require 'spec_helper'

describe OmniAuth::Strategies::Salesforce do
	strategy = nil
	before do
		OmniAuth.config.test_mode = true
		rack_app = []
		rack_app.stub :call
		strategy = OmniAuth::Strategies::Salesforce.new rack_app, 'Consumer Key', 'Consumer Secret'
	end
	describe "request_phase" do
		env = nil
		before do
			env = {
				'rack.session' => {},
				'HTTP_USER_AGENT' => 'unknown',
				'REQUEST_METHOD' => 'GET',
				'rack.input' => '',
				'rack.url_scheme' => 'http',
				'SERVER_NAME' => 'server.example',
				'QUERY_STRING' => 'code=xxxx',
				'SCRIPT_NAME' => '',
				'SERVER_PORT' => 80
			}
		end
		context "when using a mobile browser" do
			user_agents = {
				:Pre => "Mozilla/5.0 (webOS/1.4.0; U; en-US) AppleWebKit/532.2 (KHTML, like Gecko) Version/1.0 Safari/532.2 Pre/1.1",
				:iPod => "Mozilla/5.0 (iPod; U; CPU like Mac OS X; en) AppleWebKit/420.1 (KHTML, like Gecko) Version/3.0 Mobile/4A93 Safari/419.3",
				:iPhone => "Mozilla/5.0 (iPhone; U; CPU like Mac OS X; en) AppleWebKit/420+ (KHTML, like Gecko) Version/3.0 Mobile/1A543 Safari/419.3",
				:iPad => "Mozilla/5.0 (iPad; U; CPU OS 3_2 like Mac OS X; en-us) AppleWebKit/531.21.10 (KHTML, like Gecko) Version/4.0.4 Mobile/7B334b Safari/531.21.10",
				:Nexus => "Mozilla/5.0 (Linux; U; Android 2.2; en-us; Nexus One Build/FRF91) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1",
				:myTouch => "Mozilla/5.0 (Linux; U; Android 1.6; en-us; WOWMobile myTouch 3G Build/unknown) AppleWebKit/528.5+ (KHTML, like Gecko) Version/3.1.2 Mobile Safari/525.20.1",
				:Storm => "BlackBerry9530/4.7.0.148 Profile/MIDP-2.0 Configuration/CLDC-1.1 VendorID/105",
				:Torch => "Mozilla/5.0 (BlackBerry; U; BlackBerry 9810; en-US) AppleWebKit/534.11+ (KHTML, like Gecko) Version/7.0.0 Mobile Safari/534.11+",
				:generic_mobile => "some mobile device"
			}
			user_agents.each_pair do |name, agent|
				context "with the user agent from a #{name.to_s}" do
					before do
						env['HTTP_USER_AGENT'] = agent
						strategy.call!(env)
						strategy.request_phase
					end
					subject {strategy.options}
					it "sets the :display option to 'touch'" do
						subject[:display].should == 'touch'
					end
				end
			end
		end
		context "when using a desktop browser" do
			user_agents = {
				:Chrome => "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/535.21 (KHTML, like Gecko) Chrome/19.0.1042.0 Safari/535.21",
				:Safari => "Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_6_8; de-at) AppleWebKit/533.21.1 (KHTML, like Gecko) Version/5.0.5 Safari/533.21.1",
				:IE => "Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; Trident/4.0; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET CLR 1.0.3705; .NET CLR 1.1.4322)",
				:anything_else => "unknown"
			}
			user_agents.each_pair do |name, agent|
				context "with the user agent from #{name.to_s}" do
					before do
						env['HTTP_USER_AGENT'] = agent
						strategy.call!(env)
						strategy.request_phase
					end
					subject {strategy.options}
					it "sets the :display option to 'page'" do
						subject[:display].should == 'page'
					end
				end
			end
		end
	end
	describe "callback phase" do
		raw_info = nil
		before do
			raw_info = {
				'id' => 'salesforce id',
				'display_name' => 'display name',
				'email' => 'email',
				'nick_name' => 'nick name',
				'first_name' => 'first name',
				'last_name' => 'last name',
				'photos' => {'thumbnail' => '/thumbnail/url'},
				'urls'=> {
					"enterprise" => "https://salesforce.example/services",
					"metadata" => "https://salesforce.example/services"
				}
			}
			client = OAuth2::Client.new 'id', 'secret', {:site => 'example.com'}
			access_token = OAuth2::AccessToken.from_hash client, {
				'access_token' => 'token',
				'instance_url' => 'http://instance.salesforce.example',
				'signature' => 'invalid',
				'issued_at' => '1296458209517'
			}
			strategy.stub(:raw_info) { raw_info }
			strategy.stub(:access_token) { access_token }
		end
		describe "uid" do
			it "sets the id" do
				strategy.uid.should == raw_info['id']
			end
		end
		describe "info" do
			subject { strategy.info }
			it "returns an info hash" do
				subject.should_not be_nil
			end
			it "sets name" do
				subject['name'].should == raw_info['display_name']
			end
			it "sets email" do
				subject['email'].should == raw_info['email']
			end
			it "sets nickname" do
				subject['nickname'].should == raw_info['nick_name']
			end
			it "sets first_name" do
				subject['first_name'].should == raw_info['first_name']
			end
			it "sets last_name" do
				subject['last_name'].should == raw_info['last_name']
			end
			it "sets location" do
				subject['location'].should == ''
			end
			it "sets description" do
				subject['description'].should == ''
			end
			it "sets image" do
				subject['image'].should == raw_info['photos']['thumbnail'] + "?oauth_token=#{strategy.access_token.token}"
			end
			it "sets phone" do
				subject['phone'].should == ''
			end
			it "sets urls" do
				subject['urls'].should == raw_info['urls']
			end
		end
		describe "credentials" do
			subject { strategy.credentials }
			it "sets token" do
				subject['token'].should == strategy.access_token.token
			end
			it "sets instance_url" do
				subject['instance_url'].should == strategy.access_token.params["instance_url"]
			end
			context "given a refresh token" do
				it "sets refresh_token" do
					subject['refresh_token'].should == strategy.access_token.refresh_token
				end
			end
			context "when not given a refresh token" do
				it "does not set a refresh token" do
					subject['refresh_token'].should be_nil
				end
			end
		end
		describe "extra" do
			subject { strategy.extra }
			it "sets instance_url" do
				subject['instance_url'].should == strategy.access_token.params['instance_url']
			end
			it "sets pod" do
				subject['pod'].should == strategy.access_token.params['instance_url']
			end
			it "sets signature" do
				subject['signature'].should == strategy.access_token.params['signature']
			end
			it "sets issued_at" do
				subject['issued_at'].should == strategy.access_token.params['issued_at']
			end
		end
		describe "user id validation" do
			client_id = nil
			issued_at = nil
			signature = nil
			instance_url = 'http://instance.salesforce.example'
			before do
					client_id = "https://login.salesforce.com/id/00Dd0000000d45TEBQ/005d0000000fyGPCCY"
					issued_at = "1331142541514"
					signature = Base64.strict_encode64(OpenSSL::HMAC.digest('sha256', strategy.options.client_secret.to_s, client_id + issued_at))
			end
			context "when the signature does not match" do
				before do
					access_token = OAuth2::AccessToken.from_hash strategy.access_token.client, {
						'id' => 'forged client id',
						'issued_at' => issued_at,
						'instance_url' => 'http://instance.salesforce.example',
						'signature' => signature
					}
					strategy.stub(:access_token) { access_token }
				end
				it "should call fail!" do
					strategy.should_receive(:fail!)
					strategy.auth_hash
				end
			end
			context "when the signature does match" do
				before do
					access_token = OAuth2::AccessToken.from_hash strategy.access_token.client, {
						'id' => client_id,
						'issued_at' => issued_at,
						'instance_url' => 'http://instance.salesforce.example',
						'signature' => signature
					}
					strategy.stub(:access_token) { access_token }
				end
				it "should not fail" do
					strategy.should_not_receive(:fail!)
					strategy.auth_hash
				end
			end
		end
	end
end