Spec existing token authenticatable behavior

cupakromer · cupakromer · commit 75deaf25d34b · 2015-12-16T11:02:58.000-05:00
diff --git a/spec/kracken/controllers/token_authenticatable_spec.rb b/spec/kracken/controllers/token_authenticatable_spec.rb
@@ -0,0 +1,67 @@
+require "support/base_controller_double"
+
+module Kracken
+  class TokenAuthController < BaseControllerDouble
+    include Kracken::Controllers::TokenAuthenticatable
+    public :authenticate_user_with_token!
+    public :current_user
+
+    def authenticate_or_request_with_http_token(realm = nil)
+      /\AToken token="(?<token>.*)"\z/ =~ request.env['HTTP_AUTHORIZATION']
+      yield token if block_given?
+    end
+  end
+
+  RSpec.describe Controllers::TokenAuthenticatable do
+    describe "authenticating via a token" do
+      before do
+        allow(Authenticator).to receive(:user_with_token)
+      end
+
+      it "munges the request headers to support parameterized tokens" do
+        controller = TokenAuthController.new
+        controller.request.env = {
+          'HTTP_AUTHORIZATION' => 'Token token="header token"'
+        }
+        controller.params = { token: "param token" }
+
+        expect {
+          controller.authenticate_user_with_token!
+        }.to change {
+          controller.request.env
+        }.from(
+          'HTTP_AUTHORIZATION' => 'Token token="header token"'
+        ).to(
+          'HTTP_AUTHORIZATION' => 'Token token="param token"'
+        )
+      end
+
+      it "leaves the request header unchange when with no parameterized token" do
+        controller = TokenAuthController.new
+        controller.request.env = {
+          'HTTP_AUTHORIZATION' => 'Token token="any token"'
+        }
+
+        expect {
+          controller.authenticate_user_with_token!
+        }.not_to change { controller.request.env }.from(
+          'HTTP_AUTHORIZATION' => 'Token token="any token"'
+        )
+      end
+
+      it "authenticates the current user via the token" do
+        a_user = instance_double(User)
+        allow(Authenticator).to receive(:user_with_token).with("any token")
+                                                         .and_return(a_user)
+        controller = TokenAuthController.new
+        controller.request.env = {
+          'HTTP_AUTHORIZATION' => 'Token token="any token"'
+        }
+
+        expect {
+          controller.authenticate_user_with_token!
+        }.to change { controller.current_user }.from(nil).to(a_user)
+      end
+    end
+  end
+end
diff --git a/spec/support/base_controller_double.rb b/spec/support/base_controller_double.rb
@@ -1,10 +1,14 @@
 module Kracken
   class BaseControllerDouble
-    attr_accessor :session, :cookies
+    Request = Struct.new(:env)
+
+    attr_accessor :session, :cookies, :request, :params
 
     def initialize
       @session = {}
       @cookies = {}
+      @request = Request.new({})
+      @params = {}
     end
 
     def self.helper_method(*) ; end
