2013-03-04 13:44:41 -05:00
|
|
|
require 'spec_helper'
|
|
|
|
|
|
|
|
describe Users::OmniauthCallbacksController do
|
|
|
|
|
|
|
|
let(:auth) { {info: {email: 'eviltrout@made.up.email', name: 'Robin Ward', uid: 123456789}, "extra" => {"raw_info" => {} } } }
|
2013-07-04 02:30:13 -04:00
|
|
|
let(:cas_auth) { { 'uid' => 'casuser', extra: { user: 'casuser'} } }
|
|
|
|
|
|
|
|
shared_examples_for "an authenticaton provider" do |provider|
|
|
|
|
context "when #{provider} logins are disabled" do
|
|
|
|
before do
|
|
|
|
SiteSetting.stubs("enable_#{provider}_logins?").returns(false)
|
|
|
|
end
|
|
|
|
|
|
|
|
it "fails" do
|
|
|
|
get :complete, provider: provider
|
|
|
|
response.should_not be_success
|
|
|
|
end
|
|
|
|
|
|
|
|
end
|
|
|
|
|
|
|
|
context "when #{provider} logins are enabled" do
|
|
|
|
before do
|
|
|
|
SiteSetting.stubs("enable_#{provider}_logins?").returns(true)
|
|
|
|
end
|
|
|
|
|
|
|
|
it "succeeds" do
|
|
|
|
get :complete, provider: provider
|
|
|
|
response.should be_success
|
|
|
|
end
|
|
|
|
|
|
|
|
context "and 'invite only' site setting is enabled" do
|
|
|
|
before do
|
|
|
|
SiteSetting.stubs(:invite_only?).returns(true)
|
|
|
|
end
|
|
|
|
|
|
|
|
it "informs the user they are awaiting approval" do
|
|
|
|
xhr :get, :complete, provider: provider, format: :json
|
|
|
|
|
|
|
|
expect(
|
|
|
|
JSON.parse(response.body)['awaiting_approval']
|
|
|
|
).to be_true
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
end
|
|
|
|
|
|
|
|
end
|
|
|
|
|
2013-03-04 13:44:41 -05:00
|
|
|
describe 'invalid provider' do
|
|
|
|
|
|
|
|
it "fails" do
|
|
|
|
request.env["omniauth.auth"] = auth
|
|
|
|
get :complete, provider: 'hackprovider'
|
|
|
|
response.should_not be_success
|
|
|
|
end
|
|
|
|
|
|
|
|
end
|
|
|
|
|
|
|
|
describe 'twitter' do
|
|
|
|
|
|
|
|
before do
|
|
|
|
request.env["omniauth.auth"] = auth
|
|
|
|
end
|
|
|
|
|
2013-07-04 02:30:13 -04:00
|
|
|
it_behaves_like "an authenticaton provider", 'twitter'
|
2013-03-04 13:44:41 -05:00
|
|
|
|
|
|
|
end
|
|
|
|
|
|
|
|
describe 'facebook' do
|
|
|
|
|
|
|
|
before do
|
|
|
|
request.env["omniauth.auth"] = auth
|
|
|
|
end
|
|
|
|
|
2013-07-04 02:30:13 -04:00
|
|
|
it_behaves_like "an authenticaton provider", 'facebook'
|
2013-03-04 13:44:41 -05:00
|
|
|
|
|
|
|
end
|
|
|
|
|
2013-05-23 16:40:50 -04:00
|
|
|
describe 'cas' do
|
|
|
|
|
|
|
|
before do
|
|
|
|
request.env["omniauth.auth"] = cas_auth
|
|
|
|
end
|
|
|
|
|
2013-07-04 02:30:13 -04:00
|
|
|
it_behaves_like "an authenticaton provider", 'cas'
|
|
|
|
|
|
|
|
describe "extracted user data" do
|
|
|
|
before do
|
|
|
|
SiteSetting.stubs(:enable_cas_logins?).returns(true)
|
|
|
|
end
|
|
|
|
|
|
|
|
subject {
|
|
|
|
xhr :get, :complete, provider: 'cas', format: :json
|
|
|
|
OpenStruct.new(JSON.parse(response.body))
|
|
|
|
}
|
|
|
|
|
|
|
|
context "when no user infos are returned by cas" do
|
|
|
|
its(:username) { should eq 'casuser' }
|
|
|
|
its(:name) { should eq 'casuser' }
|
|
|
|
its(:email) { should eq 'casuser' } # No cas_domainname configured!
|
|
|
|
|
|
|
|
context "when cas_domainname is configured" do
|
|
|
|
before do
|
|
|
|
SiteSetting.stubs(:cas_domainname).returns("example.com")
|
|
|
|
end
|
|
|
|
|
|
|
|
its(:email) { should eq 'casuser@example.com' }
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
context "when user infos are returned by cas" do
|
|
|
|
before do
|
|
|
|
request.env["omniauth.auth"] = cas_auth.merge({
|
|
|
|
info: {
|
|
|
|
name: 'Proper Name',
|
|
|
|
email: 'public@example.com'
|
|
|
|
}
|
|
|
|
})
|
|
|
|
end
|
|
|
|
|
|
|
|
its(:username) { should eq 'casuser' }
|
|
|
|
its(:name) { should eq 'Proper Name' }
|
|
|
|
its(:email) { should eq 'public@example.com' }
|
|
|
|
end
|
2013-05-23 16:40:50 -04:00
|
|
|
|
|
|
|
end
|
|
|
|
|
|
|
|
end
|
|
|
|
|
2013-03-04 13:44:41 -05:00
|
|
|
|
|
|
|
describe 'open id handler' do
|
|
|
|
|
|
|
|
before do
|
|
|
|
request.env["omniauth.auth"] = { info: {email: 'eviltrout@made.up.email'}, extra: {identity_url: 'http://eviltrout.com'}}
|
|
|
|
end
|
|
|
|
|
|
|
|
describe "google" do
|
2013-07-04 02:30:13 -04:00
|
|
|
it_behaves_like "an authenticaton provider", 'google'
|
2013-03-04 13:44:41 -05:00
|
|
|
end
|
|
|
|
|
|
|
|
describe "yahoo" do
|
2013-07-04 02:30:13 -04:00
|
|
|
it_behaves_like "an authenticaton provider", 'yahoo'
|
2013-03-04 13:44:41 -05:00
|
|
|
end
|
|
|
|
|
|
|
|
end
|
|
|
|
|
|
|
|
describe 'github' do
|
|
|
|
|
|
|
|
before do
|
|
|
|
request.env["omniauth.auth"] = auth
|
|
|
|
end
|
|
|
|
|
2013-07-04 02:30:13 -04:00
|
|
|
it_behaves_like "an authenticaton provider", 'github'
|
2013-03-04 13:44:41 -05:00
|
|
|
|
|
|
|
end
|
|
|
|
|
|
|
|
describe 'persona' do
|
|
|
|
|
|
|
|
before do
|
|
|
|
request.env["omniauth.auth"] = auth
|
|
|
|
end
|
|
|
|
|
2013-07-04 02:30:13 -04:00
|
|
|
it_behaves_like "an authenticaton provider", 'persona'
|
2013-03-04 13:44:41 -05:00
|
|
|
|
|
|
|
end
|
|
|
|
|
|
|
|
end
|