Chris@1494: # Redmine - project management software Chris@1494: # Copyright (C) 2006-2014 Jean-Philippe Lang Chris@1494: # Chris@1494: # This program is free software; you can redistribute it and/or Chris@1494: # modify it under the terms of the GNU General Public License Chris@1494: # as published by the Free Software Foundation; either version 2 Chris@1494: # of the License, or (at your option) any later version. Chris@1494: # Chris@1494: # This program is distributed in the hope that it will be useful, Chris@1494: # but WITHOUT ANY WARRANTY; without even the implied warranty of Chris@1494: # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the Chris@1494: # GNU General Public License for more details. Chris@1494: # Chris@1494: # You should have received a copy of the GNU General Public License Chris@1494: # along with this program; if not, write to the Free Software Chris@1494: # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. Chris@1494: Chris@1494: require File.expand_path('../../test_helper', __FILE__) Chris@1494: Chris@1494: class TokenTest < ActiveSupport::TestCase Chris@1494: fixtures :tokens Chris@1494: Chris@1494: def test_create Chris@1494: token = Token.new Chris@1494: token.save Chris@1494: assert_equal 40, token.value.length Chris@1494: assert !token.expired? Chris@1494: end Chris@1494: Chris@1494: def test_create_should_remove_existing_tokens Chris@1494: user = User.find(1) Chris@1494: t1 = Token.create(:user => user, :action => 'autologin') Chris@1494: t2 = Token.create(:user => user, :action => 'autologin') Chris@1494: assert_not_equal t1.value, t2.value Chris@1494: assert !Token.exists?(t1.id) Chris@1494: assert Token.exists?(t2.id) Chris@1494: end Chris@1494: Chris@1494: def test_destroy_expired_should_not_destroy_feeds_and_api_tokens Chris@1494: Token.delete_all Chris@1494: Chris@1494: Token.create!(:user_id => 1, :action => 'api', :created_on => 7.days.ago) Chris@1494: Token.create!(:user_id => 1, :action => 'feeds', :created_on => 7.days.ago) Chris@1494: Chris@1494: assert_no_difference 'Token.count' do Chris@1494: assert_equal 0, Token.destroy_expired Chris@1494: end Chris@1494: end Chris@1494: Chris@1494: def test_destroy_expired_should_destroy_expired_tokens Chris@1494: Token.delete_all Chris@1494: Chris@1494: Token.create!(:user_id => 1, :action => 'autologin', :created_on => 7.days.ago) Chris@1494: Token.create!(:user_id => 2, :action => 'autologin', :created_on => 3.days.ago) Chris@1494: Token.create!(:user_id => 3, :action => 'autologin', :created_on => 1.hour.ago) Chris@1494: Chris@1494: assert_difference 'Token.count', -2 do Chris@1494: assert_equal 2, Token.destroy_expired Chris@1494: end Chris@1494: end Chris@1494: Chris@1494: def test_find_active_user_should_return_user Chris@1494: token = Token.create!(:user_id => 1, :action => 'api') Chris@1494: assert_equal User.find(1), Token.find_active_user('api', token.value) Chris@1494: end Chris@1494: Chris@1494: def test_find_active_user_should_return_nil_for_locked_user Chris@1494: token = Token.create!(:user_id => 1, :action => 'api') Chris@1494: User.find(1).lock! Chris@1494: assert_nil Token.find_active_user('api', token.value) Chris@1494: end Chris@1494: Chris@1494: def test_find_user_should_return_user Chris@1494: token = Token.create!(:user_id => 1, :action => 'api') Chris@1494: assert_equal User.find(1), Token.find_user('api', token.value) Chris@1494: end Chris@1494: Chris@1494: def test_find_user_should_return_locked_user Chris@1494: token = Token.create!(:user_id => 1, :action => 'api') Chris@1494: User.find(1).lock! Chris@1494: assert_equal User.find(1), Token.find_user('api', token.value) Chris@1494: end Chris@1494: Chris@1494: def test_find_token_should_return_the_token Chris@1494: token = Token.create!(:user_id => 1, :action => 'api') Chris@1494: assert_equal token, Token.find_token('api', token.value) Chris@1494: end Chris@1494: Chris@1494: def test_find_token_should_return_the_token_with_validity Chris@1494: token = Token.create!(:user_id => 1, :action => 'api', :created_on => 1.hour.ago) Chris@1494: assert_equal token, Token.find_token('api', token.value, 1) Chris@1494: end Chris@1494: Chris@1494: def test_find_token_should_return_nil_with_wrong_action Chris@1494: token = Token.create!(:user_id => 1, :action => 'feeds') Chris@1494: assert_nil Token.find_token('api', token.value) Chris@1494: end Chris@1494: Chris@1494: def test_find_token_should_return_nil_without_user Chris@1494: token = Token.create!(:user_id => 999, :action => 'api') Chris@1494: assert_nil Token.find_token('api', token.value) Chris@1494: end Chris@1494: Chris@1494: def test_find_token_should_return_nil_with_validity_expired Chris@1494: token = Token.create!(:user_id => 999, :action => 'api', :created_on => 2.days.ago) Chris@1494: assert_nil Token.find_token('api', token.value, 1) Chris@1494: end Chris@1494: end