Added RequestAuthenticator spec
This commit is contained in:
parent
21153a4f47
commit
8e57cc7e41
1 changed files with 67 additions and 0 deletions
67
spec/lib/gitlab/auth/request_authenticator_spec.rb
Normal file
67
spec/lib/gitlab/auth/request_authenticator_spec.rb
Normal file
|
@ -0,0 +1,67 @@
|
|||
require 'spec_helper'
|
||||
|
||||
describe Gitlab::Auth::RequestAuthenticator do
|
||||
let(:env) do
|
||||
{
|
||||
'rack.input' => '',
|
||||
'REQUEST_METHOD' => 'GET'
|
||||
}
|
||||
end
|
||||
let(:request) { ActionDispatch::Request.new(env) }
|
||||
|
||||
subject { described_class.new(request) }
|
||||
|
||||
describe '.user' do
|
||||
let!(:sessionless_user) { build(:user) }
|
||||
let!(:session_user) { build(:user) }
|
||||
|
||||
it 'returns sessionless user first' do
|
||||
allow_any_instance_of(described_class).to receive(:find_sessionless_user).and_return(sessionless_user)
|
||||
allow_any_instance_of(described_class).to receive(:find_user_from_warden).and_return(session_user)
|
||||
|
||||
expect(subject.user).to eq sessionless_user
|
||||
end
|
||||
|
||||
it 'returns session user if no sessionless user found' do
|
||||
allow_any_instance_of(described_class).to receive(:find_user_from_warden).and_return(session_user)
|
||||
|
||||
expect(subject.user).to eq session_user
|
||||
end
|
||||
|
||||
it 'returns nil if no user found' do
|
||||
expect(subject.user).to be_blank
|
||||
end
|
||||
|
||||
it 'bubbles up exceptions' do
|
||||
allow_any_instance_of(described_class).to receive(:find_user_from_warden).and_raise(API::APIGuard::UnauthorizedError)
|
||||
end
|
||||
end
|
||||
|
||||
describe '.find_sessionless_user' do
|
||||
let!(:access_token_user) { build(:user) }
|
||||
let!(:rss_token_user) { build(:user) }
|
||||
|
||||
it 'returns access_token user first' do
|
||||
allow_any_instance_of(described_class).to receive(:find_user_from_access_token).and_return(access_token_user)
|
||||
allow_any_instance_of(described_class).to receive(:find_user_from_rss_token).and_return(rss_token_user)
|
||||
|
||||
expect(subject.find_sessionless_user).to eq access_token_user
|
||||
end
|
||||
|
||||
it 'returns rss_token user if no access_token user found' do
|
||||
allow_any_instance_of(described_class).to receive(:find_user_from_rss_token).and_return(rss_token_user)
|
||||
|
||||
expect(subject.find_sessionless_user).to eq rss_token_user
|
||||
end
|
||||
|
||||
it 'returns nil if no user found' do
|
||||
expect(subject.find_sessionless_user).to be_blank
|
||||
end
|
||||
|
||||
it 'rescue StandardError exceptions' do
|
||||
allow_any_instance_of(described_class).to receive(:find_user_from_access_token).and_raise(API::APIGuard::UnauthorizedError)
|
||||
|
||||
expect(subject.find_sessionless_user).to be_blank
|
||||
end
|
||||
end
|
||||
end
|
Loading…
Reference in a new issue