|
|
@ -0,0 +1,40 @@ |
|
|
|
package auth |
|
|
|
|
|
|
|
import ( |
|
|
|
"net/http" |
|
|
|
"net/http/httptest" |
|
|
|
"testing" |
|
|
|
|
|
|
|
"github.com/bxcodec/faker/v3" |
|
|
|
"github.com/stretchr/testify/assert" |
|
|
|
) |
|
|
|
|
|
|
|
func TestAuthorizationMiddleware(t *testing.T) { |
|
|
|
token := faker.Word() |
|
|
|
middleware := CreateAuthenticationMiddleware(token) |
|
|
|
|
|
|
|
handler := http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { |
|
|
|
w.WriteHeader(http.StatusOK) |
|
|
|
}) |
|
|
|
|
|
|
|
middlewareHandler := middleware.Middleware(handler) |
|
|
|
|
|
|
|
t.Run("AuthorizationMiddleware returns 403 response when authorization header is incorrect", func(t *testing.T) { |
|
|
|
request, _ := http.NewRequest("GET", "/", nil) |
|
|
|
responseRecorder := httptest.NewRecorder() |
|
|
|
|
|
|
|
middlewareHandler.ServeHTTP(responseRecorder, request) |
|
|
|
|
|
|
|
assert.Equal(t, 403, responseRecorder.Code) |
|
|
|
}) |
|
|
|
|
|
|
|
t.Run("AuthorizationMiddleware continues when authorization header is correct", func(t *testing.T) { |
|
|
|
request, _ := http.NewRequest("GET", "/", nil) |
|
|
|
request.Header.Set("Authorization", "Bearer "+token) |
|
|
|
responseRecorder := httptest.NewRecorder() |
|
|
|
|
|
|
|
middlewareHandler.ServeHTTP(responseRecorder, request) |
|
|
|
|
|
|
|
assert.Equal(t, 200, responseRecorder.Code) |
|
|
|
}) |
|
|
|
} |