forked from ubccr/goipa
-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathotp_test.go
69 lines (54 loc) · 2.57 KB
/
otp_test.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
// Copyright 2015 Andrew E. Bruno. All rights reserved.
// Use of this source code is governed by a BSD style
// license that can be found in the LICENSE file.
package ipa_test
import (
"testing"
"time"
"github.com/brianvoe/gofakeit/v6"
"github.com/stretchr/testify/assert"
"github.com/stretchr/testify/require"
"github.com/ubccr/goipa"
)
func TestAddTOTPToken(t *testing.T) {
require := require.New(t)
assert := assert.New(t)
c, err := newTestClientCCache()
require.NoError(err)
username := gofakeit.Username()
password := gofakeit.Password(true, true, true, true, false, 16)
_, err = addTestUser(c, username, password)
require.NoErrorf(err, "Failed to add test user")
userClient := ipa.NewDefaultClient()
err = userClient.RemoteLogin(username, password)
require.NoErrorf(err, "Failed to login as new user account")
require.NotEmptyf(c.SessionID(), "Missing sessionID for new user account")
err = userClient.RemoveOTPToken("token_does_not_exist")
assert.Errorf(err, "Removing a non-existing OTP token should error")
token := &ipa.OTPToken{
Type: ipa.TokenTypeTOTP,
Algorithm: ipa.AlgorithmSHA256,
Description: "this is a test token",
NotBefore: time.Now(),
}
tokenRec, err := userClient.AddOTPToken(token)
require.NoErrorf(err, "Failed to add OTP token")
assert.NotEmptyf(tokenRec.URI, "Token URI should not be empty")
assert.Equalf(tokenRec.Algorithm, token.Algorithm, "Invalid Algorithm")
assert.Equalf(tokenRec.Digits, ipa.DefaultTOTPToken.Digits, "Invalid Digits")
assert.Truef(tokenRec.Enabled, "Token should be enabled")
assert.Equalf(tokenRec.Description, token.Description, "Invalid description")
assert.Equalf(tokenRec.NotBefore.Format(ipa.IpaDatetimeFormat), token.NotBefore.Format(ipa.IpaDatetimeFormat), "Invalid validity start date")
tokens, err := userClient.FetchOTPTokens(username)
require.NoErrorf(err, "Failed to fetch OTP tokens for user")
assert.Lenf(tokens, 1, "Wrong number of tokens found")
tok := tokens[0]
assert.Equalf(tok.UUID, tokenRec.UUID, "UUIDs should be the same")
assert.Equalf(tok.Algorithm, tokenRec.Algorithm, "Algorithm should be the same")
assert.Equalf(tok.Digits, tokenRec.Digits, "Digits should be the same")
assert.Equalf(tok.Enabled, tokenRec.Enabled, "Tokens should be enabled")
assert.Equalf(tok.Description, tokenRec.Description, "Descriptions should be the same")
assert.Equalf(tokenRec.NotBefore.Format(ipa.IpaDatetimeFormat), tokenRec.NotBefore.Format(ipa.IpaDatetimeFormat), "Validity start date should be the same")
err = c.UserDelete(false, false, username)
assert.NoErrorf(err, "Failed to remove user")
}