distraction.party/test/pleroma/web/plugs/legacy_authentication_plug_test.exs

83 lines
2 KiB
Elixir
Raw Normal View History

2018-12-23 20:11:29 +00:00
# Pleroma: A lightweight social networking server
2020-03-03 22:44:49 +00:00
# Copyright © 2017-2020 Pleroma Authors <https://pleroma.social/>
2018-12-23 20:11:29 +00:00
# SPDX-License-Identifier: AGPL-3.0-only
2020-06-23 15:16:47 +00:00
defmodule Pleroma.Web.Plugs.LegacyAuthenticationPlugTest do
2019-05-17 07:25:20 +00:00
use Pleroma.Web.ConnCase
2018-09-05 16:17:33 +00:00
import Pleroma.Factory
2018-09-05 16:17:33 +00:00
alias Pleroma.Plugs.LegacyAuthenticationPlug
2020-06-24 06:57:27 +00:00
alias Pleroma.Web.Plugs.OAuthScopesPlug
2020-06-24 06:42:36 +00:00
alias Pleroma.Web.Plugs.PlugHelper
2018-09-05 16:17:33 +00:00
alias Pleroma.User
setup do
user =
insert(:user,
password: "password",
password_hash:
"$6$9psBWV8gxkGOZWBz$PmfCycChoxeJ3GgGzwvhlgacb9mUoZ.KUXNCssekER4SJ7bOK53uXrHNb2e4i8yPFgSKyzaW9CcmrDXWIEMtD1"
)
2018-09-05 16:17:33 +00:00
%{user: user}
end
test "it does nothing if a user is assigned", %{conn: conn, user: user} do
conn =
conn
|> assign(:auth_credentials, %{username: "dude", password: "password"})
|> assign(:auth_user, user)
|> assign(:user, %User{})
ret_conn =
conn
|> LegacyAuthenticationPlug.call(%{})
assert ret_conn == conn
end
@tag :skip_on_mac
test "if `auth_user` is present and password is correct, " <>
"it authenticates the user, resets the password, marks OAuthScopesPlug as skipped",
2018-09-05 20:30:14 +00:00
%{
conn: conn,
user: user
} do
2018-09-05 16:17:33 +00:00
conn =
conn
|> assign(:auth_credentials, %{username: "dude", password: "password"})
|> assign(:auth_user, user)
conn = LegacyAuthenticationPlug.call(conn, %{})
assert conn.assigns.user.id == user.id
assert PlugHelper.plug_skipped?(conn, OAuthScopesPlug)
2018-09-05 16:17:33 +00:00
end
@tag :skip_on_mac
2018-09-05 16:17:33 +00:00
test "it does nothing if the password is wrong", %{
conn: conn,
user: user
} do
conn =
conn
|> assign(:auth_credentials, %{username: "dude", password: "wrong_password"})
|> assign(:auth_user, user)
ret_conn =
conn
|> LegacyAuthenticationPlug.call(%{})
assert conn == ret_conn
end
test "with no credentials or user it does nothing", %{conn: conn} do
ret_conn =
conn
|> LegacyAuthenticationPlug.call(%{})
assert ret_conn == conn
end
end