mirror of
https://github.com/golang/oauth2.git
synced 2025-07-21 00:00:09 +08:00
1e6999b1be
Change-Id: I7925b8341e1f047d0115acd7a01a34679a489ee0 Reviewed-on: https://go-review.googlesource.com/c/oauth2/+/552716 Reviewed-by: Cody Oss <codyoss@google.com> Run-TryBot: Cody Oss <codyoss@google.com> Reviewed-by: Viacheslav Rostovtsev <virost@google.com> TryBot-Result: Gopher Robot <gobot@golang.org>
203 lines
6.2 KiB
Go
203 lines
6.2 KiB
Go
// Copyright 2023 The Go Authors. All rights reserved.
|
|
// Use of this source code is governed by a BSD-style
|
|
// license that can be found in the LICENSE file.
|
|
|
|
package google
|
|
|
|
import (
|
|
"context"
|
|
"testing"
|
|
)
|
|
|
|
var saJSONJWT = []byte(`{
|
|
"type": "service_account",
|
|
"project_id": "fake_project",
|
|
"private_key_id": "268f54e43a1af97cfc71731688434f45aca15c8b",
|
|
"private_key": "super secret key",
|
|
"client_email": "gopher@developer.gserviceaccount.com",
|
|
"client_id": "gopher.apps.googleusercontent.com",
|
|
"auth_uri": "https://accounts.google.com/o/oauth2/auth",
|
|
"token_uri": "https://oauth2.googleapis.com/token",
|
|
"auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs",
|
|
"client_x509_cert_url": "https://www.googleapis.com/robot/v1/metadata/x509/gopher%40fake_project.iam.gserviceaccount.com"
|
|
}`)
|
|
|
|
var saJSONJWTUniverseDomain = []byte(`{
|
|
"type": "service_account",
|
|
"project_id": "fake_project",
|
|
"universe_domain": "example.com",
|
|
"private_key_id": "268f54e43a1af97cfc71731688434f45aca15c8b",
|
|
"private_key": "super secret key",
|
|
"client_email": "gopher@developer.gserviceaccount.com",
|
|
"client_id": "gopher.apps.googleusercontent.com",
|
|
"auth_uri": "https://accounts.google.com/o/oauth2/auth",
|
|
"token_uri": "https://oauth2.googleapis.com/token",
|
|
"auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs",
|
|
"client_x509_cert_url": "https://www.googleapis.com/robot/v1/metadata/x509/gopher%40fake_project.iam.gserviceaccount.com"
|
|
}`)
|
|
|
|
var userJSON = []byte(`{
|
|
"client_id": "abc123.apps.googleusercontent.com",
|
|
"client_secret": "shh",
|
|
"refresh_token": "refreshing",
|
|
"type": "authorized_user",
|
|
"quota_project_id": "fake_project2"
|
|
}`)
|
|
|
|
var userJSONUniverseDomain = []byte(`{
|
|
"client_id": "abc123.apps.googleusercontent.com",
|
|
"client_secret": "shh",
|
|
"refresh_token": "refreshing",
|
|
"type": "authorized_user",
|
|
"quota_project_id": "fake_project2",
|
|
"universe_domain": "example.com"
|
|
}`)
|
|
|
|
var universeDomain = "example.com"
|
|
|
|
var universeDomain2 = "apis-tpclp.goog"
|
|
|
|
func TestCredentialsFromJSONWithParams_SA(t *testing.T) {
|
|
ctx := context.Background()
|
|
scope := "https://www.googleapis.com/auth/cloud-platform"
|
|
params := CredentialsParams{
|
|
Scopes: []string{scope},
|
|
}
|
|
creds, err := CredentialsFromJSONWithParams(ctx, saJSONJWT, params)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
if want := "fake_project"; creds.ProjectID != want {
|
|
t.Fatalf("got %q, want %q", creds.ProjectID, want)
|
|
}
|
|
if want := "googleapis.com"; creds.UniverseDomain() != want {
|
|
t.Fatalf("got %q, want %q", creds.UniverseDomain(), want)
|
|
}
|
|
}
|
|
|
|
func TestCredentialsFromJSONWithParams_SA_Params_UniverseDomain(t *testing.T) {
|
|
ctx := context.Background()
|
|
scope := "https://www.googleapis.com/auth/cloud-platform"
|
|
params := CredentialsParams{
|
|
Scopes: []string{scope},
|
|
UniverseDomain: universeDomain2,
|
|
}
|
|
creds, err := CredentialsFromJSONWithParams(ctx, saJSONJWT, params)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
if want := "fake_project"; creds.ProjectID != want {
|
|
t.Fatalf("got %q, want %q", creds.ProjectID, want)
|
|
}
|
|
if creds.UniverseDomain() != universeDomain2 {
|
|
t.Fatalf("got %q, want %q", creds.UniverseDomain(), universeDomain2)
|
|
}
|
|
}
|
|
|
|
func TestCredentialsFromJSONWithParams_SA_UniverseDomain(t *testing.T) {
|
|
ctx := context.Background()
|
|
scope := "https://www.googleapis.com/auth/cloud-platform"
|
|
params := CredentialsParams{
|
|
Scopes: []string{scope},
|
|
}
|
|
creds, err := CredentialsFromJSONWithParams(ctx, saJSONJWTUniverseDomain, params)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
if want := "fake_project"; creds.ProjectID != want {
|
|
t.Fatalf("got %q, want %q", creds.ProjectID, want)
|
|
}
|
|
if creds.UniverseDomain() != universeDomain {
|
|
t.Fatalf("got %q, want %q", creds.UniverseDomain(), universeDomain)
|
|
}
|
|
}
|
|
|
|
func TestCredentialsFromJSONWithParams_SA_UniverseDomain_Params_UniverseDomain(t *testing.T) {
|
|
ctx := context.Background()
|
|
scope := "https://www.googleapis.com/auth/cloud-platform"
|
|
params := CredentialsParams{
|
|
Scopes: []string{scope},
|
|
UniverseDomain: universeDomain2,
|
|
}
|
|
creds, err := CredentialsFromJSONWithParams(ctx, saJSONJWTUniverseDomain, params)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
if want := "fake_project"; creds.ProjectID != want {
|
|
t.Fatalf("got %q, want %q", creds.ProjectID, want)
|
|
}
|
|
if creds.UniverseDomain() != universeDomain2 {
|
|
t.Fatalf("got %q, want %q", creds.UniverseDomain(), universeDomain2)
|
|
}
|
|
}
|
|
|
|
func TestCredentialsFromJSONWithParams_User(t *testing.T) {
|
|
ctx := context.Background()
|
|
scope := "https://www.googleapis.com/auth/cloud-platform"
|
|
params := CredentialsParams{
|
|
Scopes: []string{scope},
|
|
}
|
|
creds, err := CredentialsFromJSONWithParams(ctx, userJSON, params)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
if want := "googleapis.com"; creds.UniverseDomain() != want {
|
|
t.Fatalf("got %q, want %q", creds.UniverseDomain(), want)
|
|
}
|
|
}
|
|
|
|
func TestCredentialsFromJSONWithParams_User_Params_UniverseDomain(t *testing.T) {
|
|
ctx := context.Background()
|
|
scope := "https://www.googleapis.com/auth/cloud-platform"
|
|
params := CredentialsParams{
|
|
Scopes: []string{scope},
|
|
UniverseDomain: universeDomain2,
|
|
}
|
|
creds, err := CredentialsFromJSONWithParams(ctx, userJSON, params)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
if want := "googleapis.com"; creds.UniverseDomain() != want {
|
|
t.Fatalf("got %q, want %q", creds.UniverseDomain(), want)
|
|
}
|
|
}
|
|
|
|
func TestCredentialsFromJSONWithParams_User_UniverseDomain(t *testing.T) {
|
|
ctx := context.Background()
|
|
scope := "https://www.googleapis.com/auth/cloud-platform"
|
|
params := CredentialsParams{
|
|
Scopes: []string{scope},
|
|
}
|
|
creds, err := CredentialsFromJSONWithParams(ctx, userJSONUniverseDomain, params)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
if want := "googleapis.com"; creds.UniverseDomain() != want {
|
|
t.Fatalf("got %q, want %q", creds.UniverseDomain(), want)
|
|
}
|
|
}
|
|
|
|
func TestCredentialsFromJSONWithParams_User_UniverseDomain_Params_UniverseDomain(t *testing.T) {
|
|
ctx := context.Background()
|
|
scope := "https://www.googleapis.com/auth/cloud-platform"
|
|
params := CredentialsParams{
|
|
Scopes: []string{scope},
|
|
UniverseDomain: universeDomain2,
|
|
}
|
|
creds, err := CredentialsFromJSONWithParams(ctx, userJSONUniverseDomain, params)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
if want := "googleapis.com"; creds.UniverseDomain() != want {
|
|
t.Fatalf("got %q, want %q", creds.UniverseDomain(), want)
|
|
}
|
|
}
|