mirror of
https://github.com/pomerium/pomerium.git
synced 2025-04-29 10:26:29 +02:00
65 lines
1.7 KiB
Go
65 lines
1.7 KiB
Go
package token_test
|
|
|
|
import (
|
|
"context"
|
|
"testing"
|
|
"time"
|
|
|
|
"github.com/stretchr/testify/assert"
|
|
"github.com/stretchr/testify/require"
|
|
|
|
"github.com/pomerium/pomerium/internal/zero/token"
|
|
)
|
|
|
|
func TestCache(t *testing.T) {
|
|
t.Parallel()
|
|
|
|
t.Run("token expired, fetch new", func(t *testing.T) {
|
|
t.Parallel()
|
|
|
|
var testToken *token.Token
|
|
var testError error
|
|
fetcher := func(ctx context.Context, refreshToken string) (*token.Token, error) {
|
|
if testToken != nil {
|
|
token := *testToken
|
|
return &token, nil
|
|
}
|
|
return nil, testError
|
|
}
|
|
|
|
c := token.NewCache(fetcher, "test-refresh-token")
|
|
now := time.Now()
|
|
c.TimeNow = func() time.Time { return now }
|
|
|
|
testToken = &token.Token{"bearer-1", now.Add(time.Hour)}
|
|
bearer, err := c.GetToken(context.Background(), time.Minute)
|
|
require.NoError(t, err)
|
|
assert.Equal(t, "bearer-1", bearer)
|
|
|
|
now = now.Add(time.Minute * 30)
|
|
testToken.Bearer = "bearer-2"
|
|
|
|
// token is still valid, so we should get the same one
|
|
bearer, err = c.GetToken(context.Background(), time.Minute*20)
|
|
require.NoError(t, err)
|
|
assert.Equal(t, "bearer-1", bearer)
|
|
|
|
now = now.Add(time.Minute * 30)
|
|
testToken = &token.Token{"bearer-3", now.Add(time.Hour)}
|
|
bearer, err = c.GetToken(context.Background(), time.Minute*30)
|
|
require.NoError(t, err)
|
|
assert.Equal(t, "bearer-3", bearer)
|
|
})
|
|
|
|
t.Run("token cannot fit minTTL", func(t *testing.T) {
|
|
t.Parallel()
|
|
|
|
fetcher := func(ctx context.Context, refreshToken string) (*token.Token, error) {
|
|
return &token.Token{"ok-bearer", time.Now().Add(time.Minute)}, nil
|
|
}
|
|
|
|
c := token.NewCache(fetcher, "test-refresh-token")
|
|
_, err := c.GetToken(context.Background(), time.Minute*2)
|
|
assert.Error(t, err)
|
|
})
|
|
}
|