package middleware

import (
	"github.com/lf-edge/ekuiper/internal/pkg/jwt"
	"io/ioutil"
	"net/http"
	"net/http/httptest"
	"reflect"
	"testing"
)

func genToken(signKeyName, issuer, aud string) string {
	tkStr, _ := jwt.CreateToken(signKeyName, issuer, aud)
	return tkStr
}

func Test_AUTH(t *testing.T) {
	nextHandler := http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
		w.WriteHeader(200)
	})

	handler := Auth(nextHandler)

	type args struct {
		th string
	}
	tests := []struct {
		name     string
		args     args
		req      *http.Request
		res      *httptest.ResponseRecorder
		wantCode int
	}{
		{
			name:     "token right",
			args:     args{th: genToken("sample_key", "sample_key.pub", "eKuiper")},
			req:      httptest.NewRequest("GET", "http://127.0.0.1:9081/streams", nil),
			res:      httptest.NewRecorder(),
			wantCode: 200,
		},

		{
			name:     "audience not right",
			args:     args{th: genToken("sample_key", "sample_key.pub", "Neuron")},
			req:      httptest.NewRequest("GET", "http://127.0.0.1:9081/streams", nil),
			res:      httptest.NewRecorder(),
			wantCode: 401,
		},
		{
			name:     "no token",
			args:     args{th: ""},
			req:      httptest.NewRequest("GET", "http://127.0.0.1:9081/streams", nil),
			res:      httptest.NewRecorder(),
			wantCode: 401,
		},
		{
			name:     "no need token path",
			args:     args{th: ""},
			req:      httptest.NewRequest("GET", "http://127.0.0.1:9081/ping", nil),
			res:      httptest.NewRecorder(),
			wantCode: 200,
		},
	}

	for _, tt := range tests {
		t.Run(tt.name, func(t *testing.T) {
			tt.req.Header.Set("Authorization", tt.args.th)
			handler.ServeHTTP(tt.res, tt.req)

			res := tt.res.Result()

			data, err := ioutil.ReadAll(res.Body)
			if err != nil {
				t.Errorf("expected error to be nil got %v", err)
			}

			if !reflect.DeepEqual(tt.wantCode, tt.res.Code) {
				t.Errorf("expect %d, actual %d, result %s", tt.wantCode, tt.res.Code, string(data))
			}

			_ = res.Body.Close()
		})
	}
}