-
Notifications
You must be signed in to change notification settings - Fork 158
Expand file tree
/
Copy pathauth_with_oauth_okta_authorization_code_test.go
More file actions
executable file
·105 lines (87 loc) · 3.47 KB
/
auth_with_oauth_okta_authorization_code_test.go
File metadata and controls
executable file
·105 lines (87 loc) · 3.47 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
package gosnowflake
import (
"fmt"
"sync"
"testing"
"time"
)
func TestOauthOktaAuthorizationCodeSuccessful(t *testing.T) {
cfg := setupOauthOktaAuthorizationCodeTest(t)
var wg sync.WaitGroup
wg.Add(2)
go func() {
defer wg.Done()
provideExternalBrowserCredentials(t, externalBrowserType.OauthOktaSuccess, cfg.User, cfg.Password)
}()
go func() {
defer wg.Done()
err := verifyConnectionToSnowflakeAuthTests(t, cfg)
assertNilE(t, err, fmt.Sprintf("Connection failed due to %v", err))
}()
wg.Wait()
}
func TestOauthOktaAuthorizationCodeMismatchedUsername(t *testing.T) {
cfg := setupOauthOktaAuthorizationCodeTest(t)
user := cfg.User
var wg sync.WaitGroup
wg.Add(2)
go func() {
defer wg.Done()
provideExternalBrowserCredentials(t, externalBrowserType.OauthOktaSuccess, user, cfg.Password)
}()
go func() {
defer wg.Done()
cfg.User = "fakeUser@snowflake.com"
err := verifyConnectionToSnowflakeAuthTests(t, cfg)
var snowflakeErr *SnowflakeError
assertErrorsAsF(t, err, &snowflakeErr)
assertEqualE(t, snowflakeErr.Number, 390309, fmt.Sprintf("Expected 390309, but got %v", snowflakeErr.Number))
}()
wg.Wait()
}
func TestOauthOktaAuthorizationCodeOktaTimeout(t *testing.T) {
cfg := setupOauthOktaAuthorizationCodeTest(t)
cfg.ExternalBrowserTimeout = time.Duration(1) * time.Second
err := verifyConnectionToSnowflakeAuthTests(t, cfg)
assertNotNilF(t, err, "should failed due to timeout")
assertEqualE(t, err.Error(), "authentication via browser timed out", fmt.Sprintf("Expecteed timeout, but got %v", err))
}
func TestOauthOktaAuthorizationCodeUsingTokenCache(t *testing.T) {
cfg := setupOauthOktaAuthorizationCodeTest(t)
cfg.ClientStoreTemporaryCredential = 1
var wg sync.WaitGroup
wg.Add(2)
go func() {
defer wg.Done()
provideExternalBrowserCredentials(t, externalBrowserType.OauthOktaSuccess, cfg.User, cfg.Password)
}()
go func() {
defer wg.Done()
err := verifyConnectionToSnowflakeAuthTests(t, cfg)
assertNilE(t, err, fmt.Sprintf("Connection failed due to %v", err))
}()
wg.Wait()
cleanupBrowserProcesses(t)
cfg.ExternalBrowserTimeout = time.Duration(1) * time.Second
err := verifyConnectionToSnowflakeAuthTests(t, cfg)
assertNilE(t, err, fmt.Sprintf("Connection failed due to %v", err))
}
func setupOauthOktaAuthorizationCodeTest(t *testing.T) *Config {
skipAuthTests(t, "Skipping Okta Authorization Code tests")
cfg, err := getAuthTestsConfig(t, AuthTypeOAuthAuthorizationCode)
assertNilF(t, err, fmt.Sprintf("failed to get config: %v", err))
cleanupBrowserProcesses(t)
cfg.OauthClientID, err = GetFromEnv("SNOWFLAKE_AUTH_TEST_EXTERNAL_OAUTH_OKTA_CLIENT_ID", true)
assertNilF(t, err, fmt.Sprintf("failed to setup config: %v", err))
cfg.OauthClientSecret, err = GetFromEnv("SNOWFLAKE_AUTH_TEST_EXTERNAL_OAUTH_OKTA_CLIENT_SECRET", true)
assertNilF(t, err, fmt.Sprintf("failed to setup config: %v", err))
cfg.OauthRedirectURI, err = GetFromEnv("SNOWFLAKE_AUTH_TEST_EXTERNAL_OAUTH_OKTA_REDIRECT_URI", true)
assertNilF(t, err, fmt.Sprintf("failed to setup config: %v", err))
cfg.OauthAuthorizationURL, err = GetFromEnv("SNOWFLAKE_AUTH_TEST_EXTERNAL_OAUTH_OKTA_AUTH_URL", true)
assertNilF(t, err, fmt.Sprintf("failed to setup config: %v", err))
cfg.OauthTokenRequestURL, err = GetFromEnv("SNOWFLAKE_AUTH_TEST_EXTERNAL_OAUTH_OKTA_TOKEN", true)
assertNilF(t, err, fmt.Sprintf("failed to setup config: %v", err))
cfg.Role, err = GetFromEnv("SNOWFLAKE_AUTH_TEST_ROLE", true)
assertNilF(t, err, fmt.Sprintf("failed to setup config: %v", err))
return cfg
}