go/authboss
1
0
Fork 0
mirror of https://github.com/volatiletech/authboss.git synced 2025-01-10 04:17:59 +02:00
Code Issues Releases Activity
10351c2f11
authboss/lock/lock_test.go
amygit 10351c2f11 Fix test for ctx.User.AttemptNumber fix
2016-11-30 10:32:57 -08:00

229 lines
5.6 KiB
Go
Raw Blame History

package lock
import (
"testing"
"time"
"gopkg.in/authboss.v0"
"gopkg.in/authboss.v0/internal/mocks"
)
func TestStorage(t *testing.T) {
t.Parallel()
l := &Lock{authboss.New()}
storage := l.Storage()
if _, ok := storage[StoreAttemptNumber]; !ok {
t.Error("Expected attempt number storage option.")
}
if _, ok := storage[StoreAttemptTime]; !ok {
t.Error("Expected attempt number time option.")
}
if _, ok := storage[StoreLocked]; !ok {
t.Error("Expected locked storage option.")
}
}
func TestBeforeAuth(t *testing.T) {
t.Parallel()
l := &Lock{}
ab := authboss.New()
ctx := ab.NewContext()
if interrupt, err := l.beforeAuth(ctx); err != errUserMissing {
t.Error("Expected an error because of missing user:", err)
} else if interrupt != authboss.InterruptNone {
t.Error("Interrupt should not be set:", interrupt)
}
ctx.User = authboss.Attributes{"locked": time.Now().Add(1 * time.Hour)}
if interrupt, err := l.beforeAuth(ctx); err != nil {
t.Error(err)
} else if interrupt != authboss.InterruptAccountLocked {
t.Error("Expected a locked interrupt:", interrupt)
}
}
func TestAfterAuth(t *testing.T) {
t.Parallel()
ab := authboss.New()
lock := Lock{}
ctx := ab.NewContext()
if err := lock.afterAuth(ctx); err != errUserMissing {
t.Error("Expected an error because of missing user:", err)
}
storer := mocks.NewMockStorer()
ab.Storer = storer
ctx.User = authboss.Attributes{ab.PrimaryID: "john@john.com"}
if err := lock.afterAuth(ctx); err != nil {
t.Error(err)
}
if storer.Users["john@john.com"][StoreAttemptNumber].(int64) != int64(0) {
t.Error("StoreAttemptNumber set incorrectly.")
}
if _, ok := storer.Users["john@john.com"][StoreAttemptTime].(time.Time); !ok {
t.Error("StoreAttemptTime not set.")
}
}
func TestAfterAuthFail_Lock(t *testing.T) {
t.Parallel()
ab := authboss.New()
var old, current time.Time
var ok bool
ctx := ab.NewContext()
storer := mocks.NewMockStorer()
ab.Storer = storer
lock := Lock{ab}
ab.LockWindow = 30 * time.Minute
ab.LockDuration = 30 * time.Minute
ab.LockAfter = 3
email := "john@john.com"
ctx.User = map[string]interface{}{ab.PrimaryID: email}
old = time.Now().UTC().Add(-1 * time.Hour)
for i := 0; i < 3; i++ {
if lockedIntf, ok := storer.Users["john@john.com"][StoreLocked]; ok && lockedIntf.(bool) {
t.Errorf("%d: User should not be locked.", i)
}
if err := lock.afterAuthFail(ctx); err != nil {
t.Error(err)
}
if val := storer.Users[email][StoreAttemptNumber].(int64); val != int64(i+1) {
t.Errorf("%d: StoreAttemptNumber set incorrectly: %v", i, val)
}
if current, ok = storer.Users[email][StoreAttemptTime].(time.Time); !ok || old.After(current) {
t.Errorf("%d: StoreAttemptTime not set correctly: %v", i, current)
}
current = old
}
if locked := storer.Users[email][StoreLocked].(time.Time); !locked.After(time.Now()) {
t.Error("User should be locked for some duration:", locked)
}
if val := storer.Users[email][StoreAttemptNumber].(int64); val != int64(3) {
t.Error("StoreAttemptNumber set incorrectly:", val)
}
if _, ok = storer.Users[email][StoreAttemptTime].(time.Time); !ok {
t.Error("StoreAttemptTime not set correctly.")
}
}
func TestAfterAuthFail_Reset(t *testing.T) {
t.Parallel()
ab := authboss.New()
var old, current time.Time
var ok bool
ctx := ab.NewContext()
storer := mocks.NewMockStorer()
lock := Lock{ab}
ab.LockWindow = 30 * time.Minute
ab.Storer = storer
old = time.Now().UTC().Add(-time.Hour)
email := "john@john.com"
ctx.User = map[string]interface{}{
ab.PrimaryID: email,
StoreAttemptNumber: int64(2),
StoreAttemptTime: old,
StoreLocked: old,
}
lock.afterAuthFail(ctx)
if val := storer.Users[email][StoreAttemptNumber].(int64); val != int64(1) {
t.Error("StoreAttemptNumber set incorrectly:", val)
}
if current, ok = storer.Users[email][StoreAttemptTime].(time.Time); !ok || current.Before(old) {
t.Error("StoreAttemptTime not set correctly.")
}
if locked := storer.Users[email][StoreLocked].(time.Time); locked.After(time.Now()) {
t.Error("StoreLocked not set correctly:", locked)
}
}
func TestAfterAuthFail_Errors(t *testing.T) {
t.Parallel()
ab := authboss.New()
lock := Lock{ab}
ctx := ab.NewContext()
lock.afterAuthFail(ctx)
if _, ok := ctx.User[StoreAttemptNumber]; ok {
t.Error("Expected nothing to be set, missing user.")
}
}
func TestLock(t *testing.T) {
t.Parallel()
ab := authboss.New()
storer := mocks.NewMockStorer()
ab.Storer = storer
lock := Lock{ab}
email := "john@john.com"
storer.Users[email] = map[string]interface{}{
ab.PrimaryID: email,
"password": "password",
}
err := lock.Lock(email)
if err != nil {
t.Error(err)
}
if locked := storer.Users[email][StoreLocked].(time.Time); !locked.After(time.Now()) {
t.Error("User should be locked.")
}
}
func TestUnlock(t *testing.T) {
t.Parallel()
ab := authboss.New()
storer := mocks.NewMockStorer()
ab.Storer = storer
lock := Lock{ab}
ab.LockWindow = 1 * time.Hour
email := "john@john.com"
storer.Users[email] = map[string]interface{}{
ab.PrimaryID: email,
"password": "password",
"locked": true,
}
err := lock.Unlock(email)
if err != nil {
t.Error(err)
}
attemptTime := storer.Users[email][StoreAttemptTime].(time.Time)
if attemptTime.After(time.Now().UTC().Add(-ab.LockWindow)) {
t.Error("StoreLocked not set correctly:", attemptTime)
}
if number := storer.Users[email][StoreAttemptNumber].(int64); number != int64(0) {
t.Error("StoreLocked not set correctly:", number)
}
if locked := storer.Users[email][StoreLocked].(time.Time); locked.After(time.Now()) {
t.Error("User should not be locked.")
}
}
Reference in New Issue View Git Blame Copy Permalink