allowthem-server 0.0.9

HTTP server and middleware for allowthem
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136

//! Integration test: `AllRoutesBuilder::default_branding` causes `/login` to
//! render the embedder's brand when no `client_id` resolves to a per-app row.
//!
//! Exercises the full chain:
//!   `AllRoutesBuilder::default_branding(..).login().build(&ath)`
//!     -> `Extension<Arc<DefaultBranding>>` layer
//!     -> `get_login` extractor
//!     -> `resolve_branding`
//!     -> `BrandingCtx`
//!     -> rendered HTML contains the embedder's brand.

use allowthem_core::applications::BrandingConfig;
use allowthem_core::types::AccentInk;
use allowthem_core::{AllowThem, AllowThemBuilder};
use allowthem_server::AllRoutesBuilder;
use axum::body::Body;
use axum::http::{Request, StatusCode};
use tower::ServiceExt;

async fn ath_with_memory_db() -> AllowThem {
    AllowThemBuilder::new("sqlite::memory:")
        .cookie_secure(false)
        .csrf_key(*b"test-csrf-key-for-binary-tests!!")
        .build()
        .await
        .expect("build AllowThem")
}

#[tokio::test]
async fn login_uses_default_branding_when_no_client_id() {
    let ath = ath_with_memory_db().await;
    let router = AllRoutesBuilder::new()
        .login()
        .default_branding(
            BrandingConfig::new("Fixture Co").with_accent("#ff00aa", AccentInk::Black),
        )
        .build(&ath)
        .expect("build router");

    let response = router
        .oneshot(
            Request::builder()
                .uri("/login")
                .body(Body::empty())
                .unwrap(),
        )
        .await
        .expect("oneshot");

    assert_eq!(response.status(), StatusCode::OK);
    let body = axum::body::to_bytes(response.into_body(), usize::MAX)
        .await
        .unwrap();
    let html = std::str::from_utf8(&body).unwrap();

    assert!(
        html.contains("Fixture Co"),
        "expected kicker with tenant name 'Fixture Co' in login HTML, got:\n{}",
        &html[..html.len().min(800)]
    );
    assert!(
        html.contains("#ff00aa"),
        "expected accent '#ff00aa' in login HTML (CSS variable), got:\n{}",
        &html[..html.len().min(800)]
    );
}

#[tokio::test]
async fn login_falls_back_to_allowthem_when_no_default() {
    let ath = ath_with_memory_db().await;
    let router = AllRoutesBuilder::new()
        .login()
        .build(&ath)
        .expect("build router");

    let response = router
        .oneshot(
            Request::builder()
                .uri("/login")
                .body(Body::empty())
                .unwrap(),
        )
        .await
        .expect("oneshot");

    assert_eq!(response.status(), StatusCode::OK);
    let body = axum::body::to_bytes(response.into_body(), usize::MAX)
        .await
        .unwrap();
    let html = std::str::from_utf8(&body).unwrap();

    assert!(
        html.contains("allowthem"),
        "expected default kicker 'allowthem' in login HTML, got:\n{}",
        &html[..html.len().min(800)]
    );
}

#[tokio::test]
async fn login_with_unknown_client_id_falls_back_to_default() {
    let ath = ath_with_memory_db().await;
    let router = AllRoutesBuilder::new()
        .login()
        .default_branding(
            BrandingConfig::new("Fixture Co").with_accent("#ff00aa", AccentInk::Black),
        )
        .build(&ath)
        .expect("build router");

    let response = router
        .oneshot(
            Request::builder()
                .uri("/login?client_id=ath_does_not_exist")
                .body(Body::empty())
                .unwrap(),
        )
        .await
        .expect("oneshot");

    assert_eq!(response.status(), StatusCode::OK);
    let body = axum::body::to_bytes(response.into_body(), usize::MAX)
        .await
        .unwrap();
    let html = std::str::from_utf8(&body).unwrap();

    assert!(
        html.contains("Fixture Co"),
        "expected default kicker 'Fixture Co' when client_id doesn't match, got:\n{}",
        &html[..html.len().min(800)]
    );
    assert!(
        html.contains("#ff00aa"),
        "expected default accent '#ff00aa' when client_id doesn't match, got:\n{}",
        &html[..html.len().min(800)]
    );
}