Added unit tests

Ivan-Shaml · Ivan-Shaml · commit 5f54e39e091b · 2024-01-14T01:06:45.000+02:00
diff --git a/src/main/java/com/faforever/api/user/SteamService.java b/src/main/java/com/faforever/api/user/SteamService.java
@@ -93,23 +93,31 @@ void validateSteamRedirect(HttpServletRequest request) {
   }
 
   void handleInvalidOpenIdRedirect(final HttpServletRequest request, final String openIdResponseBody) {
-    final String steamId = parseSteamIdFromLoginRedirect(request);
+    boolean containsIdentityParam = request.getParameterMap().containsKey("openid.identity");
+    final String steamId;
+
+    if (containsIdentityParam)
+    {
+       steamId = parseSteamIdFromLoginRedirect(request);
+    } else {
+      log.warn("Steam redirect could not be validated! The request does not contain 'openid.identity' parameter. Original OpenID response:\n {}", openIdResponseBody);
+      throw ApiException.of(ErrorCode.STEAM_LOGIN_VALIDATION_FAILED);
+    }
 
     if (StringUtils.isNotBlank(steamId)) {
       accountLinkRepository.findOneByServiceIdAndServiceType(steamId,
         LinkedServiceType.STEAM).map(AccountLink::getUser).ifPresentOrElse(u ->
           log.warn(
-              "Steam redirect could not be validated for user with id: ''{}'' and login: ''{}''. Original OpenId response:\n{}",
+              "Steam redirect could not be validated for user with id: ''{}'' and login: ''{}''. Original OpenID response:\n {}",
               u.getId(), u.getLogin(), openIdResponseBody),
         () ->
           log.warn(
-            "Steam redirect could not be validated! The steam id ''{}'' does not match any account. Original OpenId response:\n{}",
+            "Steam redirect could not be validated! The steam id ''{}'' does not match any account. Original OpenID response:\n {}",
             StringUtils.deleteWhitespace(steamId).replace("'", ""), // prevent potential log poisoning attack
             openIdResponseBody)
       );
-    }
-    else {
-      log.warn("Steam redirect could not be validated! The steamId from the OpenId redirect is blank. Original OpenId response:\n{}", openIdResponseBody);
+    } else {
+      log.warn("Steam redirect could not be validated! The steamId from the OpenId redirect is blank. Original OpenID response:\n {}", openIdResponseBody);
     }
 
     throw ApiException.of(ErrorCode.STEAM_LOGIN_VALIDATION_FAILED);
diff --git a/src/test/java/com/faforever/api/user/SteamServiceTest.java b/src/test/java/com/faforever/api/user/SteamServiceTest.java
@@ -0,0 +1,94 @@
+package com.faforever.api.user;
+
+import static org.junit.jupiter.api.Assertions.*;
+import static org.mockito.ArgumentMatchers.any;
+import static org.mockito.ArgumentMatchers.anyString;
+import static org.mockito.Mockito.when;
+
+import com.faforever.api.data.domain.AccountLink;
+import com.faforever.api.data.domain.LinkedServiceType;
+import com.faforever.api.data.domain.User;
+import com.faforever.api.error.ApiException;
+import com.faforever.api.error.ErrorCode;
+import jakarta.servlet.http.HttpServletRequest;
+import java.util.Collections;
+import java.util.Map;
+import java.util.Optional;
+import org.junit.jupiter.api.Test;
+import org.junit.jupiter.api.extension.ExtendWith;
+import org.mockito.InjectMocks;
+import org.mockito.Mock;
+import org.mockito.Mockito;
+import org.mockito.junit.jupiter.MockitoExtension;
+
+@ExtendWith(MockitoExtension.class)
+class SteamServiceTest {
+
+  private static final String IDENTITY_NAME_PARAM = "openid.identity";
+  private static final String DUMMY_URL = "valid.url.domain/login/123";
+  private static final String DUMMY_RESPONSE = "dummy response";
+  @Mock
+  private AccountLinkRepository accountLinkRepositoryMock;
+  @InjectMocks
+  private SteamService beanUnderTest;
+
+  @Test
+  void testHandleInvalidOpenIdRedirect() {
+    HttpServletRequest requestMock = Mockito.mock(HttpServletRequest.class);
+    when(requestMock.getParameterMap())
+        .thenReturn(Map.of(IDENTITY_NAME_PARAM, new String[]{DUMMY_URL}));
+    when(requestMock.getParameter(IDENTITY_NAME_PARAM)).thenReturn(DUMMY_URL);
+
+    ApiException thrownException = assertThrows(ApiException.class,
+        () -> beanUnderTest.handleInvalidOpenIdRedirect(requestMock, DUMMY_RESPONSE));
+    assertEquals(ErrorCode.STEAM_LOGIN_VALIDATION_FAILED,
+        thrownException.getErrors()[0].getErrorCode());
+  }
+
+  @Test
+  void testHandleInvalidOpenIdRedirectBlankIdentityParam() {
+    HttpServletRequest requestMock = Mockito.mock(HttpServletRequest.class);
+    final String blankDummyUrl = "";
+    when(requestMock.getParameterMap())
+        .thenReturn(Map.of(IDENTITY_NAME_PARAM, new String[]{blankDummyUrl}));
+    when(requestMock.getParameter(IDENTITY_NAME_PARAM)).thenReturn(blankDummyUrl);
+
+    ApiException thrownException = assertThrows(ApiException.class,
+        () -> beanUnderTest.handleInvalidOpenIdRedirect(requestMock, DUMMY_RESPONSE));
+    assertEquals(ErrorCode.STEAM_LOGIN_VALIDATION_FAILED,
+        thrownException.getErrors()[0].getErrorCode());
+  }
+
+  @Test
+  void testHandleInvalidOpenIdRedirectNoIdentityInRequest() {
+    HttpServletRequest requestMock = Mockito.mock(HttpServletRequest.class);
+    when(requestMock.getParameterMap()).thenReturn(Collections.emptyMap());
+
+    ApiException thrownException = assertThrows(ApiException.class,
+        () -> beanUnderTest.handleInvalidOpenIdRedirect(requestMock, DUMMY_RESPONSE));
+    assertEquals(ErrorCode.STEAM_LOGIN_VALIDATION_FAILED,
+        thrownException.getErrors()[0].getErrorCode());
+  }
+
+  @Test
+  void testHandleInvalidOpenIdRedirectLinkedAccountExists() {
+    HttpServletRequest requestMock = Mockito.mock(HttpServletRequest.class);
+    User userMock = Mockito.mock(User.class);
+    when(userMock.getId()).thenReturn(1);
+    when(userMock.getLogin()).thenReturn("dummyLogin");
+    AccountLink accountLinkMock = Mockito.mock(AccountLink.class);
+    when(accountLinkMock.getUser()).thenReturn(userMock);
+    when(requestMock.getParameterMap())
+        .thenReturn(Map.of(IDENTITY_NAME_PARAM, new String[]{DUMMY_URL}));
+    when(requestMock.getParameter(IDENTITY_NAME_PARAM)).thenReturn(DUMMY_URL);
+    when(accountLinkRepositoryMock.findOneByServiceIdAndServiceType(anyString(),
+        any(LinkedServiceType.class))).thenReturn(
+        Optional.of(accountLinkMock));
+
+    ApiException thrownException = assertThrows(ApiException.class,
+        () -> beanUnderTest.handleInvalidOpenIdRedirect(requestMock, DUMMY_RESPONSE));
+    assertEquals(ErrorCode.STEAM_LOGIN_VALIDATION_FAILED,
+        thrownException.getErrors()[0].getErrorCode());
+  }
+
+}
