fleet/server/service/service_sessions_test.go

package service

import (
	"context"
	"testing"
	"time"

	"github.com/kolide/fleet/server/config"
	"github.com/kolide/fleet/server/contexts/token"
	"github.com/kolide/fleet/server/datastore/inmem"
	"github.com/kolide/fleet/server/kolide"
	"github.com/stretchr/testify/assert"
	"github.com/stretchr/testify/require"
)

const bcryptCost = 6

func TestAuthenticate(t *testing.T) {
	ds, err := inmem.New(config.TestConfig())
	require.Nil(t, err)
	svc, err := newTestService(ds, nil)
	require.Nil(t, err)
	users := createTestUsers(t, ds)

	var loginTests = []struct {
		username string
		password string
		user     kolide.User
		wantErr  error
	}{
		{
			user:     users["admin1"],
			username: testUsers["admin1"].Username,
			password: testUsers["admin1"].PlaintextPassword,
		},
		{
			user:     users["user1"],
			username: testUsers["user1"].Email,
			password: testUsers["user1"].PlaintextPassword,
		},
	}

	for _, tt := range loginTests {
		t.Run(tt.username, func(st *testing.T) {
			user := tt.user
			ctx := context.Background()
			loggedIn, token, err := svc.Login(ctx, tt.username, tt.password)
			require.Nil(st, err, "login unsuccessful")
			assert.Equal(st, user.ID, loggedIn.ID)
			assert.NotEmpty(st, token)

			sessions, err := svc.GetInfoAboutSessionsForUser(ctx, user.ID)
			require.Nil(st, err)
			require.Len(st, sessions, 1, "user should have one session")
			session := sessions[0]
			assert.Equal(st, user.ID, session.UserID)
			assert.WithinDuration(st, time.Now(), session.AccessedAt, 3*time.Second,
				"access time should be set with current time at session creation")
		})
	}
}

func TestGenerateJWT(t *testing.T) {
	jwtKey := ""
	tokenString, err := generateJWT("4", jwtKey)
	require.Nil(t, err)

	svc := authViewerService{}
	viewer, err := authViewer(
		context.Background(),
		jwtKey,
		token.Token(tokenString),
		svc,
	)
	require.Nil(t, err)
	require.NotNil(t, viewer)
}

type authViewerService struct {
	kolide.Service
}

func (authViewerService) GetSessionByKey(ctx context.Context, key string) (*kolide.Session, error) {
	return &kolide.Session{}, nil
}

func (authViewerService) User(ctx context.Context, uid uint) (*kolide.User, error) {
	return &kolide.User{}, nil
}
Organizing go code (#241) 2016-09-26 18:48:55 +00:00			`package service`
Sessions endpoints (#108) * renaming auth service to sessions service * service method implementations * endpoint and transport and transport tests * Authenticate tests 2016-09-05 19:50:57 +00:00
			`import (`
Update go-kit to 0.4.0 (#1411) Notable refactoring: - Use stdlib "context" in place of "golang.org/x/net/context" - Go-kit no longer wraps errors, so we remove the unwrap in transport_error.go - Use MakeHandler when setting up endpoint tests (fixes test bug caught during this refactoring) Closes #1411. 2017-03-15 15:55:30 +00:00			`"context"`
Sessions endpoints (#108) * renaming auth service to sessions service * service method implementations * endpoint and transport and transport tests * Authenticate tests 2016-09-05 19:50:57 +00:00			`"testing"`
Fix bug creating session with 0 timestamp (#171) If AccessedAt is left in the zero value, MySQL will complain with the following error: Error 1292: Incorrect datetime value: '0000-00-00' for column 'accessed_at' at row 1. Now we initialize AccessedAt when creating a new session. 2016-09-15 22:53:47 +00:00			`"time"`
Sessions endpoints (#108) * renaming auth service to sessions service * service method implementations * endpoint and transport and transport tests * Authenticate tests 2016-09-05 19:50:57 +00:00
Rename project to Kolide Fleet (#1529) 2017-06-22 19:50:45 +00:00			`"github.com/kolide/fleet/server/config"`
			`"github.com/kolide/fleet/server/contexts/token"`
			`"github.com/kolide/fleet/server/datastore/inmem"`
			`"github.com/kolide/fleet/server/kolide"`
Sessions endpoints (#108) * renaming auth service to sessions service * service method implementations * endpoint and transport and transport tests * Authenticate tests 2016-09-05 19:50:57 +00:00			`"github.com/stretchr/testify/assert"`
Allow with Logins with email address (#174) The Auth service now accepts emails in the username field The UserService now rejects user creation if the user has @ in the username. 2016-09-15 19:27:55 +00:00			`"github.com/stretchr/testify/require"`
Sessions endpoints (#108) * renaming auth service to sessions service * service method implementations * endpoint and transport and transport tests * Authenticate tests 2016-09-05 19:50:57 +00:00			`)`

Refactoring for config patterns (#159) This PR refactors most of the codebase to use the new config patterns implemented in #149. Now the core service keeps a copy of the KolideConfig struct, and service methods can reference the configuration in that struct when they need it. The most significant refactoring is in the sessions code, separating the business logic from the storage layer. 2016-09-14 16:11:06 +00:00			`const bcryptCost = 6`

Sessions endpoints (#108) * renaming auth service to sessions service * service method implementations * endpoint and transport and transport tests * Authenticate tests 2016-09-05 19:50:57 +00:00			`func TestAuthenticate(t *testing.T) {`
Added built in labels (#526) 2016-11-25 18:08:22 +00:00			`ds, err := inmem.New(config.TestConfig())`
Adds endpoints to invite new users to the application. (#235) User service checks that tokens are valid on new user signups. Closes #230 2016-09-29 02:44:05 +00:00			`require.Nil(t, err)`
Update osquery service methods for distributed queries (#476) 2016-11-14 18:22:54 +00:00			`svc, err := newTestService(ds, nil)`
Adds endpoints to invite new users to the application. (#235) User service checks that tokens are valid on new user signups. Closes #230 2016-09-29 02:44:05 +00:00			`require.Nil(t, err)`
			`users := createTestUsers(t, ds)`

Allow with Logins with email address (#174) The Auth service now accepts emails in the username field The UserService now rejects user creation if the user has @ in the username. 2016-09-15 19:27:55 +00:00			`var loginTests = []struct {`
			`username string`
			`password string`
Adds endpoints to invite new users to the application. (#235) User service checks that tokens are valid on new user signups. Closes #230 2016-09-29 02:44:05 +00:00			`user kolide.User`
Allow with Logins with email address (#174) The Auth service now accepts emails in the username field The UserService now rejects user creation if the user has @ in the username. 2016-09-15 19:27:55 +00:00			`wantErr error`
			`}{`
			`{`
Adds endpoints to invite new users to the application. (#235) User service checks that tokens are valid on new user signups. Closes #230 2016-09-29 02:44:05 +00:00			`user: users["admin1"],`
			`username: testUsers["admin1"].Username,`
			`password: testUsers["admin1"].PlaintextPassword,`
Allow with Logins with email address (#174) The Auth service now accepts emails in the username field The UserService now rejects user creation if the user has @ in the username. 2016-09-15 19:27:55 +00:00			`},`
			`{`
Adds endpoints to invite new users to the application. (#235) User service checks that tokens are valid on new user signups. Closes #230 2016-09-29 02:44:05 +00:00			`user: users["user1"],`
			`username: testUsers["user1"].Email,`
			`password: testUsers["user1"].PlaintextPassword,`
Allow with Logins with email address (#174) The Auth service now accepts emails in the username field The UserService now rejects user creation if the user has @ in the username. 2016-09-15 19:27:55 +00:00			`},`
			`}`

			`for _, tt := range loginTests {`
			`t.Run(tt.username, func(st *testing.T) {`
Adds endpoints to invite new users to the application. (#235) User service checks that tokens are valid on new user signups. Closes #230 2016-09-29 02:44:05 +00:00			`user := tt.user`
Fix bug creating session with 0 timestamp (#171) If AccessedAt is left in the zero value, MySQL will complain with the following error: Error 1292: Incorrect datetime value: '0000-00-00' for column 'accessed_at' at row 1. Now we initialize AccessedAt when creating a new session. 2016-09-15 22:53:47 +00:00			`ctx := context.Background()`
			`loggedIn, token, err := svc.Login(ctx, tt.username, tt.password)`
Fix documentation typos (#1682) 2017-12-22 02:37:32 +00:00			`require.Nil(st, err, "login unsuccessful")`
Allow with Logins with email address (#174) The Auth service now accepts emails in the username field The UserService now rejects user creation if the user has @ in the username. 2016-09-15 19:27:55 +00:00			`assert.Equal(st, user.ID, loggedIn.ID)`
			`assert.NotEmpty(st, token)`
Fix bug creating session with 0 timestamp (#171) If AccessedAt is left in the zero value, MySQL will complain with the following error: Error 1292: Incorrect datetime value: '0000-00-00' for column 'accessed_at' at row 1. Now we initialize AccessedAt when creating a new session. 2016-09-15 22:53:47 +00:00
			`sessions, err := svc.GetInfoAboutSessionsForUser(ctx, user.ID)`
			`require.Nil(st, err)`
			`require.Len(st, sessions, 1, "user should have one session")`
			`session := sessions[0]`
			`assert.Equal(st, user.ID, session.UserID)`
			`assert.WithinDuration(st, time.Now(), session.AccessedAt, 3*time.Second,`
			`"access time should be set with current time at session creation")`
Allow with Logins with email address (#174) The Auth service now accepts emails in the username field The UserService now rejects user creation if the user has @ in the username. 2016-09-15 19:27:55 +00:00			`})`
			`}`
remove deprecated errors package (#961) 2017-01-14 20:00:09 +00:00			`}`

			`func TestGenerateJWT(t *testing.T) {`
			`jwtKey := ""`
			`tokenString, err := generateJWT("4", jwtKey)`
			`require.Nil(t, err)`

			`svc := authViewerService{}`
			`viewer, err := authViewer(`
			`context.Background(),`
			`jwtKey,`
			`token.Token(tokenString),`
			`svc,`
			`)`
			`require.Nil(t, err)`
			`require.NotNil(t, viewer)`
			`}`

			`type authViewerService struct {`
			`kolide.Service`
			`}`

			`func (authViewerService) GetSessionByKey(ctx context.Context, key string) (*kolide.Session, error) {`
			`return &kolide.Session{}, nil`
			`}`
Allow with Logins with email address (#174) The Auth service now accepts emails in the username field The UserService now rejects user creation if the user has @ in the username. 2016-09-15 19:27:55 +00:00
remove deprecated errors package (#961) 2017-01-14 20:00:09 +00:00			`func (authViewerService) User(ctx context.Context, uid uint) (*kolide.User, error) {`
			`return &kolide.User{}, nil`
Allow with Logins with email address (#174) The Auth service now accepts emails in the username field The UserService now rejects user creation if the user has @ in the username. 2016-09-15 19:27:55 +00:00			`}`