Add a way to use the admin api without a user.

author: lain <lain@soykaf.club> 2018-12-18 21:08:52 +0100
committer: lain <lain@soykaf.club> 2018-12-18 21:08:52 +0100
commit: f3eb414e282dd0e3bd5c60838e45c69cf21541e4 (patch)
tree: 64cd057ee1c2c5296cb70cb1f522874173ceb094 /test
parent: 443d59baa05165c3b5b7ab14f3eabd6f2eba09f2 (diff)
download: pleroma-f3eb414e282dd0e3bd5c60838e45c69cf21541e4.tar.gz
1 files changed, 38 insertions, 0 deletions
diff --git a/test/plugs/admin_secret_authentication_plug_test.exs b/test/plugs/admin_secret_authentication_plug_test.exs
new file mode 100644
index 000000000..c0fe2cf97
--- /dev/null
+++ b/test/plugs/admin_secret_authentication_plug_test.exs
@@ -0,0 +1,38 @@
+defmodule Pleroma.Plugs.AdminSecretAuthenticationPlugTest do
+  use Pleroma.Web.ConnCase, async: true
+  import Pleroma.Factory
+
+  alias Pleroma.Plugs.AdminSecretAuthenticationPlug
+
+  test "does nothing if a user is assigned", %{conn: conn} do
+    user = insert(:user)
+
+    conn =
+      conn
+      |> assign(:user, user)
+
+    ret_conn =
+      conn
+      |> AdminSecretAuthenticationPlug.call(%{})
+
+    assert conn == ret_conn
+  end
+
+  test "with secret set and given in the 'admin_token' parameter, it assigns an admin user", %{
+    conn: conn
+  } do
+    Pleroma.Config.put(:admin_token, "password123")
+
+    conn =
+      %{conn | params: %{"admin_token" => "wrong_password"}}
+      |> AdminSecretAuthenticationPlug.call(%{})
+
+    refute conn.assigns[:user]
+
+    conn =
+      %{conn | params: %{"admin_token" => "password123"}}
+      |> AdminSecretAuthenticationPlug.call(%{})
+
+    assert conn.assigns[:user].info.is_admin
+  end
+end
author	lain <lain@soykaf.club>	2018-12-18 21:08:52 +0100
committer	lain <lain@soykaf.club>	2018-12-18 21:08:52 +0100
commit	f3eb414e282dd0e3bd5c60838e45c69cf21541e4 (patch)
tree	64cd057ee1c2c5296cb70cb1f522874173ceb094 /test
parent	443d59baa05165c3b5b7ab14f3eabd6f2eba09f2 (diff)
download	pleroma-f3eb414e282dd0e3bd5c60838e45c69cf21541e4.tar.gz