google · google-oss-robot · Feb 28, 2021 · Feb 28, 2021
@@ -147,16 +147,14 @@ func ExerciseIDNotFound(t *testing.T, membership *database.Membership, h http.Ha
 	t.Run("id_not_found", func(t *testing.T) {
 		t.Parallel()
 
-		mux := mux.NewRouter()
-		mux.Handle("/{id}", h)
-
 		ctx := project.TestContext(t)
 		ctx = controller.WithSession(ctx, &sessions.Session{})
 		ctx = controller.WithMembership(ctx, membership)
 		ctx = controller.WithUser(ctx, membership.User)
 
-		w, r := BuildFormRequest(ctx, t, http.MethodGet, "/13940890", nil)
-		mux.ServeHTTP(w, r)
+		w, r := BuildFormRequest(ctx, t, http.MethodGet, "/", nil)
+		r = mux.SetURLVars(r, map[string]string{"id": "13940890"})
+		h.ServeHTTP(w, r)
 
 		if got, want := w.Code, http.StatusUnauthorized; got != want {
 			t.Errorf("Expected %d to be %d", got, want)

@@ -34,13 +34,7 @@ func TestHandleCreate(t *testing.T) {
 	t.Parallel()
 
 	ctx := project.TestContext(t)
-	harness := envstest.NewServer(t, testDatabaseInstance)
-
-	realm, user, session, err := harness.ProvisionAndLogin()
-	if err != nil {
-		t.Fatal(err)
-	}
-	ctx = controller.WithSession(ctx, session)
+	harness := envstest.NewServerConfig(t, testDatabaseInstance)
 
 	c := apikey.New(harness.Cacher, harness.Database, harness.Renderer)
 	handler := c.HandleCreate()
@@ -60,9 +54,10 @@ func TestHandleCreate(t *testing.T) {
 		handler := c.HandleCreate()
 
 		ctx := ctx
+		ctx = controller.WithSession(ctx, &sessions.Session{})
 		ctx = controller.WithMembership(ctx, &database.Membership{
-			Realm:       realm,
-			User:        user,
+			Realm:       &database.Realm{},
+			User:        &database.User{},
 			Permissions: rbac.APIKeyWrite,
 		})
 
@@ -81,9 +76,10 @@ func TestHandleCreate(t *testing.T) {
 		t.Parallel()
 
 		ctx := ctx
+		ctx = controller.WithSession(ctx, &sessions.Session{})
 		ctx = controller.WithMembership(ctx, &database.Membership{
-			Realm:       realm,
-			User:        user,
+			Realm:       &database.Realm{},
+			User:        &database.User{},
 			Permissions: rbac.APIKeyWrite,
 		})
 
@@ -103,13 +99,20 @@ func TestHandleCreate(t *testing.T) {
 	t.Run("success", func(t *testing.T) {
 		t.Parallel()
 
-		session := &sessions.Session{}
+		realm, err := harness.Database.FindRealm(1)
+		if err != nil {
+			t.Fatal(err)
+		}
+
+		session := &sessions.Session{
+			Values: make(map[interface{}]interface{}),
+		}
 
 		ctx := ctx
 		ctx = controller.WithSession(ctx, session)
 		ctx = controller.WithMembership(ctx, &database.Membership{
 			Realm:       realm,
-			User:        user,
+			User:        &database.User{},
 			Permissions: rbac.APIKeyWrite,
 		})
 

@@ -26,27 +26,14 @@ import (
 	"github.com/google/exposure-notifications-verification-server/pkg/database"
 	"github.com/google/exposure-notifications-verification-server/pkg/rbac"
 	"github.com/gorilla/mux"
+	"github.com/gorilla/sessions"
 )
 
 func TestHandleDisable(t *testing.T) {
 	t.Parallel()
 
 	ctx := project.TestContext(t)
-	harness := envstest.NewServer(t, testDatabaseInstance)
-
-	realm, user, session, err := harness.ProvisionAndLogin()
-	if err != nil {
-		t.Fatal(err)
-	}
-	ctx = controller.WithSession(ctx, session)
-
-	authApp := &database.AuthorizedApp{
-		RealmID: realm.ID,
-		Name:    "Appy",
-	}
-	if _, err := realm.CreateAuthorizedApp(harness.Database, authApp, database.SystemTest); err != nil {
-		t.Fatal(err)
-	}
+	harness := envstest.NewServerConfig(t, testDatabaseInstance)
 
 	c := apikey.New(harness.Cacher, harness.Database, harness.Renderer)
 	handler := c.HandleDisable()
@@ -58,22 +45,36 @@ func TestHandleDisable(t *testing.T) {
 		envstest.ExerciseMembershipMissing(t, handler)
 		envstest.ExercisePermissionMissing(t, handler)
 		envstest.ExerciseIDNotFound(t, &database.Membership{
-			Realm:       realm,
-			User:        user,
+			Realm:       &database.Realm{},
+			User:        &database.User{},
 			Permissions: rbac.APIKeyWrite,
 		}, handler)
 	})
 
 	t.Run("internal_error", func(t *testing.T) {
 		t.Parallel()
 
+		realm, err := harness.Database.FindRealm(1)
+		if err != nil {
+			t.Fatal(err)
+		}
+
+		authApp := &database.AuthorizedApp{
+			RealmID: realm.ID,
+			Name:    "Appy1",
+		}
+		if _, err := realm.CreateAuthorizedApp(harness.Database, authApp, database.SystemTest); err != nil {
+			t.Fatal(err)
+		}
+
 		c := apikey.New(harness.Cacher, harness.BadDatabase, harness.Renderer)
 		handler := c.HandleDisable()
 
 		ctx := ctx
+		ctx = controller.WithSession(ctx, &sessions.Session{})
 		ctx = controller.WithMembership(ctx, &database.Membership{
 			Realm:       realm,
-			User:        user,
+			User:        &database.User{},
 			Permissions: rbac.APIKeyWrite,
 		})
 
@@ -89,10 +90,24 @@ func TestHandleDisable(t *testing.T) {
 	t.Run("success", func(t *testing.T) {
 		t.Parallel()
 
+		realm, err := harness.Database.FindRealm(1)
+		if err != nil {
+			t.Fatal(err)
+		}
+
+		authApp := &database.AuthorizedApp{
+			RealmID: realm.ID,
+			Name:    "Appy2",
+		}
+		if _, err := realm.CreateAuthorizedApp(harness.Database, authApp, database.SystemTest); err != nil {
+			t.Fatal(err)
+		}
+
 		ctx := ctx
+		ctx = controller.WithSession(ctx, &sessions.Session{})
 		ctx = controller.WithMembership(ctx, &database.Membership{
 			Realm:       realm,
-			User:        user,
+			User:        &database.User{},
 			Permissions: rbac.APIKeyWrite,
 		})
 

@@ -27,32 +27,15 @@ import (
 	"github.com/google/exposure-notifications-verification-server/pkg/database"
 	"github.com/google/exposure-notifications-verification-server/pkg/rbac"
 	"github.com/gorilla/mux"
+	"github.com/gorilla/sessions"
 	"github.com/jinzhu/gorm"
 )
 
 func TestHandleEnable(t *testing.T) {
 	t.Parallel()
 
 	ctx := project.TestContext(t)
-	harness := envstest.NewServer(t, testDatabaseInstance)
-
-	realm, user, session, err := harness.ProvisionAndLogin()
-	if err != nil {
-		t.Fatal(err)
-	}
-	ctx = controller.WithSession(ctx, session)
-
-	now := time.Now().UTC().Add(-5 * time.Second)
-	authApp := &database.AuthorizedApp{
-		RealmID: realm.ID,
-		Name:    "Appy",
-		Model: gorm.Model{
-			DeletedAt: &now,
-		},
-	}
-	if _, err := realm.CreateAuthorizedApp(harness.Database, authApp, database.SystemTest); err != nil {
-		t.Fatal(err)
-	}
+	harness := envstest.NewServerConfig(t, testDatabaseInstance)
 
 	c := apikey.New(harness.Cacher, harness.Database, harness.Renderer)
 	handler := c.HandleEnable()
@@ -64,8 +47,8 @@ func TestHandleEnable(t *testing.T) {
 		envstest.ExerciseMembershipMissing(t, handler)
 		envstest.ExercisePermissionMissing(t, handler)
 		envstest.ExerciseIDNotFound(t, &database.Membership{
-			Realm:       realm,
-			User:        user,
+			Realm:       &database.Realm{},
+			User:        &database.User{},
 			Permissions: rbac.APIKeyWrite,
 		}, handler)
 	})
@@ -76,10 +59,28 @@ func TestHandleEnable(t *testing.T) {
 		c := apikey.New(harness.Cacher, harness.BadDatabase, harness.Renderer)
 		handler := c.HandleEnable()
 
+		realm, err := harness.Database.FindRealm(1)
+		if err != nil {
+			t.Fatal(err)
+		}
+
+		now := time.Now().UTC().Add(-5 * time.Second)
+		authApp := &database.AuthorizedApp{
+			RealmID: realm.ID,
+			Name:    "Appy1",
+			Model: gorm.Model{
+				DeletedAt: &now,
+			},
+		}
+		if _, err := realm.CreateAuthorizedApp(harness.Database, authApp, database.SystemTest); err != nil {
+			t.Fatal(err)
+		}
+
 		ctx := ctx
+		ctx = controller.WithSession(ctx, &sessions.Session{})
 		ctx = controller.WithMembership(ctx, &database.Membership{
 			Realm:       realm,
-			User:        user,
+			User:        &database.User{},
 			Permissions: rbac.APIKeyWrite,
 		})
 
@@ -95,10 +96,28 @@ func TestHandleEnable(t *testing.T) {
 	t.Run("success", func(t *testing.T) {
 		t.Parallel()
 
+		realm, err := harness.Database.FindRealm(1)
+		if err != nil {
+			t.Fatal(err)
+		}
+
+		now := time.Now().UTC().Add(-5 * time.Second)
+		authApp := &database.AuthorizedApp{
+			RealmID: realm.ID,
+			Name:    "Appy2",
+			Model: gorm.Model{
+				DeletedAt: &now,
+			},
+		}
+		if _, err := realm.CreateAuthorizedApp(harness.Database, authApp, database.SystemTest); err != nil {
+			t.Fatal(err)
+		}
+
 		ctx := ctx
+		ctx = controller.WithSession(ctx, &sessions.Session{})
 		ctx = controller.WithMembership(ctx, &database.Membership{
 			Realm:       realm,
-			User:        user,
+			User:        &database.User{},
 			Permissions: rbac.APIKeyWrite,
 		})
 

@@ -25,27 +25,14 @@ import (
 	"github.com/google/exposure-notifications-verification-server/pkg/controller/middleware"
 	"github.com/google/exposure-notifications-verification-server/pkg/database"
 	"github.com/google/exposure-notifications-verification-server/pkg/rbac"
+	"github.com/gorilla/sessions"
 )
 
 func TestHandleIndex(t *testing.T) {
 	t.Parallel()
 
 	ctx := project.TestContext(t)
-	harness := envstest.NewServer(t, testDatabaseInstance)
-
-	realm, user, session, err := harness.ProvisionAndLogin()
-	if err != nil {
-		t.Fatal(err)
-	}
-	ctx = controller.WithSession(ctx, session)
-
-	authApp := &database.AuthorizedApp{
-		RealmID: realm.ID,
-		Name:    "Appy",
-	}
-	if _, err := realm.CreateAuthorizedApp(harness.Database, authApp, database.SystemTest); err != nil {
-		t.Fatal(err)
-	}
+	harness := envstest.NewServerConfig(t, testDatabaseInstance)
 
 	c := apikey.New(harness.Cacher, harness.Database, harness.Renderer)
 	handler := middleware.InjectCurrentPath()(c.HandleIndex())
@@ -56,8 +43,8 @@ func TestHandleIndex(t *testing.T) {
 		envstest.ExerciseMembershipMissing(t, handler)
 		envstest.ExercisePermissionMissing(t, handler)
 		envstest.ExerciseBadPagination(t, &database.Membership{
-			Realm:       realm,
-			User:        user,
+			Realm:       &database.Realm{},
+			User:        &database.User{},
 			Permissions: rbac.APIKeyRead,
 		}, handler)
 	})
@@ -69,9 +56,10 @@ func TestHandleIndex(t *testing.T) {
 		handler := middleware.InjectCurrentPath()(c.HandleIndex())
 
 		ctx := ctx
+		ctx = controller.WithSession(ctx, &sessions.Session{})
 		ctx = controller.WithMembership(ctx, &database.Membership{
-			Realm:       realm,
-			User:        user,
+			Realm:       &database.Realm{},
+			User:        &database.User{},
 			Permissions: rbac.APIKeyRead,
 		})
 
@@ -86,10 +74,24 @@ func TestHandleIndex(t *testing.T) {
 	t.Run("success", func(t *testing.T) {
 		t.Parallel()
 
+		realm, err := harness.Database.FindRealm(1)
+		if err != nil {
+			t.Fatal(err)
+		}
+
+		authApp := &database.AuthorizedApp{
+			RealmID: realm.ID,
+			Name:    "Appy",
+		}
+		if _, err := realm.CreateAuthorizedApp(harness.Database, authApp, database.SystemTest); err != nil {
+			t.Fatal(err)
+		}
+
 		ctx := ctx
+		ctx = controller.WithSession(ctx, &sessions.Session{})
 		ctx = controller.WithMembership(ctx, &database.Membership{
 			Realm:       realm,
-			User:        user,
+			User:        &database.User{},
 			Permissions: rbac.APIKeyRead,
 		})