mirror of
				https://codeberg.org/forgejo/forgejo.git
				synced 2025-10-26 12:01:08 +00:00 
			
		
		
		
	(cherry picked from commit6623630d10) (cherry picked from commitd30b9dc5b4) (cherry picked from commit8e790a65ba) (cherry picked from commit9d98ba7e5c) (cherry picked from commit07fc55a3a7) (cherry picked from commitf9d054d17f)
		
			
				
	
	
		
			110 lines
		
	
	
	
		
			2.7 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
			
		
		
	
	
			110 lines
		
	
	
	
		
			2.7 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
| // Copyright 2019 The Gitea Authors. All rights reserved.
 | |
| // SPDX-License-Identifier: MIT
 | |
| 
 | |
| package integration
 | |
| 
 | |
| import (
 | |
| 	"net/http"
 | |
| 	"net/http/httptest"
 | |
| 	"os"
 | |
| 	"path/filepath"
 | |
| 	"testing"
 | |
| 
 | |
| 	"code.gitea.io/gitea/modules/json"
 | |
| 	"code.gitea.io/gitea/modules/setting"
 | |
| 	"code.gitea.io/gitea/tests"
 | |
| 
 | |
| 	"gitea.com/go-chi/session"
 | |
| 	"github.com/stretchr/testify/assert"
 | |
| )
 | |
| 
 | |
| func getSessionID(t *testing.T, resp *httptest.ResponseRecorder) string {
 | |
| 	cookies := resp.Result().Cookies()
 | |
| 	found := false
 | |
| 	sessionID := ""
 | |
| 	for _, cookie := range cookies {
 | |
| 		if cookie.Name == setting.SessionConfig.CookieName {
 | |
| 			sessionID = cookie.Value
 | |
| 			found = true
 | |
| 		}
 | |
| 	}
 | |
| 	assert.True(t, found)
 | |
| 	assert.NotEmpty(t, sessionID)
 | |
| 	return sessionID
 | |
| }
 | |
| 
 | |
| func sessionFile(tmpDir, sessionID string) string {
 | |
| 	return filepath.Join(tmpDir, sessionID[0:1], sessionID[1:2], sessionID)
 | |
| }
 | |
| 
 | |
| func sessionFileExist(t *testing.T, tmpDir, sessionID string) bool {
 | |
| 	sessionFile := sessionFile(tmpDir, sessionID)
 | |
| 	_, err := os.Lstat(sessionFile)
 | |
| 	if err != nil {
 | |
| 		if os.IsNotExist(err) {
 | |
| 			return false
 | |
| 		}
 | |
| 		assert.NoError(t, err)
 | |
| 	}
 | |
| 	return true
 | |
| }
 | |
| 
 | |
| func TestSessionFileCreation(t *testing.T) {
 | |
| 	defer tests.PrepareTestEnv(t)()
 | |
| 
 | |
| 	oldSessionConfig := setting.SessionConfig.ProviderConfig
 | |
| 	defer func() {
 | |
| 		setting.SessionConfig.ProviderConfig = oldSessionConfig
 | |
| 		setNormalRoutes()
 | |
| 	}()
 | |
| 
 | |
| 	var config session.Options
 | |
| 
 | |
| 	err := json.Unmarshal([]byte(oldSessionConfig), &config)
 | |
| 	assert.NoError(t, err)
 | |
| 
 | |
| 	config.Provider = "file"
 | |
| 
 | |
| 	// Now create a temporaryDirectory
 | |
| 	tmpDir := t.TempDir()
 | |
| 	config.ProviderConfig = tmpDir
 | |
| 
 | |
| 	newConfigBytes, err := json.Marshal(config)
 | |
| 	assert.NoError(t, err)
 | |
| 
 | |
| 	setting.SessionConfig.ProviderConfig = string(newConfigBytes)
 | |
| 
 | |
| 	setNormalRoutes()
 | |
| 
 | |
| 	t.Run("NoSessionOnViewIssue", func(t *testing.T) {
 | |
| 		defer tests.PrintCurrentTest(t)()
 | |
| 
 | |
| 		req := NewRequest(t, "GET", "/user2/repo1/issues/1")
 | |
| 		resp := MakeRequest(t, req, http.StatusOK)
 | |
| 		sessionID := getSessionID(t, resp)
 | |
| 
 | |
| 		// We're not logged in so there should be no session
 | |
| 		assert.False(t, sessionFileExist(t, tmpDir, sessionID))
 | |
| 	})
 | |
| 	t.Run("CreateSessionOnLogin", func(t *testing.T) {
 | |
| 		defer tests.PrintCurrentTest(t)()
 | |
| 
 | |
| 		req := NewRequest(t, "GET", "/user/login")
 | |
| 		resp := MakeRequest(t, req, http.StatusOK)
 | |
| 		sessionID := getSessionID(t, resp)
 | |
| 
 | |
| 		// We're not logged in so there should be no session
 | |
| 		assert.False(t, sessionFileExist(t, tmpDir, sessionID))
 | |
| 
 | |
| 		doc := NewHTMLParser(t, resp.Body)
 | |
| 		req = NewRequestWithValues(t, "POST", "/user/login", map[string]string{
 | |
| 			"_csrf":     doc.GetCSRF(),
 | |
| 			"user_name": "user2",
 | |
| 			"password":  userPassword,
 | |
| 		})
 | |
| 		resp = MakeRequest(t, req, http.StatusSeeOther)
 | |
| 		sessionID = getSessionID(t, resp)
 | |
| 
 | |
| 		assert.FileExists(t, sessionFile(tmpDir, sessionID))
 | |
| 	})
 | |
| }
 |