Files

 3ee0b3f

/

handler_test.go

Copy path

Blame

Blame

Latest commit

 

History

History

91 lines (76 loc) · 2.47 KB

 3ee0b3f

/

handler_test.go

Top

File metadata and controls

• Code
• Blame

91 lines (76 loc) · 2.47 KB

Raw

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

44

45

46

47

48

49

50

51

52

53

54

55

56

57

58

59

60

61

62

63

64

65

66

67

68

69

70

71

72

73

74

75

76

77

78

79

80

81

82

83

84

85

86

87

88

89

90

91

/*

* Copyright © 2015-2018 Aeneas Rekkas <aeneas+oss@aeneas.io>

*

* Licensed under the Apache License, Version 2.0 (the "License");

* you may not use this file except in compliance with the License.

* You may obtain a copy of the License at

*

* http://www.apache.org/licenses/LICENSE-2.0

*

* Unless required by applicable law or agreed to in writing, software

* distributed under the License is distributed on an "AS IS" BASIS,

* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

* See the License for the specific language governing permissions and

* limitations under the License.

*

* @author Aeneas Rekkas <aeneas+oss@aeneas.io>

* @Copyright 2017-2018 Aeneas Rekkas <aeneas+oss@aeneas.io>

* @license Apache-2.0

*/

package consent

import (

"net/http"

"net/http/cookiejar"

"net/http/httptest"

"net/url"

"testing"

"time"

"github.com/gorilla/sessions"

"github.com/julienschmidt/httprouter"

"github.com/ory/herodot"

"github.com/pborman/uuid"

"github.com/stretchr/testify/assert"

"github.com/stretchr/testify/require"

)

func TestLogout(t *testing.T) {

cs := sessions.NewCookieStore([]byte("secret"))

r := httprouter.New()

h := NewHandler(

herodot.NewJSONWriter(nil),

NewMemoryManager(nil),

cs,

"https://www.ory.sh",

)

sid := uuid.New()

r.Handle("GET", "/login", func(w http.ResponseWriter, r *http.Request, _ httprouter.Params) {

cookie, _ := cs.Get(r, cookieAuthenticationName)

require.NoError(t, h.M.CreateAuthenticationSession(&AuthenticationSession{

ID: sid,

Subject: "foo",

AuthenticatedAt: time.Now(),

}))

cookie.Values[cookieAuthenticationSIDName] = sid

cookie.Options.MaxAge = 60

require.NoError(t, cookie.Save(r, w))

})

r.Handle("GET", "/logout", func(w http.ResponseWriter, r *http.Request, _ httprouter.Params) {

})

h.SetRoutes(r, r)

ts := httptest.NewServer(r)

defer ts.Close()

h.LogoutRedirectURL = ts.URL + "/logout"

u, err := url.Parse(ts.URL)

require.NoError(t, err)

cj, err := cookiejar.New(new(cookiejar.Options))

require.NoError(t, err)

c := &http.Client{Jar: cj}

resp, err := c.Get(ts.URL + "/login")

require.NoError(t, err)

require.EqualValues(t, http.StatusOK, resp.StatusCode)

require.Len(t, cj.Cookies(u), 1)

resp, err = c.Get(ts.URL + "/oauth2/auth/sessions/login/revoke")

require.NoError(t, err)

require.EqualValues(t, http.StatusOK, resp.StatusCode)

assert.Len(t, cj.Cookies(u), 0)

assert.EqualValues(t, ts.URL+"/logout", resp.Request.URL.String())

}