test: add authorization tests to s3 integration

erezrokah · erezrokah · commit cba75d3ecbe7 · 2019-08-20T14:41:26.000+03:00
diff --git a/lib/package/s3/compileMethodsToS3.test.js b/lib/package/s3/compileMethodsToS3.test.js
@@ -11,9 +11,6 @@ const template = {
   Type: 'AWS::ApiGateway::Method',
   Properties: {
     RequestParameters: {},
-    AuthorizationType: 'NONE',
-    AuthorizationScopes: undefined,
-    AuthorizerId: undefined,
     ApiKeyRequired: false,
     ResourceId: { Ref: 'ApiGatewayResourceS3' },
     RestApiId: { Ref: 'ApiGatewayRestApi' },
@@ -104,6 +101,9 @@ describe('#compileMethodsToS3()', () => {
     const diff = {
       Properties: {
         HttpMethod: method,
+        AuthorizationType: http.auth.authorizationType,
+        AuthorizationScopes: http.auth.authorizationScopes,
+        AuthorizerId: http.auth.authorizerId,
         RequestParameters: requestParams,
         Integration: {
           IntegrationHttpMethod: intMethod,
@@ -471,4 +471,70 @@ describe('#compileMethodsToS3()', () => {
       }
     })
   })
+
+  const testAuthorization = (auth) => {
+    const http = {
+      path: 's3',
+      method: 'get',
+      bucket: {
+        Ref: 'MyBucket'
+      },
+      action: 'GetObject',
+      key: { pathParam: 'key' },
+      auth
+    }
+
+    const requestParams = { 'method.request.path.key': true }
+
+    const intRequestParams = {
+      'integration.request.path.object': 'method.request.path.key',
+      'integration.request.path.bucket': {
+        'Fn::Sub': [
+          "'${bucket}'",
+          {
+            bucket: {
+              Ref: 'MyBucket'
+            }
+          }
+        ]
+      }
+    }
+
+    const responseParams = {
+      'method.response.header.content-type': true,
+      'method.response.header.Content-Type': true
+    }
+
+    const intResponseParams = {
+      'method.response.header.content-type': 'integration.response.header.content-type',
+      'method.response.header.Content-Type': 'integration.response.header.Content-Type'
+    }
+
+    testSingleProxy({
+      http,
+      logicalId: 'ApiGatewayMethods3Get',
+      method: 'GET',
+      intMethod: 'GET',
+      requestParams,
+      intRequestParams,
+      responseParams,
+      intResponseParams
+    })
+  }
+
+  it('should create corresponding resources with "NONE" authorization type', () => {
+    testAuthorization({ authorizationType: 'NONE' })
+  })
+
+  it('should create corresponding resources with "CUSTOM" authorization type', () => {
+    testAuthorization({ authorizationType: 'CUSTOM', authorizerId: { Ref: 'AuthorizerLogicalId' } })
+  })
+
+  it('should create corresponding resources with "AWS_IAM" authorization type', () => {
+    testAuthorization({ authorizationType: 'AWS_IAM' })
+  })
+
+  it('should create corresponding resources with "AWS_IAM" authorization type', () => {
+    testAuthorization({ authorizationType: 'COGNITO_USER_POOLS', authorizationScopes: ['admin'] })
+  })
 })
