Move ValidateToken() to Provider

providers/internal_util_test.go

@@ -0,0 +1,122 @@
+package providers
+
+import (
+	"github.com/bitly/go-simplejson"
+	"github.com/bmizerany/assert"
+	"net/http"
+	"net/http/httptest"
+	"net/url"
+	"testing"
+)
+
+type ValidateTokenTestProvider struct {
+	*ProviderData
+}
+
+func (tp *ValidateTokenTestProvider) GetEmailAddress(
+	unused_auth_response *simplejson.Json,
+	unused_access_token string) (string, error) {
+	return "", nil
+}
+
+// Note that we're testing the internal validateToken() used to implement
+// several Provider's ValidateToken() implementations
+func (tp *ValidateTokenTestProvider) ValidateToken(access_token string) bool {
+	return false
+}
+
+type ValidateTokenTest struct {
+	backend       *httptest.Server
+	response_code int
+	provider      *ValidateTokenTestProvider
+	header        http.Header
+}
+
+func NewValidateTokenTest() *ValidateTokenTest {
+	var vt_test ValidateTokenTest
+
+	vt_test.backend = httptest.NewServer(
+		http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+			if r.URL.Path != "/oauth/tokeninfo" {
+				w.WriteHeader(500)
+				w.Write([]byte("unknown URL"))
+			}
+			token_param := r.FormValue("access_token")
+			if token_param == "" {
+				missing := false
+				received_headers := r.Header
+				for k, _ := range vt_test.header {
+					received := received_headers.Get(k)
+					expected := vt_test.header.Get(k)
+					if received == "" || received != expected {
+						missing = true
+					}
+				}
+				if missing {
+					w.WriteHeader(500)
+					w.Write([]byte("no token param and missing or incorrect headers"))
+				}
+			}
+			w.WriteHeader(vt_test.response_code)
+			w.Write([]byte("only code matters; contents disregarded"))
+
+		}))
+	backend_url, _ := url.Parse(vt_test.backend.URL)
+	vt_test.provider = &ValidateTokenTestProvider{
+		ProviderData: &ProviderData{
+			ValidateUrl: &url.URL{
+				Scheme: "http",
+				Host:   backend_url.Host,
+				Path:   "/oauth/tokeninfo",
+			},
+		},
+	}
+	vt_test.response_code = 200
+	return &vt_test
+}
+
+func (vt_test *ValidateTokenTest) Close() {
+	vt_test.backend.Close()
+}
+
+func TestValidateTokenValidToken(t *testing.T) {
+	vt_test := NewValidateTokenTest()
+	defer vt_test.Close()
+	assert.Equal(t, true, validateToken(vt_test.provider, "foobar", nil))
+}
+
+func TestValidateTokenValidTokenWithHeaders(t *testing.T) {
+	vt_test := NewValidateTokenTest()
+	defer vt_test.Close()
+	vt_test.header = make(http.Header)
+	vt_test.header.Set("Authorization", "Bearer foobar")
+	assert.Equal(t, true,
+		validateToken(vt_test.provider, "foobar", vt_test.header))
+}
+
+func TestValidateTokenEmptyToken(t *testing.T) {
+	vt_test := NewValidateTokenTest()
+	defer vt_test.Close()
+	assert.Equal(t, false, validateToken(vt_test.provider, "", nil))
+}
+
+func TestValidateTokenEmptyValidateUrl(t *testing.T) {
+	vt_test := NewValidateTokenTest()
+	defer vt_test.Close()
+	vt_test.provider.Data().ValidateUrl = nil
+	assert.Equal(t, false, validateToken(vt_test.provider, "foobar", nil))
+}
+
+func TestValidateTokenRequestNetworkFailure(t *testing.T) {
+	vt_test := NewValidateTokenTest()
+	// Close immediately to simulate a network failure
+	vt_test.Close()
+	assert.Equal(t, false, validateToken(vt_test.provider, "foobar", nil))
+}
+
+func TestValidateTokenExpiredToken(t *testing.T) {
+	vt_test := NewValidateTokenTest()
+	defer vt_test.Close()
+	vt_test.response_code = 401
+	assert.Equal(t, false, validateToken(vt_test.provider, "foobar", nil))
+}