require 'spec_helper' describe OmniAuth::Strategies::Salesforce do strategy = nil before do OmniAuth.config.test_mode = true rack_app = [] rack_app.stub :call strategy = OmniAuth::Strategies::Salesforce.new rack_app, 'Consumer Key', 'Consumer Secret' end describe "request_phase" do env = nil before do env = { 'rack.session' => {}, 'HTTP_USER_AGENT' => 'unknown', 'REQUEST_METHOD' => 'GET', 'rack.input' => '', 'rack.url_scheme' => 'http', 'SERVER_NAME' => 'server.example', 'QUERY_STRING' => 'code=xxxx', 'SCRIPT_NAME' => '', 'SERVER_PORT' => 80 } end context "when using a mobile browser" do user_agents = { :Pre => "Mozilla/5.0 (webOS/1.4.0; U; en-US) AppleWebKit/532.2 (KHTML, like Gecko) Version/1.0 Safari/532.2 Pre/1.1", :iPod => "Mozilla/5.0 (iPod; U; CPU like Mac OS X; en) AppleWebKit/420.1 (KHTML, like Gecko) Version/3.0 Mobile/4A93 Safari/419.3", :iPhone => "Mozilla/5.0 (iPhone; U; CPU like Mac OS X; en) AppleWebKit/420+ (KHTML, like Gecko) Version/3.0 Mobile/1A543 Safari/419.3", :iPad => "Mozilla/5.0 (iPad; U; CPU OS 3_2 like Mac OS X; en-us) AppleWebKit/531.21.10 (KHTML, like Gecko) Version/4.0.4 Mobile/7B334b Safari/531.21.10", :Nexus => "Mozilla/5.0 (Linux; U; Android 2.2; en-us; Nexus One Build/FRF91) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1", :myTouch => "Mozilla/5.0 (Linux; U; Android 1.6; en-us; WOWMobile myTouch 3G Build/unknown) AppleWebKit/528.5+ (KHTML, like Gecko) Version/3.1.2 Mobile Safari/525.20.1", :Storm => "BlackBerry9530/4.7.0.148 Profile/MIDP-2.0 Configuration/CLDC-1.1 VendorID/105", :Torch => "Mozilla/5.0 (BlackBerry; U; BlackBerry 9810; en-US) AppleWebKit/534.11+ (KHTML, like Gecko) Version/7.0.0 Mobile Safari/534.11+", :generic_mobile => "some mobile device" } user_agents.each_pair do |name, agent| context "with the user agent from a #{name.to_s}" do before do env['HTTP_USER_AGENT'] = agent strategy.call!(env) strategy.request_phase end subject {strategy.options} it "sets the :display option to 'touch'" do subject[:display].should == 'touch' end end end end context "when using a desktop browser" do user_agents = { :Chrome => "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/535.21 (KHTML, like Gecko) Chrome/19.0.1042.0 Safari/535.21", :Safari => "Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_6_8; de-at) AppleWebKit/533.21.1 (KHTML, like Gecko) Version/5.0.5 Safari/533.21.1", :IE => "Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; Trident/4.0; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET CLR 1.0.3705; .NET CLR 1.1.4322)", :anything_else => "unknown" } user_agents.each_pair do |name, agent| context "with the user agent from #{name.to_s}" do before do env['HTTP_USER_AGENT'] = agent strategy.call!(env) strategy.request_phase end subject {strategy.options} it "sets the :display option to 'page'" do subject[:display].should == 'page' end end end end end describe "callback phase" do raw_info = nil before do raw_info = { 'id' => 'salesforce id', 'display_name' => 'display name', 'email' => 'email', 'nick_name' => 'nick name', 'first_name' => 'first name', 'last_name' => 'last name', 'photos' => {'thumbnail' => '/thumbnail/url'}, 'urls'=> { "enterprise" => "https://salesforce.example/services", "metadata" => "https://salesforce.example/services" } } client = OAuth2::Client.new 'id', 'secret', {:site => 'example.com'} access_token = OAuth2::AccessToken.from_hash client, { 'access_token' => 'token', 'instance_url' => 'http://instance.salesforce.example', 'signature' => 'invalid', 'issued_at' => '1296458209517' } strategy.stub(:raw_info) { raw_info } strategy.stub(:access_token) { access_token } end describe "uid" do it "sets the id" do strategy.uid.should == raw_info['id'] end end describe "info" do subject { strategy.info } it "returns an info hash" do subject.should_not be_nil end it "sets name" do subject['name'].should == raw_info['display_name'] end it "sets email" do subject['email'].should == raw_info['email'] end it "sets nickname" do subject['nickname'].should == raw_info['nick_name'] end it "sets first_name" do subject['first_name'].should == raw_info['first_name'] end it "sets last_name" do subject['last_name'].should == raw_info['last_name'] end it "sets location" do subject['location'].should == '' end it "sets description" do subject['description'].should == '' end it "sets image" do subject['image'].should == raw_info['photos']['thumbnail'] + "?oauth_token=#{strategy.access_token.token}" end it "sets phone" do subject['phone'].should == '' end it "sets urls" do subject['urls'].should == raw_info['urls'] end end describe "credentials" do subject { strategy.credentials } it "sets token" do subject['token'].should == strategy.access_token.token end it "sets instance_url" do subject['instance_url'].should == strategy.access_token.params["instance_url"] end context "given a refresh token" do it "sets refresh_token" do subject['refresh_token'].should == strategy.access_token.refresh_token end end context "when not given a refresh token" do it "does not set a refresh token" do subject['refresh_token'].should be_nil end end end describe "extra" do subject { strategy.extra } it "sets instance_url" do subject['instance_url'].should == strategy.access_token.params['instance_url'] end it "sets pod" do subject['pod'].should == strategy.access_token.params['instance_url'] end it "sets signature" do subject['signature'].should == strategy.access_token.params['signature'] end it "sets issued_at" do subject['issued_at'].should == strategy.access_token.params['issued_at'] end end describe "user id validation" do client_id = nil issued_at = nil signature = nil instance_url = 'http://instance.salesforce.example' before do client_id = "https://login.salesforce.com/id/00Dd0000000d45TEBQ/005d0000000fyGPCCY" issued_at = "1331142541514" signature = Base64.strict_encode64(OpenSSL::HMAC.digest('sha256', strategy.options.client_secret, client_id + issued_at)) end context "when the signature does not match" do before do access_token = OAuth2::AccessToken.from_hash strategy.access_token.client, { 'id' => 'forged client id', 'issued_at' => issued_at, 'instance_url' => 'http://instance.salesforce.example', 'signature' => signature } strategy.stub(:access_token) { access_token } end it "should call fail!" do strategy.should_receive(:fail!) strategy.auth_hash end end context "when the signature does match" do before do access_token = OAuth2::AccessToken.from_hash strategy.access_token.client, { 'id' => client_id, 'issued_at' => issued_at, 'instance_url' => 'http://instance.salesforce.example', 'signature' => signature } strategy.stub(:access_token) { access_token } end it "should not fail" do strategy.should_not_receive(:fail!) strategy.auth_hash end end end end end