chai = require 'chai'
sinon = require 'sinon'
sinonChai = require 'sinon-chai'
expect = chai.expect
proxyquire = require('proxyquire').noCallThru()

chai.use sinonChai
chai.should()


User = proxyquire('../../../models/User', {
  '../boot/redis': {
    getClient: () => {}
  }
})
Client = proxyquire('../../../models/Client', {
  '../boot/redis': {
    getClient: () => {}
  },
  './User': User
})
verifyClient = proxyquire('../../../oidc/verifyClient', {
  '../models/Client': Client
})

describe 'Verify Client', ->
  { req, res, next, err } = {}

  describe 'with missing redirect_uri', ->
    before (done) ->
      req = { connectParams: {} }
      verifyClient req, res, (error) ->
        err = error
        done()

    it 'should provide an AuthorizationError', ->
      err.name.should.equal 'AuthorizationError'

    it 'should provide an error code', ->
      err.error.should.equal 'invalid_request'

    it 'should provide an error description', ->
      err.error_description.should.equal 'Missing redirect uri'

    it 'should provide a status code', ->
      err.statusCode.should.equal 400


  describe 'with missing client_id', ->
    before (done) ->
      req =
        connectParams:
          redirect_uri: 'https://redirect.uri'

      verifyClient req, res, (error) ->
        err = error
        done()

    it 'should provide an AuthorizationError', ->
      err.name.should.equal 'AuthorizationError'

    it 'should provide an error code', ->
      err.error.should.equal 'unauthorized_client'

    it 'should provide an error description', ->
      err.error_description.should.equal 'Missing client id'

    it 'should provide a status code', ->
      err.statusCode.should.equal 403


  describe 'with unknown client id', ->
    before (done) ->
      sinon.stub(Client, 'get').callsArgWith(2, null, null)
      req =
        connectParams:
          redirect_uri: 'https://redirect.uri'
          client_id: 'unknown'
      res = {}
      next = sinon.spy()

      verifyClient req, res, (error) ->
        err = error
        done()

    after ->
      Client.get.restore()

    it 'should provide an AuthorizationError', ->
      err.name.should.equal 'AuthorizationError'

    it 'should provide an error code', ->
      err.error.should.equal 'unauthorized_client'

    it 'should provide an error description', ->
      err.error_description.should.equal 'Unknown client'

    it 'should provide a status code', ->
      err.statusCode.should.equal 401


  describe 'with mismatching redirect uri', ->
    before (done) ->
      client = { redirect_uris: [] }
      sinon.stub(Client, 'get').callsArgWith(2, null, client)
      req =
        connectParams:
          redirect_uri: 'https://mismatching.uri/cb'
          client_id: 'id'
      res = {}
      next = sinon.spy()

      verifyClient req, res, (error) ->
        err = error
        done()

    after ->
      Client.get.restore()

    it 'should provide an AuthorizationError', ->
      err.name.should.equal 'AuthorizationError'

    it 'should provide an error code', ->
      err.error.should.equal 'invalid_request'

    it 'should provide an error description', ->
      err.error_description.should.equal 'Mismatching redirect uri'

    it 'should provide a status code', ->
      err.statusCode.should.equal 400