tomas
/
pocketbase
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

added more tests and extra debug log

This commit is contained in:
Gani Georgiev 2025-08-20 22:41:33 +03:00
parent 50dbb7f94f
commit b8f18bd97d
3 changed files with 48 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
apis/record_auth_with_oauth2.go
View File

@ -99,6 +99,8 @@ func recordAuthWithOAuth2(e *core.RequestEvent) error {
if ok { if ok {
e.App.Store().Remove(nameKey) e.App.Store().Remove(nameKey)
authUser.Name = name authUser.Name = name
} else {
e.App.Logger().Debug("Missing or already removed Apple user's name")
} }
} }

11
apis/record_auth_with_oauth2_redirect.go
View File

@ -2,6 +2,7 @@ package apis
import ( import (
"encoding/json" "encoding/json"
"errors"
"net/http" "net/http"
"strings" "strings"
"time" "time"
@ -58,7 +59,8 @@ func oauth2SubscriptionRedirect(e *core.RequestEvent) error {
} }
defer client.Unsubscribe(oauth2SubscriptionTopic) defer client.Unsubscribe(oauth2SubscriptionTopic)
// see https://github.com/pocketbase/pocketbase/issues/7090 // temporary store the Apple user's name so that it can be later retrieved with the authWithOAuth2 call
// (see https://github.com/pocketbase/pocketbase/issues/7090)
if data.AppleUser != "" && data.Error == "" && data.Code != "" { if data.AppleUser != "" && data.Error == "" && data.Code != "" {
nameErr := parseAndStoreAppleRedirectName( nameErr := parseAndStoreAppleRedirectName(
e.App, e.App,
@ -108,6 +110,11 @@ func parseAndStoreAppleRedirectName(app core.App, nameKey string, serializedName
return nil return nil
} }
// just in case to prevent storing large strings in memory
if len(nameKey) > 1000 {
return errors.New("nameKey is too large")
}
// https://developer.apple.com/documentation/signinwithapple/incorporating-sign-in-with-apple-into-other-platforms#Handle-the-response // https://developer.apple.com/documentation/signinwithapple/incorporating-sign-in-with-apple-into-other-platforms#Handle-the-response
extracted := struct { extracted := struct {
Name struct { Name struct {
@ -133,7 +140,7 @@ func parseAndStoreAppleRedirectName(app core.App, nameKey string, serializedName
// store (and remove) // store (and remove)
app.Store().Set(nameKey, fullName) app.Store().Set(nameKey, fullName)
time.AfterFunc(90*time.Second, func() { time.AfterFunc(1*time.Minute, func() {
app.Store().Remove(nameKey) app.Store().Remove(nameKey)
}) })

41
apis/record_auth_with_oauth2_redirect_test.go
View File

@ -268,11 +268,11 @@ func TestRecordAuthWithOAuth2Redirect(t *testing.T) {
}, },
}, },
{ {
Name: "(POST) Apple user's name json", Name: "(POST) Apple user's name json (nameKey error)",
Method: http.MethodPost, Method: http.MethodPost,
URL: "/api/oauth2-redirect", URL: "/api/oauth2-redirect",
Body: strings.NewReader(url.Values{ Body: strings.NewReader(url.Values{
"code": []string{"123"}, "code": []string{strings.Repeat("a", 986)},
"state": []string{clientStubs[8]["c3"].Id()}, "state": []string{clientStubs[8]["c3"].Id()},
"user": []string{ "user": []string{
`{"name":{"firstName":"aaa","lastName":"` + strings.Repeat("b", 200) + `"}}`, `{"name":{"firstName":"aaa","lastName":"` + strings.Repeat("b", 200) + `"}}`,
@ -282,7 +282,7 @@ func TestRecordAuthWithOAuth2Redirect(t *testing.T) {
"content-type": "application/x-www-form-urlencoded", "content-type": "application/x-www-form-urlencoded",
}, },
BeforeTestFunc: beforeTestFunc(clientStubs[8], map[string][]string{ BeforeTestFunc: beforeTestFunc(clientStubs[8], map[string][]string{
"c3": {`"state":"` + clientStubs[8]["c3"].Id(), `"code":"123"`}, "c3": {`"state":"` + clientStubs[8]["c3"].Id(), `"code":"` + strings.Repeat("a", 986) + `"`},
}), }),
ExpectedStatus: http.StatusSeeOther, ExpectedStatus: http.StatusSeeOther,
ExpectedEvents: map[string]int{"*": 0}, ExpectedEvents: map[string]int{"*": 0},
@ -295,7 +295,40 @@ func TestRecordAuthWithOAuth2Redirect(t *testing.T) {
t.Fatalf("Expected oauth2 subscription to be removed") t.Fatalf("Expected oauth2 subscription to be removed")
} }
storedName, _ := app.Store().Get("@redirect_name_123").(string) if storedName := app.Store().Get("@redirect_name_" + strings.Repeat("a", 986)); storedName != nil {
t.Fatalf("Didn't expect stored name, got %q", storedName)
}
},
},
{
Name: "(POST) Apple user's name json",
Method: http.MethodPost,
URL: "/api/oauth2-redirect",
Body: strings.NewReader(url.Values{
"code": []string{strings.Repeat("a", 985)},
"state": []string{clientStubs[9]["c3"].Id()},
"user": []string{
`{"name":{"firstName":"aaa","lastName":"` + strings.Repeat("b", 200) + `"}}`,
},
}.Encode()),
Headers: map[string]string{
"content-type": "application/x-www-form-urlencoded",
},
BeforeTestFunc: beforeTestFunc(clientStubs[9], map[string][]string{
"c3": {`"state":"` + clientStubs[9]["c3"].Id(), `"code":"` + strings.Repeat("a", 985) + `"`},
}),
ExpectedStatus: http.StatusSeeOther,
ExpectedEvents: map[string]int{"*": 0},
AfterTestFunc: func(t testing.TB, app *tests.TestApp, res *http.Response) {
app.Store().Get("cancelFunc").(context.CancelFunc)()
checkSuccessRedirect(t, app, res)
if clientStubs[9]["c3"].HasSubscription("@oauth2") {
t.Fatalf("Expected oauth2 subscription to be removed")
}
storedName, _ := app.Store().Get("@redirect_name_" + strings.Repeat("a", 985)).(string)
expectedName := "aaa " + strings.Repeat("b", 146) expectedName := "aaa " + strings.Repeat("b", 146)
if storedName != expectedName { if storedName != expectedName {
t.Fatalf("Expected stored name\n%q\ngot\n%q", expectedName, storedName) t.Fatalf("Expected stored name\n%q\ngot\n%q", expectedName, storedName)