tmpltool 1.5.0 - Docs.rs

//! Tests for encoding functions.
//!
//! Tests both function syntax and filter syntax for migrated filter-functions,
//! and function-only tests for bcrypt, generate_secret, hmac_sha256.

use minijinja::value::Kwargs;
use minijinja::{Environment, Value};
use tmpltool::filter_functions::FilterFunction;
use tmpltool::filter_functions::encoding::{
    Base64Decode, Base64Encode, EscapeHtml, EscapeShell, EscapeXml, HexDecode, HexEncode,
};
use tmpltool::functions::Function;
use tmpltool::functions::encoding::{Bcrypt, GenerateSecret, HmacSha256};

// Helper to test both function and filter syntax produce the same result
fn assert_both_syntaxes_equal(env: &Environment, function_template: &str, filter_template: &str) {
    let fn_result = env
        .render_str(function_template, ())
        .expect("Function syntax should work");
    let filter_result = env
        .render_str(filter_template, ())
        .expect("Filter syntax should work");
    assert_eq!(
        fn_result, filter_result,
        "Function and filter syntax should produce identical results"
    );
}

fn setup_env() -> Environment<'static> {
    let mut env = Environment::new();
    Base64Encode::register(&mut env);
    Base64Decode::register(&mut env);
    HexEncode::register(&mut env);
    HexDecode::register(&mut env);
    EscapeHtml::register(&mut env);
    EscapeXml::register(&mut env);
    EscapeShell::register(&mut env);
    env
}

// ============ Base64 Encode Tests ============

#[test]
fn test_base64_encode_basic() {
    let result = Base64Encode::call_as_function(Kwargs::from_iter(vec![(
        "string",
        Value::from("Hello World"),
    )]))
    .unwrap();
    assert_eq!(result.as_str().unwrap(), "SGVsbG8gV29ybGQ=");
}

#[test]
fn test_base64_encode_filter() {
    let value = Value::from("Hello World");
    let kwargs = Kwargs::from_iter(std::iter::empty::<(&str, Value)>());
    let result = Base64Encode::call_as_filter(&value, kwargs).unwrap();
    assert_eq!(result.as_str().unwrap(), "SGVsbG8gV29ybGQ=");
}

#[test]
fn test_base64_encode_both_syntaxes() {
    let env = setup_env();
    assert_both_syntaxes_equal(
        &env,
        r#"{{ base64_encode(string="Hello World") }}"#,
        r#"{{ "Hello World" | base64_encode }}"#,
    );
}

#[test]
fn test_base64_encode_empty() {
    let result =
        Base64Encode::call_as_function(Kwargs::from_iter(vec![("string", Value::from(""))]))
            .unwrap();
    assert_eq!(result.as_str().unwrap(), "");
}

#[test]
fn test_base64_encode_special_chars() {
    let result = Base64Encode::call_as_function(Kwargs::from_iter(vec![(
        "string",
        Value::from("user:password"),
    )]))
    .unwrap();
    assert_eq!(result.as_str().unwrap(), "dXNlcjpwYXNzd29yZA==");
}

// ============ Base64 Decode Tests ============

#[test]
fn test_base64_decode_basic() {
    let result = Base64Decode::call_as_function(Kwargs::from_iter(vec![(
        "string",
        Value::from("SGVsbG8gV29ybGQ="),
    )]))
    .unwrap();
    assert_eq!(result.as_str().unwrap(), "Hello World");
}

#[test]
fn test_base64_decode_filter() {
    let value = Value::from("SGVsbG8gV29ybGQ=");
    let kwargs = Kwargs::from_iter(std::iter::empty::<(&str, Value)>());
    let result = Base64Decode::call_as_filter(&value, kwargs).unwrap();
    assert_eq!(result.as_str().unwrap(), "Hello World");
}

#[test]
fn test_base64_decode_both_syntaxes() {
    let env = setup_env();
    assert_both_syntaxes_equal(
        &env,
        r#"{{ base64_decode(string="SGVsbG8gV29ybGQ=") }}"#,
        r#"{{ "SGVsbG8gV29ybGQ=" | base64_decode }}"#,
    );
}

#[test]
fn test_base64_decode_empty() {
    let result =
        Base64Decode::call_as_function(Kwargs::from_iter(vec![("string", Value::from(""))]))
            .unwrap();
    assert_eq!(result.as_str().unwrap(), "");
}

#[test]
fn test_base64_decode_invalid() {
    let result = Base64Decode::call_as_function(Kwargs::from_iter(vec![(
        "string",
        Value::from("invalid!@#$"),
    )]));
    assert!(result.is_err());
    assert!(result.unwrap_err().to_string().contains("Failed to decode"));
}

#[test]
fn test_base64_roundtrip() {
    let env = setup_env();
    let result = env
        .render_str(r#"{{ "Test string" | base64_encode | base64_decode }}"#, ())
        .unwrap();
    assert_eq!(result, "Test string");
}

// ============ Hex Encode Tests ============

#[test]
fn test_hex_encode_basic() {
    let result =
        HexEncode::call_as_function(Kwargs::from_iter(vec![("string", Value::from("Hello"))]))
            .unwrap();
    assert_eq!(result.as_str().unwrap(), "48656c6c6f");
}

#[test]
fn test_hex_encode_filter() {
    let value = Value::from("Hello");
    let kwargs = Kwargs::from_iter(std::iter::empty::<(&str, Value)>());
    let result = HexEncode::call_as_filter(&value, kwargs).unwrap();
    assert_eq!(result.as_str().unwrap(), "48656c6c6f");
}

#[test]
fn test_hex_encode_both_syntaxes() {
    let env = setup_env();
    assert_both_syntaxes_equal(
        &env,
        r#"{{ hex_encode(string="Hello") }}"#,
        r#"{{ "Hello" | hex_encode }}"#,
    );
}

#[test]
fn test_hex_encode_empty() {
    let result =
        HexEncode::call_as_function(Kwargs::from_iter(vec![("string", Value::from(""))])).unwrap();
    assert_eq!(result.as_str().unwrap(), "");
}

#[test]
fn test_hex_encode_numbers() {
    let result =
        HexEncode::call_as_function(Kwargs::from_iter(vec![("string", Value::from("123"))]))
            .unwrap();
    assert_eq!(result.as_str().unwrap(), "313233");
}

// ============ Hex Decode Tests ============

#[test]
fn test_hex_decode_basic() {
    let result = HexDecode::call_as_function(Kwargs::from_iter(vec![(
        "string",
        Value::from("48656c6c6f"),
    )]))
    .unwrap();
    assert_eq!(result.as_str().unwrap(), "Hello");
}

#[test]
fn test_hex_decode_filter() {
    let value = Value::from("48656c6c6f");
    let kwargs = Kwargs::from_iter(std::iter::empty::<(&str, Value)>());
    let result = HexDecode::call_as_filter(&value, kwargs).unwrap();
    assert_eq!(result.as_str().unwrap(), "Hello");
}

#[test]
fn test_hex_decode_both_syntaxes() {
    let env = setup_env();
    assert_both_syntaxes_equal(
        &env,
        r#"{{ hex_decode(string="48656c6c6f") }}"#,
        r#"{{ "48656c6c6f" | hex_decode }}"#,
    );
}

#[test]
fn test_hex_decode_uppercase() {
    let result = HexDecode::call_as_function(Kwargs::from_iter(vec![(
        "string",
        Value::from("48656C6C6F"),
    )]))
    .unwrap();
    assert_eq!(result.as_str().unwrap(), "Hello");
}

#[test]
fn test_hex_decode_invalid() {
    let result =
        HexDecode::call_as_function(Kwargs::from_iter(vec![("string", Value::from("xyz"))]));
    assert!(result.is_err());
    assert!(result.unwrap_err().to_string().contains("Failed to decode"));
}

#[test]
fn test_hex_decode_odd_length() {
    let result =
        HexDecode::call_as_function(Kwargs::from_iter(vec![("string", Value::from("123"))]));
    assert!(result.is_err());
}

#[test]
fn test_hex_roundtrip() {
    let env = setup_env();
    let result = env
        .render_str(r#"{{ "Test 123" | hex_encode | hex_decode }}"#, ())
        .unwrap();
    assert_eq!(result, "Test 123");
}

// ============ Escape HTML Tests ============

#[test]
fn test_escape_html_basic() {
    let result = EscapeHtml::call_as_function(Kwargs::from_iter(vec![(
        "string",
        Value::from("<script>alert('XSS')</script>"),
    )]))
    .unwrap();
    assert_eq!(
        result.as_str().unwrap(),
        "&lt;script&gt;alert(&#x27;XSS&#x27;)&lt;/script&gt;"
    );
}

#[test]
fn test_escape_html_filter() {
    let value = Value::from("<b>bold</b>");
    let kwargs = Kwargs::from_iter(std::iter::empty::<(&str, Value)>());
    let result = EscapeHtml::call_as_filter(&value, kwargs).unwrap();
    assert_eq!(result.as_str().unwrap(), "&lt;b&gt;bold&lt;/b&gt;");
}

#[test]
fn test_escape_html_both_syntaxes() {
    let env = setup_env();
    assert_both_syntaxes_equal(
        &env,
        r#"{{ escape_html(string="<b>test</b>") }}"#,
        r#"{{ "<b>test</b>" | escape_html }}"#,
    );
}

#[test]
fn test_escape_html_ampersand() {
    let result =
        EscapeHtml::call_as_function(Kwargs::from_iter(vec![("string", Value::from("A & B"))]))
            .unwrap();
    assert_eq!(result.as_str().unwrap(), "A &amp; B");
}

#[test]
fn test_escape_html_quotes() {
    let result = EscapeHtml::call_as_function(Kwargs::from_iter(vec![(
        "string",
        Value::from(r#"Say "hello""#),
    )]))
    .unwrap();
    assert_eq!(result.as_str().unwrap(), "Say &quot;hello&quot;");
}

#[test]
fn test_escape_html_all_entities() {
    let result = EscapeHtml::call_as_function(Kwargs::from_iter(vec![(
        "string",
        Value::from(r#"<tag attr="value">'text' & more</tag>"#),
    )]))
    .unwrap();
    assert_eq!(
        result.as_str().unwrap(),
        "&lt;tag attr=&quot;value&quot;&gt;&#x27;text&#x27; &amp; more&lt;/tag&gt;"
    );
}

#[test]
fn test_escape_html_empty() {
    let result =
        EscapeHtml::call_as_function(Kwargs::from_iter(vec![("string", Value::from(""))])).unwrap();
    assert_eq!(result.as_str().unwrap(), "");
}

// ============ Escape XML Tests ============

#[test]
fn test_escape_xml_basic() {
    let result = EscapeXml::call_as_function(Kwargs::from_iter(vec![(
        "string",
        Value::from("<tag>content</tag>"),
    )]))
    .unwrap();
    assert_eq!(result.as_str().unwrap(), "&lt;tag&gt;content&lt;/tag&gt;");
}

#[test]
fn test_escape_xml_filter() {
    let value = Value::from("<xml/>");
    let kwargs = Kwargs::from_iter(std::iter::empty::<(&str, Value)>());
    let result = EscapeXml::call_as_filter(&value, kwargs).unwrap();
    assert_eq!(result.as_str().unwrap(), "&lt;xml/&gt;");
}

#[test]
fn test_escape_xml_both_syntaxes() {
    let env = setup_env();
    assert_both_syntaxes_equal(
        &env,
        r#"{{ escape_xml(string="<xml/>") }}"#,
        r#"{{ "<xml/>" | escape_xml }}"#,
    );
}

#[test]
fn test_escape_xml_apostrophe() {
    let result = EscapeXml::call_as_function(Kwargs::from_iter(vec![(
        "string",
        Value::from("it's working"),
    )]))
    .unwrap();
    assert_eq!(result.as_str().unwrap(), "it&apos;s working");
}

#[test]
fn test_escape_xml_all_entities() {
    let result = EscapeXml::call_as_function(Kwargs::from_iter(vec![(
        "string",
        Value::from(r#"<tag attr="value">'text' & more</tag>"#),
    )]))
    .unwrap();
    assert_eq!(
        result.as_str().unwrap(),
        "&lt;tag attr=&quot;value&quot;&gt;&apos;text&apos; &amp; more&lt;/tag&gt;"
    );
}

// ============ Escape Shell Tests ============

#[test]
fn test_escape_shell_simple() {
    let result =
        EscapeShell::call_as_function(Kwargs::from_iter(vec![("string", Value::from("hello"))]))
            .unwrap();
    assert_eq!(result.as_str().unwrap(), "'hello'");
}

#[test]
fn test_escape_shell_filter() {
    let value = Value::from("hello");
    let kwargs = Kwargs::from_iter(std::iter::empty::<(&str, Value)>());
    let result = EscapeShell::call_as_filter(&value, kwargs).unwrap();
    assert_eq!(result.as_str().unwrap(), "'hello'");
}

#[test]
fn test_escape_shell_both_syntaxes() {
    let env = setup_env();
    assert_both_syntaxes_equal(
        &env,
        r#"{{ escape_shell(string="hello world") }}"#,
        r#"{{ "hello world" | escape_shell }}"#,
    );
}

#[test]
fn test_escape_shell_with_spaces() {
    let result = EscapeShell::call_as_function(Kwargs::from_iter(vec![(
        "string",
        Value::from("hello world"),
    )]))
    .unwrap();
    assert_eq!(result.as_str().unwrap(), "'hello world'");
}

#[test]
fn test_escape_shell_with_quote() {
    let result = EscapeShell::call_as_function(Kwargs::from_iter(vec![(
        "string",
        Value::from("it's working"),
    )]))
    .unwrap();
    assert_eq!(result.as_str().unwrap(), "'it'\\''s working'");
}

#[test]
fn test_escape_shell_special_chars() {
    let result = EscapeShell::call_as_function(Kwargs::from_iter(vec![(
        "string",
        Value::from("$VAR && rm -rf /"),
    )]))
    .unwrap();
    assert_eq!(result.as_str().unwrap(), "'$VAR && rm -rf /'");
}

#[test]
fn test_escape_shell_empty() {
    let result =
        EscapeShell::call_as_function(Kwargs::from_iter(vec![("string", Value::from(""))]))
            .unwrap();
    assert_eq!(result.as_str().unwrap(), "''");
}

// ============ Chaining Tests ============

#[test]
fn test_encoding_chaining() {
    let env = setup_env();
    // Chain: encode to base64 then to hex
    let result = env
        .render_str(r#"{{ "Hi" | base64_encode | hex_encode }}"#, ())
        .unwrap();
    // "Hi" -> base64 -> "SGk=" -> hex
    assert_eq!(result, "53476b3d");
}

// ============ Bcrypt Tests (function-only) ============

#[test]
fn test_bcrypt_basic() {
    let result = Bcrypt::call(Kwargs::from_iter(vec![(
        "password",
        Value::from("mypassword"),
    )]))
    .unwrap();
    let hash = result.as_str().unwrap();

    // Bcrypt hashes start with $2b$ or $2a$
    assert!(hash.starts_with("$2"));
    // Bcrypt hashes are 60 characters long
    assert_eq!(hash.len(), 60);
}

#[test]
fn test_bcrypt_with_rounds() {
    let result = Bcrypt::call(Kwargs::from_iter(vec![
        ("password", Value::from("test")),
        ("rounds", Value::from(10)),
    ]))
    .unwrap();
    let hash = result.as_str().unwrap();
    assert!(hash.starts_with("$2"));
}

#[test]
fn test_bcrypt_invalid_rounds_low() {
    let result = Bcrypt::call(Kwargs::from_iter(vec![
        ("password", Value::from("test")),
        ("rounds", Value::from(3)),
    ]));
    assert!(result.is_err());
    assert!(result.unwrap_err().to_string().contains("between 4 and 31"));
}

#[test]
fn test_bcrypt_invalid_rounds_high() {
    let result = Bcrypt::call(Kwargs::from_iter(vec![
        ("password", Value::from("test")),
        ("rounds", Value::from(32)),
    ]));
    assert!(result.is_err());
    assert!(result.unwrap_err().to_string().contains("between 4 and 31"));
}

#[test]
fn test_bcrypt_uniqueness() {
    // Same password should generate different hashes (due to random salt)
    let hash1 = Bcrypt::call(Kwargs::from_iter(vec![("password", Value::from("test"))])).unwrap();
    let hash2 = Bcrypt::call(Kwargs::from_iter(vec![("password", Value::from("test"))])).unwrap();

    assert_ne!(hash1.as_str().unwrap(), hash2.as_str().unwrap());
}

// ============ Generate Secret Tests (function-only) ============

#[test]
fn test_generate_secret_alphanumeric() {
    let result =
        GenerateSecret::call(Kwargs::from_iter(vec![("length", Value::from(32))])).unwrap();
    let secret = result.as_str().unwrap();

    assert_eq!(secret.len(), 32);
    // Check that it only contains alphanumeric characters
    assert!(secret.chars().all(|c| c.is_ascii_alphanumeric()));
}

#[test]
fn test_generate_secret_hex() {
    let result = GenerateSecret::call(Kwargs::from_iter(vec![
        ("length", Value::from(16)),
        ("charset", Value::from("hex")),
    ]))
    .unwrap();
    let secret = result.as_str().unwrap();

    assert_eq!(secret.len(), 16);
    // Check that it only contains hex characters
    assert!(secret.chars().all(|c| c.is_ascii_hexdigit()));
}

#[test]
fn test_generate_secret_base64() {
    let result = GenerateSecret::call(Kwargs::from_iter(vec![
        ("length", Value::from(24)),
        ("charset", Value::from("base64")),
    ]))
    .unwrap();
    let secret = result.as_str().unwrap();

    assert_eq!(secret.len(), 24);
}

#[test]
fn test_generate_secret_invalid_length_zero() {
    let result = GenerateSecret::call(Kwargs::from_iter(vec![("length", Value::from(0))]));
    assert!(result.is_err());
    assert!(
        result
            .unwrap_err()
            .to_string()
            .contains("between 1 and 1024")
    );
}

#[test]
fn test_generate_secret_invalid_length_large() {
    let result = GenerateSecret::call(Kwargs::from_iter(vec![("length", Value::from(2000))]));
    assert!(result.is_err());
    assert!(
        result
            .unwrap_err()
            .to_string()
            .contains("between 1 and 1024")
    );
}

#[test]
fn test_generate_secret_invalid_charset() {
    let result = GenerateSecret::call(Kwargs::from_iter(vec![
        ("length", Value::from(16)),
        ("charset", Value::from("invalid")),
    ]));
    assert!(result.is_err());
    assert!(result.unwrap_err().to_string().contains("Invalid charset"));
}

#[test]
fn test_generate_secret_uniqueness() {
    let secret1 =
        GenerateSecret::call(Kwargs::from_iter(vec![("length", Value::from(32))])).unwrap();
    let secret2 =
        GenerateSecret::call(Kwargs::from_iter(vec![("length", Value::from(32))])).unwrap();

    assert_ne!(secret1.as_str().unwrap(), secret2.as_str().unwrap());
}

// ============ HMAC-SHA256 Tests (function-only) ============

#[test]
fn test_hmac_sha256_basic() {
    let result = HmacSha256::call(Kwargs::from_iter(vec![
        ("key", Value::from("secret")),
        ("message", Value::from("hello")),
    ]))
    .unwrap();

    // HMAC-SHA256 produces a 64-character hex string (32 bytes)
    assert_eq!(result.as_str().unwrap().len(), 64);
}

#[test]
fn test_hmac_sha256_deterministic() {
    let result1 = HmacSha256::call(Kwargs::from_iter(vec![
        ("key", Value::from("secret")),
        ("message", Value::from("hello")),
    ]))
    .unwrap();

    let result2 = HmacSha256::call(Kwargs::from_iter(vec![
        ("key", Value::from("secret")),
        ("message", Value::from("hello")),
    ]))
    .unwrap();

    // Same key and message should produce same HMAC
    assert_eq!(result1.as_str().unwrap(), result2.as_str().unwrap());
}

#[test]
fn test_hmac_sha256_different_keys() {
    let result1 = HmacSha256::call(Kwargs::from_iter(vec![
        ("key", Value::from("secret1")),
        ("message", Value::from("hello")),
    ]))
    .unwrap();

    let result2 = HmacSha256::call(Kwargs::from_iter(vec![
        ("key", Value::from("secret2")),
        ("message", Value::from("hello")),
    ]))
    .unwrap();

    // Different keys should produce different HMACs
    assert_ne!(result1.as_str().unwrap(), result2.as_str().unwrap());
}

#[test]
fn test_hmac_sha256_different_messages() {
    let result1 = HmacSha256::call(Kwargs::from_iter(vec![
        ("key", Value::from("secret")),
        ("message", Value::from("hello")),
    ]))
    .unwrap();

    let result2 = HmacSha256::call(Kwargs::from_iter(vec![
        ("key", Value::from("secret")),
        ("message", Value::from("world")),
    ]))
    .unwrap();

    // Different messages should produce different HMACs
    assert_ne!(result1.as_str().unwrap(), result2.as_str().unwrap());
}

// Note: base64_encode_fn, base64_decode_fn, hex_encode_fn, hex_decode_fn,
// escape_html_fn, escape_xml_fn, escape_shell_fn tests removed - these functions
// are now in filter_functions/encoding.rs with dual function+filter syntax support.
// See tests/test_filters_integration.rs for integration tests of these filters.

#[test]
fn test_generate_secret_missing_length() {
    let result = GenerateSecret::call(Kwargs::from_iter(Vec::<(&str, Value)>::new()));
    assert!(result.is_err());
}

#[test]
fn test_hmac_sha256_missing_key() {
    let result = HmacSha256::call(Kwargs::from_iter(vec![("message", Value::from("hello"))]));
    assert!(result.is_err());
}

#[test]
fn test_hmac_sha256_missing_message() {
    let result = HmacSha256::call(Kwargs::from_iter(vec![("key", Value::from("secret"))]));
    assert!(result.is_err());
}