dave/app/security_test.go

269 lines
5 KiB
Go
Raw Normal View History

2018-05-23 21:40:43 +02:00
package app
import (
2018-05-24 21:37:42 +02:00
"context"
"golang.org/x/net/webdav"
"net/http"
"net/http/httptest"
2018-05-23 21:40:43 +02:00
"reflect"
"testing"
)
func TestAuthenticate(t *testing.T) {
type args struct {
config *Config
username string
password string
}
tests := []struct {
name string
args args
want *AuthInfo
wantErr bool
}{
{
"empty username",
args{
2018-06-17 14:27:40 +02:00
config: &Config{Users: map[string]*UserInfo{
"foo": {
Password: GenHash([]byte("password")),
},
}},
2018-05-23 21:40:43 +02:00
username: "",
password: "password",
},
&AuthInfo{
Username: "",
Authenticated: false,
},
true,
},
{
"empty password",
args{
2018-06-17 14:27:40 +02:00
config: &Config{Users: map[string]*UserInfo{
"foo": {
Password: GenHash([]byte("password")),
},
}},
2018-05-23 21:40:43 +02:00
username: "foo",
password: "",
},
&AuthInfo{
Username: "foo",
Authenticated: false,
},
true,
},
2018-06-17 14:27:40 +02:00
{
"empty username without users",
args{
config: &Config{},
username: "",
password: "password",
},
&AuthInfo{
Username: "",
Authenticated: false,
},
false,
},
{
"empty password without users",
args{
config: &Config{},
username: "foo",
password: "",
},
&AuthInfo{
Username: "",
Authenticated: false,
},
false,
},
2018-05-23 21:40:43 +02:00
{
"user not found",
args{
config: &Config{Users: map[string]*UserInfo{
"bar": nil,
}},
username: "foo",
password: "password",
},
&AuthInfo{
Username: "foo",
Authenticated: false,
},
true,
},
{
"password doesn't match",
args{
config: &Config{Users: map[string]*UserInfo{
"foo": {
Password: GenHash([]byte("not-my-password")),
},
}},
username: "foo",
password: "password",
},
&AuthInfo{
Username: "foo",
Authenticated: false,
},
true,
},
{
"all fine",
args{
config: &Config{Users: map[string]*UserInfo{
"foo": {
Password: GenHash([]byte("password")),
},
}},
username: "foo",
password: "password",
},
&AuthInfo{
Username: "foo",
Authenticated: true,
},
false,
},
}
for _, tt := range tests {
t.Run(tt.name, func(t *testing.T) {
got, err := authenticate(tt.args.config, tt.args.username, tt.args.password)
if (err != nil) != tt.wantErr {
t.Errorf("authenticate() name = %v, error = %v, wantErr %v", tt.name, err, tt.wantErr)
return
}
if !reflect.DeepEqual(got, tt.want) {
t.Errorf("authenticate() name = %v, got = %v, want %v", tt.name, got, tt.want)
}
})
}
}
2018-05-24 21:37:42 +02:00
func TestAuthFromContext(t *testing.T) {
type fakeKey int
var fakeKeyValue fakeKey
baseCtx := context.Background()
type args struct {
ctx context.Context
}
tests := []struct {
name string
args args
want *AuthInfo
}{
{
"success",
args{
ctx: context.WithValue(baseCtx, authInfoKey, &AuthInfo{"username", true}),
},
&AuthInfo{"username", true},
},
{
"failure",
args{
ctx: context.WithValue(baseCtx, fakeKeyValue, &AuthInfo{"username", true}),
},
nil,
},
}
for _, tt := range tests {
t.Run(tt.name, func(t *testing.T) {
if got := AuthFromContext(tt.args.ctx); !reflect.DeepEqual(got, tt.want) {
t.Errorf("AuthFromContext() = %v, want %v", got, tt.want)
}
})
}
}
func TestHandle(t *testing.T) {
type args struct {
ctx context.Context
w *httptest.ResponseRecorder
r *http.Request
username []byte
password []byte
a *App
}
tests := []struct {
name string
args args
statusCode int
}{
{
"basic auth error",
args{
context.Background(),
httptest.NewRecorder(),
httptest.NewRequest("PROPFIND", "/", nil),
nil,
nil,
&App{Config: &Config{Users: map[string]*UserInfo{
"foo": {
Password: GenHash([]byte("password")),
},
}}},
},
401,
},
{
"unauthorized error",
args{
context.Background(),
httptest.NewRecorder(),
httptest.NewRequest("PROPFIND", "/", nil),
[]byte("u"),
[]byte("p"),
&App{Config: &Config{Users: map[string]*UserInfo{
"foo": {
Password: GenHash([]byte("password")),
},
}}},
},
401,
},
{
"ok",
args{
context.Background(),
httptest.NewRecorder(),
httptest.NewRequest("PROPFIND", "/", nil),
[]byte("foo"),
[]byte("password"),
&App{
Config: &Config{Users: map[string]*UserInfo{
"foo": {
Password: GenHash([]byte("password")),
},
}},
Handler: &webdav.Handler{
FileSystem: webdav.NewMemFS(),
LockSystem: webdav.NewMemLS(),
},
},
},
207,
},
}
for _, tt := range tests {
t.Run(tt.name, func(t *testing.T) {
if tt.args.username != nil || tt.args.password != nil {
tt.args.r.SetBasicAuth(string(tt.args.username), string(tt.args.password))
}
handle(tt.args.ctx, tt.args.w, tt.args.r, tt.args.a)
resp := tt.args.w.Result()
if resp.StatusCode != tt.statusCode {
t.Errorf("TestHandle() = %v, want %v", resp.StatusCode, tt.statusCode)
}
})
}
}