ホーム エクスプローラ ヘルプ
登録 サインイン
hmetzner
/
esp8266_milight_hub
Watch 1
Star 0
Fork 0
ファイル 課題 0 プルリクエスト 0 Wiki
ツリー: 2949318a9d
ブランチ タグ
esp8266_mili...
/
test
/
remote
/
spec
/
rest_spec.rb

rest_spec.rb 2.3 KB
履歴 Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768 
  1. require 'api_client'
    2. 

  2. 

  3. RSpec.describe 'REST Server' do
    4. 

  4.   before(:all) do
    5. 

  5.     @client = ApiClient.new(ENV.fetch('ESPMH_HOSTNAME'), ENV.fetch('ESPMH_TEST_DEVICE_ID_BASE'))
    6. 

  6.     @client.upload_json('/settings', 'settings.json')
    7. 

  7. 

  8.     @username = 'a'
    9. 

  9.     @password = 'a'
    10. 

  10.   end
    11. 

  11. 

  12.   context 'authentication' do
    13. 

  13.     after(:all) do
    14. 

  14.       @client.set_auth!(@username, @password)
    15. 

  15.       @client.put('/settings', admin_username: '', admin_password: '')
    16. 

  16.     end
    17. 

  17. 

  18.     it 'should not require auth unless both username and password are set' do
    19. 

  19.       @client.put('/settings', admin_username: 'abc', admin_password: '')
    20. 

  20.       expect { @client.get('/settings') }.not_to raise_error
    21. 

  21. 

  22.       @client.put('/settings', admin_username: '', admin_password: 'abc')
    23. 

  23.       expect { @client.get('/settings') }.not_to raise_error
    24. 

  24. 

  25.       @client.put('/settings', admin_username: '', admin_password: '')
    26. 

  26.       expect { @client.get('/settings') }.not_to raise_error
    27. 

  27.     end
    28. 

  28. 

  29.     it 'should require auth for all routes when password is set' do
    30. 

  30.       @client.put('/settings', admin_username: @username, admin_password: @password)
    31. 

  31. 

  32.       # Try no auth
    33. 

  33.       expect { @client.get('/settings') }.to raise_error(Net::HTTPServerException)
    34. 

  34. 

  35.       # Try wrong username
    36. 

  36.       @client.set_auth!("#{@username}wronguser", @password)
    37. 

  37.       expect { @client.get('/settings') }.to raise_error(Net::HTTPServerException)
    38. 

  38. 

  39.       # Try wrong password
    40. 

  40.       @client.set_auth!(@username, "wrong#{@password}")
    41. 

  41.       expect { @client.get('/settings') }.to raise_error(Net::HTTPServerException)
    42. 

  42. 

  43.       # Try right username
    44. 

  44.       @client.set_auth!(@username, @password)
    45. 

  45.       expect { @client.get('/settings') }.not_to raise_error
    46. 

  46. 

  47.       # Make sure all routes are protected
    48. 

  48.       @client.clear_auth!
    49. 

  49.       [
    50. 

  50.         '/about', 
    51. 

  51.         '/gateways/0/rgb_cct/1', 
    52. 

  52.         '/remote_configs', 
    53. 

  53.         '/'
    54. 

  54.       ].each do |page|
    55. 

  55.         expect { @client.get(page) }.to raise_error(Net::HTTPServerException), "No auth required for page: #{page}"
    56. 

  56.       end
    57. 

  57. 

  58.       expect { @client.post('/system', {}) }.to raise_error(Net::HTTPServerException)
    59. 

  59. 

  60.       # Clear auth
    61. 

  61.       @client.set_auth!(@username, @password)
    62. 

  62.       @client.put('/settings', admin_username: '', admin_password: '')
    63. 

  63.       @client.clear_auth!
    64. 

  64. 

  65.       expect { @client.get('/settings') }.not_to raise_error
    66. 

  66.     end
    67. 

  67.   end
    68. 

  68. end
    69.