diff options
| author | Ivan Tashkinov <ivantashkinov@gmail.com> | 2020-04-24 16:52:38 +0300 |
|---|---|---|
| committer | Ivan Tashkinov <ivantashkinov@gmail.com> | 2020-04-24 16:52:38 +0300 |
| commit | 00e62161f64802317d7d789e7eac42c33f0540f5 (patch) | |
| tree | aaaff92984ee19747956a7513c93c928b4604d36 /test/web/auth/oauth_test_controller_test.exs | |
| parent | 89f38d94c754d33736e2444859d6020b2147eaf7 (diff) | |
| download | pleroma-00e62161f64802317d7d789e7eac42c33f0540f5.tar.gz pleroma-00e62161f64802317d7d789e7eac42c33f0540f5.zip | |
[#2409] Tested all auth setup configs in AuthTestControllerTest. Adjusted :skip_plug definitions for some endpoints.
Diffstat (limited to 'test/web/auth/oauth_test_controller_test.exs')
| -rw-r--r-- | test/web/auth/oauth_test_controller_test.exs | 49 |
1 files changed, 0 insertions, 49 deletions
diff --git a/test/web/auth/oauth_test_controller_test.exs b/test/web/auth/oauth_test_controller_test.exs deleted file mode 100644 index a2f6009ac..000000000 --- a/test/web/auth/oauth_test_controller_test.exs +++ /dev/null @@ -1,49 +0,0 @@ -# Pleroma: A lightweight social networking server -# Copyright © 2017-2020 Pleroma Authors <https://pleroma.social/> -# SPDX-License-Identifier: AGPL-3.0-only - -defmodule Pleroma.Tests.OAuthTestControllerTest do - use Pleroma.Web.ConnCase - - import Pleroma.Factory - - setup %{conn: conn} do - user = insert(:user) - conn = assign(conn, :user, user) - %{conn: conn, user: user} - end - - test "missed_oauth", %{conn: conn} do - res = - conn - |> get("/test/authenticated_api/missed_oauth") - |> json_response(403) - - assert res == - %{ - "error" => - "Security violation: OAuth scopes check was neither handled nor explicitly skipped." - } - end - - test "skipped_oauth", %{conn: conn} do - conn - |> assign(:token, nil) - |> get("/test/authenticated_api/skipped_oauth") - |> json_response(200) - end - - test "performed_oauth", %{user: user} do - %{conn: good_token_conn} = oauth_access(["read"], user: user) - - good_token_conn - |> get("/test/authenticated_api/performed_oauth") - |> json_response(200) - - %{conn: bad_token_conn} = oauth_access(["follow"], user: user) - - bad_token_conn - |> get("/test/authenticated_api/performed_oauth") - |> json_response(403) - end -end |