mirror of
				https://github.com/zitadel/zitadel.git
				synced 2025-10-25 04:19:03 +00:00 
			
		
		
		
	 3bbcc3434a
			
		
	
	3bbcc3434a
	
	
	
		
			
			This pr upgrades oidc to v3 . Function signature changes have been migrated as well. Specifically there are more client calls that take a context now. Where feasable a context is added to those calls. Where a context is not (easily) available context.TODO() is used as a reminder for when it does. Related to #6619
		
			
				
	
	
		
			158 lines
		
	
	
		
			3.8 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
			
		
		
	
	
			158 lines
		
	
	
		
			3.8 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
| package oauth
 | |
| 
 | |
| import (
 | |
| 	"context"
 | |
| 	"testing"
 | |
| 
 | |
| 	"github.com/stretchr/testify/assert"
 | |
| 	"github.com/stretchr/testify/require"
 | |
| 	"github.com/zitadel/oidc/v3/pkg/client/rp"
 | |
| 	"golang.org/x/oauth2"
 | |
| 
 | |
| 	"github.com/zitadel/zitadel/internal/idp"
 | |
| )
 | |
| 
 | |
| func TestProvider_BeginAuth(t *testing.T) {
 | |
| 	type fields struct {
 | |
| 		config       *oauth2.Config
 | |
| 		name         string
 | |
| 		userEndpoint string
 | |
| 		userMapper   func() idp.User
 | |
| 	}
 | |
| 	tests := []struct {
 | |
| 		name   string
 | |
| 		fields fields
 | |
| 		want   idp.Session
 | |
| 	}{
 | |
| 		{
 | |
| 			name: "successful auth",
 | |
| 			fields: fields{
 | |
| 				config: &oauth2.Config{
 | |
| 					ClientID:     "clientID",
 | |
| 					ClientSecret: "clientSecret",
 | |
| 					Endpoint: oauth2.Endpoint{
 | |
| 						AuthURL:  "https://oauth2.com/authorize",
 | |
| 						TokenURL: "https://oauth2.com/token",
 | |
| 					},
 | |
| 					RedirectURL: "redirectURI",
 | |
| 					Scopes:      []string{"user"},
 | |
| 				},
 | |
| 			},
 | |
| 			want: &Session{AuthURL: "https://oauth2.com/authorize?client_id=clientID&prompt=select_account&redirect_uri=redirectURI&response_type=code&scope=user&state=testState"},
 | |
| 		},
 | |
| 	}
 | |
| 	for _, tt := range tests {
 | |
| 		t.Run(tt.name, func(t *testing.T) {
 | |
| 			a := assert.New(t)
 | |
| 			r := require.New(t)
 | |
| 
 | |
| 			provider, err := New(tt.fields.config, tt.fields.name, tt.fields.userEndpoint, tt.fields.userMapper)
 | |
| 			r.NoError(err)
 | |
| 
 | |
| 			ctx := context.Background()
 | |
| 			session, err := provider.BeginAuth(ctx, "testState")
 | |
| 			r.NoError(err)
 | |
| 
 | |
| 			wantHeaders, wantContent := tt.want.GetAuth(ctx)
 | |
| 			gotHeaders, gotContent := session.GetAuth(ctx)
 | |
| 			a.Equal(wantHeaders, gotHeaders)
 | |
| 			a.Equal(wantContent, gotContent)
 | |
| 		})
 | |
| 	}
 | |
| }
 | |
| 
 | |
| func TestProvider_Options(t *testing.T) {
 | |
| 	type fields struct {
 | |
| 		config       *oauth2.Config
 | |
| 		name         string
 | |
| 		userEndpoint string
 | |
| 		userMapper   func() idp.User
 | |
| 		options      []ProviderOpts
 | |
| 	}
 | |
| 	type want struct {
 | |
| 		name            string
 | |
| 		linkingAllowed  bool
 | |
| 		creationAllowed bool
 | |
| 		autoCreation    bool
 | |
| 		autoUpdate      bool
 | |
| 		pkce            bool
 | |
| 	}
 | |
| 	tests := []struct {
 | |
| 		name   string
 | |
| 		fields fields
 | |
| 		want   want
 | |
| 	}{
 | |
| 		{
 | |
| 			name: "default",
 | |
| 			fields: fields{
 | |
| 				name: "oauth",
 | |
| 				config: &oauth2.Config{
 | |
| 					ClientID:     "clientID",
 | |
| 					ClientSecret: "clientSecret",
 | |
| 					Endpoint: oauth2.Endpoint{
 | |
| 						AuthURL:  "https://oauth2.com/authorize",
 | |
| 						TokenURL: "https://oauth2.com/token",
 | |
| 					},
 | |
| 					RedirectURL: "redirectURI",
 | |
| 					Scopes:      []string{"user"},
 | |
| 				},
 | |
| 				options: nil,
 | |
| 			},
 | |
| 			want: want{
 | |
| 				name:            "oauth",
 | |
| 				linkingAllowed:  false,
 | |
| 				creationAllowed: false,
 | |
| 				autoCreation:    false,
 | |
| 				autoUpdate:      false,
 | |
| 				pkce:            false,
 | |
| 			},
 | |
| 		},
 | |
| 		{
 | |
| 			name: "all true",
 | |
| 			fields: fields{
 | |
| 				name: "oauth",
 | |
| 				config: &oauth2.Config{
 | |
| 					ClientID:     "clientID",
 | |
| 					ClientSecret: "clientSecret",
 | |
| 					Endpoint: oauth2.Endpoint{
 | |
| 						AuthURL:  "https://oauth2.com/authorize",
 | |
| 						TokenURL: "https://oauth2.com/token",
 | |
| 					},
 | |
| 					RedirectURL: "redirectURI",
 | |
| 					Scopes:      []string{"user"},
 | |
| 				},
 | |
| 				options: []ProviderOpts{
 | |
| 					WithLinkingAllowed(),
 | |
| 					WithCreationAllowed(),
 | |
| 					WithAutoCreation(),
 | |
| 					WithAutoUpdate(),
 | |
| 					WithRelyingPartyOption(rp.WithPKCE(nil)),
 | |
| 				},
 | |
| 			},
 | |
| 			want: want{
 | |
| 				name:            "oauth",
 | |
| 				linkingAllowed:  true,
 | |
| 				creationAllowed: true,
 | |
| 				autoCreation:    true,
 | |
| 				autoUpdate:      true,
 | |
| 				pkce:            true,
 | |
| 			},
 | |
| 		},
 | |
| 	}
 | |
| 	for _, tt := range tests {
 | |
| 		t.Run(tt.name, func(t *testing.T) {
 | |
| 			a := assert.New(t)
 | |
| 
 | |
| 			provider, err := New(tt.fields.config, tt.fields.name, tt.fields.userEndpoint, tt.fields.userMapper, tt.fields.options...)
 | |
| 			require.NoError(t, err)
 | |
| 
 | |
| 			a.Equal(tt.want.name, provider.Name())
 | |
| 			a.Equal(tt.want.linkingAllowed, provider.IsLinkingAllowed())
 | |
| 			a.Equal(tt.want.creationAllowed, provider.IsCreationAllowed())
 | |
| 			a.Equal(tt.want.autoCreation, provider.IsAutoCreation())
 | |
| 			a.Equal(tt.want.autoUpdate, provider.IsAutoUpdate())
 | |
| 			a.Equal(tt.want.pkce, provider.RelyingParty.IsPKCE())
 | |
| 		})
 | |
| 	}
 | |
| }
 |