omniauth-ldap 1.0.5 → 2.3.1

data/spec/omniauth/strategies/ldap_spec.rb

@@ -1,194 +0,0 @@
-require 'spec_helper'
-describe "OmniAuth::Strategies::LDAP" do
-  # :title => "My LDAP",
-  # :host => '10.101.10.1',
-  # :port => 389,
-  # :method => :plain,
-  # :base => 'dc=intridea, dc=com',
-  # :uid => 'sAMAccountName',
-  # :name_proc => Proc.new {|name| name.gsub(/@.*$/,'')}
-  # :bind_dn => 'default_bind_dn'
-  # :password => 'password'
-  class MyLdapProvider < OmniAuth::Strategies::LDAP; end
-
-  let(:app) do
-    Rack::Builder.new {
-      use OmniAuth::Test::PhonySession
-      use MyLdapProvider, :name => 'ldap', :title => 'MyLdap Form', :host => '192.168.1.145', :base => 'dc=score, dc=local', :name_proc => Proc.new {|name| name.gsub(/@.*$/,'')}
-      run lambda { |env| [404, {'Content-Type' => 'text/plain'}, [env.key?('omniauth.auth').to_s]] }
-    }.to_app
-  end
-
-  let(:session) do
-    last_request.env['rack.session']
-  end
-
-  it 'should add a camelization for itself' do
-    OmniAuth::Utils.camelize('ldap').should == 'LDAP'
-  end
-
-  describe '/auth/ldap' do
-    before(:each){ get '/auth/ldap' }
-
-    it 'should display a form' do
-      last_response.status.should == 200
-      last_response.body.should be_include("<form")
-    end
-
-    it 'should have the callback as the action for the form' do
-      last_response.body.should be_include("action='/auth/ldap/callback'")
-    end
-
-    it 'should have a text field for each of the fields' do
-      last_response.body.scan('<input').size.should == 2
-    end
-    it 'should have a label of the form title' do
-      last_response.body.scan('MyLdap Form').size.should > 1
-    end
-  end
-
-  describe 'post /auth/ldap/callback' do
-    before(:each) do
-      @adaptor = double(OmniAuth::LDAP::Adaptor, {:uid => 'ping'})
-      @adaptor.stub(:filter)
-      OmniAuth::LDAP::Adaptor.stub(:new).and_return(@adaptor)
-    end
-
-    context 'failure' do
-      before(:each) do
-        @adaptor.stub(:bind_as).and_return(false)
-      end
-
-      context "when username is not preset" do
-        it 'should redirect to error page' do
-          post('/auth/ldap/callback', {})
-
-          last_response.should be_redirect
-          last_response.headers['Location'].should =~ %r{missing_credentials}
-        end
-      end
-
-      context "when username is empty" do
-        it 'should redirect to error page' do
-          post('/auth/ldap/callback', {:username => ""})
-
-          last_response.should be_redirect
-          last_response.headers['Location'].should =~ %r{missing_credentials}
-        end
-      end
-
-      context "when username is present" do
-        context "and password is not preset" do
-          it 'should redirect to error page' do
-            post('/auth/ldap/callback', {:username => "ping"})
-
-            last_response.should be_redirect
-            last_response.headers['Location'].should =~ %r{missing_credentials}
-          end
-        end
-
-        context "and password is empty" do
-          it 'should redirect to error page' do
-            post('/auth/ldap/callback', {:username => "ping", :password => ""})
-
-            last_response.should be_redirect
-            last_response.headers['Location'].should =~ %r{missing_credentials}
-          end
-        end
-      end
-
-      context "when username and password are present" do
-        context "and bind on LDAP server failed" do
-          it 'should redirect to error page' do
-            post('/auth/ldap/callback', {:username => 'ping', :password => 'password'})
-
-            last_response.should be_redirect
-            last_response.headers['Location'].should =~ %r{invalid_credentials}
-          end
-          context 'and filter is set' do
-            it 'should bind with filter' do
-              @adaptor.stub(:filter).and_return('uid=%{username}')
-              Net::LDAP::Filter.should_receive(:construct).with('uid=ping')
-              post('/auth/ldap/callback', {:username => 'ping', :password => 'password'})
-
-              last_response.should be_redirect
-              last_response.headers['Location'].should =~ %r{invalid_credentials}
-            end
-          end
-
-        end
-
-        context "and communication with LDAP server caused an exception" do
-          before :each do
-            @adaptor.stub(:bind_as).and_throw(Exception.new('connection_error'))
-          end
-
-          it 'should redirect to error page' do
-            post('/auth/ldap/callback', {:username => "ping", :password => "password"})
-
-            last_response.should be_redirect
-            last_response.headers['Location'].should =~ %r{ldap_error}
-          end
-        end
-      end
-    end
-
-    context 'success' do
-      let(:auth_hash){ last_request.env['omniauth.auth'] }
-
-      before(:each) do
-        @adaptor.stub(:filter)
-        @adaptor.stub(:bind_as).and_return(Net::LDAP::Entry.from_single_ldif_string(
-      %Q{dn: cn=ping, dc=intridea, dc=com
-mail: ping@intridea.com
-givenname: Ping
-sn: Yu
-telephonenumber: 555-555-5555
-mobile: 444-444-4444
-uid: ping
-title: dev
-address: k street
-l: Washington
-st: DC
-co: U.S.A
-postofficebox: 20001
-wwwhomepage: www.intridea.com
-jpegphoto: http://www.intridea.com/ping.jpg
-description: omniauth-ldap
-}
-    ))
-      end
-
-      it 'should not redirect to error page' do
-        post('/auth/ldap/callback', {:username => 'ping', :password => 'password'})
-        last_response.should_not be_redirect
-      end
-
-      context 'and filter is set' do
-        it 'should bind with filter' do
-          @adaptor.stub(:filter).and_return('uid=%{username}')
-          Net::LDAP::Filter.should_receive(:construct).with('uid=ping')
-          post('/auth/ldap/callback', {:username => 'ping', :password => 'password'})
-
-          last_response.should_not be_redirect
-        end
-      end
-
-      it 'should map user info to Auth Hash' do
-        post('/auth/ldap/callback', {:username => 'ping', :password => 'password'})
-        auth_hash.uid.should == 'cn=ping, dc=intridea, dc=com'
-        auth_hash.info.email.should == 'ping@intridea.com'
-        auth_hash.info.first_name.should == 'Ping'
-        auth_hash.info.last_name.should == 'Yu'
-        auth_hash.info.phone.should == '555-555-5555'
-        auth_hash.info.mobile.should == '444-444-4444'
-        auth_hash.info.nickname.should == 'ping'
-        auth_hash.info.title.should == 'dev'
-        auth_hash.info.location.should == 'k street, Washington, DC, U.S.A 20001'
-        auth_hash.info.url.should == 'www.intridea.com'
-        auth_hash.info.image.should == 'http://www.intridea.com/ping.jpg'
-        auth_hash.info.description.should == 'omniauth-ldap'
-      end
-    end
-  end
-end

data/spec/omniauth-ldap/adaptor_spec.rb

@@ -1,82 +0,0 @@
-require 'spec_helper'
-describe "OmniAuth::LDAP::Adaptor" do
-
-  describe 'initialize' do
-    it 'should throw exception when must have field is not set' do
-      #[:host, :port, :method, :bind_dn]
-      lambda { OmniAuth::LDAP::Adaptor.new({host: "192.168.1.145", method: 'plain'})}.should raise_error(ArgumentError)
-    end
-
-    it 'should throw exception when method is not supported' do
-      lambda { OmniAuth::LDAP::Adaptor.new({host: "192.168.1.145", method: 'myplain', uid: 'uid', port: 389, base: 'dc=com'})}.should raise_error(OmniAuth::LDAP::Adaptor::ConfigurationError)
-    end
-
-    it 'should setup ldap connection with anonymous' do
-      adaptor = OmniAuth::LDAP::Adaptor.new({host: "192.168.1.145", method: 'plain', base: 'dc=intridea, dc=com', port: 389, uid: 'sAMAccountName'})
-      adaptor.connection.should_not == nil
-      adaptor.connection.host.should == '192.168.1.145'
-      adaptor.connection.port.should == 389
-      adaptor.connection.base.should == 'dc=intridea, dc=com'
-      adaptor.connection.instance_variable_get('@auth').should == {:method => :anonymous, :username => nil, :password => nil}
-    end
-
-    it 'should setup ldap connection with simple' do
-      adaptor = OmniAuth::LDAP::Adaptor.new({host: "192.168.1.145", method: 'plain', base: 'dc=intridea, dc=com', port: 389, uid: 'sAMAccountName', bind_dn: 'bind_dn', password: 'password'})
-      adaptor.connection.should_not == nil
-      adaptor.connection.host.should == '192.168.1.145'
-      adaptor.connection.port.should == 389
-      adaptor.connection.base.should == 'dc=intridea, dc=com'
-      adaptor.connection.instance_variable_get('@auth').should == {:method => :simple, :username => 'bind_dn', :password => 'password'}
-    end
-
-    it 'should setup ldap connection with sasl-md5' do
-      adaptor = OmniAuth::LDAP::Adaptor.new({host: "192.168.1.145", method: 'plain', base: 'dc=intridea, dc=com', port: 389, uid: 'sAMAccountName', try_sasl: true, sasl_mechanisms: ["DIGEST-MD5"], bind_dn: 'bind_dn', password: 'password'})
-      adaptor.connection.should_not == nil
-      adaptor.connection.host.should == '192.168.1.145'
-      adaptor.connection.port.should == 389
-      adaptor.connection.base.should == 'dc=intridea, dc=com'
-      adaptor.connection.instance_variable_get('@auth')[:method].should == :sasl
-      adaptor.connection.instance_variable_get('@auth')[:mechanism].should == 'DIGEST-MD5'
-      adaptor.connection.instance_variable_get('@auth')[:initial_credential].should == ''
-      adaptor.connection.instance_variable_get('@auth')[:challenge_response].should_not be_nil
-    end
-
-    it 'should setup ldap connection with sasl-gss' do
-      adaptor = OmniAuth::LDAP::Adaptor.new({host: "192.168.1.145", method: 'plain', base: 'dc=intridea, dc=com', port: 389, uid: 'sAMAccountName', try_sasl: true, sasl_mechanisms: ["GSS-SPNEGO"], bind_dn: 'bind_dn', password: 'password'})
-      adaptor.connection.should_not == nil
-      adaptor.connection.host.should == '192.168.1.145'
-      adaptor.connection.port.should == 389
-      adaptor.connection.base.should == 'dc=intridea, dc=com'
-      adaptor.connection.instance_variable_get('@auth')[:method].should == :sasl
-      adaptor.connection.instance_variable_get('@auth')[:mechanism].should == 'GSS-SPNEGO'
-      adaptor.connection.instance_variable_get('@auth')[:initial_credential].should =~ /^NTLMSSP/
-      adaptor.connection.instance_variable_get('@auth')[:challenge_response].should_not be_nil
-    end
-
-    it 'should set the encryption method correctly' do
-      adaptor = OmniAuth::LDAP::Adaptor.new({host: "192.168.1.145", method: 'tls', base: 'dc=intridea, dc=com', port: 389, uid: 'sAMAccountName'})
-      adaptor.connection.instance_variable_get('@encryption').should include method: :start_tls
-    end
-  end
-
-  describe 'bind_as' do
-    let(:args) { {:filter => Net::LDAP::Filter.eq('sAMAccountName', 'username'), :password => 'password', :size => 1} }
-    let(:rs) { Struct.new(:dn).new('new dn') }
-
-    it 'should bind simple' do
-      adaptor = OmniAuth::LDAP::Adaptor.new({host: "192.168.1.126", method: 'plain', base: 'dc=score, dc=local', port: 389, uid: 'sAMAccountName', bind_dn: 'bind_dn', password: 'password'})
-      adaptor.connection.should_receive(:open).and_yield(adaptor.connection)
-      adaptor.connection.should_receive(:search).with(args).and_return([rs])
-      adaptor.connection.should_receive(:bind).with({:username => 'new dn', :password => args[:password], :method => :simple}).and_return(true)
-      adaptor.bind_as(args).should == rs
-    end
-
-    it 'should bind sasl' do
-      adaptor = OmniAuth::LDAP::Adaptor.new({host: "192.168.1.145", method: 'plain', base: 'dc=intridea, dc=com', port: 389, uid: 'sAMAccountName', try_sasl: true, sasl_mechanisms: ["GSS-SPNEGO"], bind_dn: 'bind_dn', password: 'password'})
-      adaptor.connection.should_receive(:open).and_yield(adaptor.connection)
-      adaptor.connection.should_receive(:search).with(args).and_return([rs])
-      adaptor.connection.should_receive(:bind).and_return(true)
-      adaptor.bind_as(args).should == rs
-    end
-  end
-end

data/spec/spec_helper.rb

@@ -1,14 +0,0 @@
-$:.unshift File.expand_path('..', __FILE__)
-$:.unshift File.expand_path('../../lib', __FILE__)
-require 'simplecov'
-SimpleCov.start
-require 'rspec'
-require 'rack/test'
-require 'omniauth'
-require 'omniauth-ldap'
-
-RSpec.configure do |config|
-  config.include Rack::Test::Methods
-  config.extend  OmniAuth::Test::StrategyMacros, :type => :strategy
-end
-