jro_apps/redmine Files · test/integration/http_basic_login_with_api_token_test.rb

Added an Admin setting to enable/disable the REST web service. (#3920)...

Added an Admin setting to enable/disable the REST web service. (#3920) git-svn-id: svn+ssh://rubyforge.org/var/svn/redmine/trunk@3220 e93f8b46-1217-0410-a6f0-8f06a7374b81

Eric Davis - - Load All Authors

File last commit:

r3106:bfcd5039f288


                r3106:bfcd5039f288

Download file

             http_basic_login_with_api_token_test.rb
        
                    84 lines
            
             | 2.8 KiB
            
                | text/x-ruby
            
             |
                RubyLexer
            
             / test / integration / http_basic_login_with_api_token_test.rb
          
                    History
                
                 |
                  Source
                 | Raw
                 |Copy content
                 |Copy permalink

        Eric Davis
    
Added support for HTTP Basic access to the API. (#3920)...

              r3105
            
      require "#{File.dirname(__FILE__)}/../test_helper"

      class HttpBasicLoginWithApiTokenTest < ActionController::IntegrationTest

        fixtures :all

        def setup

        Eric Davis
    
Added an Admin setting to enable/disable the REST web service. (#3920)...

              r3106
            
          Setting.rest_api_enabled = '1'

        Eric Davis
    
Added support for HTTP Basic access to the API. (#3920)...

              r3105
            
          Setting.login_required = '1'

        end

        def teardown

        Eric Davis
    
Added an Admin setting to enable/disable the REST web service. (#3920)...

              r3106
            
          Setting.rest_api_enabled = '0'

        Eric Davis
    
Added support for HTTP Basic access to the API. (#3920)...

              r3105
            
          Setting.login_required = '0'

        end

        # Using the NewsController because it's a simple API.

        context "get /news" do

          context "in :xml format" do

            context "with a valid HTTP authentication using the API token" do

              setup do

                @user = User.generate_with_protected!

                @token = Token.generate!(:user => @user, :action => 'api')

                @authorization = ActionController::HttpAuthentication::Basic.encode_credentials(@token.value, 'X')

                get "/news.xml", nil, :authorization => @authorization

              end

              should_respond_with :success

              should_respond_with_content_type :xml

              should "login as the user" do

                assert_equal @user, User.current

              end

            end

            context "with an invalid HTTP authentication" do

              setup do

                @user = User.generate_with_protected!

                @token = Token.generate!(:user => @user, :action => 'feeds')

                @authorization = ActionController::HttpAuthentication::Basic.encode_credentials(@token.value, 'X')

                get "/news.xml", nil, :authorization => @authorization

              end

              should_respond_with :unauthorized

              should_respond_with_content_type :xml

              should "not login as the user" do

                assert_equal User.anonymous, User.current

              end

            end

          end

          context "in :json format" do

            context "with a valid HTTP authentication" do

              setup do

                @user = User.generate_with_protected!

                @token = Token.generate!(:user => @user, :action => 'api')

                @authorization = ActionController::HttpAuthentication::Basic.encode_credentials(@token.value, 'DoesNotMatter')

                get "/news.json", nil, :authorization => @authorization

              end

              should_respond_with :success

              should_respond_with_content_type :json

              should "login as the user" do

                assert_equal @user, User.current

              end

            end

            context "with an invalid HTTP authentication" do

              setup do

                @user = User.generate_with_protected!

                @token = Token.generate!(:user => @user, :action => 'feeds')

                @authorization = ActionController::HttpAuthentication::Basic.encode_credentials(@token.value, 'DoesNotMatter')

                get "/news.json", nil, :authorization => @authorization

              end

              should_respond_with :unauthorized

              should_respond_with_content_type :json

              should "not login as the user" do

                assert_equal User.anonymous, User.current

              end

            end

          end

        end

      end

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

Eric Davis Added support for HTTP Basic access to the API. (#3920)...	r3105	require "#{File.dirname(__FILE__)}/../test_helper"

		class HttpBasicLoginWithApiTokenTest < ActionController::IntegrationTest
		fixtures :all

		def setup
Eric Davis Added an Admin setting to enable/disable the REST web service. (#3920)...	r3106	Setting.rest_api_enabled = '1'
Eric Davis Added support for HTTP Basic access to the API. (#3920)...	r3105	Setting.login_required = '1'
		end

		def teardown
Eric Davis Added an Admin setting to enable/disable the REST web service. (#3920)...	r3106	Setting.rest_api_enabled = '0'
Eric Davis Added support for HTTP Basic access to the API. (#3920)...	r3105	Setting.login_required = '0'
		end

		# Using the NewsController because it's a simple API.
		context "get /news" do

		context "in :xml format" do
		context "with a valid HTTP authentication using the API token" do
		setup do
		@user = User.generate_with_protected!
		@token = Token.generate!(:user => @user, :action => 'api')
		@authorization = ActionController::HttpAuthentication::Basic.encode_credentials(@token.value, 'X')
		get "/news.xml", nil, :authorization => @authorization
		end

		should_respond_with :success
		should_respond_with_content_type :xml
		should "login as the user" do
		assert_equal @user, User.current
		end
		end

		context "with an invalid HTTP authentication" do
		setup do
		@user = User.generate_with_protected!
		@token = Token.generate!(:user => @user, :action => 'feeds')
		@authorization = ActionController::HttpAuthentication::Basic.encode_credentials(@token.value, 'X')
		get "/news.xml", nil, :authorization => @authorization
		end

		should_respond_with :unauthorized
		should_respond_with_content_type :xml
		should "not login as the user" do
		assert_equal User.anonymous, User.current
		end
		end
		end

		context "in :json format" do
		context "with a valid HTTP authentication" do
		setup do
		@user = User.generate_with_protected!
		@token = Token.generate!(:user => @user, :action => 'api')
		@authorization = ActionController::HttpAuthentication::Basic.encode_credentials(@token.value, 'DoesNotMatter')
		get "/news.json", nil, :authorization => @authorization
		end

		should_respond_with :success
		should_respond_with_content_type :json
		should "login as the user" do
		assert_equal @user, User.current
		end
		end

		context "with an invalid HTTP authentication" do
		setup do
		@user = User.generate_with_protected!
		@token = Token.generate!(:user => @user, :action => 'feeds')
		@authorization = ActionController::HttpAuthentication::Basic.encode_credentials(@token.value, 'DoesNotMatter')
		get "/news.json", nil, :authorization => @authorization
		end

		should_respond_with :unauthorized
		should_respond_with_content_type :json
		should "not login as the user" do
		assert_equal User.anonymous, User.current
		end
		end
		end

		end
		end