| @@ -1,113 +1,108 | |||||
| 1 | # Redmine - project management software |
|
1 | # Redmine - project management software | |
| 2 | # Copyright (C) 2006-2013 Jean-Philippe Lang |
|
2 | # Copyright (C) 2006-2013 Jean-Philippe Lang | |
| 3 | # |
|
3 | # | |
| 4 | # This program is free software; you can redistribute it and/or |
|
4 | # This program is free software; you can redistribute it and/or | |
| 5 | # modify it under the terms of the GNU General Public License |
|
5 | # modify it under the terms of the GNU General Public License | |
| 6 | # as published by the Free Software Foundation; either version 2 |
|
6 | # as published by the Free Software Foundation; either version 2 | |
| 7 | # of the License, or (at your option) any later version. |
|
7 | # of the License, or (at your option) any later version. | |
| 8 | # |
|
8 | # | |
| 9 | # This program is distributed in the hope that it will be useful, |
|
9 | # This program is distributed in the hope that it will be useful, | |
| 10 | # but WITHOUT ANY WARRANTY; without even the implied warranty of |
|
10 | # but WITHOUT ANY WARRANTY; without even the implied warranty of | |
| 11 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
|
11 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | |
| 12 | # GNU General Public License for more details. |
|
12 | # GNU General Public License for more details. | |
| 13 | # |
|
13 | # | |
| 14 | # You should have received a copy of the GNU General Public License |
|
14 | # You should have received a copy of the GNU General Public License | |
| 15 | # along with this program; if not, write to the Free Software |
|
15 | # along with this program; if not, write to the Free Software | |
| 16 | # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. |
|
16 | # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. | |
| 17 |
|
17 | |||
| 18 | require File.expand_path('../../test_helper', __FILE__) |
|
18 | require File.expand_path('../../test_helper', __FILE__) | |
| 19 |
|
19 | |||
| 20 | class TokenTest < ActiveSupport::TestCase |
|
20 | class TokenTest < ActiveSupport::TestCase | |
| 21 | fixtures :tokens |
|
21 | fixtures :tokens | |
| 22 |
|
22 | |||
| 23 | def test_create |
|
23 | def test_create | |
| 24 | token = Token.new |
|
24 | token = Token.new | |
| 25 | token.save |
|
25 | token.save | |
| 26 | assert_equal 40, token.value.length |
|
26 | assert_equal 40, token.value.length | |
| 27 | assert !token.expired? |
|
27 | assert !token.expired? | |
| 28 | end |
|
28 | end | |
| 29 |
|
29 | |||
| 30 | def test_create_should_remove_existing_tokens |
|
30 | def test_create_should_remove_existing_tokens | |
| 31 | user = User.find(1) |
|
31 | user = User.find(1) | |
| 32 | t1 = Token.create(:user => user, :action => 'autologin') |
|
32 | t1 = Token.create(:user => user, :action => 'autologin') | |
| 33 | t2 = Token.create(:user => user, :action => 'autologin') |
|
33 | t2 = Token.create(:user => user, :action => 'autologin') | |
| 34 | assert_not_equal t1.value, t2.value |
|
34 | assert_not_equal t1.value, t2.value | |
| 35 | assert !Token.exists?(t1.id) |
|
35 | assert !Token.exists?(t1.id) | |
| 36 | assert Token.exists?(t2.id) |
|
36 | assert Token.exists?(t2.id) | |
| 37 | end |
|
37 | end | |
| 38 |
|
38 | |||
| 39 | def test_destroy_expired_should_not_destroy_feeds_and_api_tokens |
|
39 | def test_destroy_expired_should_not_destroy_feeds_and_api_tokens | |
| 40 | Token.delete_all |
|
40 | Token.delete_all | |
| 41 |
|
41 | |||
| 42 | Token.create!(:user_id => 1, :action => 'api', :created_on => 7.days.ago) |
|
42 | Token.create!(:user_id => 1, :action => 'api', :created_on => 7.days.ago) | |
| 43 | Token.create!(:user_id => 1, :action => 'feeds', :created_on => 7.days.ago) |
|
43 | Token.create!(:user_id => 1, :action => 'feeds', :created_on => 7.days.ago) | |
| 44 |
|
44 | |||
| 45 | assert_no_difference 'Token.count' do |
|
45 | assert_no_difference 'Token.count' do | |
| 46 | assert_equal 0, Token.destroy_expired |
|
46 | assert_equal 0, Token.destroy_expired | |
| 47 | end |
|
47 | end | |
| 48 | end |
|
48 | end | |
| 49 |
|
49 | |||
| 50 | def test_destroy_expired_should_destroy_expired_tokens |
|
50 | def test_destroy_expired_should_destroy_expired_tokens | |
| 51 | Token.delete_all |
|
51 | Token.delete_all | |
| 52 |
|
52 | |||
| 53 | Token.create!(:user_id => 1, :action => 'autologin', :created_on => 7.days.ago) |
|
53 | Token.create!(:user_id => 1, :action => 'autologin', :created_on => 7.days.ago) | |
| 54 | Token.create!(:user_id => 2, :action => 'autologin', :created_on => 3.days.ago) |
|
54 | Token.create!(:user_id => 2, :action => 'autologin', :created_on => 3.days.ago) | |
| 55 | Token.create!(:user_id => 3, :action => 'autologin', :created_on => 1.hour.ago) |
|
55 | Token.create!(:user_id => 3, :action => 'autologin', :created_on => 1.hour.ago) | |
| 56 |
|
56 | |||
| 57 | assert_difference 'Token.count', -2 do |
|
57 | assert_difference 'Token.count', -2 do | |
| 58 | assert_equal 2, Token.destroy_expired |
|
58 | assert_equal 2, Token.destroy_expired | |
| 59 | end |
|
59 | end | |
| 60 | end |
|
60 | end | |
| 61 |
|
61 | |||
| 62 | def test_find_active_user_should_return_user |
|
62 | def test_find_active_user_should_return_user | |
| 63 | token = Token.create!(:user_id => 1, :action => 'api') |
|
63 | token = Token.create!(:user_id => 1, :action => 'api') | |
| 64 | assert_equal User.find(1), Token.find_active_user('api', token.value) |
|
64 | assert_equal User.find(1), Token.find_active_user('api', token.value) | |
| 65 | end |
|
65 | end | |
| 66 |
|
66 | |||
| 67 | def test_find_active_user_should_return_nil_for_locked_user |
|
67 | def test_find_active_user_should_return_nil_for_locked_user | |
| 68 | token = Token.create!(:user_id => 1, :action => 'api') |
|
68 | token = Token.create!(:user_id => 1, :action => 'api') | |
| 69 | User.find(1).lock! |
|
69 | User.find(1).lock! | |
| 70 | assert_nil Token.find_active_user('api', token.value) |
|
70 | assert_nil Token.find_active_user('api', token.value) | |
| 71 | end |
|
71 | end | |
| 72 |
|
72 | |||
| 73 | def test_find_user_should_return_user |
|
73 | def test_find_user_should_return_user | |
| 74 | token = Token.create!(:user_id => 1, :action => 'api') |
|
74 | token = Token.create!(:user_id => 1, :action => 'api') | |
| 75 | assert_equal User.find(1), Token.find_user('api', token.value) |
|
75 | assert_equal User.find(1), Token.find_user('api', token.value) | |
| 76 | end |
|
76 | end | |
| 77 |
|
77 | |||
| 78 | def test_find_user_should_return_locked_user |
|
78 | def test_find_user_should_return_locked_user | |
| 79 | token = Token.create!(:user_id => 1, :action => 'api') |
|
79 | token = Token.create!(:user_id => 1, :action => 'api') | |
| 80 | User.find(1).lock! |
|
80 | User.find(1).lock! | |
| 81 | assert_equal User.find(1), Token.find_user('api', token.value) |
|
81 | assert_equal User.find(1), Token.find_user('api', token.value) | |
| 82 | end |
|
82 | end | |
| 83 |
|
83 | |||
| 84 | def test_find_token_should_return_the_token |
|
84 | def test_find_token_should_return_the_token | |
| 85 | token = Token.create!(:user_id => 1, :action => 'api') |
|
85 | token = Token.create!(:user_id => 1, :action => 'api') | |
| 86 | assert_equal token, Token.find_token('api', token.value) |
|
86 | assert_equal token, Token.find_token('api', token.value) | |
| 87 | end |
|
87 | end | |
| 88 |
|
88 | |||
| 89 | def test_find_token_should_return_the_token_with_validity |
|
89 | def test_find_token_should_return_the_token_with_validity | |
| 90 | token = Token.create!(:user_id => 1, :action => 'api', :created_on => 1.hour.ago) |
|
90 | token = Token.create!(:user_id => 1, :action => 'api', :created_on => 1.hour.ago) | |
| 91 | assert_equal token, Token.find_token('api', token.value, 1) |
|
91 | assert_equal token, Token.find_token('api', token.value, 1) | |
| 92 | end |
|
92 | end | |
| 93 |
|
93 | |||
| 94 | def test_find_token_should_return_nil_with_wrong_action |
|
94 | def test_find_token_should_return_nil_with_wrong_action | |
| 95 | token = Token.create!(:user_id => 1, :action => 'feeds') |
|
95 | token = Token.create!(:user_id => 1, :action => 'feeds') | |
| 96 | assert_nil Token.find_token('api', token.value) |
|
96 | assert_nil Token.find_token('api', token.value) | |
| 97 | end |
|
97 | end | |
| 98 |
|
98 | |||
| 99 | def test_find_token_should_return_nil_with_wrong_action |
|
|||
| 100 | token = Token.create!(:user_id => 1, :action => 'feeds') |
|
|||
| 101 | assert_nil Token.find_token('api', Token.generate_token_value) |
|
|||
| 102 | end |
|
|||
| 103 |
|
||||
| 104 | def test_find_token_should_return_nil_without_user |
|
99 | def test_find_token_should_return_nil_without_user | |
| 105 | token = Token.create!(:user_id => 999, :action => 'api') |
|
100 | token = Token.create!(:user_id => 999, :action => 'api') | |
| 106 | assert_nil Token.find_token('api', token.value) |
|
101 | assert_nil Token.find_token('api', token.value) | |
| 107 | end |
|
102 | end | |
| 108 |
|
103 | |||
| 109 | def test_find_token_should_return_nil_with_validity_expired |
|
104 | def test_find_token_should_return_nil_with_validity_expired | |
| 110 | token = Token.create!(:user_id => 999, :action => 'api', :created_on => 2.days.ago) |
|
105 | token = Token.create!(:user_id => 999, :action => 'api', :created_on => 2.days.ago) | |
| 111 | assert_nil Token.find_token('api', token.value, 1) |
|
106 | assert_nil Token.find_token('api', token.value, 1) | |
| 112 | end |
|
107 | end | |
| 113 | end |
|
108 | end | |
General Comments 0
You need to be logged in to leave comments.
Login now