RubyGems - cassette - Versions diffs - 1.0.2 → 1.0.17 - Mend

cassette 1.0.2 → 1.0.17

Files changed (35) hide show

checksums.yaml +5 -13
data/README.md +125 -106
data/lib/cassette/authentication/authorities.rb +5 -5
data/lib/cassette/authentication/cache.rb +5 -6
data/lib/cassette/authentication/filter.rb +9 -9
data/lib/cassette/authentication/user.rb +4 -4
data/lib/cassette/authentication.rb +9 -9
data/lib/cassette/cache.rb +2 -4
data/lib/cassette/client/cache.rb +12 -12
data/lib/cassette/client.rb +11 -16
data/lib/cassette/errors/not_a_customer.rb +1 -2
data/lib/cassette/errors/not_an_employee.rb +1 -2
data/lib/cassette/errors.rb +8 -8
data/lib/cassette/rubycas/helper.rb +21 -25
data/lib/cassette/rubycas/not_single_sign_out_constraint.rb +1 -2
data/lib/cassette/rubycas/single_sign_out_constraint.rb +6 -7
data/lib/cassette/rubycas.rb +3 -4
data/lib/cassette/version.rb +6 -10
data/lib/cassette.rb +21 -21
data/spec/cas_spec.rb +21 -21
data/spec/cassette/authentication/authorities_spec.rb +82 -0
data/spec/{cas → cassette}/authentication/cache_spec.rb +0 -0
data/spec/{cas → cassette}/authentication/filter_spec.rb +52 -53
data/spec/cassette/authentication/user_spec.rb +70 -0
data/spec/cassette/authentication_spec.rb +84 -0
data/spec/{cas → cassette}/cache_spec.rb +7 -8
data/spec/{cas → cassette}/client/cache_spec.rb +0 -0
data/spec/{cas → cassette}/errors_spec.rb +6 -6
data/spec/config.yml +4 -4
data/spec/integration/cas/client_spec.rb +32 -31
data/spec/spec_helper.rb +7 -7
metadata +57 -57
data/spec/cas/authentication/authorities_spec.rb +0 -82
data/spec/cas/authentication/user_spec.rb +0 -70
data/spec/cas/authentication_spec.rb +0 -84

data/spec/cas/authentication/authorities_spec.rb DELETED Viewed

@@ -1,82 +0,0 @@
-require 'spec_helper'
-describe Cassette::Authentication::Authorities do
-  subject do
-    Cassette::Authentication::Authorities
-  end
-  describe "#has_role?" do
-    let(:input) { "[#{Cassette.config.base_authority}, SAPI, #{Cassette.config.base_authority}_CREATE-USER]" }
-    let(:authorities) { subject.parse(input) }
-    it "adds the application prefix to roles" do
-      expect(authorities.has_role?("CREATE-USER")).to eql(true)
-    end
-    it "ignores role case" do
-      expect(authorities.has_role?("create-user")).to eql(true)
-    end
-    it "replaces underscores with dashes" do
-      expect(authorities.has_role?("create_user")).to eql(true)
-    end
-  end
-  context "with a defined base authority" do
-    let(:base_authority) { "SOMEAPI" }
-    it "stores the base authority" do
-      input = "CUSTOMERAPI"
-      expect(subject.parse(input, base_authority).base).to eql(base_authority)
-    end
-    describe "#has_role?" do
-      let(:input) { "[#{Cassette.config.base_authority}_TEST2, SOMEAPI_TEST]" }
-      it "returns true for a role that is using the base authority" do
-        expect(subject.parse(input, base_authority)).to have_role(:test)
-      end
-      it "returns false for a role that is not using the base authority" do
-        expect(subject.parse(input, base_authority)).not_to have_role(:test2)
-      end
-    end
-  end
-  context "CAS authorities parsing" do
-    it "handles single authority" do
-      input = "CUSTOMERAPI"
-      expect(subject.parse(input).authorities).to eq(%w(CUSTOMERAPI))
-    end
-    it "handles multiple authorities with surrounding []" do
-      input = "[CUSTOMERAPI, SAPI]"
-      expect(subject.parse(input).authorities).to eq(%w(CUSTOMERAPI SAPI))
-    end
-    it "ignores whitespace in multiple authorities" do
-      input = "[CUSTOMERAPI,SAPI]"
-      expect(subject.parse(input).authorities).to eq(%w(CUSTOMERAPI SAPI))
-    end
-    it "returns an empty array when input is nil" do
-      expect(subject.parse(nil).authorities).to eq([])
-    end
-  end
-  context "with authentication disabled" do
-    before { ENV["NOAUTH"] = "true" }
-    after { ENV.delete("NOAUTH") }
-    subject { Cassette::Authentication::Authorities.new("[]") }
-    it "#has_role? returns true for every role" do
-      expect(subject.authorities).to be_empty
-      expect(subject.has_role?(:can_manage)).to eql(true)
-    end
-    it "#has_raw_role? returns true for every role" do
-      expect(subject.authorities).to be_empty
-      expect(subject.has_raw_role?("SAPI_CUSTOMER-CREATOR")).to eql(true)
-    end
-  end
-end

data/spec/cas/authentication/user_spec.rb DELETED Viewed

@@ -1,70 +0,0 @@
-require 'spec_helper'
-describe Cassette::Authentication::User do
-  let(:base_authority) do
-    Cassette.config.base_authority
-  end
-  describe "#initialize" do
-    context "without a config" do
-      it "forwards authorities parsing" do
-        expect(Cassette::Authentication::Authorities).to receive(:new).with("[CUSTOMERAPI, SAPI]", nil)
-        Cassette::Authentication::User.new(login: "john.doe", name: "John Doe", authorities: "[CUSTOMERAPI, SAPI]")
-      end
-    end
-    context "with a config" do
-      it "forwards authorities parsing passing along the base authority" do
-        config = object_double(Cassette.config)
-        expect(config).to receive(:base_authority).and_return("TESTAPI")
-        expect(Cassette::Authentication::Authorities).to receive(:new).with("[CUSTOMERAPI, SAPI]", "TESTAPI")
-        Cassette::Authentication::User.new(login: "john.doe", name: "John Doe", authorities: "[CUSTOMERAPI, SAPI]", config: config)
-      end
-    end
-  end
-  describe "#has_role?" do
-    let (:user) do
-      Cassette::Authentication::User.new(login: "john.doe", name: "John Doe",
-        authorities: "[#{base_authority}, SAPI, #{base_authority}_CREATE-USER]")
-    end
-    it "adds the application prefix to roles" do
-      expect(user.has_role?("CREATE-USER")).to eql(true)
-    end
-    it "ignores role case" do
-      expect(user.has_role?("create-user")).to eql(true)
-    end
-    it "replaces underscores with dashes" do
-      expect(user.has_role?("create_user")).to eql(true)
-    end
-  end
-  context "user types" do
-    context "#employee?" do
-      it "returns true when user is an employee" do
-        expect(Cassette::Authentication::User.new(type: "employee")).to be_employee
-        expect(Cassette::Authentication::User.new(type: "Employee")).to be_employee
-        expect(Cassette::Authentication::User.new(type: :employee)).to be_employee
-        expect(Cassette::Authentication::User.new(type: "customer")).not_to be_employee
-        expect(Cassette::Authentication::User.new(type: nil)).not_to be_employee
-        expect(Cassette::Authentication::User.new(type: "")).not_to be_employee
-      end
-    end
-    context "#customer?" do
-      it "returns true when the user is a customer" do
-        expect(Cassette::Authentication::User.new(type: "customer")).to be_customer
-        expect(Cassette::Authentication::User.new(type: "Customer")).to be_customer
-        expect(Cassette::Authentication::User.new(type: :customer)).to be_customer
-        expect(Cassette::Authentication::User.new(type: "employee")).not_to be_customer
-        expect(Cassette::Authentication::User.new(type: nil)).not_to be_customer
-        expect(Cassette::Authentication::User.new(type: "")).not_to be_customer
-      end
-    end
-  end
-end

data/spec/cas/authentication_spec.rb DELETED Viewed

@@ -1,84 +0,0 @@
-# encoding: utf-8
-require "spec_helper"
-describe Cassette::Authentication do
-  let(:cache) { instance_double(Cassette::Authentication::Cache) }
-  let(:http)  { class_double(Cassette) }
-  subject do
-    Cassette::Authentication.new(cache: cache, http_client: http)
-  end
-  describe "#ticket_user" do
-    context "when cached" do
-      it "returns the cached value when cached" do
-        cached = double('cached')
-        expect(cache).to receive(:fetch_authentication) do |ticket, &block|
-          expect(ticket).to eql("ticket")
-          expect(block).to be_present
-          cached
-        end
-        expect(subject.ticket_user("ticket")).to eql(cached)
-      end
-    end
-    context "when not cached" do
-      before do
-        expect(cache).to receive(:fetch_authentication) do |ticket, &block|
-          block.call
-        end
-      end
-      it "raises a Forbidden exception on any exceptions" do
-        allow(http).to receive(:post).with(anything, anything).and_raise(Cassette::Errors::BadRequest)
-        expect { subject.ticket_user("ticket") }.to raise_error(Cassette::Errors::Forbidden)
-      end
-      context "with a failed CAS response" do
-        before do
-          allow(http).to receive(:post).with(anything, anything)
-            .and_return(OpenStruct.new(body: fixture("cas/fail.xml")))
-        end
-        it "returns nil" do
-          expect(subject.ticket_user("ticket")).to be_nil
-        end
-      end
-      context "with a successful CAS response" do
-        before do
-          allow(http).to receive(:post).with(anything, anything)
-            .and_return(OpenStruct.new(body: fixture("cas/success.xml")))
-        end
-        it "returns an User" do
-          expect(subject.ticket_user("ticket")).to be_instance_of(Cassette::Authentication::User)
-        end
-      end
-    end
-  end
-  describe "#validate_ticket" do
-    it "raises a authorization required error when no ticket is provided" do
-      expect { subject.validate_ticket(nil) }.to raise_error(Cassette::Errors::AuthorizationRequired)
-    end
-    it "raises a authorization required error when ticket is blank" do
-      expect { subject.validate_ticket("") }.to raise_error(Cassette::Errors::AuthorizationRequired)
-    end
-    it "raises a forbidden error when the associated user is not found" do
-      expect(subject).to receive(:ticket_user).with("ticket", Cassette.config.service).and_return(nil)
-      expect { subject.validate_ticket("ticket") }.to raise_error(Cassette::Errors::Forbidden)
-    end
-    it "returns the associated user" do
-      user = double('User')
-      expect(subject).to receive(:ticket_user).with("ticket", Cassette.config.service).and_return(user)
-      expect(subject.validate_ticket("ticket")).to eql(user)
-    end
-  end
-end