Google Git
Sign in
dart / sdk / da3df4548c00bb972de56f7bdd6a3fba6626653f / . / utils / tests / pub / oauth2_test.dart
blob: f640e114326546ec17a87bafb05d7e2224cdcfc7 [file] [log] [blame]
// Copyright (c) 2012, the Dart project authors. Please see the AUTHORS file
// for details. All rights reserved. Use of this source code is governed by a
// BSD-style license that can be found in the LICENSE file.
library oauth2_test;
import 'dart:io';
import 'dart:json';
import 'dart:uri';
import 'test_pub.dart';
import '../../../pkg/http/lib/http.dart' as http;
import '../../../pkg/unittest/lib/unittest.dart';
import '../../pub/io.dart';
import '../../pub/utils.dart';
main() {
setUp(() => normalPackage.scheduleCreate());
test('with no credentials.json, authenticates and saves credentials.json',
() {
var server = new ScheduledServer();
var pub = startPubLish(server);
confirmPublish(pub);
authorizePub(pub, server);
server.handle('GET', '/packages/versions/new.json', (request, response) {
expect(request.headers.value('authorization'),
equals('Bearer access token'));
response.outputStream.close();
});
pub.kill();
credentialsFile(server, 'access token').scheduleValidate();
run();
});
test('with a pre-existing credentials.json does not authenticate', () {
var server = new ScheduledServer();
credentialsFile(server, 'access token').scheduleCreate();
var pub = startPubLish(server);
confirmPublish(pub);
server.handle('GET', '/packages/versions/new.json', (request, response) {
expect(request.headers.value('authorization'),
equals('Bearer access token'));
response.outputStream.close();
});
pub.kill();
run();
});
test('with an expired credentials.json, refreshes and saves the refreshed '
'access token to credentials.json', () {
var server = new ScheduledServer();
credentialsFile(server, 'access token',
refreshToken: 'refresh token',
expiration: new Date.now().subtract(new Duration(hours: 1)))
.scheduleCreate();
var pub = startPubLish(server);
confirmPublish(pub);
server.handle('POST', '/token', (request, response) {
return consumeInputStream(request.inputStream).transform((bytes) {
var body = new String.fromCharCodes(bytes);
expect(body, matches(
new RegExp(r'(^|&)refresh_token=refresh%20token(&|$)')));
response.headers.contentType = new ContentType("application", "json");
response.outputStream.writeString(JSON.stringify({
"access_token": "new access token",
"token_type": "bearer"
}));
response.outputStream.close();
});
});
server.handle('GET', '/packages/versions/new.json', (request, response) {
expect(request.headers.value('authorization'),
equals('Bearer new access token'));
response.outputStream.close();
});
pub.shouldExit();
credentialsFile(server, 'new access token', refreshToken: 'refresh token')
.scheduleValidate();
run();
});
test('with an expired credentials.json without a refresh token, '
'authenticates again and saves credentials.json', () {
var server = new ScheduledServer();
credentialsFile(server, 'access token',
expiration: new Date.now().subtract(new Duration(hours: 1)))
.scheduleCreate();
var pub = startPubLish(server);
confirmPublish(pub);
expectLater(pub.nextErrLine(), equals("Pub's authorization to upload "
"packages has expired and can't be automatically refreshed."));
authorizePub(pub, server, "new access token");
server.handle('GET', '/packages/versions/new.json', (request, response) {
expect(request.headers.value('authorization'),
equals('Bearer new access token'));
response.outputStream.close();
});
pub.kill();
credentialsFile(server, 'new access token').scheduleValidate();
run();
});
test('with a malformed credentials.json, authenticates again and saves '
'credentials.json', () {
var server = new ScheduledServer();
dir(cachePath, [
file('credentials.json', '{bad json')
]).scheduleCreate();
var pub = startPubLish(server);
confirmPublish(pub);
authorizePub(pub, server, "new access token");
server.handle('GET', '/packages/versions/new.json', (request, response) {
expect(request.headers.value('authorization'),
equals('Bearer new access token'));
response.outputStream.close();
});
pub.kill();
credentialsFile(server, 'new access token').scheduleValidate();
run();
});
}
void authorizePub(ScheduledProcess pub, ScheduledServer server,
[String accessToken="access token"]) {
// TODO(rnystrom): The confirm line is run together with this one because
// in normal usage, the user will have entered a newline on stdin which
// gets echoed to the terminal. Do something better here?
expectLater(pub.nextLine(), equals(
'Looks great! Are you ready to upload your package (y/n)? '
'Pub needs your authorization to upload packages on your behalf.'));
expectLater(pub.nextLine().chain((line) {
var match = new RegExp(r'[?&]redirect_uri=([0-9a-zA-Z%+-]+)[$&]')
.firstMatch(line);
expect(match, isNotNull);
var redirectUrl = new Uri.fromString(decodeUriComponent(match.group(1)));
redirectUrl = addQueryParameters(redirectUrl, {'code': 'access code'});
return (new http.Request('GET', redirectUrl)..followRedirects = false)
.send();
}).transform((response) {
expect(response.headers['location'],
equals(['http://pub.dartlang.org/authorized']));
}), anything);
handleAccessTokenRequest(server, accessToken);
}
void handleAccessTokenRequest(ScheduledServer server, String accessToken) {
server.handle('POST', '/token', (request, response) {
return consumeInputStream(request.inputStream).transform((bytes) {
var body = new String.fromCharCodes(bytes);
expect(body, matches(new RegExp(r'(^|&)code=access%20code(&|$)')));
response.headers.contentType = new ContentType("application", "json");
response.outputStream.writeString(JSON.stringify({
"access_token": accessToken,
"token_type": "bearer"
}));
response.outputStream.close();
});
});
}