fleet/server/datastore/mysql/sessions_test.go

package mysql

import (
	"context"
	"testing"

	"github.com/fleetdm/fleet/v4/server/fleet"
	"github.com/fleetdm/fleet/v4/server/ptr"
	"github.com/stretchr/testify/assert"
	"github.com/stretchr/testify/require"
)

func TestSessions(t *testing.T) {
	ds := CreateMySQLDS(t)

	cases := []struct {
		name string
		fn   func(t *testing.T, ds *Datastore)
	}{
		{"Getters", testSessionsGetters},
	}
	for _, c := range cases {
		t.Run(c.name, func(t *testing.T) {
			defer TruncateTables(t, ds)
			c.fn(t, ds)
		})
	}
}

func testSessionsGetters(t *testing.T, ds *Datastore) {
	user, err := ds.NewUser(context.Background(), &fleet.User{
		Password:   []byte("supersecret"),
		Email:      "other@bobcom",
		GlobalRole: ptr.String(fleet.RoleObserver),
	})
	require.NoError(t, err)

	session, err := ds.NewSession(context.Background(), &fleet.Session{UserID: user.ID, Key: "somekey"})
	require.NoError(t, err)
	require.NotZero(t, session.ID)

	gotByID, err := ds.SessionByID(context.Background(), session.ID)
	require.NoError(t, err)
	assert.Equal(t, session.Key, gotByID.Key)
	require.NotNil(t, gotByID.APIOnly)
	assert.False(t, *gotByID.APIOnly)

	gotByKey, err := ds.SessionByKey(context.Background(), session.Key)
	require.NoError(t, err)
	assert.Equal(t, session.ID, gotByKey.ID)
	require.NotNil(t, gotByKey.APIOnly)
	assert.False(t, *gotByKey.APIOnly)

	newSession, err := ds.NewSession(context.Background(), &fleet.Session{UserID: user.ID, Key: "somekey2"})
	require.NoError(t, err)

	sessions, err := ds.ListSessionsForUser(context.Background(), user.ID)
	require.NoError(t, err)
	require.Len(t, sessions, 2)

	require.NoError(t, ds.DestroySession(context.Background(), session))

	prevAccessedAt := newSession.AccessedAt

	require.NoError(t, ds.MarkSessionAccessed(context.Background(), newSession))

	sessions, err = ds.ListSessionsForUser(context.Background(), user.ID)
	require.NoError(t, err)
	require.Len(t, sessions, 1)
	require.NotEqual(t, prevAccessedAt, sessions[0].AccessedAt)

	require.NoError(t, ds.DestroyAllSessionsForUser(context.Background(), user.ID))

	// session for a non-existing user
	newSession, err = ds.NewSession(context.Background(), &fleet.Session{UserID: user.ID + 1, Key: "someotherkey"})
	require.NoError(t, err)

	gotByKey, err = ds.SessionByKey(context.Background(), newSession.Key)
	require.NoError(t, err)
	assert.Equal(t, newSession.ID, gotByKey.ID)
	require.Nil(t, gotByKey.APIOnly)

	gotByID, err = ds.SessionByID(context.Background(), newSession.ID)
	require.NoError(t, err)
	assert.Equal(t, newSession.ID, gotByKey.ID)
	require.Nil(t, gotByKey.APIOnly)

	apiUser, err := ds.NewUser(context.Background(), &fleet.User{
		Password:   []byte("supersecret"),
		GlobalRole: ptr.String(fleet.RoleObserver),
		APIOnly:    true,
	})
	require.NoError(t, err)

	// session for an api user
	apiSession, err := ds.NewSession(context.Background(), &fleet.Session{UserID: apiUser.ID, Key: "someapikey"})
	require.NoError(t, err)

	gotByKey, err = ds.SessionByKey(context.Background(), apiSession.Key)
	require.NoError(t, err)
	assert.Equal(t, apiSession.ID, gotByKey.ID)
	require.NotNil(t, gotByKey.APIOnly)
	assert.True(t, *gotByKey.APIOnly)

	gotByID, err = ds.SessionByID(context.Background(), apiSession.ID)
	require.NoError(t, err)
	assert.Equal(t, apiSession.ID, gotByKey.ID)
	require.NotNil(t, gotByKey.APIOnly)
	assert.True(t, *gotByKey.APIOnly)
}
Add coverage to uncovered mysql code (#1855) * Add coverage to uncovered mysql code * Add deleted method and update mock * Fix test 2021-09-07 16:48:04 +00:00			`package mysql`

			`import (`
Add support for context in datastore/mysql layer (#1962) This is just to pass down the context to the datastore layer, it doesn't use it just yet - this will be in a follow-up PR. 2021-09-14 12:11:07 +00:00			`"context"`
Add coverage to uncovered mysql code (#1855) * Add coverage to uncovered mysql code * Add deleted method and update mock * Fix test 2021-09-07 16:48:04 +00:00			`"testing"`

			`"github.com/fleetdm/fleet/v4/server/fleet"`
			`"github.com/fleetdm/fleet/v4/server/ptr"`
			`"github.com/stretchr/testify/assert"`
			`"github.com/stretchr/testify/require"`
			`)`

Improve performance of the Go test suite (#2060) Closes #1805 2021-09-20 18:09:38 +00:00			`func TestSessions(t *testing.T) {`
Add coverage to uncovered mysql code (#1855) * Add coverage to uncovered mysql code * Add deleted method and update mock * Fix test 2021-09-07 16:48:04 +00:00			`ds := CreateMySQLDS(t)`

Improve performance of the Go test suite (#2060) Closes #1805 2021-09-20 18:09:38 +00:00			`cases := []struct {`
			`name string`
			`fn func(t testing.T, ds Datastore)`
			`}{`
			`{"Getters", testSessionsGetters},`
			`}`
			`for _, c := range cases {`
			`t.Run(c.name, func(t *testing.T) {`
			`defer TruncateTables(t, ds)`
			`c.fn(t, ds)`
			`})`
			`}`
			`}`

			`func testSessionsGetters(t testing.T, ds Datastore) {`
Add support for context in datastore/mysql layer (#1962) This is just to pass down the context to the datastore layer, it doesn't use it just yet - this will be in a follow-up PR. 2021-09-14 12:11:07 +00:00			`user, err := ds.NewUser(context.Background(), &fleet.User{`
Add coverage to uncovered mysql code (#1855) * Add coverage to uncovered mysql code * Add deleted method and update mock * Fix test 2021-09-07 16:48:04 +00:00			`Password: []byte("supersecret"),`
			`Email: "other@bobcom",`
			`GlobalRole: ptr.String(fleet.RoleObserver),`
			`})`
			`require.NoError(t, err)`

Add support for context in datastore/mysql layer (#1962) This is just to pass down the context to the datastore layer, it doesn't use it just yet - this will be in a follow-up PR. 2021-09-14 12:11:07 +00:00			`session, err := ds.NewSession(context.Background(), &fleet.Session{UserID: user.ID, Key: "somekey"})`
Add coverage to uncovered mysql code (#1855) * Add coverage to uncovered mysql code * Add deleted method and update mock * Fix test 2021-09-07 16:48:04 +00:00			`require.NoError(t, err)`
			`require.NotZero(t, session.ID)`

Add support for context in datastore/mysql layer (#1962) This is just to pass down the context to the datastore layer, it doesn't use it just yet - this will be in a follow-up PR. 2021-09-14 12:11:07 +00:00			`gotByID, err := ds.SessionByID(context.Background(), session.ID)`
Add coverage to uncovered mysql code (#1855) * Add coverage to uncovered mysql code * Add deleted method and update mock * Fix test 2021-09-07 16:48:04 +00:00			`require.NoError(t, err)`
			`assert.Equal(t, session.Key, gotByID.Key)`
Remove expiration of API-only user tokens (#4314) 2022-02-22 13:12:03 +00:00			`require.NotNil(t, gotByID.APIOnly)`
			`assert.False(t, *gotByID.APIOnly)`
Add coverage to uncovered mysql code (#1855) * Add coverage to uncovered mysql code * Add deleted method and update mock * Fix test 2021-09-07 16:48:04 +00:00
Add support for context in datastore/mysql layer (#1962) This is just to pass down the context to the datastore layer, it doesn't use it just yet - this will be in a follow-up PR. 2021-09-14 12:11:07 +00:00			`gotByKey, err := ds.SessionByKey(context.Background(), session.Key)`
Add coverage to uncovered mysql code (#1855) * Add coverage to uncovered mysql code * Add deleted method and update mock * Fix test 2021-09-07 16:48:04 +00:00			`require.NoError(t, err)`
			`assert.Equal(t, session.ID, gotByKey.ID)`
Remove expiration of API-only user tokens (#4314) 2022-02-22 13:12:03 +00:00			`require.NotNil(t, gotByKey.APIOnly)`
			`assert.False(t, *gotByKey.APIOnly)`
Add coverage to uncovered mysql code (#1855) * Add coverage to uncovered mysql code * Add deleted method and update mock * Fix test 2021-09-07 16:48:04 +00:00
Add support for context in datastore/mysql layer (#1962) This is just to pass down the context to the datastore layer, it doesn't use it just yet - this will be in a follow-up PR. 2021-09-14 12:11:07 +00:00			`newSession, err := ds.NewSession(context.Background(), &fleet.Session{UserID: user.ID, Key: "somekey2"})`
Add coverage to uncovered mysql code (#1855) * Add coverage to uncovered mysql code * Add deleted method and update mock * Fix test 2021-09-07 16:48:04 +00:00			`require.NoError(t, err)`

Add support for context in datastore/mysql layer (#1962) This is just to pass down the context to the datastore layer, it doesn't use it just yet - this will be in a follow-up PR. 2021-09-14 12:11:07 +00:00			`sessions, err := ds.ListSessionsForUser(context.Background(), user.ID)`
Add coverage to uncovered mysql code (#1855) * Add coverage to uncovered mysql code * Add deleted method and update mock * Fix test 2021-09-07 16:48:04 +00:00			`require.NoError(t, err)`
			`require.Len(t, sessions, 2)`

Add support for context in datastore/mysql layer (#1962) This is just to pass down the context to the datastore layer, it doesn't use it just yet - this will be in a follow-up PR. 2021-09-14 12:11:07 +00:00			`require.NoError(t, ds.DestroySession(context.Background(), session))`
Add coverage to uncovered mysql code (#1855) * Add coverage to uncovered mysql code * Add deleted method and update mock * Fix test 2021-09-07 16:48:04 +00:00
			`prevAccessedAt := newSession.AccessedAt`

Add support for context in datastore/mysql layer (#1962) This is just to pass down the context to the datastore layer, it doesn't use it just yet - this will be in a follow-up PR. 2021-09-14 12:11:07 +00:00			`require.NoError(t, ds.MarkSessionAccessed(context.Background(), newSession))`
Add coverage to uncovered mysql code (#1855) * Add coverage to uncovered mysql code * Add deleted method and update mock * Fix test 2021-09-07 16:48:04 +00:00
Add support for context in datastore/mysql layer (#1962) This is just to pass down the context to the datastore layer, it doesn't use it just yet - this will be in a follow-up PR. 2021-09-14 12:11:07 +00:00			`sessions, err = ds.ListSessionsForUser(context.Background(), user.ID)`
Add coverage to uncovered mysql code (#1855) * Add coverage to uncovered mysql code * Add deleted method and update mock * Fix test 2021-09-07 16:48:04 +00:00			`require.NoError(t, err)`
			`require.Len(t, sessions, 1)`
			`require.NotEqual(t, prevAccessedAt, sessions[0].AccessedAt)`

Add support for context in datastore/mysql layer (#1962) This is just to pass down the context to the datastore layer, it doesn't use it just yet - this will be in a follow-up PR. 2021-09-14 12:11:07 +00:00			`require.NoError(t, ds.DestroyAllSessionsForUser(context.Background(), user.ID))`
Remove expiration of API-only user tokens (#4314) 2022-02-22 13:12:03 +00:00
			`// session for a non-existing user`
			`newSession, err = ds.NewSession(context.Background(), &fleet.Session{UserID: user.ID + 1, Key: "someotherkey"})`
			`require.NoError(t, err)`

			`gotByKey, err = ds.SessionByKey(context.Background(), newSession.Key)`
			`require.NoError(t, err)`
			`assert.Equal(t, newSession.ID, gotByKey.ID)`
			`require.Nil(t, gotByKey.APIOnly)`

			`gotByID, err = ds.SessionByID(context.Background(), newSession.ID)`
			`require.NoError(t, err)`
			`assert.Equal(t, newSession.ID, gotByKey.ID)`
			`require.Nil(t, gotByKey.APIOnly)`

			`apiUser, err := ds.NewUser(context.Background(), &fleet.User{`
			`Password: []byte("supersecret"),`
			`GlobalRole: ptr.String(fleet.RoleObserver),`
			`APIOnly: true,`
			`})`
			`require.NoError(t, err)`

			`// session for an api user`
			`apiSession, err := ds.NewSession(context.Background(), &fleet.Session{UserID: apiUser.ID, Key: "someapikey"})`
			`require.NoError(t, err)`

			`gotByKey, err = ds.SessionByKey(context.Background(), apiSession.Key)`
			`require.NoError(t, err)`
			`assert.Equal(t, apiSession.ID, gotByKey.ID)`
			`require.NotNil(t, gotByKey.APIOnly)`
			`assert.True(t, *gotByKey.APIOnly)`

			`gotByID, err = ds.SessionByID(context.Background(), apiSession.ID)`
			`require.NoError(t, err)`
			`assert.Equal(t, apiSession.ID, gotByKey.ID)`
			`require.NotNil(t, gotByKey.APIOnly)`
			`assert.True(t, *gotByKey.APIOnly)`
Add coverage to uncovered mysql code (#1855) * Add coverage to uncovered mysql code * Add deleted method and update mock * Fix test 2021-09-07 16:48:04 +00:00			`}`