gitea/services/forms/user_form_test.go

// Copyright 2018 The Gogs Authors. All rights reserved.
// SPDX-License-Identifier: MIT

package forms

import (
	"testing"

	"code.gitea.io/gitea/modules/glob"
	"code.gitea.io/gitea/modules/setting"
	"code.gitea.io/gitea/modules/test"

	"github.com/stretchr/testify/assert"
)

func TestRegisterForm_IsDomainAllowed_Empty(t *testing.T) {
	defer test.MockVariableValue(&setting.Service)()
	setting.Service.EmailDomainAllowList = nil
	form := RegisterForm{}
	assert.True(t, form.IsEmailDomainAllowed())
}

func TestRegisterForm_IsDomainAllowed_InvalidEmail(t *testing.T) {
	defer test.MockVariableValue(&setting.Service.EmailDomainAllowList, []glob.Glob{glob.MustCompile("gitea.io")})()

	tt := []struct {
		email string
	}{
		{"invalid-email"},
		{"gitea.io"},
	}

	for _, v := range tt {
		form := RegisterForm{Email: v.email}

		assert.False(t, form.IsEmailDomainAllowed())
	}
}

func TestRegisterForm_IsDomainAllowed_AllowedEmail(t *testing.T) {
	defer test.MockVariableValue(&setting.Service.EmailDomainAllowList, []glob.Glob{glob.MustCompile("gitea.io"), glob.MustCompile("*.allow")})()

	tt := []struct {
		email string
		valid bool
	}{
		{"security@gitea.io", true},
		{"security@gITea.io", true},
		{"invalid", false},
		{"seee@example.com", false},

		{"user@my.allow", true},
		{"user@my.allow1", false},
	}

	for _, v := range tt {
		form := RegisterForm{Email: v.email}

		assert.Equal(t, v.valid, form.IsEmailDomainAllowed())
	}
}

func TestRegisterForm_IsDomainAllowed_BlockedEmail(t *testing.T) {
	defer test.MockVariableValue(&setting.Service.EmailDomainBlockList, []glob.Glob{glob.MustCompile("gitea.io"), glob.MustCompile("*.block")})()

	tt := []struct {
		email string
		valid bool
	}{
		{"security@gitea.io", false},
		{"security@gitea.example", true},
		{"invalid", true},

		{"user@my.block", false},
		{"user@my.block1", true},
	}

	for _, v := range tt {
		form := RegisterForm{Email: v.email}

		assert.Equal(t, v.valid, form.IsEmailDomainAllowed())
	}
}

func TestDetectInvalidOAuth2ApplicationRedirectURI(t *testing.T) {
	defer test.MockVariableValue(&setting.OAuth2.CustomSchemes)()
	setting.OAuth2.CustomSchemes = []string{"my-app"}
	assertValid := func(t *testing.T, s string, valid bool) {
		ret := DetectInvalidOAuth2ApplicationRedirectURI([]string{s})
		if valid {
			assert.Empty(t, ret)
		} else {
			assert.Equal(t, s, ret)
		}
	}
	assertValid(t, "my-app:", true)
	assertValid(t, "my-app:/foo", true)
	assertValid(t, "http://foo", true)
	assertValid(t, "https://foo", true)

	assertValid(t, "my-app", false)
	assertValid(t, "ftp:", false)
	assertValid(t, "ftp://foo", false)
	assertValid(t, "https://[invalid", false)

	ret := DetectInvalidOAuth2ApplicationRedirectURI([]string{"my-app:", "http://foo", "https://foo"})
	assert.Empty(t, ret)
	ret = DetectInvalidOAuth2ApplicationRedirectURI([]string{"my-app:", "http://foo", "invalid", "https://foo"})
	assert.Equal(t, "invalid", ret)
}