parent
22defd8019
commit
cd946c71d5
@ -0,0 +1,57 @@ |
||||
#-- copyright |
||||
# OpenProject is an open source project management software. |
||||
# Copyright (C) 2012-2022 the OpenProject GmbH |
||||
# |
||||
# This program is free software; you can redistribute it and/or |
||||
# modify it under the terms of the GNU General Public License version 3. |
||||
# |
||||
# OpenProject is a fork of ChiliProject, which is a fork of Redmine. The copyright follows: |
||||
# Copyright (C) 2006-2013 Jean-Philippe Lang |
||||
# Copyright (C) 2010-2013 the ChiliProject Team |
||||
# |
||||
# This program is free software; you can redistribute it and/or |
||||
# modify it under the terms of the GNU General Public License |
||||
# as published by the Free Software Foundation; either version 2 |
||||
# of the License, or (at your option) any later version. |
||||
# |
||||
# This program is distributed in the hope that it will be useful, |
||||
# but WITHOUT ANY WARRANTY; without even the implied warranty of |
||||
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
||||
# GNU General Public License for more details. |
||||
# |
||||
# You should have received a copy of the GNU General Public License |
||||
# along with this program; if not, write to the Free Software |
||||
# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. |
||||
# |
||||
# See COPYRIGHT and LICENSE files for more details. |
||||
#++ |
||||
|
||||
require "rack/oauth2" |
||||
require "uri/http" |
||||
|
||||
module OAuthClients |
||||
class RedirectUriFromStateService |
||||
def initialize(state:, cookies:) |
||||
@state = state |
||||
@cookies = cookies |
||||
end |
||||
|
||||
def call |
||||
redirect_uri = oauth_state_cookie |
||||
|
||||
if redirect_uri.present? && ::API::V3::Utilities::PathHelper::ApiV3Path::same_origin?(redirect_uri) |
||||
ServiceResult.new(success: true, result: redirect_uri) |
||||
else |
||||
ServiceResult.new(success: false) |
||||
end |
||||
end |
||||
|
||||
private |
||||
|
||||
def oauth_state_cookie |
||||
return nil if @state.blank? |
||||
|
||||
@cookies["oauth_state_#{@state}"] |
||||
end |
||||
end |
||||
end |
@ -0,0 +1,73 @@ |
||||
#-- copyright |
||||
# OpenProject is an open source project management software. |
||||
# Copyright (C) 2012-2022 the OpenProject GmbH |
||||
# |
||||
# This program is free software; you can redistribute it and/or |
||||
# modify it under the terms of the GNU General Public License version 3. |
||||
# |
||||
# OpenProject is a fork of ChiliProject, which is a fork of Redmine. The copyright follows: |
||||
# Copyright (C) 2006-2013 Jean-Philippe Lang |
||||
# Copyright (C) 2010-2013 the ChiliProject Team |
||||
# |
||||
# This program is free software; you can redistribute it and/or |
||||
# modify it under the terms of the GNU General Public License |
||||
# as published by the Free Software Foundation; either version 2 |
||||
# of the License, or (at your option) any later version. |
||||
# |
||||
# This program is distributed in the hope that it will be useful, |
||||
# but WITHOUT ANY WARRANTY; without even the implied warranty of |
||||
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
||||
# GNU General Public License for more details. |
||||
# |
||||
# You should have received a copy of the GNU General Public License |
||||
# along with this program; if not, write to the Free Software |
||||
# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. |
||||
# |
||||
# See COPYRIGHT and LICENSE files for more details. |
||||
#++ |
||||
|
||||
require 'spec_helper' |
||||
require 'webmock/rspec' |
||||
|
||||
describe ::OAuthClients::RedirectUriFromStateService, type: :model do |
||||
let(:state) { 'asdf123425' } |
||||
let(:redirect_uri) { File.join(::API::V3::Utilities::PathHelper::ApiV3Path::root_url, 'foo/bar') } |
||||
let(:cookies) { { "oauth_state_#{state}": redirect_uri }.with_indifferent_access } |
||||
let(:instance) { described_class.new(state:, cookies:) } |
||||
|
||||
describe '#call' do |
||||
subject { instance.call } |
||||
|
||||
shared_examples 'failed service result' do |
||||
it 'return a failed service result' do |
||||
expect(subject).to be_failure |
||||
end |
||||
end |
||||
|
||||
context 'when cookie found' do |
||||
context 'when redirect_uri has same origin' do |
||||
it 'returns the redirect URL value from the cookie' do |
||||
expect(subject).to be_success |
||||
end |
||||
end |
||||
|
||||
context 'when redirect_uri does not share same origin' do |
||||
let(:redirect_uri) { 'https://some-other-origin.com/bla' } |
||||
|
||||
it_behaves_like 'failed service result' |
||||
end |
||||
end |
||||
|
||||
context 'when no cookie present' do |
||||
let(:cookies) { {} } |
||||
|
||||
it_behaves_like 'failed service result' |
||||
end |
||||
|
||||
context 'when no state present' do |
||||
let(:state) { nil } |
||||
|
||||
it_behaves_like 'failed service result' |
||||
end |
||||
end |
||||
end |
Loading…
Reference in new issue