spacecruft
/
Farmbot-Web-App
1
0
Fork 0
Code Issues Pull Requests Releases Activity
Farmbot-Web-App/spec/controllers/api/tokens/tokens_controller_create_sp...

66 lines
2.3 KiB
Ruby
Raw Blame History

require 'spec_helper'
describe Api::TokensController do
include Devise::Test::ControllerHelpers
describe '#create' do
let(:user) { FactoryBot.create(:user, password: "password") }
it 'creates a new token' do
payload = {user: {email: user.email, password: "password"}}
post :create, params: payload
token = json[:token][:unencoded]
expect(token[:iss].last).not_to eq("/") # Trailing slashes are BAD!
expect(token[:iss]).to include($API_URL)
end
it 'handles bad params' do
err_msg = Api::TokensController::NO_USER_ATTR
payload = {user: "NOPE!"}
post :create, params: payload
expect(json[:error]).to include(err_msg)
end
it 'does not bump last_saw_api if it is not a bot' do
payload = {user: {email: user.email, password: "password"}}
before = user.device.last_saw_api
post :create, params: payload
after = user.device.reload.last_saw_api
expect(before).to eq(after)
end
it 'bumps last_saw_api and issues BOT AUD when it is a bot' do
ua = "FARMBOTOS/99.99.99 (RPI3) RPI3 (1.1.1)"
allow(request).to receive(:user_agent).and_return(ua)
request.env["HTTP_USER_AGENT"] = ua
payload = {user: {email: user.email, password: "password"}}
before = user.device.last_saw_api || Time.now
post :create, params: payload
after = user.device.reload.last_saw_api
expect(after).to be
expect(after).to be > before
expect(json.dig(:token, :unencoded, :aud)).to be
expect(json.dig(:token, :unencoded, :aud))
.to eq(AbstractJwtToken::BOT_AUD)
end
it "issues a 'HUMAN' AUD to browsers" do
payload = {user: {email: user.email, password: "password"}}
allow_any_instance_of(Api::TokensController)
.to receive(:xhr?).and_return(true)
post :create, params: payload
expect(json.dig(:token, :unencoded, :aud)).to be
expect(json.dig(:token, :unencoded, :aud))
.to eq(AbstractJwtToken::HUMAN_AUD)
end
it "issues a '?' AUD to all others" do
payload = {user: {email: user.email, password: "password"}}
post :create, params: payload
expect(json.dig(:token, :unencoded, :aud)).to be
expect(json.dig(:token, :unencoded, :aud))
.to eq(AbstractJwtToken::UNKNOWN_AUD)
end
end
end
Reference in New Issue View Git Blame Copy Permalink