Sha256: 904bc3d5ec42e5fc0179b0743dc0fb0fe06646847a23e3d9dfaf5717979bbfae
Contents?: true
Size: 1.8 KB
Versions: 12
Compression:
Stored size: 1.8 KB
Contents
require 'spec_helper_integration'
describe 'Client Credentials Request' do
let(:client) { FactoryGirl.create :application }
context 'a valid request' do
it 'authorizes the client and returns the token response' do
headers = authorization client.uid, client.secret
params = { :grant_type => 'client_credentials' }
post '/oauth/token', params, headers
should_have_json 'access_token', Doorkeeper::AccessToken.first.token
should_have_json 'expires_in', Doorkeeper.configuration.access_token_expires_in
should_have_json 'scope', ''
should_have_json 'refresh_token', nil
should_not_have_json 'error'
should_not_have_json 'error_description'
end
context 'with scopes' do
before do
optional_scopes_exist :write
end
it 'adds the scope to the token an returns in the response' do
headers = authorization client.uid, client.secret
params = { :grant_type => 'client_credentials', :scope => 'write' }
post '/oauth/token', params, headers
should_have_json 'access_token', Doorkeeper::AccessToken.first.token
should_have_json 'scope', 'write'
end
end
end
context 'an invalid request' do
it 'does not authorize the client and returns the error' do
headers = {}
params = { :grant_type => 'client_credentials' }
post '/oauth/token', params, headers
should_have_json 'error', 'invalid_client'
should_have_json 'error_description', translated_error_message(:invalid_client)
should_not_have_json 'access_token'
response.status.should == 401
end
end
def authorization(username, password)
credentials = ActionController::HttpAuthentication::Basic.encode_credentials username, password
{ 'HTTP_AUTHORIZATION' => credentials }
end
end
Version data entries
12 entries across 12 versions & 1 rubygems