warden 1.2.3 → 1.2.8

data/spec/warden/hooks_spec.rb

@@ -1,373 +0,0 @@
-# encoding: utf-8
-require 'spec_helper'
-
-describe "standard authentication hooks" do
-
-  before(:all) do
-    load_strategies
-  end
-
-  describe "after_set_user" do
-    before(:each) do
-      RAM = Warden::Manager unless defined?(RAM)
-      RAM._after_set_user.clear
-    end
-
-    after(:each) do
-      RAM._after_set_user.clear
-    end
-
-    it "should allow me to add an after_set_user hook" do
-      RAM.after_set_user do |user, auth, opts|
-        "boo"
-      end
-      RAM._after_set_user.should have(1).item
-    end
-
-    it "should allow me to add multiple after_set_user hooks" do
-      RAM.after_set_user{|user, auth, opts| "foo"}
-      RAM.after_set_user{|u,a| "bar"}
-      RAM._after_set_user.should have(2).items
-    end
-
-    it "should run each after_set_user hook after the user is set" do
-      RAM.after_set_user{|u,a,o| a.env['warden.spec.hook.foo'] = "run foo"}
-      RAM.after_set_user{|u,a,o| a.env['warden.spec.hook.bar'] = "run bar"}
-      RAM.after_set_user{|u,a,o| a.logout}
-      app = lambda do |e|
-        e['warden'].set_user("foo")
-        valid_response
-      end
-      env = env_with_params
-      setup_rack(app).call(env)
-      env['warden'].user.should be_nil
-      env['warden.spec.hook.foo'].should == "run foo"
-      env['warden.spec.hook.bar'].should == "run bar"
-    end
-
-    it "should not run the event specified with except" do
-      RAM.after_set_user(:except => :set_user){|u,a,o| fail}
-      app = lambda do |e|
-        e['warden'].set_user("foo")
-        valid_response
-      end
-      env = env_with_params
-      setup_rack(app).call(env)
-    end
-
-    it "should only run the event specified with only" do
-      RAM.after_set_user(:only => :set_user){|u,a,o| fail}
-      app = lambda do |e|
-        e['warden'].authenticate(:pass)
-        valid_response
-      end
-      env = env_with_params
-      setup_rack(app).call(env)
-    end
-
-    it "should run filters in the given order" do
-      RAM.after_set_user{|u,a,o| a.env['warden.spec.order'] << 2}
-      RAM.after_set_user{|u,a,o| a.env['warden.spec.order'] << 3}
-      RAM.prepend_after_set_user{|u,a,o| a.env['warden.spec.order'] << 1}
-      app = lambda do |e|
-        e['warden.spec.order'] = []
-        e['warden'].set_user("foo")
-        valid_response
-      end
-      env = env_with_params
-      setup_rack(app).call(env)
-      env['warden.spec.order'].should == [1,2,3]
-    end
-
-    context "after_authentication" do
-      it "should be a wrapper to after_set_user behavior" do
-        RAM.after_authentication{|u,a,o| a.env['warden.spec.hook.baz'] = "run baz"}
-        RAM.after_authentication{|u,a,o| a.env['warden.spec.hook.paz'] = "run paz"}
-        RAM.after_authentication{|u,a,o| o[:event].should == :authentication }
-        app = lambda do |e|
-          e['warden'].authenticate(:pass)
-          valid_response
-        end
-        env = env_with_params
-        setup_rack(app).call(env)
-        env['warden.spec.hook.baz'].should == 'run baz'
-        env['warden.spec.hook.paz'].should == 'run paz'
-      end
-
-      it "should not be invoked on default after_set_user scenario" do
-        RAM.after_authentication{|u,a,o| fail}
-        app = lambda do |e|
-          e['warden'].set_user("foo")
-          valid_response
-        end
-        env = env_with_params
-        setup_rack(app).call(env)
-      end
-
-      it "should run filters in the given order" do
-        RAM.after_authentication{|u,a,o| a.env['warden.spec.order'] << 2}
-        RAM.after_authentication{|u,a,o| a.env['warden.spec.order'] << 3}
-        RAM.prepend_after_authentication{|u,a,o| a.env['warden.spec.order'] << 1}
-        app = lambda do |e|
-          e['warden.spec.order'] = []
-          e['warden'].authenticate(:pass)
-          valid_response
-        end
-        env = env_with_params
-        setup_rack(app).call(env)
-        env['warden.spec.order'].should == [1,2,3]
-      end
-
-      it "should allow me to log out a user in an after_set_user block" do
-        RAM.after_set_user{|u,a,o| a.logout}
-
-        app = lambda do |e|
-          e['warden'].authenticate(:pass)
-          valid_response
-        end
-        env = env_with_params
-        setup_rack(app).call(env)
-        env['warden'].authenticated?.should be_false
-      end
-    end
-
-    context "after_fetch" do
-      it "should be a wrapper to after_set_user behavior" do
-        RAM.after_fetch{|u,a,o| a.env['warden.spec.hook.baz'] = "run baz"}
-        RAM.after_fetch{|u,a,o| a.env['warden.spec.hook.paz'] = "run paz"}
-        RAM.after_fetch{|u,a,o| o[:event].should == :fetch }
-        env = env_with_params
-        setup_rack(lambda { |e| valid_response }).call(env)
-        env['rack.session']['warden.user.default.key'] = "Foo"
-        env['warden'].user.should == "Foo"
-        env['warden.spec.hook.baz'].should == 'run baz'
-        env['warden.spec.hook.paz'].should == 'run paz'
-      end
-
-      it "should not be invoked on default after_set_user scenario" do
-        RAM.after_fetch{|u,a,o| fail}
-        app = lambda do |e|
-          e['warden'].set_user("foo")
-          valid_response
-        end
-        env = env_with_params
-        setup_rack(app).call(env)
-      end
-
-      it "should not be invoked if fetched user is nil" do
-        RAM.after_fetch{|u,a,o| fail}
-        env = env_with_params
-        setup_rack(lambda { |e| valid_response }).call(env)
-        env['rack.session']['warden.user.default.key'] = nil
-        env['warden'].user.should be_nil
-      end
-
-      it "should run filters in the given order" do
-        RAM.after_fetch{|u,a,o| a.env['warden.spec.order'] << 2}
-        RAM.after_fetch{|u,a,o| a.env['warden.spec.order'] << 3}
-        RAM.prepend_after_fetch{|u,a,o| a.env['warden.spec.order'] << 1}
-        app = lambda do |e|
-          e['warden.spec.order'] = []
-          e['rack.session']['warden.user.default.key'] = "Foo"
-          e['warden'].user
-          valid_response
-        end
-        env = env_with_params
-        setup_rack(app).call(env)
-        env['warden.spec.order'].should == [1,2,3]
-      end
-    end
-  end
-
-
-  describe "after_failed_fetch" do
-    before(:each) do
-      RAM = Warden::Manager unless defined?(RAM)
-      RAM._after_failed_fetch.clear
-    end
-
-    after(:each) do
-      RAM._after_failed_fetch.clear
-    end
-
-    it "should not be called when user is fetched" do
-      RAM.after_failed_fetch{|u,a,o| fail }
-      env = env_with_params
-      setup_rack(lambda { |e| valid_response }).call(env)
-      env['rack.session']['warden.user.default.key'] = "Foo"
-      env['warden'].user.should == "Foo"
-    end
-
-    it "should be called if fetched user is nil" do
-      calls = 0
-      RAM.after_failed_fetch{|u,a,o| calls += 1 }
-      env = env_with_params
-      setup_rack(lambda { |e| valid_response }).call(env)
-      env['warden'].user.should be_nil
-      calls.should == 1
-    end
-  end
-
-  describe "before_failure" do
-    before(:each) do
-      RAM = Warden::Manager unless defined?(RAM)
-      RAM._before_failure.clear
-    end
-
-    after(:each) do
-      RAM._before_failure.clear
-    end
-
-    it "should allow me to add a before_failure hook" do
-      RAM.before_failure{|env, opts| "foo"}
-      RAM._before_failure.should have(1).item
-    end
-
-    it "should allow me to add multiple before_failure hooks" do
-      RAM.before_failure{|env, opts| "foo"}
-      RAM.before_failure{|env, opts| "bar"}
-      RAM._before_failure.should have(2).items
-    end
-
-    it "should run each before_failure hooks before failing" do
-      RAM.before_failure{|e,o| e['warden.spec.before_failure.foo'] = "foo"}
-      RAM.before_failure{|e,o| e['warden.spec.before_failure.bar'] = "bar"}
-      app = lambda{|e| e['warden'].authenticate!(:failz); valid_response}
-      env = env_with_params
-      setup_rack(app).call(env)
-      env['warden.spec.before_failure.foo'].should == "foo"
-      env['warden.spec.before_failure.bar'].should  == "bar"
-    end
-
-    it "should run filters in the given order" do
-      RAM.before_failure{|e,o| e['warden.spec.order'] << 2}
-      RAM.before_failure{|e,o| e['warden.spec.order'] << 3}
-      RAM.prepend_before_failure{|e,o| e['warden.spec.order'] << 1}
-      app = lambda do |e|
-        e['warden.spec.order'] = []
-        e['warden'].authenticate!(:failz)
-        valid_response
-      end
-      env = env_with_params
-      setup_rack(app).call(env)
-      env['warden.spec.order'].should == [1,2,3]
-    end
-  end
-
-  describe "before_logout" do
-    before(:each) do
-      RAM = Warden::Manager unless defined?(RAM)
-      RAM._before_logout.clear
-    end
-
-    after(:each) do
-      RAM._before_logout.clear
-    end
-
-    it "should allow me to add an before_logout hook" do
-      RAM.before_logout{|user, auth, scopes| "foo"}
-      RAM._before_logout.should have(1).item
-    end
-
-    it "should allow me to add multiple after_authentication hooks" do
-      RAM.before_logout{|u,a,o| "bar"}
-      RAM.before_logout{|u,a,o| "baz"}
-      RAM._before_logout.should have(2).items
-    end
-
-    it "should run each before_logout hook before logout is run" do
-      RAM.before_logout{|u,a,o| a.env['warden.spec.hook.lorem'] = "run lorem"}
-      RAM.before_logout{|u,a,o| a.env['warden.spec.hook.ipsum'] = "run ipsum"}
-      app = lambda{|e| e['warden'].authenticate(:pass); valid_response}
-      env = env_with_params
-      setup_rack(app).call(env)
-      env['warden'].logout
-      env['warden.spec.hook.lorem'].should == 'run lorem'
-      env['warden.spec.hook.ipsum'].should == 'run ipsum'
-    end
-
-    it "should run before_logout hook for a specified scope" do
-      RAM.before_logout(:scope => :scope1){|u,a,o| a.env["warden.spec.hook.a"] << :scope1 }
-      RAM.before_logout(:scope => [:scope2]){|u,a,o| a.env["warden.spec.hook.b"] << :scope2 }
-
-      app = lambda do |e|
-        e['warden'].authenticate(:pass, :scope => :scope1)
-        e['warden'].authenticate(:pass, :scope => :scope2)
-        valid_response
-      end
-      env = env_with_params
-      env["warden.spec.hook.a"] ||= []
-      env["warden.spec.hook.b"] ||= []
-      setup_rack(app).call(env)
-
-      env['warden'].logout(:scope1)
-      env['warden.spec.hook.a'].should == [:scope1]
-      env['warden.spec.hook.b'].should == []
-
-      env['warden'].logout(:scope2)
-      env['warden.spec.hook.a'].should == [:scope1]
-      env['warden.spec.hook.b'].should == [:scope2]
-    end
-
-    it "should run filters in the given order" do
-      RAM.before_logout{|u,a,o| a.env['warden.spec.order'] << 2}
-      RAM.before_logout{|u,a,o| a.env['warden.spec.order'] << 3}
-      RAM.prepend_before_logout{|u,a,o| a.env['warden.spec.order'] << 1}
-      app = lambda do |e|
-        e['warden.spec.order'] = []
-        e['warden'].authenticate(:pass)
-        e['warden'].logout
-        valid_response
-      end
-      env = env_with_params
-      setup_rack(app).call(env)
-      env['warden.spec.order'].should == [1,2,3]
-    end
-  end
-
-  describe "on_request" do
-    before(:each) do
-      @old_on_request = RAM._on_request.dup
-      RAM = Warden::Manager unless defined?(RAM)
-      RAM._on_request.clear
-    end
-
-    after(:each) do
-      RAM._on_request.clear
-      RAM._on_request.replace(@old_on_request)
-    end
-
-    it "should allow me to add an on_request hook" do
-      RAM.on_request{|proxy| "foo"}
-      RAM._on_request.should have(1).item
-    end
-
-    it "should allow me to add multiple on_request hooks" do
-      RAM.on_request{|proxy| "foo"}
-      RAM.on_request{|proxy| "bar"}
-      RAM._on_request.should have(2).items
-    end
-
-    it "should run each on_request hooks when initializing" do
-      RAM.on_request{|proxy| proxy.env['warden.spec.on_request.foo'] = "foo"}
-      RAM.on_request{|proxy| proxy.env['warden.spec.on_request.bar'] = "bar"}
-      app = lambda{|e| valid_response}
-      env = env_with_params
-      setup_rack(app).call(env)
-      env['warden.spec.on_request.foo'].should == "foo"
-      env['warden.spec.on_request.bar'].should  == "bar"
-    end
-
-    it "should run filters in the given order" do
-      RAM.on_request{|proxy| proxy.env['warden.spec.order'] << 2}
-      RAM.on_request{|proxy| proxy.env['warden.spec.order'] << 3}
-      RAM.prepend_on_request{|proxy| proxy.env['warden.spec.order'] << 1}
-      app = lambda do |e|
-        valid_response
-      end
-      env = Rack::MockRequest.env_for("/", "warden.spec.order" => [])
-      setup_rack(app).call(env)
-      env['warden.spec.order'].should == [1,2,3]
-    end
-  end
-end

data/spec/warden/manager_spec.rb

@@ -1,316 +0,0 @@
-# encoding: utf-8
-require 'spec_helper'
-
-describe Warden::Manager do
-
-  before(:all) do
-    load_strategies
-  end
-
-  it "should insert a Proxy object into the rack env" do
-    env = env_with_params
-    setup_rack(success_app).call(env)
-    env["warden"].should be_an_instance_of(Warden::Proxy)
-  end
-
-  describe "thrown auth" do
-    before(:each) do
-      @basic_app = lambda{|env| [200,{'Content-Type' => 'text/plain'},'OK']}
-      @authd_app = lambda do |e|
-        if e['warden'].authenticated?
-          [200,{'Content-Type' => 'text/plain'},"OK"]
-        else
-          [401,{'Content-Type' => 'text/plain'},"Fail From The App"]
-        end
-      end
-      @env = Rack::MockRequest.
-        env_for('/', 'HTTP_VERSION' => '1.1', 'REQUEST_METHOD' => 'GET')
-    end # before(:each)
-
-    describe "Failure" do
-      it "should respond with a 401 response if the strategy fails authentication" do
-         env = env_with_params("/", :foo => "bar")
-         app = lambda do |env|
-           env['warden'].authenticate(:failz)
-           throw(:warden, :action => :unauthenticated)
-         end
-         result = setup_rack(app, :failure_app => @fail_app).call(env)
-         result.first.should == 401
-      end
-
-      it "should use the failure message given to the failure method" do
-        env = env_with_params("/", {})
-        app = lambda do |env|
-          env['warden'].authenticate(:failz)
-          throw(:warden)
-        end
-        result = setup_rack(app, :failure_app => @fail_app).call(env)
-        result.last.should == ["You Fail!"]
-      end
-
-      it "should render the failure app when there's a failure" do
-        app = lambda do |e|
-          throw(:warden, :action => :unauthenticated) unless e['warden'].authenticated?(:failz)
-        end
-        fail_app = lambda do |e|
-          [401, {"Content-Type" => "text/plain"}, ["Failure App"]]
-        end
-        result = setup_rack(app, :failure_app => fail_app).call(env_with_params)
-        result.last.should == ["Failure App"]
-      end
-
-      it "should call failure app if warden is thrown even after successful authentication" do
-        env = env_with_params("/", {})
-        app = lambda do |env|
-          env['warden'].authenticate(:pass)
-          throw(:warden)
-        end
-        result = setup_rack(app, :failure_app => @fail_app).call(env)
-        result.first.should == 401
-        result.last.should == ["You Fail!"]
-      end
-
-      it "should set the attempted url in warden.options hash" do
-        env = env_with_params("/access/path", {})
-        app = lambda do |env|
-          env['warden'].authenticate(:pass)
-          throw(:warden)
-        end
-        result = setup_rack(app, :failure_app => @fail_app).call(env)
-        result.first.should == 401
-        env["warden.options"][:attempted_path].should == "/access/path"
-      end
-
-      it "should catch a resubmitted request" do
-        # this is a bit convoluted. but it's occurred in the field with Rack::OpenID
-        $count = 0
-        $throw_count = 0
-        env = env_with_params("/foo")
-        class ::ResubmittingMiddleware
-          @@app = nil
-          def initialize(app)
-            @@app = app
-          end
-
-          def self.call(env)
-            if $count > 1
-              Rack::Response.new("Bad", 401)
-            else
-              $count += 1
-              @@app.call(env)
-            end
-          end
-
-          def call(env)
-            $count += 1
-            @@app.call(env)
-          end
-
-        end
-
-        app = lambda do |e|
-          $throw_count += 1
-          throw(:warden)
-        end
-
-        builder = Rack::Builder.new do
-          use ResubmittingMiddleware
-          use Warden::Manager do |config|
-            config.failure_app = ResubmittingMiddleware
-          end
-          run app
-        end
-
-        result = builder.to_app.call(env)
-        result[0].should == 401
-        result[2].body.should == ["Bad"]
-        $throw_count.should == 2
-      end
-
-      it "should use the default scopes action when a bare throw is used" do
-         env = env_with_params("/", :foo => "bar")
-         action = nil
-
-         failure = lambda do |env|
-           action = env['PATH_INFO'] 
-           [401, {}, ['fail']]
-         end
-
-         app = lambda do |env|
-           throw(:warden)
-         end
-         result = setup_rack(app,
-                             :failure_app => failure,
-                             :configurator => lambda{ |c| c.scope_defaults(:default, :action => 'my_action', :strategies => [:password]) }
-                            ).call(env)
-
-         action.should == "/my_action"
-         result.first.should == 401
-      end
-    end # failure
-  end
-
-  describe "integrated strategies" do
-    before(:each) do
-      RAS = Warden::Strategies unless defined?(RAS)
-      Warden::Strategies.clear!
-      @app = setup_rack do |env|
-        env['warden'].authenticate!(:foobar)
-        [200, {"Content-Type" => "text/plain"}, ["Foo Is A Winna"]]
-      end
-    end
-
-    describe "redirecting" do
-
-      it "should redirect with a message" do
-        RAS.add(:foobar) do
-          def authenticate!
-            redirect!("/foo/bar", {:foo => "bar"}, :message => "custom redirection message")
-          end
-        end
-        result = @app.call(env_with_params)
-        result[0].should == 302
-        result[1]["Location"].should == "/foo/bar?foo=bar"
-        result[2].should == ["custom redirection message"]
-      end
-
-      it "should redirect with a default message" do
-        RAS.add(:foobar) do
-          def authenticate!
-            redirect!("/foo/bar", {:foo => "bar"})
-          end
-        end
-        result = @app.call(env_with_params)
-        result[0].should == 302
-        result[1]['Location'].should == "/foo/bar?foo=bar"
-        result[2].should == ["You are being redirected to /foo/bar?foo=bar"]
-      end
-
-      it "should redirect with a permanent redirect" do
-        RAS.add(:foobar) do
-          def authenticate!
-            redirect!("/foo/bar", {}, :permanent => true)
-          end
-        end
-        result = @app.call(env_with_params)
-        result[0].should == 301
-      end
-
-      it "should redirect with a content type" do
-        RAS.add(:foobar) do
-          def authenticate!
-            redirect!("/foo/bar", {:foo => "bar"}, :content_type => "text/xml")
-          end
-        end
-        result = @app.call(env_with_params)
-        result[0].should == 302
-        result[1]["Location"].should == "/foo/bar?foo=bar"
-        result[1]["Content-Type"].should == "text/xml"
-      end
-
-      it "should redirect with a default content type" do
-        RAS.add(:foobar) do
-          def authenticate!
-            redirect!("/foo/bar", {:foo => "bar"})
-          end
-        end
-        result = @app.call(env_with_params)
-        result[0].should == 302
-        result[1]["Location"].should == "/foo/bar?foo=bar"
-        result[1]["Content-Type"].should == "text/plain"
-      end
-    end
-
-    describe "failing" do
-      it "should fail according to the failure app" do
-        RAS.add(:foobar) do
-          def authenticate!
-            fail!
-          end
-        end
-        env = env_with_params
-        result = @app.call(env)
-        result[0].should == 401
-        result[2].should == ["You Fail!"]
-        env['PATH_INFO'].should == "/unauthenticated"
-      end
-
-      it "should allow you to customize the response" do
-        app = lambda do |e|
-          e['warden'].custom_failure!
-          [401,{'Content-Type' => 'text/plain'},["Fail From The App"]]
-        end
-        env = env_with_params
-        result = setup_rack(app).call(env)
-        result[0].should == 401
-        result[2].should == ["Fail From The App"]
-      end
-
-      it "should allow you to customize the response without the explicit call to custom_failure! if not intercepting 401" do
-        app = lambda do |e|
-          [401,{'Content-Type' => 'text/plain'},["Fail From The App"]]
-        end
-        env = env_with_params
-        result = setup_rack(app, :intercept_401 => false).call(env)
-        result[0].should == 401
-        result[2].should == ["Fail From The App"]
-      end
-
-      it "should render the failure application for a 401 if no custom_failure flag is set" do
-        app = lambda do |e|
-          [401,{'Content-Type' => 'text/plain'},["Fail From The App"]]
-        end
-        result = setup_rack(app).call(env_with_params)
-        result[0].should == 401
-        result[2].should == ["You Fail!"]
-      end
-
-    end # failing
-
-    describe "custom rack response" do
-      it "should return a custom rack response" do
-        RAS.add(:foobar) do
-          def authenticate!
-            custom!([523, {"Content-Type" => "text/plain", "Custom-Header" => "foo"}, ["Custom Stuff"]])
-          end
-        end
-        result = @app.call(env_with_params)
-        result[0].should == 523
-        result[1]["Custom-Header"].should == "foo"
-        result[2].should == ["Custom Stuff"]
-      end
-    end
-
-    describe "success" do
-      it "should pass through to the application when there is success" do
-        RAS.add(:foobar) do
-          def authenticate!
-            success!("A User")
-          end
-        end
-        env = env_with_params
-        result = @app.call(env)
-        result[0].should == 200
-        result[2].should == ["Foo Is A Winna"]
-      end
-    end
-  end # integrated strategies
-
-  it "should allow me to set a different default scope for warden" do
-    Rack::Builder.new do
-      use Warden::Manager, :default_scope => :default do |manager|
-        manager.default_scope.should == :default
-        manager.default_scope = :other
-        manager.default_scope.should == :other
-      end
-    end
-  end
-
-  it "should allow me to access strategies through manager" do
-    Rack::Builder.new do
-      use Warden::Manager do |manager|
-        manager.strategies.should == Warden::Strategies
-      end
-    end
-  end
-end