BlazingGames/blazing-games-plugin
BlazingGames/blazing-games-plugin
0
0
Fork 0
mirror of https://github.com/BlazingGames/blazing-games-plugin.git synced 2025-02-03 21:26:41 -05:00
Code Issues Releases 10 Activity Actions

add LoginFlowTest, UnlinkFlowTest

Browse source
This commit is contained in:
Ivy Collective 2025-01-17 17:48:45 -05:00
parent 25135a8efa
commit b910218fca
3 changed files with 221 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
src/main/java/de/blazemcworld/blazinggames/testing/TestList.java
View file

@ -15,8 +15,11 @@
*/
package de.blazemcworld.blazinggames.testing;
public enum TestList {
import de.blazemcworld.blazinggames.testing.tests.*;
public enum TestList {
LOGIN_FLOW(new LoginFlowTest()),
UNLINK_FLOW(new UnlinkFlowTest()),
;
public final BlazingTest test;

133
src/main/java/de/blazemcworld/blazinggames/testing/tests/LoginFlowTest.java Normal file
View file

@ -0,0 +1,133 @@
/*
* Copyright 2025 The Blazing Games Maintainers
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package de.blazemcworld.blazinggames.testing.tests;
import java.util.UUID;
import com.google.gson.JsonArray;
import com.google.gson.JsonObject;
import de.blazemcworld.blazinggames.testing.BlazingTest;
import de.blazemcworld.blazinggames.utils.GetGson;
import okhttp3.Request;
import okhttp3.RequestBody;
import okhttp3.Response;
public class LoginFlowTest extends BlazingTest {
@Override
public boolean runAsync() {
return true;
}
@Override
protected void runTest() throws Exception {
// implementation note:
// the server really doesn't care too much and allows you to submit
// requests that aren't the same as in the html, such as json instead of form body or
// giving the boolean as a literal instead of a string, and this test does use those.
//
// if we really wanted a test to make sure it worked perfectly, it may be better to set
// up something that emulates a web browser and actually followed the redirects, which is
// outside the scope of these tests.
String username = "LoginFlowTest";
UUID uuid = UUID.randomUUID();
// server: send prepare code request
JsonObject prepareBody = new JsonObject();
prepareBody.addProperty("name", "login flow test");
prepareBody.addProperty("contact", ".....");
prepareBody.addProperty("purpose", "testing xd");
prepareBody.add("permissions", new JsonArray());
JsonObject prepareResponse = sendPostRequest("http://localhost:8080/auth/prepare", prepareBody);
debugLog("prepare: " + prepareResponse.toString());
assertBoolean("/auth/prepare", GetGson.getBoolean(prepareResponse, "success", new IllegalStateException()));
String code = GetGson.getString(prepareResponse, "code", new IllegalArgumentException("Prepare endpoint missing code"));
String key = GetGson.getString(prepareResponse, "key", new IllegalStateException("Prepare endpoint missing key"));
// client: send link request
StringBuilder linkUrl = new StringBuilder("http://localhost:8080/auth/link");
linkUrl.append("?code=").append(code);
linkUrl.append("&mcname=").append(username);
linkUrl.append("&mcuuid=").append(uuid.toString());
Request linkRequest = new Request.Builder()
.url(linkUrl.toString())
.build();
Response linkResponse = client.newCall(linkRequest).execute();
assertEquals(302, linkResponse.code());
// client: send callback request
StringBuilder callbackUrl = new StringBuilder("http://localhost:8080/auth/callback");
callbackUrl.append("?code=").append(username).append(".").append(uuid.toString());
callbackUrl.append("&state=").append(code);
Request callbackRequest = new Request.Builder()
.url(callbackUrl.toString())
.build();
Response callbackResponse = client.newCall(callbackRequest).execute();
assertEquals(302, callbackResponse.code());
String locationHeader = callbackResponse.header("Location");
assertNotNull(locationHeader);
// parse for confirmation token
String[] parts = locationHeader.split("\\?");
assertBoolean("parts.length == 2", parts.length == 2);
String[] params = parts[1].split("&");
String confirmationToken = null;
for (String param : params) {
if (param.startsWith("token=")) {
confirmationToken = param.split("=")[1];
}
}
assertNotNull(confirmationToken);
// client: send pre consent request
StringBuilder preConsentUrl = new StringBuilder("http://localhost:8080/auth/consent");
preConsentUrl.append("?code=").append(code);
preConsentUrl.append("&token=").append(confirmationToken);
Request preConsentRequest = new Request.Builder()
.url(preConsentUrl.toString())
.get()
.build();
Response preConsentResponse = client.newCall(preConsentRequest).execute();
assertEquals(200, preConsentResponse.code());
// note: this is needed due to internal flow state checks
// client: send consent request
JsonObject consentBody = new JsonObject();
consentBody.addProperty("code", code);
consentBody.addProperty("token", confirmationToken);
consentBody.addProperty("verdict", true);
Request consentRequest = new Request.Builder()
.url("http://localhost:8080/auth/consent")
.post(RequestBody.create(consentBody.toString(), json))
.build();
Response consentResponse = client.newCall(consentRequest).execute();
assertEquals(200, consentResponse.code());
// server: send redeem request
JsonObject redeemBody = new JsonObject();
redeemBody.addProperty("key", key);
JsonObject redeemResponse = sendPostRequest("http://localhost:8080/auth/redeem", redeemBody);
debugLog("redeem: " + redeemResponse.toString());
assertBoolean("/auth/redeem", GetGson.getBoolean(redeemResponse, "success", new IllegalStateException()));
String token = GetGson.getString(redeemResponse, "token", new IllegalStateException("Redeem endpoint missing token"));
// server: send test request
JsonObject testResponse = sendGetRequest("http://localhost:8080/auth/test", token);
debugLog("test: " + testResponse.toString());
assertBoolean("/auth/test", GetGson.getBoolean(testResponse, "success", new IllegalStateException()));
}
}

84
src/main/java/de/blazemcworld/blazinggames/testing/tests/UnlinkFlowTest.java Normal file
View file

@ -0,0 +1,84 @@
/*
* Copyright 2025 The Blazing Games Maintainers
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package de.blazemcworld.blazinggames.testing.tests;
import com.google.gson.JsonObject;
import de.blazemcworld.blazinggames.computing.api.LinkedUser;
import de.blazemcworld.blazinggames.computing.api.impl.auth.AuthUnlinkEndpoint;
import de.blazemcworld.blazinggames.testing.BlazingTest;
import de.blazemcworld.blazinggames.utils.GetGson;
import okhttp3.Request;
import okhttp3.RequestBody;
import okhttp3.Response;
public class UnlinkFlowTest extends BlazingTest {
@Override
public boolean runAsync() {
return true;
}
@Override
protected void runTest() throws Exception {
LinkedUser linkedUser = createLinkedUser(false);
String signed = LinkedUser.signLinkedUser(linkedUser);
// send test request 1
JsonObject testResponse1 = sendGetRequest("http://localhost:8080/auth/test", signed);
assertBoolean("/auth/test linked", GetGson.getBoolean(testResponse1, "success", new IllegalStateException()));
// send callback request
StringBuilder callbackUrl = new StringBuilder("http://localhost:8080/auth/callback");
callbackUrl.append("?code=").append(linkedUser.username()).append(".").append(linkedUser.uuid().toString());
callbackUrl.append("&state=").append(AuthUnlinkEndpoint.MAGIC_UNLINK_STATE);
Request callbackRequest = new Request.Builder()
.url(callbackUrl.toString())
.build();
Response callbackResponse = client.newCall(callbackRequest).execute();
assertEquals(302, callbackResponse.code());
String locationHeader = callbackResponse.header("Location");
assertNotNull(locationHeader);
// parse for confirmation token
String[] parts = locationHeader.split("\\?");
assertBoolean("parts.length == 2", parts.length == 2);
String[] params = parts[1].split("&");
String confirmationToken = null;
for (String param : params) {
if (param.startsWith("token=")) {
confirmationToken = param.split("=")[1];
}
}
assertNotNull(confirmationToken);
// send unlink confirm request
JsonObject unlinkConfirmBody = new JsonObject();
unlinkConfirmBody.addProperty("token", confirmationToken);
unlinkConfirmBody.addProperty("verdict", true);
Request unlinkConfirmRequest = new Request.Builder()
.url("http://localhost:8080/auth/unlink-confirm")
.post(RequestBody.create(unlinkConfirmBody.toString(), json))
.build();
Response unlinkConfirmResponse = client.newCall(unlinkConfirmRequest).execute();
assertEquals(200, unlinkConfirmResponse.code());
// send test request 2
JsonObject testResponse2 = sendGetRequest("http://localhost:8080/auth/test", signed);
assertBoolean("/auth/test unlinked", !GetGson.getBoolean(testResponse2, "success", new IllegalStateException()));
}
}