add user login tests

Author: rmb938

handlers/User_test.go

@@ -0,0 +1,145 @@
+package handlers
+
+import (
+	"testing"
+
+	"bytes"
+	"encoding/json"
+	"net/http"
+	"net/http/httptest"
+
+	"io/ioutil"
+	"os"
+
+	"crypto/rand"
+	"crypto/rsa"
+
+	jwt "github.com/dgrijalva/jwt-go"
+	"github.com/gaia-pipeline/gaia"
+	"github.com/gaia-pipeline/gaia/store"
+	"github.com/hashicorp/go-hclog"
+	"github.com/labstack/echo"
+)
+
+func TestUserLoginHMACKey(t *testing.T) {
+
+	dataDir, err := ioutil.TempDir("", "hmac")
+	if err != nil {
+		t.Fatalf("error creating data dir %v", err.Error())
+	}
+
+	defer func() {
+		gaia.Cfg = nil
+		os.RemoveAll(dataDir)
+	}()
+
+	gaia.Cfg = &gaia.Config{
+		JWTKey: []byte("hmac-jwt-key"),
+		Logger: hclog.New(&hclog.LoggerOptions{
+			Level:  hclog.Trace,
+			Output: hclog.DefaultOutput,
+			Name:   "Gaia",
+		}),
+		DataPath: dataDir,
+	}
+
+	dataStore := store.NewStore()
+	err = dataStore.Init()
+	if err != nil {
+		t.Fatalf("cannot initialize store: %v", err.Error())
+	}
+
+	e := echo.New()
+	InitHandlers(e, dataStore, nil)
+
+	body := map[string]string{
+		"username": "admin",
+		"password": "admin",
+	}
+	bodyBytes, _ := json.Marshal(body)
+	req := httptest.NewRequest(echo.POST, "/api/"+apiVersion+"/login", bytes.NewBuffer(bodyBytes))
+	req.Header.Set("Content-Type", "application/json")
+	rec := httptest.NewRecorder()
+	e.ServeHTTP(rec, req)
+
+	if rec.Code != http.StatusOK {
+		t.Fatalf("expected response code %v got %v", http.StatusOK, rec.Code)
+	}
+
+	data, err := ioutil.ReadAll(rec.Body)
+	user := &gaia.User{}
+	err = json.Unmarshal(data, user)
+	if err != nil {
+		t.Fatalf("error unmarshaling responce %v", err.Error())
+	}
+	token, _, err := new(jwt.Parser).ParseUnverified(user.Tokenstring, jwt.MapClaims{})
+	if err != nil {
+		t.Fatalf("error parsing the token %v", err.Error())
+	}
+	alg := "HS256"
+	if token.Header["alg"] != alg {
+		t.Fatalf("expected token alg %v got %v", alg, token.Header["alg"])
+	}
+
+}
+
+func TestUserLoginRSAKey(t *testing.T) {
+	dataDir, err := ioutil.TempDir("", "rsa")
+	if err != nil {
+		t.Fatalf("error creating data dir %v", err.Error())
+	}
+
+	defer func() {
+		gaia.Cfg = nil
+		os.RemoveAll(dataDir)
+	}()
+
+	key, _ := rsa.GenerateKey(rand.Reader, 2048)
+	gaia.Cfg = &gaia.Config{
+		JWTKey: key,
+		Logger: hclog.New(&hclog.LoggerOptions{
+			Level:  hclog.Trace,
+			Output: hclog.DefaultOutput,
+			Name:   "Gaia",
+		}),
+		DataPath: dataDir,
+	}
+
+	dataStore := store.NewStore()
+	err = dataStore.Init()
+	if err != nil {
+		t.Fatalf("cannot initialize store: %v", err.Error())
+	}
+
+	e := echo.New()
+	InitHandlers(e, dataStore, nil)
+
+	body := map[string]string{
+		"username": "admin",
+		"password": "admin",
+	}
+	bodyBytes, _ := json.Marshal(body)
+	req := httptest.NewRequest(echo.POST, "/api/"+apiVersion+"/login", bytes.NewBuffer(bodyBytes))
+	req.Header.Set("Content-Type", "application/json")
+	rec := httptest.NewRecorder()
+	e.ServeHTTP(rec, req)
+
+	if rec.Code != http.StatusOK {
+		t.Fatalf("expected response code %v got %v", http.StatusOK, rec.Code)
+	}
+
+	data, err := ioutil.ReadAll(rec.Body)
+	user := &gaia.User{}
+	err = json.Unmarshal(data, user)
+	if err != nil {
+		t.Fatalf("error unmarshaling responce %v", err.Error())
+	}
+	token, _, err := new(jwt.Parser).ParseUnverified(user.Tokenstring, jwt.MapClaims{})
+	if err != nil {
+		t.Fatalf("error parsing the token %v", err.Error())
+	}
+	alg := "RS512"
+	if token.Header["alg"] != alg {
+		t.Fatalf("expected token alg %v got %v", alg, token.Header["alg"])
+	}
+}