2016-12-29 01:03:40 +00:00
|
|
|
// Copyright 2016 The Gitea Authors. All rights reserved.
|
|
|
|
// Use of this source code is governed by a MIT-style
|
|
|
|
// license that can be found in the LICENSE file.
|
|
|
|
|
|
|
|
package models
|
|
|
|
|
|
|
|
import (
|
|
|
|
"testing"
|
|
|
|
|
|
|
|
"github.com/stretchr/testify/assert"
|
|
|
|
)
|
|
|
|
|
|
|
|
func TestNewAccessToken(t *testing.T) {
|
|
|
|
assert.NoError(t, PrepareTestDatabase())
|
|
|
|
token := &AccessToken{
|
|
|
|
UID: 3,
|
|
|
|
Name: "Token C",
|
|
|
|
}
|
|
|
|
assert.NoError(t, NewAccessToken(token))
|
2017-01-25 02:49:51 +00:00
|
|
|
AssertExistsAndLoadBean(t, token)
|
2016-12-29 01:03:40 +00:00
|
|
|
|
|
|
|
invalidToken := &AccessToken{
|
|
|
|
ID: token.ID, // duplicate
|
|
|
|
UID: 2,
|
|
|
|
Name: "Token F",
|
|
|
|
}
|
|
|
|
assert.Error(t, NewAccessToken(invalidToken))
|
|
|
|
}
|
|
|
|
|
2020-04-13 19:02:48 +00:00
|
|
|
func TestAccessTokenByNameExists(t *testing.T) {
|
|
|
|
|
|
|
|
name := "Token Gitea"
|
|
|
|
|
|
|
|
assert.NoError(t, PrepareTestDatabase())
|
|
|
|
token := &AccessToken{
|
|
|
|
UID: 3,
|
|
|
|
Name: name,
|
|
|
|
}
|
|
|
|
|
|
|
|
// Check to make sure it doesn't exists already
|
|
|
|
exist, err := AccessTokenByNameExists(token)
|
|
|
|
assert.NoError(t, err)
|
|
|
|
assert.False(t, exist)
|
|
|
|
|
|
|
|
// Save it to the database
|
|
|
|
assert.NoError(t, NewAccessToken(token))
|
|
|
|
AssertExistsAndLoadBean(t, token)
|
|
|
|
|
|
|
|
// This token must be found by name in the DB now
|
|
|
|
exist, err = AccessTokenByNameExists(token)
|
|
|
|
assert.NoError(t, err)
|
|
|
|
assert.True(t, exist)
|
|
|
|
|
|
|
|
user4Token := &AccessToken{
|
|
|
|
UID: 4,
|
|
|
|
Name: name,
|
|
|
|
}
|
|
|
|
|
|
|
|
// Name matches but different user ID, this shouldn't exists in the
|
|
|
|
// database
|
|
|
|
exist, err = AccessTokenByNameExists(user4Token)
|
|
|
|
assert.NoError(t, err)
|
|
|
|
assert.False(t, exist)
|
|
|
|
}
|
|
|
|
|
2016-12-29 01:03:40 +00:00
|
|
|
func TestGetAccessTokenBySHA(t *testing.T) {
|
|
|
|
assert.NoError(t, PrepareTestDatabase())
|
2019-05-04 15:45:34 +00:00
|
|
|
token, err := GetAccessTokenBySHA("d2c6c1ba3890b309189a8e618c72a162e4efbf36")
|
2016-12-29 01:03:40 +00:00
|
|
|
assert.NoError(t, err)
|
|
|
|
assert.Equal(t, int64(1), token.UID)
|
|
|
|
assert.Equal(t, "Token A", token.Name)
|
2019-05-04 15:45:34 +00:00
|
|
|
assert.Equal(t, "2b3668e11cb82d3af8c6e4524fc7841297668f5008d1626f0ad3417e9fa39af84c268248b78c481daa7e5dc437784003494f", token.TokenHash)
|
|
|
|
assert.Equal(t, "e4efbf36", token.TokenLastEight)
|
2016-12-29 01:03:40 +00:00
|
|
|
|
2019-06-12 19:41:28 +00:00
|
|
|
_, err = GetAccessTokenBySHA("notahash")
|
2016-12-29 01:03:40 +00:00
|
|
|
assert.Error(t, err)
|
|
|
|
assert.True(t, IsErrAccessTokenNotExist(err))
|
|
|
|
|
2019-06-12 19:41:28 +00:00
|
|
|
_, err = GetAccessTokenBySHA("")
|
2016-12-29 01:03:40 +00:00
|
|
|
assert.Error(t, err)
|
|
|
|
assert.True(t, IsErrAccessTokenEmpty(err))
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestListAccessTokens(t *testing.T) {
|
|
|
|
assert.NoError(t, PrepareTestDatabase())
|
2020-08-28 08:09:33 +00:00
|
|
|
tokens, err := ListAccessTokens(ListAccessTokensOptions{UserID: 1})
|
2016-12-29 01:03:40 +00:00
|
|
|
assert.NoError(t, err)
|
2017-08-28 09:17:45 +00:00
|
|
|
if assert.Len(t, tokens, 2) {
|
|
|
|
assert.Equal(t, int64(1), tokens[0].UID)
|
|
|
|
assert.Equal(t, int64(1), tokens[1].UID)
|
|
|
|
assert.Contains(t, []string{tokens[0].Name, tokens[1].Name}, "Token A")
|
|
|
|
assert.Contains(t, []string{tokens[0].Name, tokens[1].Name}, "Token B")
|
|
|
|
}
|
2016-12-29 01:03:40 +00:00
|
|
|
|
2020-08-28 08:09:33 +00:00
|
|
|
tokens, err = ListAccessTokens(ListAccessTokensOptions{UserID: 2})
|
2016-12-29 01:03:40 +00:00
|
|
|
assert.NoError(t, err)
|
2017-08-28 09:17:45 +00:00
|
|
|
if assert.Len(t, tokens, 1) {
|
|
|
|
assert.Equal(t, int64(2), tokens[0].UID)
|
|
|
|
assert.Equal(t, "Token A", tokens[0].Name)
|
|
|
|
}
|
2016-12-29 01:03:40 +00:00
|
|
|
|
2020-08-28 08:09:33 +00:00
|
|
|
tokens, err = ListAccessTokens(ListAccessTokensOptions{UserID: 100})
|
2016-12-29 01:03:40 +00:00
|
|
|
assert.NoError(t, err)
|
|
|
|
assert.Empty(t, tokens)
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestUpdateAccessToken(t *testing.T) {
|
|
|
|
assert.NoError(t, PrepareTestDatabase())
|
2019-05-04 15:45:34 +00:00
|
|
|
token, err := GetAccessTokenBySHA("4c6f36e6cf498e2a448662f915d932c09c5a146c")
|
2016-12-29 01:03:40 +00:00
|
|
|
assert.NoError(t, err)
|
|
|
|
token.Name = "Token Z"
|
|
|
|
|
|
|
|
assert.NoError(t, UpdateAccessToken(token))
|
2017-01-25 02:49:51 +00:00
|
|
|
AssertExistsAndLoadBean(t, token)
|
2016-12-29 01:03:40 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
func TestDeleteAccessTokenByID(t *testing.T) {
|
|
|
|
assert.NoError(t, PrepareTestDatabase())
|
|
|
|
|
2019-05-04 15:45:34 +00:00
|
|
|
token, err := GetAccessTokenBySHA("4c6f36e6cf498e2a448662f915d932c09c5a146c")
|
2016-12-29 01:03:40 +00:00
|
|
|
assert.NoError(t, err)
|
|
|
|
assert.Equal(t, int64(1), token.UID)
|
|
|
|
|
|
|
|
assert.NoError(t, DeleteAccessTokenByID(token.ID, 1))
|
2017-01-25 02:49:51 +00:00
|
|
|
AssertNotExistsBean(t, token)
|
2016-12-29 01:03:40 +00:00
|
|
|
|
|
|
|
err = DeleteAccessTokenByID(100, 100)
|
|
|
|
assert.Error(t, err)
|
|
|
|
assert.True(t, IsErrAccessTokenNotExist(err))
|
|
|
|
}
|