2023-02-15 08:14:59 +00:00
package query
import (
"database/sql"
"database/sql/driver"
"errors"
"fmt"
"regexp"
"testing"
2023-02-21 17:18:28 +00:00
"github.com/zitadel/zitadel/internal/database"
2023-02-15 08:14:59 +00:00
"github.com/zitadel/zitadel/internal/domain"
errs "github.com/zitadel/zitadel/internal/errors"
"github.com/zitadel/zitadel/internal/repository/idp"
)
var (
2023-03-07 10:35:47 +00:00
idpTemplateQuery = ` SELECT projections.idp_templates3.id, ` +
` projections.idp_templates3.resource_owner, ` +
` projections.idp_templates3.creation_date, ` +
` projections.idp_templates3.change_date, ` +
` projections.idp_templates3.sequence, ` +
` projections.idp_templates3.state, ` +
` projections.idp_templates3.name, ` +
` projections.idp_templates3.type, ` +
` projections.idp_templates3.owner_type, ` +
` projections.idp_templates3.is_creation_allowed, ` +
` projections.idp_templates3.is_linking_allowed, ` +
` projections.idp_templates3.is_auto_creation, ` +
` projections.idp_templates3.is_auto_update, ` +
2023-02-24 14:16:06 +00:00
// oauth
2023-03-07 10:35:47 +00:00
` projections.idp_templates3_oauth2.idp_id, ` +
` projections.idp_templates3_oauth2.client_id, ` +
` projections.idp_templates3_oauth2.client_secret, ` +
` projections.idp_templates3_oauth2.authorization_endpoint, ` +
` projections.idp_templates3_oauth2.token_endpoint, ` +
` projections.idp_templates3_oauth2.user_endpoint, ` +
` projections.idp_templates3_oauth2.scopes, ` +
` projections.idp_templates3_oauth2.id_attribute, ` +
2023-02-27 15:32:18 +00:00
// oidc
2023-03-07 10:35:47 +00:00
` projections.idp_templates3_oidc.idp_id, ` +
` projections.idp_templates3_oidc.issuer, ` +
` projections.idp_templates3_oidc.client_id, ` +
` projections.idp_templates3_oidc.client_secret, ` +
` projections.idp_templates3_oidc.scopes, ` +
2023-02-27 15:32:18 +00:00
// jwt
2023-03-07 10:35:47 +00:00
` projections.idp_templates3_jwt.idp_id, ` +
` projections.idp_templates3_jwt.issuer, ` +
` projections.idp_templates3_jwt.jwt_endpoint, ` +
` projections.idp_templates3_jwt.keys_endpoint, ` +
` projections.idp_templates3_jwt.header_name, ` +
2023-02-24 14:16:06 +00:00
// google
2023-03-07 10:35:47 +00:00
` projections.idp_templates3_google.idp_id, ` +
` projections.idp_templates3_google.client_id, ` +
` projections.idp_templates3_google.client_secret, ` +
` projections.idp_templates3_google.scopes, ` +
2023-02-24 14:16:06 +00:00
// ldap
2023-03-07 10:35:47 +00:00
` projections.idp_templates3_ldap.idp_id, ` +
` projections.idp_templates3_ldap.host, ` +
` projections.idp_templates3_ldap.port, ` +
` projections.idp_templates3_ldap.tls, ` +
` projections.idp_templates3_ldap.base_dn, ` +
` projections.idp_templates3_ldap.user_object_class, ` +
` projections.idp_templates3_ldap.user_unique_attribute, ` +
` projections.idp_templates3_ldap.admin, ` +
` projections.idp_templates3_ldap.password, ` +
` projections.idp_templates3_ldap.id_attribute, ` +
` projections.idp_templates3_ldap.first_name_attribute, ` +
` projections.idp_templates3_ldap.last_name_attribute, ` +
` projections.idp_templates3_ldap.display_name_attribute, ` +
` projections.idp_templates3_ldap.nick_name_attribute, ` +
` projections.idp_templates3_ldap.preferred_username_attribute, ` +
` projections.idp_templates3_ldap.email_attribute, ` +
` projections.idp_templates3_ldap.email_verified, ` +
` projections.idp_templates3_ldap.phone_attribute, ` +
` projections.idp_templates3_ldap.phone_verified_attribute, ` +
` projections.idp_templates3_ldap.preferred_language_attribute, ` +
` projections.idp_templates3_ldap.avatar_url_attribute, ` +
` projections.idp_templates3_ldap.profile_attribute ` +
` FROM projections.idp_templates3 ` +
` LEFT JOIN projections.idp_templates3_oauth2 ON projections.idp_templates3.id = projections.idp_templates3_oauth2.idp_id AND projections.idp_templates3.instance_id = projections.idp_templates3_oauth2.instance_id ` +
` LEFT JOIN projections.idp_templates3_oidc ON projections.idp_templates3.id = projections.idp_templates3_oidc.idp_id AND projections.idp_templates3.instance_id = projections.idp_templates3_oidc.instance_id ` +
` LEFT JOIN projections.idp_templates3_jwt ON projections.idp_templates3.id = projections.idp_templates3_jwt.idp_id AND projections.idp_templates3.instance_id = projections.idp_templates3_jwt.instance_id ` +
` LEFT JOIN projections.idp_templates3_google ON projections.idp_templates3.id = projections.idp_templates3_google.idp_id AND projections.idp_templates3.instance_id = projections.idp_templates3_google.instance_id ` +
` LEFT JOIN projections.idp_templates3_ldap ON projections.idp_templates3.id = projections.idp_templates3_ldap.idp_id AND projections.idp_templates3.instance_id = projections.idp_templates3_ldap.instance_id ` +
2023-02-27 21:36:43 +00:00
` AS OF SYSTEM TIME '-1 ms' `
2023-02-15 08:14:59 +00:00
idpTemplateCols = [ ] string {
"id" ,
"resource_owner" ,
"creation_date" ,
"change_date" ,
"sequence" ,
"state" ,
"name" ,
"type" ,
"owner_type" ,
"is_creation_allowed" ,
"is_linking_allowed" ,
"is_auto_creation" ,
"is_auto_update" ,
2023-02-24 14:16:06 +00:00
// oauth config
"idp_id" ,
"client_id" ,
"client_secret" ,
"authorization_endpoint" ,
"token_endpoint" ,
"user_endpoint" ,
"scopes" ,
2023-03-03 10:38:49 +00:00
"id_attribute" ,
2023-02-27 15:32:18 +00:00
// oidc config
"id_id" ,
"issuer" ,
"client_id" ,
"client_secret" ,
"scopes" ,
// jwt
"idp_id" ,
"issuer" ,
"jwt_endpoint" ,
"keys_endpoint" ,
"header_name" ,
2023-02-21 17:18:28 +00:00
// google config
"idp_id" ,
"client_id" ,
"client_secret" ,
"scopes" ,
2023-02-15 08:14:59 +00:00
// ldap config
"idp_id" ,
"host" ,
"port" ,
"tls" ,
"base_dn" ,
"user_object_class" ,
"user_unique_attribute" ,
"admin" ,
"password" ,
"id_attribute" ,
"first_name_attribute" ,
"last_name_attribute" ,
"display_name_attribute" ,
"nick_name_attribute" ,
"preferred_username_attribute" ,
"email_attribute" ,
"email_verified" ,
"phone_attribute" ,
"phone_verified_attribute" ,
"preferred_language_attribute" ,
"avatar_url_attribute" ,
"profile_attribute" ,
}
2023-03-07 10:35:47 +00:00
idpTemplatesQuery = ` SELECT projections.idp_templates3.id, ` +
` projections.idp_templates3.resource_owner, ` +
` projections.idp_templates3.creation_date, ` +
` projections.idp_templates3.change_date, ` +
` projections.idp_templates3.sequence, ` +
` projections.idp_templates3.state, ` +
` projections.idp_templates3.name, ` +
` projections.idp_templates3.type, ` +
` projections.idp_templates3.owner_type, ` +
` projections.idp_templates3.is_creation_allowed, ` +
` projections.idp_templates3.is_linking_allowed, ` +
` projections.idp_templates3.is_auto_creation, ` +
` projections.idp_templates3.is_auto_update, ` +
2023-02-24 14:16:06 +00:00
// oauth
2023-03-07 10:35:47 +00:00
` projections.idp_templates3_oauth2.idp_id, ` +
` projections.idp_templates3_oauth2.client_id, ` +
` projections.idp_templates3_oauth2.client_secret, ` +
` projections.idp_templates3_oauth2.authorization_endpoint, ` +
` projections.idp_templates3_oauth2.token_endpoint, ` +
` projections.idp_templates3_oauth2.user_endpoint, ` +
` projections.idp_templates3_oauth2.scopes, ` +
` projections.idp_templates3_oauth2.id_attribute, ` +
2023-02-27 15:32:18 +00:00
// oidc
2023-03-07 10:35:47 +00:00
` projections.idp_templates3_oidc.idp_id, ` +
` projections.idp_templates3_oidc.issuer, ` +
` projections.idp_templates3_oidc.client_id, ` +
` projections.idp_templates3_oidc.client_secret, ` +
` projections.idp_templates3_oidc.scopes, ` +
2023-02-27 15:32:18 +00:00
// jwt
2023-03-07 10:35:47 +00:00
` projections.idp_templates3_jwt.idp_id, ` +
` projections.idp_templates3_jwt.issuer, ` +
` projections.idp_templates3_jwt.jwt_endpoint, ` +
` projections.idp_templates3_jwt.keys_endpoint, ` +
` projections.idp_templates3_jwt.header_name, ` +
2023-02-24 14:16:06 +00:00
// google
2023-03-07 10:35:47 +00:00
` projections.idp_templates3_google.idp_id, ` +
` projections.idp_templates3_google.client_id, ` +
` projections.idp_templates3_google.client_secret, ` +
` projections.idp_templates3_google.scopes, ` +
2023-02-24 14:16:06 +00:00
// ldap
2023-03-07 10:35:47 +00:00
` projections.idp_templates3_ldap.idp_id, ` +
` projections.idp_templates3_ldap.host, ` +
` projections.idp_templates3_ldap.port, ` +
` projections.idp_templates3_ldap.tls, ` +
` projections.idp_templates3_ldap.base_dn, ` +
` projections.idp_templates3_ldap.user_object_class, ` +
` projections.idp_templates3_ldap.user_unique_attribute, ` +
` projections.idp_templates3_ldap.admin, ` +
` projections.idp_templates3_ldap.password, ` +
` projections.idp_templates3_ldap.id_attribute, ` +
` projections.idp_templates3_ldap.first_name_attribute, ` +
` projections.idp_templates3_ldap.last_name_attribute, ` +
` projections.idp_templates3_ldap.display_name_attribute, ` +
` projections.idp_templates3_ldap.nick_name_attribute, ` +
` projections.idp_templates3_ldap.preferred_username_attribute, ` +
` projections.idp_templates3_ldap.email_attribute, ` +
` projections.idp_templates3_ldap.email_verified, ` +
` projections.idp_templates3_ldap.phone_attribute, ` +
` projections.idp_templates3_ldap.phone_verified_attribute, ` +
` projections.idp_templates3_ldap.preferred_language_attribute, ` +
` projections.idp_templates3_ldap.avatar_url_attribute, ` +
` projections.idp_templates3_ldap.profile_attribute, ` +
2023-02-15 08:14:59 +00:00
` COUNT(*) OVER () ` +
2023-03-07 10:35:47 +00:00
` FROM projections.idp_templates3 ` +
` LEFT JOIN projections.idp_templates3_oauth2 ON projections.idp_templates3.id = projections.idp_templates3_oauth2.idp_id AND projections.idp_templates3.instance_id = projections.idp_templates3_oauth2.instance_id ` +
` LEFT JOIN projections.idp_templates3_oidc ON projections.idp_templates3.id = projections.idp_templates3_oidc.idp_id AND projections.idp_templates3.instance_id = projections.idp_templates3_oidc.instance_id ` +
` LEFT JOIN projections.idp_templates3_jwt ON projections.idp_templates3.id = projections.idp_templates3_jwt.idp_id AND projections.idp_templates3.instance_id = projections.idp_templates3_jwt.instance_id ` +
` LEFT JOIN projections.idp_templates3_google ON projections.idp_templates3.id = projections.idp_templates3_google.idp_id AND projections.idp_templates3.instance_id = projections.idp_templates3_google.instance_id ` +
` LEFT JOIN projections.idp_templates3_ldap ON projections.idp_templates3.id = projections.idp_templates3_ldap.idp_id AND projections.idp_templates3.instance_id = projections.idp_templates3_ldap.instance_id ` +
2023-02-27 21:36:43 +00:00
` AS OF SYSTEM TIME '-1 ms' `
2023-02-15 08:14:59 +00:00
idpTemplatesCols = [ ] string {
"id" ,
"resource_owner" ,
"creation_date" ,
"change_date" ,
"sequence" ,
"state" ,
"name" ,
"type" ,
"owner_type" ,
"is_creation_allowed" ,
"is_linking_allowed" ,
"is_auto_creation" ,
"is_auto_update" ,
2023-02-24 14:16:06 +00:00
// oauth config
"idp_id" ,
"client_id" ,
"client_secret" ,
"authorization_endpoint" ,
"token_endpoint" ,
"user_endpoint" ,
"scopes" ,
2023-03-03 10:38:49 +00:00
"id_attribute" ,
2023-02-27 15:32:18 +00:00
// oidc config
"id_id" ,
"issuer" ,
"client_id" ,
"client_secret" ,
"scopes" ,
// jwt
"idp_id" ,
"issuer" ,
"jwt_endpoint" ,
"keys_endpoint" ,
"header_name" ,
2023-02-21 17:18:28 +00:00
// google config
"idp_id" ,
"client_id" ,
"client_secret" ,
"scopes" ,
// ldap config
2023-02-15 08:14:59 +00:00
"idp_id" ,
"host" ,
"port" ,
"tls" ,
"base_dn" ,
"user_object_class" ,
"user_unique_attribute" ,
"admin" ,
"password" ,
"id_attribute" ,
"first_name_attribute" ,
"last_name_attribute" ,
"display_name_attribute" ,
"nick_name_attribute" ,
"preferred_username_attribute" ,
"email_attribute" ,
"email_verified" ,
"phone_attribute" ,
"phone_verified_attribute" ,
"preferred_language_attribute" ,
"avatar_url_attribute" ,
"profile_attribute" ,
"count" ,
}
)
func Test_IDPTemplateTemplatesPrepares ( t * testing . T ) {
type want struct {
sqlExpectations sqlExpectation
err checkErr
}
tests := [ ] struct {
name string
prepare interface { }
want want
object interface { }
} {
{
name : "prepareIDPTemplateByIDQuery no result" ,
prepare : prepareIDPTemplateByIDQuery ,
want : want {
sqlExpectations : mockQuery (
regexp . QuoteMeta ( idpTemplateQuery ) ,
nil ,
nil ,
) ,
err : func ( err error ) ( error , bool ) {
if ! errs . IsNotFound ( err ) {
return fmt . Errorf ( "err should be zitadel.NotFoundError got: %w" , err ) , false
}
return nil , true
} ,
} ,
object : ( * IDPTemplate ) ( nil ) ,
} ,
2023-02-24 14:16:06 +00:00
{
name : "prepareIDPTemplateByIDQuery oauth idp" ,
prepare : prepareIDPTemplateByIDQuery ,
want : want {
sqlExpectations : mockQuery (
regexp . QuoteMeta ( idpTemplateQuery ) ,
idpTemplateCols ,
[ ] driver . Value {
"idp-id" ,
"ro" ,
testNow ,
testNow ,
uint64 ( 20211109 ) ,
domain . IDPConfigStateActive ,
"idp-name" ,
domain . IDPTypeOAuth ,
domain . IdentityProviderTypeOrg ,
true ,
true ,
true ,
true ,
// oauth
"idp-id" ,
"client_id" ,
nil ,
"authorization" ,
"token" ,
"user" ,
database . StringArray { "profile" } ,
2023-03-03 10:38:49 +00:00
"id-attribute" ,
2023-02-27 15:32:18 +00:00
// oidc
nil ,
nil ,
nil ,
nil ,
nil ,
// jwt
nil ,
nil ,
nil ,
nil ,
nil ,
2023-02-24 14:16:06 +00:00
// google
nil ,
nil ,
nil ,
nil ,
// ldap config
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
} ,
) ,
} ,
object : & IDPTemplate {
CreationDate : testNow ,
ChangeDate : testNow ,
Sequence : 20211109 ,
ResourceOwner : "ro" ,
ID : "idp-id" ,
State : domain . IDPStateActive ,
Name : "idp-name" ,
Type : domain . IDPTypeOAuth ,
OwnerType : domain . IdentityProviderTypeOrg ,
IsCreationAllowed : true ,
IsLinkingAllowed : true ,
IsAutoCreation : true ,
IsAutoUpdate : true ,
OAuthIDPTemplate : & OAuthIDPTemplate {
IDPID : "idp-id" ,
ClientID : "client_id" ,
ClientSecret : nil ,
AuthorizationEndpoint : "authorization" ,
TokenEndpoint : "token" ,
UserEndpoint : "user" ,
Scopes : [ ] string { "profile" } ,
2023-03-03 10:38:49 +00:00
IDAttribute : "id-attribute" ,
2023-02-24 14:16:06 +00:00
} ,
} ,
} ,
2023-02-27 15:32:18 +00:00
{
name : "prepareIDPTemplateByIDQuery oidc idp" ,
prepare : prepareIDPTemplateByIDQuery ,
want : want {
sqlExpectations : mockQuery (
regexp . QuoteMeta ( idpTemplateQuery ) ,
idpTemplateCols ,
[ ] driver . Value {
"idp-id" ,
"ro" ,
testNow ,
testNow ,
uint64 ( 20211109 ) ,
domain . IDPConfigStateActive ,
"idp-name" ,
domain . IDPTypeOIDC ,
domain . IdentityProviderTypeOrg ,
true ,
true ,
true ,
true ,
// oauth
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
2023-03-03 10:38:49 +00:00
nil ,
2023-02-27 15:32:18 +00:00
// oidc
"idp-id" ,
"issuer" ,
"client_id" ,
nil ,
database . StringArray { "profile" } ,
// jwt
nil ,
nil ,
nil ,
nil ,
nil ,
// google
nil ,
nil ,
nil ,
nil ,
// ldap config
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
} ,
) ,
} ,
object : & IDPTemplate {
CreationDate : testNow ,
ChangeDate : testNow ,
Sequence : 20211109 ,
ResourceOwner : "ro" ,
ID : "idp-id" ,
State : domain . IDPStateActive ,
Name : "idp-name" ,
Type : domain . IDPTypeOIDC ,
OwnerType : domain . IdentityProviderTypeOrg ,
IsCreationAllowed : true ,
IsLinkingAllowed : true ,
IsAutoCreation : true ,
IsAutoUpdate : true ,
OIDCIDPTemplate : & OIDCIDPTemplate {
IDPID : "idp-id" ,
Issuer : "issuer" ,
ClientID : "client_id" ,
ClientSecret : nil ,
Scopes : [ ] string { "profile" } ,
} ,
} ,
} ,
{
name : "prepareIDPTemplateByIDQuery oidc idp" ,
prepare : prepareIDPTemplateByIDQuery ,
want : want {
sqlExpectations : mockQuery (
regexp . QuoteMeta ( idpTemplateQuery ) ,
idpTemplateCols ,
[ ] driver . Value {
"idp-id" ,
"ro" ,
testNow ,
testNow ,
uint64 ( 20211109 ) ,
domain . IDPConfigStateActive ,
"idp-name" ,
domain . IDPTypeJWT ,
domain . IdentityProviderTypeOrg ,
true ,
true ,
true ,
true ,
// oauth
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
2023-03-03 10:38:49 +00:00
nil ,
2023-02-27 15:32:18 +00:00
// oidc
nil ,
nil ,
nil ,
nil ,
nil ,
// jwt
"idp-id" ,
"issuer" ,
"jwt" ,
"keys" ,
"header" ,
// google
nil ,
nil ,
nil ,
nil ,
// ldap config
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
} ,
) ,
} ,
object : & IDPTemplate {
CreationDate : testNow ,
ChangeDate : testNow ,
Sequence : 20211109 ,
ResourceOwner : "ro" ,
ID : "idp-id" ,
State : domain . IDPStateActive ,
Name : "idp-name" ,
Type : domain . IDPTypeJWT ,
OwnerType : domain . IdentityProviderTypeOrg ,
IsCreationAllowed : true ,
IsLinkingAllowed : true ,
IsAutoCreation : true ,
IsAutoUpdate : true ,
JWTIDPTemplate : & JWTIDPTemplate {
IDPID : "idp-id" ,
Issuer : "issuer" ,
Endpoint : "jwt" ,
KeysEndpoint : "keys" ,
HeaderName : "header" ,
} ,
} ,
} ,
2023-02-21 17:18:28 +00:00
{
name : "prepareIDPTemplateByIDQuery google idp" ,
prepare : prepareIDPTemplateByIDQuery ,
want : want {
sqlExpectations : mockQuery (
regexp . QuoteMeta ( idpTemplateQuery ) ,
idpTemplateCols ,
[ ] driver . Value {
"idp-id" ,
"ro" ,
testNow ,
testNow ,
uint64 ( 20211109 ) ,
domain . IDPConfigStateActive ,
"idp-name" ,
domain . IDPTypeGoogle ,
domain . IdentityProviderTypeOrg ,
true ,
true ,
true ,
true ,
2023-02-24 14:16:06 +00:00
// oauth
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
2023-03-03 10:38:49 +00:00
nil ,
2023-02-27 15:32:18 +00:00
// oidc
nil ,
nil ,
nil ,
nil ,
nil ,
// jwt
nil ,
nil ,
nil ,
nil ,
nil ,
2023-02-21 17:18:28 +00:00
// google
"idp-id" ,
"client_id" ,
nil ,
database . StringArray { "profile" } ,
// ldap config
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
} ,
) ,
} ,
object : & IDPTemplate {
CreationDate : testNow ,
ChangeDate : testNow ,
Sequence : 20211109 ,
ResourceOwner : "ro" ,
ID : "idp-id" ,
State : domain . IDPStateActive ,
Name : "idp-name" ,
Type : domain . IDPTypeGoogle ,
OwnerType : domain . IdentityProviderTypeOrg ,
IsCreationAllowed : true ,
IsLinkingAllowed : true ,
IsAutoCreation : true ,
IsAutoUpdate : true ,
GoogleIDPTemplate : & GoogleIDPTemplate {
IDPID : "idp-id" ,
ClientID : "client_id" ,
ClientSecret : nil ,
Scopes : [ ] string { "profile" } ,
} ,
} ,
} ,
2023-02-15 08:14:59 +00:00
{
name : "prepareIDPTemplateByIDQuery ldap idp" ,
prepare : prepareIDPTemplateByIDQuery ,
want : want {
sqlExpectations : mockQuery (
regexp . QuoteMeta ( idpTemplateQuery ) ,
idpTemplateCols ,
[ ] driver . Value {
"idp-id" ,
"ro" ,
testNow ,
testNow ,
uint64 ( 20211109 ) ,
domain . IDPConfigStateActive ,
"idp-name" ,
domain . IDPTypeLDAP ,
domain . IdentityProviderTypeOrg ,
true ,
true ,
true ,
true ,
2023-02-24 14:16:06 +00:00
// oauth
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
2023-03-03 10:38:49 +00:00
nil ,
2023-02-27 15:32:18 +00:00
// oidc
nil ,
nil ,
nil ,
nil ,
nil ,
// jwt
nil ,
nil ,
nil ,
nil ,
nil ,
2023-02-21 17:18:28 +00:00
// google
nil ,
nil ,
nil ,
nil ,
2023-02-15 08:14:59 +00:00
// ldap config
"idp-id" ,
"host" ,
"port" ,
true ,
"base" ,
"user" ,
"uid" ,
"admin" ,
nil ,
"id" ,
"first" ,
"last" ,
"display" ,
"nickname" ,
"username" ,
"email" ,
"emailVerified" ,
"phone" ,
"phoneVerified" ,
"lang" ,
"avatar" ,
"profile" ,
} ,
) ,
} ,
object : & IDPTemplate {
CreationDate : testNow ,
ChangeDate : testNow ,
Sequence : 20211109 ,
ResourceOwner : "ro" ,
ID : "idp-id" ,
State : domain . IDPStateActive ,
Name : "idp-name" ,
Type : domain . IDPTypeLDAP ,
OwnerType : domain . IdentityProviderTypeOrg ,
IsCreationAllowed : true ,
IsLinkingAllowed : true ,
IsAutoCreation : true ,
IsAutoUpdate : true ,
LDAPIDPTemplate : & LDAPIDPTemplate {
IDPID : "idp-id" ,
Host : "host" ,
Port : "port" ,
TLS : true ,
BaseDN : "base" ,
UserObjectClass : "user" ,
UserUniqueAttribute : "uid" ,
Admin : "admin" ,
LDAPAttributes : idp . LDAPAttributes {
IDAttribute : "id" ,
FirstNameAttribute : "first" ,
LastNameAttribute : "last" ,
DisplayNameAttribute : "display" ,
NickNameAttribute : "nickname" ,
PreferredUsernameAttribute : "username" ,
EmailAttribute : "email" ,
EmailVerifiedAttribute : "emailVerified" ,
PhoneAttribute : "phone" ,
PhoneVerifiedAttribute : "phoneVerified" ,
PreferredLanguageAttribute : "lang" ,
AvatarURLAttribute : "avatar" ,
ProfileAttribute : "profile" ,
} ,
} ,
} ,
} ,
{
name : "prepareIDPTemplateByIDQuery no config" ,
prepare : prepareIDPTemplateByIDQuery ,
want : want {
sqlExpectations : mockQuery (
regexp . QuoteMeta ( idpTemplateQuery ) ,
idpTemplateCols ,
[ ] driver . Value {
"idp-id" ,
"ro" ,
testNow ,
testNow ,
uint64 ( 20211109 ) ,
domain . IDPConfigStateActive ,
"idp-name" ,
domain . IDPTypeLDAP ,
domain . IdentityProviderTypeOrg ,
true ,
true ,
true ,
true ,
2023-02-24 14:16:06 +00:00
// oauth
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
2023-03-03 10:38:49 +00:00
nil ,
2023-02-27 15:32:18 +00:00
// oidc
nil ,
nil ,
nil ,
nil ,
nil ,
// jwt
nil ,
nil ,
nil ,
nil ,
nil ,
2023-02-21 17:18:28 +00:00
// google config
nil ,
nil ,
nil ,
nil ,
2023-02-15 08:14:59 +00:00
// ldap config
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
} ,
) ,
} ,
object : & IDPTemplate {
CreationDate : testNow ,
ChangeDate : testNow ,
Sequence : 20211109 ,
ResourceOwner : "ro" ,
ID : "idp-id" ,
State : domain . IDPStateActive ,
Name : "idp-name" ,
Type : domain . IDPTypeLDAP ,
OwnerType : domain . IdentityProviderTypeOrg ,
IsCreationAllowed : true ,
IsLinkingAllowed : true ,
IsAutoCreation : true ,
IsAutoUpdate : true ,
} ,
} ,
{
name : "prepareIDPTemplateByIDQuery sql err" ,
prepare : prepareIDPTemplateByIDQuery ,
want : want {
sqlExpectations : mockQueryErr (
regexp . QuoteMeta ( idpTemplateQuery ) ,
sql . ErrConnDone ,
) ,
err : func ( err error ) ( error , bool ) {
if ! errors . Is ( err , sql . ErrConnDone ) {
return fmt . Errorf ( "err should be sql.ErrConnDone got: %w" , err ) , false
}
return nil , true
} ,
} ,
object : nil ,
} ,
{
name : "prepareIDPTemplatesQuery no result" ,
prepare : prepareIDPTemplatesQuery ,
want : want {
sqlExpectations : mockQueries (
regexp . QuoteMeta ( idpTemplatesQuery ) ,
nil ,
nil ,
) ,
err : func ( err error ) ( error , bool ) {
if ! errs . IsNotFound ( err ) {
return fmt . Errorf ( "err should be zitadel.NotFoundError got: %w" , err ) , false
}
return nil , true
} ,
} ,
object : & IDPTemplates { Templates : [ ] * IDPTemplate { } } ,
} ,
{
name : "prepareIDPTemplatesQuery ldap idp" ,
prepare : prepareIDPTemplatesQuery ,
want : want {
sqlExpectations : mockQueries (
regexp . QuoteMeta ( idpTemplatesQuery ) ,
idpTemplatesCols ,
[ ] [ ] driver . Value {
{
"idp-id" ,
"ro" ,
testNow ,
testNow ,
uint64 ( 20211109 ) ,
domain . IDPConfigStateActive ,
"idp-name" ,
domain . IDPTypeLDAP ,
domain . IdentityProviderTypeOrg ,
true ,
true ,
true ,
true ,
2023-02-24 14:16:06 +00:00
// oauth
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
2023-03-03 10:38:49 +00:00
nil ,
2023-02-27 15:32:18 +00:00
// oidc
nil ,
nil ,
nil ,
nil ,
nil ,
// jwt
nil ,
nil ,
nil ,
nil ,
nil ,
2023-02-21 17:18:28 +00:00
// google config
nil ,
nil ,
nil ,
nil ,
2023-02-15 08:14:59 +00:00
// ldap config
"idp-id" ,
"host" ,
"port" ,
true ,
"base" ,
"user" ,
"uid" ,
"admin" ,
nil ,
"id" ,
"first" ,
"last" ,
"display" ,
"nickname" ,
"username" ,
"email" ,
"emailVerified" ,
"phone" ,
"phoneVerified" ,
"lang" ,
"avatar" ,
"profile" ,
} ,
} ,
) ,
} ,
object : & IDPTemplates {
SearchResponse : SearchResponse {
Count : 1 ,
} ,
Templates : [ ] * IDPTemplate {
{
CreationDate : testNow ,
ChangeDate : testNow ,
Sequence : 20211109 ,
ResourceOwner : "ro" ,
ID : "idp-id" ,
State : domain . IDPStateActive ,
Name : "idp-name" ,
Type : domain . IDPTypeLDAP ,
OwnerType : domain . IdentityProviderTypeOrg ,
IsCreationAllowed : true ,
IsLinkingAllowed : true ,
IsAutoCreation : true ,
IsAutoUpdate : true ,
LDAPIDPTemplate : & LDAPIDPTemplate {
IDPID : "idp-id" ,
Host : "host" ,
Port : "port" ,
TLS : true ,
BaseDN : "base" ,
UserObjectClass : "user" ,
UserUniqueAttribute : "uid" ,
Admin : "admin" ,
LDAPAttributes : idp . LDAPAttributes {
IDAttribute : "id" ,
FirstNameAttribute : "first" ,
LastNameAttribute : "last" ,
DisplayNameAttribute : "display" ,
NickNameAttribute : "nickname" ,
PreferredUsernameAttribute : "username" ,
EmailAttribute : "email" ,
EmailVerifiedAttribute : "emailVerified" ,
PhoneAttribute : "phone" ,
PhoneVerifiedAttribute : "phoneVerified" ,
PreferredLanguageAttribute : "lang" ,
AvatarURLAttribute : "avatar" ,
ProfileAttribute : "profile" ,
} ,
} ,
} ,
} ,
} ,
} ,
{
name : "prepareIDPTemplatesQuery no config" ,
prepare : prepareIDPTemplatesQuery ,
want : want {
sqlExpectations : mockQueries (
regexp . QuoteMeta ( idpTemplatesQuery ) ,
idpTemplatesCols ,
[ ] [ ] driver . Value {
{
"idp-id" ,
"ro" ,
testNow ,
testNow ,
uint64 ( 20211109 ) ,
domain . IDPConfigStateActive ,
"idp-name" ,
domain . IDPTypeLDAP ,
domain . IdentityProviderTypeOrg ,
true ,
true ,
true ,
true ,
2023-02-24 14:16:06 +00:00
// oauth
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
2023-03-03 10:38:49 +00:00
nil ,
2023-02-27 15:32:18 +00:00
// oidc
nil ,
nil ,
nil ,
nil ,
nil ,
// jwt
nil ,
nil ,
nil ,
nil ,
nil ,
2023-02-21 17:18:28 +00:00
// google config
nil ,
nil ,
nil ,
nil ,
2023-02-15 08:14:59 +00:00
// ldap config
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
} ,
} ,
) ,
} ,
object : & IDPTemplates {
SearchResponse : SearchResponse {
Count : 1 ,
} ,
Templates : [ ] * IDPTemplate {
{
CreationDate : testNow ,
ChangeDate : testNow ,
Sequence : 20211109 ,
ResourceOwner : "ro" ,
ID : "idp-id" ,
State : domain . IDPStateActive ,
Name : "idp-name" ,
Type : domain . IDPTypeLDAP ,
OwnerType : domain . IdentityProviderTypeOrg ,
IsCreationAllowed : true ,
IsLinkingAllowed : true ,
IsAutoCreation : true ,
IsAutoUpdate : true ,
} ,
} ,
} ,
} ,
{
name : "prepareIDPTemplatesQuery all config types" ,
prepare : prepareIDPTemplatesQuery ,
want : want {
sqlExpectations : mockQueries (
regexp . QuoteMeta ( idpTemplatesQuery ) ,
idpTemplatesCols ,
[ ] [ ] driver . Value {
{
2023-02-21 17:18:28 +00:00
"idp-id-ldap" ,
2023-02-15 08:14:59 +00:00
"ro" ,
testNow ,
testNow ,
uint64 ( 20211109 ) ,
domain . IDPConfigStateActive ,
"idp-name" ,
domain . IDPTypeLDAP ,
domain . IdentityProviderTypeOrg ,
true ,
true ,
true ,
true ,
2023-02-24 14:16:06 +00:00
// oauth
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
2023-03-03 10:38:49 +00:00
nil ,
2023-02-27 15:32:18 +00:00
// oidc
nil ,
nil ,
nil ,
nil ,
nil ,
// jwt
nil ,
nil ,
nil ,
nil ,
nil ,
2023-02-21 17:18:28 +00:00
// google config
nil ,
nil ,
nil ,
nil ,
2023-02-15 08:14:59 +00:00
// ldap config
2023-02-21 17:18:28 +00:00
"idp-id-ldap" ,
2023-02-15 08:14:59 +00:00
"host" ,
"port" ,
true ,
"base" ,
"user" ,
"uid" ,
"admin" ,
nil ,
"id" ,
"first" ,
"last" ,
"display" ,
"nickname" ,
"username" ,
"email" ,
"emailVerified" ,
"phone" ,
"phoneVerified" ,
"lang" ,
"avatar" ,
"profile" ,
} ,
{
2023-02-21 17:18:28 +00:00
"idp-id-google" ,
2023-02-15 08:14:59 +00:00
"ro" ,
testNow ,
testNow ,
uint64 ( 20211109 ) ,
domain . IDPConfigStateActive ,
"idp-name" ,
2023-02-21 17:18:28 +00:00
domain . IDPTypeGoogle ,
2023-02-15 08:14:59 +00:00
domain . IdentityProviderTypeOrg ,
true ,
true ,
true ,
true ,
2023-02-24 14:16:06 +00:00
// oauth
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
2023-03-03 10:38:49 +00:00
nil ,
2023-02-27 15:32:18 +00:00
// oidc
nil ,
nil ,
nil ,
nil ,
nil ,
// jwt
nil ,
nil ,
nil ,
nil ,
nil ,
2023-02-21 17:18:28 +00:00
// google
"idp-id-google" ,
"client_id" ,
nil ,
database . StringArray { "profile" } ,
2023-02-15 08:14:59 +00:00
// ldap config
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
} ,
2023-02-24 14:16:06 +00:00
{
"idp-id-oauth" ,
"ro" ,
testNow ,
testNow ,
uint64 ( 20211109 ) ,
domain . IDPConfigStateActive ,
"idp-name" ,
domain . IDPTypeOAuth ,
domain . IdentityProviderTypeOrg ,
true ,
true ,
true ,
true ,
// oauth
"idp-id-oauth" ,
"client_id" ,
nil ,
"authorization" ,
"token" ,
"user" ,
database . StringArray { "profile" } ,
2023-03-03 10:38:49 +00:00
"id-attribute" ,
2023-02-27 15:32:18 +00:00
// oidc
nil ,
nil ,
nil ,
nil ,
nil ,
// jwt
nil ,
nil ,
nil ,
nil ,
nil ,
// google
nil ,
nil ,
nil ,
nil ,
// ldap config
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
} ,
{
"idp-id-oidc" ,
"ro" ,
testNow ,
testNow ,
uint64 ( 20211109 ) ,
domain . IDPConfigStateActive ,
"idp-name" ,
domain . IDPTypeOIDC ,
domain . IdentityProviderTypeOrg ,
true ,
true ,
true ,
true ,
// oauth
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
2023-03-03 10:38:49 +00:00
nil ,
2023-02-27 15:32:18 +00:00
// oidc
"idp-id-oidc" ,
"issuer" ,
"client_id" ,
nil ,
database . StringArray { "profile" } ,
// jwt
nil ,
nil ,
nil ,
nil ,
nil ,
// google
nil ,
nil ,
nil ,
nil ,
// ldap config
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
} ,
{
"idp-id-jwt" ,
"ro" ,
testNow ,
testNow ,
uint64 ( 20211109 ) ,
domain . IDPConfigStateActive ,
"idp-name" ,
domain . IDPTypeJWT ,
domain . IdentityProviderTypeOrg ,
true ,
true ,
true ,
true ,
// oauth
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
2023-03-03 10:38:49 +00:00
nil ,
2023-02-27 15:32:18 +00:00
// oidc
nil ,
nil ,
nil ,
nil ,
nil ,
// jwt
"idp-id-jwt" ,
"issuer" ,
"jwt" ,
"keys" ,
"header" ,
2023-02-24 14:16:06 +00:00
// google
nil ,
nil ,
nil ,
nil ,
// ldap config
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
nil ,
} ,
2023-02-15 08:14:59 +00:00
} ,
) ,
} ,
object : & IDPTemplates {
SearchResponse : SearchResponse {
2023-02-27 15:32:18 +00:00
Count : 5 ,
2023-02-15 08:14:59 +00:00
} ,
Templates : [ ] * IDPTemplate {
{
CreationDate : testNow ,
ChangeDate : testNow ,
Sequence : 20211109 ,
ResourceOwner : "ro" ,
2023-02-21 17:18:28 +00:00
ID : "idp-id-ldap" ,
2023-02-15 08:14:59 +00:00
State : domain . IDPStateActive ,
Name : "idp-name" ,
Type : domain . IDPTypeLDAP ,
OwnerType : domain . IdentityProviderTypeOrg ,
IsCreationAllowed : true ,
IsLinkingAllowed : true ,
IsAutoCreation : true ,
IsAutoUpdate : true ,
LDAPIDPTemplate : & LDAPIDPTemplate {
2023-02-21 17:18:28 +00:00
IDPID : "idp-id-ldap" ,
2023-02-15 08:14:59 +00:00
Host : "host" ,
Port : "port" ,
TLS : true ,
BaseDN : "base" ,
UserObjectClass : "user" ,
UserUniqueAttribute : "uid" ,
Admin : "admin" ,
LDAPAttributes : idp . LDAPAttributes {
IDAttribute : "id" ,
FirstNameAttribute : "first" ,
LastNameAttribute : "last" ,
DisplayNameAttribute : "display" ,
NickNameAttribute : "nickname" ,
PreferredUsernameAttribute : "username" ,
EmailAttribute : "email" ,
EmailVerifiedAttribute : "emailVerified" ,
PhoneAttribute : "phone" ,
PhoneVerifiedAttribute : "phoneVerified" ,
PreferredLanguageAttribute : "lang" ,
AvatarURLAttribute : "avatar" ,
ProfileAttribute : "profile" ,
} ,
} ,
} ,
{
CreationDate : testNow ,
ChangeDate : testNow ,
Sequence : 20211109 ,
ResourceOwner : "ro" ,
2023-02-21 17:18:28 +00:00
ID : "idp-id-google" ,
2023-02-15 08:14:59 +00:00
State : domain . IDPStateActive ,
Name : "idp-name" ,
2023-02-21 17:18:28 +00:00
Type : domain . IDPTypeGoogle ,
2023-02-15 08:14:59 +00:00
OwnerType : domain . IdentityProviderTypeOrg ,
IsCreationAllowed : true ,
IsLinkingAllowed : true ,
IsAutoCreation : true ,
IsAutoUpdate : true ,
2023-02-21 17:18:28 +00:00
GoogleIDPTemplate : & GoogleIDPTemplate {
IDPID : "idp-id-google" ,
ClientID : "client_id" ,
ClientSecret : nil ,
Scopes : [ ] string { "profile" } ,
} ,
2023-02-15 08:14:59 +00:00
} ,
2023-02-24 14:16:06 +00:00
{
CreationDate : testNow ,
ChangeDate : testNow ,
Sequence : 20211109 ,
ResourceOwner : "ro" ,
ID : "idp-id-oauth" ,
State : domain . IDPStateActive ,
Name : "idp-name" ,
Type : domain . IDPTypeOAuth ,
OwnerType : domain . IdentityProviderTypeOrg ,
IsCreationAllowed : true ,
IsLinkingAllowed : true ,
IsAutoCreation : true ,
IsAutoUpdate : true ,
OAuthIDPTemplate : & OAuthIDPTemplate {
IDPID : "idp-id-oauth" ,
ClientID : "client_id" ,
ClientSecret : nil ,
AuthorizationEndpoint : "authorization" ,
TokenEndpoint : "token" ,
UserEndpoint : "user" ,
Scopes : [ ] string { "profile" } ,
2023-03-03 10:38:49 +00:00
IDAttribute : "id-attribute" ,
2023-02-24 14:16:06 +00:00
} ,
} ,
2023-02-27 15:32:18 +00:00
{
CreationDate : testNow ,
ChangeDate : testNow ,
Sequence : 20211109 ,
ResourceOwner : "ro" ,
ID : "idp-id-oidc" ,
State : domain . IDPStateActive ,
Name : "idp-name" ,
Type : domain . IDPTypeOIDC ,
OwnerType : domain . IdentityProviderTypeOrg ,
IsCreationAllowed : true ,
IsLinkingAllowed : true ,
IsAutoCreation : true ,
IsAutoUpdate : true ,
OIDCIDPTemplate : & OIDCIDPTemplate {
IDPID : "idp-id-oidc" ,
Issuer : "issuer" ,
ClientID : "client_id" ,
ClientSecret : nil ,
Scopes : [ ] string { "profile" } ,
} ,
} ,
{
CreationDate : testNow ,
ChangeDate : testNow ,
Sequence : 20211109 ,
ResourceOwner : "ro" ,
ID : "idp-id-jwt" ,
State : domain . IDPStateActive ,
Name : "idp-name" ,
Type : domain . IDPTypeJWT ,
OwnerType : domain . IdentityProviderTypeOrg ,
IsCreationAllowed : true ,
IsLinkingAllowed : true ,
IsAutoCreation : true ,
IsAutoUpdate : true ,
JWTIDPTemplate : & JWTIDPTemplate {
IDPID : "idp-id-jwt" ,
Issuer : "issuer" ,
Endpoint : "jwt" ,
KeysEndpoint : "keys" ,
HeaderName : "header" ,
} ,
} ,
2023-02-15 08:14:59 +00:00
} ,
} ,
} ,
{
name : "prepareIDPTemplatesQuery sql err" ,
prepare : prepareIDPTemplatesQuery ,
want : want {
sqlExpectations : mockQueryErr (
regexp . QuoteMeta ( idpTemplatesQuery ) ,
sql . ErrConnDone ,
) ,
err : func ( err error ) ( error , bool ) {
if ! errors . Is ( err , sql . ErrConnDone ) {
return fmt . Errorf ( "err should be sql.ErrConnDone got: %w" , err ) , false
}
return nil , true
} ,
} ,
object : nil ,
} ,
}
for _ , tt := range tests {
t . Run ( tt . name , func ( t * testing . T ) {
2023-02-27 21:36:43 +00:00
assertPrepare ( t , tt . prepare , tt . object , tt . want . sqlExpectations , tt . want . err , defaultPrepareArgs ... )
2023-02-15 08:14:59 +00:00
} )
}
}