afan
/
gitea
關註 1
收藏 0
複製 0
程式碼 問題管理 0 合併請求 0 版本發佈 0 Wiki Activity
gitea源码
2 Commit
2 分支
目錄樹: f5d5e77162
分支列表 標籤列表
${ item.name }
Create branch ${ searchTerm }
from 'f5d5e77162'
${ noResults }
gitea/services/auth/auth_token_test.go

auth_token_test.go 2.8KB
文件歷史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107 
  1. // Copyright 2023 The Gitea Authors. All rights reserved.

  2. // SPDX-License-Identifier: MIT

  3. 

  4. package auth

  5. 

  6. import (

  7. 	"testing"

  8. 	"time"

  9. 

  10. 	auth_model "code.gitea.io/gitea/models/auth"

  11. 	"code.gitea.io/gitea/models/unittest"

  12. 	"code.gitea.io/gitea/modules/timeutil"

  13. 

  14. 	"github.com/stretchr/testify/assert"

  15. )

  16. 

  17. func TestCheckAuthToken(t *testing.T) {

  18. 	assert.NoError(t, unittest.PrepareTestDatabase())

  19. 

  20. 	t.Run("Empty", func(t *testing.T) {

  21. 		token, err := CheckAuthToken(t.Context(), "")

  22. 		assert.NoError(t, err)

  23. 		assert.Nil(t, token)

  24. 	})

  25. 

  26. 	t.Run("InvalidFormat", func(t *testing.T) {

  27. 		token, err := CheckAuthToken(t.Context(), "dummy")

  28. 		assert.ErrorIs(t, err, ErrAuthTokenInvalidFormat)

  29. 		assert.Nil(t, token)

  30. 	})

  31. 

  32. 	t.Run("NotFound", func(t *testing.T) {

  33. 		token, err := CheckAuthToken(t.Context(), "notexists:dummy")

  34. 		assert.ErrorIs(t, err, ErrAuthTokenExpired)

  35. 		assert.Nil(t, token)

  36. 	})

  37. 

  38. 	t.Run("Expired", func(t *testing.T) {

  39. 		timeutil.MockSet(time.Date(2023, 1, 1, 0, 0, 0, 0, time.UTC))

  40. 

  41. 		at, token, err := CreateAuthTokenForUserID(t.Context(), 2)

  42. 		assert.NoError(t, err)

  43. 		assert.NotNil(t, at)

  44. 		assert.NotEmpty(t, token)

  45. 

  46. 		timeutil.MockUnset()

  47. 

  48. 		at2, err := CheckAuthToken(t.Context(), at.ID+":"+token)

  49. 		assert.ErrorIs(t, err, ErrAuthTokenExpired)

  50. 		assert.Nil(t, at2)

  51. 

  52. 		assert.NoError(t, auth_model.DeleteAuthTokenByID(t.Context(), at.ID))

  53. 	})

  54. 

  55. 	t.Run("InvalidHash", func(t *testing.T) {

  56. 		at, token, err := CreateAuthTokenForUserID(t.Context(), 2)

  57. 		assert.NoError(t, err)

  58. 		assert.NotNil(t, at)

  59. 		assert.NotEmpty(t, token)

  60. 

  61. 		at2, err := CheckAuthToken(t.Context(), at.ID+":"+token+"dummy")

  62. 		assert.ErrorIs(t, err, ErrAuthTokenInvalidHash)

  63. 		assert.Nil(t, at2)

  64. 

  65. 		assert.NoError(t, auth_model.DeleteAuthTokenByID(t.Context(), at.ID))

  66. 	})

  67. 

  68. 	t.Run("Valid", func(t *testing.T) {

  69. 		at, token, err := CreateAuthTokenForUserID(t.Context(), 2)

  70. 		assert.NoError(t, err)

  71. 		assert.NotNil(t, at)

  72. 		assert.NotEmpty(t, token)

  73. 

  74. 		at2, err := CheckAuthToken(t.Context(), at.ID+":"+token)

  75. 		assert.NoError(t, err)

  76. 		assert.NotNil(t, at2)

  77. 

  78. 		assert.NoError(t, auth_model.DeleteAuthTokenByID(t.Context(), at.ID))

  79. 	})

  80. }

  81. 

  82. func TestRegenerateAuthToken(t *testing.T) {

  83. 	assert.NoError(t, unittest.PrepareTestDatabase())

  84. 

  85. 	timeutil.MockSet(time.Date(2023, 1, 1, 0, 0, 0, 0, time.UTC))

  86. 	defer timeutil.MockUnset()

  87. 

  88. 	at, token, err := CreateAuthTokenForUserID(t.Context(), 2)

  89. 	assert.NoError(t, err)

  90. 	assert.NotNil(t, at)

  91. 	assert.NotEmpty(t, token)

  92. 

  93. 	timeutil.MockSet(time.Date(2023, 1, 1, 0, 0, 1, 0, time.UTC))

  94. 

  95. 	at2, token2, err := RegenerateAuthToken(t.Context(), at)

  96. 	assert.NoError(t, err)

  97. 	assert.NotNil(t, at2)

  98. 	assert.NotEmpty(t, token2)

  99. 

  100. 	assert.Equal(t, at.ID, at2.ID)

  101. 	assert.Equal(t, at.UserID, at2.UserID)

  102. 	assert.NotEqual(t, token, token2)

  103. 	assert.NotEqual(t, at.ExpiresUnix, at2.ExpiresUnix)

  104. 

  105. 	assert.NoError(t, auth_model.DeleteAuthTokenByID(t.Context(), at.ID))

  106. }