googleauth 0.5.1 → 0.11.0

data/spec/googleauth/signet_spec.rb

@@ -27,45 +27,108 @@
 # (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
 # OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 
-spec_dir = File.expand_path(File.join(File.dirname(__FILE__)))
-$LOAD_PATH.unshift(spec_dir)
+spec_dir = File.expand_path File.join(File.dirname(__FILE__))
+$LOAD_PATH.unshift spec_dir
 $LOAD_PATH.uniq!
 
-require 'apply_auth_examples'
-require 'googleauth/signet'
-require 'jwt'
-require 'openssl'
-require 'spec_helper'
+require "apply_auth_examples"
+require "googleauth/signet"
+require "jwt"
+require "openssl"
+require "spec_helper"
 
 describe Signet::OAuth2::Client do
-  before(:example) do
-    @key = OpenSSL::PKey::RSA.new(2048)
+  before :example do
+    @key = OpenSSL::PKey::RSA.new 2048
     @client = Signet::OAuth2::Client.new(
-      token_credential_uri: 'https://accounts.google.com/o/oauth2/token',
-      scope: 'https://www.googleapis.com/auth/userinfo.profile',
-      issuer: 'app@example.com',
-      audience: 'https://accounts.google.com/o/oauth2/token',
-      signing_key: @key)
+      token_credential_uri: "https://oauth2.googleapis.com/token",
+      scope:                "https://www.googleapis.com/auth/userinfo.profile",
+      issuer:               "app@example.com",
+      audience:             "https://oauth2.googleapis.com/token",
+      signing_key:          @key
+    )
   end
 
-  def make_auth_stubs(opts)
-    access_token = opts[:access_token] || ''
-    body = MultiJson.dump('access_token' => access_token,
-                          'token_type' => 'Bearer',
-                          'expires_in' => 3600)
+  def make_auth_stubs opts
+    access_token = opts[:access_token] || ""
+    body = MultiJson.dump("access_token" => access_token,
+                          "token_type"   => "Bearer",
+                          "expires_in"   => 3600)
     blk = proc do |request|
-      params = Addressable::URI.form_unencode(request.body)
-      _claim, _header = JWT.decode(params.assoc('assertion').last,
-                                   @key.public_key)
+      params = Addressable::URI.form_unencode request.body
+      _claim, _header = JWT.decode(params.assoc("assertion").last,
+                                   @key.public_key, true,
+                                   algorithm: "RS256")
     end
-    stub_request(:post, 'https://accounts.google.com/o/oauth2/token')
-      .with(body: hash_including(
-        'grant_type' => 'urn:ietf:params:oauth:grant-type:jwt-bearer'),
-            &blk)
-      .to_return(body: body,
-                 status: 200,
-                 headers: { 'Content-Type' => 'application/json' })
+    with_params = { body: hash_including(
+      "grant_type" => "urn:ietf:params:oauth:grant-type:jwt-bearer"
+    ) }
+    with_params[:headers] = { "User-Agent" => opts[:user_agent] } if opts[:user_agent]
+    stub_request(:post, "https://oauth2.googleapis.com/token")
+      .with(with_params, &blk)
+      .to_return(body:    body,
+                 status:  200,
+                 headers: { "Content-Type" => "application/json" })
   end
 
-  it_behaves_like 'apply/apply! are OK'
+  it_behaves_like "apply/apply! are OK"
+
+  describe "#configure_connection" do
+    it "honors default_connection" do
+      token = "1/abcdef1234567890"
+      stub = make_auth_stubs access_token: token, user_agent: "RubyRocks/1.0"
+      conn = Faraday.new headers: { "User-Agent" => "RubyRocks/1.0" }
+      @client.configure_connection default_connection: conn
+      md = { foo: "bar" }
+      @client.apply! md
+      want = { foo: "bar", authorization: "Bearer #{token}" }
+      expect(md).to eq(want)
+      expect(stub).to have_been_requested
+    end
+
+    it "honors connection_builder" do
+      token = "1/abcdef1234567890"
+      stub = make_auth_stubs access_token: token, user_agent: "RubyRocks/2.0"
+      connection_builder = proc do
+        Faraday.new headers: { "User-Agent" => "RubyRocks/2.0" }
+      end
+      @client.configure_connection connection_builder: connection_builder
+      md = { foo: "bar" }
+      @client.apply! md
+      want = { foo: "bar", authorization: "Bearer #{token}" }
+      expect(md).to eq(want)
+      expect(stub).to have_been_requested
+    end
+  end
+
+  describe "#fetch_access_token!" do
+    it "retries when orig_fetch_access_token! raises Signet::RemoteServerError" do
+      mocked_responses = [:raise, :raise, "success"]
+      allow(@client).to receive(:orig_fetch_access_token!).exactly(3).times do
+        response = mocked_responses.shift
+        response == :raise ? raise(Signet::RemoteServerError) : response
+      end
+      expect(@client.fetch_access_token!).to eq("success")
+    end
+
+    it "raises when the max retry count is exceeded" do
+      mocked_responses = [:raise, :raise, :raise, :raise, :raise, :raise, "success"]
+      allow(@client).to receive(:orig_fetch_access_token!).exactly(6).times do
+        response = mocked_responses.shift
+        response == :raise ? raise(Signet::RemoteServerError) : response
+      end
+      expect { @client.fetch_access_token! }.to raise_error Signet::AuthorizationError
+    end
+
+    it "does not retry and raises right away if it encounters a Signet::AuthorizationError" do
+      allow(@client).to receive(:orig_fetch_access_token!).at_most(:once)
+        .and_raise(Signet::AuthorizationError.new("Some Message"))
+      expect { @client.fetch_access_token! }.to raise_error Signet::AuthorizationError
+    end
+
+    it "does not retry and raises right away if it encounters a Signet::ParseError" do
+      allow(@client).to receive(:orig_fetch_access_token!).at_most(:once).and_raise(Signet::ParseError)
+      expect { @client.fetch_access_token! }.to raise_error Signet::ParseError
+    end
+  end
 end

data/spec/googleauth/stores/file_token_store_spec.rb

@@ -27,32 +27,31 @@
 # (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
 # OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 
-spec_dir = File.expand_path(File.join(File.dirname(__FILE__)))
-$LOAD_PATH.unshift(spec_dir)
+spec_dir = File.expand_path File.join(File.dirname(__FILE__))
+$LOAD_PATH.unshift spec_dir
 $LOAD_PATH.uniq!
 
-require 'googleauth'
-require 'googleauth/stores/file_token_store'
-require 'spec_helper'
-require 'fakefs/safe'
-require 'fakefs/spec_helpers'
-require 'googleauth/stores/store_examples'
+require "googleauth"
+require "googleauth/stores/file_token_store"
+require "spec_helper"
+require "fakefs/safe"
+require "fakefs/spec_helpers"
+require "googleauth/stores/store_examples"
 
 module FakeFS
   class File
     # FakeFS doesn't implement. And since we don't need to actually lock,
     # just stub out...
-    def flock(*)
-    end
+    def flock *; end
   end
 end
 
 describe Google::Auth::Stores::FileTokenStore do
   include FakeFS::SpecHelpers
 
-  let(:store) do
-    Google::Auth::Stores::FileTokenStore.new(file: '/tokens.yaml')
+  let :store do
+    Google::Auth::Stores::FileTokenStore.new file: "/tokens.yaml"
   end
 
-  it_behaves_like 'token store'
+  it_behaves_like "token store"
 end

data/spec/googleauth/stores/redis_token_store_spec.rb

@@ -27,24 +27,24 @@
 # (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
 # OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 
-spec_dir = File.expand_path(File.join(File.dirname(__FILE__)))
-$LOAD_PATH.unshift(spec_dir)
+spec_dir = File.expand_path File.join(File.dirname(__FILE__))
+$LOAD_PATH.unshift spec_dir
 $LOAD_PATH.uniq!
 
-require 'googleauth'
-require 'googleauth/stores/redis_token_store'
-require 'spec_helper'
-require 'fakeredis/rspec'
-require 'googleauth/stores/store_examples'
+require "googleauth"
+require "googleauth/stores/redis_token_store"
+require "spec_helper"
+require "fakeredis/rspec"
+require "googleauth/stores/store_examples"
 
 describe Google::Auth::Stores::RedisTokenStore do
-  let(:redis) do
+  let :redis do
     Redis.new
   end
 
-  let(:store) do
-    Google::Auth::Stores::RedisTokenStore.new(redis: redis)
+  let :store do
+    Google::Auth::Stores::RedisTokenStore.new redis: redis
   end
 
-  it_behaves_like 'token store'
+  it_behaves_like "token store"
 end

data/spec/googleauth/stores/store_examples.rb

@@ -27,32 +27,32 @@
 # (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
 # OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 
-spec_dir = File.expand_path(File.join(File.dirname(__FILE__)))
-$LOAD_PATH.unshift(spec_dir)
+spec_dir = File.expand_path File.join(File.dirname(__FILE__))
+$LOAD_PATH.unshift spec_dir
 $LOAD_PATH.uniq!
 
-require 'spec_helper'
+require "spec_helper"
 
-shared_examples 'token store' do
-  before(:each) do
-    store.store('default', 'test')
+shared_examples "token store" do
+  before :each do
+    store.store "default", "test"
   end
 
-  it 'should return a stored value' do
-    expect(store.load('default')).to eq 'test'
+  it "should return a stored value" do
+    expect(store.load("default")).to eq "test"
   end
 
-  it 'should return nil for missing tokens' do
-    expect(store.load('notavalidkey')).to be_nil
+  it "should return nil for missing tokens" do
+    expect(store.load("notavalidkey")).to be_nil
   end
 
-  it 'should return nil for deleted tokens' do
-    store.delete('default')
-    expect(store.load('default')).to be_nil
+  it "should return nil for deleted tokens" do
+    store.delete "default"
+    expect(store.load("default")).to be_nil
   end
 
-  it 'should save overwrite values on store' do
-    store.store('default', 'test2')
-    expect(store.load('default')).to eq 'test2'
+  it "should save overwrite values on store" do
+    store.store "default", "test2"
+    expect(store.load("default")).to eq "test2"
   end
 end