kensa 1.1.4 → 1.2.0rc1

data/test/provision_response_check_test.rb

@@ -1,72 +0,0 @@
-require 'test/helper'
-
-class ProvisionResponseCheckTest < Test::Unit::TestCase
-  include Heroku::Kensa
-
-  def check ; ProvisionResponseCheck ; end
-
-  setup do
-    @response = { "id" => "123" }
-    @data = Manifest.new.skeleton.merge(:provision_response => @response)
-    @data['api']['config_vars'] << "MYADDON_CONFIG"
-  end
-
-  test "is valid if no errors" do
-    assert_valid
-  end
-
-  test "has an id" do
-    @response.delete("id")
-    assert_invalid
-  end
-
-  describe "when config is present" do
-
-    test "is a hash" do
-      @response["config"] = ""
-      assert_invalid
-    end
-
-    test "each key is previously set in the manifest" do
-      @response["config"] = { "MYSQL_URL" => "http://..." }
-      assert_invalid
-    end
-
-    test "each value is a string" do
-      @response["config"] = { "MYADDON_URL" => {} }
-      assert_invalid
-    end
-
-    test "asserts _URL vars are valid URIs" do
-      @response["config"] = { "MYADDON_URL" => "abc:" }
-      assert_invalid
-    end
-
-    test "asserts _URL vars have a host" do
-      @response["config"] = { "MYADDON_URL" => "path" }
-      assert_invalid
-    end
-
-    test "asserts _URL vars have a scheme" do
-      @response["config"] = { "MYADDON_URL" => "//host/path" }
-      assert_invalid
-    end
-
-    test "doesn't run URI test against other vars" do
-      @response["config"] = { "MYADDON_CONFIG" => "abc:" }
-      assert_valid
-    end
-
-    test "doesn't allow localhost URIs on production" do
-      @data[:env] = 'production'
-      @response["config"] = { "MYADDON_URL" => "http://localhost/abc" }
-      assert_invalid
-    end
-
-    test "is valid otherwise" do
-      @response["config"] = { "MYADDON_URL" => "http://localhost/abc" }
-      assert_valid
-    end
-  end
-
-end

data/test/resources/runner.rb

@@ -1 +0,0 @@
-exit(1) if ARGV.first == 'fail'

data/test/resources/server.rb

@@ -1,207 +0,0 @@
-require 'rubygems'
-require 'sinatra'
-require 'json'
-
-enable :sessions
-
-helpers do
-  def heroku_only!
-    unless auth_heroku?
-      response['WWW-Authenticate'] = %(Basic realm="Kensa Test Server")
-      unauthorized!(401)
-    end
-  end
-
-  def auth_heroku?
-    @auth ||=  Rack::Auth::Basic::Request.new(request.env)
-    @auth.provided? && @auth.basic? && @auth.credentials && @auth.credentials == ['myaddon', 'secret']
-  end
-
-  def unauthorized!(status=403)
-    throw(:halt, [status, "Not authorized\n"])
-  end
-
-  def make_token
-    Digest::SHA1.hexdigest([params[:id], 'SSO_SALT', params[:timestamp]].join(':'))
-  end
-  
-  def login(heroku_user=true)
-    session.clear
-    session[:logged_in] = true
-    session[:heroku]    = heroku_user
-    redirect '/'
-  end
-end
-
-post '/working/heroku/resources' do
-  heroku_only!
-  { :id => 123 }.to_json
-end
-
-post '/invalid-json/heroku/resources' do
-  heroku_only!
-  'invalidjson'
-end
-
-post '/invalid-response/heroku/resources' do
-  heroku_only!
-  nil.to_json
-end
-
-post '/invalid-status/heroku/resources' do
-  heroku_only!
-  status 422
-  { :id => 123 }.to_json
-end
-
-post '/invalid-missing-id/heroku/resources' do
-  heroku_only!
-  { :noid => 123 }.to_json
-end
-
-post '/invalid-missing-auth/heroku/resources' do
-  { :id => 123 }.to_json
-end
-
-
-put '/working/heroku/resources/:id' do
-  heroku_only!
-  {}.to_json
-end
-
-put '/invalid-missing-auth/heroku/resources/:id' do
-  { :id => 123 }.to_json
-end
-
-put '/invalid-status/heroku/resources/:id' do
-  heroku_only!
-  status 422
-  {}.to_json
-end
-
-
-delete '/working/heroku/resources/:id' do
-  heroku_only!
-  "Ok"
-end
-
-def sso
-  unauthorized! unless params[:id] && params[:token]
-  unauthorized! unless params[:timestamp].to_i > (Time.now-60*2).to_i
-  unauthorized! unless params[:token] == make_token
-  response.set_cookie('heroku-nav-data', params['nav-data'])
-  login
-end
-
-get '/working/heroku/resources/:id' do
-  sso
-end
-
-post '/working/heroku/resources/:id/sso' do
-  sso
-end
-
-def notoken
-  unauthorized! unless params[:id] && params[:token]
-  unauthorized! unless params[:timestamp].to_i > (Time.now-60*2).to_i
-  response.set_cookie('heroku-nav-data', params['nav-data'])
-  login
-end
-
-get '/notoken/heroku/resources/:id' do
-  notoken
-end
-
-post '/notoken/heroku/resources/:id/sso' do
-  notoken
-end
-
-def notimestamp
-  unauthorized! unless params[:id] && params[:token]
-  unauthorized! unless params[:token] == make_token
-  response.set_cookie('heroku-nav-data', params['nav-data'])
-  login
-end
-
-get '/notimestamp/heroku/resources/:id' do
-  notimestamp
-end
-
-post '/notimestamp/heroku/resources/:id/sso' do
-  notimestamp
-end
-
-def nolayout
-  unauthorized! unless params[:id] && params[:token]
-  unauthorized! unless params[:timestamp].to_i > (Time.now-60*2).to_i
-  unauthorized! unless params[:token] == make_token
-  response.set_cookie('heroku-nav-data', params['nav-data'])
-  login(false)
-end
-
-get '/nolayout/heroku/resources/:id' do
-  nolayout
-end
-
-post '/nolayout/heroku/resources/:id/sso' do
-  nolayout
-end
-
-def nocookie
-  unauthorized! unless params[:id] && params[:token]
-  unauthorized! unless params[:timestamp].to_i > (Time.now-60*2).to_i
-  unauthorized! unless params[:token] == make_token
-  login
-end
-
-get '/nocookie/heroku/resources/:id' do
-  nocookie
-end
-
-post '/nocookie/heroku/resources/:id/sso' do
-  nocookie
-end
-
-def badcookie
-  unauthorized! unless params[:id] && params[:token]
-  unauthorized! unless params[:timestamp].to_i > (Time.now-60*2).to_i
-  unauthorized! unless params[:token] == make_token
-  response.set_cookie('heroku-nav-data', 'wrong value')
-  login
-end
-
-get '/badcookie/heroku/resources/:id' do
-  badcookie
-end
-
-post '/badcookie/heroku/resources/:id/sso' do
-  badcookie
-end
-
-def sso_user
-  head 404 unless params[:user] == 'username@example.com'
-  sso
-end
-
-get '/user/heroku/resources/:id' do
-  sso_user
-end
-
-post '/user/heroku/resources/:id/sso' do
-  sso_user
-end
-
-get '/' do
-  unauthorized! unless session[:logged_in]
-  haml :index
-end
-
-__END__
-
-@@ index
-%html
-  %body
-    - if session[:heroku]
-      #heroku-header
-        %h1 Heroku
-    %h1 Sample Addon

data/test/sso_check_test.rb

@@ -1,59 +0,0 @@
-require 'test/helper'
-
-class SsoCheckTest < Test::Unit::TestCase
-  include Heroku::Kensa
-
-  setup do
-    @data = Manifest.new.skeleton.merge :id => 123
-    @data['api']['sso_salt'] = 'SSO_SALT'
-  end
-
-  def check ; SsoCheck ; end
-
-  ['POST', 'GET'].each do |method|
-    context "via #{method}" do
-      setup { @data['api']['sso'] = method }
-
-      test "working sso request" do
-        @data['api']['test'] += "working"
-        assert_valid
-      end
-
-      test "rejects bad token" do
-        @data['api']['test'] += "notoken"
-        assert_invalid
-      end
-
-      test "rejects old timestamp" do
-        @data['api']['test'] += "notimestamp"
-        assert_invalid
-      end
-
-      test "reject omitted sso salt" do
-        @data['api'].delete 'sso_salt'
-        @data['api']['test'] += "working"
-        assert_invalid
-      end
-
-      test "reject missing heroku layout" do
-        @data['api']['test'] += "nolayout"
-        assert_invalid
-      end
-
-      test "reject missing cookie" do
-        @data['api']['test'] += "nocookie"
-        assert_invalid
-      end
-
-      test "reject invalid cookie value" do
-        @data['api']['test'] += "badcookie"
-        assert_invalid
-      end
-
-      test "sends user param" do
-        @data['api']['test'] += "user"
-        assert_valid
-      end
-    end
-  end
-end