access_key_test.go

package main

import (
	"testing"

	"github.com/dgrijalva/jwt-go"
)

func TestNewAccessKey(t *testing.T) {
	token := jwt.NewWithClaims(jwt.SigningMethodHS256, jwt.MapClaims{
		"read":  []string{"test-channel"},
		"write": []string{"test-channel"},
	})

	tokenString, err := token.SignedString(Config.jwtSecret)
	if err != nil {
		t.Fatal(err)
	}

	ak, err := NewAccessKey(tokenString)
	if err != nil {
		t.Fatal(err)
	}

	if len(ak.Read) < 1 || ak.Read[0] != "test-channel" {
		t.Error("Access Key does not have proper read permissions")
	}

	if len(ak.Write) < 1 || ak.Write[0] != "test-channel" {
		t.Error("Access Key does not have proper write permissions")
	}
}

func TestMultiChannelAccessKey(t *testing.T) {
	token := jwt.NewWithClaims(jwt.SigningMethodHS256, jwt.MapClaims{
		"read":  []string{"test-channel", "read-channel"},
		"write": []string{"test-channel", "write-channel"},
	})

	tokenString, err := token.SignedString(Config.jwtSecret)
	if err != nil {
		t.Fatal(err)
	}

	ak, err := NewAccessKey(tokenString)
	if err != nil {
		t.Fatal(err)
	}

	if !ak.CanRead("test-channel") || !ak.CanRead("read-channel") {
		t.Error("Access Key does not have proper read permissions")
	}

	if !ak.CanWrite("test-channel") || !ak.CanWrite("write-channel") {
		t.Error("Access Key does not have proper write permissions")
	}

	if ak.CanRead("random-channel-name") || ak.CanWrite("random-channel-name") {
		t.Error("channel has permissions it shouldn't")
	}
}