mirror of
https://github.com/superseriousbusiness/gotosocial.git
synced 2024-06-02 09:41:01 +00:00
9d0df426da
* feat: vendor minio client * feat: introduce storage package with s3 support * feat: serve s3 files directly this saves a lot of bandwith as the files are fetched from the object store directly * fix: use explicit local storage in tests * feat: integrate s3 storage with the main server * fix: add s3 config to cli tests * docs: explicitly set values in example config also adds license header to the storage package * fix: use better http status code on s3 redirect HTTP 302 Found is the best fit, as it signifies that the resource requested was found but not under its presumed URL 307/TemporaryRedirect would mean that this resource is usually located here, not in this case 303/SeeOther indicates that the redirection does not link to the requested resource but to another page * refactor: use context in storage driver interface
140 lines
5.1 KiB
Go
140 lines
5.1 KiB
Go
/*
|
|
GoToSocial
|
|
Copyright (C) 2021-2022 GoToSocial Authors admin@gotosocial.org
|
|
|
|
This program is free software: you can redistribute it and/or modify
|
|
it under the terms of the GNU Affero General Public License as published by
|
|
the Free Software Foundation, either version 3 of the License, or
|
|
(at your option) any later version.
|
|
|
|
This program is distributed in the hope that it will be useful,
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
GNU Affero General Public License for more details.
|
|
|
|
You should have received a copy of the GNU Affero General Public License
|
|
along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
*/
|
|
|
|
package auth_test
|
|
|
|
import (
|
|
"bytes"
|
|
"context"
|
|
"fmt"
|
|
"net/http/httptest"
|
|
|
|
"github.com/gin-contrib/sessions"
|
|
"github.com/gin-contrib/sessions/memstore"
|
|
"github.com/gin-gonic/gin"
|
|
"github.com/stretchr/testify/suite"
|
|
"github.com/superseriousbusiness/gotosocial/internal/api/client/auth"
|
|
"github.com/superseriousbusiness/gotosocial/internal/concurrency"
|
|
"github.com/superseriousbusiness/gotosocial/internal/config"
|
|
"github.com/superseriousbusiness/gotosocial/internal/db"
|
|
"github.com/superseriousbusiness/gotosocial/internal/email"
|
|
"github.com/superseriousbusiness/gotosocial/internal/federation"
|
|
"github.com/superseriousbusiness/gotosocial/internal/gtsmodel"
|
|
"github.com/superseriousbusiness/gotosocial/internal/media"
|
|
"github.com/superseriousbusiness/gotosocial/internal/messages"
|
|
"github.com/superseriousbusiness/gotosocial/internal/oauth"
|
|
"github.com/superseriousbusiness/gotosocial/internal/oidc"
|
|
"github.com/superseriousbusiness/gotosocial/internal/processing"
|
|
"github.com/superseriousbusiness/gotosocial/internal/router"
|
|
"github.com/superseriousbusiness/gotosocial/internal/storage"
|
|
"github.com/superseriousbusiness/gotosocial/testrig"
|
|
)
|
|
|
|
type AuthStandardTestSuite struct {
|
|
suite.Suite
|
|
db db.DB
|
|
storage storage.Driver
|
|
mediaManager media.Manager
|
|
federator federation.Federator
|
|
processor processing.Processor
|
|
emailSender email.Sender
|
|
idp oidc.IDP
|
|
oauthServer oauth.Server
|
|
|
|
// standard suite models
|
|
testTokens map[string]*gtsmodel.Token
|
|
testClients map[string]*gtsmodel.Client
|
|
testApplications map[string]*gtsmodel.Application
|
|
testUsers map[string]*gtsmodel.User
|
|
testAccounts map[string]*gtsmodel.Account
|
|
|
|
// module being tested
|
|
authModule *auth.Module
|
|
}
|
|
|
|
const (
|
|
sessionUserID = "userid"
|
|
sessionClientID = "client_id"
|
|
)
|
|
|
|
func (suite *AuthStandardTestSuite) SetupSuite() {
|
|
suite.testTokens = testrig.NewTestTokens()
|
|
suite.testClients = testrig.NewTestClients()
|
|
suite.testApplications = testrig.NewTestApplications()
|
|
suite.testUsers = testrig.NewTestUsers()
|
|
suite.testAccounts = testrig.NewTestAccounts()
|
|
}
|
|
|
|
func (suite *AuthStandardTestSuite) SetupTest() {
|
|
testrig.InitTestConfig()
|
|
testrig.InitTestLog()
|
|
|
|
fedWorker := concurrency.NewWorkerPool[messages.FromFederator](-1, -1)
|
|
clientWorker := concurrency.NewWorkerPool[messages.FromClientAPI](-1, -1)
|
|
|
|
suite.db = testrig.NewTestDB()
|
|
suite.storage = testrig.NewInMemoryStorage()
|
|
suite.mediaManager = testrig.NewTestMediaManager(suite.db, suite.storage)
|
|
suite.federator = testrig.NewTestFederator(suite.db, testrig.NewTestTransportController(testrig.NewMockHTTPClient(nil, "../../../../testrig/media"), suite.db, fedWorker), suite.storage, suite.mediaManager, fedWorker)
|
|
suite.emailSender = testrig.NewEmailSender("../../../../web/template/", nil)
|
|
suite.processor = testrig.NewTestProcessor(suite.db, suite.storage, suite.federator, suite.emailSender, suite.mediaManager, clientWorker, fedWorker)
|
|
|
|
suite.oauthServer = testrig.NewTestOauthServer(suite.db)
|
|
var err error
|
|
suite.idp, err = oidc.NewIDP(context.Background())
|
|
if err != nil {
|
|
panic(err)
|
|
}
|
|
suite.authModule = auth.New(suite.db, suite.idp, suite.processor).(*auth.Module)
|
|
testrig.StandardDBSetup(suite.db, suite.testAccounts)
|
|
}
|
|
|
|
func (suite *AuthStandardTestSuite) TearDownTest() {
|
|
testrig.StandardDBTeardown(suite.db)
|
|
}
|
|
|
|
func (suite *AuthStandardTestSuite) newContext(requestMethod string, requestPath string, requestBody []byte, bodyContentType string) (*gin.Context, *httptest.ResponseRecorder) {
|
|
// create the recorder and gin test context
|
|
recorder := httptest.NewRecorder()
|
|
ctx, engine := gin.CreateTestContext(recorder)
|
|
|
|
// load templates into the engine
|
|
testrig.ConfigureTemplatesWithGin(engine, "../../../../web/template")
|
|
|
|
// create the request
|
|
protocol := config.GetProtocol()
|
|
host := config.GetHost()
|
|
baseURI := fmt.Sprintf("%s://%s", protocol, host)
|
|
requestURI := fmt.Sprintf("%s/%s", baseURI, requestPath)
|
|
|
|
ctx.Request = httptest.NewRequest(requestMethod, requestURI, bytes.NewReader(requestBody)) // the endpoint we're hitting
|
|
ctx.Request.Header.Set("accept", "text/html")
|
|
|
|
if bodyContentType != "" {
|
|
ctx.Request.Header.Set("Content-Type", bodyContentType)
|
|
}
|
|
|
|
// trigger the session middleware on the context
|
|
store := memstore.NewStore(make([]byte, 32), make([]byte, 32))
|
|
store.Options(router.SessionOptions())
|
|
sessionMiddleware := sessions.Sessions("gotosocial-localhost", store)
|
|
sessionMiddleware(ctx)
|
|
|
|
return ctx, recorder
|
|
}
|