| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293 |
- // Copyright 2017 Google
- //
- // Licensed under the Apache License, Version 2.0 (the "License");
- // you may not use this file except in compliance with the License.
- // You may obtain a copy of the License at
- //
- // http://www.apache.org/licenses/LICENSE-2.0
- //
- // Unless required by applicable law or agreed to in writing, software
- // distributed under the License is distributed on an "AS IS" BASIS,
- // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- // See the License for the specific language governing permissions and
- // limitations under the License.
- #import "FirebaseStorageInternal/Tests/Unit/FIRStorageTestHelpers.h"
- #import "FirebaseCore/Extension/FirebaseCoreInternal.h"
- #import "SharedTestUtilities/AppCheckFake/FIRAppCheckFake.h"
- #import "SharedTestUtilities/AppCheckFake/FIRAppCheckTokenResultFake.h"
- #import "SharedTestUtilities/FIRAuthInteropFake.h"
- @interface FIRStorageTokenAuthorizerTests : XCTestCase
- @property(strong, nonatomic) GTMSessionFetcher *fetcher;
- @property(strong, nonatomic) GTMSessionFetcherService *fetcherService;
- @property(strong, nonatomic) FIRAuthInteropFake *auth;
- @property(strong, nonatomic) FIRAppCheckFake *appCheck;
- @property(strong, nonatomic) FIRAppCheckTokenResultFake *appCheckTokenSuccess;
- @property(strong, nonatomic) FIRAppCheckTokenResultFake *appCheckTokenError;
- @end
- @implementation FIRStorageTokenAuthorizerTests
- - (void)setUp {
- [super setUp];
- self.appCheckTokenSuccess = [[FIRAppCheckTokenResultFake alloc] initWithToken:@"token" error:nil];
- self.appCheckTokenError = [[FIRAppCheckTokenResultFake alloc]
- initWithToken:@"dummy token"
- error:[NSError errorWithDomain:@"testAppCheckError" code:-1 userInfo:nil]];
- NSURLRequest *fetchRequest = [NSURLRequest requestWithURL:[FIRStorageTestHelpers objectURL]];
- self.fetcher = [GTMSessionFetcher fetcherWithRequest:fetchRequest];
- self.fetcherService = [[GTMSessionFetcherService alloc] init];
- self.auth = [[FIRAuthInteropFake alloc] initWithToken:kFIRStorageTestAuthToken
- userID:nil
- error:nil];
- self.appCheck = [[FIRAppCheckFake alloc] init];
- self.fetcher.authorizer =
- [[FIRStorageTokenAuthorizer alloc] initWithGoogleAppID:@"dummyAppID"
- fetcherService:self.fetcherService
- authProvider:self.auth
- appCheck:self.appCheck];
- }
- - (void)tearDown {
- self.fetcher = nil;
- self.fetcherService = nil;
- self.auth = nil;
- self.appCheck = nil;
- self.appCheckTokenSuccess = nil;
- [super tearDown];
- }
- - (void)testSuccessfulAuth {
- XCTestExpectation *expectation = [self expectationWithDescription:@"testSuccessfulAuth"];
- [self setFetcherTestBlockWithStatusCode:200
- validationBlock:^(GTMSessionFetcher *fetcher) {
- XCTAssertTrue([fetcher.authorizer isAuthorizedRequest:fetcher.request]);
- }];
- [self.fetcher
- beginFetchWithCompletionHandler:^(NSData *_Nullable data, NSError *_Nullable error) {
- NSDictionary<NSString *, NSString *> *headers = self.fetcher.request.allHTTPHeaderFields;
- XCTAssertEqualObjects(headers[@"Authorization"], [self validAuthToken]);
- [expectation fulfill];
- }];
- [FIRStorageTestHelpers waitForExpectation:self];
- }
- - (void)testUnsuccessfulAuth {
- XCTestExpectation *expectation = [self expectationWithDescription:@"testUnsuccessfulAuth"];
- NSError *authError = [NSError errorWithDomain:FIRStorageErrorDomainInternal
- code:FIRIMPLStorageErrorCodeUnauthenticated
- userInfo:nil];
- FIRAuthInteropFake *failedAuth = [[FIRAuthInteropFake alloc] initWithToken:nil
- userID:nil
- error:authError];
- self.fetcher.authorizer =
- [[FIRStorageTokenAuthorizer alloc] initWithGoogleAppID:@"dummyAppID"
- fetcherService:self.fetcherService
- authProvider:failedAuth
- appCheck:nil];
- [self
- setFetcherTestBlockWithStatusCode:401
- validationBlock:^(GTMSessionFetcher *fetcher) {
- XCTAssertFalse([fetcher.authorizer isAuthorizedRequest:fetcher.request]);
- }];
- [self.fetcher
- beginFetchWithCompletionHandler:^(NSData *_Nullable data, NSError *_Nullable error) {
- NSDictionary<NSString *, NSString *> *headers = self.fetcher.request.allHTTPHeaderFields;
- NSString *authHeader = [headers objectForKey:@"Authorization"];
- XCTAssertNil(authHeader);
- XCTAssertEqualObjects(error.domain, FIRStorageErrorDomainInternal);
- XCTAssertEqual(error.code, FIRIMPLStorageErrorCodeUnauthenticated);
- [expectation fulfill];
- }];
- [FIRStorageTestHelpers waitForExpectation:self];
- }
- - (void)testSuccessfulUnauthenticatedAuth {
- XCTestExpectation *expectation =
- [self expectationWithDescription:@"testSuccessfulUnauthenticatedAuth"];
- // Simulate Auth not being included at all.
- self.fetcher.authorizer =
- [[FIRStorageTokenAuthorizer alloc] initWithGoogleAppID:@"dummyAppID"
- fetcherService:self.fetcherService
- authProvider:nil
- appCheck:nil];
- [self
- setFetcherTestBlockWithStatusCode:200
- validationBlock:^(GTMSessionFetcher *fetcher) {
- XCTAssertFalse([fetcher.authorizer isAuthorizedRequest:fetcher.request]);
- }];
- [self.fetcher
- beginFetchWithCompletionHandler:^(NSData *_Nullable data, NSError *_Nullable error) {
- NSDictionary<NSString *, NSString *> *headers = self.fetcher.request.allHTTPHeaderFields;
- NSString *authHeader = [headers objectForKey:@"Authorization"];
- XCTAssertNil(authHeader);
- XCTAssertNil(error);
- [expectation fulfill];
- }];
- [FIRStorageTestHelpers waitForExpectation:self];
- }
- - (void)testSuccessfulAppCheckNoAuth {
- self.appCheck.tokenResult = self.appCheckTokenSuccess;
- self.fetcher.authorizer =
- [[FIRStorageTokenAuthorizer alloc] initWithGoogleAppID:@"dummyAppID"
- fetcherService:self.fetcherService
- authProvider:nil
- appCheck:self.appCheck];
- [self
- setFetcherTestBlockWithStatusCode:200
- validationBlock:^(GTMSessionFetcher *fetcher) {
- XCTAssertFalse([fetcher.authorizer isAuthorizedRequest:fetcher.request]);
- }];
- XCTestExpectation *expectation = [self expectationWithDescription:@"fetchCompletion"];
- [self.fetcher
- beginFetchWithCompletionHandler:^(NSData *_Nullable data, NSError *_Nullable error) {
- NSDictionary<NSString *, NSString *> *headers = self.fetcher.request.allHTTPHeaderFields;
- XCTAssertEqualObjects(headers[@"X-Firebase-AppCheck"], self.appCheckTokenSuccess.token);
- [expectation fulfill];
- }];
- [FIRStorageTestHelpers waitForExpectation:self];
- }
- - (void)testSuccessfulAppCheckAndAuth {
- self.appCheck.tokenResult = self.appCheckTokenSuccess;
- [self setFetcherTestBlockWithStatusCode:200
- validationBlock:^(GTMSessionFetcher *fetcher) {
- XCTAssertTrue([fetcher.authorizer isAuthorizedRequest:fetcher.request]);
- }];
- XCTestExpectation *expectation = [self expectationWithDescription:@"fetchCompletion"];
- [self.fetcher
- beginFetchWithCompletionHandler:^(NSData *_Nullable data, NSError *_Nullable error) {
- NSDictionary<NSString *, NSString *> *headers = self.fetcher.request.allHTTPHeaderFields;
- XCTAssertEqualObjects(headers[@"Authorization"], [self validAuthToken]);
- XCTAssertEqualObjects(headers[@"X-Firebase-AppCheck"], self.appCheckTokenSuccess.token);
- [expectation fulfill];
- }];
- [FIRStorageTestHelpers waitForExpectation:self];
- }
- - (void)testAppCheckError {
- self.appCheck.tokenResult = self.appCheckTokenError;
- [self setFetcherTestBlockWithStatusCode:200
- validationBlock:^(GTMSessionFetcher *fetcher) {
- XCTAssertTrue([fetcher.authorizer isAuthorizedRequest:fetcher.request]);
- }];
- XCTestExpectation *expectation = [self expectationWithDescription:@"fetchCompletion"];
- [self.fetcher
- beginFetchWithCompletionHandler:^(NSData *_Nullable data, NSError *_Nullable error) {
- NSDictionary<NSString *, NSString *> *headers = self.fetcher.request.allHTTPHeaderFields;
- XCTAssertEqualObjects(headers[@"Authorization"], [self validAuthToken]);
- XCTAssertEqualObjects(headers[@"X-Firebase-AppCheck"], self.appCheckTokenError.token);
- [expectation fulfill];
- }];
- [FIRStorageTestHelpers waitForExpectation:self];
- }
- - (void)testIsAuthorizing {
- XCTestExpectation *expectation = [self expectationWithDescription:@"testIsAuthorizing"];
- [self
- setFetcherTestBlockWithStatusCode:200
- validationBlock:^(GTMSessionFetcher *fetcher) {
- XCTAssertFalse([fetcher.authorizer isAuthorizingRequest:fetcher.request]);
- }];
- [self.fetcher
- beginFetchWithCompletionHandler:^(NSData *_Nullable data, NSError *_Nullable error) {
- [expectation fulfill];
- }];
- [FIRStorageTestHelpers waitForExpectation:self];
- }
- - (void)testStopAuthorizingNoop {
- XCTestExpectation *expectation = [self expectationWithDescription:@"testStopAuthorizingNoop"];
- [self setFetcherTestBlockWithStatusCode:200
- validationBlock:^(GTMSessionFetcher *fetcher) {
- // Since both of these are noops, we expect that invoking them
- // will still result in successful authentication
- [fetcher.authorizer stopAuthorization];
- [fetcher.authorizer stopAuthorizationForRequest:fetcher.request];
- }];
- [self.fetcher
- beginFetchWithCompletionHandler:^(NSData *_Nullable data, NSError *_Nullable error) {
- NSDictionary<NSString *, NSString *> *headers = self.fetcher.request.allHTTPHeaderFields;
- NSString *authHeader = [headers objectForKey:@"Authorization"];
- NSString *firebaseToken =
- [NSString stringWithFormat:kFIRStorageAuthTokenFormat, kFIRStorageTestAuthToken];
- XCTAssertEqualObjects(authHeader, firebaseToken);
- [expectation fulfill];
- }];
- [FIRStorageTestHelpers waitForExpectation:self];
- }
- - (void)testEmail {
- XCTestExpectation *expectation = [self expectationWithDescription:@"testEmail"];
- [self setFetcherTestBlockWithStatusCode:200
- validationBlock:^(GTMSessionFetcher *fetcher) {
- XCTAssertNil([fetcher.authorizer userEmail]);
- }];
- [self.fetcher
- beginFetchWithCompletionHandler:^(NSData *_Nullable data, NSError *_Nullable error) {
- [expectation fulfill];
- }];
- [FIRStorageTestHelpers waitForExpectation:self];
- }
- #pragma mark - Helpers
- - (void)setFetcherTestBlockWithStatusCode:(NSUInteger)httpStatusCode
- validationBlock:(void (^)(GTMSessionFetcher *fetcher))validationBlock {
- self.fetcher.testBlock = ^(GTMSessionFetcher *fetcher, GTMSessionFetcherTestResponse response) {
- validationBlock(fetcher);
- NSHTTPURLResponse *httpResponse = [[NSHTTPURLResponse alloc] initWithURL:fetcher.request.URL
- statusCode:httpStatusCode
- HTTPVersion:kHTTPVersion
- headerFields:nil];
- response(httpResponse, nil, nil);
- };
- }
- - (NSString *)validAuthToken {
- return [NSString stringWithFormat:kFIRStorageAuthTokenFormat, kFIRStorageTestAuthToken];
- }
- @end
|
