Google Git
Sign in
dart / oauth2 / 2b8bc8a2af982c690b7916f9748938b4e5de0c56 / . / test / authorization_code_grant_test.dart
blob: ec6e71bff807de0c1723b66f6821a530974a396e [file] [log] [blame]
// Copyright (c) 2012, the Dart project authors. Please see the AUTHORS file
// for details. All rights reserved. Use of this source code is governed by a
// BSD-style license that can be found in the LICENSE file.
import 'dart:async';
import 'dart:convert';
import 'package:test/test.dart';
import 'package:http/http.dart' as http;
import 'package:oauth2/oauth2.dart' as oauth2;
import 'utils.dart';
final redirectUrl = Uri.parse('http://example.com/redirect');
void main() {
ExpectClient client;
oauth2.AuthorizationCodeGrant grant;
setUp(() {
client = new ExpectClient();
grant = new oauth2.AuthorizationCodeGrant(
'identifier',
Uri.parse('https://example.com/authorization'),
Uri.parse('https://example.com/token'),
secret: 'secret',
httpClient: client);
});
group('.getAuthorizationUrl', () {
test('builds the correct URL', () {
expect(
grant.getAuthorizationUrl(redirectUrl).toString(),
equals('https://example.com/authorization'
'?response_type=code'
'&client_id=identifier'
'&redirect_uri=http%3A%2F%2Fexample.com%2Fredirect'));
});
test('builds the correct URL with scopes', () {
var authorizationUrl = grant
.getAuthorizationUrl(redirectUrl, scopes: ['scope', 'other/scope']);
expect(
authorizationUrl.toString(),
equals('https://example.com/authorization'
'?response_type=code'
'&client_id=identifier'
'&redirect_uri=http%3A%2F%2Fexample.com%2Fredirect'
'&scope=scope+other%2Fscope'));
});
test('separates scopes with the correct delimiter', () {
var grant = new oauth2.AuthorizationCodeGrant(
'identifier',
Uri.parse('https://example.com/authorization'),
Uri.parse('https://example.com/token'),
secret: 'secret',
httpClient: client,
delimiter: '_');
var authorizationUrl = grant
.getAuthorizationUrl(redirectUrl, scopes: ['scope', 'other/scope']);
expect(
authorizationUrl.toString(),
equals('https://example.com/authorization'
'?response_type=code'
'&client_id=identifier'
'&redirect_uri=http%3A%2F%2Fexample.com%2Fredirect'
'&scope=scope_other%2Fscope'));
});
test('builds the correct URL with state', () {
var authorizationUrl =
grant.getAuthorizationUrl(redirectUrl, state: 'state');
expect(
authorizationUrl.toString(),
equals('https://example.com/authorization'
'?response_type=code'
'&client_id=identifier'
'&redirect_uri=http%3A%2F%2Fexample.com%2Fredirect'
'&state=state'));
});
test('merges with existing query parameters', () {
grant = new oauth2.AuthorizationCodeGrant(
'identifier',
Uri.parse('https://example.com/authorization?query=value'),
Uri.parse('https://example.com/token'),
secret: 'secret',
httpClient: client);
var authorizationUrl = grant.getAuthorizationUrl(redirectUrl);
expect(
authorizationUrl.toString(),
equals('https://example.com/authorization'
'?query=value'
'&response_type=code'
'&client_id=identifier'
'&redirect_uri=http%3A%2F%2Fexample.com%2Fredirect'));
});
test("can't be called twice", () {
grant.getAuthorizationUrl(redirectUrl);
expect(() => grant.getAuthorizationUrl(redirectUrl), throwsStateError);
});
});
group('.handleAuthorizationResponse', () {
test("can't be called before .getAuthorizationUrl", () {
expect(grant.handleAuthorizationResponse({}), throwsStateError);
});
test("can't be called twice", () {
grant.getAuthorizationUrl(redirectUrl);
expect(grant.handleAuthorizationResponse({'code': 'auth code'}),
throwsFormatException);
expect(grant.handleAuthorizationResponse({'code': 'auth code'}),
throwsStateError);
});
test('must have a state parameter if the authorization URL did', () {
grant.getAuthorizationUrl(redirectUrl, state: 'state');
expect(grant.handleAuthorizationResponse({'code': 'auth code'}),
throwsFormatException);
});
test('must have the same state parameter the authorization URL did', () {
grant.getAuthorizationUrl(redirectUrl, state: 'state');
expect(
grant.handleAuthorizationResponse(
{'code': 'auth code', 'state': 'other state'}),
throwsFormatException);
});
test('must have a code parameter', () {
grant.getAuthorizationUrl(redirectUrl);
expect(grant.handleAuthorizationResponse({}), throwsFormatException);
});
test('with an error parameter throws an AuthorizationException', () {
grant.getAuthorizationUrl(redirectUrl);
expect(grant.handleAuthorizationResponse({'error': 'invalid_request'}),
throwsA((e) => e is oauth2.AuthorizationException));
});
test('sends an authorization code request', () {
grant.getAuthorizationUrl(redirectUrl);
client.expectRequest((request) {
expect(request.method, equals('POST'));
expect(request.url.toString(), equals(grant.tokenEndpoint.toString()));
expect(
request.bodyFields,
equals({
'grant_type': 'authorization_code',
'code': 'auth code',
'redirect_uri': redirectUrl.toString()
}));
expect(request.headers,
containsPair("Authorization", "Basic aWRlbnRpZmllcjpzZWNyZXQ="));
return new Future.value(new http.Response(
jsonEncode({
'access_token': 'access token',
'token_type': 'bearer',
}),
200,
headers: {'content-type': 'application/json'}));
});
expect(
grant.handleAuthorizationResponse({'code': 'auth code'}).then(
(client) => client.credentials.accessToken),
completion(equals('access token')));
});
});
group('.handleAuthorizationCode', () {
test("can't be called before .getAuthorizationUrl", () {
expect(grant.handleAuthorizationCode('auth code'), throwsStateError);
});
test("can't be called twice", () {
grant.getAuthorizationUrl(redirectUrl);
expect(grant.handleAuthorizationCode('auth code'), throwsFormatException);
expect(grant.handleAuthorizationCode('auth code'), throwsStateError);
});
test('sends an authorization code request', () {
grant.getAuthorizationUrl(redirectUrl);
client.expectRequest((request) {
expect(request.method, equals('POST'));
expect(request.url.toString(), equals(grant.tokenEndpoint.toString()));
expect(
request.bodyFields,
equals({
'grant_type': 'authorization_code',
'code': 'auth code',
'redirect_uri': redirectUrl.toString()
}));
expect(request.headers,
containsPair("Authorization", "Basic aWRlbnRpZmllcjpzZWNyZXQ="));
return new Future.value(new http.Response(
jsonEncode({
'access_token': 'access token',
'token_type': 'bearer',
}),
200,
headers: {'content-type': 'application/json'}));
});
expect(grant.handleAuthorizationCode('auth code'),
completion(predicate((client) {
expect(client.credentials.accessToken, equals('access token'));
return true;
})));
});
});
group("with basicAuth: false", () {
setUp(() {
client = new ExpectClient();
grant = new oauth2.AuthorizationCodeGrant(
'identifier',
Uri.parse('https://example.com/authorization'),
Uri.parse('https://example.com/token'),
secret: 'secret',
basicAuth: false,
httpClient: client);
});
test('.handleAuthorizationResponse sends an authorization code request',
() {
grant.getAuthorizationUrl(redirectUrl);
client.expectRequest((request) {
expect(request.method, equals('POST'));
expect(request.url.toString(), equals(grant.tokenEndpoint.toString()));
expect(
request.bodyFields,
equals({
'grant_type': 'authorization_code',
'code': 'auth code',
'redirect_uri': redirectUrl.toString(),
'client_id': 'identifier',
'client_secret': 'secret'
}));
return new Future.value(new http.Response(
jsonEncode({
'access_token': 'access token',
'token_type': 'bearer',
}),
200,
headers: {'content-type': 'application/json'}));
});
expect(
grant.handleAuthorizationResponse({'code': 'auth code'}).then(
(client) => client.credentials.accessToken),
completion(equals('access token')));
});
test('.handleAuthorizationCode sends an authorization code request', () {
grant.getAuthorizationUrl(redirectUrl);
client.expectRequest((request) {
expect(request.method, equals('POST'));
expect(request.url.toString(), equals(grant.tokenEndpoint.toString()));
expect(
request.bodyFields,
equals({
'grant_type': 'authorization_code',
'code': 'auth code',
'redirect_uri': redirectUrl.toString(),
'client_id': 'identifier',
'client_secret': 'secret'
}));
return new Future.value(new http.Response(
jsonEncode({
'access_token': 'access token',
'token_type': 'bearer',
}),
200,
headers: {'content-type': 'application/json'}));
});
expect(grant.handleAuthorizationCode('auth code'),
completion(predicate((client) {
expect(client.credentials.accessToken, equals('access token'));
return true;
})));
});
});
}