debian-mirror-gitlab/spec/controllers/google_api/authorizations_controller_spec.rb

# frozen_string_literal: true

require 'spec_helper'

RSpec.describe GoogleApi::AuthorizationsController do
  describe 'GET|POST #callback' do
    let(:user) { create(:user) }
    let(:token) { 'token' }
    let(:expires_at) { 1.hour.since.strftime('%s') }

    subject { get :callback, params: { code: 'xxx', state: state } }

    before do
      sign_in(user)
    end

    shared_examples_for 'access denied' do
      it 'returns a 404' do
        subject

        expect(session[GoogleApi::CloudPlatform::Client.session_key_for_token]).to be_nil
        expect(response).to have_gitlab_http_status(:not_found)
      end
    end

    context 'session key is present' do
      let(:session_key) { 'session-key' }
      let(:redirect_uri) { 'example.com' }

      before do
        session[GoogleApi::CloudPlatform::Client.session_key_for_redirect_uri(session_key)] = redirect_uri
      end

      context 'session key matches state param' do
        let(:state) { session_key }

        before do
          allow_next_instance_of(GoogleApi::CloudPlatform::Client) do |instance|
            allow(instance).to receive(:get_token).and_return([token, expires_at])
          end
        end

        it 'sets token and expires_at in session' do
          subject

          expect(session[GoogleApi::CloudPlatform::Client.session_key_for_token])
            .to eq(token)
          expect(session[GoogleApi::CloudPlatform::Client.session_key_for_expires_at])
            .to eq(expires_at)
        end

        it 'redirects to the URL stored in state param' do
          expect(subject).to redirect_to(redirect_uri)
        end
      end

      context 'session key does not match state param' do
        let(:state) { 'bad-key' }

        it_behaves_like 'access denied'
      end

      context 'state param is blank' do
        let(:state) { '' }

        it_behaves_like 'access denied'
      end

      context 'when a Faraday exception occurs' do
        let(:state) { session_key }

        [::Faraday::TimeoutError, ::Faraday::ConnectionFailed].each do |error|
          it "sets a flash alert on #{error}" do
            allow_next_instance_of(GoogleApi::CloudPlatform::Client) do |instance|
              allow(instance).to receive(:get_token).and_raise(error.new(nil))
            end

            subject

            expect(flash[:alert]).to eq('Timeout connecting to the Google API. Please try again.')
          end
        end
      end
    end

    context 'state param is present, but session key is blank' do
      let(:state) { 'session-key' }

      it_behaves_like 'access denied'
    end

    context 'user logs in but declines authorizations' do
      subject { get :callback, params: { error: 'xxx', state: state } }

      let(:session_key) { 'session-key' }
      let(:redirect_uri) { 'example.com' }
      let(:error_uri) { 'error.com' }
      let(:state) { session_key }

      before do
        session[GoogleApi::CloudPlatform::Client.session_key_for_redirect_uri(session_key)] = redirect_uri
        session[:error_uri] = error_uri
        allow_next_instance_of(GoogleApi::CloudPlatform::Client) do |instance|
          allow(instance).to receive(:get_token).and_return([token, expires_at])
        end
      end

      it 'redirects to error uri' do
        expect(subject).to redirect_to(error_uri)
      end
    end
  end
end
New upstream version 11.11.7+dfsg 2019-07-31 22:56:46 +05:30			`# frozen_string_literal: true`

New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`require 'spec_helper'`

New upstream version 13.1.0 2020-06-23 00:09:42 +05:30			`RSpec.describe GoogleApi::AuthorizationsController do`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`describe 'GET\|POST #callback' do`
			`let(:user) { create(:user) }`
			`let(:token) { 'token' }`
			`let(:expires_at) { 1.hour.since.strftime('%s') }`

New upstream version 11.8.2 2019-03-13 22:55:13 +05:30			`subject { get :callback, params: { code: 'xxx', state: state } }`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30
			`before do`
			`sign_in(user)`
			`end`

New upstream version 11.8.2 2019-03-13 22:55:13 +05:30			`shared_examples_for 'access denied' do`
			`it 'returns a 404' do`
			`subject`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30
New upstream version 11.8.2 2019-03-13 22:55:13 +05:30			`expect(session[GoogleApi::CloudPlatform::Client.session_key_for_token]).to be_nil`
New upstream version 12.8.6 2020-03-13 15:44:24 +05:30			`expect(response).to have_gitlab_http_status(:not_found)`
New upstream version 11.8.2 2019-03-13 22:55:13 +05:30			`end`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`end`

New upstream version 11.8.2 2019-03-13 22:55:13 +05:30			`context 'session key is present' do`
			`let(:session_key) { 'session-key' }`
			`let(:redirect_uri) { 'example.com' }`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30
			`before do`
New upstream version 11.8.2 2019-03-13 22:55:13 +05:30			`session[GoogleApi::CloudPlatform::Client.session_key_for_redirect_uri(session_key)] = redirect_uri`
			`end`

			`context 'session key matches state param' do`
			`let(:state) { session_key }`

New upstream version 13.0.0 2020-05-24 23:13:21 +05:30			`before do`
			`allow_next_instance_of(GoogleApi::CloudPlatform::Client) do \|instance\|`
			`allow(instance).to receive(:get_token).and_return([token, expires_at])`
			`end`
			`end`

New upstream version 11.8.2 2019-03-13 22:55:13 +05:30			`it 'sets token and expires_at in session' do`
			`subject`

			`expect(session[GoogleApi::CloudPlatform::Client.session_key_for_token])`
			`.to eq(token)`
			`expect(session[GoogleApi::CloudPlatform::Client.session_key_for_expires_at])`
			`.to eq(expires_at)`
			`end`

			`it 'redirects to the URL stored in state param' do`
			`expect(subject).to redirect_to(redirect_uri)`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`end`
			`end`

New upstream version 11.8.2 2019-03-13 22:55:13 +05:30			`context 'session key does not match state param' do`
			`let(:state) { 'bad-key' }`

			`it_behaves_like 'access denied'`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`end`

New upstream version 11.8.2 2019-03-13 22:55:13 +05:30			`context 'state param is blank' do`
			`let(:state) { '' }`

			`it_behaves_like 'access denied'`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`end`
New upstream version 13.0.0 2020-05-24 23:13:21 +05:30
			`context 'when a Faraday exception occurs' do`
			`let(:state) { session_key }`

			`[::Faraday::TimeoutError, ::Faraday::ConnectionFailed].each do \|error\|`
			`it "sets a flash alert on #{error}" do`
			`allow_next_instance_of(GoogleApi::CloudPlatform::Client) do \|instance\|`
			`allow(instance).to receive(:get_token).and_raise(error.new(nil))`
			`end`

			`subject`

			`expect(flash[:alert]).to eq('Timeout connecting to the Google API. Please try again.')`
			`end`
			`end`
			`end`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`end`
New upstream version 11.8.2 2019-03-13 22:55:13 +05:30
			`context 'state param is present, but session key is blank' do`
			`let(:state) { 'session-key' }`

			`it_behaves_like 'access denied'`
			`end`
New upstream version 14.6.3+ds1 2022-01-26 12:08:38 +05:30
			`context 'user logs in but declines authorizations' do`
			`subject { get :callback, params: { error: 'xxx', state: state } }`

			`let(:session_key) { 'session-key' }`
			`let(:redirect_uri) { 'example.com' }`
			`let(:error_uri) { 'error.com' }`
			`let(:state) { session_key }`

			`before do`
			`session[GoogleApi::CloudPlatform::Client.session_key_for_redirect_uri(session_key)] = redirect_uri`
			`session[:error_uri] = error_uri`
			`allow_next_instance_of(GoogleApi::CloudPlatform::Client) do \|instance\|`
			`allow(instance).to receive(:get_token).and_return([token, expires_at])`
			`end`
			`end`

			`it 'redirects to error uri' do`
			`expect(subject).to redirect_to(error_uri)`
			`end`
			`end`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`end`
			`end`