OrgGo/Mainflux.mainflux
1
0
Fork 0
mirror of https://github.com/mainflux/mainflux.git synced 2025-04-27 13:48:49 +08:00
Code Issues Projects Releases Wiki Activity
Mainflux.mainflux/pkg/sdk/go/users_test.go
Dušan Borovčanin 3d3aa525a6
NOISSUE - Switch to Google Zanzibar Access control approach (#1919) 
* Return Auth service

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Update Compose to run with SpiceDB and Auth svc

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Update auth gRPC API

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Remove Users' policies

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Move Groups to internal

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Use shared groups in Users

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Remove unused code

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Use pkg Groups in Things

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Remove Things groups

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Make imports consistent

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Update Groups networking

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Remove things groups-specific API

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Move Things Clients to the root

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Move Clients to Users root

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Temporarily remove tracing

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Fix imports

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Add buffer config for gRPC

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Update auth type for Things

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Use Auth for login

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Add temporary solution for refresh token

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Update Tokenizer interface

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Updade tokens issuing

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Fix token issuing

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Update JWT validator and refactor Tokenizer

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Rename access timeout

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Rename login to authenticate

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Update Identify to use SubjectID

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Add Auth to Groups

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Use the Auth service for Groups

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Update auth schema

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Fix Auth for Groups

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Add auth for addons (#14)

Signed-off-by: Arvindh <arvindh91@gmail.com>

Speparate Login and Refresh tokens

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Merge authN and authZ requests for things

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Add connect and disconnect

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Update sharing

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Fix policies addition and removal

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Update relation with roels

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Add gRPC to Things

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

Assign and Unassign members to group and Listing of Group members (#15)

* add auth for addons

Signed-off-by: Arvindh <arvindh91@gmail.com>

* add assign and unassign to group

Signed-off-by: Arvindh <arvindh91@gmail.com>

* add group incomplete repo implementation

Signed-off-by: Arvindh <arvindh91@gmail.com>

* groups for users

Signed-off-by: Arvindh <arvindh91@gmail.com>

* groups for users

Signed-off-by: Arvindh <arvindh91@gmail.com>

* groups for users

Signed-off-by: Arvindh <arvindh91@gmail.com>

* groups for users

Signed-off-by: Arvindh <arvindh91@gmail.com>

---------

Signed-off-by: Arvindh <arvindh91@gmail.com>

Move coap mqtt and ws policies to spicedb (#16)

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>

Remove old policies

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

NOISSUE - Things authorize to return thingID (#18)

This commit modifies the authorize endpoint to the grpc endpoint to return thingID. The authorize endpoint allows adapters to get the publisher of the message.

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>

Add Groups to users service (#17)

* add assign and unassign to group

Signed-off-by: Arvindh <arvindh91@gmail.com>

* add group incomplete repo implementation

Signed-off-by: Arvindh <arvindh91@gmail.com>

* groups for users

Signed-off-by: Arvindh <arvindh91@gmail.com>

* groups for users

Signed-off-by: Arvindh <arvindh91@gmail.com>

* groups for users

Signed-off-by: Arvindh <arvindh91@gmail.com>

* groups for users

Signed-off-by: Arvindh <arvindh91@gmail.com>

* groups for users stable 1

Signed-off-by: Arvindh <arvindh91@gmail.com>

* groups for users stable 2

Signed-off-by: Arvindh <arvindh91@gmail.com>

* groups for users & things

Signed-off-by: Arvindh <arvindh91@gmail.com>

* Amend signature

Signed-off-by: Arvindh <arvindh91@gmail.com>

* fix merge error

Signed-off-by: Arvindh <arvindh91@gmail.com>

---------

Signed-off-by: Arvindh <arvindh91@gmail.com>
Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

* NOISSUE - Fix es code (#21)

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>
Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

* NOISSUE - Fix Bugs (#20)

* fix bugs

Signed-off-by: Arvindh <arvindh91@gmail.com>

* fix bugs

Signed-off-by: Arvindh <arvindh91@gmail.com>

---------

Signed-off-by: Arvindh <arvindh91@gmail.com>
Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

* NOISSUE - Test e2e (#19)

* fix: connect method

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>

* fix: e2e

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>

* fix changes in sdk and e2e

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>

* feat(docker): remove unnecessary port mapping

Remove the port mapping for MQTT broker in the docker-compose.yml file.

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>

* Enable group listing

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>

* feat(responses): update ChannelsPage struct

The ChannelsPage struct in the responses.go file has been updated. The "Channels" field has been renamed to "Groups" to provide more accurate naming. This change ensures consistency and clarity in the codebase.

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>

* feat(things): add UpdateClientSecret method

Add the UpdateClientSecret method to the things service. This method allows updating the client secret for a specific client identified by the provided token, id, and key parameters.

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>

---------

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>
Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

* Use smaller buffers for gRPC

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

* Clean up tests (#22)

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>
Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

* Add Connect Disconnect endpoints (#23)

* fix bugs

Signed-off-by: Arvindh <arvindh91@gmail.com>

* fix bugs

Signed-off-by: Arvindh <arvindh91@gmail.com>

* fix list of things in a channel and Add connect disconnect endpoint

Signed-off-by: Arvindh <arvindh91@gmail.com>

* fix list of things in a channel and Add connect disconnect endpoint

Signed-off-by: Arvindh <arvindh91@gmail.com>

---------

Signed-off-by: Arvindh <arvindh91@gmail.com>
Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

* Add: Things share with users (#25)

* fix list of things in a channel and Add connect disconnect endpoint

Signed-off-by: Arvindh <arvindh91@gmail.com>

* add: things share with other users

Signed-off-by: Arvindh <arvindh91@gmail.com>

---------

Signed-off-by: Arvindh <arvindh91@gmail.com>
Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

* NOISSUE - Rename gRPC Services (#24)

* Rename things and users auth service

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>

* docs: add authorization docs for gRPC services

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>

* Rename things and users grpc services

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>

* Remove mainflux.env package

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>

---------

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>
Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

* Add: Listing of things, channels, groups, users  (#26)

* add: listing of channels, users, groups, things

Signed-off-by: Arvindh <arvindh91@gmail.com>

* add: listing of channels, users, groups, things

Signed-off-by: Arvindh <arvindh91@gmail.com>

* add: listing of channels, users, groups, things

Signed-off-by: Arvindh <arvindh91@gmail.com>

* add: listing of channels, users, groups, things

Signed-off-by: Arvindh <arvindh91@gmail.com>

---------

Signed-off-by: Arvindh <arvindh91@gmail.com>
Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

* NOISSUE - Clean Up Users (#27)

* feat(groups): rename redis package to events

- Renamed the `redis` package to `events` in the `internal/groups` directory.
- Updated the file paths and names accordingly.
- This change reflects the more accurate purpose of the package and improves code organization.

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>

* feat(auth): Modify identity method

Change request and response of identity method

Add accessToken and refreshToken to Token response

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>

* clean up users, remove dead code

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>

* feat(users): add unit tests for user service

This commit adds unit tests for the user service in the `users` package. The tests cover various scenarios and ensure the correct behavior of the service.

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>

---------

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>
Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

* Add: List of user groups & removed repeating code in groups (#29)

* removed repeating code in list groups

Signed-off-by: Arvindh <arvindh91@gmail.com>

* add: list of user group

Signed-off-by: Arvindh <arvindh91@gmail.com>

* fix: otel handler operator name for endpoints

Signed-off-by: Arvindh <arvindh91@gmail.com>

---------

Signed-off-by: Arvindh <arvindh91@gmail.com>
Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

* NOISSUE - Clean Up Things Service (#28)

* Rework things service

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>

* add tests

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>

---------

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>
Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

* NOISSUE - Clean Up Auth Service (#30)

* clean up auth service

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>

* feat(auth): remove unused import

Remove the unused import of `emptypb` in `auth.pb.go`. This import is not being used in the codebase and can be safely removed.

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>

---------

Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>
Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

* NOISSUE - Update API docs (#31)

Signed-off-by: rodneyosodo <blackd0t@protonmail.com>
Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

* Remove TODO comments and cleanup the code

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

* Update dependenices

Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>

---------

Signed-off-by: Arvindh <arvindh91@gmail.com>
Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com>
Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com>
Signed-off-by: rodneyosodo <blackd0t@protonmail.com>
Co-authored-by: b1ackd0t <28790446+rodneyosodo@users.noreply.github.com>
Co-authored-by: Arvindh <30824765+arvindh123@users.noreply.github.com>
2023-10-15 22:02:13 +02:00

1353 lines
46 KiB
Go
Raw Blame History

package sdk_test
// import (
// "context"
// "fmt"
// "net/http"
// "net/http/httptest"
// "testing"
// "time"
// "github.com/go-zoo/bone"
// "github.com/mainflux/mainflux/internal/apiutil"
// "github.com/mainflux/mainflux/internal/testsutil"
// mflog "github.com/mainflux/mainflux/logger"
// mfclients "github.com/mainflux/mainflux/pkg/clients"
// "github.com/mainflux/mainflux/pkg/errors"
// sdk "github.com/mainflux/mainflux/pkg/sdk/go"
// "github.com/mainflux/mainflux/users/clients"
// "github.com/mainflux/mainflux/users/clients/api"
// "github.com/mainflux/mainflux/users/clients/mocks"
// "github.com/mainflux/mainflux/users/jwt"
// "github.com/mainflux/mainflux/users/policies"
// pmocks "github.com/mainflux/mainflux/users/policies/mocks"
// "github.com/stretchr/testify/assert"
// "github.com/stretchr/testify/mock"
// )
// var id = generateUUID(&testing.T{})
// func newClientServer(svc clients.Service) *httptest.Server {
// logger := mflog.NewMock()
// mux := bone.New()
// api.MakeHandler(svc, mux, logger, instanceID)
// return httptest.NewServer(mux)
// }
// func TestCreateClient(t *testing.T) {
// cRepo := new(mocks.Repository)
// pRepo := new(pmocks.Repository)
// tokenizer := jwt.NewRepository([]byte(secret), accessDuration, refreshDuration)
// svc := clients.NewService(cRepo, pRepo, tokenizer, emailer, phasher, idProvider, passRegex)
// ts := newClientServer(svc)
// defer ts.Close()
// user := sdk.User{
// Credentials: sdk.Credentials{Identity: "admin@example.com", Secret: "secret"},
// Status: mfclients.EnabledStatus.String(),
// }
// conf := sdk.Config{
// UsersURL: ts.URL,
// }
// mfsdk := sdk.NewSDK(conf)
// token := testsutil.GenerateValidToken(t, testsutil.GenerateUUID(t, idProvider), svc, cRepo, phasher)
// cases := []struct {
// desc string
// client sdk.User
// response sdk.User
// token string
// err errors.SDKError
// }{
// {
// desc: "register new user",
// client: user,
// response: user,
// token: token,
// err: nil,
// },
// {
// desc: "register existing user",
// client: user,
// response: sdk.User{},
// token: token,
// err: errors.NewSDKErrorWithStatus(errors.Wrap(apiutil.ErrValidation, sdk.ErrFailedCreation), http.StatusInternalServerError),
// },
// {
// desc: "register empty user",
// client: sdk.User{},
// response: sdk.User{},
// token: token,
// err: errors.NewSDKErrorWithStatus(errors.Wrap(apiutil.ErrValidation, errors.ErrMalformedEntity), http.StatusBadRequest),
// },
// {
// desc: "register a user that can't be marshalled",
// client: sdk.User{
// Credentials: sdk.Credentials{
// Identity: "user@example.com",
// Secret: "12345678",
// },
// Metadata: map[string]interface{}{
// "test": make(chan int),
// },
// },
// response: sdk.User{},
// token: token,
// err: errors.NewSDKError(fmt.Errorf("json: unsupported type: chan int")),
// },
// {
// desc: "register user with invalid identity",
// client: sdk.User{
// Credentials: sdk.Credentials{
// Identity: mocks.WrongID,
// Secret: "password",
// },
// },
// response: sdk.User{},
// token: token,
// err: errors.NewSDKErrorWithStatus(errors.Wrap(apiutil.ErrValidation, errors.ErrMalformedEntity), http.StatusBadRequest),
// },
// {
// desc: "register user with empty secret",
// client: sdk.User{
// Name: "emptysecret",
// Credentials: sdk.Credentials{
// Secret: "",
// },
// },
// response: sdk.User{},
// token: token,
// err: errors.NewSDKErrorWithStatus(errors.Wrap(apiutil.ErrValidation, errors.ErrMalformedEntity), http.StatusBadRequest),
// },
// {
// desc: "register user with empty identity",
// client: sdk.User{
// Credentials: sdk.Credentials{
// Identity: "",
// Secret: secret,
// },
// },
// response: sdk.User{},
// token: token,
// err: errors.NewSDKErrorWithStatus(errors.Wrap(apiutil.ErrValidation, errors.ErrMalformedEntity), http.StatusBadRequest),
// },
// {
// desc: "register empty user",
// client: sdk.User{},
// response: sdk.User{},
// token: token,
// err: errors.NewSDKErrorWithStatus(errors.Wrap(apiutil.ErrValidation, errors.ErrMalformedEntity), http.StatusBadRequest),
// },
// {
// desc: "register user with every field defined",
// client: sdk.User{
// ID: id,
// Name: "name",
// Tags: []string{"tag1", "tag2"},
// Owner: id,
// Credentials: user.Credentials,
// Metadata: validMetadata,
// CreatedAt: time.Now(),
// UpdatedAt: time.Now(),
// Status: mfclients.EnabledStatus.String(),
// },
// response: sdk.User{
// ID: id,
// Name: "name",
// Tags: []string{"tag1", "tag2"},
// Owner: id,
// Credentials: user.Credentials,
// Metadata: validMetadata,
// CreatedAt: time.Now(),
// UpdatedAt: time.Now(),
// Status: mfclients.EnabledStatus.String(),
// },
// token: token,
// err: nil,
// },
// }
// for _, tc := range cases {
// repoCall := cRepo.On("Save", mock.Anything, mock.Anything).Return(tc.response, tc.err)
// rClient, err := mfsdk.CreateUser(tc.client, tc.token)
// tc.response.ID = rClient.ID
// tc.response.Owner = rClient.Owner
// tc.response.CreatedAt = rClient.CreatedAt
// tc.response.UpdatedAt = rClient.UpdatedAt
// rClient.Credentials.Secret = tc.response.Credentials.Secret
// assert.Equal(t, tc.err, err, fmt.Sprintf("%s: expected error %s, got %s", tc.desc, tc.err, err))
// assert.Equal(t, tc.response, rClient, fmt.Sprintf("%s: expected %v got %v\n", tc.desc, tc.response, rClient))
// if tc.err == nil {
// ok := repoCall.Parent.AssertCalled(t, "Save", mock.Anything, mock.Anything)
// assert.True(t, ok, fmt.Sprintf("Save was not called on %s", tc.desc))
// }
// repoCall.Unset()
// }
// }
// func TestListClients(t *testing.T) {
// cRepo := new(mocks.Repository)
// pRepo := new(pmocks.Repository)
// tokenizer := jwt.NewRepository([]byte(secret), accessDuration, refreshDuration)
// svc := clients.NewService(cRepo, pRepo, tokenizer, emailer, phasher, idProvider, passRegex)
// ts := newClientServer(svc)
// defer ts.Close()
// var cls []sdk.User
// conf := sdk.Config{
// UsersURL: ts.URL,
// }
// mfsdk := sdk.NewSDK(conf)
// for i := 10; i < 100; i++ {
// cl := sdk.User{
// ID: generateUUID(t),
// Name: fmt.Sprintf("client_%d", i),
// Credentials: sdk.Credentials{
// Identity: fmt.Sprintf("identity_%d", i),
// Secret: fmt.Sprintf("password_%d", i),
// },
// Metadata: sdk.Metadata{"name": fmt.Sprintf("client_%d", i)},
// Status: mfclients.EnabledStatus.String(),
// }
// if i == 50 {
// cl.Owner = "clientowner"
// cl.Status = mfclients.DisabledStatus.String()
// cl.Tags = []string{"tag1", "tag2"}
// }
// cls = append(cls, cl)
// }
// cases := []struct {
// desc string
// token string
// status string
// total uint64
// offset uint64
// limit uint64
// name string
// identifier string
// ownerID string
// tag string
// metadata sdk.Metadata
// err errors.SDKError
// response []sdk.User
// }{
// {
// desc: "get a list of users",
// token: token,
// limit: limit,
// offset: offset,
// total: total,
// err: nil,
// response: cls[offset:limit],
// },
// {
// desc: "get a list of users with invalid token",
// token: invalidToken,
// offset: offset,
// limit: limit,
// err: errors.NewSDKErrorWithStatus(errors.Wrap(apiutil.ErrValidation, sdk.ErrFailedList), http.StatusInternalServerError),
// response: nil,
// },
// {
// desc: "get a list of users with empty token",
// token: "",
// offset: offset,
// limit: limit,
// err: errors.NewSDKErrorWithStatus(errors.Wrap(apiutil.ErrValidation, sdk.ErrFailedList), http.StatusInternalServerError),
// response: nil,
// },
// {
// desc: "get a list of users with zero limit",
// token: token,
// offset: offset,
// limit: 0,
// err: errors.NewSDKErrorWithStatus(errors.Wrap(apiutil.ErrValidation, apiutil.ErrLimitSize), http.StatusInternalServerError),
// response: nil,
// },
// {
// desc: "get a list of users with limit greater than max",
// token: token,
// offset: offset,
// limit: 110,
// err: errors.NewSDKErrorWithStatus(errors.Wrap(apiutil.ErrValidation, apiutil.ErrLimitSize), http.StatusInternalServerError),
// response: []sdk.User(nil),
// },
// {
// desc: "get a list of users with same identity",
// token: token,
// offset: 0,
// limit: 1,
// err: nil,
// identifier: Identity,
// metadata: sdk.Metadata{},
// response: []sdk.User{cls[89]},
// },
// {
// desc: "get a list of users with same identity and metadata",
// token: token,
// offset: 0,
// limit: 1,
// err: nil,
// identifier: Identity,
// metadata: sdk.Metadata{
// "name": "client99",
// },
// response: []sdk.User{cls[89]},
// },
// {
// desc: "list users with given metadata",
// token: generateValidToken(t, svc, cRepo),
// offset: 0,
// limit: 1,
// metadata: sdk.Metadata{
// "name": "client99",
// },
// response: []sdk.User{cls[89]},
// err: nil,
// },
// {
// desc: "list users with given name",
// token: generateValidToken(t, svc, cRepo),
// offset: 0,
// limit: 1,
// name: "client10",
// response: []sdk.User{cls[0]},
// err: nil,
// },
// {
// desc: "list users with given owner",
// token: generateValidToken(t, svc, cRepo),
// offset: 0,
// limit: 1,
// ownerID: "clientowner",
// response: []sdk.User{cls[50]},
// err: nil,
// },
// {
// desc: "list users with given status",
// token: generateValidToken(t, svc, cRepo),
// offset: 0,
// limit: 1,
// status: mfclients.DisabledStatus.String(),
// response: []sdk.User{cls[50]},
// err: nil,
// },
// {
// desc: "list users with given tag",
// token: generateValidToken(t, svc, cRepo),
// offset: 0,
// limit: 1,
// tag: "tag1",
// response: []sdk.User{cls[50]},
// err: nil,
// },
// }
// for _, tc := range cases {
// pm := sdk.PageMetadata{
// Status: tc.status,
// Total: total,
// Offset: tc.offset,
// Limit: tc.limit,
// Name: tc.name,
// OwnerID: tc.ownerID,
// Metadata: tc.metadata,
// Tag: tc.tag,
// }
// repoCall := pRepo.On("EvaluateUserAccess", mock.Anything, mock.Anything, mock.Anything).Return(policies.Policy{}, nil)
// repoCall1 := pRepo.On("CheckAdmin", mock.Anything, mock.Anything).Return(errors.ErrAuthorization)
// repoCall2 := cRepo.On("RetrieveAll", mock.Anything, mock.Anything).Return(mfclients.ClientsPage{Page: convertClientPage(pm), Clients: convertClients(tc.response)}, tc.err)
// page, err := mfsdk.Users(pm, generateValidToken(t, svc, cRepo))
// assert.Equal(t, tc.err, err, fmt.Sprintf("%s: expected error %s, got %s", tc.desc, tc.err, err))
// assert.Equal(t, tc.response, page.Users, fmt.Sprintf("%s: expected %v got %v\n", tc.desc, tc.response, page))
// repoCall.Unset()
// repoCall1.Unset()
// repoCall2.Unset()
// }
// }
// func TestListMembers(t *testing.T) {
// cRepo := new(mocks.Repository)
// pRepo := new(pmocks.Repository)
// tokenizer := jwt.NewRepository([]byte(secret), accessDuration, refreshDuration)
// svc := clients.NewService(cRepo, pRepo, tokenizer, emailer, phasher, idProvider, passRegex)
// ts := newClientServer(svc)
// defer ts.Close()
// conf := sdk.Config{
// UsersURL: ts.URL,
// }
// mfsdk := sdk.NewSDK(conf)
// nClients := uint64(10)
// aClients := []sdk.User{}
// for i := uint64(1); i < nClients; i++ {
// client := sdk.User{
// Name: fmt.Sprintf("member_%d@example.com", i),
// Credentials: sdk.Credentials{
// Identity: fmt.Sprintf("member_%d@example.com", i),
// Secret: "password",
// },
// Tags: []string{"tag1", "tag2"},
// Metadata: sdk.Metadata{"role": "client"},
// Status: mfclients.EnabledStatus.String(),
// }
// aClients = append(aClients, client)
// }
// cases := []struct {
// desc string
// token string
// groupID string
// page sdk.PageMetadata
// response []sdk.User
// err errors.SDKError
// }{
// {
// desc: "list clients with authorized token",
// token: generateValidToken(t, svc, cRepo),
// groupID: testsutil.GenerateUUID(t, idProvider),
// page: sdk.PageMetadata{},
// response: aClients,
// err: nil,
// },
// {
// desc: "list clients with offset and limit",
// token: generateValidToken(t, svc, cRepo),
// groupID: testsutil.GenerateUUID(t, idProvider),
// page: sdk.PageMetadata{
// Offset: 4,
// Limit: nClients,
// },
// response: aClients[4:],
// err: nil,
// },
// {
// desc: "list clients with given name",
// token: generateValidToken(t, svc, cRepo),
// groupID: testsutil.GenerateUUID(t, idProvider),
// page: sdk.PageMetadata{
// Name: Identity,
// Offset: 6,
// Limit: nClients,
// },
// response: aClients[6:],
// err: nil,
// },
// {
// desc: "list clients with given ownerID",
// token: generateValidToken(t, svc, cRepo),
// groupID: testsutil.GenerateUUID(t, idProvider),
// page: sdk.PageMetadata{
// OwnerID: user.Owner,
// Offset: 6,
// Limit: nClients,
// },
// response: aClients[6:],
// err: nil,
// },
// {
// desc: "list clients with given subject",
// token: generateValidToken(t, svc, cRepo),
// groupID: testsutil.GenerateUUID(t, idProvider),
// page: sdk.PageMetadata{
// Subject: subject,
// Offset: 6,
// Limit: nClients,
// },
// response: aClients[6:],
// err: nil,
// },
// {
// desc: "list clients with given object",
// token: generateValidToken(t, svc, cRepo),
// groupID: testsutil.GenerateUUID(t, idProvider),
// page: sdk.PageMetadata{
// Object: object,
// Offset: 6,
// Limit: nClients,
// },
// response: aClients[6:],
// err: nil,
// },
// {
// desc: "list clients with an invalid token",
// token: invalidToken,
// groupID: testsutil.GenerateUUID(t, idProvider),
// page: sdk.PageMetadata{},
// response: []sdk.User(nil),
// err: errors.NewSDKErrorWithStatus(errors.Wrap(errors.ErrAuthentication, sdk.ErrInvalidJWT), http.StatusUnauthorized),
// },
// {
// desc: "list clients with an invalid id",
// token: generateValidToken(t, svc, cRepo),
// groupID: mocks.WrongID,
// page: sdk.PageMetadata{},
// response: []sdk.User(nil),
// err: errors.NewSDKErrorWithStatus(errors.ErrNotFound, http.StatusNotFound),
// },
// }
// for _, tc := range cases {
// repoCall := pRepo.On("CheckAdmin", mock.Anything, mock.Anything).Return(nil)
// repoCall1 := cRepo.On("Members", mock.Anything, tc.groupID, mock.Anything).Return(mfclients.MembersPage{Members: convertClients(tc.response)}, tc.err)
// membersPage, err := mfsdk.Members(tc.groupID, tc.page, tc.token)
// assert.Equal(t, tc.err, err, fmt.Sprintf("%s: expected error %s, got %s", tc.desc, tc.err, err))
// assert.Equal(t, tc.response, membersPage.Members, fmt.Sprintf("%s: expected %v got %v\n", tc.desc, tc.response, membersPage.Members))
// if tc.err == nil {
// ok := repoCall.Parent.AssertCalled(t, "CheckAdmin", mock.Anything, mock.Anything)
// assert.True(t, ok, fmt.Sprintf("CheckAdmin was not called on %s", tc.desc))
// ok = repoCall1.Parent.AssertCalled(t, "Members", mock.Anything, tc.groupID, mock.Anything)
// assert.True(t, ok, fmt.Sprintf("Members was not called on %s", tc.desc))
// }
// repoCall.Unset()
// repoCall1.Unset()
// }
// }
// func TestClient(t *testing.T) {
// cRepo := new(mocks.Repository)
// pRepo := new(pmocks.Repository)
// tokenizer := jwt.NewRepository([]byte(secret), accessDuration, refreshDuration)
// svc := clients.NewService(cRepo, pRepo, tokenizer, emailer, phasher, idProvider, passRegex)
// ts := newClientServer(svc)
// defer ts.Close()
// user = sdk.User{
// Name: "clientname",
// Tags: []string{"tag1", "tag2"},
// Credentials: sdk.Credentials{Identity: "clientidentity", Secret: secret},
// Metadata: validMetadata,
// Status: mfclients.EnabledStatus.String(),
// }
// conf := sdk.Config{
// UsersURL: ts.URL,
// }
// mfsdk := sdk.NewSDK(conf)
// cases := []struct {
// desc string
// token string
// clientID string
// response sdk.User
// err errors.SDKError
// }{
// {
// desc: "view client successfully",
// response: user,
// token: generateValidToken(t, svc, cRepo),
// clientID: generateUUID(t),
// err: nil,
// },
// {
// desc: "view client with an invalid token",
// response: sdk.User{},
// token: invalidToken,
// clientID: generateUUID(t),
// err: errors.NewSDKErrorWithStatus(errors.Wrap(errors.ErrAuthentication, sdk.ErrInvalidJWT), http.StatusUnauthorized),
// },
// {
// desc: "view client with valid token and invalid client id",
// response: sdk.User{},
// token: generateValidToken(t, svc, cRepo),
// clientID: mocks.WrongID,
// err: errors.NewSDKErrorWithStatus(errors.ErrNotFound, http.StatusNotFound),
// },
// {
// desc: "view client with an invalid token and invalid client id",
// response: sdk.User{},
// token: invalidToken,
// clientID: mocks.WrongID,
// err: errors.NewSDKErrorWithStatus(errors.Wrap(errors.ErrAuthentication, sdk.ErrInvalidJWT), http.StatusUnauthorized),
// },
// }
// for _, tc := range cases {
// repoCall := pRepo.On("Evaluate", mock.Anything, mock.Anything, mock.Anything).Return(nil)
// repoCall1 := pRepo.On("CheckAdmin", mock.Anything, mock.Anything).Return(nil)
// repoCall2 := cRepo.On("RetrieveByID", mock.Anything, tc.clientID).Return(convertClient(tc.response), tc.err)
// rClient, err := mfsdk.User(tc.clientID, tc.token)
// assert.Equal(t, tc.err, err, fmt.Sprintf("%s: expected error %s, got %s", tc.desc, tc.err, err))
// tc.response.Credentials.Secret = ""
// assert.Equal(t, tc.response, rClient, fmt.Sprintf("%s: expected %v got %v\n", tc.desc, tc.response, rClient))
// if tc.err == nil {
// ok := repoCall1.Parent.AssertCalled(t, "CheckAdmin", mock.Anything, mock.Anything)
// assert.True(t, ok, fmt.Sprintf("CheckAdmin was not called on %s", tc.desc))
// ok = repoCall2.Parent.AssertCalled(t, "RetrieveByID", mock.Anything, tc.clientID)
// assert.True(t, ok, fmt.Sprintf("RetrieveByID was not called on %s", tc.desc))
// }
// repoCall2.Unset()
// repoCall1.Unset()
// repoCall.Unset()
// }
// }
// func TestProfile(t *testing.T) {
// cRepo := new(mocks.Repository)
// pRepo := new(pmocks.Repository)
// tokenizer := jwt.NewRepository([]byte(secret), accessDuration, refreshDuration)
// svc := clients.NewService(cRepo, pRepo, tokenizer, emailer, phasher, idProvider, passRegex)
// ts := newClientServer(svc)
// defer ts.Close()
// user = sdk.User{
// Name: "clientname",
// Tags: []string{"tag1", "tag2"},
// Credentials: sdk.Credentials{Identity: "clientidentity", Secret: secret},
// Metadata: validMetadata,
// Status: mfclients.EnabledStatus.String(),
// }
// conf := sdk.Config{
// UsersURL: ts.URL,
// }
// mfsdk := sdk.NewSDK(conf)
// cases := []struct {
// desc string
// token string
// response sdk.User
// err errors.SDKError
// }{
// {
// desc: "view client successfully",
// response: user,
// token: generateValidToken(t, svc, cRepo),
// err: nil,
// },
// {
// desc: "view client with an invalid token",
// response: sdk.User{},
// token: invalidToken,
// err: errors.NewSDKErrorWithStatus(errors.Wrap(errors.ErrAuthentication, sdk.ErrInvalidJWT), http.StatusUnauthorized),
// },
// }
// for _, tc := range cases {
// repoCall := cRepo.On("RetrieveByID", mock.Anything, mock.Anything).Return(convertClient(tc.response), tc.err)
// rClient, err := mfsdk.UserProfile(tc.token)
// assert.Equal(t, tc.err, err, fmt.Sprintf("%s: expected error %s, got %s", tc.desc, tc.err, err))
// tc.response.Credentials.Secret = ""
// assert.Equal(t, tc.response, rClient, fmt.Sprintf("%s: expected %v got %v\n", tc.desc, tc.response, rClient))
// if tc.err == nil {
// ok := repoCall.Parent.AssertCalled(t, "RetrieveByID", mock.Anything, mock.Anything)
// assert.True(t, ok, fmt.Sprintf("RetrieveByID was not called on %s", tc.desc))
// }
// repoCall.Unset()
// }
// }
// func TestUpdateClient(t *testing.T) {
// cRepo := new(mocks.Repository)
// pRepo := new(pmocks.Repository)
// tokenizer := jwt.NewRepository([]byte(secret), accessDuration, refreshDuration)
// svc := clients.NewService(cRepo, pRepo, tokenizer, emailer, phasher, idProvider, passRegex)
// ts := newClientServer(svc)
// defer ts.Close()
// conf := sdk.Config{
// UsersURL: ts.URL,
// }
// mfsdk := sdk.NewSDK(conf)
// user = sdk.User{
// ID: generateUUID(t),
// Name: "clientname",
// Tags: []string{"tag1", "tag2"},
// Credentials: sdk.Credentials{Identity: "clientidentity", Secret: secret},
// Metadata: validMetadata,
// Status: mfclients.EnabledStatus.String(),
// }
// client1 := user
// client1.Name = "Updated client"
// client2 := user
// client2.Metadata = sdk.Metadata{"role": "test"}
// client2.ID = invalidIdentity
// cases := []struct {
// desc string
// client sdk.User
// response sdk.User
// token string
// err errors.SDKError
// }{
// {
// desc: "update client name with valid token",
// client: client1,
// response: client1,
// token: generateValidToken(t, svc, cRepo),
// err: nil,
// },
// {
// desc: "update client name with invalid token",
// client: client1,
// response: sdk.User{},
// token: invalidToken,
// err: errors.NewSDKErrorWithStatus(errors.Wrap(errors.ErrAuthentication, sdk.ErrInvalidJWT), http.StatusUnauthorized),
// },
// {
// desc: "update client name with invalid id",
// client: client2,
// response: sdk.User{},
// token: generateValidToken(t, svc, cRepo),
// err: errors.NewSDKErrorWithStatus(errors.Wrap(apiutil.ErrValidation, sdk.ErrFailedUpdate), http.StatusInternalServerError),
// },
// {
// desc: "update a user that can't be marshalled",
// client: sdk.User{
// Credentials: sdk.Credentials{
// Identity: "user@example.com",
// Secret: "12345678",
// },
// Metadata: map[string]interface{}{
// "test": make(chan int),
// },
// },
// response: sdk.User{},
// token: token,
// err: errors.NewSDKError(fmt.Errorf("json: unsupported type: chan int")),
// },
// }
// for _, tc := range cases {
// repoCall := pRepo.On("CheckAdmin", mock.Anything, mock.Anything).Return(nil)
// repoCall1 := cRepo.On("Update", mock.Anything, mock.Anything).Return(convertClient(tc.response), tc.err)
// uClient, err := mfsdk.UpdateUser(tc.client, tc.token)
// assert.Equal(t, tc.err, err, fmt.Sprintf("%s: expected error %s, got %s", tc.desc, tc.err, err))
// assert.Equal(t, tc.response, uClient, fmt.Sprintf("%s: expected %v got %v\n", tc.desc, tc.response, uClient))
// if tc.err == nil {
// ok := repoCall.Parent.AssertCalled(t, "CheckAdmin", mock.Anything, mock.Anything)
// assert.True(t, ok, fmt.Sprintf("CheckAdmin was not called on %s", tc.desc))
// ok = repoCall1.Parent.AssertCalled(t, "Update", mock.Anything, mock.Anything)
// assert.True(t, ok, fmt.Sprintf("Update was not called on %s", tc.desc))
// }
// repoCall.Unset()
// repoCall1.Unset()
// }
// }
// func TestUpdateClientTags(t *testing.T) {
// cRepo := new(mocks.Repository)
// pRepo := new(pmocks.Repository)
// tokenizer := jwt.NewRepository([]byte(secret), accessDuration, refreshDuration)
// svc := clients.NewService(cRepo, pRepo, tokenizer, emailer, phasher, idProvider, passRegex)
// ts := newClientServer(svc)
// defer ts.Close()
// conf := sdk.Config{
// UsersURL: ts.URL,
// }
// mfsdk := sdk.NewSDK(conf)
// user = sdk.User{
// ID: generateUUID(t),
// Name: "clientname",
// Tags: []string{"tag1", "tag2"},
// Credentials: sdk.Credentials{Identity: "clientidentity", Secret: secret},
// Metadata: validMetadata,
// Status: mfclients.EnabledStatus.String(),
// }
// client1 := user
// client1.Tags = []string{"updatedTag1", "updatedTag2"}
// client2 := user
// client2.ID = invalidIdentity
// cases := []struct {
// desc string
// client sdk.User
// response sdk.User
// token string
// err error
// }{
// {
// desc: "update client name with valid token",
// client: user,
// response: client1,
// token: generateValidToken(t, svc, cRepo),
// err: nil,
// },
// {
// desc: "update client name with invalid token",
// client: client1,
// response: sdk.User{},
// token: invalidToken,
// err: errors.NewSDKErrorWithStatus(errors.Wrap(errors.ErrAuthentication, sdk.ErrInvalidJWT), http.StatusUnauthorized),
// },
// {
// desc: "update client name with invalid id",
// client: client2,
// response: sdk.User{},
// token: generateValidToken(t, svc, cRepo),
// err: errors.NewSDKErrorWithStatus(errors.Wrap(apiutil.ErrValidation, sdk.ErrFailedUpdate), http.StatusInternalServerError),
// },
// {
// desc: "update a user that can't be marshalled",
// client: sdk.User{
// ID: generateUUID(t),
// Credentials: sdk.Credentials{
// Identity: "user@example.com",
// Secret: "12345678",
// },
// Metadata: map[string]interface{}{
// "test": make(chan int),
// },
// },
// response: sdk.User{},
// token: token,
// err: errors.NewSDKError(fmt.Errorf("json: unsupported type: chan int")),
// },
// }
// for _, tc := range cases {
// repoCall := pRepo.On("CheckAdmin", mock.Anything, mock.Anything).Return(nil)
// repoCall1 := cRepo.On("UpdateTags", mock.Anything, mock.Anything).Return(convertClient(tc.response), tc.err)
// uClient, err := mfsdk.UpdateUserTags(tc.client, tc.token)
// assert.Equal(t, tc.err, err, fmt.Sprintf("%s: expected error %s, got %s", tc.desc, tc.err, err))
// assert.Equal(t, tc.response, uClient, fmt.Sprintf("%s: expected %v got %v\n", tc.desc, tc.response, uClient))
// if tc.err == nil {
// ok := repoCall.Parent.AssertCalled(t, "CheckAdmin", mock.Anything, mock.Anything)
// assert.True(t, ok, fmt.Sprintf("CheckAdmin was not called on %s", tc.desc))
// ok = repoCall1.Parent.AssertCalled(t, "UpdateTags", mock.Anything, mock.Anything)
// assert.True(t, ok, fmt.Sprintf("UpdateTags was not called on %s", tc.desc))
// }
// repoCall.Unset()
// repoCall1.Unset()
// }
// }
// func TestUpdateClientIdentity(t *testing.T) {
// cRepo := new(mocks.Repository)
// pRepo := new(pmocks.Repository)
// tokenizer := jwt.NewRepository([]byte(secret), accessDuration, refreshDuration)
// svc := clients.NewService(cRepo, pRepo, tokenizer, emailer, phasher, idProvider, passRegex)
// ts := newClientServer(svc)
// defer ts.Close()
// conf := sdk.Config{
// UsersURL: ts.URL,
// }
// mfsdk := sdk.NewSDK(conf)
// user = sdk.User{
// ID: generateUUID(t),
// Name: "clientname",
// Tags: []string{"tag1", "tag2"},
// Credentials: sdk.Credentials{Identity: "updatedclientidentity", Secret: secret},
// Metadata: validMetadata,
// Status: mfclients.EnabledStatus.String(),
// }
// client2 := user
// client2.Metadata = sdk.Metadata{"role": "test"}
// client2.ID = invalidIdentity
// cases := []struct {
// desc string
// client sdk.User
// response sdk.User
// token string
// err errors.SDKError
// }{
// {
// desc: "update client name with valid token",
// client: user,
// response: user,
// token: generateValidToken(t, svc, cRepo),
// err: nil,
// },
// {
// desc: "update client name with invalid token",
// client: user,
// response: sdk.User{},
// token: invalidToken,
// err: errors.NewSDKErrorWithStatus(errors.Wrap(errors.ErrAuthentication, sdk.ErrInvalidJWT), http.StatusUnauthorized),
// },
// {
// desc: "update client name with invalid id",
// client: client2,
// response: sdk.User{},
// token: generateValidToken(t, svc, cRepo),
// err: errors.NewSDKErrorWithStatus(errors.Wrap(apiutil.ErrValidation, sdk.ErrFailedUpdate), http.StatusInternalServerError),
// },
// {
// desc: "update a user that can't be marshalled",
// client: sdk.User{
// ID: generateUUID(t),
// Credentials: sdk.Credentials{
// Identity: "user@example.com",
// Secret: "12345678",
// },
// Metadata: map[string]interface{}{
// "test": make(chan int),
// },
// },
// response: sdk.User{},
// token: generateValidToken(t, svc, cRepo),
// err: errors.NewSDKErrorWithStatus(errors.Wrap(apiutil.ErrValidation, fmt.Errorf("json: unsupported type: chan int")), http.StatusInternalServerError),
// },
// }
// for _, tc := range cases {
// repoCall := pRepo.On("CheckAdmin", mock.Anything, mock.Anything).Return(nil)
// repoCall1 := cRepo.On("UpdateIdentity", mock.Anything, mock.Anything).Return(convertClient(tc.response), tc.err)
// uClient, err := mfsdk.UpdateUserIdentity(tc.client, tc.token)
// assert.Equal(t, tc.err, err, fmt.Sprintf("%s: expected error %s, got %s", tc.desc, tc.err, err))
// assert.Equal(t, tc.response, uClient, fmt.Sprintf("%s: expected %v got %v\n", tc.desc, tc.response, uClient))
// if tc.err == nil {
// ok := repoCall.Parent.AssertCalled(t, "CheckAdmin", mock.Anything, mock.Anything)
// assert.True(t, ok, fmt.Sprintf("CheckAdmin was not called on %s", tc.desc))
// ok = repoCall1.Parent.AssertCalled(t, "UpdateIdentity", mock.Anything, mock.Anything)
// assert.True(t, ok, fmt.Sprintf("UpdateIdentity was not called on %s", tc.desc))
// }
// repoCall.Unset()
// repoCall1.Unset()
// }
// }
// func TestUpdateClientSecret(t *testing.T) {
// cRepo := new(mocks.Repository)
// pRepo := new(pmocks.Repository)
// tokenizer := jwt.NewRepository([]byte(secret), accessDuration, refreshDuration)
// svc := clients.NewService(cRepo, pRepo, tokenizer, emailer, phasher, idProvider, passRegex)
// ts := newClientServer(svc)
// defer ts.Close()
// conf := sdk.Config{
// UsersURL: ts.URL,
// }
// mfsdk := sdk.NewSDK(conf)
// user.ID = generateUUID(t)
// rclient := user
// rclient.Credentials.Secret, _ = phasher.Hash(user.Credentials.Secret)
// repoCall := cRepo.On("RetrieveByIdentity", context.Background(), user.Credentials.Identity).Return(convertClient(rclient), nil)
// token, err := svc.IssueToken(context.Background(), user.Credentials.Identity, user.Credentials.Secret)
// assert.Nil(t, err, fmt.Sprintf("Issue token expected nil got %s\n", err))
// repoCall.Unset()
// cases := []struct {
// desc string
// oldSecret string
// newSecret string
// token string
// response sdk.User
// err error
// repoErr error
// }{
// {
// desc: "update client secret with valid token",
// oldSecret: user.Credentials.Secret,
// newSecret: "newSecret",
// token: token.AccessToken,
// response: rclient,
// repoErr: nil,
// err: nil,
// },
// {
// desc: "update client secret with invalid token",
// oldSecret: user.Credentials.Secret,
// newSecret: "newPassword",
// token: "non-existent",
// response: sdk.User{},
// repoErr: errors.ErrAuthentication,
// err: errors.NewSDKErrorWithStatus(errors.Wrap(errors.ErrAuthentication, sdk.ErrInvalidJWT), http.StatusUnauthorized),
// },
// {
// desc: "update client secret with wrong old secret",
// oldSecret: "oldSecret",
// newSecret: "newSecret",
// token: token.AccessToken,
// response: sdk.User{},
// repoErr: apiutil.ErrInvalidSecret,
// err: errors.NewSDKErrorWithStatus(apiutil.ErrInvalidSecret, http.StatusBadRequest),
// },
// }
// for _, tc := range cases {
// repoCall := cRepo.On("RetrieveByID", mock.Anything, user.ID).Return(convertClient(tc.response), tc.repoErr)
// repoCall1 := cRepo.On("RetrieveByIdentity", mock.Anything, user.Credentials.Identity).Return(convertClient(tc.response), tc.repoErr)
// repoCall2 := cRepo.On("UpdateSecret", mock.Anything, mock.Anything).Return(convertClient(tc.response), tc.repoErr)
// uClient, err := mfsdk.UpdatePassword(tc.oldSecret, tc.newSecret, tc.token)
// assert.Equal(t, tc.err, err, fmt.Sprintf("%s: expected error %s, got %s", tc.desc, tc.err, err))
// assert.Equal(t, tc.response, uClient, fmt.Sprintf("%s: expected %v got %v\n", tc.desc, tc.response, uClient))
// if tc.err == nil {
// ok := repoCall.Parent.AssertCalled(t, "RetrieveByID", mock.Anything, user.ID)
// assert.True(t, ok, fmt.Sprintf("RetrieveByID was not called on %s", tc.desc))
// ok = repoCall1.Parent.AssertCalled(t, "RetrieveByIdentity", mock.Anything, user.Credentials.Identity)
// assert.True(t, ok, fmt.Sprintf("RetrieveByIdentity was not called on %s", tc.desc))
// ok = repoCall2.Parent.AssertCalled(t, "UpdateSecret", mock.Anything, mock.Anything)
// assert.True(t, ok, fmt.Sprintf("UpdateSecret was not called on %s", tc.desc))
// }
// repoCall.Unset()
// repoCall1.Unset()
// repoCall2.Unset()
// }
// }
// func TestUpdateClientOwner(t *testing.T) {
// cRepo := new(mocks.Repository)
// pRepo := new(pmocks.Repository)
// tokenizer := jwt.NewRepository([]byte(secret), accessDuration, refreshDuration)
// svc := clients.NewService(cRepo, pRepo, tokenizer, emailer, phasher, idProvider, passRegex)
// ts := newClientServer(svc)
// defer ts.Close()
// conf := sdk.Config{
// UsersURL: ts.URL,
// }
// mfsdk := sdk.NewSDK(conf)
// user = sdk.User{
// ID: generateUUID(t),
// Name: "clientname",
// Tags: []string{"tag1", "tag2"},
// Credentials: sdk.Credentials{Identity: "clientidentity", Secret: secret},
// Metadata: validMetadata,
// Status: mfclients.EnabledStatus.String(),
// Owner: "owner",
// }
// client2 := user
// client2.ID = invalidIdentity
// cases := []struct {
// desc string
// client sdk.User
// response sdk.User
// token string
// err errors.SDKError
// }{
// {
// desc: "update client name with valid token",
// client: user,
// response: user,
// token: generateValidToken(t, svc, cRepo),
// err: nil,
// },
// {
// desc: "update client name with invalid token",
// client: client2,
// response: sdk.User{},
// token: invalidToken,
// err: errors.NewSDKErrorWithStatus(errors.Wrap(errors.ErrAuthentication, sdk.ErrInvalidJWT), http.StatusUnauthorized),
// },
// {
// desc: "update client name with invalid id",
// client: client2,
// response: sdk.User{},
// token: generateValidToken(t, svc, cRepo),
// err: errors.NewSDKErrorWithStatus(errors.Wrap(apiutil.ErrValidation, sdk.ErrFailedUpdate), http.StatusInternalServerError),
// },
// {
// desc: "update a user that can't be marshalled",
// client: sdk.User{
// Credentials: sdk.Credentials{
// Identity: "user@example.com",
// Secret: "12345678",
// },
// Metadata: map[string]interface{}{
// "test": make(chan int),
// },
// },
// response: sdk.User{},
// token: token,
// err: errors.NewSDKError(fmt.Errorf("json: unsupported type: chan int")),
// },
// }
// for _, tc := range cases {
// repoCall := pRepo.On("CheckAdmin", mock.Anything, mock.Anything).Return(nil)
// repoCall1 := cRepo.On("UpdateOwner", mock.Anything, mock.Anything).Return(convertClient(tc.response), tc.err)
// uClient, err := mfsdk.UpdateUserOwner(tc.client, tc.token)
// assert.Equal(t, tc.err, err, fmt.Sprintf("%s: expected error %s, got %s", tc.desc, tc.err, err))
// assert.Equal(t, tc.response, uClient, fmt.Sprintf("%s: expected %v got %v\n", tc.desc, tc.response, uClient))
// if tc.err == nil {
// ok := repoCall.Parent.AssertCalled(t, "CheckAdmin", mock.Anything, mock.Anything)
// assert.True(t, ok, fmt.Sprintf("CheckAdmin was not called on %s", tc.desc))
// ok = repoCall1.Parent.AssertCalled(t, "UpdateOwner", mock.Anything, mock.Anything)
// assert.True(t, ok, fmt.Sprintf("UpdateOwner was not called on %s", tc.desc))
// }
// repoCall.Unset()
// repoCall1.Unset()
// }
// }
// func TestEnableClient(t *testing.T) {
// cRepo := new(mocks.Repository)
// pRepo := new(pmocks.Repository)
// tokenizer := jwt.NewRepository([]byte(secret), accessDuration, refreshDuration)
// svc := clients.NewService(cRepo, pRepo, tokenizer, emailer, phasher, idProvider, passRegex)
// ts := newClientServer(svc)
// defer ts.Close()
// conf := sdk.Config{
// UsersURL: ts.URL,
// }
// mfsdk := sdk.NewSDK(conf)
// enabledClient1 := sdk.User{ID: testsutil.GenerateUUID(t, idProvider), Credentials: sdk.Credentials{Identity: "client1@example.com", Secret: "password"}, Status: mfclients.EnabledStatus.String()}
// disabledClient1 := sdk.User{ID: testsutil.GenerateUUID(t, idProvider), Credentials: sdk.Credentials{Identity: "client3@example.com", Secret: "password"}, Status: mfclients.DisabledStatus.String()}
// endisabledClient1 := disabledClient1
// endisabledClient1.Status = mfclients.EnabledStatus.String()
// endisabledClient1.ID = testsutil.GenerateUUID(t, idProvider)
// cases := []struct {
// desc string
// id string
// token string
// client sdk.User
// response sdk.User
// repoErr error
// err errors.SDKError
// }{
// {
// desc: "enable disabled client",
// id: disabledClient1.ID,
// token: generateValidToken(t, svc, cRepo),
// client: disabledClient1,
// response: endisabledClient1,
// repoErr: nil,
// err: nil,
// },
// {
// desc: "enable enabled client",
// id: enabledClient1.ID,
// token: generateValidToken(t, svc, cRepo),
// client: enabledClient1,
// response: sdk.User{},
// repoErr: sdk.ErrFailedEnable,
// err: errors.NewSDKErrorWithStatus(errors.Wrap(sdk.ErrFailedEnable, sdk.ErrFailedEnable), http.StatusInternalServerError),
// },
// {
// desc: "enable non-existing client",
// id: mocks.WrongID,
// token: generateValidToken(t, svc, cRepo),
// client: sdk.User{},
// response: sdk.User{},
// repoErr: sdk.ErrFailedEnable,
// err: errors.NewSDKErrorWithStatus(errors.Wrap(sdk.ErrFailedEnable, errors.ErrNotFound), http.StatusNotFound),
// },
// }
// for _, tc := range cases {
// repoCall := pRepo.On("CheckAdmin", mock.Anything, mock.Anything).Return(nil)
// repoCall1 := cRepo.On("RetrieveByID", mock.Anything, tc.id).Return(convertClient(tc.client), tc.repoErr)
// repoCall2 := cRepo.On("ChangeStatus", mock.Anything, mock.Anything).Return(convertClient(tc.response), tc.repoErr)
// eClient, err := mfsdk.EnableUser(tc.id, tc.token)
// assert.Equal(t, tc.err, err, fmt.Sprintf("%s: expected error %s, got %s", tc.desc, tc.err, err))
// assert.Equal(t, tc.response, eClient, fmt.Sprintf("%s: expected %v got %v\n", tc.desc, tc.response, eClient))
// if tc.err == nil {
// ok := repoCall.Parent.AssertCalled(t, "CheckAdmin", mock.Anything, mock.Anything)
// assert.True(t, ok, fmt.Sprintf("CheckAdmin was not called on %s", tc.desc))
// ok = repoCall1.Parent.AssertCalled(t, "RetrieveByID", mock.Anything, tc.id)
// assert.True(t, ok, fmt.Sprintf("RetrieveByID was not called on %s", tc.desc))
// ok = repoCall2.Parent.AssertCalled(t, "ChangeStatus", mock.Anything, mock.Anything)
// assert.True(t, ok, fmt.Sprintf("ChangeStatus was not called on %s", tc.desc))
// }
// repoCall.Unset()
// repoCall1.Unset()
// repoCall2.Unset()
// }
// cases2 := []struct {
// desc string
// token string
// status string
// metadata sdk.Metadata
// response sdk.UsersPage
// size uint64
// }{
// {
// desc: "list enabled clients",
// status: mfclients.EnabledStatus.String(),
// size: 2,
// response: sdk.UsersPage{
// Users: []sdk.User{enabledClient1, endisabledClient1},
// },
// },
// {
// desc: "list disabled clients",
// status: mfclients.DisabledStatus.String(),
// size: 1,
// response: sdk.UsersPage{
// Users: []sdk.User{disabledClient1},
// },
// },
// {
// desc: "list enabled and disabled clients",
// status: mfclients.AllStatus.String(),
// size: 3,
// response: sdk.UsersPage{
// Users: []sdk.User{enabledClient1, disabledClient1, endisabledClient1},
// },
// },
// }
// for _, tc := range cases2 {
// pm := sdk.PageMetadata{
// Total: 100,
// Offset: 0,
// Limit: 100,
// Status: tc.status,
// }
// repoCall := pRepo.On("CheckAdmin", mock.Anything, mock.Anything).Return(nil)
// repoCall1 := cRepo.On("RetrieveAll", mock.Anything, mock.Anything).Return(convertClientsPage(tc.response), nil)
// clientsPage, err := mfsdk.Users(pm, generateValidToken(t, svc, cRepo))
// assert.Nil(t, err, fmt.Sprintf("unexpected error: %s", err))
// size := uint64(len(clientsPage.Users))
// assert.Equal(t, tc.size, size, fmt.Sprintf("%s: expected size %d got %d\n", tc.desc, tc.size, size))
// repoCall.Unset()
// repoCall1.Unset()
// }
// }
// func TestDisableClient(t *testing.T) {
// cRepo := new(mocks.Repository)
// pRepo := new(pmocks.Repository)
// tokenizer := jwt.NewRepository([]byte(secret), accessDuration, refreshDuration)
// svc := clients.NewService(cRepo, pRepo, tokenizer, emailer, phasher, idProvider, passRegex)
// ts := newClientServer(svc)
// defer ts.Close()
// conf := sdk.Config{
// UsersURL: ts.URL,
// }
// mfsdk := sdk.NewSDK(conf)
// enabledClient1 := sdk.User{ID: testsutil.GenerateUUID(t, idProvider), Credentials: sdk.Credentials{Identity: "client1@example.com", Secret: "password"}, Status: mfclients.EnabledStatus.String()}
// disabledClient1 := sdk.User{ID: testsutil.GenerateUUID(t, idProvider), Credentials: sdk.Credentials{Identity: "client3@example.com", Secret: "password"}, Status: mfclients.DisabledStatus.String()}
// disenabledClient1 := enabledClient1
// disenabledClient1.Status = mfclients.DisabledStatus.String()
// disenabledClient1.ID = testsutil.GenerateUUID(t, idProvider)
// cases := []struct {
// desc string
// id string
// token string
// client sdk.User
// response sdk.User
// repoErr error
// err errors.SDKError
// }{
// {
// desc: "disable enabled client",
// id: enabledClient1.ID,
// token: generateValidToken(t, svc, cRepo),
// client: enabledClient1,
// response: disenabledClient1,
// err: nil,
// repoErr: nil,
// },
// {
// desc: "disable disabled client",
// id: disabledClient1.ID,
// token: generateValidToken(t, svc, cRepo),
// client: disabledClient1,
// response: sdk.User{},
// repoErr: sdk.ErrFailedDisable,
// err: errors.NewSDKErrorWithStatus(errors.Wrap(sdk.ErrFailedDisable, sdk.ErrFailedDisable), http.StatusInternalServerError),
// },
// {
// desc: "disable non-existing client",
// id: mocks.WrongID,
// client: sdk.User{},
// token: generateValidToken(t, svc, cRepo),
// response: sdk.User{},
// repoErr: sdk.ErrFailedDisable,
// err: errors.NewSDKErrorWithStatus(errors.Wrap(sdk.ErrFailedDisable, errors.ErrNotFound), http.StatusNotFound),
// },
// }
// for _, tc := range cases {
// repoCall := pRepo.On("CheckAdmin", mock.Anything, mock.Anything).Return(nil)
// repoCall1 := cRepo.On("RetrieveByID", mock.Anything, tc.id).Return(convertClient(tc.client), tc.repoErr)
// repoCall2 := cRepo.On("ChangeStatus", mock.Anything, mock.Anything).Return(convertClient(tc.response), tc.repoErr)
// dClient, err := mfsdk.DisableUser(tc.id, tc.token)
// assert.Equal(t, tc.err, err, fmt.Sprintf("%s: expected error %s, got %s", tc.desc, tc.err, err))
// assert.Equal(t, tc.response, dClient, fmt.Sprintf("%s: expected %v got %v\n", tc.desc, tc.response, dClient))
// if tc.err == nil {
// ok := repoCall.Parent.AssertCalled(t, "CheckAdmin", mock.Anything, mock.Anything)
// assert.True(t, ok, fmt.Sprintf("CheckAdmin was not called on %s", tc.desc))
// ok = repoCall1.Parent.AssertCalled(t, "RetrieveByID", mock.Anything, tc.id)
// assert.True(t, ok, fmt.Sprintf("RetrieveByID was not called on %s", tc.desc))
// ok = repoCall2.Parent.AssertCalled(t, "ChangeStatus", mock.Anything, mock.Anything)
// assert.True(t, ok, fmt.Sprintf("ChangeStatus was not called on %s", tc.desc))
// }
// repoCall.Unset()
// repoCall1.Unset()
// repoCall2.Unset()
// }
// cases2 := []struct {
// desc string
// token string
// status string
// metadata sdk.Metadata
// response sdk.UsersPage
// size uint64
// }{
// {
// desc: "list enabled clients",
// status: mfclients.EnabledStatus.String(),
// size: 2,
// response: sdk.UsersPage{
// Users: []sdk.User{enabledClient1, disenabledClient1},
// },
// },
// {
// desc: "list disabled clients",
// status: mfclients.DisabledStatus.String(),
// size: 1,
// response: sdk.UsersPage{
// Users: []sdk.User{disabledClient1},
// },
// },
// {
// desc: "list enabled and disabled clients",
// status: mfclients.AllStatus.String(),
// size: 3,
// response: sdk.UsersPage{
// Users: []sdk.User{enabledClient1, disabledClient1, disenabledClient1},
// },
// },
// }
// for _, tc := range cases2 {
// pm := sdk.PageMetadata{
// Total: 100,
// Offset: 0,
// Limit: 100,
// Status: tc.status,
// }
// repoCall := pRepo.On("CheckAdmin", mock.Anything, mock.Anything).Return(nil)
// repoCall1 := cRepo.On("RetrieveAll", mock.Anything, mock.Anything).Return(convertClientsPage(tc.response), nil)
// page, err := mfsdk.Users(pm, generateValidToken(t, svc, cRepo))
// assert.Nil(t, err, fmt.Sprintf("unexpected error: %s", err))
// size := uint64(len(page.Users))
// assert.Equal(t, tc.size, size, fmt.Sprintf("%s: expected size %d got %d\n", tc.desc, tc.size, size))
// repoCall.Unset()
// repoCall1.Unset()
// }
// }
Reference in New Issue View Git Blame Copy Permalink