spec/middleware/authentication_spec.rb in napa-0.4.1 vs spec/middleware/authentication_spec.rb in napa-0.4.3

@@ -1,54 +1,115 @@
 require 'spec_helper'
 require 'napa/middleware/authentication'
 require 'pry'
 
 describe Napa::Identity do
-  before do
-    ENV['HEADER_PASSWORDS'] = 'foo'
-  end
+  context 'using HEADER_PASSWORDS' do
+    before do
+      ENV['HEADER_PASSWORDS'] = 'foo'
+    end
+    context 'an authenticated request' do
+      it 'allows the request to continue if given a correct password header' do
+        app = lambda { |env| [200, {'Content-Type' => 'application/json'}, Array.new] }
+        middleware = Napa::Middleware::Authentication.new(app)
+        env = Rack::MockRequest.env_for('/test', {'HTTP_PASSWORD' => 'foo'})
+        status, headers, body = middleware.call(env)
 
-  context 'Authenticated Request' do
-    it 'allows the request to continue if given a correct password header' do
-      app = lambda { |env| [200, {'Content-Type' => 'application/json'}, Array.new] }
-      middleware = Napa::Middleware::Authentication.new(app)
-      env = Rack::MockRequest.env_for('/test', {'HTTP_PASSWORD' => 'foo'})
-      status, headers, body = middleware.call(env)
+        expect(status).to eq(200)
+      end
+    end
 
-      expect(status).to eq(200)
+    context 'a failed authentication request' do
+      it 'returns an error message if the Password header is not supplied' do
+        app = lambda { |env| [200, {'Content-Type' => 'application/json'}, Array.new] }
+        middleware = Napa::Middleware::Authentication.new(app)
+        env = Rack::MockRequest.env_for('/test')
+        status, headers, body = middleware.call(env)
+
+        expect(status).to eq(401)
+        expect(body).to eq([Napa::JsonError.new('bad_password', 'bad password').to_json])
+      end
+
+      it 'returns an error message if an incorrect Password header is supplied' do
+        app = lambda { |env| [200, {'Content-Type' => 'application/json'}, Array.new] }
+        middleware = Napa::Middleware::Authentication.new(app)
+        env = Rack::MockRequest.env_for('/test', {'HTTP_PASSWORD' => 'incorrect'})
+        status, headers, body = middleware.call(env)
+
+        expect(status).to eq(401)
+        expect(body).to eq([Napa::JsonError.new('bad_password', 'bad password').to_json])
+      end
+
+      it 'returns an error message if HEADER_PASSWORDS is not configured' do
+        ENV['HEADER_PASSWORDS'] = nil
+
+        app = lambda { |env| [200, {'Content-Type' => 'application/json'}, Array.new] }
+        middleware = Napa::Middleware::Authentication.new(app)
+        env = Rack::MockRequest.env_for('/test', {'HTTP_PASSWORD' => 'incorrect'})
+        status, headers, body = middleware.call(env)
+
+        expect(status).to eq(401)
+        expect(body).to eq([Napa::JsonError.new('not_configured', 'password not configured').to_json])
+      end
     end
   end
 
-  context 'Failed Authentication Request' do
-    it 'returns an error message if the Password header is not supplied' do
-      app = lambda { |env| [200, {'Content-Type' => 'application/json'}, Array.new] }
-      middleware = Napa::Middleware::Authentication.new(app)
-      env = Rack::MockRequest.env_for('/test')
-      status, headers, body = middleware.call(env)
-
-      expect(status).to eq(401)
-      expect(body).to eq([Napa::JsonError.new('bad_password', 'bad password').to_json])
+  context 'using ALLOWED_HEADER_PASSWORDS' do
+    before do
+      ENV['ALLOWED_HEADER_PASSWORDS'] = 'foo,bar'
     end
 
-    it 'returns an error message if an incorrect Password header is supplied' do
-      app = lambda { |env| [200, {'Content-Type' => 'application/json'}, Array.new] }
-      middleware = Napa::Middleware::Authentication.new(app)
-      env = Rack::MockRequest.env_for('/test', {'HTTP_PASSWORD' => 'incorrect'})
-      status, headers, body = middleware.call(env)
+    context 'an authenticated request' do
+      it 'allows the request to continue if given a correct password header' do
+        app = lambda { |env| [200, {'Content-Type' => 'application/json'}, Array.new] }
+        middleware = Napa::Middleware::Authentication.new(app)
+        env = Rack::MockRequest.env_for('/test', {'HTTP_PASSWORDS' => 'foo'})
+        status, headers, body = middleware.call(env)
 
-      expect(status).to eq(401)
-      expect(body).to eq([Napa::JsonError.new('bad_password', 'bad password').to_json])
+        expect(status).to eq(200)
+      end
+
+      it 'allows the request to continue if one password is correct' do
+        app = lambda { |env| [200, {'Content-Type' => 'application/json'}, Array.new] }
+        middleware = Napa::Middleware::Authentication.new(app)
+        env = Rack::MockRequest.env_for('/test', {'HTTP_PASSWORDS' => 'foo,baz'})
+        status, headers, body = middleware.call(env)
+
+        expect(status).to eq(200)
+      end
     end
 
-    it 'returns an error message if HEADER_PASSWORDS is not configured' do
-      ENV['HEADER_PASSWORDS'] = nil
+    context 'a failed authentication request' do
+      it 'returns an error message if the Password header is not supplied' do
+        app = lambda { |env| [200, {'Content-Type' => 'application/json'}, Array.new] }
+        middleware = Napa::Middleware::Authentication.new(app)
+        env = Rack::MockRequest.env_for('/test')
+        status, headers, body = middleware.call(env)
 
-      app = lambda { |env| [200, {'Content-Type' => 'application/json'}, Array.new] }
-      middleware = Napa::Middleware::Authentication.new(app)
-      env = Rack::MockRequest.env_for('/test', {'HTTP_PASSWORD' => 'incorrect'})
-      status, headers, body = middleware.call(env)
+        expect(status).to eq(401)
+        expect(body).to eq([Napa::JsonError.new('bad_password', 'bad password').to_json])
+      end
 
-      expect(status).to eq(401)
-      expect(body).to eq([Napa::JsonError.new('not_configured', 'password not configured').to_json])
+      it 'returns an error message if an incorrect Password header is supplied' do
+        app = lambda { |env| [200, {'Content-Type' => 'application/json'}, Array.new] }
+        middleware = Napa::Middleware::Authentication.new(app)
+        env = Rack::MockRequest.env_for('/test', {'HTTP_PASSWORD' => 'incorrect'})
+        status, headers, body = middleware.call(env)
+
+        expect(status).to eq(401)
+        expect(body).to eq([Napa::JsonError.new('bad_password', 'bad password').to_json])
+      end
+
+      it 'returns an error message if ALLOWED_HEADER_PASSWORDS is not configured' do
+        ENV['ALLOWED_HEADER_PASSWORDS'] = nil
+
+        app = lambda { |env| [200, {'Content-Type' => 'application/json'}, Array.new] }
+        middleware = Napa::Middleware::Authentication.new(app)
+        env = Rack::MockRequest.env_for('/test', {'HTTP_PASSWORD' => 'incorrect'})
+        status, headers, body = middleware.call(env)
+
+        expect(status).to eq(401)
+        expect(body).to eq([Napa::JsonError.new('not_configured', 'password not configured').to_json])
+      end
     end
   end
 end