debian-mirror-gitlab/spec/lib/mattermost/session_spec.rb

# frozen_string_literal: true

require 'spec_helper'

RSpec.describe Mattermost::Session, type: :request do
  include ExclusiveLeaseHelpers
  include StubRequests

  let(:user) { create(:user) }

  let(:gitlab_url) { "http://gitlab.com" }
  let(:mattermost_url) { "http://mattermost.com" }

  subject { described_class.new(user) }

  # Needed for doorkeeper to function
  it { is_expected.to respond_to(:current_resource_owner) }
  it { is_expected.to respond_to(:request) }
  it { is_expected.to respond_to(:authorization) }
  it { is_expected.to respond_to(:strategy) }

  before do
    subject.base_uri = mattermost_url
  end

  describe '#with session' do
    let(:location) { 'http://location.tld' }
    let(:cookie_header) {'MMOAUTH=taskik8az7rq8k6rkpuas7htia; Path=/;'}
    let!(:stub) do
      stub_full_request("#{mattermost_url}/oauth/gitlab/login")
        .to_return(headers: { 'location' => location, 'Set-Cookie' => cookie_header }, status: 302)
    end

    context 'without oauth uri' do
      it 'makes a request to the oauth uri' do
        expect { subject.with_session }.to raise_error(Mattermost::NoSessionError)
      end
    end

    context 'with oauth_uri' do
      let!(:doorkeeper) do
        Doorkeeper::Application.create!(
          name: 'GitLab Mattermost',
          redirect_uri: "#{mattermost_url}/signup/gitlab/complete\n#{mattermost_url}/login/gitlab/complete",
          scopes: '')
      end

      context 'without token_uri' do
        it 'can not create a session' do
          expect do
            subject.with_session
          end.to raise_error(Mattermost::NoSessionError)
        end
      end

      context 'with token_uri' do
        let(:state) { "state" }
        let(:params) do
          { response_type: "code",
            client_id: doorkeeper.uid,
            redirect_uri: "#{mattermost_url}/signup/gitlab/complete",
            state: state }
        end

        let(:location) do
          "#{gitlab_url}/oauth/authorize?#{URI.encode_www_form(params)}"
        end

        before do
          stub_full_request("#{mattermost_url}/signup/gitlab/complete")
            .with(query: hash_including({ 'state' => state }))
            .to_return do |request|
              post "/oauth/token",
                params: {
                  client_id: doorkeeper.uid,
                  client_secret: doorkeeper.secret,
                  redirect_uri: params[:redirect_uri],
                  grant_type: 'authorization_code',
                  code: request.uri.query_values['code']
                }

              if response.status == 200
                { headers: { 'token' => 'thisworksnow' }, status: 202 }
              end
            end

          stub_full_request("#{mattermost_url}/api/v4/users/logout", method: :post)
            .to_return(headers: { Authorization: 'token thisworksnow' }, status: 200)
        end

        it 'can set up a session' do
          subject.with_session do |session|
          end

          expect(subject.token).not_to be_nil
        end

        it 'returns the value of the block' do
          result = subject.with_session do |session|
            "value"
          end

          expect(result).to eq("value")
        end
      end
    end

    context 'exclusive lease' do
      let(:lease_key) { 'mattermost:session' }

      it 'tries to obtain a lease' do
        expect_to_obtain_exclusive_lease(lease_key, 'uuid')
        expect_to_cancel_exclusive_lease(lease_key, 'uuid')

        # Cannot set up a session, but we should still cancel the lease
        expect { subject.with_session }.to raise_error(Mattermost::NoSessionError)
      end

      it 'returns a NoSessionError error without lease' do
        stub_exclusive_lease_taken(lease_key)

        expect { subject.with_session }.to raise_error(Mattermost::NoSessionError)
      end
    end
  end
end
New upstream version 12.3.8 2019-12-04 20:38:33 +05:30			`# frozen_string_literal: true`

New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`require 'spec_helper'`

New upstream version 13.2.1 2020-07-28 23:09:34 +05:30			`RSpec.describe Mattermost::Session, type: :request do`
New upstream version 11.1.8+dfsg 2018-11-08 19:23:39 +05:30			`include ExclusiveLeaseHelpers`
New upstream version 11.10.5+dfsg 2019-06-05 12:25:43 +05:30			`include StubRequests`
New upstream version 11.1.8+dfsg 2018-11-08 19:23:39 +05:30
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`let(:user) { create(:user) }`

			`let(:gitlab_url) { "http://gitlab.com" }`
			`let(:mattermost_url) { "http://mattermost.com" }`

			`subject { described_class.new(user) }`

			`# Needed for doorkeeper to function`
			`it { is_expected.to respond_to(:current_resource_owner) }`
			`it { is_expected.to respond_to(:request) }`
			`it { is_expected.to respond_to(:authorization) }`
			`it { is_expected.to respond_to(:strategy) }`

			`before do`
New upstream version 10.5.6+dfsg 2018-03-26 14:24:53 +05:30			`subject.base_uri = mattermost_url`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`

			`describe '#with session' do`
			`let(:location) { 'http://location.tld' }`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`let(:cookie_header) {'MMOAUTH=taskik8az7rq8k6rkpuas7htia; Path=/;'}`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`let!(:stub) do`
New upstream version 11.10.5+dfsg 2019-06-05 12:25:43 +05:30			`stub_full_request("#{mattermost_url}/oauth/gitlab/login")`
New upstream version 11.1.8+dfsg 2018-11-08 19:23:39 +05:30			`.to_return(headers: { 'location' => location, 'Set-Cookie' => cookie_header }, status: 302)`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`

			`context 'without oauth uri' do`
			`it 'makes a request to the oauth uri' do`
			`expect { subject.with_session }.to raise_error(Mattermost::NoSessionError)`
			`end`
			`end`

			`context 'with oauth_uri' do`
			`let!(:doorkeeper) do`
New upstream version 13.11.2+ds1 2021-04-29 21:17:54 +05:30			`Doorkeeper::Application.create!(`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`name: 'GitLab Mattermost',`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`redirect_uri: "#{mattermost_url}/signup/gitlab/complete\n#{mattermost_url}/login/gitlab/complete",`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`scopes: '')`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`

			`context 'without token_uri' do`
			`it 'can not create a session' do`
			`expect do`
			`subject.with_session`
			`end.to raise_error(Mattermost::NoSessionError)`
			`end`
			`end`

			`context 'with token_uri' do`
			`let(:state) { "state" }`
			`let(:params) do`
			`{ response_type: "code",`
			`client_id: doorkeeper.uid,`
			`redirect_uri: "#{mattermost_url}/signup/gitlab/complete",`
			`state: state }`
			`end`
New upstream version 13.3.8 2020-10-24 23:57:45 +05:30
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`let(:location) do`
			`"#{gitlab_url}/oauth/authorize?#{URI.encode_www_form(params)}"`
			`end`

			`before do`
New upstream version 11.10.5+dfsg 2019-06-05 12:25:43 +05:30			`stub_full_request("#{mattermost_url}/signup/gitlab/complete")`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`.with(query: hash_including({ 'state' => state }))`
			`.to_return do \|request\|`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`post "/oauth/token",`
New upstream version 11.7.5 2019-02-15 15:39:39 +05:30			`params: {`
			`client_id: doorkeeper.uid,`
			`client_secret: doorkeeper.secret,`
			`redirect_uri: params[:redirect_uri],`
			`grant_type: 'authorization_code',`
			`code: request.uri.query_values['code']`
			`}`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30
			`if response.status == 200`
			`{ headers: { 'token' => 'thisworksnow' }, status: 202 }`
			`end`
			`end`

New upstream version 11.10.5+dfsg 2019-06-05 12:25:43 +05:30			`stub_full_request("#{mattermost_url}/api/v4/users/logout", method: :post)`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`.to_return(headers: { Authorization: 'token thisworksnow' }, status: 200)`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`

New upstream version 11.4.9+dfsg 2018-12-05 23:21:45 +05:30			`it 'can set up a session' do`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`subject.with_session do \|session\|`
			`end`

			`expect(subject.token).not_to be_nil`
			`end`

			`it 'returns the value of the block' do`
			`result = subject.with_session do \|session\|`
			`"value"`
			`end`

			`expect(result).to eq("value")`
			`end`
			`end`
			`end`

New upstream version 11.1.8+dfsg 2018-11-08 19:23:39 +05:30			`context 'exclusive lease' do`
			`let(:lease_key) { 'mattermost:session' }`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30
			`it 'tries to obtain a lease' do`
New upstream version 11.1.8+dfsg 2018-11-08 19:23:39 +05:30			`expect_to_obtain_exclusive_lease(lease_key, 'uuid')`
			`expect_to_cancel_exclusive_lease(lease_key, 'uuid')`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30
New upstream version 11.4.9+dfsg 2018-12-05 23:21:45 +05:30			`# Cannot set up a session, but we should still cancel the lease`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`expect { subject.with_session }.to raise_error(Mattermost::NoSessionError)`
			`end`

New upstream version 11.1.8+dfsg 2018-11-08 19:23:39 +05:30			`it 'returns a NoSessionError error without lease' do`
			`stub_exclusive_lease_taken(lease_key)`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30
			`expect { subject.with_session }.to raise_error(Mattermost::NoSessionError)`
			`end`
			`end`
			`end`
			`end`