| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235 |
- //
- // AuthenticationTests.swift
- //
- // Copyright (c) 2014-2016 Alamofire Software Foundation (http://alamofire.org/)
- //
- // Permission is hereby granted, free of charge, to any person obtaining a copy
- // of this software and associated documentation files (the "Software"), to deal
- // in the Software without restriction, including without limitation the rights
- // to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
- // copies of the Software, and to permit persons to whom the Software is
- // furnished to do so, subject to the following conditions:
- //
- // The above copyright notice and this permission notice shall be included in
- // all copies or substantial portions of the Software.
- //
- // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
- // IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
- // FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
- // AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
- // LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
- // OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
- // THE SOFTWARE.
- //
- import Alamofire
- import Foundation
- import XCTest
- class AuthenticationTestCase: BaseTestCase {
- let user = "user"
- let password = "password"
- var urlString = ""
- var manager: SessionManager!
- override func setUp() {
- super.setUp()
- manager = SessionManager(configuration: .default)
- // Clear out credentials
- let credentialStorage = URLCredentialStorage.shared
- for (protectionSpace, credentials) in credentialStorage.allCredentials {
- for (_, credential) in credentials {
- credentialStorage.remove(credential, for: protectionSpace)
- }
- }
- // Clear out cookies
- let cookieStorage = HTTPCookieStorage.shared
- cookieStorage.cookies?.forEach { cookieStorage.deleteCookie($0) }
- }
- }
- // MARK: -
- class BasicAuthenticationTestCase: AuthenticationTestCase {
- override func setUp() {
- super.setUp()
- urlString = "https://httpbin.org/basic-auth/\(user)/\(password)"
- }
- func testHTTPBasicAuthenticationWithInvalidCredentials() {
- // Given
- let expectation = self.expectation(description: "\(urlString) 401")
- var request: URLRequest?
- var response: HTTPURLResponse?
- var data: Data?
- var error: Error?
- // When
- manager.request(urlString, withMethod: .get)
- .authenticate(user: "invalid", password: "credentials")
- .response { responseRequest, responseResponse, responseData, responseError in
- request = responseRequest
- response = responseResponse
- data = responseData
- error = responseError
- expectation.fulfill()
- }
- waitForExpectations(timeout: timeout, handler: nil)
- // Then
- XCTAssertNotNil(request, "request should not be nil")
- XCTAssertNotNil(response, "response should not be nil")
- XCTAssertEqual(response?.statusCode ?? 0, 401, "response status code should be 401")
- XCTAssertNotNil(data, "data should not be nil")
- XCTAssertNil(error, "error should be nil")
- }
- func testHTTPBasicAuthenticationWithValidCredentials() {
- // Given
- let expectation = self.expectation(description: "\(urlString) 200")
- var request: URLRequest?
- var response: HTTPURLResponse?
- var data: Data?
- var error: Error?
- // When
- manager.request(urlString, withMethod: .get)
- .authenticate(user: user, password: password)
- .response { responseRequest, responseResponse, responseData, responseError in
- request = responseRequest
- response = responseResponse
- data = responseData
- error = responseError
- expectation.fulfill()
- }
- waitForExpectations(timeout: timeout, handler: nil)
- // Then
- XCTAssertNotNil(request, "request should not be nil")
- XCTAssertNotNil(response, "response should not be nil")
- XCTAssertEqual(response?.statusCode ?? 0, 200, "response status code should be 200")
- XCTAssertNotNil(data, "data should not be nil")
- XCTAssertNil(error, "error should be nil")
- }
- func testHiddenHTTPBasicAuthentication() {
- // Given
- let urlString = "http://httpbin.org/hidden-basic-auth/\(user)/\(password)"
- let expectation = self.expectation(description: "\(urlString) 200")
- var headers: [String: String]?
- if let authorizationHeader = Request.authorizationHeaderFrom(user: user, password: password) {
- headers = [authorizationHeader.key: authorizationHeader.value]
- }
- var request: URLRequest?
- var response: HTTPURLResponse?
- var data: Data?
- var error: Error?
- // When
- manager.request(urlString, withMethod: .get, headers: headers)
- .response { responseRequest, responseResponse, responseData, responseError in
- request = responseRequest
- response = responseResponse
- data = responseData
- error = responseError
- expectation.fulfill()
- }
- waitForExpectations(timeout: timeout, handler: nil)
- // Then
- XCTAssertNotNil(request, "request should not be nil")
- XCTAssertNotNil(response, "response should not be nil")
- XCTAssertEqual(response?.statusCode ?? 0, 200, "response status code should be 200")
- XCTAssertNotNil(data, "data should not be nil")
- XCTAssertNil(error, "error should be nil")
- }
- }
- // MARK: -
- class HTTPDigestAuthenticationTestCase: AuthenticationTestCase {
- let qop = "auth"
- override func setUp() {
- super.setUp()
- urlString = "https://httpbin.org/digest-auth/\(qop)/\(user)/\(password)"
- }
- func testHTTPDigestAuthenticationWithInvalidCredentials() {
- // Given
- let expectation = self.expectation(description: "\(urlString) 401")
- var request: URLRequest?
- var response: HTTPURLResponse?
- var data: Data?
- var error: Error?
- // When
- manager.request(urlString, withMethod: .get)
- .authenticate(user: "invalid", password: "credentials")
- .response { responseRequest, responseResponse, responseData, responseError in
- request = responseRequest
- response = responseResponse
- data = responseData
- error = responseError
- expectation.fulfill()
- }
- waitForExpectations(timeout: timeout, handler: nil)
- // Then
- XCTAssertNotNil(request, "request should not be nil")
- XCTAssertNotNil(response, "response should not be nil")
- XCTAssertEqual(response?.statusCode ?? 0, 401, "response status code should be 401")
- XCTAssertNotNil(data, "data should not be nil")
- XCTAssertNil(error, "error should be nil")
- }
- func testHTTPDigestAuthenticationWithValidCredentials() {
- // Given
- let expectation = self.expectation(description: "\(urlString) 200")
- var request: URLRequest?
- var response: HTTPURLResponse?
- var data: Data?
- var error: Error?
- // When
- manager.request(urlString, withMethod: .get)
- .authenticate(user: user, password: password)
- .response { responseRequest, responseResponse, responseData, responseError in
- request = responseRequest
- response = responseResponse
- data = responseData
- error = responseError
- expectation.fulfill()
- }
- waitForExpectations(timeout: timeout, handler: nil)
- // Then
- XCTAssertNotNil(request, "request should not be nil")
- XCTAssertNotNil(response, "response should not be nil")
- XCTAssertEqual(response?.statusCode ?? 0, 200, "response status code should be 200")
- XCTAssertNotNil(data, "data should not be nil")
- XCTAssertNil(error, "error should be nil")
- }
- }
|
