Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

test: authentication package unit tests #128

Merged
merged 4 commits into from
Dec 22, 2024
Merged

test: authentication package unit tests #128

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
b365138
test: authentication package unit tests
OmarAlJarrah Dec 15, 2024
c11ba08
test: authentication package unit tests
OmarAlJarrah Dec 16, 2024
22ca7f0
test: address comments
OmarAlJarrah Dec 22, 2024
52c7935
Merge branch 'main' into OmarAlJarrah/add-authentication-package-tests
OmarAlJarrah Dec 22, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions code/build.gradle
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -38,6 +38,7 @@ dependencies {
testImplementation platform('org.junit:junit-bom:5.11.3')
testImplementation 'org.junit.jupiter:junit-jupiter-api'
testRuntimeOnly 'org.junit.jupiter:junit-jupiter-engine'
testImplementation 'org.junit.jupiter:junit-jupiter-params'
testImplementation 'io.mockk:mockk:1.13.13'
testImplementation "com.squareup.okhttp3:mockwebserver:4.12.0"
}
Expand Down
369 changes: 369 additions & 0 deletions ...in/com/expediagroup/sdk/core/authentication/bearer/BearerAuthenticationInterceptorTest.kt
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,369 @@
package com.expediagroup.sdk.core.authentication.bearer

import com.expediagroup.sdk.core.http.Request
import com.expediagroup.sdk.core.interceptor.Interceptor
import com.expediagroup.sdk.core.model.exception.service.ExpediaGroupAuthException
import io.mockk.clearAllMocks
import io.mockk.confirmVerified
import io.mockk.every
import io.mockk.just
import io.mockk.mockk
import io.mockk.Runs
import io.mockk.verify
import org.junit.jupiter.api.Assertions.assertEquals
import org.junit.jupiter.api.Assertions.assertNotNull
import org.junit.jupiter.api.Assertions.assertTrue
import org.junit.jupiter.api.BeforeEach
import org.junit.jupiter.api.Test
import org.junit.jupiter.api.assertThrows
import java.io.IOException
import java.net.URL
import java.util.concurrent.CountDownLatch
import java.util.concurrent.Executors
import java.util.concurrent.TimeUnit
import java.util.concurrent.atomic.AtomicBoolean
import java.util.concurrent.atomic.AtomicInteger

class BearerAuthenticationInterceptorTest {
@BeforeEach
fun setUp() {
clearAllMocks()
}

@Test
fun `intercept should proceed without Authorization header for authentication requests`() {
// Arrange
val authManager = mockk<BearerAuthenticationManager>(relaxed = true)
val interceptor = BearerAuthenticationInterceptor(authManager)
val chain = mockk<Interceptor.Chain>(relaxed = true)

val authUrl = "https://api.example.com/auth"
every { authManager.authUrl } returns authUrl

// Mocking the authentication request
val authRequestBuilder = mockk<Request.Builder>(relaxed = true)
val authRequest = mockk<Request>(relaxed = true)
every { authRequest.url } returns URL(authUrl)
every { authRequest.newBuilder() } returns authRequestBuilder
every { chain.request() } returns authRequest
every { chain.proceed(authRequest) } returns mockk()

// Act
val response = interceptor.intercept(chain)

// Assert
// Verify that authUrl was called once
verify(exactly = 1) { authManager.authUrl }

// Verify that no authentication methods were called
verify(exactly = 0) { authManager.authenticate() }
verify(exactly = 0) { authManager.isTokenAboutToExpire() }
verify(exactly = 0) { authManager.getAuthorizationHeaderValue() }

// Optionally, confirm that no other interactions occurred
confirmVerified(authManager)

// Verify that chain.proceed was called once with authRequest
verify(exactly = 1) { chain.proceed(authRequest) }

// Ensure the response is not null
assertNotNull(response)
}


@Test
fun `intercept should add Authorization header and not authenticate when token is valid`() {
// Arrange
val authManager = mockk<BearerAuthenticationManager>(relaxed = true)
val interceptor = BearerAuthenticationInterceptor(authManager)
val chain = mockk<Interceptor.Chain>(relaxed = true)

// Mocking a non-authentication request
val requestBuilder = mockk<Request.Builder>(relaxed = true)
val originalRequest = mockk<Request>(relaxed = true)
val authorizedRequest = mockk<Request>(relaxed = true)
val requestUrl = "https://api.example.com/data"

every { originalRequest.url } returns URL(requestUrl)
every { originalRequest.newBuilder() } returns requestBuilder
every { requestBuilder.addHeader("Authorization", "Bearer valid_token") } returns requestBuilder
every { requestBuilder.build() } returns authorizedRequest
every { chain.request() } returns originalRequest
every { chain.proceed(authorizedRequest) } returns mockk()

// Mocking authManager behavior
every { authManager.isTokenAboutToExpire() } returns false
every { authManager.getAuthorizationHeaderValue() } returns "Bearer valid_token"

// Act
val response = interceptor.intercept(chain)

// Assert
verify(exactly = 1) { authManager.isTokenAboutToExpire() }
verify(exactly = 1) { authManager.getAuthorizationHeaderValue() }
verify(exactly = 0) { authManager.authenticate() }
verify(exactly = 1) { requestBuilder.addHeader("Authorization", "Bearer valid_token") }
verify(exactly = 1) { chain.proceed(authorizedRequest) }
assertNotNull(response)
}

@Test
fun `intercept should authenticate and add Authorization header when token is about to expire`() {
// Arrange
val authManager = mockk<BearerAuthenticationManager>(relaxed = true)
val interceptor = BearerAuthenticationInterceptor(authManager)
val chain = mockk<Interceptor.Chain>(relaxed = true)

// Mocking a non-authentication request
val requestBuilder = mockk<Request.Builder>(relaxed = true)
val originalRequest = mockk<Request>(relaxed = true)
val authorizedRequest = mockk<Request>(relaxed = true)
val requestUrl = "https://api.example.com/data"

every { originalRequest.url } returns URL(requestUrl)
every { originalRequest.newBuilder() } returns requestBuilder
every { requestBuilder.addHeader("Authorization", "Bearer refreshed_token") } returns requestBuilder
every { requestBuilder.build() } returns authorizedRequest
every { chain.request() } returns originalRequest
every { chain.proceed(authorizedRequest) } returns mockk()

// Mocking authManager behavior
// Both calls to isTokenAboutToExpire() return true to trigger authenticate()
every { authManager.isTokenAboutToExpire() } returnsMany listOf(true, true)
every { authManager.authenticate() } just Runs
every { authManager.getAuthorizationHeaderValue() } returns "Bearer refreshed_token"

// Act
val response = interceptor.intercept(chain)

// Assert
verify(exactly = 2) { authManager.isTokenAboutToExpire() } // Initial check and inside synchronized block
verify(exactly = 1) { authManager.authenticate() }
verify(exactly = 1) { authManager.getAuthorizationHeaderValue() }
verify(exactly = 1) { requestBuilder.addHeader("Authorization", "Bearer refreshed_token") }
verify(exactly = 1) { chain.proceed(authorizedRequest) }
assertNotNull(response)
}

@Test
fun `intercept should handle concurrent authentications and authenticate only once`() {
// Arrange
val authManager = mockk<BearerAuthenticationManager>(relaxed = true)
val interceptor = BearerAuthenticationInterceptor(authManager)
val chain = mockk<Interceptor.Chain>(relaxed = true)

val numberOfThreads = 2
val executor = Executors.newFixedThreadPool(numberOfThreads)

// Mocking a non-authentication request
val requestBuilder = mockk<Request.Builder>(relaxed = true)
val authRequest = mockk<Request>(relaxed = true)

every { authRequest.url } returns URL("https://api.example.com/data")
every { authRequest.newBuilder() } returns requestBuilder
every { authManager.authUrl } returns "https://api.example.com/auth"
every { requestBuilder.addHeader("Authorization", "Bearer concurrent_token") } returns requestBuilder
every { requestBuilder.build() } returns authRequest
every { chain.request() } returns authRequest
every { chain.proceed(authRequest) } returns mockk()

// Mocking authManager behavior
// First call returns true to trigger authentication, subsequent calls return false
val callsToIsTokenExpired = AtomicInteger(0)
every { authManager.isTokenAboutToExpire() } answers {
synchronized(this@BearerAuthenticationInterceptorTest) {
return@synchronized callsToIsTokenExpired.incrementAndGet() <= numberOfThreads + 1
}
}

every { authManager.authenticate() } just Runs
every { authManager.getAuthorizationHeaderValue() } returns "Bearer concurrent_token"
// Act
repeat(numberOfThreads) {
executor.submit {
interceptor.intercept(chain)
}
}

executor.awaitTermination(5, TimeUnit.SECONDS)
executor.shutdown()

// Assert
verify(exactly = 1) { authManager.authenticate() } // Should authenticate only once
verify(exactly = numberOfThreads) { authManager.getAuthorizationHeaderValue() }
verify(exactly = numberOfThreads) { requestBuilder.addHeader("Authorization", "Bearer concurrent_token") }
verify(exactly = numberOfThreads) { chain.proceed(authRequest) }
}

@Test
fun `intercept should throw ExpediaGroupAuthException when authentication fails`() {
// Arrange
val authManager = mockk<BearerAuthenticationManager>(relaxed = true)
val interceptor = BearerAuthenticationInterceptor(authManager)
val chain = mockk<Interceptor.Chain>(relaxed = true)

// Mocking a non-authentication request
val requestBuilder = mockk<Request.Builder>(relaxed = true)
val originalRequest = mockk<Request>(relaxed = true)
val requestUrl = "https://api.example.com/data"

every { originalRequest.url } returns URL(requestUrl)
every { originalRequest.newBuilder() } returns requestBuilder
every { chain.request() } returns originalRequest

// Mocking authManager behavior
// Both calls to isTokenAboutToExpire() return true to trigger authenticate(), which throws IOException
every { authManager.isTokenAboutToExpire() } returnsMany listOf(true, true)
every { authManager.authenticate() } throws IOException("Network error")

// Act & Assert
val exception = assertThrows<ExpediaGroupAuthException> {
interceptor.intercept(chain)
}

assertEquals("Failed to authenticate", exception.message)
assertTrue(exception.cause is IOException)
verify(exactly = 2) { authManager.isTokenAboutToExpire() } // Initial check and inside synchronized block
verify(exactly = 1) { authManager.authenticate() }
verify(exactly = 0) { authManager.getAuthorizationHeaderValue() }
verify(exactly = 0) { chain.proceed(any()) }
}

@Test
fun `intercept should add correct Authorization header`() {
// Arrange
val authManager = mockk<BearerAuthenticationManager>(relaxed = true)
val interceptor = BearerAuthenticationInterceptor(authManager)
val chain = mockk<Interceptor.Chain>(relaxed = true)

val customToken = "Bearer custom_token_123"

// Mocking a non-authentication request
val requestBuilder = mockk<Request.Builder>(relaxed = true)
val originalRequest = mockk<Request>(relaxed = true)
val authorizedRequest = mockk<Request>(relaxed = true)
val requestUrl = "https://api.example.com/data"

every { originalRequest.url } returns URL(requestUrl)
every { originalRequest.newBuilder() } returns requestBuilder
every { requestBuilder.addHeader("Authorization", customToken) } returns requestBuilder
every { requestBuilder.build() } returns authorizedRequest
every { chain.request() } returns originalRequest
every { chain.proceed(authorizedRequest) } returns mockk()

// Mocking authManager behavior
every { authManager.isTokenAboutToExpire() } returns false
every { authManager.getAuthorizationHeaderValue() } returns customToken

// Act
val response = interceptor.intercept(chain)

// Assert
verify(exactly = 1) { authManager.isTokenAboutToExpire() }
verify(exactly = 1) { authManager.getAuthorizationHeaderValue() }
verify(exactly = 0) { authManager.authenticate() }
verify(exactly = 1) { requestBuilder.addHeader("Authorization", customToken) }
verify(exactly = 1) { chain.proceed(authorizedRequest) }
assertNotNull(response)
}

@Test
fun `should not call authenticate if token is not about to expire`() {
// Arrange
val authManager = mockk<BearerAuthenticationManager>(relaxed = true)
val interceptor = BearerAuthenticationInterceptor(authManager)
val chain = mockk<Interceptor.Chain>(relaxed = true)

// Mocking a non-authentication request
val requestBuilder = mockk<Request.Builder>(relaxed = true)
val originalRequest = mockk<Request>(relaxed = true)
val authorizedRequest = mockk<Request>(relaxed = true)
val requestUrl = "https://api.example.com/data"

every { originalRequest.url } returns URL(requestUrl)
every { originalRequest.newBuilder() } returns requestBuilder
every { requestBuilder.addHeader("Authorization", "Bearer valid_token") } returns requestBuilder
every { requestBuilder.build() } returns authorizedRequest
every { chain.request() } returns originalRequest
every { chain.proceed(authorizedRequest) } returns mockk()

// Mocking authManager behavior
every { authManager.isTokenAboutToExpire() } returns false
every { authManager.getAuthorizationHeaderValue() } returns "Bearer valid_token"

// Act
val response = interceptor.intercept(chain)

// Assert
verify(exactly = 1) { authManager.isTokenAboutToExpire() }
verify(exactly = 0) { authManager.authenticate() }
verify(exactly = 1) { authManager.getAuthorizationHeaderValue() }
verify(exactly = 1) { requestBuilder.addHeader("Authorization", "Bearer valid_token") }
verify(exactly = 1) { chain.proceed(authorizedRequest) }
assertNotNull(response)
}


@Test
fun `ensureValidAuthentication should call authenticate only once when multiple threads detect token expiration`() {
// Arrange
val authManager = mockk<BearerAuthenticationManager>(relaxed = true)
val interceptor = BearerAuthenticationInterceptor(authManager)
val chain = mockk<Interceptor.Chain>(relaxed = true)

val numberOfThreads = 5
val latch = CountDownLatch(numberOfThreads)
val executor = Executors.newFixedThreadPool(numberOfThreads)

// Mocking a non-authentication request
val requestBuilder = mockk<Request.Builder>(relaxed = true)
val originalRequest = mockk<Request>(relaxed = true)
val authorizedRequest = mockk<Request>(relaxed = true)
val requestUrl = "https://api.example.com/data"

every { originalRequest.url } returns URL(requestUrl)
every { originalRequest.newBuilder() } returns requestBuilder
every { requestBuilder.addHeader("Authorization", "Bearer refreshed_token") } returns requestBuilder
every { requestBuilder.build() } returns authorizedRequest
every { chain.request() } returns originalRequest
every { chain.proceed(authorizedRequest) } returns mockk()

// Mocking authManager behavior
// Use AtomicBoolean to simulate token expiration
val tokenExpired = AtomicBoolean(true)
every { authManager.isTokenAboutToExpire() } answers {
tokenExpired.get()
}
every { authManager.authenticate() } answers {
// Simulate some delay in authentication
Thread.sleep(100)
tokenExpired.set(false)
}
every { authManager.getAuthorizationHeaderValue() } returns "Bearer refreshed_token"
every { authManager.authUrl } returns "https://api.example.com/auth"

// Act
repeat(numberOfThreads) {
executor.submit {
try {
interceptor.intercept(chain)
} finally {
latch.countDown()
}
}
}

// Wait for all threads to complete
val completed = latch.await(3, TimeUnit.SECONDS)
executor.shutdown()

// Assert
assertTrue(completed, "All threads should complete within timeout")
verify(exactly = 1) { authManager.authenticate() } // Should authenticate only once
verify(atLeast = numberOfThreads) { authManager.isTokenAboutToExpire() }
verify(exactly = numberOfThreads) { authManager.getAuthorizationHeaderValue() }
verify(exactly = numberOfThreads) { requestBuilder.addHeader("Authorization", "Bearer refreshed_token") }
verify(exactly = numberOfThreads) { chain.proceed(authorizedRequest) }
}

}
Loading