usecases/classification/authorization_test.go

//                           _       _
// __      _____  __ ___   ___  __ _| |_ ___
// \ \ /\ / / _ \/ _` \ \ / / |/ _` | __/ _ \
//  \ V  V /  __/ (_| |\ V /| | (_| | ||  __/
//   \_/\_/ \___|\__,_| \_/ |_|\__,_|\__\___|
//
//  Copyright © 2016 - 2024 Weaviate B.V. All rights reserved.
//
//  CONTACT: [email protected]
//

package classification

// import (
// 	"context"
// 	"errors"
// 	"fmt"
// 	"reflect"
// 	"testing"

// 	"github.com/go-openapi/strfmt"
// 	"github.com/weaviate/weaviate/entities/models"
// 	"github.com/stretchr/testify/assert"
// 	"github.com/stretchr/testify/require"
// )

// // A component-test like test suite that makes sure that every available UC is
// // potentially protected with the Authorization plugin

// func Test_Classifier_Authorization(t *testing.T) {

// 	type testCase struct {
// 		methodName       string
// 		additionalArgs   []interface{}
// 		expectedVerb     string
// 		expectedResource string
// 	}

// 	tests := []testCase{
// 		testCase{
// 			methodName:       "Get",
// 			additionalArgs:   []interface{}{strfmt.UUID("")},
// 			expectedVerb:     "get",
// 			expectedResource: "classifications/*",
// 		},
// 		testCase{
// 			methodName:       "Schedule",
// 			additionalArgs:   []interface{}{models.Classification{}},
// 			expectedVerb:     "create",
// 			expectedResource: "classifications/*",
// 		},
// 	}

// 	t.Run("verify that a test for every public method exists", func(t *testing.T) {
// 		testedMethods := make([]string, len(tests), len(tests))
// 		for i, test := range tests {
// 			testedMethods[i] = test.methodName
// 		}

// 		for _, method := range allExportedMethods(&Classifier{}) {
// 			assert.Contains(t, testedMethods, method)
// 		}
// 	})

// 	t.Run("verify the tested methods require correct permissions from the authorizer", func(t *testing.T) {
// 		principal := &models.Principal{}
// 		// logger, _ := test.NewNullLogger()
// 		for _, test := range tests {
// 			authorizer := &authDenier{}
// 			repo := &fakeClassificationRepo{}
// 			vectorRepo := &fakeVectorRepoKNN{}
// 			schemaGetter := &fakeSchemaGetter{}

// 			classifier := New(schemaGetter, repo, vectorRepo, authorizer)

// 			args := append([]interface{}{context.Background(), principal}, test.additionalArgs...)
// 			out, _ := callFuncByName(classifier, test.methodName, args...)

// 			require.Len(t, authorizer.calls, 1, "authorizer must be called")
// 			assert.Equal(t, errors.New("just a test fake"), out[len(out)-1].Interface(),
// 				"execution must abort with authorizer error")
// 			assert.Equal(t, authorizeCall{principal, test.expectedVerb, test.expectedResource},
// 				authorizer.calls[0], "correct parameters must have been used on authorizer")
// 		}
// 	})
// }

// type authorizeCall struct {
// 	principal *models.Principal
// 	verb      string
// 	resource  string
// }

// type authDenier struct {
// 	calls []authorizeCall
// }

// func (a *authDenier) Authorize(principal *models.Principal, verb, resource string) error {
// 	a.calls = append(a.calls, authorizeCall{principal, verb, resource})
// 	return errors.New("just a test fake")
// }

// // inspired by https://stackoverflow.com/a/33008200
// func callFuncByName(manager interface{}, funcName string, params ...interface{}) (out []reflect.Value, err error) {
// 	managerValue := reflect.ValueOf(manager)
// 	m := managerValue.MethodByName(funcName)
// 	if !m.IsValid() {
// 		return make([]reflect.Value, 0), fmt.Errorf("Method not found \"%s\"", funcName)
// 	}
// 	in := make([]reflect.Value, len(params))
// 	for i, param := range params {
// 		in[i] = reflect.ValueOf(param)
// 	}
// 	out = m.Call(in)
// 	return
// }

// func allExportedMethods(subject interface{}) []string {
// 	var methods []string
// 	subjectType := reflect.TypeOf(subject)
// 	for i := 0; i < subjectType.NumMethod(); i++ {
// 		name := subjectType.Method(i).Name
// 		if name[0] >= 'A' && name[0] <= 'Z' {
// 			methods = append(methods, name)
// 		}
// 	}

// 	return methods
// }