require File.dirname(__FILE__) + '/test_helper'

class HeaderAuthenticationTest < Test::Unit::TestCase  
  def test_encoded_canonical
    signature = Authentication::Signature.new(request, key_id, secret)
    assert_equal AmazonDocExampleData::Example1.canonical_string, signature.send(:canonical_string)
    assert_equal AmazonDocExampleData::Example1.signature, signature.send(:encoded_canonical)
  end
  
  def test_authorization_header
    header = Authentication::Header.new(request, key_id, secret)
    assert_equal AmazonDocExampleData::Example1.canonical_string, header.send(:canonical_string)
    assert_equal AmazonDocExampleData::Example1.authorization_header, header
  end
  
  private
    def request; AmazonDocExampleData::Example1.request end
    def key_id ; AmazonDocExampleData::Example1.access_key_id end
    def secret ; AmazonDocExampleData::Example1.secret_access_key end
end

class QueryStringAuthenticationTest < Test::Unit::TestCase
  def test_query_string
    query_string = Authentication::QueryString.new(request, key_id, secret, :expires_in => 60)
    assert_equal AmazonDocExampleData::Example3.canonical_string, query_string.send(:canonical_string)
    assert_equal AmazonDocExampleData::Example3.query_string, query_string
  end
  
  def test_query_string_with_explicit_expiry
    query_string = Authentication::QueryString.new(request, key_id, secret, :expires => expires)
    assert_equal expires, query_string.send(:canonical_string).instance_variable_get(:@options)[:expires]
    assert_equal AmazonDocExampleData::Example3.query_string, query_string
  end
  
  def test_expires_in_is_coerced_to_being_an_integer_in_case_it_is_a_special_integer_proxy
    # References bug: http://rubyforge.org/tracker/index.php?func=detail&aid=17458&group_id=2409&atid=9356
    integer_proxy = Class.new do
      attr_reader :integer
      def initialize(integer)
        @integer = integer
      end
      
      def to_int
        integer
      end
    end
    
    actual_integer = 25
    query_string = Authentication::QueryString.new(request, key_id, secret, :expires_in => integer_proxy.new(actual_integer))
    assert_equal actual_integer, query_string.send(:expires_in)
  end
  
  private
    def request; AmazonDocExampleData::Example3.request end
    def key_id ; AmazonDocExampleData::Example3.access_key_id end
    def secret ; AmazonDocExampleData::Example3.secret_access_key end
    def expires; AmazonDocExampleData::Example3.expires end
end

class CanonicalStringTest < Test::Unit::TestCase  
  def setup
    @request = Net::HTTP::Post.new('/test')
    @canonical_string = Authentication::CanonicalString.new(@request)
  end
  
  def test_path_does_not_include_query_string
    request = Net::HTTP::Get.new('/test/query/string?foo=bar&baz=quux')
    assert_equal '/test/query/string', Authentication::CanonicalString.new(request).send(:path)
    
    # Make sure things still work when there is *no* query string
    request = Net::HTTP::Get.new('/')
    assert_equal '/', Authentication::CanonicalString.new(request).send(:path)
    request = Net::HTTP::Get.new('/foo/bar')
    assert_equal '/foo/bar', Authentication::CanonicalString.new(request).send(:path)
  end
  
  # quotes in comments in these next few tests refer to
  # http://docs.amazonwebservices.com/AmazonS3/latest/dev/index.html?RESTAuthentication.html#ConstructingTheCanonicalizedResourceElement
  def test_path_includes_significant_query_strings
    # "If the request addresses a sub-resource, like ?versioning, ?location,
    # ?acl, or ?torrent, or ?versionid append the sub-resource, its value if it
    # has one, and the question mark. Note that in case of multiple
    # sub-resources, sub-resources must be lexicographically sorted by
    # sub-resource name and separated by '&'. e.g. ?acl&versionId=value."
    significant_query_strings = [
      ['/test/query/string?acl',                 '/test/query/string?acl'],
      ['/test/query/string?acl&foo=bar',         '/test/query/string?acl'],
      ['/test/query/string?foo=bar&acl',         '/test/query/string?acl'],
      ['/test/query/string?acl=foo',             '/test/query/string?acl=foo'],
      ['/test/query/string?torrent=foo',         '/test/query/string?torrent=foo'],
      ['/test/query/string?logging=foo',         '/test/query/string?logging=foo'],
      ['/test/query/string?bar=baz&acl=foo',     '/test/query/string?acl=foo'],
      ['/test/query/string?acl=foo&torrent=bar', '/test/query/string?acl=foo&torrent=bar'],
      ['/test/query/string?torrent=bar&acl=foo', '/test/query/string?acl=foo&torrent=bar']
    ]
    
    significant_query_strings.each do |uncleaned_path, expected_cleaned_path|
      assert_equal expected_cleaned_path, Authentication::CanonicalString.new(Net::HTTP::Get.new(uncleaned_path)).send(:path)
    end
  end
  
  def test_path_includes_significant_query_strings_from_options
    assert_equal '/test/query/string?acl=foo', Authentication::CanonicalString.new(Net::HTTP::Get.new('/test/query/string'), :acl => 'foo').send(:path)
    assert_equal '/test/query/string?acl&torrent=foo', Authentication::CanonicalString.new(Net::HTTP::Get.new('/test/query/string?acl'), :torrent => 'foo').send(:path)
  end
  
  def test_path_includes_significant_query_strings_with_unencoded_values
    # "When signing you do not encode these values. However, when making the
    # request, you must encode these parameter values."
    assert_equal '/test/query/string?acl=foo bar', Authentication::CanonicalString.new(Net::HTTP::Get.new('/test/query/string?acl=foo+bar')).send(:path)
  end
  
  def test_path_recognizes_all_significant_query_strings
    # "The list of sub-resources that must be included when constructing the
    # CanonicalizedResource Element are: acl, location, logging, notification,
    # partNumber, policy, requestPayment, torrent, uploadId, uploads,
    # versionId, versioning, versions and website...  If the request specifies
    # query string parameters overriding the response header values... append
    # the query string parameters, and its values... The query string
    # parameters in a GET request include response-content-type,
    # response-content-language, response-expires, response-cache-control,
    # response-content-disposition, and response-content-encoding."
    base_path = '/test/query/string'
    [ 'acl', 'location', 'logging', 'notification', 'partNumber', 'policy',
      'requestPayment', 'torrent', 'uploadId', 'uploads', 'versionId',
      'versioning', 'versions', 'website', 'response-content-type',
      'response-content-language', 'response-expires',
      'response-cache-control', 'response-content-disposition',
      'response-content-encoding' ].each do |significant_parameter|
      path = "#{base_path}?#{significant_parameter}"
      assert_equal path, Authentication::CanonicalString.new(Net::HTTP::Get.new(path)).send(:path)
    end
  end
  
  def test_default_headers_set
    Authentication::CanonicalString.default_headers.each do |header|
      assert @canonical_string.headers.include?(header)
    end
  end
  
  def test_interesting_headers_are_copied_over
    an_interesting_header = 'content-md5'
    string_without_interesting_header = Authentication::CanonicalString.new(@request)
    assert string_without_interesting_header.headers[an_interesting_header].empty?
    
    # Add an interesting header
    @request[an_interesting_header] = 'foo'
    string_with_interesting_header = Authentication::CanonicalString.new(@request)
    assert_equal 'foo', string_with_interesting_header.headers[an_interesting_header]
  end
  
  def test_canonical_string
    request = AmazonDocExampleData::Example1.request
    assert_equal AmazonDocExampleData::Example1.canonical_string, Authentication::CanonicalString.new(request)
  end
end