Chris@1464: # Redmine - project management software Chris@1464: # Copyright (C) 2006-2013 Jean-Philippe Lang Chris@1464: # Chris@1464: # This program is free software; you can redistribute it and/or Chris@1464: # modify it under the terms of the GNU General Public License Chris@1464: # as published by the Free Software Foundation; either version 2 Chris@1464: # of the License, or (at your option) any later version. Chris@1464: # Chris@1464: # This program is distributed in the hope that it will be useful, Chris@1464: # but WITHOUT ANY WARRANTY; without even the implied warranty of Chris@1464: # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the Chris@1464: # GNU General Public License for more details. Chris@1464: # Chris@1464: # You should have received a copy of the GNU General Public License Chris@1464: # along with this program; if not, write to the Free Software Chris@1464: # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. Chris@1464: Chris@1464: require File.expand_path('../../test_helper', __FILE__) Chris@1464: Chris@1464: class TokenTest < ActiveSupport::TestCase Chris@1464: fixtures :tokens Chris@1464: Chris@1464: def test_create Chris@1464: token = Token.new Chris@1464: token.save Chris@1464: assert_equal 40, token.value.length Chris@1464: assert !token.expired? Chris@1464: end Chris@1464: Chris@1464: def test_create_should_remove_existing_tokens Chris@1464: user = User.find(1) Chris@1464: t1 = Token.create(:user => user, :action => 'autologin') Chris@1464: t2 = Token.create(:user => user, :action => 'autologin') Chris@1464: assert_not_equal t1.value, t2.value Chris@1464: assert !Token.exists?(t1.id) Chris@1464: assert Token.exists?(t2.id) Chris@1464: end Chris@1464: Chris@1464: def test_destroy_expired_should_not_destroy_feeds_and_api_tokens Chris@1464: Token.delete_all Chris@1464: Chris@1464: Token.create!(:user_id => 1, :action => 'api', :created_on => 7.days.ago) Chris@1464: Token.create!(:user_id => 1, :action => 'feeds', :created_on => 7.days.ago) Chris@1464: Chris@1464: assert_no_difference 'Token.count' do Chris@1464: assert_equal 0, Token.destroy_expired Chris@1464: end Chris@1464: end Chris@1464: Chris@1464: def test_destroy_expired_should_destroy_expired_tokens Chris@1464: Token.delete_all Chris@1464: Chris@1464: Token.create!(:user_id => 1, :action => 'autologin', :created_on => 7.days.ago) Chris@1464: Token.create!(:user_id => 2, :action => 'autologin', :created_on => 3.days.ago) Chris@1464: Token.create!(:user_id => 3, :action => 'autologin', :created_on => 1.hour.ago) Chris@1464: Chris@1464: assert_difference 'Token.count', -2 do Chris@1464: assert_equal 2, Token.destroy_expired Chris@1464: end Chris@1464: end Chris@1464: Chris@1464: def test_find_active_user_should_return_user Chris@1464: token = Token.create!(:user_id => 1, :action => 'api') Chris@1464: assert_equal User.find(1), Token.find_active_user('api', token.value) Chris@1464: end Chris@1464: Chris@1464: def test_find_active_user_should_return_nil_for_locked_user Chris@1464: token = Token.create!(:user_id => 1, :action => 'api') Chris@1464: User.find(1).lock! Chris@1464: assert_nil Token.find_active_user('api', token.value) Chris@1464: end Chris@1464: Chris@1464: def test_find_user_should_return_user Chris@1464: token = Token.create!(:user_id => 1, :action => 'api') Chris@1464: assert_equal User.find(1), Token.find_user('api', token.value) Chris@1464: end Chris@1464: Chris@1464: def test_find_user_should_return_locked_user Chris@1464: token = Token.create!(:user_id => 1, :action => 'api') Chris@1464: User.find(1).lock! Chris@1464: assert_equal User.find(1), Token.find_user('api', token.value) Chris@1464: end Chris@1464: Chris@1464: def test_find_token_should_return_the_token Chris@1464: token = Token.create!(:user_id => 1, :action => 'api') Chris@1464: assert_equal token, Token.find_token('api', token.value) Chris@1464: end Chris@1464: Chris@1464: def test_find_token_should_return_the_token_with_validity Chris@1464: token = Token.create!(:user_id => 1, :action => 'api', :created_on => 1.hour.ago) Chris@1464: assert_equal token, Token.find_token('api', token.value, 1) Chris@1464: end Chris@1464: Chris@1464: def test_find_token_should_return_nil_with_wrong_action Chris@1464: token = Token.create!(:user_id => 1, :action => 'feeds') Chris@1464: assert_nil Token.find_token('api', token.value) Chris@1464: end Chris@1464: Chris@1464: def test_find_token_should_return_nil_without_user Chris@1464: token = Token.create!(:user_id => 999, :action => 'api') Chris@1464: assert_nil Token.find_token('api', token.value) Chris@1464: end Chris@1464: Chris@1464: def test_find_token_should_return_nil_with_validity_expired Chris@1464: token = Token.create!(:user_id => 999, :action => 'api', :created_on => 2.days.ago) Chris@1464: assert_nil Token.find_token('api', token.value, 1) Chris@1464: end Chris@1464: end