This repository has been archived on 2022-08-17. You can view files and clone it, but cannot push or open issues or pull requests.
dex/session/manager_test.go
Yifan Gu 93a0830ae0 server: check scope in requests.
Require 'openid' in scope for all requests.
Require 'offline_access' for returning refresh token.
2015-08-31 13:51:59 -07:00

119 lines
3.3 KiB
Go

package session
import (
"net/url"
"testing"
"github.com/coreos/go-oidc/oidc"
)
func staticGenerateCodeFunc(code string) GenerateCodeFunc {
return func() (string, error) {
return code, nil
}
}
func TestSessionManagerNewSession(t *testing.T) {
sm := NewSessionManager(NewSessionRepo(), NewSessionKeyRepo())
sm.GenerateCode = staticGenerateCodeFunc("boo")
got, err := sm.NewSession("bogus_idpc", "XXX", "bogus", url.URL{}, "", false, []string{"openid"})
if err != nil {
t.Fatalf("Unexpected error: %v", err)
}
if got != "boo" {
t.Fatalf("Incorrect Session ID: want=%s got=%s", "boo", got)
}
}
func TestSessionAttachRemoteIdentityTwice(t *testing.T) {
sm := NewSessionManager(NewSessionRepo(), NewSessionKeyRepo())
sessionID, err := sm.NewSession("bogus_idpc", "XXX", "bogus", url.URL{}, "", false, []string{"openid"})
if err != nil {
t.Fatalf("Unexpected error: %v", err)
}
ident := oidc.Identity{ID: "YYY", Name: "elroy", Email: "elroy@example.com"}
if _, err := sm.AttachRemoteIdentity(sessionID, ident); err != nil {
t.Fatalf("Unexpected error: %v", err)
}
if _, err := sm.AttachRemoteIdentity(sessionID, ident); err == nil {
t.Fatalf("Expected non-nil error")
}
}
func TestSessionManagerExchangeKey(t *testing.T) {
sm := NewSessionManager(NewSessionRepo(), NewSessionKeyRepo())
sessionID, err := sm.NewSession("connector_id", "XXX", "bogus", url.URL{}, "", false, []string{"openid"})
if err != nil {
t.Fatalf("Unexpected error: %v", err)
}
key, err := sm.NewSessionKey(sessionID)
if err != nil {
t.Fatalf("Unexpected error: %v", err)
}
got, err := sm.ExchangeKey(key)
if err != nil {
t.Fatalf("Unexpected error: %v", err)
}
if got != sessionID {
t.Fatalf("Incorrect Session ID: want=%s got=%s", sessionID, got)
}
if _, err := sm.ExchangeKey(key); err == nil {
t.Fatalf("Received nil response from attempt with spent Session key")
}
}
func TestSessionManagerGetSessionInStateNoExist(t *testing.T) {
sm := NewSessionManager(NewSessionRepo(), NewSessionKeyRepo())
ses, err := sm.getSessionInState("123", SessionStateNew)
if err == nil {
t.Errorf("Expected non-nil error")
}
if ses != nil {
t.Errorf("Expected nil Session")
}
}
func TestSessionManagerGetSessionInStateWrongState(t *testing.T) {
sm := NewSessionManager(NewSessionRepo(), NewSessionKeyRepo())
sessionID, err := sm.NewSession("connector_id", "XXX", "bogus", url.URL{}, "", false, []string{"openid"})
if err != nil {
t.Fatalf("Unexpected error: %v", err)
}
ses, err := sm.getSessionInState(sessionID, SessionStateDead)
if err == nil {
t.Errorf("Expected non-nil error")
}
if ses != nil {
t.Errorf("Expected nil Session")
}
}
func TestSessionManagerKill(t *testing.T) {
sm := NewSessionManager(NewSessionRepo(), NewSessionKeyRepo())
sessionID, err := sm.NewSession("connector_id", "XXX", "bogus", url.URL{}, "", false, []string{"openid"})
if err != nil {
t.Fatalf("Unexpected error: %v", err)
}
ident := oidc.Identity{ID: "YYY", Name: "elroy", Email: "elroy@example.com"}
if _, err := sm.AttachRemoteIdentity(sessionID, ident); err != nil {
t.Fatalf("Unexpected error: %v", err)
}
ses, err := sm.Kill(sessionID)
if err != nil {
t.Errorf("Unexpected error: %v", err)
}
if ses == nil {
t.Fatalf("Expected non-nil Session")
}
if ses.ClientState != "bogus" {
t.Errorf("Unexpected Session: %#v", ses)
}
}