openauth-core 0.0.4

Core types and primitives for OpenAuth.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100

use http::Request;
use openauth_core::api::{parse_request_body, ApiRequest};
use openauth_core::error::OpenAuthError;
use serde::Deserialize;

#[derive(Debug, Deserialize, PartialEq, Eq)]
struct SignInBody {
    email: String,
    password: String,
    #[serde(rename = "rememberMe")]
    remember_me: Option<bool>,
}

#[test]
fn parse_request_body_accepts_json_content_type_with_parameters(
) -> Result<(), Box<dyn std::error::Error>> {
    let request = request(
        "application/json; charset=utf-8",
        br#"{"email":"ada@example.com","password":"secret","rememberMe":false}"#.to_vec(),
    )?;

    let body: SignInBody = parse_request_body(&request)?;

    assert_eq!(
        body,
        SignInBody {
            email: "ada@example.com".to_owned(),
            password: "secret".to_owned(),
            remember_me: Some(false),
        }
    );
    Ok(())
}

#[test]
fn parse_request_body_accepts_urlencoded_form_values() -> Result<(), Box<dyn std::error::Error>> {
    let request = request(
        "application/x-www-form-urlencoded",
        b"email=ada%2Btest%40example.com&password=two+words&rememberMe=true".to_vec(),
    )?;

    let body: SignInBody = parse_request_body(&request)?;

    assert_eq!(
        body,
        SignInBody {
            email: "ada+test@example.com".to_owned(),
            password: "two words".to_owned(),
            remember_me: Some(true),
        }
    );
    Ok(())
}

#[test]
fn parse_request_body_rejects_unsupported_content_type() -> Result<(), Box<dyn std::error::Error>> {
    let request = request("text/plain", b"email=ada@example.com".to_vec())?;

    let error = parse_request_body::<SignInBody>(&request).err();

    assert!(matches!(
        error,
        Some(OpenAuthError::Api(message)) if message.contains("unsupported request content type")
    ));
    Ok(())
}

#[test]
fn parse_request_body_rejects_malformed_json() -> Result<(), Box<dyn std::error::Error>> {
    let request = request("application/json", b"{not-json".to_vec())?;

    let error = parse_request_body::<SignInBody>(&request).err();

    assert!(matches!(
        error,
        Some(OpenAuthError::Api(message)) if message.contains("invalid JSON request body")
    ));
    Ok(())
}

#[test]
fn parse_request_body_rejects_malformed_form_encoding() -> Result<(), Box<dyn std::error::Error>> {
    let request = request("application/x-www-form-urlencoded", b"email=%ZZ".to_vec())?;

    let error = parse_request_body::<SignInBody>(&request).err();

    assert!(matches!(
        error,
        Some(OpenAuthError::Api(message)) if message.contains("invalid form request body")
    ));
    Ok(())
}

fn request(content_type: &str, body: Vec<u8>) -> Result<ApiRequest, http::Error> {
    Request::builder()
        .method("POST")
        .uri("http://localhost:3000/api/auth/sign-in/email")
        .header(http::header::CONTENT_TYPE, content_type)
        .body(body)
}