squeegily
/
pleroma
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 42 Wiki Activity
Fork of Pleroma with site-specific changes and feature branches https://git.pleroma.social/pleroma/pleroma
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
10196 Commits
154 Branches
503MB
Tree: aca6a7543a
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'aca6a7543a'
${ noResults }
pleroma/test/web/oauth/token_test.exs

86 lines
2.4KB
Raw Blame History 

  1. # Pleroma: A lightweight social networking server

  2. # Copyright © 2017-2020 Pleroma Authors <https://pleroma.social/>

  3. # SPDX-License-Identifier: AGPL-3.0-only

  4. 

  5. defmodule Pleroma.Web.OAuth.TokenTest do

  6.   use Pleroma.DataCase

  7.   alias Pleroma.Repo

  8.   alias Pleroma.Web.OAuth.App

  9.   alias Pleroma.Web.OAuth.Authorization

  10.   alias Pleroma.Web.OAuth.Token

  11. 

  12.   import Pleroma.Factory

  13. 

  14.   test "exchanges a auth token for an access token, preserving `scopes`" do

  15.     {:ok, app} =

  16.       Repo.insert(

  17.         App.register_changeset(%App{}, %{

  18.           client_name: "client",

  19.           scopes: ["read", "write"],

  20.           redirect_uris: "url"

  21.         })

  22.       )

  23. 

  24.     user = insert(:user)

  25. 

  26.     {:ok, auth} = Authorization.create_authorization(app, user, ["read"])

  27.     assert auth.scopes == ["read"]

  28. 

  29.     {:ok, token} = Token.exchange_token(app, auth)

  30. 

  31.     assert token.app_id == app.id

  32.     assert token.user_id == user.id

  33.     assert token.scopes == auth.scopes

  34.     assert String.length(token.token) > 10

  35.     assert String.length(token.refresh_token) > 10

  36. 

  37.     auth = Repo.get(Authorization, auth.id)

  38.     {:error, "already used"} = Token.exchange_token(app, auth)

  39.   end

  40. 

  41.   test "deletes all tokens of a user" do

  42.     {:ok, app1} =

  43.       Repo.insert(

  44.         App.register_changeset(%App{}, %{

  45.           client_name: "client1",

  46.           scopes: ["scope"],

  47.           redirect_uris: "url"

  48.         })

  49.       )

  50. 

  51.     {:ok, app2} =

  52.       Repo.insert(

  53.         App.register_changeset(%App{}, %{

  54.           client_name: "client2",

  55.           scopes: ["scope"],

  56.           redirect_uris: "url"

  57.         })

  58.       )

  59. 

  60.     user = insert(:user)

  61. 

  62.     {:ok, auth1} = Authorization.create_authorization(app1, user)

  63.     {:ok, auth2} = Authorization.create_authorization(app2, user)

  64. 

  65.     {:ok, _token1} = Token.exchange_token(app1, auth1)

  66.     {:ok, _token2} = Token.exchange_token(app2, auth2)

  67. 

  68.     {tokens, _} = Token.delete_user_tokens(user)

  69. 

  70.     assert tokens == 2

  71.   end

  72. 

  73.   test "deletes expired tokens" do

  74.     insert(:oauth_token, valid_until: Timex.shift(Timex.now(), days: -3))

  75.     insert(:oauth_token, valid_until: Timex.shift(Timex.now(), days: -3))

  76.     t3 = insert(:oauth_token)

  77.     t4 = insert(:oauth_token, valid_until: Timex.shift(Timex.now(), minutes: 10))

  78.     {tokens, _} = Token.delete_expired_tokens()

  79.     assert tokens == 2

  80.     available_tokens = Pleroma.Repo.all(Token)

  81. 

  82.     token_ids = available_tokens |> Enum.map(& &1.id)

  83.     assert token_ids == [t3.id, t4.id]

  84.   end

  85. end