mirror of
https://github.com/steveiliop56/tinyauth.git
synced 2025-10-28 04:35:40 +00:00
6ec8c9766c
* feat: add ldap support * feat: add insecure option for self-signed certificates * fix: recognize ldap as a username provider * test: fix tests * feat: add configurable search filter * fix: fix error message in ldap search result * refactor: bot suggestions
316 lines
6.6 KiB
Go
316 lines
6.6 KiB
Go
package server_test
|
|
|
|
import (
|
|
"encoding/json"
|
|
"io"
|
|
"net/http"
|
|
"net/http/httptest"
|
|
"reflect"
|
|
"strings"
|
|
"testing"
|
|
"tinyauth/internal/auth"
|
|
"tinyauth/internal/docker"
|
|
"tinyauth/internal/handlers"
|
|
"tinyauth/internal/hooks"
|
|
"tinyauth/internal/providers"
|
|
"tinyauth/internal/server"
|
|
"tinyauth/internal/types"
|
|
|
|
"github.com/magiconair/properties/assert"
|
|
)
|
|
|
|
// Simple server config for tests
|
|
var serverConfig = types.ServerConfig{
|
|
Port: 8080,
|
|
Address: "0.0.0.0",
|
|
}
|
|
|
|
// Simple handlers config for tests
|
|
var handlersConfig = types.HandlersConfig{
|
|
AppURL: "http://localhost:8080",
|
|
Domain: "localhost",
|
|
DisableContinue: false,
|
|
CookieSecure: false,
|
|
Title: "Tinyauth",
|
|
GenericName: "Generic",
|
|
ForgotPasswordMessage: "Some message",
|
|
CsrfCookieName: "tinyauth-csrf",
|
|
RedirectCookieName: "tinyauth-redirect",
|
|
BackgroundImage: "https://example.com/image.png",
|
|
OAuthAutoRedirect: "none",
|
|
}
|
|
|
|
// Simple auth config for tests
|
|
var authConfig = types.AuthConfig{
|
|
Users: types.Users{},
|
|
OauthWhitelist: "",
|
|
HMACSecret: "super-secret-api-thing-for-test1",
|
|
EncryptionSecret: "super-secret-api-thing-for-test2",
|
|
CookieSecure: false,
|
|
SessionExpiry: 3600,
|
|
LoginTimeout: 0,
|
|
LoginMaxRetries: 0,
|
|
SessionCookieName: "tinyauth-session",
|
|
Domain: "localhost",
|
|
}
|
|
|
|
// Simple hooks config for tests
|
|
var hooksConfig = types.HooksConfig{
|
|
Domain: "localhost",
|
|
}
|
|
|
|
// Cookie
|
|
var cookie string
|
|
|
|
// User
|
|
var user = types.User{
|
|
Username: "user",
|
|
Password: "$2a$10$AvGHLTYv3xiRJ0xV9xs3XeVIlkGTygI9nqIamFYB5Xu.5.0UWF7B6", // pass
|
|
}
|
|
|
|
// We need all this to be able to test the server
|
|
func getServer(t *testing.T) *server.Server {
|
|
// Create docker service
|
|
docker, err := docker.NewDocker()
|
|
|
|
if err != nil {
|
|
t.Fatalf("Failed to initialize docker: %v", err)
|
|
}
|
|
|
|
// Create auth service
|
|
authConfig.Users = types.Users{
|
|
{
|
|
Username: user.Username,
|
|
Password: user.Password,
|
|
},
|
|
}
|
|
auth := auth.NewAuth(authConfig, docker, nil)
|
|
|
|
// Create providers service
|
|
providers := providers.NewProviders(types.OAuthConfig{})
|
|
|
|
// Create hooks service
|
|
hooks := hooks.NewHooks(hooksConfig, auth, providers)
|
|
|
|
// Create handlers service
|
|
handlers := handlers.NewHandlers(handlersConfig, auth, hooks, providers, docker)
|
|
|
|
// Create server
|
|
srv, err := server.NewServer(serverConfig, handlers)
|
|
|
|
if err != nil {
|
|
t.Fatalf("Failed to create server: %v", err)
|
|
}
|
|
|
|
// Return the server
|
|
return srv
|
|
}
|
|
|
|
// Test login
|
|
func TestLogin(t *testing.T) {
|
|
t.Log("Testing login")
|
|
|
|
// Get server
|
|
api := getServer(t)
|
|
|
|
// Create recorder
|
|
recorder := httptest.NewRecorder()
|
|
|
|
// Create request
|
|
user := types.LoginRequest{
|
|
Username: "user",
|
|
Password: "pass",
|
|
}
|
|
|
|
json, err := json.Marshal(user)
|
|
|
|
// Check if there was an error
|
|
if err != nil {
|
|
t.Fatalf("Error marshalling json: %v", err)
|
|
}
|
|
|
|
// Create request
|
|
req, err := http.NewRequest("POST", "/api/login", strings.NewReader(string(json)))
|
|
|
|
// Check if there was an error
|
|
if err != nil {
|
|
t.Fatalf("Error creating request: %v", err)
|
|
}
|
|
|
|
// Serve the request
|
|
api.Router.ServeHTTP(recorder, req)
|
|
|
|
// Assert
|
|
assert.Equal(t, recorder.Code, http.StatusOK)
|
|
|
|
// Get the cookie
|
|
cookie = recorder.Result().Cookies()[0].Value
|
|
|
|
// Check if the cookie is set
|
|
if cookie == "" {
|
|
t.Fatalf("Cookie not set")
|
|
}
|
|
}
|
|
|
|
// Test app context
|
|
func TestAppContext(t *testing.T) {
|
|
t.Log("Testing app context")
|
|
|
|
// Get server
|
|
api := getServer(t)
|
|
|
|
// Create recorder
|
|
recorder := httptest.NewRecorder()
|
|
|
|
// Create request
|
|
req, err := http.NewRequest("GET", "/api/app", nil)
|
|
|
|
// Check if there was an error
|
|
if err != nil {
|
|
t.Fatalf("Error creating request: %v", err)
|
|
}
|
|
|
|
// Set the cookie
|
|
req.AddCookie(&http.Cookie{
|
|
Name: "tinyauth",
|
|
Value: cookie,
|
|
})
|
|
|
|
// Serve the request
|
|
api.Router.ServeHTTP(recorder, req)
|
|
|
|
// Assert
|
|
assert.Equal(t, recorder.Code, http.StatusOK)
|
|
|
|
// Read the body of the response
|
|
body, err := io.ReadAll(recorder.Body)
|
|
|
|
// Check if there was an error
|
|
if err != nil {
|
|
t.Fatalf("Error getting body: %v", err)
|
|
}
|
|
|
|
// Unmarshal the body into the user struct
|
|
var app types.AppContext
|
|
|
|
err = json.Unmarshal(body, &app)
|
|
|
|
// Check if there was an error
|
|
if err != nil {
|
|
t.Fatalf("Error unmarshalling body: %v", err)
|
|
}
|
|
|
|
// Create tests values
|
|
expected := types.AppContext{
|
|
Status: 200,
|
|
Message: "OK",
|
|
ConfiguredProviders: []string{"username"},
|
|
DisableContinue: false,
|
|
Title: "Tinyauth",
|
|
GenericName: "Generic",
|
|
ForgotPasswordMessage: "Some message",
|
|
BackgroundImage: "https://example.com/image.png",
|
|
OAuthAutoRedirect: "none",
|
|
Domain: "localhost",
|
|
}
|
|
|
|
// We should get the username back
|
|
if !reflect.DeepEqual(app, expected) {
|
|
t.Fatalf("Expected %v, got %v", expected, app)
|
|
}
|
|
}
|
|
|
|
// Test user context
|
|
func TestUserContext(t *testing.T) {
|
|
t.Log("Testing user context")
|
|
|
|
// Get server
|
|
api := getServer(t)
|
|
|
|
// Create recorder
|
|
recorder := httptest.NewRecorder()
|
|
|
|
// Create request
|
|
req, err := http.NewRequest("GET", "/api/user", nil)
|
|
|
|
// Check if there was an error
|
|
if err != nil {
|
|
t.Fatalf("Error creating request: %v", err)
|
|
}
|
|
|
|
// Set the cookie
|
|
req.AddCookie(&http.Cookie{
|
|
Name: "tinyauth-session",
|
|
Value: cookie,
|
|
})
|
|
|
|
// Serve the request
|
|
api.Router.ServeHTTP(recorder, req)
|
|
|
|
// Assert
|
|
assert.Equal(t, recorder.Code, http.StatusOK)
|
|
|
|
// Read the body of the response
|
|
body, err := io.ReadAll(recorder.Body)
|
|
|
|
// Check if there was an error
|
|
if err != nil {
|
|
t.Fatalf("Error getting body: %v", err)
|
|
}
|
|
|
|
// Unmarshal the body into the user struct
|
|
type User struct {
|
|
Username string `json:"username"`
|
|
}
|
|
|
|
var user User
|
|
|
|
err = json.Unmarshal(body, &user)
|
|
|
|
// Check if there was an error
|
|
if err != nil {
|
|
t.Fatalf("Error unmarshalling body: %v", err)
|
|
}
|
|
|
|
// We should get the username back
|
|
if user.Username != "user" {
|
|
t.Fatalf("Expected user, got %s", user.Username)
|
|
}
|
|
}
|
|
|
|
// Test logout
|
|
func TestLogout(t *testing.T) {
|
|
t.Log("Testing logout")
|
|
|
|
// Get server
|
|
api := getServer(t)
|
|
|
|
// Create recorder
|
|
recorder := httptest.NewRecorder()
|
|
|
|
// Create request
|
|
req, err := http.NewRequest("POST", "/api/logout", nil)
|
|
|
|
// Check if there was an error
|
|
if err != nil {
|
|
t.Fatalf("Error creating request: %v", err)
|
|
}
|
|
|
|
// Set the cookie
|
|
req.AddCookie(&http.Cookie{
|
|
Name: "tinyauth",
|
|
Value: cookie,
|
|
})
|
|
|
|
// Serve the request
|
|
api.Router.ServeHTTP(recorder, req)
|
|
|
|
// Assert
|
|
assert.Equal(t, recorder.Code, http.StatusOK)
|
|
|
|
// Check if the cookie is different (means go sessions flushed it)
|
|
if recorder.Result().Cookies()[0].Value == cookie {
|
|
t.Fatalf("Cookie not flushed")
|
|
}
|
|
}
|