jro_apps/redmine Files · test/integration/api_token_login_test.rb

Allow authenticating with an API token via XML or JSON. (#3920)...

Allow authenticating with an API token via XML or JSON. (#3920) git-svn-id: svn+ssh://rubyforge.org/var/svn/redmine/trunk@3218 e93f8b46-1217-0410-a6f0-8f06a7374b81

Eric Davis - - Load All Authors

File last commit:

r3104:baa1ad42560f


                r3104:baa1ad42560f

Download file

             api_token_login_test.rb
        
                    73 lines
            
             | 2.2 KiB
            
                | text/x-ruby
            
             |
                RubyLexer
            
             / test / integration / api_token_login_test.rb
          
                    History
                
                 |
                  Annotation
                 | Raw
                 |Copy content
                 |Copy permalink

      require "#{File.dirname(__FILE__)}/../test_helper"

      class ApiTokenLoginTest < ActionController::IntegrationTest

        fixtures :all

        # Using the NewsController because it's a simple API.

        context "get /news.xml" do

          context "in :xml format" do

            context "with a valid api token" do

              setup do

                @user = User.generate_with_protected!

                @token = Token.generate!(:user => @user, :action => 'api')

                get "/news.xml?key=#{@token.value}"

              end

              should_respond_with :success

              should_respond_with_content_type :xml

              should "login as the user" do

                assert_equal @user, User.current

              end

            end

            context "with an invalid api token (on a protected site)" do

              setup do

                Setting.login_required = '1'

                @user = User.generate_with_protected!

                @token = Token.generate!(:user => @user, :action => 'feeds')

                get "/news.xml?key=#{@token.value}"

              end

              should_respond_with :unauthorized

              should_respond_with_content_type :xml

              should "not login as the user" do

                assert_equal User.anonymous, User.current

              end

            end

          end

          context "in :json format" do

            context "with a valid api token" do

              setup do

                @user = User.generate_with_protected!

                @token = Token.generate!(:user => @user, :action => 'api')

                get "/news.json?key=#{@token.value}"

              end

              should_respond_with :success

              should_respond_with_content_type :json

              should "login as the user" do

                assert_equal @user, User.current

              end

            end

            context "with an invalid api token (on a protected site)" do

              setup do

                Setting.login_required = '1'

                @user = User.generate_with_protected!

                @token = Token.generate!(:user => @user, :action => 'feeds')

                get "/news.json?key=#{@token.value}"

              end

              should_respond_with :unauthorized

              should_respond_with_content_type :json

              should "not login as the user" do

                assert_equal User.anonymous, User.current

              end

            end

          end

        end

      end

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

				require "#{File.dirname(__FILE__)}/../test_helper"

				class ApiTokenLoginTest < ActionController::IntegrationTest
				fixtures :all

				# Using the NewsController because it's a simple API.
				context "get /news.xml" do

				context "in :xml format" do
				context "with a valid api token" do
				setup do
				@user = User.generate_with_protected!
				@token = Token.generate!(:user => @user, :action => 'api')
				get "/news.xml?key=#{@token.value}"
				end

				should_respond_with :success
				should_respond_with_content_type :xml
				should "login as the user" do
				assert_equal @user, User.current
				end
				end

				context "with an invalid api token (on a protected site)" do
				setup do
				Setting.login_required = '1'
				@user = User.generate_with_protected!
				@token = Token.generate!(:user => @user, :action => 'feeds')
				get "/news.xml?key=#{@token.value}"
				end

				should_respond_with :unauthorized
				should_respond_with_content_type :xml
				should "not login as the user" do
				assert_equal User.anonymous, User.current
				end
				end
				end

				context "in :json format" do
				context "with a valid api token" do
				setup do
				@user = User.generate_with_protected!
				@token = Token.generate!(:user => @user, :action => 'api')
				get "/news.json?key=#{@token.value}"
				end

				should_respond_with :success
				should_respond_with_content_type :json
				should "login as the user" do
				assert_equal @user, User.current
				end
				end

				context "with an invalid api token (on a protected site)" do
				setup do
				Setting.login_required = '1'
				@user = User.generate_with_protected!
				@token = Token.generate!(:user => @user, :action => 'feeds')
				get "/news.json?key=#{@token.value}"
				end

				should_respond_with :unauthorized
				should_respond_with_content_type :json
				should "not login as the user" do
				assert_equal User.anonymous, User.current
				end
				end
				end

				end

				end