2018-07-06 21:54:30 -04:00
// Copyright 2018 The Gitea Authors. All rights reserved.
2022-11-27 13:20:29 -05:00
// SPDX-License-Identifier: MIT
2018-07-06 21:54:30 -04:00
2022-09-02 15:18:23 -04:00
package integration
2018-07-06 21:54:30 -04:00
import (
"net/http"
"testing"
2022-08-25 10:31:57 +08:00
auth_model "code.gitea.io/gitea/models/auth"
2021-11-16 16:53:21 +08:00
"code.gitea.io/gitea/models/unittest"
2021-11-24 17:49:20 +08:00
user_model "code.gitea.io/gitea/models/user"
2019-05-11 18:21:34 +08:00
api "code.gitea.io/gitea/modules/structs"
2022-09-02 15:18:23 -04:00
"code.gitea.io/gitea/tests"
2018-07-06 21:54:30 -04:00
)
// TestAPICreateAndDeleteToken tests that token that was just created can be deleted
func TestAPICreateAndDeleteToken ( t * testing . T ) {
2022-09-02 15:18:23 -04:00
defer tests . PrepareTestEnv ( t ) ( )
2022-08-16 10:22:25 +08:00
user := unittest . AssertExistsAndLoadBean ( t , & user_model . User { ID : 1 } )
2018-07-06 21:54:30 -04:00
req := NewRequestWithJSON ( t , "POST" , "/api/v1/users/user1/tokens" , map [ string ] string {
"name" : "test-key-1" ,
} )
req = AddBasicAuthHeader ( req , user . Name )
resp := MakeRequest ( t , req , http . StatusCreated )
var newAccessToken api . AccessToken
DecodeJSON ( t , resp , & newAccessToken )
2022-08-25 10:31:57 +08:00
unittest . AssertExistsAndLoadBean ( t , & auth_model . AccessToken {
2019-05-04 11:45:34 -04:00
ID : newAccessToken . ID ,
Name : newAccessToken . Name ,
Token : newAccessToken . Token ,
UID : user . ID ,
2018-07-06 21:54:30 -04:00
} )
req = NewRequestf ( t , "DELETE" , "/api/v1/users/user1/tokens/%d" , newAccessToken . ID )
req = AddBasicAuthHeader ( req , user . Name )
MakeRequest ( t , req , http . StatusNoContent )
2022-08-25 10:31:57 +08:00
unittest . AssertNotExistsBean ( t , & auth_model . AccessToken { ID : newAccessToken . ID } )
2020-08-28 10:09:33 +02:00
req = NewRequestWithJSON ( t , "POST" , "/api/v1/users/user1/tokens" , map [ string ] string {
"name" : "test-key-2" ,
} )
req = AddBasicAuthHeader ( req , user . Name )
resp = MakeRequest ( t , req , http . StatusCreated )
DecodeJSON ( t , resp , & newAccessToken )
req = NewRequestf ( t , "DELETE" , "/api/v1/users/user1/tokens/%s" , newAccessToken . Name )
req = AddBasicAuthHeader ( req , user . Name )
MakeRequest ( t , req , http . StatusNoContent )
2022-08-25 10:31:57 +08:00
unittest . AssertNotExistsBean ( t , & auth_model . AccessToken { ID : newAccessToken . ID } )
2018-07-06 21:54:30 -04:00
}
// TestAPIDeleteMissingToken ensures that error is thrown when token not found
func TestAPIDeleteMissingToken ( t * testing . T ) {
2022-09-02 15:18:23 -04:00
defer tests . PrepareTestEnv ( t ) ( )
2022-08-16 10:22:25 +08:00
user := unittest . AssertExistsAndLoadBean ( t , & user_model . User { ID : 1 } )
2018-07-06 21:54:30 -04:00
2021-11-16 16:53:21 +08:00
req := NewRequestf ( t , "DELETE" , "/api/v1/users/user1/tokens/%d" , unittest . NonexistentID )
2018-07-06 21:54:30 -04:00
req = AddBasicAuthHeader ( req , user . Name )
MakeRequest ( t , req , http . StatusNotFound )
}