blob: 8a2116bbd655f29ec900aa60fedd3168249c52d5 (
plain) (
tree)
|
|
defmodule MatrixAppServiceWeb.AuthPlugTest do
use ExUnit.Case
use Plug.Test
import ExUnit.CaptureLog
test "call with correct acces token returns conn unchanged" do
conn =
conn(:get, "/users/2", %{
"access_token" => "correct token"
})
assert MatrixAppServiceWeb.AuthPlug.call(conn, "correct token") == conn
end
test "call with incorrect access token halts with error 403" do
conn =
conn(:get, "/users/2", %{"access_token" => "incorrect token"})
|> MatrixAppServiceWeb.AuthPlug.call("correct token")
assert conn.status == 403
assert conn.private[:phoenix_template] == "403.json"
assert conn.private[:phoenix_view] == MatrixAppServiceWeb.ErrorView
assert conn.halted == true
end
test "call with incorrect access token gets logged" do
conn = conn(:get, "/users/2", %{"access_token" => "incorrect token"})
assert capture_log(fn -> MatrixAppServiceWeb.AuthPlug.call(conn, "correct token") end) =~
"Received invalid homeserver token"
end
test "call without access token halts with error 401" do
conn =
conn(:get, "/users/2")
|> MatrixAppServiceWeb.AuthPlug.call("correct token")
assert conn.status == 401
assert conn.private[:phoenix_template] == "401.json"
assert conn.private[:phoenix_view] == MatrixAppServiceWeb.ErrorView
assert conn.halted == true
end
test "call without access token gets logged" do
conn = conn(:get, "user/3")
assert capture_log(fn -> MatrixAppServiceWeb.AuthPlug.call(conn, "correct token") end) =~
"No homeserver token provided"
end
end
|
