From 86db7256010ba4ebb551d532592e704d051b7c0c Mon Sep 17 00:00:00 2001
From: Tobe O <thosakwe@gmail.com>
Date: Sat, 15 Dec 2018 02:19:35 -0500
Subject: [PATCH] device code tests complete

---
 CHANGELOG.md               |  4 +++
 pubspec.yaml               |  2 +-
 test/device_code_test.dart | 58 +++++++++++++++++++++++++++++++++++---
 3 files changed, 59 insertions(+), 5 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 5a765423..3856cae5 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,3 +1,7 @@
+# 2.1.0
+* Updates
+* Support `device_code` grants.
+
 # 2.0.0
 * Angel 2 support.
 
diff --git a/pubspec.yaml b/pubspec.yaml
index 02e59302..1f34196d 100644
--- a/pubspec.yaml
+++ b/pubspec.yaml
@@ -2,7 +2,7 @@ name: angel_oauth2
 author: Tobe O <thosakwe@gmail.com>
 description: A class containing handlers that can be used within Angel to build a spec-compliant OAuth 2.0 server.
 homepage: https://github.com/angel-dart/oauth2.git
-version: 2.0.0
+version: 2.1.0
 environment:
   sdk: ">=2.0.0-dev <3.0.0"
 dependencies: 
diff --git a/test/device_code_test.dart b/test/device_code_test.dart
index 3bd08929..4691f0b5 100644
--- a/test/device_code_test.dart
+++ b/test/device_code_test.dart
@@ -83,6 +83,50 @@ main() {
           ));
     });
   });
+
+  group('get token', () {
+    test('valid device code + timing', () async {
+      var response = await client.post('/oauth2/token', body: {
+        'grant_type': 'urn:ietf:params:oauth:grant-type:device_code',
+        'client_id': 'foo',
+        'device_code': 'bar',
+      });
+
+      print(response.body);
+      expect(
+          response,
+          allOf(
+            hasStatus(200),
+            isJson({"token_type": "bearer", "access_token": "foo"}),
+          ));
+    });
+
+    // The rationale for only testing one possible error response is that
+    // they all only differ in terms of the `code` string sent down,
+    // which is chosen by the end user.
+    //
+    // The logic for throwing errors and turning them into responses
+    // has already been tested.
+    test('failure', () async {
+      var response = await client.post('/oauth2/token', body: {
+        'grant_type': 'urn:ietf:params:oauth:grant-type:device_code',
+        'client_id': 'foo',
+        'device_code': 'brute',
+      });
+
+      print(response.body);
+      expect(
+          response,
+          allOf(
+            hasStatus(400),
+            isJson({
+              "error": "slow_down",
+              "error_description":
+                  "Ho, brother! Ho, whoa, whoa, whoa now! You got too much dip on your chip!"
+            }),
+          ));
+    });
+  });
 }
 
 class _AuthorizationServer
@@ -110,13 +154,19 @@ class _AuthorizationServer
   }
 
   @override
-  Future<AuthorizationTokenResponse> implicitGrant(
+  FutureOr<AuthorizationTokenResponse> exchangeDeviceCodeForToken(
       PseudoApplication client,
-      String redirectUri,
-      Iterable<String> scopes,
+      String deviceCode,
       String state,
       RequestContext req,
-      ResponseContext res) async {
+      ResponseContext res) {
+    if (deviceCode == 'brute') {
+      throw new AuthorizationException(new ErrorResponse(
+          ErrorResponse.slowDown,
+          "Ho, brother! Ho, whoa, whoa, whoa now! You got too much dip on your chip!",
+          state));
+    }
+
     return new AuthorizationTokenResponse('foo');
   }
 }