platform/packages/oauth2/test/device_code_test.dart

import 'dart:async';
import 'package:angel3_container/mirrors.dart';
import 'package:angel3_framework/angel3_framework.dart';
import 'package:angel3_test/angel3_test.dart';
import 'package:angel3_oauth2/angel3_oauth2.dart';
import 'package:logging/logging.dart';
import 'package:test/test.dart';
import 'common.dart';

void main() {
  late TestClient client;

  setUp(() async {
    var app = Angel(reflector: MirrorsReflector());
    var oauth2 = _AuthorizationServer();

    app.group('/oauth2', (router) {
      router
        ..get('/authorize', oauth2.authorizationEndpoint)
        ..post('/token', oauth2.tokenEndpoint);
    });

    //app.logger.level = Level.ALL;
    app.logger = Logger("oauth2")
      ..onRecord.listen((rec) {
        print(rec);
        if (rec.error != null) print(rec.error);
        if (rec.stackTrace != null) print(rec.stackTrace);
      });

    app.errorHandler = (e, req, res) async {
      res.json(e.toJson());
    };

    client = await connectTo(app);
  });

  tearDown(() => client.close());

  group('get initial code', () {
    test('invalid client id', () async {
      var response = await client.post(Uri.parse('/oauth2/token'), body: {
        'client_id': 'barr',
      });
      print(response.body);
      expect(response, hasStatus(400));
    });

    test('valid client id, no scopes', () async {
      var response = await client.post(Uri.parse('/oauth2/token'), body: {
        'client_id': 'foo',
      });
      print(response.body);
      expect(
          response,
          allOf(
            hasStatus(200),
            isJson({
              'device_code': 'foo',
              'user_code': 'bar',
              'verification_uri': 'https://regiostech.com?scopes',
              'expires_in': 3600
            }),
          ));
    });

    test('valid client id, with scopes', () async {
      var response = await client.post(Uri.parse('/oauth2/token'), body: {
        'client_id': 'foo',
        'scope': 'bar baz quux',
      });
      print(response.body);
      expect(
          response,
          allOf(
            hasStatus(200),
            isJson({
              'device_code': 'foo',
              'user_code': 'bar',
              'verification_uri': Uri.parse('https://regiostech.com').replace(
                  queryParameters: {'scopes': 'bar,baz,quux'}).toString(),
              'expires_in': 3600
            }),
          ));
    });
  });

  group('get token', () {
    test('valid device code + timing', () async {
      var response = await client.post(Uri.parse('/oauth2/token'), body: {
        'grant_type': 'urn:ietf:params:oauth:grant-type:device_code',
        'client_id': 'foo',
        'device_code': 'bar',
      });

      print(response.body);
      expect(
          response,
          allOf(
            hasStatus(200),
            isJson({'token_type': 'bearer', 'access_token': 'foo'}),
          ));
    });

    // The rationale for only testing one possible error response is that
    // they all only differ in terms of the `code` string sent down,
    // which is chosen by the end user.
    //
    // The logic for throwing errors and turning them into responses
    // has already been tested.
    test('failure', () async {
      var response = await client.post(Uri.parse('/oauth2/token'), body: {
        'grant_type': 'urn:ietf:params:oauth:grant-type:device_code',
        'client_id': 'foo',
        'device_code': 'brute',
      });

      print("[Client] ${response.headers}");
      print("[Client] ${response.body}");
      expect(
          response,
          allOf(
            hasStatus(400),
            isJson({
              'error': 'slow_down',
              'error_description':
                  'Ho, brother! Ho, whoa, whoa, whoa now! You got too much dip on your chip!'
            }),
          ));
    });
  });
}

class _AuthorizationServer
    extends AuthorizationServer<PseudoApplication, PseudoUser> {
  var logger = Logger('AuthorizationServer');

  @override
  PseudoApplication? findClient(String? clientId) {
    return clientId == pseudoApplication.id ? pseudoApplication : null;
  }

  @override
  Future<bool> verifyClient(
      PseudoApplication client, String? clientSecret) async {
    return client.secret == clientSecret;
  }

  @override
  FutureOr<DeviceCodeResponse> requestDeviceCode(PseudoApplication client,
      Iterable<String> scopes, RequestContext req, ResponseContext res) {
    return DeviceCodeResponse(
        'foo',
        'bar',
        Uri.parse('https://regiostech.com')
            .replace(queryParameters: {'scopes': scopes.join(',')}),
        3600);
  }

  @override
  FutureOr<AuthorizationTokenResponse> exchangeDeviceCodeForToken(
      PseudoApplication client,
      String? deviceCode,
      String state,
      RequestContext req,
      ResponseContext res) {
    print("[Server] exchangeDeviceCodeForToken");
    print("[Server] $deviceCode");
    print("[Server] $client");

    if (deviceCode == 'brute') {
      print("[Server] Throws AuthorizationException");

      throw AuthorizationException(ErrorResponse(
          ErrorResponse.slowDown,
          'Ho, brother! Ho, whoa, whoa, whoa now! You got too much dip on your chip!',
          state));
    }

    return AuthorizationTokenResponse('foo');
  }
}
get code tests 2018-12-14 07:40:37 +00:00			`import 'dart:async';`
Updated logo 2023-10-08 03:29:28 +00:00			`import 'package:angel3_container/mirrors.dart';`
Published oauth2, cache, cors, auth_oauth2 2021-05-30 00:46:13 +00:00			`import 'package:angel3_framework/angel3_framework.dart';`
			`import 'package:angel3_test/angel3_test.dart';`
			`import 'package:angel3_oauth2/angel3_oauth2.dart';`
get code tests 2018-12-14 07:40:37 +00:00			`import 'package:logging/logging.dart';`
			`import 'package:test/test.dart';`
			`import 'common.dart';`

Published oauth2, cache, cors, auth_oauth2 2021-05-30 00:46:13 +00:00			`void main() {`
			`late TestClient client;`
get code tests 2018-12-14 07:40:37 +00:00
			`setUp(() async {`
Updated logo 2023-10-08 03:29:28 +00:00			`var app = Angel(reflector: MirrorsReflector());`
Bump to 2.2.0 2019-05-02 07:28:38 +00:00			`var oauth2 = _AuthorizationServer();`
get code tests 2018-12-14 07:40:37 +00:00
			`app.group('/oauth2', (router) {`
			`router`
			`..get('/authorize', oauth2.authorizationEndpoint)`
			`..post('/token', oauth2.tokenEndpoint);`
			`});`

Updated logo 2023-10-08 03:29:28 +00:00			`//app.logger.level = Level.ALL;`
			`app.logger = Logger("oauth2")`
get code tests 2018-12-14 07:40:37 +00:00			`..onRecord.listen((rec) {`
			`print(rec);`
			`if (rec.error != null) print(rec.error);`
			`if (rec.stackTrace != null) print(rec.stackTrace);`
			`});`

			`app.errorHandler = (e, req, res) async {`
			`res.json(e.toJson());`
			`};`

			`client = await connectTo(app);`
			`});`

			`tearDown(() => client.close());`

			`group('get initial code', () {`
			`test('invalid client id', () async {`
Published oauth2, cache, cors, auth_oauth2 2021-05-30 00:46:13 +00:00			`var response = await client.post(Uri.parse('/oauth2/token'), body: {`
get code tests 2018-12-14 07:40:37 +00:00			`'client_id': 'barr',`
			`});`
			`print(response.body);`
			`expect(response, hasStatus(400));`
			`});`

			`test('valid client id, no scopes', () async {`
Published oauth2, cache, cors, auth_oauth2 2021-05-30 00:46:13 +00:00			`var response = await client.post(Uri.parse('/oauth2/token'), body: {`
get code tests 2018-12-14 07:40:37 +00:00			`'client_id': 'foo',`
			`});`
			`print(response.body);`
			`expect(`
			`response,`
			`allOf(`
			`hasStatus(200),`
			`isJson({`
Published oauth2, cache, cors, auth_oauth2 2021-05-30 00:46:13 +00:00			`'device_code': 'foo',`
			`'user_code': 'bar',`
			`'verification_uri': 'https://regiostech.com?scopes',`
			`'expires_in': 3600`
get code tests 2018-12-14 07:40:37 +00:00			`}),`
			`));`
			`});`

			`test('valid client id, with scopes', () async {`
Published oauth2, cache, cors, auth_oauth2 2021-05-30 00:46:13 +00:00			`var response = await client.post(Uri.parse('/oauth2/token'), body: {`
get code tests 2018-12-14 07:40:37 +00:00			`'client_id': 'foo',`
			`'scope': 'bar baz quux',`
			`});`
			`print(response.body);`
			`expect(`
			`response,`
			`allOf(`
			`hasStatus(200),`
			`isJson({`
Published oauth2, cache, cors, auth_oauth2 2021-05-30 00:46:13 +00:00			`'device_code': 'foo',`
			`'user_code': 'bar',`
			`'verification_uri': Uri.parse('https://regiostech.com').replace(`
get code tests 2018-12-14 07:40:37 +00:00			`queryParameters: {'scopes': 'bar,baz,quux'}).toString(),`
Published oauth2, cache, cors, auth_oauth2 2021-05-30 00:46:13 +00:00			`'expires_in': 3600`
get code tests 2018-12-14 07:40:37 +00:00			`}),`
			`));`
			`});`
			`});`
device code tests complete 2018-12-15 07:19:35 +00:00
			`group('get token', () {`
			`test('valid device code + timing', () async {`
Published oauth2, cache, cors, auth_oauth2 2021-05-30 00:46:13 +00:00			`var response = await client.post(Uri.parse('/oauth2/token'), body: {`
device code tests complete 2018-12-15 07:19:35 +00:00			`'grant_type': 'urn:ietf:params:oauth:grant-type:device_code',`
			`'client_id': 'foo',`
			`'device_code': 'bar',`
			`});`

			`print(response.body);`
			`expect(`
			`response,`
			`allOf(`
			`hasStatus(200),`
Published oauth2, cache, cors, auth_oauth2 2021-05-30 00:46:13 +00:00			`isJson({'token_type': 'bearer', 'access_token': 'foo'}),`
device code tests complete 2018-12-15 07:19:35 +00:00			`));`
			`});`

			`// The rationale for only testing one possible error response is that`
			// they all only differ in terms of the `code` string sent down,
			`// which is chosen by the end user.`
			`//`
			`// The logic for throwing errors and turning them into responses`
			`// has already been tested.`
			`test('failure', () async {`
Published oauth2, cache, cors, auth_oauth2 2021-05-30 00:46:13 +00:00			`var response = await client.post(Uri.parse('/oauth2/token'), body: {`
device code tests complete 2018-12-15 07:19:35 +00:00			`'grant_type': 'urn:ietf:params:oauth:grant-type:device_code',`
			`'client_id': 'foo',`
			`'device_code': 'brute',`
			`});`

Updated logo 2023-10-08 03:29:28 +00:00			`print("[Client] ${response.headers}");`
			`print("[Client] ${response.body}");`
device code tests complete 2018-12-15 07:19:35 +00:00			`expect(`
			`response,`
			`allOf(`
			`hasStatus(400),`
			`isJson({`
Published oauth2, cache, cors, auth_oauth2 2021-05-30 00:46:13 +00:00			`'error': 'slow_down',`
			`'error_description':`
			`'Ho, brother! Ho, whoa, whoa, whoa now! You got too much dip on your chip!'`
device code tests complete 2018-12-15 07:19:35 +00:00			`}),`
			`));`
			`});`
			`});`
get code tests 2018-12-14 07:40:37 +00:00			`}`

			`class _AuthorizationServer`
			`extends AuthorizationServer<PseudoApplication, PseudoUser> {`
Updated logo 2023-10-08 03:29:28 +00:00			`var logger = Logger('AuthorizationServer');`

get code tests 2018-12-14 07:40:37 +00:00			`@override`
Published oauth2, cache, cors, auth_oauth2 2021-05-30 00:46:13 +00:00			`PseudoApplication? findClient(String? clientId) {`
get code tests 2018-12-14 07:40:37 +00:00			`return clientId == pseudoApplication.id ? pseudoApplication : null;`
			`}`

			`@override`
			`Future<bool> verifyClient(`
Published oauth2, cache, cors, auth_oauth2 2021-05-30 00:46:13 +00:00			`PseudoApplication client, String? clientSecret) async {`
get code tests 2018-12-14 07:40:37 +00:00			`return client.secret == clientSecret;`
			`}`

			`@override`
			`FutureOr<DeviceCodeResponse> requestDeviceCode(PseudoApplication client,`
			`Iterable<String> scopes, RequestContext req, ResponseContext res) {`
Bump to 2.2.0 2019-05-02 07:28:38 +00:00			`return DeviceCodeResponse(`
get code tests 2018-12-14 07:40:37 +00:00			`'foo',`
			`'bar',`
			`Uri.parse('https://regiostech.com')`
			`.replace(queryParameters: {'scopes': scopes.join(',')}),`
			`3600);`
			`}`

			`@override`
device code tests complete 2018-12-15 07:19:35 +00:00			`FutureOr<AuthorizationTokenResponse> exchangeDeviceCodeForToken(`
get code tests 2018-12-14 07:40:37 +00:00			`PseudoApplication client,`
Published oauth2, cache, cors, auth_oauth2 2021-05-30 00:46:13 +00:00			`String? deviceCode,`
get code tests 2018-12-14 07:40:37 +00:00			`String state,`
			`RequestContext req,`
device code tests complete 2018-12-15 07:19:35 +00:00			`ResponseContext res) {`
Updated logo 2023-10-08 03:29:28 +00:00			`print("[Server] exchangeDeviceCodeForToken");`
			`print("[Server] $deviceCode");`
			`print("[Server] $client");`

device code tests complete 2018-12-15 07:19:35 +00:00			`if (deviceCode == 'brute') {`
Updated logo 2023-10-08 03:29:28 +00:00			`print("[Server] Throws AuthorizationException");`

Bump to 2.2.0 2019-05-02 07:28:38 +00:00			`throw AuthorizationException(ErrorResponse(`
device code tests complete 2018-12-15 07:19:35 +00:00			`ErrorResponse.slowDown,`
Published oauth2, cache, cors, auth_oauth2 2021-05-30 00:46:13 +00:00			`'Ho, brother! Ho, whoa, whoa, whoa now! You got too much dip on your chip!',`
device code tests complete 2018-12-15 07:19:35 +00:00			`state));`
			`}`

Bump to 2.2.0 2019-05-02 07:28:38 +00:00			`return AuthorizationTokenResponse('foo');`
get code tests 2018-12-14 07:40:37 +00:00			`}`
			`}`