[catagits/Catalyst-Authentication-Credential-HTTP.git] / t / basic.t

#!/usr/bin/perl
use strict;
use warnings;
use Test::More tests => 15;
use Test::MockObject::Extends;
use Test::MockObject;
use Test::Exception;
use HTTP::Headers;

my $m; BEGIN { use_ok($m = "Catalyst::Plugin::Authentication::Credential::HTTP") }
can_ok( $m, "authenticate_http" );
can_ok( $m, "authorization_required" );
can_ok( $m, "authorization_required_response" );
my $req = Test::MockObject->new;
my $req_headers = HTTP::Headers->new;
$req->set_always( headers => $req_headers );
my $res = Test::MockObject->new;
my $status;
$res->mock(status => sub { $status = $_[1] });
my $content_type;
$res->mock(content_type => sub { $content_type = $_[1] });
my $body;
$res->mock(body => sub { $body = $_[1] });
my $res_headers = HTTP::Headers->new;
$res->set_always( headers => $res_headers );
my $c = Test::MockObject::Extends->new( $m );
my $cache = Test::MockObject->new;
$cache->mock(set => sub { shift->{$_[0]} = $_[1] });
$cache->mock(get => sub { return shift->{$_[0]} });
$c->mock(cache => sub { $cache });
$c->mock(debug => sub { 0 });
my @login_info;
$c->mock( login => sub { shift; @login_info = @_; 1 } );
$c->set_always( config => {} );
$c->set_always( req => $req );
$c->set_always( res => $res );

ok( !$c->authenticate_http, "http auth fails without header");
$req_headers->authorization_basic( qw/foo bar/ );
ok( $c->authenticate_http, "auth successful with header");
is_deeply( \@login_info, [qw/foo bar/], "login info delegated");
lives_ok {
    $c->authorization_required
} "no detach on authorization required with successful authentication";
$req_headers->clear;
$c->clear;
throws_ok {
    $c->authorization_required( realm => "foo" );
} qr/^ $Catalyst::DETACH $/x, "detached on no authorization required with bad auth";
is( $status, 401, "401 status code" );
is( $content_type, 'text/plain' );
is( $body, 'Authorization required.' );
like( ($res_headers->header('WWW-Authenticate'))[0], qr/^Digest/, "WWW-Authenticate header set: digest");
like( ($res_headers->header('WWW-Authenticate'))[1], qr/^Basic/, "WWW-Authenticate header set: basic");
like( ($res_headers->header('WWW-Authenticate'))[1], qr/realm="foo"/, "WWW-Authenticate header set: basic with realm");
Commit	Line	Data
2022b950	1	#!/usr/bin/perl
2022b950	2	use strict;
2022b950	3	use warnings;
f366138e	4	use Test::More tests => 15;
2022b950	5	use Test::MockObject::Extends;
2022b950	6	use Test::MockObject;
d9914dd2	7	use Test::Exception;
2022b950	8	use HTTP::Headers;
2022b950	9
d99b7693	10	my $m; BEGIN { use_ok($m = "Catalyst::Plugin::Authentication::Credential::HTTP") }
2022b950	11	can_ok( $m, "authenticate_http" );
	12	can_ok( $m, "authorization_required" );
	13	can_ok( $m, "authorization_required_response" );
2022b950	14	my $req = Test::MockObject->new;
2022b950	15	my $req_headers = HTTP::Headers->new;
2022b950	16	$req->set_always( headers => $req_headers );
2022b950	17	my $res = Test::MockObject->new;
2022b950	18	my $status;
2022b950	19	$res->mock(status => sub { $status = $_[1] });
f366138e	20	my $content_type;
	21	$res->mock(content_type => sub { $content_type = $_[1] });
	22	my $body;
	23	$res->mock(body => sub { $body = $_[1] });
2022b950	24	my $res_headers = HTTP::Headers->new;
2022b950	25	$res->set_always( headers => $res_headers );
2022b950	26	my $c = Test::MockObject::Extends->new( $m );
007935b8	27	my $cache = Test::MockObject->new;
	28	$cache->mock(set => sub { shift->{$_[0]} = $_[1] });
	29	$cache->mock(get => sub { return shift->{$_[0]} });
	30	$c->mock(cache => sub { $cache });
4e8cbd42	31	$c->mock(debug => sub { 0 });
2022b950	32	my @login_info;
2022b950	33	$c->mock( login => sub { shift; @login_info = @_; 1 } );
2022b950	34	$c->set_always( config => {} );
	35	$c->set_always( req => $req );
	36	$c->set_always( res => $res );
	37
2022b950	38	ok( !$c->authenticate_http, "http auth fails without header");
2022b950	39	$req_headers->authorization_basic( qw/foo bar/ );
2022b950	40	ok( $c->authenticate_http, "auth successful with header");
2022b950	41	is_deeply( \@login_info, [qw/foo bar/], "login info delegated");
d9914dd2	42	lives_ok {
	43	$c->authorization_required
	44	} "no detach on authorization required with successful authentication";
2022b950	45	$req_headers->clear;
2022b950	46	$c->clear;
d9914dd2	47	throws_ok {
18eacbdd	48	$c->authorization_required( realm => "foo" );
d9914dd2	49	} qr/^ $Catalyst::DETACH $/x, "detached on no authorization required with bad auth";
2022b950	50	is( $status, 401, "401 status code" );
f366138e	51	is( $content_type, 'text/plain' );
f366138e	52	is( $body, 'Authorization required.' );
007935b8	53	like( ($res_headers->header('WWW-Authenticate'))[0], qr/^Digest/, "WWW-Authenticate header set: digest");
007935b8	54	like( ($res_headers->header('WWW-Authenticate'))[1], qr/^Basic/, "WWW-Authenticate header set: basic");
6afc3665	55	like( ($res_headers->header('WWW-Authenticate'))[1], qr/realm="foo"/, "WWW-Authenticate header set: basic with realm");
6afc3665	56