mirror of
https://github.com/Forceu/Gokapi.git
synced 2026-05-03 13:00:33 -05:00
Marc Ole Bulling
210 lines
6.6 KiB
Go
210 lines
6.6 KiB
Go
package api
|
|
|
|
import (
|
|
"bytes"
|
|
"encoding/json"
|
|
"github.com/forceu/gokapi/internal/configuration"
|
|
"github.com/forceu/gokapi/internal/configuration/database"
|
|
"github.com/forceu/gokapi/internal/models"
|
|
"github.com/forceu/gokapi/internal/test"
|
|
"github.com/forceu/gokapi/internal/test/testconfiguration"
|
|
"github.com/forceu/gokapi/internal/webserver/authentication"
|
|
"io"
|
|
"mime/multipart"
|
|
"net/http/httptest"
|
|
"os"
|
|
"path/filepath"
|
|
"testing"
|
|
"time"
|
|
)
|
|
|
|
func TestMain(m *testing.M) {
|
|
testconfiguration.Create(true)
|
|
configuration.Load()
|
|
exitVal := m.Run()
|
|
testconfiguration.Delete()
|
|
os.Exit(exitVal)
|
|
}
|
|
|
|
const maxMemory = 20
|
|
|
|
var newKeyId string
|
|
|
|
func TestNewKey(t *testing.T) {
|
|
newKeyId = NewKey()
|
|
key, ok := database.GetApiKey(newKeyId)
|
|
test.IsEqualBool(t, ok, true)
|
|
test.IsEqualString(t, key.FriendlyName, "Unnamed key")
|
|
}
|
|
|
|
func TestDeleteKey(t *testing.T) {
|
|
key, ok := database.GetApiKey(newKeyId)
|
|
test.IsEqualBool(t, ok, true)
|
|
test.IsEqualString(t, key.FriendlyName, "Unnamed key")
|
|
result := DeleteKey(newKeyId)
|
|
test.IsEqualBool(t, result, true)
|
|
_, ok = database.GetApiKey(newKeyId)
|
|
test.IsEqualBool(t, ok, false)
|
|
result = DeleteKey("invalid")
|
|
test.IsEqualBool(t, result, false)
|
|
}
|
|
|
|
func TestIsValidApiKey(t *testing.T) {
|
|
test.IsEqualBool(t, IsValidApiKey("", false), false)
|
|
test.IsEqualBool(t, IsValidApiKey("invalid", false), false)
|
|
test.IsEqualBool(t, IsValidApiKey("validkey", false), true)
|
|
key, ok := database.GetApiKey("validkey")
|
|
test.IsEqualBool(t, ok, true)
|
|
test.IsEqualBool(t, key.LastUsed == 0, true)
|
|
test.IsEqualBool(t, IsValidApiKey("validkey", true), true)
|
|
key, ok = database.GetApiKey("validkey")
|
|
test.IsEqualBool(t, ok, true)
|
|
test.IsEqualBool(t, key.LastUsed == 0, false)
|
|
}
|
|
|
|
func TestProcess(t *testing.T) {
|
|
w, r := test.GetRecorder("GET", "/api/auth/friendlyname", nil, nil, nil)
|
|
Process(w, r, maxMemory)
|
|
test.ResponseBodyContains(t, w, "{\"Result\":\"error\",\"ErrorMessage\":\"Unauthorized\"}")
|
|
w, r = test.GetRecorder("GET", "/api/invalid", nil, nil, nil)
|
|
Process(w, r, maxMemory)
|
|
test.ResponseBodyContains(t, w, "Unauthorized")
|
|
w, r = test.GetRecorder("GET", "/api/invalid", nil, []test.Header{{
|
|
Name: "apikey",
|
|
Value: "validkey",
|
|
}}, nil)
|
|
Process(w, r, maxMemory)
|
|
test.ResponseBodyContains(t, w, "Invalid request")
|
|
w, r = test.GetRecorder("GET", "/api/invalid", []test.Cookie{{
|
|
Name: "session_token",
|
|
Value: "validsession",
|
|
}}, nil, nil)
|
|
Process(w, r, maxMemory)
|
|
test.ResponseBodyContains(t, w, "Invalid request")
|
|
}
|
|
|
|
func TestAuthDisabledLogin(t *testing.T) {
|
|
w, r := test.GetRecorder("GET", "/api/auth/friendlyname", nil, nil, nil)
|
|
Process(w, r, maxMemory)
|
|
test.ResponseBodyContains(t, w, "{\"Result\":\"error\",\"ErrorMessage\":\"Unauthorized\"}")
|
|
configuration.Get().Authentication.Method = authentication.Disabled
|
|
w, r = test.GetRecorder("GET", "/api/auth/friendlyname", nil, nil, nil)
|
|
Process(w, r, maxMemory)
|
|
test.ResponseBodyContains(t, w, "{\"Result\":\"error\",\"ErrorMessage\":\"Unauthorized\"}")
|
|
configuration.Get().Authentication.Method = authentication.Internal
|
|
}
|
|
|
|
func TestChangeFriendlyName(t *testing.T) {
|
|
w, r := test.GetRecorder("GET", "/api/auth/friendlyname", nil, []test.Header{{
|
|
Name: "apikey",
|
|
Value: "validkey",
|
|
}}, nil)
|
|
Process(w, r, maxMemory)
|
|
test.ResponseBodyContains(t, w, "Invalid api key provided.")
|
|
w, r = test.GetRecorder("GET", "/api/auth/friendlyname", nil, []test.Header{{
|
|
Name: "apikey", Value: "validkey"}, {
|
|
Name: "apiKeyToModify", Value: "validkey"}}, nil)
|
|
Process(w, r, maxMemory)
|
|
test.IsEqualInt(t, w.Code, 200)
|
|
|
|
key, ok := database.GetApiKey("validkey")
|
|
test.IsEqualBool(t, ok, true)
|
|
test.IsEqualString(t, key.FriendlyName, "Unnamed key")
|
|
w, r = test.GetRecorder("GET", "/api/auth/friendlyname", nil, []test.Header{{
|
|
Name: "apikey", Value: "validkey"}, {
|
|
Name: "apiKeyToModify", Value: "validkey"}, {
|
|
Name: "friendlyName", Value: "NewName"}}, nil)
|
|
Process(w, r, maxMemory)
|
|
test.IsEqualInt(t, w.Code, 200)
|
|
key, ok = database.GetApiKey("validkey")
|
|
test.IsEqualBool(t, ok, true)
|
|
test.IsEqualString(t, key.FriendlyName, "NewName")
|
|
w = httptest.NewRecorder()
|
|
Process(w, r, maxMemory)
|
|
test.IsEqualInt(t, w.Code, 200)
|
|
}
|
|
|
|
func TestDeleteFile(t *testing.T) {
|
|
w, r := test.GetRecorder("GET", "/api/files/delete", nil, []test.Header{{
|
|
Name: "apikey",
|
|
Value: "validkey",
|
|
}}, nil)
|
|
Process(w, r, maxMemory)
|
|
test.ResponseBodyContains(t, w, "Invalid id provided.")
|
|
w, r = test.GetRecorder("GET", "/api/files/delete", nil, []test.Header{{
|
|
Name: "apikey",
|
|
Value: "validkey",
|
|
}, {
|
|
Name: "id",
|
|
Value: "invalid",
|
|
},
|
|
}, nil)
|
|
Process(w, r, maxMemory)
|
|
test.ResponseBodyContains(t, w, "Invalid id provided.")
|
|
file, ok := database.GetMetaDataById("jpLXGJKigM4hjtA6T6sN2")
|
|
test.IsEqualBool(t, ok, true)
|
|
test.IsEqualString(t, file.Id, "jpLXGJKigM4hjtA6T6sN2")
|
|
w, r = test.GetRecorder("GET", "/api/files/delete", nil, []test.Header{{
|
|
Name: "apikey",
|
|
Value: "validkey",
|
|
}, {
|
|
Name: "id",
|
|
Value: "jpLXGJKigM4hjtA6T6sN2",
|
|
},
|
|
}, nil)
|
|
Process(w, r, maxMemory)
|
|
test.IsEqualInt(t, w.Code, 200)
|
|
time.Sleep(time.Second)
|
|
_, ok = database.GetMetaDataById("jpLXGJKigM4hjtA6T6sN2")
|
|
test.IsEqualBool(t, ok, false)
|
|
}
|
|
|
|
func TestUpload(t *testing.T) {
|
|
file, err := os.Open("test/fileupload.jpg")
|
|
test.IsNil(t, err)
|
|
defer file.Close()
|
|
body := &bytes.Buffer{}
|
|
writer := multipart.NewWriter(body)
|
|
part, err := writer.CreateFormFile("file", filepath.Base(file.Name()))
|
|
test.IsNil(t, err)
|
|
io.Copy(part, file)
|
|
writer.WriteField("allowedDownloads", "200")
|
|
writer.WriteField("expiryDays", "10")
|
|
writer.WriteField("password", "12345")
|
|
writer.Close()
|
|
w, r := test.GetRecorder("POST", "/api/files/add", nil, []test.Header{{
|
|
Name: "apikey",
|
|
Value: "validkey",
|
|
}}, body)
|
|
r.Header.Add("Content-Type", writer.FormDataContentType())
|
|
|
|
Process(w, r, maxMemory)
|
|
response, err := io.ReadAll(w.Result().Body)
|
|
test.IsNil(t, err)
|
|
result := models.Result{}
|
|
err = json.Unmarshal(response, &result)
|
|
test.IsNil(t, err)
|
|
test.IsEqualString(t, result.Result, "OK")
|
|
test.IsEqualString(t, result.FileInfo.Size, "3 B")
|
|
test.IsEqualInt(t, result.FileInfo.DownloadsRemaining, 200)
|
|
test.IsNotEqualString(t, result.FileInfo.PasswordHash, "")
|
|
test.IsEqualString(t, result.Url, "http://127.0.0.1:53843/d?id=")
|
|
w, r = test.GetRecorder("POST", "/api/files/add", nil, []test.Header{{
|
|
Name: "apikey",
|
|
Value: "validkey",
|
|
}}, body)
|
|
Process(w, r, maxMemory)
|
|
test.ResponseBodyContains(t, w, "Content-Type isn't multipart/form-data")
|
|
test.IsEqualInt(t, w.Code, 400)
|
|
}
|
|
|
|
func TestList(t *testing.T) {
|
|
w, r := test.GetRecorder("GET", "/api/files/list", nil, []test.Header{{
|
|
Name: "apikey",
|
|
Value: "validkey",
|
|
}}, nil)
|
|
Process(w, r, maxMemory)
|
|
test.IsEqualInt(t, w.Code, 200)
|
|
test.ResponseBodyContains(t, w, "picture.jpg")
|
|
}
|