From adbc1604dc88116b9f192abecf6566660a215d99 Mon Sep 17 00:00:00 2001
From: mutantmonkey <mutantmonkey@mutantmonkey.in>
Date: Sun, 11 Oct 2015 18:37:36 -0700
Subject: [PATCH] add some more auth tests

It's going to be difficult to get 100% code coverage, but we can at
least ensure that checkAuth works properly.
---
 auth_test.go   | 24 ++++++++++++++++++++++++
 server_test.go | 15 ++++++++++++++-
 2 files changed, 38 insertions(+), 1 deletion(-)
 create mode 100644 auth_test.go

diff --git a/auth_test.go b/auth_test.go
new file mode 100644
index 0000000..9cec2ea
--- /dev/null
+++ b/auth_test.go
@@ -0,0 +1,24 @@
+package main
+
+import (
+	"testing"
+)
+
+func TestCheckAuth(t *testing.T) {
+	authKeys := []string{
+		"vhvZ/PT1jeTbTAJ8JdoxddqFtebSxdVb0vwPlYO+4HM=",
+		"vFpNprT9wbHgwAubpvRxYCCpA2FQMAK6hFqPvAGrdZo=",
+	}
+
+	if r, err := checkAuth(authKeys, []byte("")); err != nil && r {
+		t.Fatal("Authorization passed for empty key")
+	}
+
+	if r, err := checkAuth(authKeys, []byte("thisisnotvalid")); err != nil && r {
+		t.Fatal("Authorization passed for invalid key")
+	}
+
+	if r, err := checkAuth(authKeys, []byte("haPVipRnGJ0QovA9nyqK")); err != nil && !r {
+		t.Fatal("Authorization failed for valid key")
+	}
+}
diff --git a/server_test.go b/server_test.go
index 95c7b57..ebacfc3 100644
--- a/server_test.go
+++ b/server_test.go
@@ -52,7 +52,7 @@ func TestIndex(t *testing.T) {
 	}
 }
 
-func TestAuthKeysRedirects(t *testing.T) {
+func TestAuthKeys(t *testing.T) {
 	Config.authFile = "/dev/null"
 
 	redirects := []string{
@@ -77,6 +77,19 @@ func TestAuthKeysRedirects(t *testing.T) {
 		}
 	}
 
+	w := httptest.NewRecorder()
+
+	req, err := http.NewRequest("POST", "/paste/", nil)
+	if err != nil {
+		t.Fatal(err)
+	}
+
+	mux.ServeHTTP(w, req)
+
+	if w.Code != 401 {
+		t.Fatalf("Status code is not 401, but %d", w.Code)
+	}
+
 	Config.authFile = ""
 }