go-zero/rest/handler/authhandler_test.go

package handler

import (
	"bufio"
	"net"
	"net/http"
	"net/http/httptest"
	"testing"
	"time"

	"github.com/golang-jwt/jwt/v4"
	"github.com/stretchr/testify/assert"
)

func TestAuthHandlerFailed(t *testing.T) {
	req := httptest.NewRequest(http.MethodGet, "http://localhost", http.NoBody)
	handler := Authorize("B63F477D-BBA3-4E52-96D3-C0034C27694A", WithUnauthorizedCallback(
		func(w http.ResponseWriter, r *http.Request, err error) {
			assert.NotNil(t, err)
			w.Header().Set("X-Test", err.Error())
			w.WriteHeader(http.StatusUnauthorized)
			_, err = w.Write([]byte("content"))
			assert.Nil(t, err)
		}))(
		http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
			w.WriteHeader(http.StatusOK)
		}))

	resp := httptest.NewRecorder()
	handler.ServeHTTP(resp, req)
	assert.Equal(t, http.StatusUnauthorized, resp.Code)
}

func TestAuthHandler(t *testing.T) {
	const key = "B63F477D-BBA3-4E52-96D3-C0034C27694A"
	req := httptest.NewRequest(http.MethodGet, "http://localhost", http.NoBody)
	token, err := buildToken(key, map[string]any{
		"key": "value",
	}, 3600)
	assert.Nil(t, err)
	req.Header.Set("Authorization", "Bearer "+token)
	handler := Authorize(key)(
		http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
			w.Header().Set("X-Test", "test")
			_, err := w.Write([]byte("content"))
			assert.Nil(t, err)

			flusher, ok := w.(http.Flusher)
			assert.True(t, ok)
			flusher.Flush()
		}))

	resp := httptest.NewRecorder()
	handler.ServeHTTP(resp, req)
	assert.Equal(t, http.StatusOK, resp.Code)
	assert.Equal(t, "test", resp.Header().Get("X-Test"))
	assert.Equal(t, "content", resp.Body.String())
}

func TestAuthHandlerWithPrevSecret(t *testing.T) {
	const (
		key     = "14F17379-EB8F-411B-8F12-6929002DCA76"
		prevKey = "B63F477D-BBA3-4E52-96D3-C0034C27694A"
	)
	req := httptest.NewRequest(http.MethodGet, "http://localhost", http.NoBody)
	token, err := buildToken(key, map[string]any{
		"key": "value",
	}, 3600)
	assert.Nil(t, err)
	req.Header.Set("Authorization", "Bearer "+token)
	handler := Authorize(key, WithPrevSecret(prevKey))(
		http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
			w.Header().Set("X-Test", "test")
			_, err := w.Write([]byte("content"))
			assert.Nil(t, err)
		}))

	resp := httptest.NewRecorder()
	handler.ServeHTTP(resp, req)
	assert.Equal(t, http.StatusOK, resp.Code)
	assert.Equal(t, "test", resp.Header().Get("X-Test"))
	assert.Equal(t, "content", resp.Body.String())
}

func TestAuthHandler_NilError(t *testing.T) {
	req := httptest.NewRequest(http.MethodGet, "http://localhost", http.NoBody)
	resp := httptest.NewRecorder()
	assert.NotPanics(t, func() {
		unauthorized(resp, req, nil, nil)
	})
}

func buildToken(secretKey string, payloads map[string]any, seconds int64) (string, error) {
	now := time.Now().Unix()
	claims := make(jwt.MapClaims)
	claims["exp"] = now + seconds
	claims["iat"] = now
	for k, v := range payloads {
		claims[k] = v
	}

	token := jwt.New(jwt.SigningMethodHS256)
	token.Claims = claims

	return token.SignedString([]byte(secretKey))
}

type mockedHijackable struct {
	*httptest.ResponseRecorder
}

func (m mockedHijackable) Hijack() (net.Conn, *bufio.ReadWriter, error) {
	return nil, nil, nil
}
refactor 2020-07-29 18:00:04 +08:00			`package handler`
initial import 2020-07-26 17:09:05 +08:00
			`import (`
make hijack more stable (#565) 2021-03-15 20:11:09 +08:00			`"bufio"`
			`"net"`
initial import 2020-07-26 17:09:05 +08:00			`"net/http"`
			`"net/http/httptest"`
			`"testing"`
			`"time"`

chore: upgrade dependencies (#1444) * chore: upgrade dependencies * ci: upgrade go to 1.15 2022-01-14 11:01:02 +08:00			`"github.com/golang-jwt/jwt/v4"`
initial import 2020-07-26 17:09:05 +08:00			`"github.com/stretchr/testify/assert"`
			`)`

			`func TestAuthHandlerFailed(t *testing.T) {`
chore: fix lint errors (#2520) 2022-10-17 06:30:58 +08:00			`req := httptest.NewRequest(http.MethodGet, "http://localhost", http.NoBody)`
initial import 2020-07-26 17:09:05 +08:00			`handler := Authorize("B63F477D-BBA3-4E52-96D3-C0034C27694A", WithUnauthorizedCallback(`
			`func(w http.ResponseWriter, r *http.Request, err error) {`
ci: add reviewdog (#1096) 2021-09-29 13:09:20 +08:00			`assert.NotNil(t, err)`
			`w.Header().Set("X-Test", err.Error())`
initial import 2020-07-26 17:09:05 +08:00			`w.WriteHeader(http.StatusUnauthorized)`
			`_, err = w.Write([]byte("content"))`
			`assert.Nil(t, err)`
			`}))(`
			`http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {`
			`w.WriteHeader(http.StatusOK)`
			`}))`

			`resp := httptest.NewRecorder()`
			`handler.ServeHTTP(resp, req)`
			`assert.Equal(t, http.StatusUnauthorized, resp.Code)`
			`}`

			`func TestAuthHandler(t *testing.T) {`
			`const key = "B63F477D-BBA3-4E52-96D3-C0034C27694A"`
chore: fix lint errors (#2520) 2022-10-17 06:30:58 +08:00			`req := httptest.NewRequest(http.MethodGet, "http://localhost", http.NoBody)`
chore: change interface{} to any (#2818) * chore: change interface{} to any * chore: update goctl version to 1.5.0 * chore: update goctl deps 2023-01-24 16:32:02 +08:00			`token, err := buildToken(key, map[string]any{`
initial import 2020-07-26 17:09:05 +08:00			`"key": "value",`
			`}, 3600)`
			`assert.Nil(t, err)`
			`req.Header.Set("Authorization", "Bearer "+token)`
			`handler := Authorize(key)(`
			`http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {`
			`w.Header().Set("X-Test", "test")`
			`_, err := w.Write([]byte("content"))`
			`assert.Nil(t, err)`
The ResponseWriters defined in rest.handler add Flush interface. (#318) 2020-12-28 21:30:24 +08:00
			`flusher, ok := w.(http.Flusher)`
simplify code with http.Flusher type conversion (#325) * simplify code with http.Flusher type conversion * simplify code with http.Flusher type conversion, better version 2020-12-29 10:25:55 +08:00			`assert.True(t, ok)`
The ResponseWriters defined in rest.handler add Flush interface. (#318) 2020-12-28 21:30:24 +08:00			`flusher.Flush()`
initial import 2020-07-26 17:09:05 +08:00			`}))`

			`resp := httptest.NewRecorder()`
			`handler.ServeHTTP(resp, req)`
			`assert.Equal(t, http.StatusOK, resp.Code)`
			`assert.Equal(t, "test", resp.Header().Get("X-Test"))`
			`assert.Equal(t, "content", resp.Body.String())`
			`}`

			`func TestAuthHandlerWithPrevSecret(t *testing.T) {`
			`const (`
			`key = "14F17379-EB8F-411B-8F12-6929002DCA76"`
			`prevKey = "B63F477D-BBA3-4E52-96D3-C0034C27694A"`
			`)`
chore: fix lint errors (#2520) 2022-10-17 06:30:58 +08:00			`req := httptest.NewRequest(http.MethodGet, "http://localhost", http.NoBody)`
chore: change interface{} to any (#2818) * chore: change interface{} to any * chore: update goctl version to 1.5.0 * chore: update goctl deps 2023-01-24 16:32:02 +08:00			`token, err := buildToken(key, map[string]any{`
initial import 2020-07-26 17:09:05 +08:00			`"key": "value",`
			`}, 3600)`
			`assert.Nil(t, err)`
			`req.Header.Set("Authorization", "Bearer "+token)`
			`handler := Authorize(key, WithPrevSecret(prevKey))(`
			`http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {`
			`w.Header().Set("X-Test", "test")`
			`_, err := w.Write([]byte("content"))`
			`assert.Nil(t, err)`
			`}))`

			`resp := httptest.NewRecorder()`
			`handler.ServeHTTP(resp, req)`
			`assert.Equal(t, http.StatusOK, resp.Code)`
			`assert.Equal(t, "test", resp.Header().Get("X-Test"))`
			`assert.Equal(t, "content", resp.Body.String())`
			`}`

fix panic on auth 2020-07-30 16:22:18 +08:00			`func TestAuthHandler_NilError(t *testing.T) {`
chore: fix lint errors (#2520) 2022-10-17 06:30:58 +08:00			`req := httptest.NewRequest(http.MethodGet, "http://localhost", http.NoBody)`
fix panic on auth 2020-07-30 16:22:18 +08:00			`resp := httptest.NewRecorder()`
			`assert.NotPanics(t, func() {`
			`unauthorized(resp, req, nil, nil)`
			`})`
			`}`

chore: change interface{} to any (#2818) * chore: change interface{} to any * chore: update goctl version to 1.5.0 * chore: update goctl deps 2023-01-24 16:32:02 +08:00			`func buildToken(secretKey string, payloads map[string]any, seconds int64) (string, error) {`
initial import 2020-07-26 17:09:05 +08:00			`now := time.Now().Unix()`
			`claims := make(jwt.MapClaims)`
			`claims["exp"] = now + seconds`
			`claims["iat"] = now`
			`for k, v := range payloads {`
			`claims[k] = v`
			`}`

			`token := jwt.New(jwt.SigningMethodHS256)`
			`token.Claims = claims`

			`return token.SignedString([]byte(secretKey))`
			`}`
make hijack more stable (#565) 2021-03-15 20:11:09 +08:00
			`type mockedHijackable struct {`
			`*httptest.ResponseRecorder`
			`}`

			`func (m mockedHijackable) Hijack() (net.Conn, *bufio.ReadWriter, error) {`
			`return nil, nil, nil`
			`}`