diff options
Diffstat (limited to 'vendor/gems/omniauth-salesforce/spec/omniauth/strategies/salesforce_spec.rb')
| -rwxr-xr-x | vendor/gems/omniauth-salesforce/spec/omniauth/strategies/salesforce_spec.rb | 219 |
1 files changed, 219 insertions, 0 deletions
diff --git a/vendor/gems/omniauth-salesforce/spec/omniauth/strategies/salesforce_spec.rb b/vendor/gems/omniauth-salesforce/spec/omniauth/strategies/salesforce_spec.rb new file mode 100755 index 00000000000..9b5afbdbe25 --- /dev/null +++ b/vendor/gems/omniauth-salesforce/spec/omniauth/strategies/salesforce_spec.rb @@ -0,0 +1,219 @@ +require 'spec_helper' + +describe OmniAuth::Strategies::Salesforce do + strategy = nil + before do + OmniAuth.config.test_mode = true + rack_app = [] + rack_app.stub :call + strategy = OmniAuth::Strategies::Salesforce.new rack_app, 'Consumer Key', 'Consumer Secret' + end + describe "request_phase" do + env = nil + before do + env = { + 'rack.session' => {}, + 'HTTP_USER_AGENT' => 'unknown', + 'REQUEST_METHOD' => 'GET', + 'rack.input' => '', + 'rack.url_scheme' => 'http', + 'SERVER_NAME' => 'server.example', + 'QUERY_STRING' => 'code=xxxx', + 'SCRIPT_NAME' => '', + 'SERVER_PORT' => 80 + } + end + context "when using a mobile browser" do + user_agents = { + :Pre => "Mozilla/5.0 (webOS/1.4.0; U; en-US) AppleWebKit/532.2 (KHTML, like Gecko) Version/1.0 Safari/532.2 Pre/1.1", + :iPod => "Mozilla/5.0 (iPod; U; CPU like Mac OS X; en) AppleWebKit/420.1 (KHTML, like Gecko) Version/3.0 Mobile/4A93 Safari/419.3", + :iPhone => "Mozilla/5.0 (iPhone; U; CPU like Mac OS X; en) AppleWebKit/420+ (KHTML, like Gecko) Version/3.0 Mobile/1A543 Safari/419.3", + :iPad => "Mozilla/5.0 (iPad; U; CPU OS 3_2 like Mac OS X; en-us) AppleWebKit/531.21.10 (KHTML, like Gecko) Version/4.0.4 Mobile/7B334b Safari/531.21.10", + :Nexus => "Mozilla/5.0 (Linux; U; Android 2.2; en-us; Nexus One Build/FRF91) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1", + :myTouch => "Mozilla/5.0 (Linux; U; Android 1.6; en-us; WOWMobile myTouch 3G Build/unknown) AppleWebKit/528.5+ (KHTML, like Gecko) Version/3.1.2 Mobile Safari/525.20.1", + :Storm => "BlackBerry9530/4.7.0.148 Profile/MIDP-2.0 Configuration/CLDC-1.1 VendorID/105", + :Torch => "Mozilla/5.0 (BlackBerry; U; BlackBerry 9810; en-US) AppleWebKit/534.11+ (KHTML, like Gecko) Version/7.0.0 Mobile Safari/534.11+", + :generic_mobile => "some mobile device" + } + user_agents.each_pair do |name, agent| + context "with the user agent from a #{name.to_s}" do + before do + env['HTTP_USER_AGENT'] = agent + strategy.call!(env) + strategy.request_phase + end + subject {strategy.options} + it "sets the :display option to 'touch'" do + subject[:display].should == 'touch' + end + end + end + end + context "when using a desktop browser" do + user_agents = { + :Chrome => "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/535.21 (KHTML, like Gecko) Chrome/19.0.1042.0 Safari/535.21", + :Safari => "Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_6_8; de-at) AppleWebKit/533.21.1 (KHTML, like Gecko) Version/5.0.5 Safari/533.21.1", + :IE => "Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; Trident/4.0; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET CLR 1.0.3705; .NET CLR 1.1.4322)", + :anything_else => "unknown" + } + user_agents.each_pair do |name, agent| + context "with the user agent from #{name.to_s}" do + before do + env['HTTP_USER_AGENT'] = agent + strategy.call!(env) + strategy.request_phase + end + subject {strategy.options} + it "sets the :display option to 'page'" do + subject[:display].should == 'page' + end + end + end + end + end + describe "callback phase" do + raw_info = nil + before do + raw_info = { + 'id' => 'salesforce id', + 'display_name' => 'display name', + 'email' => 'email', + 'nick_name' => 'nick name', + 'first_name' => 'first name', + 'last_name' => 'last name', + 'photos' => {'thumbnail' => '/thumbnail/url'}, + 'urls'=> { + "enterprise" => "https://salesforce.example/services", + "metadata" => "https://salesforce.example/services" + } + } + client = OAuth2::Client.new 'id', 'secret', {:site => 'example.com'} + access_token = OAuth2::AccessToken.from_hash client, { + 'access_token' => 'token', + 'instance_url' => 'http://instance.salesforce.example', + 'signature' => 'invalid', + 'issued_at' => '1296458209517' + } + strategy.stub(:raw_info) { raw_info } + strategy.stub(:access_token) { access_token } + end + describe "uid" do + it "sets the id" do + strategy.uid.should == raw_info['id'] + end + end + describe "info" do + subject { strategy.info } + it "returns an info hash" do + subject.should_not be_nil + end + it "sets name" do + subject['name'].should == raw_info['display_name'] + end + it "sets email" do + subject['email'].should == raw_info['email'] + end + it "sets nickname" do + subject['nickname'].should == raw_info['nick_name'] + end + it "sets first_name" do + subject['first_name'].should == raw_info['first_name'] + end + it "sets last_name" do + subject['last_name'].should == raw_info['last_name'] + end + it "sets location" do + subject['location'].should == '' + end + it "sets description" do + subject['description'].should == '' + end + it "sets image" do + subject['image'].should == raw_info['photos']['thumbnail'] + "?oauth_token=#{strategy.access_token.token}" + end + it "sets phone" do + subject['phone'].should == '' + end + it "sets urls" do + subject['urls'].should == raw_info['urls'] + end + end + describe "credentials" do + subject { strategy.credentials } + it "sets token" do + subject['token'].should == strategy.access_token.token + end + it "sets instance_url" do + subject['instance_url'].should == strategy.access_token.params["instance_url"] + end + context "given a refresh token" do + it "sets refresh_token" do + subject['refresh_token'].should == strategy.access_token.refresh_token + end + end + context "when not given a refresh token" do + it "does not set a refresh token" do + subject['refresh_token'].should be_nil + end + end + end + describe "extra" do + subject { strategy.extra } + it "sets instance_url" do + subject['instance_url'].should == strategy.access_token.params['instance_url'] + end + it "sets pod" do + subject['pod'].should == strategy.access_token.params['instance_url'] + end + it "sets signature" do + subject['signature'].should == strategy.access_token.params['signature'] + end + it "sets issued_at" do + subject['issued_at'].should == strategy.access_token.params['issued_at'] + end + end + describe "user id validation" do + client_id = nil + issued_at = nil + signature = nil + instance_url = 'http://instance.salesforce.example' + before do + client_id = "https://login.salesforce.com/id/00Dd0000000d45TEBQ/005d0000000fyGPCCY" + issued_at = "1331142541514" + signature = Base64.strict_encode64(OpenSSL::HMAC.digest('sha256', strategy.options.client_secret.to_s, client_id + issued_at)) + end + context "when the signature does not match" do + before do + access_token = OAuth2::AccessToken.from_hash strategy.access_token.client, { + 'id' => 'forged client id', + 'refresh_token' => 'anything', + 'issued_at' => issued_at, + 'instance_url' => 'http://instance.salesforce.example', + 'signature' => signature + } + strategy.stub(:access_token) { access_token } + end + it "should call fail!" do + strategy.should_receive(:fail!) + strategy.auth_hash + end + end + context "when the signature does match" do + before do + access_token = OAuth2::AccessToken.from_hash strategy.access_token.client, { + 'id' => client_id, + 'refresh_token' => 'anything', + 'issued_at' => issued_at, + 'instance_url' => 'http://instance.salesforce.example', + 'signature' => signature + } + strategy.stub(:access_token) { access_token } + end + it "should not fail" do + strategy.should_not_receive(:fail!) + strategy.auth_hash + end + end + end + end +end |