gitlab-org--gitlab-foss/spec/lib/gitlab/auth_spec.rb

require 'spec_helper'

describe Gitlab::Auth, lib: true do
  let(:gl_auth) { Gitlab::Auth.new }

  describe :find do
    let!(:user) do
      create(:user,
        username: username,
        password: password,
        password_confirmation: password)
    end
    let(:username) { 'John' }     # username isn't lowercase, test this
    let(:password) { 'my-secret' }

    it "should find user by valid login/password" do
      expect( gl_auth.find(username, password) ).to eql user
    end

    it 'should find user by valid email/password with case-insensitive email' do
      expect(gl_auth.find(user.email.upcase, password)).to eql user
    end

    it 'should find user by valid username/password with case-insensitive username' do
      expect(gl_auth.find(username.upcase, password)).to eql user
    end

    it "should not find user with invalid password" do
      password = 'wrong'
      expect( gl_auth.find(username, password) ).not_to eql user
    end

    it "should not find user with invalid login" do
      user = 'wrong'
      expect( gl_auth.find(username, password) ).not_to eql user
    end

    context "with ldap enabled" do
      before do
        allow(Gitlab::LDAP::Config).to receive(:enabled?).and_return(true)
      end

      it "tries to autheticate with db before ldap" do
        expect(Gitlab::LDAP::Authentication).not_to receive(:login)

        gl_auth.find(username, password)
      end

      it "uses ldap as fallback to for authentication" do
        expect(Gitlab::LDAP::Authentication).to receive(:login)

        gl_auth.find('ldap_user', 'password')
      end
    end
  end
end
Refactorn oauth & ldap 2012-09-12 06:23:16 +00:00			`require 'spec_helper'`

Tag lib specs 2015-12-09 10:55:36 +00:00			`describe Gitlab::Auth, lib: true do`
Refactorn oauth & ldap 2012-09-12 06:23:16 +00:00			`let(:gl_auth) { Gitlab::Auth.new }`

Rewrite OAuth specs 2013-09-03 21:53:13 +00:00			`describe :find do`
Refactor gitlab auth tests 2014-09-08 11:11:39 +00:00			`let!(:user) do`
			`create(:user,`
			`username: username,`
			`password: password,`
			`password_confirmation: password)`
Refactorn oauth & ldap 2012-09-12 06:23:16 +00:00			`end`
Session API: Use case-insensitive authentication like in UI 2014-10-22 15:29:26 +00:00			`let(:username) { 'John' } # username isn't lowercase, test this`
Refactor gitlab auth tests 2014-09-08 11:11:39 +00:00			`let(:password) { 'my-secret' }`
Refactorn oauth & ldap 2012-09-12 06:23:16 +00:00
Rewrite OAuth specs 2013-09-03 21:53:13 +00:00			`it "should find user by valid login/password" do`
Refactor gitlab auth tests 2014-09-08 11:11:39 +00:00			`expect( gl_auth.find(username, password) ).to eql user`
Refactorn oauth & ldap 2012-09-12 06:23:16 +00:00			`end`

Session API: Use case-insensitive authentication like in UI 2014-10-22 15:29:26 +00:00			`it 'should find user by valid email/password with case-insensitive email' do`
			`expect(gl_auth.find(user.email.upcase, password)).to eql user`
			`end`

			`it 'should find user by valid username/password with case-insensitive username' do`
			`expect(gl_auth.find(username.upcase, password)).to eql user`
			`end`

Rewrite OAuth specs 2013-09-03 21:53:13 +00:00			`it "should not find user with invalid password" do`
Refactor gitlab auth tests 2014-09-08 11:11:39 +00:00			`password = 'wrong'`
Change `to_not` calls to `not_to` Both work, but now we're consistent across the entire app. 2015-06-18 01:30:58 +00:00			`expect( gl_auth.find(username, password) ).not_to eql user`
Refactorn oauth & ldap 2012-09-12 06:23:16 +00:00			`end`

Refactor gitlab auth tests 2014-09-08 11:11:39 +00:00			`it "should not find user with invalid login" do`
			`user = 'wrong'`
Change `to_not` calls to `not_to` Both work, but now we're consistent across the entire app. 2015-06-18 01:30:58 +00:00			`expect( gl_auth.find(username, password) ).not_to eql user`
Add settings for user permission defaults “Can create groups” and “Can create teams” had hardcoded defaults to `true`. Sometimes it is desirable to prohibit these for newly created users by default. 2013-03-11 06:44:45 +00:00			`end`
Ensure Gitlab::LDAP::authentication is tested 2014-09-08 11:26:25 +00:00
			`context "with ldap enabled" do`
Update mock and stub syntax for specs 2015-05-21 21:49:06 +00:00			`before do`
			`allow(Gitlab::LDAP::Config).to receive(:enabled?).and_return(true)`
			`end`
Ensure Gitlab::LDAP::authentication is tested 2014-09-08 11:26:25 +00:00
			`it "tries to autheticate with db before ldap" do`
Merge tests to support Multiple LDAP groups 2014-10-13 15:33:44 +00:00			`expect(Gitlab::LDAP::Authentication).not_to receive(:login)`
Ensure Gitlab::LDAP::authentication is tested 2014-09-08 11:26:25 +00:00
			`gl_auth.find(username, password)`
			`end`

			`it "uses ldap as fallback to for authentication" do`
Merge tests to support Multiple LDAP groups 2014-10-13 15:33:44 +00:00			`expect(Gitlab::LDAP::Authentication).to receive(:login)`
Ensure Gitlab::LDAP::authentication is tested 2014-09-08 11:26:25 +00:00
			`gl_auth.find('ldap_user', 'password')`
			`end`
			`end`
Refactorn oauth & ldap 2012-09-12 06:23:16 +00:00			`end`
			`end`