require 'spec_helper'

describe ApiAuth::RequestDrivers::HttpiRequest do

  let(:timestamp){ Time.now.utc.httpdate }

  let(:request) do
    httpi_request = HTTPI::Request.new("http://localhost/resource.xml?foo=bar&bar=foo")
    httpi_request.headers.merge!({
        'Authorization'  => 'APIAuth 1044:12345',
        'content-md5' => '1B2M2Y8AsgTpgAmY7PhCfg==',
        'content-type' => 'text/plain',
        'date' => timestamp
    })
    httpi_request.body = "hello\nworld"
    httpi_request
  end

  subject(:driven_request){ ApiAuth::RequestDrivers::HttpiRequest.new(request) }

  describe "getting headers correctly" do
    it "gets the content_type" do
      expect(driven_request.content_type).to eq('text/plain')
    end

    it "gets the content_md5" do
      expect(driven_request.content_md5).to eq('1B2M2Y8AsgTpgAmY7PhCfg==')
    end

    it "gets the request_uri" do
      expect(driven_request.request_uri).to eq('/resource.xml?foo=bar&bar=foo')
    end

    it "gets the timestamp" do
      expect(driven_request.timestamp).to eq(timestamp)
    end

    it "gets the authorization_header" do
      expect(driven_request.authorization_header).to eq('APIAuth 1044:12345')
    end

    describe "#calculated_md5" do
      it "calculates md5 from the body" do
        expect(driven_request.calculated_md5).to eq('kZXQvrKoieG+Be1rsZVINw==')
      end

      it "treats no body as empty string" do
        request.body = nil
        expect(driven_request.calculated_md5).to eq('1B2M2Y8AsgTpgAmY7PhCfg==')
      end
    end

    describe "http_method" do
      it "is always nil" do
        expect(driven_request.http_method).to be_nil
      end
    end
  end

  describe "setting headers correctly" do
    let(:request) do
      httpi_request = HTTPI::Request.new("http://localhost/resource.xml?foo=bar&bar=foo")
      httpi_request.headers.merge!({
        'content-type' => 'text/plain'
      })
      httpi_request
    end

    describe "#populate_content_md5" do
      context "when there is no content body" do
        before do
          request.body = nil
        end

        it "doesn't populate content-md5" do
          driven_request.populate_content_md5
          expect(request.headers["Content-MD5"]).to be_nil
        end
      end

      context "when there is a content body" do
        before do
          request.body = "hello\nworld"
        end

        it "populates content-md5" do
          driven_request.populate_content_md5
          expect(request.headers["Content-MD5"]).to eq('kZXQvrKoieG+Be1rsZVINw==')
        end
      end
    end

    describe "#set_date" do
      it "sets the date" do
        allow(Time).to receive_message_chain(:now, :utc, :httpdate).and_return(timestamp)
        driven_request.set_date
        expect(request.headers['DATE']).to eq(timestamp)
      end
    end

    describe "#set_auth_header" do
      it "sets the auth header" do
        driven_request.set_auth_header('APIAuth 1044:54321')
        expect(request.headers['Authorization']).to eq('APIAuth 1044:54321')
      end
    end
  end

  describe "md5_mismatch?" do
    context "when there is no content body" do
      before do
        request.body = nil
      end


      it "is false" do
        expect(driven_request.md5_mismatch?).to be false
      end
    end

    context "when there is a content body" do
      before do
        request.body = "hello\nworld"
      end

      context "when calculated matches sent" do
        before do
          request.headers["Content-MD5"] = 'kZXQvrKoieG+Be1rsZVINw=='
        end

        it "is false" do
          expect(driven_request.md5_mismatch?).to be false
        end
      end

      context "when calculated doesn't match sent" do
        before do
          request.headers["Content-MD5"] = "3"
        end

        it "is true" do
          expect(driven_request.md5_mismatch?).to be true
        end
      end
    end
  end
end