467f7b1585
This adds standard OAuth2 client credentials and bearer token support as well as scope-based authorization checks for REST API clients. Note that this initial implementation should not be used in production and that the access token limit has not been implemented yet. Signed-off-by: Michael Mayer <michael@photoprism.app>
22 lines
426 B
Go
22 lines
426 B
Go
package clean
|
|
|
|
import (
|
|
"testing"
|
|
|
|
"github.com/stretchr/testify/assert"
|
|
)
|
|
|
|
func TestScope(t *testing.T) {
|
|
t.Run("Empty", func(t *testing.T) {
|
|
q := Scope("")
|
|
assert.Equal(t, "", q)
|
|
})
|
|
t.Run("Sanitized", func(t *testing.T) {
|
|
q := Scope(" foo:BAR webdav openid metrics !")
|
|
assert.Equal(t, "foo:bar metrics openid webdav", q)
|
|
})
|
|
t.Run("All", func(t *testing.T) {
|
|
q := Scope("*")
|
|
assert.Equal(t, "*", q)
|
|
})
|
|
}
|