Adding more tests

Author: szamfirov

build.gradle

@@ -49,6 +49,7 @@ dependencies {
     testCompile group: 'org.mockito', name: 'mockito-core', version: '2.2.28'
     testCompile group: 'org.hamcrest', name: 'hamcrest-library', version: '1.3'
     testCompile group: 'org.skyscreamer', name: 'jsonassert', version: '1.4.0'
+    testCompile group: 'org.jsoup', name: 'jsoup', version: '1.10.2'
     testCompile 'com.squareup.okhttp3:mockwebserver:3.8.1'
 }
 

src/test/java/cd/go/authorization/okta/OktaAuthorizerTest.java

@@ -0,0 +1,89 @@
+/*
+ * Copyright 2017 ThoughtWorks, Inc.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package cd.go.authorization.okta;
+
+import cd.go.authorization.okta.models.*;
+import cd.go.authorization.okta.OktaUser;
+import org.junit.Before;
+import org.junit.Test;
+
+import java.util.Collections;
+import java.util.List;
+
+import static java.util.Collections.singletonList;
+import static java.util.Collections.singletonMap;
+import static org.hamcrest.Matchers.contains;
+import static org.hamcrest.Matchers.hasSize;
+import static org.junit.Assert.assertThat;
+import static org.mockito.Mockito.*;
+
+public class OktaAuthorizerTest {
+
+    private OktaAuthorizer authorizer;
+    private OktaUser loggedInUser;
+    private MembershipChecker membershipChecker;
+    private AuthConfig authConfig;
+
+    @Before
+    public void setUp() throws Exception {
+        membershipChecker = mock(MembershipChecker.class);
+        loggedInUser = mock(OktaUser.class);
+        authConfig = mock(AuthConfig.class);
+
+        authorizer = new OktaAuthorizer(membershipChecker);
+    }
+
+    @Test
+    public void shouldReturnEmptyListIfNoRoleConfiguredForGivenAuthConfig() throws Exception {
+        final List<String> assignedRoles = authorizer.authorize(loggedInUser, authConfig, Collections.emptyList());
+
+        assertThat(assignedRoles, hasSize(0));
+        verifyZeroInteractions(authConfig);
+        verifyZeroInteractions(membershipChecker);
+    }
+
+    @Test
+    public void shouldAssignRoleIfUserIsAMemberOfAtLeastOneGroup() throws Exception {
+        final Role role = mock(Role.class);
+        final OktaRoleConfiguration roleConfiguration = mock(OktaRoleConfiguration.class);
+
+        when(role.name()).thenReturn("admin");
+        when(role.roleConfiguration()).thenReturn(roleConfiguration);
+        when(roleConfiguration.groups()).thenReturn(singletonList("group-1"));
+        when(membershipChecker.isAMemberOfAtLeastOneGroup(loggedInUser, authConfig, roleConfiguration.groups())).thenReturn(true);
+
+        final List<String> assignedRoles = authorizer.authorize(loggedInUser, authConfig, singletonList(role));
+
+        assertThat(assignedRoles, hasSize(1));
+        assertThat(assignedRoles, contains("admin"));
+    }
+
+    @Test
+    public void shouldNotAssignRoleIfUserIsNotMemberOfAnyGroup() throws Exception {
+        final Role role = mock(Role.class);
+        final OktaRoleConfiguration roleConfiguration = mock(OktaRoleConfiguration.class);
+
+        when(role.name()).thenReturn("admin");
+        when(role.roleConfiguration()).thenReturn(roleConfiguration);
+        when(roleConfiguration.groups()).thenReturn(singletonList("group-1"));
+        when(membershipChecker.isAMemberOfAtLeastOneGroup(loggedInUser, authConfig, roleConfiguration.groups())).thenReturn(false);
+
+        final List<String> assignedRoles = authorizer.authorize(loggedInUser, authConfig, singletonList(role));
+
+        assertThat(assignedRoles, hasSize(0));
+    }
+}

src/test/java/cd/go/authorization/okta/executors/GetRoleConfigMetadataRequestExecutorTest.java

@@ -0,0 +1,53 @@
+/*
+ * Copyright 2017 ThoughtWorks, Inc.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package cd.go.authorization.okta.executors;
+
+import com.thoughtworks.go.plugin.api.response.GoPluginApiResponse;
+import org.junit.Test;
+import org.skyscreamer.jsonassert.JSONAssert;
+
+import static org.hamcrest.Matchers.is;
+import static org.junit.Assert.assertThat;
+
+public class GetRoleConfigMetadataRequestExecutorTest {
+
+    @Test
+    public void shouldReturnRoleConfigMetadata() throws Exception {
+        final GoPluginApiResponse response = new GetRoleConfigMetadataRequestExecutor().execute();
+
+        assertThat(response.responseCode(), is(200));
+
+        final String expectedRoleConfigMetadata = "[\n" +
+                "  {\n" +
+                "    \"key\": \"Groups\",\n" +
+                "    \"metadata\": {\n" +
+                "      \"required\": false,\n" +
+                "      \"secure\": false\n" +
+                "    }\n" +
+                "  },\n" +
+                "  {\n" +
+                "    \"key\": \"Users\",\n" +
+                "    \"metadata\": {\n" +
+                "      \"required\": false,\n" +
+                "      \"secure\": false\n" +
+                "    }\n" +
+                "  }\n" +
+                "]";
+
+        JSONAssert.assertEquals(expectedRoleConfigMetadata, response.responseBody(), true);
+    }
+}

src/test/java/cd/go/authorization/okta/executors/GetRoleConfigViewRequestExecutorTest.java

@@ -0,0 +1,66 @@
+/*
+ * Copyright 2017 ThoughtWorks, Inc.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package cd.go.authorization.okta.executors;
+
+import cd.go.authorization.okta.annotation.MetadataHelper;
+import cd.go.authorization.okta.annotation.ProfileMetadata;
+import cd.go.authorization.okta.models.OktaRoleConfiguration;
+import cd.go.authorization.okta.utils.Util;
+import com.google.gson.Gson;
+import com.thoughtworks.go.plugin.api.response.GoPluginApiResponse;
+import org.jsoup.Jsoup;
+import org.jsoup.nodes.Document;
+import org.jsoup.select.Elements;
+import org.junit.Test;
+
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+import static org.hamcrest.Matchers.*;
+import static org.junit.Assert.assertThat;
+
+public class GetRoleConfigViewRequestExecutorTest {
+
+    @Test
+    public void allFieldsShouldBePresentInView() throws Exception {
+        String template = Util.readResource("/role-config.template.html");
+        final Document document = Jsoup.parse(template);
+
+        final List<ProfileMetadata> metadataList = MetadataHelper.getMetadata(OktaRoleConfiguration.class);
+        for (ProfileMetadata field : metadataList) {
+            final Elements inputFieldForKey = document.getElementsByAttributeValue("ng-model", field.getKey());
+            assertThat(inputFieldForKey, hasSize(1));
+
+            final Elements spanToShowError = document.getElementsByAttributeValue("ng-class", "{'is-visible': GOINPUTNAME[" + field.getKey() + "].$error.server}");
+            assertThat(spanToShowError, hasSize(1));
+            assertThat(spanToShowError.attr("ng-show"), is("GOINPUTNAME[" + field.getKey() + "].$error.server"));
+            assertThat(spanToShowError.text(), is("{{GOINPUTNAME[" + field.getKey() + "].$error.server}}"));
+        }
+
+        final Elements inputs = document.select("textarea,input,select");
+        assertThat("should contains only inputs that defined in OktaRoleConfiguration.java",inputs, hasSize(metadataList.size()));
+    }
+
+    @Test
+    public void shouldRenderTheTemplateInJSON() throws Exception {
+        GoPluginApiResponse response = new GetRoleConfigViewRequestExecutor().execute();
+        assertThat(response.responseCode(), is(200));
+        Map<String, String> hashSet = new Gson().fromJson(response.responseBody(), HashMap.class);
+        assertThat(hashSet, hasEntry("template", Util.readResource("/role-config.template.html")));
+    }
+}

src/test/java/cd/go/authorization/okta/requests/RoleConfigValidateRequestExecutorTest.java

@@ -0,0 +1,74 @@
+/*
+ * Copyright 2017 ThoughtWorks, Inc.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package cd.go.authorization.okta.requests;
+
+import com.google.gson.Gson;
+import com.thoughtworks.go.plugin.api.request.GoPluginApiRequest;
+import com.thoughtworks.go.plugin.api.response.GoPluginApiResponse;
+import org.junit.Before;
+import org.junit.Test;
+import org.skyscreamer.jsonassert.JSONAssert;
+import org.skyscreamer.jsonassert.JSONCompareMode;
+
+import java.util.Collections;
+
+import static java.util.Collections.singletonMap;
+import static org.mockito.Mockito.mock;
+import static org.mockito.Mockito.when;
+
+public class RoleConfigValidateRequestExecutorTest {
+    private GoPluginApiRequest request;
+
+    @Before
+    public void setup() throws Exception {
+        request = mock(GoPluginApiRequest.class);
+    }
+
+    @Test
+    public void shouldValidateEmptyRoleConfig() throws Exception {
+        when(request.requestBody()).thenReturn(new Gson().toJson(Collections.emptyMap()));
+
+        GoPluginApiResponse response = RoleConfigValidateRequest.from(request).execute();
+        String json = response.responseBody();
+
+        String expectedJSON = "[\n" +
+                "  {\n" +
+                "    \"key\": \"Users\",\n" +
+                "    \"message\": \"At least one of the fields(groups or users) should be specified.\"\n" +
+                "  },\n" +
+                "  {\n" +
+                "    \"key\": \"Groups\",\n" +
+                "    \"message\": \"At least one of the fields(groups or users) should be specified.\"\n" +
+                "  }\n" +
+                "]";
+
+        JSONAssert.assertEquals(expectedJSON, json, JSONCompareMode.NON_EXTENSIBLE);
+    }
+
+    @Test
+    public void shouldValidateValidRoleConfig() throws Exception {
+        when(request.requestBody()).thenReturn(new Gson().toJson(singletonMap("Groups", "Users")));
+
+        GoPluginApiResponse response = RoleConfigValidateRequest.from(request).execute();
+        String json = response.responseBody();
+
+        String expectedJSON = "[]";
+
+        JSONAssert.assertEquals(expectedJSON, json, JSONCompareMode.NON_EXTENSIBLE);
+    }
+
+}

src/test/java/cd/go/authorization/okta/requests/RoleConfigValidateRequestTest.java

@@ -0,0 +1,57 @@
+/*
+ * Copyright 2017 ThoughtWorks, Inc.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package cd.go.authorization.okta.requests;
+
+import cd.go.authorization.okta.models.OktaRoleConfiguration;
+import com.thoughtworks.go.plugin.api.request.GoPluginApiRequest;
+import org.junit.Before;
+import org.junit.Test;
+import org.mockito.Mock;
+
+import static java.util.Arrays.asList;
+import static org.hamcrest.Matchers.contains;
+import static org.hamcrest.Matchers.hasEntry;
+import static org.junit.Assert.assertThat;
+import static org.mockito.Mockito.when;
+import static org.mockito.MockitoAnnotations.initMocks;
+
+public class RoleConfigValidateRequestTest {
+
+    @Mock
+    private GoPluginApiRequest apiRequest;
+
+    @Before
+    public void setUp() throws Exception {
+        initMocks(this);
+    }
+
+    @Test
+    public void shouldDeserializeGoPluginApiRequestToRoleConfigValidateRequest() throws Exception {
+        String responseBody = "{\n" +
+                "  \"Groups\": \"group-1,group-2\",\n" +
+                "  \"Users\": \"bob,alice\"\n" +
+                "}";
+
+        when(apiRequest.requestBody()).thenReturn(responseBody);
+
+        final RoleConfigValidateRequest request = RoleConfigValidateRequest.from(apiRequest);
+        final OktaRoleConfiguration oktaRoleConfiguration = request.oktaRoleConfiguration();
+
+        assertThat(oktaRoleConfiguration.groups(), contains("group-1", "group-2"));
+        assertThat(oktaRoleConfiguration.users(), contains("bob", "alice"));
+    }
+}