/
sessmgrtestsuite.go
81 lines (67 loc) · 2.01 KB
/
sessmgrtestsuite.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
package sessmgrtestsuite
import (
"net/http"
"net/http/httptest"
"net/url"
"testing"
"github.com/ambientkit/ambient"
"github.com/stretchr/testify/assert"
)
// TestSuite performs standard tests.
type TestSuite struct{}
// New returns a session manager test suite.
func New() *TestSuite {
return new(TestSuite)
}
// Run all the tests.
func (ts *TestSuite) Run(t *testing.T, sess func() (ambient.AppSession, func(next http.Handler) http.Handler)) {
s, sessHandler := sess()
ts.TestSessions(t, s, sessHandler)
s, sessHandler = sess()
ts.TestPersist(t, s, sessHandler)
}
// TestSessions .
func (ts *TestSuite) TestSessions(t *testing.T, sess ambient.AppSession, sessHandler func(next http.Handler) http.Handler) {
r := httptest.NewRequest("GET", "/", nil)
w := httptest.NewRecorder()
mux := http.NewServeMux()
mux.HandleFunc("/", func(w http.ResponseWriter, r *http.Request) {
// Test user
u := "foo"
sess.Login(r, u)
user, err := sess.AuthenticatedUser(r)
assert.True(t, err == nil)
assert.Equal(t, u, user)
// Test Logout
sess.Logout(r)
_, err = sess.AuthenticatedUser(r)
assert.False(t, err == nil)
// Test CSRF
assert.False(t, sess.CSRF(r, r.FormValue("token")))
token := sess.SetCSRF(r)
r.Form = url.Values{}
r.Form.Set("token", token)
assert.True(t, sess.CSRF(r, r.FormValue("token")))
})
mw := sessHandler(mux)
mw.ServeHTTP(w, r)
// Ensure the expiration is set properly.
assert.True(t, w.Result().Cookies()[0].Expires.IsZero())
}
// TestPersist .
func (ts *TestSuite) TestPersist(t *testing.T, sess ambient.AppSession, sessHandler func(next http.Handler) http.Handler) {
// Test session persistence.
r := httptest.NewRequest("GET", "/", nil)
w := httptest.NewRecorder()
mux := http.NewServeMux()
mux.HandleFunc("/", func(w http.ResponseWriter, r *http.Request) {
// Test user
u := "foo"
sess.Login(r, u)
// Ensure the expiration is set properly.
sess.Persist(r, true)
})
mw := sessHandler(mux)
mw.ServeHTTP(w, r)
assert.False(t, w.Result().Cookies()[0].Expires.IsZero())
}