githubhook_test.go

package githubhook

import (
	"crypto/hmac"
	"crypto/sha256"
	"encoding/hex"
	"fmt"
	"net/http"
	"strings"
	"testing"
)

const testSecret = "foobar"

func expectErrorMessage(t *testing.T, msg string, err error) {
	if err == nil || err.Error() != msg {
		t.Error(fmt.Sprintf("Expected '%s', got %s", msg, err))
	}
}

func expectNewError(t *testing.T, msg string, r *http.Request) {
	_, err := New(r)
	expectErrorMessage(t, msg, err)
}

func expectParseError(t *testing.T, msg string, r *http.Request) {
	_, err := Parse([]byte(testSecret), r)
	expectErrorMessage(t, msg, err)
}

func signature(body string) string {
	dst := make([]byte, sha256.Size*2)
	computed := hmac.New(sha256.New, []byte(testSecret))
	computed.Write([]byte(body))
	hex.Encode(dst, computed.Sum(nil))
	return signaturePrefix + string(dst)
}

func TestNonPost(t *testing.T) {
	r, _ := http.NewRequest("GET", "/path", nil)
	expectNewError(t, "Unknown method!", r)
}

func TestMissingSignature(t *testing.T) {
	r, _ := http.NewRequest("POST", "/path", nil)
	expectNewError(t, "No signature!", r)
}

func TestMissingEvent(t *testing.T) {
	r, _ := http.NewRequest("POST", "/path", nil)
	r.Header.Add("x-hub-signature-256", "bogus signature")
	expectNewError(t, "No event!", r)
}

func TestMissingEventId(t *testing.T) {
	r, _ := http.NewRequest("POST", "/path", nil)
	r.Header.Add("x-hub-signature-256", "bogus signature")
	r.Header.Add("x-github-event", "bogus event")
	expectNewError(t, "No event Id!", r)
}

func TestInvalidSignature(t *testing.T) {
	r, _ := http.NewRequest("POST", "/path", strings.NewReader("..."))
	r.Header.Add("x-hub-signature-256", "bogus signature")
	r.Header.Add("x-github-event", "bogus event")
	r.Header.Add("x-github-delivery", "bogus id")
	expectParseError(t, "Invalid signature", r)
}

func TestValidSignature(t *testing.T) {

	body := "{}"

	r, _ := http.NewRequest("POST", "/path", strings.NewReader(body))
	r.Header.Add("x-hub-signature-256", signature(body))
	r.Header.Add("x-github-event", "bogus event")
	r.Header.Add("x-github-delivery", "bogus id")

	if _, err := Parse([]byte(testSecret), r); err != nil {
		t.Error(fmt.Sprintf("Unexpected error '%s'", err))
	}
}