cat-bookmarker/deps/phoenix/priv/templates/phx.gen.auth/auth_test.exs

defmodule <%= inspect auth_module %>Test do
  use <%= inspect context.web_module %>.ConnCase<%= test_case_options %>

  alias <%= inspect context.module %>
  alias <%= inspect context.web_module %>.<%= inspect Module.concat(schema.web_namespace, schema.alias) %>Auth
  import <%= inspect context.module %>Fixtures

  @remember_me_cookie "_<%= web_app_name %>_<%= schema.singular %>_remember_me"

  setup %{conn: conn} do
    conn =
      conn
      |> Map.replace!(:secret_key_base, <%= inspect endpoint_module %>.config(:secret_key_base))
      |> init_test_session(%{})

    %{<%= schema.singular %>: <%= schema.singular %>_fixture(), conn: conn}
  end

  describe "log_in_<%= schema.singular %>/3" do
    test "stores the <%= schema.singular %> token in the session", %{conn: conn, <%= schema.singular %>: <%= schema.singular %>} do
      conn = <%= inspect schema.alias %>Auth.log_in_<%= schema.singular %>(conn, <%= schema.singular %>)
      assert token = get_session(conn, :<%= schema.singular %>_token)
      assert get_session(conn, :live_socket_id) == "<%= schema.plural %>_sessions:#{Base.url_encode64(token)}"
      assert redirected_to(conn) == "/"
      assert <%= inspect context.alias %>.get_<%= schema.singular %>_by_session_token(token)
    end

    test "clears everything previously stored in the session", %{conn: conn, <%= schema.singular %>: <%= schema.singular %>} do
      conn = conn |> put_session(:to_be_removed, "value") |> <%= inspect schema.alias %>Auth.log_in_<%= schema.singular %>(<%= schema.singular %>)
      refute get_session(conn, :to_be_removed)
    end

    test "redirects to the configured path", %{conn: conn, <%= schema.singular %>: <%= schema.singular %>} do
      conn = conn |> put_session(:<%= schema.singular %>_return_to, "/hello") |> <%= inspect schema.alias %>Auth.log_in_<%= schema.singular %>(<%= schema.singular %>)
      assert redirected_to(conn) == "/hello"
    end

    test "writes a cookie if remember_me is configured", %{conn: conn, <%= schema.singular %>: <%= schema.singular %>} do
      conn = conn |> fetch_cookies() |> <%= inspect schema.alias %>Auth.log_in_<%= schema.singular %>(<%= schema.singular %>, %{"remember_me" => "true"})
      assert get_session(conn, :<%= schema.singular %>_token) == conn.cookies[@remember_me_cookie]

      assert %{value: signed_token, max_age: max_age} = conn.resp_cookies[@remember_me_cookie]
      assert signed_token != get_session(conn, :<%= schema.singular %>_token)
      assert max_age == 5_184_000
    end
  end

  describe "logout_<%= schema.singular %>/1" do
    test "erases session and cookies", %{conn: conn, <%= schema.singular %>: <%= schema.singular %>} do
      <%= schema.singular %>_token = <%= inspect context.alias %>.generate_<%= schema.singular %>_session_token(<%= schema.singular %>)

      conn =
        conn
        |> put_session(:<%= schema.singular %>_token, <%= schema.singular %>_token)
        |> put_req_cookie(@remember_me_cookie, <%= schema.singular %>_token)
        |> fetch_cookies()
        |> <%= inspect schema.alias %>Auth.log_out_<%= schema.singular %>()

      refute get_session(conn, :<%= schema.singular %>_token)
      refute conn.cookies[@remember_me_cookie]
      assert %{max_age: 0} = conn.resp_cookies[@remember_me_cookie]
      assert redirected_to(conn) == "/"
      refute <%= inspect context.alias %>.get_<%= schema.singular %>_by_session_token(<%= schema.singular %>_token)
    end

    test "broadcasts to the given live_socket_id", %{conn: conn} do
      live_socket_id = "<%= schema.plural %>_sessions:abcdef-token"
      <%= inspect(endpoint_module) %>.subscribe(live_socket_id)

      conn
      |> put_session(:live_socket_id, live_socket_id)
      |> <%= inspect(schema.alias) %>Auth.log_out_<%= schema.singular %>()

      assert_receive %Phoenix.Socket.Broadcast{event: "disconnect", topic: ^live_socket_id}
    end

    test "works even if <%= schema.singular %> is already logged out", %{conn: conn} do
      conn = conn |> fetch_cookies() |> <%= inspect schema.alias %>Auth.log_out_<%= schema.singular %>()
      refute get_session(conn, :<%= schema.singular %>_token)
      assert %{max_age: 0} = conn.resp_cookies[@remember_me_cookie]
      assert redirected_to(conn) == "/"
    end
  end

  describe "fetch_current_<%= schema.singular %>/2" do
    test "authenticates <%= schema.singular %> from session", %{conn: conn, <%= schema.singular %>: <%= schema.singular %>} do
      <%= schema.singular %>_token = <%= inspect context.alias %>.generate_<%= schema.singular %>_session_token(<%= schema.singular %>)
      conn = conn |> put_session(:<%= schema.singular %>_token, <%= schema.singular %>_token) |> <%= inspect schema.alias %>Auth.fetch_current_<%= schema.singular %>([])
      assert conn.assigns.current_<%= schema.singular %>.id == <%= schema.singular %>.id
    end

    test "authenticates <%= schema.singular %> from cookies", %{conn: conn, <%= schema.singular %>: <%= schema.singular %>} do
      logged_in_conn =
        conn |> fetch_cookies() |> <%= inspect schema.alias %>Auth.log_in_<%= schema.singular %>(<%= schema.singular %>, %{"remember_me" => "true"})

      <%= schema.singular %>_token = logged_in_conn.cookies[@remember_me_cookie]
      %{value: signed_token} = logged_in_conn.resp_cookies[@remember_me_cookie]

      conn =
        conn
        |> put_req_cookie(@remember_me_cookie, signed_token)
        |> <%= inspect schema.alias %>Auth.fetch_current_<%= schema.singular %>([])

      assert get_session(conn, :<%= schema.singular %>_token) == <%= schema.singular %>_token
      assert conn.assigns.current_<%= schema.singular %>.id == <%= schema.singular %>.id
    end

    test "does not authenticate if data is missing", %{conn: conn, <%= schema.singular %>: <%= schema.singular %>} do
      _ = <%= inspect context.alias %>.generate_<%= schema.singular %>_session_token(<%= schema.singular %>)
      conn = <%= inspect schema.alias %>Auth.fetch_current_<%= schema.singular %>(conn, [])
      refute get_session(conn, :<%= schema.singular %>_token)
      refute conn.assigns.current_<%= schema.singular %>
    end
  end

  describe "redirect_if_<%= schema.singular %>_is_authenticated/2" do
    test "redirects if <%= schema.singular %> is authenticated", %{conn: conn, <%= schema.singular %>: <%= schema.singular %>} do
      conn = conn |> assign(:current_<%= schema.singular %>, <%= schema.singular %>) |> <%= inspect schema.alias %>Auth.redirect_if_<%= schema.singular %>_is_authenticated([])
      assert conn.halted
      assert redirected_to(conn) == "/"
    end

    test "does not redirect if <%= schema.singular %> is not authenticated", %{conn: conn} do
      conn = <%= inspect schema.alias %>Auth.redirect_if_<%= schema.singular %>_is_authenticated(conn, [])
      refute conn.halted
      refute conn.status
    end
  end

  describe "require_authenticated_<%= schema.singular %>/2" do
    test "redirects if <%= schema.singular %> is not authenticated", %{conn: conn} do
      conn = conn |> fetch_flash() |> <%= inspect schema.alias %>Auth.require_authenticated_<%= schema.singular %>([])
      assert conn.halted
      assert redirected_to(conn) == Routes.<%= schema.route_helper %>_session_path(conn, :new)
      assert get_flash(conn, :error) == "You must log in to access this page."
    end

    test "stores the path to redirect to on GET", %{conn: conn} do
      halted_conn =
        %{conn | path_info: ["foo"], query_string: ""}
        |> fetch_flash()
        |> <%= inspect schema.alias %>Auth.require_authenticated_<%= schema.singular %>([])

      assert halted_conn.halted
      assert get_session(halted_conn, :<%= schema.singular %>_return_to) == "/foo"

      halted_conn =
        %{conn | path_info: ["foo"], query_string: "bar=baz"}
        |> fetch_flash()
        |> <%= inspect schema.alias %>Auth.require_authenticated_<%= schema.singular %>([])

      assert halted_conn.halted
      assert get_session(halted_conn, :<%= schema.singular %>_return_to) == "/foo?bar=baz"

      halted_conn =
        %{conn | path_info: ["foo"], query_string: "bar", method: "POST"}
        |> fetch_flash()
        |> <%= inspect schema.alias %>Auth.require_authenticated_<%= schema.singular %>([])

      assert halted_conn.halted
      refute get_session(halted_conn, :<%= schema.singular %>_return_to)
    end

    test "does not redirect if <%= schema.singular %> is authenticated", %{conn: conn, <%= schema.singular %>: <%= schema.singular %>} do
      conn = conn |> assign(:current_<%= schema.singular %>, <%= schema.singular %>) |> <%= inspect schema.alias %>Auth.require_authenticated_<%= schema.singular %>([])
      refute conn.halted
      refute conn.status
    end
  end
end
Clean up repo and update deps 2024-03-10 18:52:04 +00:00			`defmodule <%= inspect auth_module %>Test do`
			`use <%= inspect context.web_module %>.ConnCase<%= test_case_options %>`

			`alias <%= inspect context.module %>`
			`alias <%= inspect context.web_module %>.<%= inspect Module.concat(schema.web_namespace, schema.alias) %>Auth`
			`import <%= inspect context.module %>Fixtures`

			`@remember_me_cookie "_<%= web_app_name %>_<%= schema.singular %>_remember_me"`

			`setup %{conn: conn} do`
			`conn =`
			`conn`
			`\|> Map.replace!(:secret_key_base, <%= inspect endpoint_module %>.config(:secret_key_base))`
			`\|> init_test_session(%{})`

			`%{<%= schema.singular %>: <%= schema.singular %>_fixture(), conn: conn}`
			`end`

			`describe "log_in_<%= schema.singular %>/3" do`
			`test "stores the <%= schema.singular %> token in the session", %{conn: conn, <%= schema.singular %>: <%= schema.singular %>} do`
			`conn = <%= inspect schema.alias %>Auth.log_in_<%= schema.singular %>(conn, <%= schema.singular %>)`
			`assert token = get_session(conn, :<%= schema.singular %>_token)`
			`assert get_session(conn, :live_socket_id) == "<%= schema.plural %>_sessions:#{Base.url_encode64(token)}"`
			`assert redirected_to(conn) == "/"`
			`assert <%= inspect context.alias %>.get_<%= schema.singular %>_by_session_token(token)`
			`end`

			`test "clears everything previously stored in the session", %{conn: conn, <%= schema.singular %>: <%= schema.singular %>} do`
			`conn = conn \|> put_session(:to_be_removed, "value") \|> <%= inspect schema.alias %>Auth.log_in_<%= schema.singular %>(<%= schema.singular %>)`
			`refute get_session(conn, :to_be_removed)`
			`end`

			`test "redirects to the configured path", %{conn: conn, <%= schema.singular %>: <%= schema.singular %>} do`
			`conn = conn \|> put_session(:<%= schema.singular %>_return_to, "/hello") \|> <%= inspect schema.alias %>Auth.log_in_<%= schema.singular %>(<%= schema.singular %>)`
			`assert redirected_to(conn) == "/hello"`
			`end`

			`test "writes a cookie if remember_me is configured", %{conn: conn, <%= schema.singular %>: <%= schema.singular %>} do`
			`conn = conn \|> fetch_cookies() \|> <%= inspect schema.alias %>Auth.log_in_<%= schema.singular %>(<%= schema.singular %>, %{"remember_me" => "true"})`
			`assert get_session(conn, :<%= schema.singular %>_token) == conn.cookies[@remember_me_cookie]`

			`assert %{value: signed_token, max_age: max_age} = conn.resp_cookies[@remember_me_cookie]`
			`assert signed_token != get_session(conn, :<%= schema.singular %>_token)`
			`assert max_age == 5_184_000`
			`end`
			`end`

			`describe "logout_<%= schema.singular %>/1" do`
			`test "erases session and cookies", %{conn: conn, <%= schema.singular %>: <%= schema.singular %>} do`
			`<%= schema.singular %>_token = <%= inspect context.alias %>.generate_<%= schema.singular %>_session_token(<%= schema.singular %>)`

			`conn =`
			`conn`
			`\|> put_session(:<%= schema.singular %>_token, <%= schema.singular %>_token)`
			`\|> put_req_cookie(@remember_me_cookie, <%= schema.singular %>_token)`
			`\|> fetch_cookies()`
			`\|> <%= inspect schema.alias %>Auth.log_out_<%= schema.singular %>()`

			`refute get_session(conn, :<%= schema.singular %>_token)`
			`refute conn.cookies[@remember_me_cookie]`
			`assert %{max_age: 0} = conn.resp_cookies[@remember_me_cookie]`
			`assert redirected_to(conn) == "/"`
			`refute <%= inspect context.alias %>.get_<%= schema.singular %>_by_session_token(<%= schema.singular %>_token)`
			`end`

			`test "broadcasts to the given live_socket_id", %{conn: conn} do`
			`live_socket_id = "<%= schema.plural %>_sessions:abcdef-token"`
			`<%= inspect(endpoint_module) %>.subscribe(live_socket_id)`

			`conn`
			`\|> put_session(:live_socket_id, live_socket_id)`
			`\|> <%= inspect(schema.alias) %>Auth.log_out_<%= schema.singular %>()`

			`assert_receive %Phoenix.Socket.Broadcast{event: "disconnect", topic: ^live_socket_id}`
			`end`

			`test "works even if <%= schema.singular %> is already logged out", %{conn: conn} do`
			`conn = conn \|> fetch_cookies() \|> <%= inspect schema.alias %>Auth.log_out_<%= schema.singular %>()`
			`refute get_session(conn, :<%= schema.singular %>_token)`
			`assert %{max_age: 0} = conn.resp_cookies[@remember_me_cookie]`
			`assert redirected_to(conn) == "/"`
			`end`
			`end`

			`describe "fetch_current_<%= schema.singular %>/2" do`
			`test "authenticates <%= schema.singular %> from session", %{conn: conn, <%= schema.singular %>: <%= schema.singular %>} do`
			`<%= schema.singular %>_token = <%= inspect context.alias %>.generate_<%= schema.singular %>_session_token(<%= schema.singular %>)`
			`conn = conn \|> put_session(:<%= schema.singular %>_token, <%= schema.singular %>_token) \|> <%= inspect schema.alias %>Auth.fetch_current_<%= schema.singular %>([])`
			`assert conn.assigns.current_<%= schema.singular %>.id == <%= schema.singular %>.id`
			`end`

			`test "authenticates <%= schema.singular %> from cookies", %{conn: conn, <%= schema.singular %>: <%= schema.singular %>} do`
			`logged_in_conn =`
			`conn \|> fetch_cookies() \|> <%= inspect schema.alias %>Auth.log_in_<%= schema.singular %>(<%= schema.singular %>, %{"remember_me" => "true"})`

			`<%= schema.singular %>_token = logged_in_conn.cookies[@remember_me_cookie]`
			`%{value: signed_token} = logged_in_conn.resp_cookies[@remember_me_cookie]`

			`conn =`
			`conn`
			`\|> put_req_cookie(@remember_me_cookie, signed_token)`
			`\|> <%= inspect schema.alias %>Auth.fetch_current_<%= schema.singular %>([])`

			`assert get_session(conn, :<%= schema.singular %>_token) == <%= schema.singular %>_token`
			`assert conn.assigns.current_<%= schema.singular %>.id == <%= schema.singular %>.id`
			`end`

			`test "does not authenticate if data is missing", %{conn: conn, <%= schema.singular %>: <%= schema.singular %>} do`
			`_ = <%= inspect context.alias %>.generate_<%= schema.singular %>_session_token(<%= schema.singular %>)`
			`conn = <%= inspect schema.alias %>Auth.fetch_current_<%= schema.singular %>(conn, [])`
			`refute get_session(conn, :<%= schema.singular %>_token)`
			`refute conn.assigns.current_<%= schema.singular %>`
			`end`
			`end`

			`describe "redirect_if_<%= schema.singular %>_is_authenticated/2" do`
			`test "redirects if <%= schema.singular %> is authenticated", %{conn: conn, <%= schema.singular %>: <%= schema.singular %>} do`
			`conn = conn \|> assign(:current_<%= schema.singular %>, <%= schema.singular %>) \|> <%= inspect schema.alias %>Auth.redirect_if_<%= schema.singular %>_is_authenticated([])`
			`assert conn.halted`
			`assert redirected_to(conn) == "/"`
			`end`

			`test "does not redirect if <%= schema.singular %> is not authenticated", %{conn: conn} do`
			`conn = <%= inspect schema.alias %>Auth.redirect_if_<%= schema.singular %>_is_authenticated(conn, [])`
			`refute conn.halted`
			`refute conn.status`
			`end`
			`end`

			`describe "require_authenticated_<%= schema.singular %>/2" do`
			`test "redirects if <%= schema.singular %> is not authenticated", %{conn: conn} do`
			`conn = conn \|> fetch_flash() \|> <%= inspect schema.alias %>Auth.require_authenticated_<%= schema.singular %>([])`
			`assert conn.halted`
			`assert redirected_to(conn) == Routes.<%= schema.route_helper %>_session_path(conn, :new)`
			`assert get_flash(conn, :error) == "You must log in to access this page."`
			`end`

			`test "stores the path to redirect to on GET", %{conn: conn} do`
			`halted_conn =`
			`%{conn \| path_info: ["foo"], query_string: ""}`
			`\|> fetch_flash()`
			`\|> <%= inspect schema.alias %>Auth.require_authenticated_<%= schema.singular %>([])`

			`assert halted_conn.halted`
			`assert get_session(halted_conn, :<%= schema.singular %>_return_to) == "/foo"`

			`halted_conn =`
			`%{conn \| path_info: ["foo"], query_string: "bar=baz"}`
			`\|> fetch_flash()`
			`\|> <%= inspect schema.alias %>Auth.require_authenticated_<%= schema.singular %>([])`

			`assert halted_conn.halted`
			`assert get_session(halted_conn, :<%= schema.singular %>_return_to) == "/foo?bar=baz"`

			`halted_conn =`
			`%{conn \| path_info: ["foo"], query_string: "bar", method: "POST"}`
			`\|> fetch_flash()`
			`\|> <%= inspect schema.alias %>Auth.require_authenticated_<%= schema.singular %>([])`

			`assert halted_conn.halted`
			`refute get_session(halted_conn, :<%= schema.singular %>_return_to)`
			`end`

			`test "does not redirect if <%= schema.singular %> is authenticated", %{conn: conn, <%= schema.singular %>: <%= schema.singular %>} do`
			`conn = conn \|> assign(:current_<%= schema.singular %>, <%= schema.singular %>) \|> <%= inspect schema.alias %>Auth.require_authenticated_<%= schema.singular %>([])`
			`refute conn.halted`
			`refute conn.status`
			`end`
			`end`
			`end`