require 'spec_helper'
require 'action_controller'
require 'casclient/frameworks/rails/filter'
describe CASClient::Frameworks::Rails::Filter do
def controller_with_session(request = nil, session={})
query_parameters = {:ticket => "bogusticket", :renew => false}
parameters = query_parameters.dup
#TODO this really need to be replaced with a "real" rails controller
request ||= mock_post_request
request.stub(:query_parameters) {query_parameters}
request.stub(:path_parameters) {{}}
controller = double("Controller")
controller.stub(:session) {session}
controller.stub(:request) {request}
controller.stub(:url_for) {"bogusurl"}
controller.stub(:query_parameters) {query_parameters}
controller.stub(:path_parameters) {{}}
controller.stub(:parameters) {parameters}
controller.stub(:params) {parameters}
controller
end
def mock_post_request
mock_request = ActionController::Request.new({})
mock_request.stub(:post?) {true}
mock_request
end
before(:each) do
CASClient::Frameworks::Rails::Filter.configure(
:cas_base_url => 'http://test.local/',
:logger => double("Logger")
)
end
describe "#fake" do
subject { Hash.new }
context "faking user without attributes" do
before { CASClient::Frameworks::Rails::Filter.fake('tester@test.com') }
it 'should set the session user' do
CASClient::Frameworks::Rails::Filter.filter(controller_with_session(nil, subject))
subject.should eq({:cas_user => 'tester@test.com', :casfilteruser => 'tester@test.com'})
end
after { CASClient::Frameworks::Rails::Filter.fake(nil,nil) }
end
context "faking user with attributes" do
before { CASClient::Frameworks::Rails::Filter.fake('tester@test.com', {:test => 'stuff', :this => 'that'}) }
it 'should set the session user and attributes' do
CASClient::Frameworks::Rails::Filter.filter(controller_with_session(nil, subject))
subject.should eq({ :cas_user => 'tester@test.com', :casfilteruser => 'tester@test.com', :cas_extra_attributes => {:test => 'stuff', :this => 'that' }})
end
after { CASClient::Frameworks::Rails::Filter.fake(nil,nil) }
end
end
context "new valid service ticket" do
it "should return successfully from filter" do
pgt = CASClient::ProxyGrantingTicket.new(
"PGT-1308586001r9573FAD5A8C62E134A4AA93273F226BD3F0C3A983DCCCD176",
"PGTIOU-1308586001r29DC1F852C95930FE6694C1EFC64232A3359798893BC0B")
raw_text = "
rich.yarger@vibes.com
PGTIOU-1308586001r29DC1F852C95930FE6694C1EFC64232A3359798893BC0B
"
response = CASClient::ValidationResponse.new(raw_text)
CASClient::Client.any_instance.stub(:request_cas_response).and_return(response)
CASClient::Client.any_instance.stub(:retrieve_proxy_granting_ticket).and_return(pgt)
controller = controller_with_session()
CASClient::Frameworks::Rails::Filter.filter(controller).should eq(true)
end
end
context "new invalid service ticket" do
it "should return failure from filter" do
raw_text = "
Some Error Text
"
response = CASClient::ValidationResponse.new(raw_text)
CASClient::Client.any_instance.stub(:request_cas_response).and_return(response)
CASClient::Frameworks::Rails::Filter.stub(:unauthorized!) {"bogusresponse"}
controller = controller_with_session()
CASClient::Frameworks::Rails::Filter.filter(controller).should eq(false)
end
end
context "does not have new input service ticket" do
context "with last service ticket" do
it "should return failure from filter" do
CASClient::Frameworks::Rails::Filter.stub(:unauthorized!) {"bogusresponse"}
controller = controller_with_session()
controller.stub(:params) {{}}
CASClient::Frameworks::Rails::Filter.filter(controller).should eq(false)
end
end
context "sent through gateway" do
context "gatewaying off" do
it "should return failure from filter" do
CASClient::Frameworks::Rails::Filter.stub(:unauthorized!) {"bogusresponse"}
CASClient::Frameworks::Rails::Filter.config[:use_gatewaying] = false
controller = controller_with_session()
controller.session[:cas_sent_to_gateway] = true
controller.stub(:params) {{}}
CASClient::Frameworks::Rails::Filter.filter(controller).should eq(false)
end
end
context "gatewaying on" do
it "should return failure from filter" do
CASClient::Frameworks::Rails::Filter.config[:use_gatewaying] = true
controller = controller_with_session()
controller.session[:cas_sent_to_gateway] = true
controller.stub(:params) {{}}
CASClient::Frameworks::Rails::Filter.filter(controller).should eq(true)
end
end
end
end
context "has new input service ticket" do
context "no PGT" do
it "should return failure from filter" do
raw_text = "
rich.yarger@vibes.com
PGTIOU-1308586001r29DC1F852C95930FE6694C1EFC64232A3359798893BC0B
"
response = CASClient::ValidationResponse.new(raw_text)
CASClient::Client.any_instance.stub(:request_cas_response).and_return(response)
CASClient::Client.any_instance.stub(:retrieve_proxy_granting_ticket).and_raise CASClient::CASException
controller = controller_with_session()
expect { CASClient::Frameworks::Rails::Filter.filter(controller) }.to raise_error(CASClient::CASException)
end
end
context "cannot connect to CASServer" do
it "should return failure from filter" do
CASClient::Client.any_instance.stub(:request_cas_response).and_raise "Some exception"
controller = controller_with_session()
expect { CASClient::Frameworks::Rails::Filter.filter(controller) }.to raise_error(RuntimeError)
end
end
context "matches existing service ticket" do
subject { Hash.new }
it "should return successfully from filter" do
mock_client = CASClient::Client.new()
mock_client.should_receive(:request_cas_response).at_most(0).times
mock_client.should_receive(:retrieve_proxy_granting_ticket).at_most(0).times
CASClient::Frameworks::Rails::Filter.send(:class_variable_set, :@@client, mock_client)
subject[:cas_last_valid_ticket] = 'bogusticket'
subject[:cas_last_valid_ticket_service] = 'bogusurl'
controller = controller_with_session(mock_post_request(), subject)
CASClient::Frameworks::Rails::Filter.filter(controller).should eq(true)
end
end
end
end