|
contentType: tc.contentType,
|
|
token: tc.token,
|
|
body: strings.NewReader(tc.req),
|
|
}
|
|
res, err := req.make()
|
|
assert.Nil(t, err, fmt.Sprintf("%s: unexpected error %s", tc.desc, err))
|
|
assert.Equal(t, tc.status, res.StatusCode, fmt.Sprintf("%s: expected status code %d got %d", tc.desc, tc.status, res.StatusCode))
|
|
repoCall.Unset()
|
|
authCall.Unset()
|
|
})
|
|
}
|
|
}
|
|
|
|
func TestList(t *testing.T) {
|
|
configNum := 101
|
|
changedStateNum := 20
|
|
var active, inactive []config
|
|
list := make([]config, configNum)
|
|
|
|
bs, svc, auth := newBootstrapServer()
|
|
defer bs.Close()
|
|
path := fmt.Sprintf("%s/%s/%s", bs.URL, domainID, "clients/configs")
|
|
|
|
c := newConfig()
|
|
|
|
for i := 0; i < configNum; i++ {
|
|
c.ExternalID = strconv.Itoa(i)
|
|
c.ClientSecret = c.ExternalID
|
|
c.Name = fmt.Sprintf("%s-%d", addName, i)
|
|
c.ExternalKey = fmt.Sprintf("%s%s", addExternalKey, strconv.Itoa(i))
|
|
|
|
var channels []channel
|
|
for _, ch := range c.Channels {
|
|
channels = append(channels, channel{ID: ch.ID, Name: ch.Name, Metadata: ch.Metadata})
|
|
}
|
|
s := config{
|
|
ClientID: c.ClientID,
|
|
ClientSecret: c.ClientSecret,
|
|
Channels: channels,
|
|
ExternalID: c.ExternalID,
|
|
ExternalKey: c.ExternalKey,
|
|
Name: c.Name,
|
|
Content: c.Content,
|
|
State: c.State,
|
|
}
|
|
list[i] = s
|
|
}
|
|
// Change state of first 20 elements for filtering tests.
|
|
for i := 0; i < changedStateNum; i++ {
|
|
state := bootstrap.Active
|
|
if i%2 == 0 {
|
|
state = bootstrap.Inactive
|
|
}
|
|
svcCall := svc.On("ChangeState", context.Background(), mock.Anything, mock.Anything, mock.Anything, mock.Anything).Return(nil)
|
|
err := svc.ChangeState(context.Background(), smqauthn.Session{}, validToken, list[i].ClientID, state)
|
|
assert.Nil(t, err, fmt.Sprintf("Changing state expected to succeed: %s.\n", err))
|
|
|
|
svcCall.Unset()
|
|
|
|
list[i].State = state
|
|
if state == bootstrap.Inactive {
|
|
inactive = append(inactive, list[i])
|
|
continue
|
|
}
|
|
active = append(active, list[i])
|
|
}
|
|
|
|
cases := []struct {
|
|
desc string
|
|
token string
|
|
session smqauthn.Session
|
|
url string
|
|
status int
|
|
res configPage
|
|
authenticateErr error
|
|
err error
|
|
}{
|
|
{
|
|
desc: "view list with invalid token",
|
|
token: invalidToken,
|
|
url: fmt.Sprintf("%s?offset=%d&limit=%d", path, 0, 10),
|
|
status: http.StatusUnauthorized,
|
|
res: configPage{},
|
|
authenticateErr: svcerr.ErrAuthentication,
|
|
err: svcerr.ErrAuthentication,
|
|
},
|
|
{
|
|
desc: "view list with an empty token",
|
|
token: "",
|
|
url: fmt.Sprintf("%s?offset=%d&limit=%d", path, 0, 10),
|
|
status: http.StatusUnauthorized,
|
|
res: configPage{},
|
|
err: apiutil.ErrBearerToken,
|
|
},
|
|
{
|
|
desc: "view list",
|
|
token: validToken,
|
|
url: fmt.Sprintf("%s?offset=%d&limit=%d", path, 0, 1),
|
|
status: http.StatusOK,
|
|
res: configPage{
|
|
Total: uint64(len(list)),
|
|
Offset: 0,
|
|
Limit: 1,
|
|
Configs: list[0:1],
|
|
},
|
|
err: nil,
|
|
},
|
|
{
|
|
desc: "view list searching by name",
|
|
token: validToken,
|
|
url: fmt.Sprintf("%s?offset=%d&limit=%d&name=%s", path, 0, 100, "95"),
|
|
status: http.StatusOK,
|
|
res: configPage{
|
|
Total: 1,
|
|
Offset: 0,
|
|
Limit: 100,
|
|
Configs: list[95:96],
|
|
},
|
|
err: nil,
|
|
},
|
|
{
|
|
desc: "view last page",
|
|
token: validToken,
|
|
url: fmt.Sprintf("%s?offset=%d&limit=%d", path, 100, 10),
|
|
status: http.StatusOK,
|
|
res: configPage{
|
|
Total: uint64(len(list)),
|
|
Offset: 100,
|
|
Limit: 10,
|
|
Configs: list[100:],
|
|
},
|
|
err: nil,
|
|
},
|
|
{
|
|
desc: "view with limit greater than allowed",
|
|
token: validToken,
|
|
url: fmt.Sprintf("%s?offset=%d&limit=%d", path, 0, 1000),
|
|
status: http.StatusBadRequest,
|
|
res: configPage{},
|
|
err: apiutil.ErrInvalidQueryParams,
|
|
},
|
|
{
|
|
desc: "view list with no specified limit and offset",
|
|
token: validToken,
|
|
url: path,
|
|
status: http.StatusOK,
|
|
res: configPage{
|
|
Total: uint64(len(list)),
|
|
Offset: 0,
|
|
Limit: 10,
|
|
Configs: list[0:10],
|
|
},
|
|
err: nil,
|
|
},
|
|
{
|
|
desc: "view list with no specified limit",
|
|
token: validToken,
|
|
url: fmt.Sprintf("%s?offset=%d", path, 10),
|
|
status: http.StatusOK,
|
|
res: configPage{
|
|
Total: uint64(len(list)),
|
|
Offset: 10,
|
|
Limit: 10,
|
|
Configs: list[10:20],
|
|
},
|
|
err: nil,
|
|
},
|
|
{
|
|
desc: "view list with no specified offset",
|
|
token: validToken,
|
|
url: fmt.Sprintf("%s?limit=%d", path, 10),
|
|
status: http.StatusOK,
|
|
res: configPage{
|
|
Total: uint64(len(list)),
|
|
Offset: 0,
|
|
Limit: 10,
|
|
Configs: list[0:10],
|
|
},
|
|
err: nil,
|
|
},
|
|
{
|
|
desc: "view list with limit < 0",
|
|
token: validToken,
|
|
url: fmt.Sprintf("%s?limit=%d", path, -10),
|
|
status: http.StatusBadRequest,
|
|
res: configPage{},
|
|
err: apiutil.ErrInvalidQueryParams,
|
|
},
|
|
{
|
|
desc: "view list with offset < 0",
|
|
token: validToken,
|
|
url: fmt.Sprintf("%s?offset=%d", path, -10),
|
|
status: http.StatusBadRequest,
|
|
res: configPage{},
|
|
err: apiutil.ErrInvalidQueryParams,
|
|
},
|
|
{
|
|
desc: "view list with invalid query parameters",
|
|
token: validToken,
|
|
url: fmt.Sprintf("%s?offset=%d&limit=%d&state=%d&key=%%", path, 10, 10, bootstrap.Inactive),
|
|
status: http.StatusBadRequest,
|
|
res: configPage{},
|
|
err: apiutil.ErrInvalidQueryParams,
|
|
},
|
|
{
|
|
desc: "view first 10 active",
|
|
token: validToken,
|
|
url: fmt.Sprintf("%s?offset=%d&limit=%d&state=%d", path, 0, 20, bootstrap.Active),
|
|
status: http.StatusOK,
|
|
res: configPage{
|
|
Total: uint64(len(active)),
|
|
Offset: 0,
|
|
Limit: 20,
|
|
Configs: active,
|
|
},
|
|
err: nil,
|
|
},
|
|
{
|
|
desc: "view first 10 inactive",
|
|
token: validToken,
|
|
url: fmt.Sprintf("%s?offset=%d&limit=%d&state=%d", path, 0, 20, bootstrap.Inactive),
|
|
status: http.StatusOK,
|
|
res: configPage{
|
|
Total: uint64(len(list) - len(inactive)),
|
|
Offset: 0,
|
|
Limit: 20,
|
|
Configs: inactive,
|
|
},
|
|
err: nil,
|
|
},
|
|
{
|
|
desc: "view first 5 active",
|
|
token: validToken,
|
|
url: fmt.Sprintf("%s?offset=%d&limit=%d&state=%d", path, 0, 10, bootstrap.Active),
|
|
status: http.StatusOK,
|
|
res: configPage{
|
|
Total: uint64(len(active)),
|
|
Offset: 0,
|
|
Limit: 10,
|
|
Configs: active[:5],
|
|
},
|
|
err: nil,
|
|
},
|
|
{
|
|
desc: "view last 5 inactive",
|
|
token: validToken,
|
|
url: fmt.Sprintf("%s?offset=%d&limit=%d&state=%d", path, 10, 10, bootstrap.Inactive),
|
|
status: http.StatusOK,
|
|
res: configPage{
|
|
Total: uint64(len(list) - len(active)),
|
|
Offset: 10,
|
|
Limit: 10,
|
|
Configs: inactive[5:],
|
|
},
|
|
err: nil,
|
|
},
|
|
}
|
|
|
|
for _, tc := range cases {
|
|
t.Run(tc.desc, func(t *testing.T) {
|
|
if tc.token == validToken {
|
|
tc.session = smqauthn.Session{DomainUserID: domainID + "_" + validID, UserID: validID, DomainID: domainID}
|
|
}
|
|
authCall := auth.On("Authenticate", mock.Anything, tc.token).Return(tc.session, tc.authenticateErr)
|
|
svcCall := svc.On("List", mock.Anything, mock.Anything, mock.Anything, mock.Anything, mock.Anything).Return(bootstrap.ConfigsPage{Total: tc.res.Total, Offset: tc.res.Offset, Limit: tc.res.Limit}, tc.err)
|
|
req := testRequest{
|
|
client: bs.Client(),
|
|
method: http.MethodGet,
|
|
url: tc.url,
|
|
token: tc.token,
|
|
}
|
|
|
|
res, err := req.make()
|
|
assert.Nil(t, err, fmt.Sprintf("%s: unexpected error %s", tc.desc, err))
|
|
|
|
assert.Equal(t, tc.status, res.StatusCode, fmt.Sprintf("%s: expected status code %d got %d", tc.desc, tc.status, res.StatusCode))
|
|
var body configPage
|
|
|
|
err = json.NewDecoder(res.Body).Decode(&body)
|
|
assert.Nil(t, err, fmt.Sprintf("%s: unexpected error while decoding response body: %s", tc.desc, err))
|
|
assert.Nil(t, err, fmt.Sprintf("%s: unexpected error %s", tc.desc, err))
|
|
|
|
assert.Equal(t, tc.res.Total, body.Total, fmt.Sprintf("%s: expected response total '%d' got '%d'", tc.desc, tc.res.Total, body.Total))
|
|
svcCall.Unset()
|
|
authCall.Unset()
|
|
})
|
|
}
|
|
}
|
|
|
|
func TestRemove(t *testing.T) {
|
|
bs, svc, auth := newBootstrapServer()
|
|
defer bs.Close()
|
|
c := newConfig()
|
|
|
|
cases := []struct {
|
|
desc string
|
|
id string
|
|
token string
|
|
session smqauthn.Session
|
|
status int
|
|
authenticateErr error
|
|
err error
|
|
}{
|
|
{
|
|
desc: "remove with invalid token",
|
|
id: c.ClientID,
|
|
token: invalidToken,
|
|
status: http.StatusUnauthorized,
|
|
authenticateErr: svcerr.ErrAuthentication,
|
|
err: svcerr.ErrAuthentication,
|
|
},
|
|
{
|
|
desc: "remove with an empty token",
|
|
id: c.ClientID,
|
|
token: "",
|
|
status: http.StatusUnauthorized,
|
|
err: apiutil.ErrBearerToken,
|
|
},
|
|
{
|
|
desc: "remove non-existing config",
|
|
id: "non-existing",
|
|
token: validToken,
|
|
status: http.StatusNoContent,
|
|
err: nil,
|
|
},
|
|
{
|
|
desc: "remove config",
|
|
id: c.ClientID,
|
|
token: validToken,
|
|
status: http.StatusNoContent,
|
|
err: nil,
|
|
},
|
|
{
|
|
desc: "remove removed config",
|
|
id: wrongID,
|
|
token: validToken,
|
|
status: http.StatusNoContent,
|
|
err: nil,
|
|
},
|
|
}
|
|
|
|
for _, tc := range cases {
|
|
t.Run(tc.desc, func(t *testing.T) {
|
|
if tc.token == validToken {
|
|
tc.session = smqauthn.Session{DomainUserID: domainID + "_" + validID, UserID: validID, DomainID: domainID}
|
|
}
|
|
authCall := auth.On("Authenticate", mock.Anything, tc.token).Return(tc.session, tc.authenticateErr)
|
|
svcCall := svc.On("Remove", mock.Anything, mock.Anything, mock.Anything).Return(tc.err)
|
|
req := testRequest{
|
|
client: bs.Client(),
|
|
method: http.MethodDelete,
|
|
url: fmt.Sprintf("%s/%s/clients/configs/%s", bs.URL, domainID, tc.id),
|
|
token: tc.token,
|
|
}
|
|
res, err := req.make()
|
|
assert.Nil(t, err, fmt.Sprintf("%s: unexpected error %s", tc.desc, err))
|
|
assert.Equal(t, tc.status, res.StatusCode, fmt.Sprintf("%s: expected status code %d got %d", tc.desc, tc.status, res.StatusCode))
|
|
svcCall.Unset()
|
|
authCall.Unset()
|
|
})
|
|
}
|
|
}
|
|
|
|
func TestBootstrap(t *testing.T) {
|
|
bs, svc, _ := newBootstrapServer()
|
|
defer bs.Close()
|
|
c := newConfig()
|
|
|
|
encExternKey, err := enc([]byte(c.ExternalKey))
|
|
assert.Nil(t, err, fmt.Sprintf("Encrypting config expected to succeed: %s.\n", err))
|
|
|
|
var channels []channel
|
|
for _, ch := range c.Channels {
|
|
channels = append(channels, channel{ID: ch.ID, Name: ch.Name, Metadata: ch.Metadata})
|
|
}
|
|
|
|
s := struct {
|
|
ClientID string `json:"client_id"`
|
|
ClientSecret string `json:"client_secret"`
|
|
Channels []channel `json:"channels"`
|
|
Content string `json:"content"`
|
|
ClientCert string `json:"client_cert"`
|
|
ClientKey string `json:"client_key"`
|
|
CACert string `json:"ca_cert"`
|
|
}{
|
|
ClientID: c.ClientID,
|
|
ClientSecret: c.ClientSecret,
|
|
Channels: channels,
|
|
Content: c.Content,
|
|
ClientCert: c.ClientCert,
|
|
ClientKey: c.ClientKey,
|
|
CACert: c.CACert,
|
|
}
|
|
|
|
data := toJSON(s)
|
|
|
|
cases := []struct {
|
|
desc string
|
|
externalID string
|
|
externalKey string
|
|
status int
|
|
res string
|
|
secure bool
|
|
err error
|
|
}{
|
|
{
|
|
desc: "bootstrap a Client with unknown ID",
|
|
externalID: unknown,
|
|
externalKey: c.ExternalKey,
|
|
status: http.StatusNotFound,
|
|
res: bsErrorRes,
|
|
secure: false,
|
|
err: bootstrap.ErrBootstrap,
|
|
},
|
|
{
|
|
desc: "bootstrap a Client with an empty ID",
|
|
externalID: "",
|
|
externalKey: c.ExternalKey,
|
|
status: http.StatusBadRequest,
|
|
res: missingIDRes,
|
|
secure: false,
|
|
err: errors.Wrap(bootstrap.ErrBootstrap, svcerr.ErrMalformedEntity),
|
|
},
|
|
{
|
|
desc: "bootstrap a Client with unknown key",
|
|
externalID: c.ExternalID,
|
|
externalKey: unknown,
|
|
status: http.StatusForbidden,
|
|
res: extKeyRes,
|
|
secure: false,
|
|
err: errors.Wrap(bootstrap.ErrExternalKey, errors.New("")),
|
|
},
|
|
{
|
|
desc: "bootstrap a Client with an empty key",
|
|
externalID: c.ExternalID,
|
|
externalKey: "",
|
|
status: http.StatusBadRequest,
|
|
res: missingKeyRes,
|
|
secure: false,
|
|
err: errors.Wrap(bootstrap.ErrBootstrap, svcerr.ErrAuthentication),
|
|
},
|
|
{
|
|
desc: "bootstrap known Client",
|
|
externalID: c.ExternalID,
|
|
externalKey: c.ExternalKey,
|
|
status: http.StatusOK,
|
|
res: data,
|
|
secure: false,
|
|
err: nil,
|
|
},
|
|
{
|
|
desc: "bootstrap secure",
|
|
externalID: fmt.Sprintf("secure/%s", c.ExternalID),
|
|
externalKey: hex.EncodeToString(encExternKey),
|
|
status: http.StatusOK,
|
|
res: data,
|
|
secure: true,
|
|
err: nil,
|
|
},
|
|
{
|
|
desc: "bootstrap secure with unencrypted key",
|
|
externalID: fmt.Sprintf("secure/%s", c.ExternalID),
|
|
externalKey: c.ExternalKey,
|
|
status: http.StatusForbidden,
|
|
res: extSecKeyRes,
|
|
secure: true,
|
|
err: bootstrap.ErrExternalKeySecure,
|
|
},
|
|
}
|
|
|
|
for _, tc := range cases {
|
|
t.Run(tc.desc, func(t *testing.T) {
|
|
svcCall := svc.On("Bootstrap", mock.Anything, mock.Anything, mock.Anything, mock.Anything).Return(c, tc.err)
|
|
req := testRequest{
|
|
client: bs.Client(),
|
|
method: http.MethodGet,
|
|
url: fmt.Sprintf("%s/clients/bootstrap/%s", bs.URL, tc.externalID),
|
|
key: tc.externalKey,
|
|
}
|
|
res, err := req.make()
|
|
assert.Nil(t, err, fmt.Sprintf("%s: unexpected error %s", tc.desc, err))
|
|
|
|
assert.Equal(t, tc.status, res.StatusCode, fmt.Sprintf("%s: expected status code %d got %d", tc.desc, tc.status, res.StatusCode))
|
|
body, err := io.ReadAll(res.Body)
|
|
assert.Nil(t, err, fmt.Sprintf("%s: unexpected error %s", tc.desc, err))
|
|
if tc.secure && tc.status == http.StatusOK {
|
|
body, err = dec(body)
|
|
assert.Nil(t, err, fmt.Sprintf("%s: unexpected error while decoding body: %s", tc.desc, err))
|
|
}
|
|
data := strings.Trim(string(body), "\n")
|
|
assert.Equal(t, tc.res, data, fmt.Sprintf("%s: expected response '%s' got '%s'", tc.desc, tc.res, data))
|
|
svcCall.Unset()
|
|
})
|
|
}
|
|
}
|
|
|
|
func TestChangeState(t *testing.T) {
|
|
bs, svc, auth := newBootstrapServer()
|
|
defer bs.Close()
|
|
c := newConfig()
|
|
|
|
inactive := fmt.Sprintf("{\"state\": %d}", bootstrap.Inactive)
|
|
active := fmt.Sprintf("{\"state\": %d}", bootstrap.Active)
|
|
|
|
cases := []struct {
|
|
desc string
|
|
id string
|
|
token string
|
|
session smqauthn.Session
|
|
state string
|
|
contentType string
|
|
status int
|
|
authenticateErr error
|
|
err error
|
|
}{
|
|
{
|
|
desc: "change state with invalid token",
|
|
id: c.ClientID,
|
|
token: invalidToken,
|
|
state: active,
|
|
contentType: contentType,
|
|
status: http.StatusUnauthorized,
|
|
authenticateErr: svcerr.ErrAuthentication,
|
|
err: svcerr.ErrAuthentication,
|
|
},
|
|
{
|
|
desc: "change state with an empty token",
|
|
id: c.ClientID,
|
|
token: "",
|
|
state: active,
|
|
contentType: contentType,
|
|
status: http.StatusUnauthorized,
|
|
err: apiutil.ErrBearerToken,
|
|
},
|
|
{
|
|
desc: "change state with invalid content type",
|
|
id: c.ClientID,
|
|
token: validToken,
|
|
state: active,
|
|
contentType: "",
|
|
status: http.StatusUnsupportedMediaType,
|
|
err: apiutil.ErrUnsupportedContentType,
|
|
},
|
|
{
|
|
desc: "change state to active",
|
|
id: c.ClientID,
|
|
token: validToken,
|
|
state: active,
|
|
contentType: contentType,
|
|
status: http.StatusOK,
|
|
err: nil,
|
|
},
|
|
{
|
|
desc: "change state to inactive",
|
|
id: c.ClientID,
|
|
token: validToken,
|
|
state: inactive,
|
|
contentType: contentType,
|
|
status: http.StatusOK,
|
|
err: nil,
|
|
},
|
|
{
|
|
desc: "change state of non-existing config",
|
|
id: wrongID,
|
|
token: validToken,
|
|
state: active,
|
|
contentType: contentType,
|
|
status: http.StatusNotFound,
|
|
err: svcerr.ErrNotFound,
|
|
},
|
|
{
|
|
desc: "change state to invalid value",
|
|
id: c.ClientID,
|
|
token: validToken,
|
|
state: fmt.Sprintf("{\"state\": %d}", -3),
|
|
contentType: contentType,
|
|
status: http.StatusBadRequest,
|
|
err: svcerr.ErrMalformedEntity,
|
|
},
|
|
{
|
|
desc: "change state with invalid data",
|
|
id: c.ClientID,
|
|
token: validToken,
|
|
state: "",
|
|
contentType: contentType,
|
|
status: http.StatusBadRequest,
|
|
err: svcerr.ErrMalformedEntity,
|
|
},
|
|
}
|
|
|
|
for _, tc := range cases {
|
|
t.Run(tc.desc, func(t *testing.T) {
|
|
if tc.token == validToken {
|
|
tc.session = smqauthn.Session{DomainUserID: domainID + "_" + validID, UserID: validID, DomainID: domainID}
|
|
}
|
|
authCall := auth.On("Authenticate", mock.Anything, tc.token).Return(tc.session, tc.authenticateErr)
|
|
svcCall := svc.On("ChangeState", mock.Anything, tc.session, tc.token, mock.Anything, mock.Anything).Return(tc.err)
|
|
req := testRequest{
|
|
client: bs.Client(),
|
|
method: http.MethodPut,
|
|
url: fmt.Sprintf("%s/%s/clients/state/%s", bs.URL, domainID, tc.id),
|
|
token: tc.token,
|
|
contentType: tc.contentType,
|
|
body: strings.NewReader(tc.state),
|
|
}
|
|
res, err := req.make()
|
|
assert.Nil(t, err, fmt.Sprintf("%s: unexpected error %s", tc.desc, err))
|
|
assert.Equal(t, tc.status, res.StatusCode, fmt.Sprintf("%s: expected status code %d got %d", tc.desc, tc.status, res.StatusCode))
|
|
svcCall.Unset()
|
|
authCall.Unset()
|
|
})
|
|
}
|
|
}
|
|
|
|
type channel struct {
|
|
ID string `json:"id"`
|
|
Name string `json:"name,omitempty"`
|
|
Metadata interface{} `json:"metadata,omitempty"`
|
|
}
|
|
|
|
type config struct {
|
|
ClientID string `json:"client_id,omitempty"`
|
|
ClientSecret string `json:"client_secret,omitempty"`
|
|
Channels []channel `json:"channels,omitempty"`
|
|
ExternalID string `json:"external_id"`
|
|
ExternalKey string `json:"external_key,omitempty"`
|
|
Content string `json:"content,omitempty"`
|
|
Name string `json:"name"`
|
|
State bootstrap.State `json:"state"`
|
|
}
|
|
|
|
type configPage struct {
|
|
Total uint64 `json:"total"`
|
|
Offset uint64 `json:"offset"`
|
|
Limit uint64 `json:"limit"`
|
|
Configs []config `json:"configs"`
|
|
}
|