UltiSuite/ultisuite-backend
UltiSuite/ultisuite-backend
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
bd7534658a
ultisuite-backend/internal/api/middleware/apitoken_policy_test.go
R3D347HR4Y bd7534658a Refactor and enhance unified frontend and API features 
- Updated environment configuration to unify frontend for mail and drive under a single service.
- Revised README to reflect changes in frontend setup and routing for the unified application.
- Introduced new API documentation endpoints for better accessibility of API specifications.
- Enhanced drive and mail services with improved handling of file uploads and metadata enrichment.
- Implemented new API token management features, including creation, listing, and revocation of tokens.
- Added tests for new functionalities in drive and mail services to ensure reliability and correctness.
2026-06-07 15:44:30 +02:00

62 lines
1.9 KiB
Go
Raw Blame History

package middleware
import (
"context"
"net/http"
"net/http/httptest"
"testing"
"github.com/ultisuite/ulti-backend/internal/apitokens"
"github.com/ultisuite/ulti-backend/internal/auth"
)
func TestEnforceApiTokenPolicyAllowsMailRead(t *testing.T) {
authCtx := &apitokens.AuthContext{
ExternalID: "user-1",
Permissions: []apitokens.PermissionGrant{
{Resource: "mail.messages", Read: true},
},
MailScope: apitokens.MailScope{AllAccounts: true},
DriveScope: apitokens.DriveScope{AllFolders: true},
}
called := false
handler := EnforceApiTokenPolicy()(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
called = true
w.WriteHeader(http.StatusOK)
}))
req := httptest.NewRequest(http.MethodGet, "/api/v1/mail/messages", nil)
ctx := context.WithValue(context.Background(), claimsKey, &auth.Claims{Sub: "user-1"})
ctx = context.WithValue(ctx, apiTokenKey, authCtx)
rec := httptest.NewRecorder()
handler.ServeHTTP(rec, req.WithContext(ctx))
if rec.Code != http.StatusOK || !called {
t.Fatalf("status=%d called=%v", rec.Code, called)
}
}
func TestEnforceApiTokenPolicyDeniesMissingPermission(t *testing.T) {
authCtx := &apitokens.AuthContext{
ExternalID: "user-1",
Permissions: []apitokens.PermissionGrant{
{Resource: "mail.messages", Read: true},
},
MailScope: apitokens.MailScope{AllAccounts: true},
DriveScope: apitokens.DriveScope{AllFolders: true},
}
handler := EnforceApiTokenPolicy()(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
t.Fatal("handler should not run")
}))
req := httptest.NewRequest(http.MethodPost, "/api/v1/mail/send", nil)
ctx := context.WithValue(context.Background(), claimsKey, &auth.Claims{Sub: "user-1"})
ctx = context.WithValue(ctx, apiTokenKey, authCtx)
rec := httptest.NewRecorder()
handler.ServeHTTP(rec, req.WithContext(ctx))
if rec.Code != http.StatusForbidden {
t.Fatalf("status=%d", rec.Code)
}
}
Reference in New Issue View Git Blame Copy Permalink