mirror of
https://github.com/portainer/portainer.git
synced 2025-07-19 13:29:41 +02:00
f674573cdf
* add updateSettingsToDB28 func and test * update DBversion const * migration func naming modification * feat(oauth): add sso, hide internal auth teaser and logout options. (#5039) * cleanup and make helper func for unit testing * dbversion update * feat(publicSettings): public settings response modification for OAuth SSO EE-608 (#5062) * feat(oauth): updated logout logic with logoutUrl. (#5064) * add exclusive token generation for OAuth * swagger annotation revision * add unit test * updates based on tech review feedback * feat(oauth): updated oauth settings model * feat(oauth): added oauth logout url * feat(oauth): fixed SSO toggle and logout issue. * set SSO to ON by default * update migrator unit test * set SSO to true by default for new instance * prevent applying the SSO logout url to the initial admin user Co-authored-by: fhanportainer <79428273+fhanportainer@users.noreply.github.com> Co-authored-by: Felix Han <felix.han@portainer.io>
70 lines
2.5 KiB
Go
70 lines
2.5 KiB
Go
package settings
|
|
|
|
import (
|
|
"fmt"
|
|
"testing"
|
|
|
|
portainer "github.com/portainer/portainer/api"
|
|
)
|
|
|
|
const (
|
|
dummyOAuthClientID = "1a2b3c4d"
|
|
dummyOAuthScopes = "scopes"
|
|
dummyOAuthAuthenticationURI = "example.com/auth"
|
|
dummyOAuthRedirectURI = "example.com/redirect"
|
|
dummyOAuthLogoutURI = "example.com/logout"
|
|
)
|
|
|
|
var (
|
|
dummyOAuthLoginURI string
|
|
mockAppSettings *portainer.Settings
|
|
)
|
|
|
|
func setup() {
|
|
dummyOAuthLoginURI = fmt.Sprintf("%s?response_type=code&client_id=%s&redirect_uri=%s&scope=%s",
|
|
dummyOAuthAuthenticationURI,
|
|
dummyOAuthClientID,
|
|
dummyOAuthRedirectURI,
|
|
dummyOAuthScopes)
|
|
mockAppSettings = &portainer.Settings{
|
|
AuthenticationMethod: portainer.AuthenticationOAuth,
|
|
OAuthSettings: portainer.OAuthSettings{
|
|
AuthorizationURI: dummyOAuthAuthenticationURI,
|
|
ClientID: dummyOAuthClientID,
|
|
Scopes: dummyOAuthScopes,
|
|
RedirectURI: dummyOAuthRedirectURI,
|
|
LogoutURI: dummyOAuthLogoutURI,
|
|
},
|
|
}
|
|
}
|
|
|
|
func TestGeneratePublicSettingsWithSSO(t *testing.T) {
|
|
setup()
|
|
mockAppSettings.OAuthSettings.SSO = true
|
|
publicSettings := generatePublicSettings(mockAppSettings)
|
|
if publicSettings.AuthenticationMethod != portainer.AuthenticationOAuth {
|
|
t.Errorf("wrong AuthenticationMethod, want: %d, got: %d", portainer.AuthenticationOAuth, publicSettings.AuthenticationMethod)
|
|
}
|
|
if publicSettings.OAuthLoginURI != dummyOAuthLoginURI {
|
|
t.Errorf("wrong OAuthLoginURI when SSO is switched on, want: %s, got: %s", dummyOAuthLoginURI, publicSettings.OAuthLoginURI)
|
|
}
|
|
if publicSettings.OAuthLogoutURI != dummyOAuthLogoutURI {
|
|
t.Errorf("wrong OAuthLogoutURI, want: %s, got: %s", dummyOAuthLogoutURI, publicSettings.OAuthLogoutURI)
|
|
}
|
|
}
|
|
|
|
func TestGeneratePublicSettingsWithoutSSO(t *testing.T) {
|
|
setup()
|
|
mockAppSettings.OAuthSettings.SSO = false
|
|
publicSettings := generatePublicSettings(mockAppSettings)
|
|
if publicSettings.AuthenticationMethod != portainer.AuthenticationOAuth {
|
|
t.Errorf("wrong AuthenticationMethod, want: %d, got: %d", portainer.AuthenticationOAuth, publicSettings.AuthenticationMethod)
|
|
}
|
|
expectedOAuthLoginURI := dummyOAuthLoginURI + "&prompt=login"
|
|
if publicSettings.OAuthLoginURI != expectedOAuthLoginURI {
|
|
t.Errorf("wrong OAuthLoginURI when SSO is switched off, want: %s, got: %s", expectedOAuthLoginURI, publicSettings.OAuthLoginURI)
|
|
}
|
|
if publicSettings.OAuthLogoutURI != dummyOAuthLogoutURI {
|
|
t.Errorf("wrong OAuthLogoutURI, want: %s, got: %s", dummyOAuthLogoutURI, publicSettings.OAuthLogoutURI)
|
|
}
|
|
}
|