# frozen_string_literal: true

require 'spec_helper'

RSpec.describe LfsDownloadObject do
  let(:oid) { 'cd293be6cea034bd45a0352775a219ef5dc7825ce55d1f7dae9762d80ce64411' }
  let(:link) { 'http://www.example.com' }
  let(:size) { 1 }
  let(:headers) { { test: "asdf" } }

  subject { described_class.new(oid: oid, size: size, link: link, headers: headers) }

  describe '#headers' do
    it 'returns specified Hash' do
      expect(subject.headers).to eq(headers)
    end

    context 'with nil headers' do
      let(:headers) { nil }

      it 'returns a Hash' do
        expect(subject.headers).to eq({})
      end
    end
  end

  describe '#has_authorization_header?' do
    it 'returns false' do
      expect(subject.has_authorization_header?).to be false
    end

    context 'with uppercase form' do
      let(:headers) { { 'Authorization' => 'Basic 12345' } }

      it 'returns true' do
        expect(subject.has_authorization_header?).to be true
      end
    end

    context 'with lowercase form' do
      let(:headers) { { 'authorization' => 'Basic 12345' } }

      it 'returns true' do
        expect(subject.has_authorization_header?).to be true
      end
    end
  end

  describe 'validations' do
    it { is_expected.to validate_numericality_of(:size).is_greater_than_or_equal_to(0) }

    context 'oid attribute' do
      it 'must be 64 characters long' do
        aggregate_failures do
          expect(described_class.new(oid: 'a' * 63, size: size, link: link)).to be_invalid
          expect(described_class.new(oid: 'a' * 65, size: size, link: link)).to be_invalid
          expect(described_class.new(oid: 'a' * 64, size: size, link: link)).to be_valid
        end
      end

      it 'must contain only hexadecimal characters' do
        aggregate_failures do
          expect(subject).to be_valid
          expect(described_class.new(oid: 'g' * 64, size: size, link: link)).to be_invalid
        end
      end
    end

    context 'link attribute' do
      it 'only http and https protocols are valid' do
        aggregate_failures do
          expect(described_class.new(oid: oid, size: size, link: 'http://www.example.com')).to be_valid
          expect(described_class.new(oid: oid, size: size, link: 'https://www.example.com')).to be_valid
          expect(described_class.new(oid: oid, size: size, link: 'ftp://www.example.com')).to be_invalid
          expect(described_class.new(oid: oid, size: size, link: 'ssh://www.example.com')).to be_invalid
          expect(described_class.new(oid: oid, size: size, link: 'git://www.example.com')).to be_invalid
        end
      end

      it 'cannot be empty' do
        expect(described_class.new(oid: oid, size: size, link: '')).not_to be_valid
      end

      context 'when localhost or local network addresses' do
        subject { described_class.new(oid: oid, size: size, link: 'http://192.168.1.1') }

        before do
          allow(ApplicationSetting)
            .to receive(:current)
              .and_return(ApplicationSetting.build_from_defaults(allow_local_requests_from_web_hooks_and_services: setting))
        end

        context 'are allowed' do
          let(:setting) { true }

          it { expect(subject).to be_valid }
        end

        context 'are not allowed' do
          let(:setting) { false }

          it { expect(subject).to be_invalid }
        end
      end
    end

    context 'headers attribute' do
      it 'only nil and Hash values are valid' do
        aggregate_failures do
          expect(described_class.new(oid: oid, size: size, link: 'http://www.example.com', headers: nil)).to be_valid
          expect(described_class.new(oid: oid, size: size, link: 'http://www.example.com', headers: {})).to be_valid
          expect(described_class.new(oid: oid, size: size, link: 'http://www.example.com', headers: { 'test' => 123 })).to be_valid
          expect(described_class.new(oid: oid, size: size, link: 'http://www.example.com', headers: 'test')).to be_invalid
        end
      end
    end
  end
end