Unitテスト追加

Author: ken109

go.mod

@@ -4,5 +4,6 @@ go 1.15
 
 require (
 	github.com/gin-gonic/gin v1.6.3
+	github.com/go-playground/assert/v2 v2.0.1
 	github.com/lestrrat-go/jwx v1.1.0
 )

jwt.go

@@ -117,6 +117,11 @@ func GetToken(claims map[string]interface{}) ([]byte, error) {
 }
 
 func Verify(c *gin.Context) {
+	if len(c.GetHeader("Authorization")) <= 7 {
+		c.AbortWithStatus(http.StatusUnauthorized)
+		return
+	}
+
 	pubKey, err := jwk.New(options.privateKey.PublicKey)
 	if err != nil {
 		c.AbortWithStatus(http.StatusInternalServerError)

jwt_test.go

@@ -0,0 +1,66 @@
+package jwt
+
+import (
+	"github.com/gin-gonic/gin"
+	"github.com/go-playground/assert/v2"
+	"io/ioutil"
+	"net/http"
+	"net/http/httptest"
+	"testing"
+)
+
+func TestVerifyEmptyToken(t *testing.T) {
+	res := httptest.NewRecorder()
+	c, _ := gin.CreateTestContext(res)
+
+	c.Request, _ = http.NewRequest("GET", "/", nil)
+
+	Verify(c)
+
+	assert.Equal(t, res.Code, http.StatusUnauthorized)
+}
+
+func TestVerifyInvalidToken(t *testing.T) {
+	pemBytes, err := ioutil.ReadFile("private.key")
+	if err != nil {
+		panic(err)
+	}
+
+	if err := SetUp(pemBytes, Option{}); err != nil {
+		panic(err)
+	}
+
+	res := httptest.NewRecorder()
+	c, _ := gin.CreateTestContext(res)
+
+	c.Request, _ = http.NewRequest("GET", "/", nil)
+	c.Request.Header.Add("Authorization", "test")
+
+	Verify(c)
+
+	assert.Equal(t, res.Code, http.StatusUnauthorized)
+}
+
+func TestVerifyValidToken(t *testing.T) {
+	pemBytes, err := ioutil.ReadFile("private.key")
+	if err != nil {
+		panic(err)
+	}
+
+	if err := SetUp(pemBytes, Option{}); err != nil {
+		panic(err)
+	}
+
+	res := httptest.NewRecorder()
+	c, _ := gin.CreateTestContext(res)
+
+	c.Request, _ = http.NewRequest("GET", "/", nil)
+
+	token, err := GetToken(map[string]interface{}{})
+
+	c.Request.Header.Add("Authorization", "bearer "+string(token))
+
+	Verify(c)
+
+	assert.Equal(t, res.Code, http.StatusOK)
+}

private.key

@@ -0,0 +1,27 @@
+-----BEGIN RSA PRIVATE KEY-----
+MIIEpQIBAAKCAQEAwFs8yNuJ9TES826A76yvDn+vOTdMK2gntalZ9qYiCYvTJvs2
+z08nMWsdqpBsMFBRiec5dze60qHDSXTtIhIAXQT/1TgdbqAFVbF60jrm1iUHVUaJ
+D9CkEBxoXudaIMmeu5//mK89oJHj8KYTKtk5NhtgDLy5IT8G6g+IgfPYKMPb2v+q
+wtFLUqYddHQnxvGm22Gavfx4OCwRgEOk3IieI11DYzuSF4qNhi0GKNk/bXvOnDgy
+lZH6UH/XJ9R2B7O02gocISSKsf/Jo1q/FkLf4ach4UZaJhHq61O5hNzuhu2b1Win
+MYDqeVv25K9RCt2xVb/0WV7eu5XdhQrrFNueQwIDAQABAoIBAQC/F2RxXbfVv2TG
+NNceQvy9eJdITej7jkM0swLOhwh1V1Ty+snedRHIhFM6aLMx4/i8+Nob119fdJge
+12vkVuHJhvfoiBClH49tLB2J0D4WKz73tlTfQzRZVP9SmJ7ux51LY411z1F3vLcn
+ELUl8hpl6BgpTyrTHlvuFnRUNTxecUraD2g4SZWDgQyIpITkirgfs1Xr0lVNMumu
+mNsGZ2JV2rKXoqqAXaG6tPH5cEiA6hlS+f3awNFFImP8NKnShOI25rGyoJoFA0rt
+3aHwvpp9RnTcctDsCWF0Vnlbtpe9R++4iqblcEsB/DWmZvX3osW5llWpV4ory7No
+k/fhDMwRAoGBAOqIkH5vpJtZmx7sEMb7Ih0J7ARvpE0Avk6UvC+VOYNiHX7O2X/8
+VuwyaLlUmXLNDILMzTwM9A0rOa5tSuRgc/D2HFLg18I9SRvrM2a2hqoVmXdVWTYm
++UgXBwBTGPU3poLrwgcKPf+nWfP3RIT6YvhIaDD9luBktaHyJwMT0BhdAoGBANH2
+aFaQbcV+Ge2UODK7YFJX2+B/zv+wyWPyfp7Pz/p7zhcwz4/hbnYMvFC8bYd/HrxB
+NsoRLqQyyzUWs7pwkzlXbOAfZTbYhQJZJTL2hO+4d9K4gFXeAsKX72a/F2f/UyAd
+RPSpHdgaSjSOKjEtuRp4nePmxD6HW8vrEKKtlKcfAoGBAIBE7lnoL2uzZy5TR528
+Dd055vZKJN7kcDDEEeQoRgtAJweKk9P2q4eEzlfGGCJ8WMJUxk54eyWUpXhrV9Ft
+mxuHTthZFkeqgwic60DaxO3S4Fsut5rxV9cAmRipWfYLWKszy6tUA7KF0aGnc7cS
+xfwqhal9l/3jtp76tDFvrZkVAoGBAK5qzZ4reKT47j0IRe8O7SM6TTOfuKt7hrD6
+fukapSDlu/xT1fkmQgba6Y0AGtTWawfj/Mm7oE1SzLAbXc5hOkwGLjG4ovH+x+99
+coN1elVRnmh0UFgEh7JzWLK3x4/i8IDbD69W1a3xmPczqiUUYJJ25GKwDxIKi91I
+NpeNLtHtAoGAMWxCkhLorGFx1ANsxFfqE58oyXqvQTgFzxCIEm49fZu3AEQJPwpM
+yAnHS7/ZM7nQbl6RIXg0jcPaA+d55Bop3L/8MfzOboOUXx3s1G4g3hl3TpHCVx1Q
+SYmGiLnSIP+KUsPglcGTtKkJYIZvhkVsjIe0rJBU0Rry8Mo7HbwWABk=
+-----END RSA PRIVATE KEY-----