// Copyright 2018 The Gogs Authors. All rights reserved. // SPDX-License-Identifier: MIT package forms import ( "testing" "code.gitea.io/gitea/modules/glob" "code.gitea.io/gitea/modules/setting" "code.gitea.io/gitea/modules/test" "github.com/stretchr/testify/assert" ) func TestRegisterForm_IsDomainAllowed_Empty(t *testing.T) { defer test.MockVariableValue(&setting.Service)() setting.Service.EmailDomainAllowList = nil form := RegisterForm{} assert.True(t, form.IsEmailDomainAllowed()) } func TestRegisterForm_IsDomainAllowed_InvalidEmail(t *testing.T) { defer test.MockVariableValue(&setting.Service.EmailDomainAllowList, []glob.Glob{glob.MustCompile("gitea.io")})() tt := []struct { email string }{ {"invalid-email"}, {"gitea.io"}, } for _, v := range tt { form := RegisterForm{Email: v.email} assert.False(t, form.IsEmailDomainAllowed()) } } func TestRegisterForm_IsDomainAllowed_AllowedEmail(t *testing.T) { defer test.MockVariableValue(&setting.Service.EmailDomainAllowList, []glob.Glob{glob.MustCompile("gitea.io"), glob.MustCompile("*.allow")})() tt := []struct { email string valid bool }{ {"security@gitea.io", true}, {"security@gITea.io", true}, {"invalid", false}, {"seee@example.com", false}, {"user@my.allow", true}, {"user@my.allow1", false}, } for _, v := range tt { form := RegisterForm{Email: v.email} assert.Equal(t, v.valid, form.IsEmailDomainAllowed()) } } func TestRegisterForm_IsDomainAllowed_BlockedEmail(t *testing.T) { defer test.MockVariableValue(&setting.Service.EmailDomainBlockList, []glob.Glob{glob.MustCompile("gitea.io"), glob.MustCompile("*.block")})() tt := []struct { email string valid bool }{ {"security@gitea.io", false}, {"security@gitea.example", true}, {"invalid", true}, {"user@my.block", false}, {"user@my.block1", true}, } for _, v := range tt { form := RegisterForm{Email: v.email} assert.Equal(t, v.valid, form.IsEmailDomainAllowed()) } } func TestDetectInvalidOAuth2ApplicationRedirectURI(t *testing.T) { defer test.MockVariableValue(&setting.OAuth2.CustomSchemes)() setting.OAuth2.CustomSchemes = []string{"my-app"} assertValid := func(t *testing.T, s string, valid bool) { ret := DetectInvalidOAuth2ApplicationRedirectURI([]string{s}) if valid { assert.Empty(t, ret) } else { assert.Equal(t, s, ret) } } assertValid(t, "my-app:", true) assertValid(t, "my-app:/foo", true) assertValid(t, "http://foo", true) assertValid(t, "https://foo", true) assertValid(t, "my-app", false) assertValid(t, "ftp:", false) assertValid(t, "ftp://foo", false) assertValid(t, "https://[invalid", false) ret := DetectInvalidOAuth2ApplicationRedirectURI([]string{"my-app:", "http://foo", "https://foo"}) assert.Empty(t, ret) ret = DetectInvalidOAuth2ApplicationRedirectURI([]string{"my-app:", "http://foo", "invalid", "https://foo"}) assert.Equal(t, "invalid", ret) }