From f5cea0ee558c14c88e06924369afd845d1dc090f Mon Sep 17 00:00:00 2001
From: Zzz212zzZ <2120020201@qq.com>
Date: Mon, 15 Apr 2024 15:28:00 -0700
Subject: [PATCH] Add token encryption/decryption test

---
 spec/models/lms_credential_spec.rb | 53 ++++++++++++++++++++++++++++++
 1 file changed, 53 insertions(+)
 create mode 100644 spec/models/lms_credential_spec.rb

diff --git a/spec/models/lms_credential_spec.rb b/spec/models/lms_credential_spec.rb
new file mode 100644
index 0000000..1bd8059
--- /dev/null
+++ b/spec/models/lms_credential_spec.rb
@@ -0,0 +1,53 @@
+# spec/models/lms_credential_spec.rb
+require 'rails_helper'
+
+class MockCanvas
+    # Simulate authentication using a token and refresh token
+    def self.authenticate(token, refresh_token)
+      token == 'sensitive_token' && refresh_token == 'sensitive_refresh_token'
+    end
+  
+    # Simulate retrieving a service, returning 'service_object' if credentials are valid
+    def self.mock_get_service(token, refresh_token)
+      authenticate(token, refresh_token) ? 'service_object' : nil
+    end
+end
+
+
+RSpec.describe LmsCredential, type: :model do
+  describe 'Token Encryption' do
+    let(:user) { User.create!(email: 'test@example.com') }
+    let!(:credential) do
+      LmsCredential.create!(
+        user: user,
+        lms_name: 'ExampleLMS',
+        username: 'testuser',
+        password: 'testpassword',
+        token: 'sensitive_token',
+        refresh_token: 'sensitive_refresh_token'
+      )
+    end
+
+    it 'encrypts the token and refresh_token' do
+      raw_token = ActiveRecord::Base.connection.execute(
+        "SELECT token FROM lms_credentials WHERE id = #{credential.id}"
+      ).first['token']
+      raw_refresh_token = ActiveRecord::Base.connection.execute(
+        "SELECT refresh_token FROM lms_credentials WHERE id = #{credential.id}"
+      ).first['refresh_token']
+
+      expect(raw_token).not_to eq 'sensitive_token'
+      expect(raw_refresh_token).not_to eq 'sensitive_refresh_token'
+      expect(credential.token).to eq 'sensitive_token'
+      expect(credential.refresh_token).to eq 'sensitive_refresh_token'
+    end
+
+    it 'decrypts the token and refresh_token for use' do
+      expect(credential.token).to eq('sensitive_token')
+      expect(credential.refresh_token).to eq('sensitive_refresh_token')
+
+      # Simulate a call to get a service object
+      expect(MockCanvas.mock_get_service(credential.token, credential.refresh_token)).to eq('service_object')
+    end
+  end
+end