2015-08-18 05:57:27 +05:30
|
|
|
package repo
|
|
|
|
|
|
|
|
import (
|
|
|
|
"net/url"
|
|
|
|
"os"
|
|
|
|
"testing"
|
|
|
|
|
|
|
|
"github.com/coreos/go-oidc/oidc"
|
|
|
|
|
|
|
|
"github.com/coreos/dex/client"
|
|
|
|
"github.com/coreos/dex/db"
|
|
|
|
)
|
|
|
|
|
|
|
|
var (
|
|
|
|
testClients = []oidc.ClientIdentity{
|
|
|
|
oidc.ClientIdentity{
|
|
|
|
Credentials: oidc.ClientCredentials{
|
|
|
|
ID: "client1",
|
|
|
|
Secret: "secret-1",
|
|
|
|
},
|
|
|
|
Metadata: oidc.ClientMetadata{
|
2016-01-13 06:46:28 +05:30
|
|
|
RedirectURIs: []url.URL{
|
2015-08-18 05:57:27 +05:30
|
|
|
url.URL{
|
|
|
|
Scheme: "https",
|
|
|
|
Host: "client1.example.com/callback",
|
|
|
|
},
|
|
|
|
},
|
|
|
|
},
|
|
|
|
},
|
|
|
|
oidc.ClientIdentity{
|
|
|
|
Credentials: oidc.ClientCredentials{
|
|
|
|
ID: "client2",
|
|
|
|
Secret: "secret-2",
|
|
|
|
},
|
|
|
|
Metadata: oidc.ClientMetadata{
|
2016-01-13 06:46:28 +05:30
|
|
|
RedirectURIs: []url.URL{
|
2015-08-18 05:57:27 +05:30
|
|
|
url.URL{
|
|
|
|
Scheme: "https",
|
|
|
|
Host: "client2.example.com/callback",
|
|
|
|
},
|
|
|
|
},
|
|
|
|
},
|
|
|
|
},
|
|
|
|
}
|
|
|
|
)
|
|
|
|
|
2016-02-09 05:31:44 +05:30
|
|
|
func newClientIdentityRepo(t *testing.T) client.ClientIdentityRepo {
|
2015-08-18 05:57:27 +05:30
|
|
|
dsn := os.Getenv("DEX_TEST_DSN")
|
|
|
|
if dsn == "" {
|
2016-02-09 05:31:44 +05:30
|
|
|
return client.NewClientIdentityRepo(testClients)
|
2015-08-18 05:57:27 +05:30
|
|
|
}
|
2016-02-09 05:31:44 +05:30
|
|
|
dbMap := connect(t)
|
|
|
|
repo, err := db.NewClientIdentityRepoFromClients(dbMap, testClients)
|
|
|
|
if err != nil {
|
|
|
|
t.Fatalf("failed to create client repo from clients: %v", err)
|
2015-08-18 05:57:27 +05:30
|
|
|
}
|
2016-02-09 05:31:44 +05:30
|
|
|
return repo
|
2015-08-18 05:57:27 +05:30
|
|
|
}
|
|
|
|
|
|
|
|
func TestGetSetAdminClient(t *testing.T) {
|
|
|
|
startAdmins := []string{"client2"}
|
|
|
|
tests := []struct {
|
|
|
|
// client ID
|
|
|
|
cid string
|
|
|
|
|
|
|
|
// initial state of client
|
|
|
|
wantAdmin bool
|
|
|
|
|
|
|
|
// final state of client
|
|
|
|
setAdmin bool
|
|
|
|
|
|
|
|
wantErr bool
|
|
|
|
}{
|
|
|
|
{
|
|
|
|
cid: "client1",
|
|
|
|
wantAdmin: false,
|
|
|
|
setAdmin: true,
|
|
|
|
},
|
|
|
|
{
|
|
|
|
cid: "client1",
|
|
|
|
wantAdmin: false,
|
|
|
|
setAdmin: false,
|
|
|
|
},
|
|
|
|
{
|
|
|
|
cid: "client2",
|
|
|
|
wantAdmin: true,
|
|
|
|
setAdmin: true,
|
|
|
|
},
|
|
|
|
{
|
|
|
|
cid: "client2",
|
|
|
|
wantAdmin: true,
|
|
|
|
setAdmin: false,
|
|
|
|
},
|
|
|
|
}
|
|
|
|
|
2016-02-09 05:31:44 +05:30
|
|
|
Tests:
|
2015-08-18 05:57:27 +05:30
|
|
|
for i, tt := range tests {
|
2016-02-09 05:31:44 +05:30
|
|
|
repo := newClientIdentityRepo(t)
|
2015-08-18 05:57:27 +05:30
|
|
|
for _, cid := range startAdmins {
|
|
|
|
err := repo.SetDexAdmin(cid, true)
|
|
|
|
if err != nil {
|
2016-02-09 05:31:44 +05:30
|
|
|
t.Errorf("case %d: failed to set dex admin: %v", i, err)
|
|
|
|
continue Tests
|
2015-08-18 05:57:27 +05:30
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
gotAdmin, err := repo.IsDexAdmin(tt.cid)
|
|
|
|
if tt.wantErr {
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("case %d: want non-nil err", i)
|
|
|
|
}
|
|
|
|
continue
|
|
|
|
}
|
|
|
|
if err != nil {
|
2016-02-09 05:31:44 +05:30
|
|
|
t.Errorf("case %d: unexpected error: %v", i, err)
|
2015-08-18 05:57:27 +05:30
|
|
|
}
|
|
|
|
if gotAdmin != tt.wantAdmin {
|
|
|
|
t.Errorf("case %d: want=%v, got=%v", i, tt.wantAdmin, gotAdmin)
|
|
|
|
}
|
|
|
|
|
|
|
|
err = repo.SetDexAdmin(tt.cid, tt.setAdmin)
|
|
|
|
if err != nil {
|
2016-02-09 05:31:44 +05:30
|
|
|
t.Errorf("case %d: unexpected error: %v", i, err)
|
2015-08-18 05:57:27 +05:30
|
|
|
}
|
|
|
|
|
|
|
|
gotAdmin, err = repo.IsDexAdmin(tt.cid)
|
|
|
|
if err != nil {
|
2016-02-09 05:31:44 +05:30
|
|
|
t.Errorf("case %d: unexpected error: %v", i, err)
|
2015-08-18 05:57:27 +05:30
|
|
|
}
|
|
|
|
if gotAdmin != tt.setAdmin {
|
|
|
|
t.Errorf("case %d: want=%v, got=%v", i, tt.setAdmin, gotAdmin)
|
|
|
|
}
|
|
|
|
|
|
|
|
}
|
|
|
|
}
|