diff options
Diffstat (limited to 'spec/lib/gitlab/api_authentication')
-rw-r--r-- | spec/lib/gitlab/api_authentication/token_locator_spec.rb | 21 | ||||
-rw-r--r-- | spec/lib/gitlab/api_authentication/token_resolver_spec.rb | 63 |
2 files changed, 78 insertions, 6 deletions
diff --git a/spec/lib/gitlab/api_authentication/token_locator_spec.rb b/spec/lib/gitlab/api_authentication/token_locator_spec.rb index 68ce48a70ea..e933fd8352e 100644 --- a/spec/lib/gitlab/api_authentication/token_locator_spec.rb +++ b/spec/lib/gitlab/api_authentication/token_locator_spec.rb @@ -51,5 +51,26 @@ RSpec.describe Gitlab::APIAuthentication::TokenLocator do end end end + + context 'with :http_token' do + let(:type) { :http_token } + + context 'without credentials' do + let(:request) { double(headers: {}) } + + it 'returns nil' do + expect(subject).to be(nil) + end + end + + context 'with credentials' do + let(:password) { 'bar' } + let(:request) { double(headers: { "Authorization" => password }) } + + it 'returns the credentials' do + expect(subject.password).to eq(password) + end + end + end end end diff --git a/spec/lib/gitlab/api_authentication/token_resolver_spec.rb b/spec/lib/gitlab/api_authentication/token_resolver_spec.rb index 0028fb080ac..97a7c8ba7cf 100644 --- a/spec/lib/gitlab/api_authentication/token_resolver_spec.rb +++ b/spec/lib/gitlab/api_authentication/token_resolver_spec.rb @@ -47,8 +47,8 @@ RSpec.describe Gitlab::APIAuthentication::TokenResolver do subject { resolver.resolve(raw) } - context 'with :personal_access_token' do - let(:type) { :personal_access_token } + context 'with :personal_access_token_with_username' do + let(:type) { :personal_access_token_with_username } let(:token) { personal_access_token } context 'with valid credentials' do @@ -62,10 +62,16 @@ RSpec.describe Gitlab::APIAuthentication::TokenResolver do it_behaves_like 'an unauthorized request' end + + context 'with no username' do + let(:raw) { username_and_password(nil, token.token) } + + it_behaves_like 'an unauthorized request' + end end - context 'with :job_token' do - let(:type) { :job_token } + context 'with :job_token_with_username' do + let(:type) { :job_token_with_username } let(:token) { ci_job } context 'with valid credentials' do @@ -93,8 +99,8 @@ RSpec.describe Gitlab::APIAuthentication::TokenResolver do end end - context 'with :deploy_token' do - let(:type) { :deploy_token } + context 'with :deploy_token_with_username' do + let(:type) { :deploy_token_with_username } let(:token) { deploy_token } context 'with a valid deploy token' do @@ -109,6 +115,51 @@ RSpec.describe Gitlab::APIAuthentication::TokenResolver do it_behaves_like 'an unauthorized request' end end + + context 'with :personal_access_token' do + let(:type) { :personal_access_token } + let(:token) { personal_access_token } + + context 'with valid credentials' do + let(:raw) { username_and_password(nil, token.token) } + + it_behaves_like 'an authorized request' + end + end + + context 'with :job_token' do + let(:type) { :job_token } + let(:token) { ci_job } + + context 'with valid credentials' do + let(:raw) { username_and_password(nil, token.token) } + + it_behaves_like 'an authorized request' + end + + context 'when the job is not running' do + let(:raw) { username_and_password(nil, ci_job_done.token) } + + it_behaves_like 'an unauthorized request' + end + + context 'with an invalid job token' do + let(:raw) { username_and_password(nil, "not a valid CI job token") } + + it_behaves_like 'an unauthorized request' + end + end + + context 'with :deploy_token' do + let(:type) { :deploy_token } + let(:token) { deploy_token } + + context 'with a valid deploy token' do + let(:raw) { username_and_password(nil, token.token) } + + it_behaves_like 'an authorized request' + end + end end def username_and_password(username, password) |