git_wit 0.0.1

data/test/functional/git_wit/git_controller_test.rb

@@ -0,0 +1,10 @@
+require 'test_helper'
+
+module GitWit
+  class GitControllerTest < ActionController::TestCase
+    # test "should get index" do
+    #   get :index
+    #   assert_response :success
+    # end
+  end
+end

data/test/git_wit_test.rb

@@ -0,0 +1,7 @@
+require 'test_helper'
+
+class GitWitTest < ActiveSupport::TestCase
+  test "should be a module" do
+    assert_kind_of Module, GitWit
+  end
+end

data/test/integration/navigation_test.rb

@@ -0,0 +1,10 @@
+require 'test_helper'
+
+class NavigationTest < ActionDispatch::IntegrationTest
+  fixtures :all
+
+  # test "the truth" do
+  #   assert true
+  # end
+end
+

data/test/test_helper.rb

@@ -0,0 +1,18 @@
+# Configure Rails Environment
+ENV["RAILS_ENV"] = "test"
+
+require File.expand_path("../dummy/config/environment.rb",  __FILE__)
+require "rails/test_help"
+
+Rails.backtrace_cleaner.remove_silencers!
+
+# Load support files
+Dir["#{File.dirname(__FILE__)}/support/**/*.rb"].each { |f| require f }
+
+# Load fixtures from the engine
+if ActiveSupport::TestCase.method_defined?(:fixture_path=)
+  ActiveSupport::TestCase.fixture_path = File.expand_path("../fixtures", __FILE__)
+end
+
+require "fileutils"
+FileUtils.mkdir_p Rails.root.join("tmp").to_s

data/test/unit/auth_test.rb

@@ -0,0 +1,56 @@
+require 'test_helper'
+
+class AuthTest < ActiveSupport::TestCase
+  def setup
+    GitWit.stash_config
+    GitWit.default_config!
+  end
+
+  def teardown
+    GitWit.restore_config
+  end
+
+  test "should use username as user model for authentication by default" do
+    assert_equal "example", GitWit.user_for_authentication("example")
+  end
+
+  test "should allow custom user lookups for authentication" do
+    GitWit.config.user_for_authentication = ->(username) { "xxxx" }
+    assert_equal "xxxx", GitWit.user_for_authentication("example")
+  end
+
+  test "should always fail authentication by default" do
+    assert !GitWit.authenticate("example", "password")
+  end
+
+  test "should allow custom user authentication" do
+    GitWit.config.authenticate = ->(user, password) { user == password }
+    assert !GitWit.authenticate("example", "password")
+    assert GitWit.authenticate("example", "example")
+    assert GitWit.authenticate("password", "password")
+  end
+
+  test "should not authorize read by default" do
+    assert !GitWit.authorize_read("example", "test.git")
+  end
+
+  test "should allow custom read authorization" do
+    GitWit.config.authorize_read = ->(user, repository) do
+      repository == "#{user}.git"
+    end
+    assert !GitWit.authorize_read("example", "test.git")
+    assert GitWit.authorize_read("example", "example.git")
+  end
+
+  test "should not authorize write by default" do
+    assert !GitWit.authorize_write("example", "test.git")
+  end
+
+  test "should allow custom write authorization" do
+    GitWit.config.authorize_write = ->(user, repository) do
+      repository == "#{user}.git"
+    end
+    assert !GitWit.authorize_write("example", "test.git")
+    assert GitWit.authorize_write("example", "example.git")
+  end
+end

data/test/unit/authorized_keys_test.rb

@@ -0,0 +1,57 @@
+require 'test_helper'
+
+class AuthorizedKeysTest < ActiveSupport::TestCase
+  def setup
+    GitWit.stash_config
+    GitWit.default_config!
+    GitWit.config.ssh_user = `whoami`.chomp
+    @tmp_keys_path = Rails.root.join("tmp", "authorized_keys").to_s
+  end
+
+  def teardown
+    GitWit.restore_config
+    File.unlink @tmp_keys_path if File.exist? @tmp_keys_path
+  end
+
+  test "should calculate appropriate authorized_keys path for ssh_user" do
+    app_user_keys_path = File.expand_path("~/.ssh/authorized_keys")
+    assert_equal app_user_keys_path, GitWit.authorized_keys_path
+  end
+
+  test "should accept an absolute path for authorized_keys_path in config" do
+    GitWit.config.authorized_keys_path = @tmp_keys_path
+    assert_equal @tmp_keys_path, GitWit.authorized_keys_path
+  end
+
+  test "should generate authorized_keys from key map" do
+    GitWit.config.authorized_keys_path = @tmp_keys_path
+    GitWit.regenerate_authorized_keys(
+      "one" => ["ssh-rsa fakekey1 one@fake1", "ssh-rsa fakekey2 one@fake2"], 
+      "two" => ["ssh-rsa fakekey3 two@fake"])
+    key_file = GitWit.authorized_keys_file
+    assert_equal 3, key_file.keys.length
+    assert_equal 2, key_file.keys.map(&:options).map(&:to_s).uniq.length
+  end
+
+  test "should be able to add keys one at a time" do
+    GitWit.config.authorized_keys_path = @tmp_keys_path
+    key_file = GitWit.authorized_keys_file
+    GitWit.add_authorized_key "one", "ssh-rsa fakekey1 one@fake1"
+    assert_equal 1, key_file.keys.length
+    GitWit.add_authorized_key "one", "ssh-rsa fakekey2 one@fake2"
+    assert_equal 2, key_file.keys.length
+  end
+
+  test "should be able to remove keys one at a time" do
+    GitWit.config.authorized_keys_path = @tmp_keys_path
+    GitWit.regenerate_authorized_keys(
+      "one" => ["ssh-rsa fakekey1 one@fake1", "ssh-rsa fakekey2 one@fake2"], 
+      "two" => ["ssh-rsa fakekey3 two@fake"])
+    key_file = GitWit.authorized_keys_file
+    assert_equal 3, key_file.keys.length
+    GitWit.remove_authorized_key "ssh-rsa fakekey1 one@fake1"
+    assert_equal 2, key_file.keys.length
+    GitWit.remove_authorized_key "ssh-rsa fakekey2 one@fake2"
+    assert_equal 1, key_file.keys.length
+  end
+end

data/test/unit/config_test.rb

@@ -0,0 +1,42 @@
+require 'test_helper'
+
+class ConfigTest < ActiveSupport::TestCase
+  def setup
+    GitWit.stash_config
+    GitWit.default_config!
+  end
+
+  def teardown
+    GitWit.restore_config
+  end
+
+  test "should expose a configuration interface" do
+    assert_kind_of Hash, GitWit.config
+    assert !GitWit.config.insecure_write
+    GitWit.configure do |config|
+      config.insecure_write = true
+    end
+    assert GitWit.config.insecure_write
+  end
+
+  test "should empty the config when reset" do
+    GitWit.reset_config!
+    assert !GitWit.config.present?
+  end
+
+  test "should load reasonable config defaults" do
+    assert_kind_of Hash, GitWit.config
+    assert GitWit.config.present?
+    assert_kind_of String, GitWit.config.realm
+    assert_kind_of String, GitWit.config.repositories_path
+    assert !GitWit.config.insecure_write
+    assert !GitWit.config.insecure_auth
+  end
+
+  test "should expose important config parameters directly" do
+    %w(repositories_path ssh_user realm git_http_backend_path 
+      insecure_write insecure_auth).each do |p|
+      assert GitWit.respond_to?(p.to_sym)
+    end
+  end
+end

data/test/unit/shell_test.rb

@@ -0,0 +1,89 @@
+require 'test_helper'
+
+class ShellTest < ActiveSupport::TestCase
+  def setup
+    GitWit.stash_config
+    GitWit.default_config!
+  end
+
+  def teardown
+    GitWit.restore_config
+  end
+
+  test "should use RAILS_ROOT env variable if given" do
+    old_root = ENV.delete "RAILS_ROOT"
+
+    ENV["RAILS_ROOT"] = "/example/rails/app"
+    assert_equal ENV["RAILS_ROOT"], GitWit::Shell.rails_root
+
+    ENV["RAILS_ROOT"] = old_root
+  end
+
+  test "should use BUNDLE_GEMFILE env variable if no rails root" do
+    old_root = ENV.delete "RAILS_ROOT"
+    old_bundle = ENV.delete "BUNDLE_GEMFILE"
+
+    ENV["BUNDLE_GEMFILE"] = "/another/rails/app/Gemfile"
+    assert_equal "/another/rails/app", GitWit::Shell.rails_root
+
+    ENV["RAILS_ROOT"] = old_root
+    ENV["BUNDLE_GEMFILE"] = old_bundle
+  end
+
+  test "should use current directory if no RAILS_ROOT or BUNDLE_GEMFILE given" do
+    old_root = ENV.delete "RAILS_ROOT"
+    old_bundle = ENV.delete "BUNDLE_GEMFILE"
+
+    tmp_dir = Rails.root.join("tmp").to_s
+    assert Dir.exist?(tmp_dir)
+    Dir.chdir(tmp_dir) do
+      assert_equal tmp_dir, GitWit::Shell.rails_root
+    end
+
+    ENV["RAILS_ROOT"] = old_root
+    ENV["BUNDLE_GEMFILE"] = old_bundle
+  end
+
+  test "should deduce the app user from file ownership of rails root" do
+    old_root = ENV.delete "RAILS_ROOT"
+
+    ENV["RAILS_ROOT"] = Rails.root.to_s
+    assert_equal Process.uid, GitWit::Shell.app_user
+
+    ENV["RAILS_ROOT"] = old_root
+  end
+
+  test "should know if it's running as a given user" do
+    assert GitWit::Shell.running_as?(Process.uid)
+  end
+
+  test "should parse git commands into command and repository path" do
+    ENV["SSH_ORIGINAL_COMMAND"] = "#{GitWit::Shell::SHELL_COMMANDS.first} 'example.git'"
+    cmd_repo = GitWit::Shell.parse_ssh_original_command
+    assert_equal 2, cmd_repo.length
+    assert_equal GitWit::Shell::SHELL_COMMANDS.first, cmd_repo.first
+    assert_equal "example.git", cmd_repo.last
+    ENV.delete "SSH_ORIGINAL_COMMAND"
+  end
+
+  test "should authenticate by only confirming that a user exists" do
+    GitWit.config.user_for_authentication = ->(username) { "xxxx" }
+    GitWit.config.authenticate = ->(user, password) { raise "tried auth" }
+    assert_nothing_raised do
+      assert_equal "xxxx", GitWit::Shell.authenticate("example")
+    end
+    GitWit.config.user_for_authentication = ->(username) { nil }
+    assert_nothing_raised do
+      assert_nil GitWit::Shell.authenticate("example")
+    end
+  end
+
+  test "should authorize read/write based on git command given" do
+    GitWit.config.authorize_write = ->(user, repository) { user == "w" }
+    GitWit.config.authorize_read = ->(user, repository) { user == "r" }
+    assert GitWit::Shell.authorize("git-receive-pack", "w", "example.git")
+    assert !GitWit::Shell.authorize("git-receive-pack", "r", "example.git")
+    assert !GitWit::Shell.authorize("git-upload-pack", "w", "example.git")
+    assert GitWit::Shell.authorize("git-upload-pack", "r", "example.git")
+  end
+end