Contents

require 'spec_helper'
require 'gds-sso/api_access'

describe GDS::SSO::ApiAccess do
  it "should not consider IE7 accept header as an api call" do
    ie7_accept_header = 'image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, ' +
      'application/x-shockwave-flash, application/xaml+xml, application/x-ms-xbap, ' +
      'application/x-ms-application, */*'
    expect(GDS::SSO::ApiAccess.api_call?('HTTP_ACCEPT' => ie7_accept_header)).to be_false
  end

  it "should consider a json accept header to be an api call" do
    expect(GDS::SSO::ApiAccess.api_call?('HTTP_ACCEPT' => 'application/json')).to be_true
  end

  it "should consider a request with an authorization header to be an oauth api call" do
    expect(GDS::SSO::ApiAccess.oauth_api_call?('HTTP_AUTHORIZATION' => 'Bearer blahblahblah')).to be_true
  end

  it "should not consider a request with HTTP basic auth to be an oauth api call" do
    expect(GDS::SSO::ApiAccess.oauth_api_call?('HTTP_AUTHORIZATION' => 'Basic Some basic credentials')).to be_false
  end

  it "should not consider a request with an empty authorization header to be an oauth api call" do
    expect(GDS::SSO::ApiAccess.oauth_api_call?('HTTP_AUTHORIZATION' => '')).to be_false
  end
end

Version data entries

16 entries across 16 versions & 1 rubygems

Version	Path
gds-sso-12.0.0	spec/unit/api_access_spec.rb
gds-sso-11.2.1	spec/unit/api_access_spec.rb
gds-sso-11.2.0	spec/unit/api_access_spec.rb
gds-sso-11.1.0	spec/unit/api_access_spec.rb
gds-sso-11.0.0	spec/unit/api_access_spec.rb
gds-sso-10.1.0	spec/unit/api_access_spec.rb
gds-sso-10.0.1	spec/unit/api_access_spec.rb
gds-sso-10.0.0	spec/unit/api_access_spec.rb
gds-sso-9.4.0	spec/unit/api_access_spec.rb
gds-sso-9.3.0	spec/unit/api_access_spec.rb
gds-sso-9.2.7	spec/unit/api_access_spec.rb
gds-sso-9.2.6	spec/unit/api_access_spec.rb
gds-sso-9.2.5	spec/unit/api_access_spec.rb
gds-sso-9.2.4	spec/unit/api_access_spec.rb
gds-sso-9.2.3	spec/unit/api_access_spec.rb
gds-sso-9.2.2	spec/unit/api_access_spec.rb