2010-03-26 10:27:19 +00:00
|
|
|
require 'test_helper'
|
2010-02-06 00:33:32 +00:00
|
|
|
|
|
|
|
class HttpAuthenticationTest < ActionController::IntegrationTest
|
|
|
|
|
|
|
|
test 'sign in should authenticate with http' do
|
|
|
|
sign_in_as_new_user_with_http
|
|
|
|
assert_response :success
|
|
|
|
assert_template 'users/index'
|
|
|
|
assert_contain 'Welcome'
|
|
|
|
assert warden.authenticated?(:user)
|
|
|
|
end
|
|
|
|
|
|
|
|
test 'returns a custom response with www-authenticate header on failures' do
|
|
|
|
sign_in_as_new_user_with_http("unknown")
|
|
|
|
assert_equal 401, status
|
|
|
|
assert_equal 'Basic realm="Application"', headers["WWW-Authenticate"]
|
|
|
|
end
|
|
|
|
|
2010-02-17 20:40:01 +00:00
|
|
|
test 'uses the request format as response content type' do
|
|
|
|
sign_in_as_new_user_with_http("unknown", "123456", :xml)
|
|
|
|
assert_equal 401, status
|
|
|
|
assert_equal "application/xml", headers["Content-Type"]
|
2010-02-18 18:38:13 +00:00
|
|
|
assert response.body.include?("<error>HTTP Basic: Access denied.</error>")
|
2010-02-17 20:40:01 +00:00
|
|
|
end
|
|
|
|
|
2010-02-06 00:33:32 +00:00
|
|
|
test 'returns a custom response with www-authenticate and chosen realm' do
|
|
|
|
swap Devise, :http_authentication_realm => "MyApp" do
|
|
|
|
sign_in_as_new_user_with_http("unknown")
|
|
|
|
assert_equal 401, status
|
|
|
|
assert_equal 'Basic realm="MyApp"', headers["WWW-Authenticate"]
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
test 'sign in should authenticate with http even with specific authentication keys' do
|
|
|
|
swap Devise, :authentication_keys => [:username] do
|
|
|
|
sign_in_as_new_user_with_http "usertest"
|
|
|
|
assert_response :success
|
|
|
|
assert_template 'users/index'
|
|
|
|
assert_contain 'Welcome'
|
|
|
|
assert warden.authenticated?(:user)
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
private
|
|
|
|
|
2010-02-17 20:40:01 +00:00
|
|
|
def sign_in_as_new_user_with_http(username="user@test.com", password="123456", format=:html)
|
2010-02-06 00:33:32 +00:00
|
|
|
user = create_user
|
2010-02-17 20:40:01 +00:00
|
|
|
get users_path(:format => format), {}, "HTTP_AUTHORIZATION" => "Basic #{ActiveSupport::Base64.encode64("#{username}:#{password}")}"
|
2010-02-06 00:33:32 +00:00
|
|
|
user
|
|
|
|
end
|
|
|
|
end
|