| // Copyright 2013 The Chromium Authors. All rights reserved. |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| #include "base/run_loop.h" |
| #include "chrome/browser/signin/oauth2_token_service.h" |
| #include "chrome/browser/signin/oauth2_token_service_test_util.h" |
| #include "chrome/browser/signin/profile_oauth2_token_service.h" |
| #include "chrome/browser/signin/profile_oauth2_token_service_factory.h" |
| #include "chrome/browser/signin/token_service_unittest.h" |
| #include "content/public/browser/browser_thread.h" |
| #include "google_apis/gaia/gaia_constants.h" |
| #include "net/http/http_status_code.h" |
| #include "net/url_request/test_url_fetcher_factory.h" |
| #include "testing/gtest/include/gtest/gtest.h" |
| |
| using content::BrowserThread; |
| |
| class ProfileOAuth2TokenServiceTest : public TokenServiceTestHarness, |
| public OAuth2TokenService::Observer { |
| public: |
| ProfileOAuth2TokenServiceTest() |
| : token_available_count_(0), |
| token_revoked_count_(0), |
| tokens_loaded_count_(0), |
| tokens_cleared_count_(0) { |
| } |
| |
| virtual void SetUp() OVERRIDE { |
| TokenServiceTestHarness::SetUp(); |
| UpdateCredentialsOnService(); |
| oauth2_service_ = ProfileOAuth2TokenServiceFactory::GetForProfile( |
| profile()); |
| |
| oauth2_service_->AddObserver(this); |
| } |
| |
| virtual void TearDown() OVERRIDE { |
| oauth2_service_->RemoveObserver(this); |
| TokenServiceTestHarness::TearDown(); |
| } |
| |
| // OAuth2TokenService::Observer implementation. |
| virtual void OnRefreshTokenAvailable(const std::string& account_id) OVERRIDE { |
| ++token_available_count_; |
| } |
| virtual void OnRefreshTokenRevoked( |
| const std::string& account_id, |
| const GoogleServiceAuthError& error) OVERRIDE { |
| ++token_revoked_count_; |
| } |
| virtual void OnRefreshTokensLoaded() OVERRIDE { |
| ++tokens_loaded_count_; |
| } |
| virtual void OnRefreshTokensCleared() OVERRIDE { |
| ++tokens_cleared_count_; |
| } |
| |
| void ResetObserverCounts() { |
| token_available_count_ = 0; |
| token_revoked_count_ = 0; |
| tokens_loaded_count_ = 0; |
| tokens_cleared_count_ = 0; |
| } |
| |
| void ExpectNoNotifications() { |
| EXPECT_EQ(0, token_available_count_); |
| EXPECT_EQ(0, token_revoked_count_); |
| EXPECT_EQ(0, tokens_loaded_count_); |
| EXPECT_EQ(0, tokens_cleared_count_); |
| ResetObserverCounts(); |
| } |
| |
| void ExpectOneTokenAvailableNotification() { |
| EXPECT_EQ(1, token_available_count_); |
| EXPECT_EQ(0, token_revoked_count_); |
| EXPECT_EQ(0, tokens_loaded_count_); |
| EXPECT_EQ(0, tokens_cleared_count_); |
| ResetObserverCounts(); |
| } |
| |
| void ExpectOneTokenRevokedNotification() { |
| EXPECT_EQ(0, token_available_count_); |
| EXPECT_EQ(1, token_revoked_count_); |
| EXPECT_EQ(0, tokens_loaded_count_); |
| EXPECT_EQ(0, tokens_cleared_count_); |
| ResetObserverCounts(); |
| } |
| |
| void ExpectOneTokensLoadedNotification() { |
| EXPECT_EQ(0, token_available_count_); |
| EXPECT_EQ(0, token_revoked_count_); |
| EXPECT_EQ(1, tokens_loaded_count_); |
| EXPECT_EQ(0, tokens_cleared_count_); |
| ResetObserverCounts(); |
| } |
| |
| void ExpectOneTokensClearedNotification() { |
| EXPECT_EQ(0, token_available_count_); |
| EXPECT_EQ(0, token_revoked_count_); |
| EXPECT_EQ(0, tokens_loaded_count_); |
| EXPECT_EQ(1, tokens_cleared_count_); |
| ResetObserverCounts(); |
| } |
| |
| protected: |
| net::TestURLFetcherFactory factory_; |
| ProfileOAuth2TokenService* oauth2_service_; |
| TestingOAuth2TokenServiceConsumer consumer_; |
| int token_available_count_; |
| int token_revoked_count_; |
| int tokens_loaded_count_; |
| int tokens_cleared_count_; |
| }; |
| |
| TEST_F(ProfileOAuth2TokenServiceTest, Notifications) { |
| EXPECT_EQ(0, oauth2_service_->cache_size_for_testing()); |
| service()->IssueAuthTokenForTest(GaiaConstants::kGaiaOAuth2LoginRefreshToken, |
| "refreshToken"); |
| ExpectOneTokenAvailableNotification(); |
| |
| service()->EraseTokensFromDB(); |
| service()->ResetCredentialsInMemory(); |
| ExpectOneTokensClearedNotification(); |
| } |
| |
| TEST_F(ProfileOAuth2TokenServiceTest, PersistenceDBUpgrade) { |
| // No username for profile in unit tests, defaulting to empty string. |
| std::string main_account_id; |
| std::string main_refresh_token("old_refresh_token"); |
| |
| // Populate DB with legacy tokens. |
| service()->OnIssueAuthTokenSuccess(GaiaConstants::kSyncService, |
| "syncServiceToken"); |
| service()->OnIssueAuthTokenSuccess(GaiaConstants::kLSOService, |
| "lsoToken"); |
| service()->OnIssueAuthTokenSuccess( |
| GaiaConstants::kGaiaOAuth2LoginRefreshToken, |
| main_refresh_token); |
| // Add a token using the new API. |
| ResetObserverCounts(); |
| |
| // Force LoadCredentials. |
| oauth2_service_->LoadCredentials(); |
| base::RunLoop().RunUntilIdle(); |
| |
| // Legacy tokens get discarded, but the old refresh token is kept. |
| EXPECT_EQ(1, tokens_loaded_count_); |
| EXPECT_EQ(1, token_available_count_); |
| EXPECT_TRUE(oauth2_service_->RefreshTokenIsAvailable()); |
| EXPECT_EQ(1U, oauth2_service_->refresh_tokens_.size()); |
| EXPECT_EQ(main_refresh_token, |
| oauth2_service_->refresh_tokens_[main_account_id]); |
| |
| // Add an old legacy token to the DB, to ensure it will not overwrite existing |
| // credentials for main account. |
| service()->OnIssueAuthTokenSuccess( |
| GaiaConstants::kGaiaOAuth2LoginRefreshToken, |
| "secondOldRefreshToken"); |
| // Add some other legacy token. (Expected to get discarded). |
| service()->OnIssueAuthTokenSuccess(GaiaConstants::kLSOService, |
| "lsoToken"); |
| // Also add a token using PO2TS.UpdateCredentials and make sure upgrade does |
| // not wipe it. |
| std::string other_account_id("other_account_id"); |
| std::string other_refresh_token("other_refresh_token"); |
| oauth2_service_->UpdateCredentials(other_account_id, other_refresh_token); |
| ResetObserverCounts(); |
| |
| // Force LoadCredentials. |
| oauth2_service_->LoadCredentials(); |
| base::RunLoop().RunUntilIdle(); |
| |
| // Again legacy tokens get discarded, but since the main porfile account |
| // token is present it is not overwritten. |
| EXPECT_EQ(2, token_available_count_); |
| EXPECT_EQ(1, tokens_loaded_count_); |
| EXPECT_TRUE(oauth2_service_->RefreshTokenIsAvailable()); |
| EXPECT_EQ(2U, oauth2_service_->refresh_tokens_.size()); |
| EXPECT_EQ(main_refresh_token, |
| oauth2_service_->refresh_tokens_[main_account_id]); |
| EXPECT_EQ(other_refresh_token, |
| oauth2_service_->refresh_tokens_[other_account_id]); |
| |
| oauth2_service_->RevokeAllCredentials(); |
| } |
| |
| TEST_F(ProfileOAuth2TokenServiceTest, PersistenceRevokeCredentials) { |
| std::string account_id_1 = "account_id_1"; |
| std::string refresh_token_1 = "refresh_token_1"; |
| std::string account_id_2 = "account_id_2"; |
| std::string refresh_token_2 = "refresh_token_2"; |
| |
| // TODO(fgorski): Enable below when implemented: |
| // EXPECT_FALSE(oauth2_servive_->RefreshTokenIsAvailable(account_id_1)); |
| // EXPECT_FALSE(oauth2_servive_->RefreshTokenIsAvailable(account_id_2)); |
| |
| oauth2_service_->UpdateCredentials(account_id_1, refresh_token_1); |
| oauth2_service_->UpdateCredentials(account_id_2, refresh_token_2); |
| |
| // TODO(fgorski): Enable below when implemented: |
| // EXPECT_TRUE(oauth2_servive_->RefreshTokenIsAvailable(account_id_1)); |
| // EXPECT_TRUE(oauth2_service_->RefreshTokenIsAvailable(account_id_2)); |
| |
| ResetObserverCounts(); |
| oauth2_service_->RevokeCredentials(account_id_1); |
| ExpectOneTokenRevokedNotification(); |
| |
| // TODO(fgorski): Enable below when implemented: |
| // EXPECT_FALSE(oauth2_servive_->RefreshTokenIsAvailable(account_id_1)); |
| // EXPECT_TRUE(oauth2_service_->RefreshTokenIsAvailable(account_id_2)); |
| |
| oauth2_service_->RevokeAllCredentials(); |
| EXPECT_EQ(0, token_available_count_); |
| EXPECT_EQ(1, token_revoked_count_); |
| EXPECT_EQ(0, tokens_loaded_count_); |
| EXPECT_EQ(1, tokens_cleared_count_); |
| ResetObserverCounts(); |
| } |
| |
| TEST_F(ProfileOAuth2TokenServiceTest, PersistenceLoadCredentials) { |
| // Ensure DB is clean. |
| oauth2_service_->RevokeAllCredentials(); |
| ExpectOneTokensClearedNotification(); |
| // Perform a load from an empty DB. |
| oauth2_service_->LoadCredentials(); |
| base::RunLoop().RunUntilIdle(); |
| ExpectOneTokensLoadedNotification(); |
| EXPECT_EQ(0U, oauth2_service_->refresh_tokens_.size()); |
| // Setup a DB with tokens that don't require upgrade and clear memory. |
| oauth2_service_->UpdateCredentials("account_id", "refresh_token"); |
| oauth2_service_->UpdateCredentials("account_id2", "refresh_token2"); |
| oauth2_service_->refresh_tokens_.clear(); |
| ResetObserverCounts(); |
| |
| oauth2_service_->LoadCredentials(); |
| base::RunLoop().RunUntilIdle(); |
| EXPECT_EQ(2, token_available_count_); |
| EXPECT_EQ(0, token_revoked_count_); |
| EXPECT_EQ(1, tokens_loaded_count_); |
| EXPECT_EQ(0, tokens_cleared_count_); |
| ResetObserverCounts(); |
| |
| // TODO(fgorski): Enable below when implemented: |
| // EXPECT_TRUE(oauth2_servive_->RefreshTokenIsAvailable("account_id")); |
| // EXPECT_TRUE(oauth2_service_->RefreshTokenIsAvailable("account_id2")); |
| |
| oauth2_service_->RevokeAllCredentials(); |
| EXPECT_EQ(0, token_available_count_); |
| EXPECT_EQ(2, token_revoked_count_); |
| EXPECT_EQ(0, tokens_loaded_count_); |
| EXPECT_EQ(1, tokens_cleared_count_); |
| ResetObserverCounts(); |
| } |
| |
| TEST_F(ProfileOAuth2TokenServiceTest, PersistanceNotifications) { |
| EXPECT_EQ(0, oauth2_service_->cache_size_for_testing()); |
| oauth2_service_->UpdateCredentials("account_id", "refresh_token"); |
| ExpectOneTokenAvailableNotification(); |
| |
| oauth2_service_->UpdateCredentials("account_id", "refresh_token"); |
| ExpectNoNotifications(); |
| |
| oauth2_service_->UpdateCredentials("account_id", "refresh_token2"); |
| ExpectOneTokenAvailableNotification(); |
| |
| oauth2_service_->RevokeCredentials("account_id"); |
| ExpectOneTokenRevokedNotification(); |
| |
| oauth2_service_->UpdateCredentials("account_id", "refresh_token2"); |
| ExpectOneTokenAvailableNotification(); |
| |
| oauth2_service_->RevokeAllCredentials(); |
| EXPECT_EQ(1, tokens_cleared_count_); |
| ResetObserverCounts(); |
| } |
| |
| // Until the TokenService class is removed, problems fetching the LSO token |
| // should translate to problems fetching the oauth2 refresh token. |
| TEST_F(ProfileOAuth2TokenServiceTest, LsoNotification) { |
| EXPECT_EQ(0, oauth2_service_->cache_size_for_testing()); |
| |
| // Get a valid token. |
| service()->IssueAuthTokenForTest(GaiaConstants::kGaiaOAuth2LoginRefreshToken, |
| "refreshToken"); |
| ExpectOneTokenAvailableNotification(); |
| |
| service()->OnIssueAuthTokenFailure( |
| GaiaConstants::kLSOService, |
| GoogleServiceAuthError(GoogleServiceAuthError::INVALID_GAIA_CREDENTIALS)); |
| ExpectOneTokenRevokedNotification(); |
| } |
| |
| // Until the TokenService class is removed, finish token loading in TokenService |
| // should translate to finish token loading in ProfileOAuth2TokenService. |
| TEST_F(ProfileOAuth2TokenServiceTest, TokensLoaded) { |
| EXPECT_EQ(0, oauth2_service_->cache_size_for_testing()); |
| service()->LoadTokensFromDB(); |
| base::RunLoop().RunUntilIdle(); |
| ExpectOneTokensLoadedNotification(); |
| } |
| |
| TEST_F(ProfileOAuth2TokenServiceTest, UnknownNotificationsAreNoops) { |
| EXPECT_EQ(0, oauth2_service_->cache_size_for_testing()); |
| service()->IssueAuthTokenForTest("foo", "toto"); |
| ExpectNoNotifications(); |
| |
| // Get a valid token. |
| service()->IssueAuthTokenForTest(GaiaConstants::kGaiaOAuth2LoginRefreshToken, |
| "refreshToken"); |
| ExpectOneTokenAvailableNotification(); |
| |
| service()->IssueAuthTokenForTest("bar", "baz"); |
| ExpectNoNotifications(); |
| } |
| |
| TEST_F(ProfileOAuth2TokenServiceTest, TokenServiceUpdateClearsCache) { |
| EXPECT_EQ(0, oauth2_service_->cache_size_for_testing()); |
| std::set<std::string> scope_list; |
| scope_list.insert("scope"); |
| service()->IssueAuthTokenForTest(GaiaConstants::kGaiaOAuth2LoginRefreshToken, |
| "refreshToken"); |
| ExpectOneTokenAvailableNotification(); |
| scoped_ptr<OAuth2TokenService::Request> request(oauth2_service_->StartRequest( |
| scope_list, &consumer_)); |
| base::RunLoop().RunUntilIdle(); |
| net::TestURLFetcher* fetcher = factory_.GetFetcherByID(0); |
| fetcher->set_response_code(net::HTTP_OK); |
| fetcher->SetResponseString(GetValidTokenResponse("token", 3600)); |
| fetcher->delegate()->OnURLFetchComplete(fetcher); |
| EXPECT_EQ(1, consumer_.number_of_successful_tokens_); |
| EXPECT_EQ(0, consumer_.number_of_errors_); |
| EXPECT_EQ("token", consumer_.last_token_); |
| EXPECT_EQ(1, oauth2_service_->cache_size_for_testing()); |
| |
| // Signs out and signs in |
| service()->IssueAuthTokenForTest(GaiaConstants::kGaiaOAuth2LoginRefreshToken, |
| ""); |
| ExpectOneTokenAvailableNotification(); |
| service()->EraseTokensFromDB(); |
| ExpectOneTokensClearedNotification(); |
| |
| EXPECT_EQ(0, oauth2_service_->cache_size_for_testing()); |
| service()->IssueAuthTokenForTest(GaiaConstants::kGaiaOAuth2LoginRefreshToken, |
| "refreshToken"); |
| ExpectOneTokenAvailableNotification(); |
| |
| request = oauth2_service_->StartRequest(scope_list, &consumer_); |
| base::RunLoop().RunUntilIdle(); |
| fetcher = factory_.GetFetcherByID(0); |
| fetcher->set_response_code(net::HTTP_OK); |
| fetcher->SetResponseString(GetValidTokenResponse("another token", 3600)); |
| fetcher->delegate()->OnURLFetchComplete(fetcher); |
| EXPECT_EQ(2, consumer_.number_of_successful_tokens_); |
| EXPECT_EQ(0, consumer_.number_of_errors_); |
| EXPECT_EQ("another token", consumer_.last_token_); |
| EXPECT_EQ(1, oauth2_service_->cache_size_for_testing()); |
| } |
| |
| // Android doesn't use the current profile's TokenService login refresh token. |
| #if !defined(OS_ANDROID) |
| TEST_F(ProfileOAuth2TokenServiceTest, StaleRefreshTokensNotCached) { |
| EXPECT_FALSE(service()->HasOAuthLoginToken()); |
| EXPECT_FALSE(oauth2_service_->ShouldCacheForRefreshToken(service(), "T1")); |
| |
| service()->IssueAuthTokenForTest(GaiaConstants::kGaiaOAuth2LoginRefreshToken, |
| "T1"); |
| ExpectOneTokenAvailableNotification(); |
| EXPECT_TRUE(oauth2_service_->ShouldCacheForRefreshToken(service(), "T1")); |
| EXPECT_FALSE(oauth2_service_->ShouldCacheForRefreshToken(service(), "T2")); |
| |
| service()->IssueAuthTokenForTest(GaiaConstants::kGaiaOAuth2LoginRefreshToken, |
| "T2"); |
| ExpectOneTokenAvailableNotification(); |
| EXPECT_TRUE(oauth2_service_->ShouldCacheForRefreshToken(service(), "T2")); |
| EXPECT_FALSE(oauth2_service_->ShouldCacheForRefreshToken(NULL, "T2")); |
| } |
| #endif |
