Merge branch 'release/2.2.0' into 'stable'v2.2.0

Release/2.2.0 See merge request pleroma/secteam/pleroma!19
author: rinpatch <rinpatch@sdf.org> 2020-11-12 12:34:48 +0000
committer: rinpatch <rinpatch@sdf.org> 2020-11-12 12:34:48 +0000
commit: 1172844ed18d94d84724dc6f11c6e9f72e0ba6ec (patch)
tree: 7d48a259e08856ab6db0eba255f20c0c19410463 /test/pleroma/web/o_auth/token_test.exs
parent: a0f5e8b27edbe2224d9c2c3997ad5b8ea484244b (diff)
parent: b4c6b262d6dc12362f0014a864e8aed6c727c39c (diff)
download: pleroma-2.2.0.tar.gz
1 files changed, 72 insertions, 0 deletions
diff --git a/test/pleroma/web/o_auth/token_test.exs b/test/pleroma/web/o_auth/token_test.exs
new file mode 100644
index 000000000..c88b9cc98
--- /dev/null
+++ b/test/pleroma/web/o_auth/token_test.exs
@@ -0,0 +1,72 @@
+# Pleroma: A lightweight social networking server
+# Copyright © 2017-2020 Pleroma Authors <https://pleroma.social/>
+# SPDX-License-Identifier: AGPL-3.0-only
+
+defmodule Pleroma.Web.OAuth.TokenTest do
+  use Pleroma.DataCase
+  alias Pleroma.Repo
+  alias Pleroma.Web.OAuth.App
+  alias Pleroma.Web.OAuth.Authorization
+  alias Pleroma.Web.OAuth.Token
+
+  import Pleroma.Factory
+
+  test "exchanges a auth token for an access token, preserving `scopes`" do
+    {:ok, app} =
+      Repo.insert(
+        App.register_changeset(%App{}, %{
+          client_name: "client",
+          scopes: ["read", "write"],
+          redirect_uris: "url"
+        })
+      )
+
+    user = insert(:user)
+
+    {:ok, auth} = Authorization.create_authorization(app, user, ["read"])
+    assert auth.scopes == ["read"]
+
+    {:ok, token} = Token.exchange_token(app, auth)
+
+    assert token.app_id == app.id
+    assert token.user_id == user.id
+    assert token.scopes == auth.scopes
+    assert String.length(token.token) > 10
+    assert String.length(token.refresh_token) > 10
+
+    auth = Repo.get(Authorization, auth.id)
+    {:error, "already used"} = Token.exchange_token(app, auth)
+  end
+
+  test "deletes all tokens of a user" do
+    {:ok, app1} =
+      Repo.insert(
+        App.register_changeset(%App{}, %{
+          client_name: "client1",
+          scopes: ["scope"],
+          redirect_uris: "url"
+        })
+      )
+
+    {:ok, app2} =
+      Repo.insert(
+        App.register_changeset(%App{}, %{
+          client_name: "client2",
+          scopes: ["scope"],
+          redirect_uris: "url"
+        })
+      )
+
+    user = insert(:user)
+
+    {:ok, auth1} = Authorization.create_authorization(app1, user)
+    {:ok, auth2} = Authorization.create_authorization(app2, user)
+
+    {:ok, _token1} = Token.exchange_token(app1, auth1)
+    {:ok, _token2} = Token.exchange_token(app2, auth2)
+
+    {tokens, _} = Token.delete_user_tokens(user)
+
+    assert tokens == 2
+  end
+end
author	rinpatch <rinpatch@sdf.org>	2020-11-12 12:34:48 +0000
committer	rinpatch <rinpatch@sdf.org>	2020-11-12 12:34:48 +0000
commit	1172844ed18d94d84724dc6f11c6e9f72e0ba6ec (patch)
tree	7d48a259e08856ab6db0eba255f20c0c19410463 /test/pleroma/web/o_auth/token_test.exs
parent	a0f5e8b27edbe2224d9c2c3997ad5b8ea484244b (diff)
parent	b4c6b262d6dc12362f0014a864e8aed6c727c39c (diff)
download	pleroma-2.2.0.tar.gz