Sha256: 561c4eae12bd319c7d7de67664f91f7d414a612f62aaed48571909c70260bb16

Contents?: true

Size: 1.91 KB

Versions: 2

Compression:

Stored size: 1.91 KB

Contents

## NOT CAPYBARA
#  ActionDispatch::IntegrationTest
#  http://guides.rubyonrails.org/testing.html#integration-testing
#  used so we can test POST actions ^_^

require 'test_helper'

class AuthControllerTest < ActionDispatch::IntegrationTest
  setup do
    @user         = create_user
    @client_app   = create_client_app
    @redirect_uri = '/'
  end


  test "AUTHORIZE: previously authed user gets Authed immediately, permissions not changed" do
    auth_grant  = create_auth_grant_for_user(@user, @client_app)

    params = { :client_id     => @client_app.client_id ,
               :client_secret => @client_app.client_secret,
               :redirect_uri  => @redirect_uri }

    as_user(@user).post oauth_authorize_path(params)

    assert_equal 302, status
    follow_redirect!
    assert_equal @redirect_uri, path
  end


  test "AUTHORIZE: app cannot force permissions change for previously authed user" do
    auth_grant  = create_auth_grant_for_user(@user, @client_app)
    permissions = { 'foo' => 1 }
    assert_not_equal auth_grant.permissions, permissions

    params = { :client_id     => @client_app.client_id ,
               :client_secret => @client_app.client_secret,
               :redirect_uri  => @redirect_uri,
               :permissions   => permissions }

    as_user(@user).post oauth_authorize_path(params)

    assert_equal 302, status
    follow_redirect!
    assert_equal @redirect_uri, path
    auth_grant = Oauth::AuthGrant.find(auth_grant.id)

    refute auth_grant.permissions.has_key?(permissions.keys.first)
  end


  test "AUTHORIZE: user gets redirected to new form if not already authed" do
    params = { :client_id     => @client_app.client_id ,
               :client_secret => @client_app.client_secret,
               :redirect_uri  => @redirect_uri }

    as_user(@user).post oauth_authorize_path(params)

    assert_equal 302, status
    follow_redirect!
    assert_equal oauth_new_path, path
  end

end

Version data entries

2 entries across 2 versions & 1 rubygems

Version Path
opro-0.0.3 test/integration/action_dispatch/auth_controller_test.rb
opro-0.0.2 test/integration/action_dispatch/auth_controller_test.rb