mirror of
https://github.com/steveiliop56/tinyauth.git
synced 2025-10-29 21:25:43 +00:00
a9e8bf89a9
* refactor: return all values from body in the providers * refactor: only accept claims following the OIDC spec * feat: map info from OIDC claims to headers * feat: add support for required oauth groups * fix: bot suggestions * feat: get claims from github and google * fix: close body correctly
532 lines
12 KiB
Go
532 lines
12 KiB
Go
package utils_test
|
|
|
|
import (
|
|
"fmt"
|
|
"os"
|
|
"reflect"
|
|
"testing"
|
|
"tinyauth/internal/types"
|
|
"tinyauth/internal/utils"
|
|
)
|
|
|
|
// Test the parse users function
|
|
func TestParseUsers(t *testing.T) {
|
|
t.Log("Testing parse users with a valid string")
|
|
|
|
// Test the parse users function with a valid string
|
|
users := "user1:pass1,user2:pass2"
|
|
expected := types.Users{
|
|
{
|
|
Username: "user1",
|
|
Password: "pass1",
|
|
},
|
|
{
|
|
Username: "user2",
|
|
Password: "pass2",
|
|
},
|
|
}
|
|
|
|
result, err := utils.ParseUsers(users)
|
|
|
|
// Check if there was an error
|
|
if err != nil {
|
|
t.Fatalf("Error parsing users: %v", err)
|
|
}
|
|
|
|
// Check if the result is equal to the expected
|
|
if !reflect.DeepEqual(expected, result) {
|
|
t.Fatalf("Expected %v, got %v", expected, result)
|
|
}
|
|
}
|
|
|
|
// Test the get upper domain function
|
|
func TestGetUpperDomain(t *testing.T) {
|
|
t.Log("Testing get upper domain with a valid url")
|
|
|
|
// Test the get upper domain function with a valid url
|
|
url := "https://sub1.sub2.domain.com:8080"
|
|
expected := "sub2.domain.com"
|
|
|
|
result, err := utils.GetUpperDomain(url)
|
|
|
|
// Check if there was an error
|
|
if err != nil {
|
|
t.Fatalf("Error getting root url: %v", err)
|
|
}
|
|
|
|
// Check if the result is equal to the expected
|
|
if expected != result {
|
|
t.Fatalf("Expected %v, got %v", expected, result)
|
|
}
|
|
}
|
|
|
|
// Test the read file function
|
|
func TestReadFile(t *testing.T) {
|
|
t.Log("Creating a test file")
|
|
|
|
// Create a test file
|
|
err := os.WriteFile("/tmp/test.txt", []byte("test"), 0644)
|
|
|
|
// Check if there was an error
|
|
if err != nil {
|
|
t.Fatalf("Error creating test file: %v", err)
|
|
}
|
|
|
|
// Test the read file function
|
|
t.Log("Testing read file with a valid file")
|
|
|
|
data, err := utils.ReadFile("/tmp/test.txt")
|
|
|
|
// Check if there was an error
|
|
if err != nil {
|
|
t.Fatalf("Error reading file: %v", err)
|
|
}
|
|
|
|
// Check if the data is equal to the expected
|
|
if data != "test" {
|
|
t.Fatalf("Expected test, got %v", data)
|
|
}
|
|
|
|
// Cleanup the test file
|
|
t.Log("Cleaning up test file")
|
|
|
|
err = os.Remove("/tmp/test.txt")
|
|
|
|
// Check if there was an error
|
|
if err != nil {
|
|
t.Fatalf("Error cleaning up test file: %v", err)
|
|
}
|
|
}
|
|
|
|
// Test the parse file to line function
|
|
func TestParseFileToLine(t *testing.T) {
|
|
t.Log("Testing parse file to line with a valid string")
|
|
|
|
// Test the parse file to line function with a valid string
|
|
content := "\nuser1:pass1\nuser2:pass2\n"
|
|
expected := "user1:pass1,user2:pass2"
|
|
|
|
result := utils.ParseFileToLine(content)
|
|
|
|
// Check if the result is equal to the expected
|
|
if expected != result {
|
|
t.Fatalf("Expected %v, got %v", expected, result)
|
|
}
|
|
}
|
|
|
|
// Test the get secret function
|
|
func TestGetSecret(t *testing.T) {
|
|
t.Log("Testing get secret with an empty config and file")
|
|
|
|
// Test the get secret function with an empty config and file
|
|
conf := ""
|
|
file := "/tmp/test.txt"
|
|
expected := "test"
|
|
|
|
// Create file
|
|
err := os.WriteFile(file, []byte(fmt.Sprintf("\n\n \n\n\n %s \n\n \n ", expected)), 0644)
|
|
|
|
// Check if there was an error
|
|
if err != nil {
|
|
t.Fatalf("Error creating test file: %v", err)
|
|
}
|
|
|
|
// Test
|
|
result := utils.GetSecret(conf, file)
|
|
|
|
// Check if the result is equal to the expected
|
|
if result != expected {
|
|
t.Fatalf("Expected %v, got %v", expected, result)
|
|
}
|
|
|
|
t.Log("Testing get secret with an empty file and a valid config")
|
|
|
|
// Test the get secret function with an empty file and a valid config
|
|
result = utils.GetSecret(expected, "")
|
|
|
|
// Check if the result is equal to the expected
|
|
if result != expected {
|
|
t.Fatalf("Expected %v, got %v", expected, result)
|
|
}
|
|
|
|
t.Log("Testing get secret with both a valid config and file")
|
|
|
|
// Test the get secret function with both a valid config and file
|
|
result = utils.GetSecret(expected, file)
|
|
|
|
// Check if the result is equal to the expected
|
|
if result != expected {
|
|
t.Fatalf("Expected %v, got %v", expected, result)
|
|
}
|
|
|
|
// Cleanup the test file
|
|
t.Log("Cleaning up test file")
|
|
|
|
err = os.Remove(file)
|
|
|
|
// Check if there was an error
|
|
if err != nil {
|
|
t.Fatalf("Error cleaning up test file: %v", err)
|
|
}
|
|
}
|
|
|
|
// Test the get users function
|
|
func TestGetUsers(t *testing.T) {
|
|
t.Log("Testing get users with a config and no file")
|
|
|
|
// Test the get users function with a config and no file
|
|
conf := "user1:pass1,user2:pass2"
|
|
file := ""
|
|
expected := types.Users{
|
|
{
|
|
Username: "user1",
|
|
Password: "pass1",
|
|
},
|
|
{
|
|
Username: "user2",
|
|
Password: "pass2",
|
|
},
|
|
}
|
|
|
|
result, err := utils.GetUsers(conf, file)
|
|
|
|
// Check if there was an error
|
|
if err != nil {
|
|
t.Fatalf("Error getting users: %v", err)
|
|
}
|
|
|
|
// Check if the result is equal to the expected
|
|
if !reflect.DeepEqual(expected, result) {
|
|
t.Fatalf("Expected %v, got %v", expected, result)
|
|
}
|
|
|
|
t.Log("Testing get users with a file and no config")
|
|
|
|
// Test the get users function with a file and no config
|
|
conf = ""
|
|
file = "/tmp/test.txt"
|
|
expected = types.Users{
|
|
{
|
|
Username: "user1",
|
|
Password: "pass1",
|
|
},
|
|
{
|
|
Username: "user2",
|
|
Password: "pass2",
|
|
},
|
|
}
|
|
|
|
// Create file
|
|
err = os.WriteFile(file, []byte("user1:pass1\nuser2:pass2"), 0644)
|
|
|
|
// Check if there was an error
|
|
if err != nil {
|
|
t.Fatalf("Error creating test file: %v", err)
|
|
}
|
|
|
|
// Test
|
|
result, err = utils.GetUsers(conf, file)
|
|
|
|
// Check if there was an error
|
|
if err != nil {
|
|
t.Fatalf("Error getting users: %v", err)
|
|
}
|
|
|
|
// Check if the result is equal to the expected
|
|
if !reflect.DeepEqual(expected, result) {
|
|
t.Fatalf("Expected %v, got %v", expected, result)
|
|
}
|
|
|
|
// Test the get users function with both a config and file
|
|
t.Log("Testing get users with both a config and file")
|
|
|
|
conf = "user3:pass3"
|
|
expected = types.Users{
|
|
{
|
|
Username: "user3",
|
|
Password: "pass3",
|
|
},
|
|
{
|
|
Username: "user1",
|
|
Password: "pass1",
|
|
},
|
|
{
|
|
Username: "user2",
|
|
Password: "pass2",
|
|
},
|
|
}
|
|
|
|
result, err = utils.GetUsers(conf, file)
|
|
|
|
// Check if there was an error
|
|
if err != nil {
|
|
t.Fatalf("Error getting users: %v", err)
|
|
}
|
|
|
|
// Check if the result is equal to the expected
|
|
if !reflect.DeepEqual(expected, result) {
|
|
t.Fatalf("Expected %v, got %v", expected, result)
|
|
}
|
|
|
|
// Cleanup the test file
|
|
t.Log("Cleaning up test file")
|
|
|
|
err = os.Remove(file)
|
|
|
|
// Check if there was an error
|
|
if err != nil {
|
|
t.Fatalf("Error cleaning up test file: %v", err)
|
|
}
|
|
}
|
|
|
|
// Test the tinyauth labels function
|
|
func TestGetTinyauthLabels(t *testing.T) {
|
|
t.Log("Testing get tinyauth labels with a valid map")
|
|
|
|
// Test the get tinyauth labels function with a valid map
|
|
labels := map[string]string{
|
|
"tinyauth.users": "user1,user2",
|
|
"tinyauth.oauth.whitelist": "/regex/",
|
|
"tinyauth.allowed": "random",
|
|
"random": "random",
|
|
"tinyauth.headers": "X-Header=value",
|
|
}
|
|
|
|
expected := types.TinyauthLabels{
|
|
Users: "user1,user2",
|
|
OAuthWhitelist: "/regex/",
|
|
Allowed: "random",
|
|
Headers: map[string]string{
|
|
"X-Header": "value",
|
|
},
|
|
}
|
|
|
|
result := utils.GetTinyauthLabels(labels)
|
|
|
|
// Check if the result is equal to the expected
|
|
if !reflect.DeepEqual(expected, result) {
|
|
t.Fatalf("Expected %v, got %v", expected, result)
|
|
}
|
|
}
|
|
|
|
// Test the filter function
|
|
func TestFilter(t *testing.T) {
|
|
t.Log("Testing filter helper")
|
|
|
|
// Create variables
|
|
data := []string{"", "val1", "", "val2", "", "val3", ""}
|
|
expected := []string{"val1", "val2", "val3"}
|
|
|
|
// Test the filter function
|
|
result := utils.Filter(data, func(val string) bool {
|
|
return val != ""
|
|
})
|
|
|
|
// Check if the result is equal to the expected
|
|
if !reflect.DeepEqual(expected, result) {
|
|
t.Fatalf("Expected %v, got %v", expected, result)
|
|
}
|
|
}
|
|
|
|
// Test parse user
|
|
func TestParseUser(t *testing.T) {
|
|
t.Log("Testing parse user with a valid user")
|
|
|
|
// Create variables
|
|
user := "user:pass:secret"
|
|
expected := types.User{
|
|
Username: "user",
|
|
Password: "pass",
|
|
TotpSecret: "secret",
|
|
}
|
|
|
|
// Test the parse user function
|
|
result, err := utils.ParseUser(user)
|
|
|
|
// Check if there was an error
|
|
if err != nil {
|
|
t.Fatalf("Error parsing user: %v", err)
|
|
}
|
|
|
|
// Check if the result is equal to the expected
|
|
if !reflect.DeepEqual(expected, result) {
|
|
t.Fatalf("Expected %v, got %v", expected, result)
|
|
}
|
|
|
|
t.Log("Testing parse user with an escaped user")
|
|
|
|
// Create variables
|
|
user = "user:p$$ass$$:secret"
|
|
expected = types.User{
|
|
Username: "user",
|
|
Password: "p$ass$",
|
|
TotpSecret: "secret",
|
|
}
|
|
|
|
// Test the parse user function
|
|
result, err = utils.ParseUser(user)
|
|
|
|
// Check if there was an error
|
|
if err != nil {
|
|
t.Fatalf("Error parsing user: %v", err)
|
|
}
|
|
|
|
// Check if the result is equal to the expected
|
|
if !reflect.DeepEqual(expected, result) {
|
|
t.Fatalf("Expected %v, got %v", expected, result)
|
|
}
|
|
|
|
t.Log("Testing parse user with an invalid user")
|
|
|
|
// Create variables
|
|
user = "user::pass"
|
|
|
|
// Test the parse user function
|
|
_, err = utils.ParseUser(user)
|
|
|
|
// Check if there was an error
|
|
if err == nil {
|
|
t.Fatalf("Expected error parsing user")
|
|
}
|
|
}
|
|
|
|
// Test the whitelist function
|
|
func TestCheckWhitelist(t *testing.T) {
|
|
t.Log("Testing check whitelist with a comma whitelist")
|
|
|
|
// Create variables
|
|
whitelist := "user1,user2,user3"
|
|
str := "user1"
|
|
expected := true
|
|
|
|
// Test the check whitelist function
|
|
result := utils.CheckWhitelist(whitelist, str)
|
|
|
|
// Check if the result is equal to the expected
|
|
if result != expected {
|
|
t.Fatalf("Expected %v, got %v", expected, result)
|
|
}
|
|
|
|
t.Log("Testing check whitelist with a regex whitelist")
|
|
|
|
// Create variables
|
|
whitelist = "/^user[0-9]+$/"
|
|
str = "user1"
|
|
expected = true
|
|
|
|
// Test the check whitelist function
|
|
result = utils.CheckWhitelist(whitelist, str)
|
|
|
|
// Check if the result is equal to the expected
|
|
if result != expected {
|
|
t.Fatalf("Expected %v, got %v", expected, result)
|
|
}
|
|
|
|
t.Log("Testing check whitelist with an empty whitelist")
|
|
|
|
// Create variables
|
|
whitelist = ""
|
|
str = "user1"
|
|
expected = true
|
|
|
|
// Test the check whitelist function
|
|
result = utils.CheckWhitelist(whitelist, str)
|
|
|
|
// Check if the result is equal to the expected
|
|
if result != expected {
|
|
t.Fatalf("Expected %v, got %v", expected, result)
|
|
}
|
|
|
|
t.Log("Testing check whitelist with an invalid regex whitelist")
|
|
|
|
// Create variables
|
|
whitelist = "/^user[0-9+$/"
|
|
str = "user1"
|
|
expected = false
|
|
|
|
// Test the check whitelist function
|
|
result = utils.CheckWhitelist(whitelist, str)
|
|
|
|
// Check if the result is equal to the expected
|
|
if result != expected {
|
|
t.Fatalf("Expected %v, got %v", expected, result)
|
|
}
|
|
|
|
t.Log("Testing check whitelist with a non matching whitelist")
|
|
|
|
// Create variables
|
|
whitelist = "user1,user2,user3"
|
|
str = "user4"
|
|
expected = false
|
|
|
|
// Test the check whitelist function
|
|
result = utils.CheckWhitelist(whitelist, str)
|
|
|
|
// Check if the result is equal to the expected
|
|
if result != expected {
|
|
t.Fatalf("Expected %v, got %v", expected, result)
|
|
}
|
|
}
|
|
|
|
// Test capitalize
|
|
func TestCapitalize(t *testing.T) {
|
|
t.Log("Testing capitalize with a valid string")
|
|
|
|
// Create variables
|
|
str := "test"
|
|
expected := "Test"
|
|
|
|
// Test the capitalize function
|
|
result := utils.Capitalize(str)
|
|
|
|
// Check if the result is equal to the expected
|
|
if result != expected {
|
|
t.Fatalf("Expected %v, got %v", expected, result)
|
|
}
|
|
|
|
t.Log("Testing capitalize with an empty string")
|
|
|
|
// Create variables
|
|
str = ""
|
|
expected = ""
|
|
|
|
// Test the capitalize function
|
|
result = utils.Capitalize(str)
|
|
|
|
// Check if the result is equal to the expected
|
|
if result != expected {
|
|
t.Fatalf("Expected %v, got %v", expected, result)
|
|
}
|
|
}
|
|
|
|
// Test the header sanitizer
|
|
func TestSanitizeHeader(t *testing.T) {
|
|
t.Log("Testing sanitize header with a valid string")
|
|
|
|
// Create variables
|
|
str := "X-Header=value"
|
|
expected := "X-Header=value"
|
|
|
|
// Test the sanitize header function
|
|
result := utils.SanitizeHeader(str)
|
|
|
|
// Check if the result is equal to the expected
|
|
if result != expected {
|
|
t.Fatalf("Expected %v, got %v", expected, result)
|
|
}
|
|
|
|
t.Log("Testing sanitize header with an invalid string")
|
|
|
|
// Create variables
|
|
str = "X-Header=val\nue"
|
|
expected = "X-Header=value"
|
|
|
|
// Test the sanitize header function
|
|
result = utils.SanitizeHeader(str)
|
|
|
|
// Check if the result is equal to the expected
|
|
if result != expected {
|
|
t.Fatalf("Expected %v, got %v", expected, result)
|
|
}
|
|
}
|