golang-saas-starter-kit/example-project/internal/platform/auth/auth_test.go

package auth_test

import (
	"github.com/aws/aws-sdk-go/aws"
	"github.com/aws/aws-sdk-go/service/secretsmanager"
	"os"
	"testing"
	"time"

	"geeks-accelerator/oss/saas-starter-kit/example-project/internal/platform/auth"
	"geeks-accelerator/oss/saas-starter-kit/example-project/internal/platform/tests"
	"github.com/pborman/uuid"
)

var test *tests.Test

// TestMain is the entry point for testing.
func TestMain(m *testing.M) {
	os.Exit(testMain(m))
}

func testMain(m *testing.M) int {
	tests.DisableDb = true

	test = tests.New()
	defer test.TearDown()

	return m.Run()
}

// TestAuthenticatorFile validates File storage.
func TestAuthenticatorFile(t *testing.T) {

	var authTests = []struct {
		name          string
		now           time.Time
		keyExpiration time.Duration
		error         error
	}{
		{"NoKeyExpiration", time.Now(), time.Duration(0), nil},
		{"KeyExpirationOk",  time.Now(), time.Duration(time.Second * 3600), nil},
		{"KeyExpirationDisabled", time.Now().Add(time.Second * 3600 * 3), time.Duration(time.Second * 3600), nil},
	}

	// Generate the token.
	signedClaims := auth.Claims{
		Roles: []string{auth.RoleAdmin},
	}

	t.Log("Given the need to validate initiating a new Authenticator using File storage by key expiration.")
	{
		for i, tt := range authTests {
			t.Logf("\tTest: %d\tWhen running test: %s", i, tt.name)
			{
				a, err := auth.NewAuthenticatorFile("", tt.now, tt.keyExpiration)
				if err != tt.error {
					t.Log("\t\tGot :", err)
					t.Log("\t\tWant:", tt.error)
					t.Fatalf("\t%s\tNewAuthenticatorFile failed.", tests.Failed)
				}

				tknStr, err := a.GenerateToken(signedClaims)
				if err != nil {
					t.Log("\t\tGot :", err)
					t.Fatalf("\t%s\tGenerateToken failed.", tests.Failed)
				}

				parsedClaims, err := a.ParseClaims(tknStr)
				if err != nil {
					t.Log("\t\tGot :", err)
					t.Fatalf("\t%s\tParseClaims failed.", tests.Failed)
				}

				// Assert expected claims.
				if exp, got := len(signedClaims.Roles), len(parsedClaims.Roles); exp != got {
					t.Log("\t\tGot :", got)
					t.Log("\t\tWant:", exp)
					t.Fatalf("\t%s\tShould got the same number of roles.", tests.Failed)
				}
				if exp, got := signedClaims.Roles[0], parsedClaims.Roles[0]; exp != got {
					t.Log("\t\tGot :", got)
					t.Log("\t\tWant:", exp)
					t.Fatalf("\t%s\tShould got the same role name.", tests.Failed)
				}

				t.Logf("\t%s\tNewAuthenticatorFile ok.", tests.Success)
			}
		}
	}
}

// TestAuthenticatorAws validates AWS storage.
func TestAuthenticatorAws(t *testing.T) {

	awsSecretID := "jwt-key" + uuid.NewRandom().String()

	defer func() {
		// cleanup the secret after test is complete
		sm := secretsmanager.New(test.AwsSession)
		_, err := sm.DeleteSecret(&secretsmanager.DeleteSecretInput{
			SecretId: aws.String(awsSecretID),
		})
		if err != nil {
			t.Fatal(err)
		}
	}()

	var authTests = []struct {
		name          string
		awsSecretID   string
		now           time.Time
		keyExpiration time.Duration
		error         error
	}{
		{"NoKeyExpiration", awsSecretID, time.Now(), time.Duration(0), nil},
		{"KeyExpirationOk", awsSecretID, time.Now(), time.Duration(time.Second * 3600), nil},
		{"KeyExpirationDisabled", awsSecretID, time.Now().Add(time.Second * 3600 * 3), time.Duration(time.Second * 3600), nil},
	}

	// Generate the token.
	signedClaims := auth.Claims{
		Roles: []string{auth.RoleAdmin},
	}

	t.Log("Given the need to validate initiating a new Authenticator using AWS storage by key expiration.")
	{
		for i, tt := range authTests {
			t.Logf("\tTest: %d\tWhen running test: %s", i, tt.name)
			{
				a, err := auth.NewAuthenticatorAws(test.AwsSession, tt.awsSecretID, tt.now, tt.keyExpiration)
				if err != tt.error {
					t.Log("\t\tGot :", err)
					t.Log("\t\tWant:", tt.error)
					t.Fatalf("\t%s\tNewAuthenticatorAws failed.", tests.Failed)
				}

				tknStr, err := a.GenerateToken(signedClaims)
				if err != nil {
					t.Log("\t\tGot :", err)
					t.Fatalf("\t%s\tGenerateToken failed.", tests.Failed)
				}

				parsedClaims, err := a.ParseClaims(tknStr)
				if err != nil {
					t.Log("\t\tGot :", err)
					t.Fatalf("\t%s\tParseClaims failed.", tests.Failed)
				}

				// Assert expected claims.
				if exp, got := len(signedClaims.Roles), len(parsedClaims.Roles); exp != got {
					t.Log("\t\tGot :", got)
					t.Log("\t\tWant:", exp)
					t.Fatalf("\t%s\tShould got the same number of roles.", tests.Failed)
				}
				if exp, got := signedClaims.Roles[0], parsedClaims.Roles[0]; exp != got {
					t.Log("\t\tGot :", got)
					t.Log("\t\tWant:", exp)
					t.Fatalf("\t%s\tShould got the same role name.", tests.Failed)
				}

				t.Logf("\t%s\tNewAuthenticatorAws ok.", tests.Success)
			}
		}
	}
}
Imported github.com/ardanlabs/service as base example project 2019-05-16 10:39:25 -04:00			`package auth_test`

			`import (`
remove secret after test complete 2019-05-17 14:50:36 -04:00			`"github.com/aws/aws-sdk-go/aws"`
			`"github.com/aws/aws-sdk-go/service/secretsmanager"`
JWT authenticator with AWS Secret Manager Updated authenticator to store JWT private keys in AWS secret manager. This improvement reduces the need to generate a local privite key for the application to start on its initial run. 2019-05-17 14:42:50 -04:00			`"os"`
Imported github.com/ardanlabs/service as base example project 2019-05-16 10:39:25 -04:00			`"testing"`
JWT authenticator with AWS Secret Manager Updated authenticator to store JWT private keys in AWS secret manager. This improvement reduces the need to generate a local privite key for the application to start on its initial run. 2019-05-17 14:42:50 -04:00			`"time"`
Imported github.com/ardanlabs/service as base example project 2019-05-16 10:39:25 -04:00
			`"geeks-accelerator/oss/saas-starter-kit/example-project/internal/platform/auth"`
JWT authenticator with AWS Secret Manager Updated authenticator to store JWT private keys in AWS secret manager. This improvement reduces the need to generate a local privite key for the application to start on its initial run. 2019-05-17 14:42:50 -04:00			`"geeks-accelerator/oss/saas-starter-kit/example-project/internal/platform/tests"`
			`"github.com/pborman/uuid"`
Imported github.com/ardanlabs/service as base example project 2019-05-16 10:39:25 -04:00			`)`

JWT authenticator with AWS Secret Manager Updated authenticator to store JWT private keys in AWS secret manager. This improvement reduces the need to generate a local privite key for the application to start on its initial run. 2019-05-17 14:42:50 -04:00			`var test *tests.Test`
Imported github.com/ardanlabs/service as base example project 2019-05-16 10:39:25 -04:00
JWT authenticator with AWS Secret Manager Updated authenticator to store JWT private keys in AWS secret manager. This improvement reduces the need to generate a local privite key for the application to start on its initial run. 2019-05-17 14:42:50 -04:00			`// TestMain is the entry point for testing.`
			`func TestMain(m *testing.M) {`
			`os.Exit(testMain(m))`
			`}`
Imported github.com/ardanlabs/service as base example project 2019-05-16 10:39:25 -04:00
JWT authenticator with AWS Secret Manager Updated authenticator to store JWT private keys in AWS secret manager. This improvement reduces the need to generate a local privite key for the application to start on its initial run. 2019-05-17 14:42:50 -04:00			`func testMain(m *testing.M) int {`
fixed internal package unittests 2019-06-24 22:41:21 -08:00			`tests.DisableDb = true`

JWT authenticator with AWS Secret Manager Updated authenticator to store JWT private keys in AWS secret manager. This improvement reduces the need to generate a local privite key for the application to start on its initial run. 2019-05-17 14:42:50 -04:00			`test = tests.New()`
			`defer test.TearDown()`

			`return m.Run()`
			`}`

fixed internal package unittests 2019-06-24 22:41:21 -08:00			`// TestAuthenticatorFile validates File storage.`
			`func TestAuthenticatorFile(t *testing.T) {`

			`var authTests = []struct {`
			`name string`
			`now time.Time`
			`keyExpiration time.Duration`
			`error error`
			`}{`
			`{"NoKeyExpiration", time.Now(), time.Duration(0), nil},`
			`{"KeyExpirationOk", time.Now(), time.Duration(time.Second * 3600), nil},`
			`{"KeyExpirationDisabled", time.Now().Add(time.Second * 3600 * 3), time.Duration(time.Second * 3600), nil},`
			`}`

			`// Generate the token.`
			`signedClaims := auth.Claims{`
			`Roles: []string{auth.RoleAdmin},`
			`}`

			`t.Log("Given the need to validate initiating a new Authenticator using File storage by key expiration.")`
			`{`
			`for i, tt := range authTests {`
			`t.Logf("\tTest: %d\tWhen running test: %s", i, tt.name)`
			`{`
			`a, err := auth.NewAuthenticatorFile("", tt.now, tt.keyExpiration)`
			`if err != tt.error {`
			`t.Log("\t\tGot :", err)`
			`t.Log("\t\tWant:", tt.error)`
			`t.Fatalf("\t%s\tNewAuthenticatorFile failed.", tests.Failed)`
			`}`

			`tknStr, err := a.GenerateToken(signedClaims)`
			`if err != nil {`
			`t.Log("\t\tGot :", err)`
			`t.Fatalf("\t%s\tGenerateToken failed.", tests.Failed)`
			`}`

			`parsedClaims, err := a.ParseClaims(tknStr)`
			`if err != nil {`
			`t.Log("\t\tGot :", err)`
			`t.Fatalf("\t%s\tParseClaims failed.", tests.Failed)`
			`}`

			`// Assert expected claims.`
			`if exp, got := len(signedClaims.Roles), len(parsedClaims.Roles); exp != got {`
			`t.Log("\t\tGot :", got)`
			`t.Log("\t\tWant:", exp)`
			`t.Fatalf("\t%s\tShould got the same number of roles.", tests.Failed)`
			`}`
			`if exp, got := signedClaims.Roles[0], parsedClaims.Roles[0]; exp != got {`
			`t.Log("\t\tGot :", got)`
			`t.Log("\t\tWant:", exp)`
			`t.Fatalf("\t%s\tShould got the same role name.", tests.Failed)`
			`}`

			`t.Logf("\t%s\tNewAuthenticatorFile ok.", tests.Success)`
			`}`
			`}`
			`}`
			`}`

			`// TestAuthenticatorAws validates AWS storage.`
			`func TestAuthenticatorAws(t *testing.T) {`
JWT authenticator with AWS Secret Manager Updated authenticator to store JWT private keys in AWS secret manager. This improvement reduces the need to generate a local privite key for the application to start on its initial run. 2019-05-17 14:42:50 -04:00
			`awsSecretID := "jwt-key" + uuid.NewRandom().String()`
Imported github.com/ardanlabs/service as base example project 2019-05-16 10:39:25 -04:00
remove secret after test complete 2019-05-17 14:50:36 -04:00			`defer func() {`
			`// cleanup the secret after test is complete`
			`sm := secretsmanager.New(test.AwsSession)`
			`_, err := sm.DeleteSecret(&secretsmanager.DeleteSecretInput{`
			`SecretId: aws.String(awsSecretID),`
			`})`
			`if err != nil {`
			`t.Fatal(err)`
			`}`
			`}()`

JWT authenticator with AWS Secret Manager Updated authenticator to store JWT private keys in AWS secret manager. This improvement reduces the need to generate a local privite key for the application to start on its initial run. 2019-05-17 14:42:50 -04:00			`var authTests = []struct {`
			`name string`
			`awsSecretID string`
			`now time.Time`
			`keyExpiration time.Duration`
			`error error`
			`}{`
			`{"NoKeyExpiration", awsSecretID, time.Now(), time.Duration(0), nil},`
			`{"KeyExpirationOk", awsSecretID, time.Now(), time.Duration(time.Second * 3600), nil},`
			`{"KeyExpirationDisabled", awsSecretID, time.Now().Add(time.Second * 3600 * 3), time.Duration(time.Second * 3600), nil},`
Imported github.com/ardanlabs/service as base example project 2019-05-16 10:39:25 -04:00			`}`

			`// Generate the token.`
			`signedClaims := auth.Claims{`
			`Roles: []string{auth.RoleAdmin},`
			`}`

fixed internal package unittests 2019-06-24 22:41:21 -08:00			`t.Log("Given the need to validate initiating a new Authenticator using AWS storage by key expiration.")`
JWT authenticator with AWS Secret Manager Updated authenticator to store JWT private keys in AWS secret manager. This improvement reduces the need to generate a local privite key for the application to start on its initial run. 2019-05-17 14:42:50 -04:00			`{`
			`for i, tt := range authTests {`
			`t.Logf("\tTest: %d\tWhen running test: %s", i, tt.name)`
			`{`
fixed internal package unittests 2019-06-24 22:41:21 -08:00			`a, err := auth.NewAuthenticatorAws(test.AwsSession, tt.awsSecretID, tt.now, tt.keyExpiration)`
JWT authenticator with AWS Secret Manager Updated authenticator to store JWT private keys in AWS secret manager. This improvement reduces the need to generate a local privite key for the application to start on its initial run. 2019-05-17 14:42:50 -04:00			`if err != tt.error {`
			`t.Log("\t\tGot :", err)`
			`t.Log("\t\tWant:", tt.error)`
fixed internal package unittests 2019-06-24 22:41:21 -08:00			`t.Fatalf("\t%s\tNewAuthenticatorAws failed.", tests.Failed)`
JWT authenticator with AWS Secret Manager Updated authenticator to store JWT private keys in AWS secret manager. This improvement reduces the need to generate a local privite key for the application to start on its initial run. 2019-05-17 14:42:50 -04:00			`}`
Imported github.com/ardanlabs/service as base example project 2019-05-16 10:39:25 -04:00
JWT authenticator with AWS Secret Manager Updated authenticator to store JWT private keys in AWS secret manager. This improvement reduces the need to generate a local privite key for the application to start on its initial run. 2019-05-17 14:42:50 -04:00			`tknStr, err := a.GenerateToken(signedClaims)`
			`if err != nil {`
			`t.Log("\t\tGot :", err)`
			`t.Fatalf("\t%s\tGenerateToken failed.", tests.Failed)`
			`}`
Imported github.com/ardanlabs/service as base example project 2019-05-16 10:39:25 -04:00
JWT authenticator with AWS Secret Manager Updated authenticator to store JWT private keys in AWS secret manager. This improvement reduces the need to generate a local privite key for the application to start on its initial run. 2019-05-17 14:42:50 -04:00			`parsedClaims, err := a.ParseClaims(tknStr)`
			`if err != nil {`
			`t.Log("\t\tGot :", err)`
			`t.Fatalf("\t%s\tParseClaims failed.", tests.Failed)`
			`}`
Imported github.com/ardanlabs/service as base example project 2019-05-16 10:39:25 -04:00
JWT authenticator with AWS Secret Manager Updated authenticator to store JWT private keys in AWS secret manager. This improvement reduces the need to generate a local privite key for the application to start on its initial run. 2019-05-17 14:42:50 -04:00			`// Assert expected claims.`
			`if exp, got := len(signedClaims.Roles), len(parsedClaims.Roles); exp != got {`
			`t.Log("\t\tGot :", got)`
			`t.Log("\t\tWant:", exp)`
			`t.Fatalf("\t%s\tShould got the same number of roles.", tests.Failed)`
			`}`
			`if exp, got := signedClaims.Roles[0], parsedClaims.Roles[0]; exp != got {`
			`t.Log("\t\tGot :", got)`
			`t.Log("\t\tWant:", exp)`
			`t.Fatalf("\t%s\tShould got the same role name.", tests.Failed)`
			`}`
Imported github.com/ardanlabs/service as base example project 2019-05-16 10:39:25 -04:00
fixed internal package unittests 2019-06-24 22:41:21 -08:00			`t.Logf("\t%s\tNewAuthenticatorAws ok.", tests.Success)`
JWT authenticator with AWS Secret Manager Updated authenticator to store JWT private keys in AWS secret manager. This improvement reduces the need to generate a local privite key for the application to start on its initial run. 2019-05-17 14:42:50 -04:00			`}`
			`}`
			`}`
			`}`