gotosocial/internal/api/client/auth/auth_test.go

/*
   GoToSocial
   Copyright (C) 2021-2022 GoToSocial Authors admin@gotosocial.org

   This program is free software: you can redistribute it and/or modify
   it under the terms of the GNU Affero General Public License as published by
   the Free Software Foundation, either version 3 of the License, or
   (at your option) any later version.

   This program is distributed in the hope that it will be useful,
   but WITHOUT ANY WARRANTY; without even the implied warranty of
   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
   GNU Affero General Public License for more details.

   You should have received a copy of the GNU Affero General Public License
   along with this program.  If not, see <http://www.gnu.org/licenses/>.
*/

package auth_test

import (
	"context"
	"fmt"
	"net/http/httptest"

	"github.com/gin-contrib/sessions"
	"github.com/gin-contrib/sessions/memstore"
	"github.com/gin-gonic/gin"
	"github.com/stretchr/testify/suite"
	"github.com/superseriousbusiness/gotosocial/internal/api/client/auth"
	"github.com/superseriousbusiness/gotosocial/internal/config"
	"github.com/superseriousbusiness/gotosocial/internal/db"
	"github.com/superseriousbusiness/gotosocial/internal/gtsmodel"
	"github.com/superseriousbusiness/gotosocial/internal/oauth"
	"github.com/superseriousbusiness/gotosocial/internal/oidc"
	"github.com/superseriousbusiness/gotosocial/internal/router"
	"github.com/superseriousbusiness/gotosocial/testrig"
)

type AuthStandardTestSuite struct {
	suite.Suite
	db          db.DB
	idp         oidc.IDP
	oauthServer oauth.Server

	// standard suite models
	testTokens       map[string]*gtsmodel.Token
	testClients      map[string]*gtsmodel.Client
	testApplications map[string]*gtsmodel.Application
	testUsers        map[string]*gtsmodel.User
	testAccounts     map[string]*gtsmodel.Account

	// module being tested
	authModule *auth.Module
}

const (
	sessionUserID   = "userid"
	sessionClientID = "client_id"
)

func (suite *AuthStandardTestSuite) SetupSuite() {
	suite.testTokens = testrig.NewTestTokens()
	suite.testClients = testrig.NewTestClients()
	suite.testApplications = testrig.NewTestApplications()
	suite.testUsers = testrig.NewTestUsers()
	suite.testAccounts = testrig.NewTestAccounts()
}

func (suite *AuthStandardTestSuite) SetupTest() {
	testrig.InitTestConfig()
	suite.db = testrig.NewTestDB()
	testrig.InitTestLog()

	suite.oauthServer = testrig.NewTestOauthServer(suite.db)
	var err error
	suite.idp, err = oidc.NewIDP(context.Background())
	if err != nil {
		panic(err)
	}
	suite.authModule = auth.New(suite.db, suite.oauthServer, suite.idp).(*auth.Module)
	testrig.StandardDBSetup(suite.db, nil)
}

func (suite *AuthStandardTestSuite) TearDownTest() {
	testrig.StandardDBTeardown(suite.db)
}

func (suite *AuthStandardTestSuite) newContext(requestMethod string, requestPath string) (*gin.Context, *httptest.ResponseRecorder) {
	// create the recorder and gin test context
	recorder := httptest.NewRecorder()
	ctx, engine := gin.CreateTestContext(recorder)

	// load templates into the engine
	testrig.ConfigureTemplatesWithGin(engine)

	// create the request
	protocol := config.GetProtocol()
	host := config.GetHost()
	baseURI := fmt.Sprintf("%s://%s", protocol, host)
	requestURI := fmt.Sprintf("%s/%s", baseURI, requestPath)
	ctx.Request = httptest.NewRequest(requestMethod, requestURI, nil) // the endpoint we're hitting
	ctx.Request.Header.Set("accept", "text/html")

	// trigger the session middleware on the context
	store := memstore.NewStore(make([]byte, 32), make([]byte, 32))
	store.Options(router.SessionOptions())
	sessionMiddleware := sessions.Sessions("gotosocial-localhost", store)
	sessionMiddleware(ctx)

	return ctx, recorder
}
Oauth/token (#7) * add host and protocol options * some fiddling * tidying up and comments * tick off /oauth/token * tidying a bit * tidying * go mod tidy * allow attaching middleware to server * add middleware * more user friendly * add comments * comments * store account + app * tidying * lots of restructuring * lint + tidy 2021-03-22 21:26:54 +00:00			`/*`
			`GoToSocial`
Extend license notices to 2022 (#354) 2021-12-20 17:42:19 +00:00			`Copyright (C) 2021-2022 GoToSocial Authors admin@gotosocial.org`
Oauth/token (#7) * add host and protocol options * some fiddling * tidying up and comments * tick off /oauth/token * tidying a bit * tidying * go mod tidy * allow attaching middleware to server * add middleware * more user friendly * add comments * comments * store account + app * tidying * lots of restructuring * lint + tidy 2021-03-22 21:26:54 +00:00
			`This program is free software: you can redistribute it and/or modify`
			`it under the terms of the GNU Affero General Public License as published by`
			`the Free Software Foundation, either version 3 of the License, or`
			`(at your option) any later version.`

			`This program is distributed in the hope that it will be useful,`
			`but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`GNU Affero General Public License for more details.`

			`You should have received a copy of the GNU Affero General Public License`
			`along with this program. If not, see <http://www.gnu.org/licenses/>.`
			`*/`

Ap (#14) Big restructuring and initial work on activitypub 2021-05-08 12:25:55 +00:00			`package auth_test`
Oauth/token (#7) * add host and protocol options * some fiddling * tidying up and comments * tick off /oauth/token * tidying a bit * tidying * go mod tidy * allow attaching middleware to server * add middleware * more user friendly * add comments * comments * store account + app * tidying * lots of restructuring * lint + tidy 2021-03-22 21:26:54 +00:00
[feature] add authorization to the already-existing authentication (#365) * add ensureUserIsAuthorizedOrRedirect to /oauth/authorize * adding authorization (email confirm, account approve, etc) to TokenCheck * revert un-needed changes to signin.go * oops what happened here * error css * add account.SuspendedAt check * remove redundant checks from oauth util Authed function * wip tests * tests passing * stop stripping useful information from ErrAlreadyExists * that feeling of scraping the dryer LINT off the screen * oops I didn't mean to get rid of this NewTestRouter function * make tests work with recorder * re-add ConfigureTemplatesWithGin to handle template path err Co-authored-by: tsmethurst <tobi.smethurst@protonmail.com> 2022-02-07 11:04:31 +00:00			`import (`
			`"context"`
			`"fmt"`
			`"net/http/httptest"`

			`"github.com/gin-contrib/sessions"`
			`"github.com/gin-contrib/sessions/memstore"`
			`"github.com/gin-gonic/gin"`
			`"github.com/stretchr/testify/suite"`
			`"github.com/superseriousbusiness/gotosocial/internal/api/client/auth"`
			`"github.com/superseriousbusiness/gotosocial/internal/config"`
			`"github.com/superseriousbusiness/gotosocial/internal/db"`
			`"github.com/superseriousbusiness/gotosocial/internal/gtsmodel"`
			`"github.com/superseriousbusiness/gotosocial/internal/oauth"`
			`"github.com/superseriousbusiness/gotosocial/internal/oidc"`
			`"github.com/superseriousbusiness/gotosocial/internal/router"`
			`"github.com/superseriousbusiness/gotosocial/testrig"`
			`)`

			`type AuthStandardTestSuite struct {`
			`suite.Suite`
			`db db.DB`
			`idp oidc.IDP`
			`oauthServer oauth.Server`

			`// standard suite models`
			`testTokens map[string]*gtsmodel.Token`
			`testClients map[string]*gtsmodel.Client`
			`testApplications map[string]*gtsmodel.Application`
			`testUsers map[string]*gtsmodel.User`
			`testAccounts map[string]*gtsmodel.Account`

			`// module being tested`
			`authModule *auth.Module`
			`}`

			`const (`
			`sessionUserID = "userid"`
			`sessionClientID = "client_id"`
			`)`

			`func (suite *AuthStandardTestSuite) SetupSuite() {`
			`suite.testTokens = testrig.NewTestTokens()`
			`suite.testClients = testrig.NewTestClients()`
			`suite.testApplications = testrig.NewTestApplications()`
			`suite.testUsers = testrig.NewTestUsers()`
			`suite.testAccounts = testrig.NewTestAccounts()`
			`}`

			`func (suite *AuthStandardTestSuite) SetupTest() {`
			`testrig.InitTestConfig()`
			`suite.db = testrig.NewTestDB()`
			`testrig.InitTestLog()`

			`suite.oauthServer = testrig.NewTestOauthServer(suite.db)`
			`var err error`
			`suite.idp, err = oidc.NewIDP(context.Background())`
			`if err != nil {`
			`panic(err)`
			`}`
			`suite.authModule = auth.New(suite.db, suite.oauthServer, suite.idp).(*auth.Module)`
			`testrig.StandardDBSetup(suite.db, nil)`
			`}`

			`func (suite *AuthStandardTestSuite) TearDownTest() {`
			`testrig.StandardDBTeardown(suite.db)`
			`}`

			`func (suite AuthStandardTestSuite) newContext(requestMethod string, requestPath string) (gin.Context, *httptest.ResponseRecorder) {`
			`// create the recorder and gin test context`
			`recorder := httptest.NewRecorder()`
			`ctx, engine := gin.CreateTestContext(recorder)`

			`// load templates into the engine`
			`testrig.ConfigureTemplatesWithGin(engine)`

			`// create the request`
[chore] Global server configuration overhaul (#575) * move config flag names and usage to config package, rewrite config package to use global Configuration{} struct Signed-off-by: kim <grufwub@gmail.com> * improved code comment Signed-off-by: kim <grufwub@gmail.com> * linter Signed-off-by: kim <grufwub@gmail.com> * fix unmarshaling Signed-off-by: kim <grufwub@gmail.com> * remove kim's custom go compiler changes Signed-off-by: kim <grufwub@gmail.com> * generate setter and flag-name functions, implement these in codebase Signed-off-by: kim <grufwub@gmail.com> * update deps Signed-off-by: kim <grufwub@gmail.com> * small change Signed-off-by: kim <grufwub@gmail.com> * appease the linter... Signed-off-by: kim <grufwub@gmail.com> * move configuration into ConfigState structure, ensure reloading to/from viper settings to keep in sync Signed-off-by: kim <grufwub@gmail.com> * lint Signed-off-by: kim <grufwub@gmail.com> * update code comments Signed-off-by: kim <grufwub@gmail.com> * fix merge issue Signed-off-by: kim <grufwub@gmail.com> * fix merge issue Signed-off-by: kim <grufwub@gmail.com> * improved version string (removes time + go version) Signed-off-by: kim <grufwub@gmail.com> * fix version string build to pass test script + consolidate logic in func Signed-off-by: kim <grufwub@gmail.com> * add license text, update config.Defaults comment Signed-off-by: kim <grufwub@gmail.com> * add license text to generated config helpers file Signed-off-by: kim <grufwub@gmail.com> * defer unlock on config.Set___(), to ensure unlocked on panic Signed-off-by: kim <grufwub@gmail.com> * make it more obvious which cmd flags are being attached Signed-off-by: kim <grufwub@gmail.com> 2022-05-30 12:41:24 +00:00			`protocol := config.GetProtocol()`
			`host := config.GetHost()`
[feature] add authorization to the already-existing authentication (#365) * add ensureUserIsAuthorizedOrRedirect to /oauth/authorize * adding authorization (email confirm, account approve, etc) to TokenCheck * revert un-needed changes to signin.go * oops what happened here * error css * add account.SuspendedAt check * remove redundant checks from oauth util Authed function * wip tests * tests passing * stop stripping useful information from ErrAlreadyExists * that feeling of scraping the dryer LINT off the screen * oops I didn't mean to get rid of this NewTestRouter function * make tests work with recorder * re-add ConfigureTemplatesWithGin to handle template path err Co-authored-by: tsmethurst <tobi.smethurst@protonmail.com> 2022-02-07 11:04:31 +00:00			`baseURI := fmt.Sprintf("%s://%s", protocol, host)`
			`requestURI := fmt.Sprintf("%s/%s", baseURI, requestPath)`
			`ctx.Request = httptest.NewRequest(requestMethod, requestURI, nil) // the endpoint we're hitting`
			`ctx.Request.Header.Set("accept", "text/html")`

			`// trigger the session middleware on the context`
			`store := memstore.NewStore(make([]byte, 32), make([]byte, 32))`
			`store.Options(router.SessionOptions())`
			`sessionMiddleware := sessions.Sessions("gotosocial-localhost", store)`
			`sessionMiddleware(ctx)`

			`return ctx, recorder`
			`}`