tests/integration/api_oauth2_apps_test.go

// Copyright 2020 The Gitea Authors. All rights reserved.
// SPDX-License-Identifier: MIT

package integration

import (
	"fmt"
	"net/http"
	"testing"

	auth_model "code.gitea.io/gitea/models/auth"
	"code.gitea.io/gitea/models/unittest"
	user_model "code.gitea.io/gitea/models/user"
	api "code.gitea.io/gitea/modules/structs"
	"code.gitea.io/gitea/tests"

	"github.com/stretchr/testify/assert"
)

func TestOAuth2Application(t *testing.T) {
	defer tests.PrepareTestEnv(t)()
	testAPICreateOAuth2Application(t)
	testAPIListOAuth2Applications(t)
	testAPIGetOAuth2Application(t)
	testAPIUpdateOAuth2Application(t)
	testAPIDeleteOAuth2Application(t)
}

func testAPICreateOAuth2Application(t *testing.T) {
	user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2})
	appBody := api.CreateOAuth2ApplicationOptions{
		Name: "test-app-1",
		RedirectURIs: []string{
			"http://www.google.com",
		},
		ConfidentialClient: true,
	}

	req := NewRequestWithJSON(t, "POST", "/api/v1/user/applications/oauth2", &appBody).
		AddBasicAuth(user.Name)
	resp := MakeRequest(t, req, http.StatusCreated)

	var createdApp *api.OAuth2Application
	DecodeJSON(t, resp, &createdApp)

	assert.Equal(t, appBody.Name, createdApp.Name)
	assert.Len(t, createdApp.ClientSecret, 56)
	assert.Len(t, createdApp.ClientID, 36)
	assert.True(t, createdApp.ConfidentialClient)
	assert.NotEmpty(t, createdApp.Created)
	assert.Equal(t, appBody.RedirectURIs[0], createdApp.RedirectURIs[0])
	unittest.AssertExistsAndLoadBean(t, &auth_model.OAuth2Application{UID: user.ID, Name: createdApp.Name})
}

func testAPIListOAuth2Applications(t *testing.T) {
	user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2})
	session := loginUser(t, user.Name)
	token := getTokenForLoggedInUser(t, session, auth_model.AccessTokenScopeReadUser)

	existApp := unittest.AssertExistsAndLoadBean(t, &auth_model.OAuth2Application{
		UID:  user.ID,
		Name: "test-app-1",
		RedirectURIs: []string{
			"http://www.google.com",
		},
		ConfidentialClient: true,
	})

	req := NewRequest(t, "GET", "/api/v1/user/applications/oauth2").
		AddTokenAuth(token)
	resp := MakeRequest(t, req, http.StatusOK)

	var appList api.OAuth2ApplicationList
	DecodeJSON(t, resp, &appList)
	expectedApp := appList[0]

	assert.Equal(t, expectedApp.Name, existApp.Name)
	assert.Equal(t, expectedApp.ClientID, existApp.ClientID)
	assert.Equal(t, expectedApp.ConfidentialClient, existApp.ConfidentialClient)
	assert.Len(t, expectedApp.ClientID, 36)
	assert.Empty(t, expectedApp.ClientSecret)
	assert.Equal(t, existApp.RedirectURIs[0], expectedApp.RedirectURIs[0])
	unittest.AssertExistsAndLoadBean(t, &auth_model.OAuth2Application{ID: expectedApp.ID, Name: expectedApp.Name})
}

func testAPIDeleteOAuth2Application(t *testing.T) {
	user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2})
	session := loginUser(t, user.Name)
	token := getTokenForLoggedInUser(t, session, auth_model.AccessTokenScopeWriteUser)

	oldApp := unittest.AssertExistsAndLoadBean(t, &auth_model.OAuth2Application{
		UID:  user.ID,
		Name: "test-app-1",
	})

	urlStr := fmt.Sprintf("/api/v1/user/applications/oauth2/%d", oldApp.ID)
	req := NewRequest(t, "DELETE", urlStr).
		AddTokenAuth(token)
	MakeRequest(t, req, http.StatusNoContent)

	unittest.AssertNotExistsBean(t, &auth_model.OAuth2Application{UID: oldApp.UID, Name: oldApp.Name})

	// Delete again will return not found
	req = NewRequest(t, "DELETE", urlStr).
		AddTokenAuth(token)
	MakeRequest(t, req, http.StatusNotFound)
}

func testAPIGetOAuth2Application(t *testing.T) {
	user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2})
	session := loginUser(t, user.Name)
	token := getTokenForLoggedInUser(t, session, auth_model.AccessTokenScopeReadUser)

	existApp := unittest.AssertExistsAndLoadBean(t, &auth_model.OAuth2Application{
		UID:  user.ID,
		Name: "test-app-1",
		RedirectURIs: []string{
			"http://www.google.com",
		},
		ConfidentialClient: true,
	})

	req := NewRequest(t, "GET", fmt.Sprintf("/api/v1/user/applications/oauth2/%d", existApp.ID)).
		AddTokenAuth(token)
	resp := MakeRequest(t, req, http.StatusOK)

	var app api.OAuth2Application
	DecodeJSON(t, resp, &app)
	expectedApp := app

	assert.Equal(t, expectedApp.Name, existApp.Name)
	assert.Equal(t, expectedApp.ClientID, existApp.ClientID)
	assert.Equal(t, expectedApp.ConfidentialClient, existApp.ConfidentialClient)
	assert.Len(t, expectedApp.ClientID, 36)
	assert.Empty(t, expectedApp.ClientSecret)
	assert.Len(t, expectedApp.RedirectURIs, 1)
	assert.Equal(t, expectedApp.RedirectURIs[0], existApp.RedirectURIs[0])
	unittest.AssertExistsAndLoadBean(t, &auth_model.OAuth2Application{ID: expectedApp.ID, Name: expectedApp.Name})
}

func testAPIUpdateOAuth2Application(t *testing.T) {
	user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2})

	existApp := unittest.AssertExistsAndLoadBean(t, &auth_model.OAuth2Application{
		UID:  user.ID,
		Name: "test-app-1",
		RedirectURIs: []string{
			"http://www.google.com",
		},
	})

	appBody := api.CreateOAuth2ApplicationOptions{
		Name: "test-app-1",
		RedirectURIs: []string{
			"http://www.google.com/",
			"http://www.github.com/",
		},
		ConfidentialClient: true,
	}

	urlStr := fmt.Sprintf("/api/v1/user/applications/oauth2/%d", existApp.ID)
	req := NewRequestWithJSON(t, "PATCH", urlStr, &appBody).
		AddBasicAuth(user.Name)
	resp := MakeRequest(t, req, http.StatusOK)

	var app api.OAuth2Application
	DecodeJSON(t, resp, &app)
	expectedApp := app

	assert.Len(t, expectedApp.RedirectURIs, 2)
	assert.Equal(t, expectedApp.RedirectURIs[0], appBody.RedirectURIs[0])
	assert.Equal(t, expectedApp.RedirectURIs[1], appBody.RedirectURIs[1])
	assert.Equal(t, expectedApp.ConfidentialClient, appBody.ConfidentialClient)
	unittest.AssertExistsAndLoadBean(t, &auth_model.OAuth2Application{ID: expectedApp.ID, Name: expectedApp.Name})
}
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00			`// Copyright 2020 The Gitea Authors. All rights reserved.`
Implement FSFE REUSE for golang files (#21840 ) 2022-11-27 13:20:29 -05:00			`// SPDX-License-Identifier: MIT`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00
Kd/ci playwright go test (#20123 ) 2022-09-02 15:18:23 -04:00			`package integration`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00
			`import (`
			`"fmt"`
			`"net/http"`
			`"testing"`

Support scoped access tokens (#20908 ) 2023-01-17 16:46:03 -05:00			`auth_model "code.gitea.io/gitea/models/auth"`
Decouple unit test, remove intermediate `unittestbridge` package (#17662 ) 2021-11-16 16:53:21 +08:00			`"code.gitea.io/gitea/models/unittest"`
Move user related model into models/user (#17781 ) 2021-11-24 17:49:20 +08:00			`user_model "code.gitea.io/gitea/models/user"`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00			`api "code.gitea.io/gitea/modules/structs"`
Kd/ci playwright go test (#20123 ) 2022-09-02 15:18:23 -04:00			`"code.gitea.io/gitea/tests"`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00
			`"github.com/stretchr/testify/assert"`
			`)`

			`func TestOAuth2Application(t *testing.T) {`
Kd/ci playwright go test (#20123 ) 2022-09-02 15:18:23 -04:00			`defer tests.PrepareTestEnv(t)()`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00			`testAPICreateOAuth2Application(t)`
			`testAPIListOAuth2Applications(t)`
Add Get/Update for api/v1/user/applications/oauth2 (#11008 ) 2020-04-09 20:37:31 -04:00			`testAPIGetOAuth2Application(t)`
			`testAPIUpdateOAuth2Application(t)`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00			`testAPIDeleteOAuth2Application(t)`
			`}`

			`func testAPICreateOAuth2Application(t *testing.T) {`
Refactor AssertExistsAndLoadBean to use generics (#20797 ) 2022-08-16 10:22:25 +08:00			`user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2})`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00			`appBody := api.CreateOAuth2ApplicationOptions{`
			`Name: "test-app-1",`
			`RedirectURIs: []string{`
			`"http://www.google.com",`
			`},`
Record OAuth client type at registration (#21316 ) 2022-10-24 09:59:24 +02:00			`ConfidentialClient: true,`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00			`}`

Convert to url auth to header auth in tests (#28484 ) 2023-12-22 00:59:59 +01:00			`req := NewRequestWithJSON(t, "POST", "/api/v1/user/applications/oauth2", &appBody).`
			`AddBasicAuth(user.Name)`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00			`resp := MakeRequest(t, req, http.StatusCreated)`

			`var createdApp *api.OAuth2Application`
			`DecodeJSON(t, resp, &createdApp)`

Enable testifylint rules (#34075 ) 2025-03-31 07:53:48 +02:00			`assert.Equal(t, appBody.Name, createdApp.Name)`
Use `CryptoRandomBytes` instead of `CryptoRandomString` (#18439 ) 2022-02-04 18:03:15 +01:00			`assert.Len(t, createdApp.ClientSecret, 56)`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00			`assert.Len(t, createdApp.ClientID, 36)`
Record OAuth client type at registration (#21316 ) 2022-10-24 09:59:24 +02:00			`assert.True(t, createdApp.ConfidentialClient)`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00			`assert.NotEmpty(t, createdApp.Created)`
Enable testifylint rules (#34075 ) 2025-03-31 07:53:48 +02:00			`assert.Equal(t, appBody.RedirectURIs[0], createdApp.RedirectURIs[0])`
Support scoped access tokens (#20908 ) 2023-01-17 16:46:03 -05:00			`unittest.AssertExistsAndLoadBean(t, &auth_model.OAuth2Application{UID: user.ID, Name: createdApp.Name})`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00			`}`

			`func testAPIListOAuth2Applications(t *testing.T) {`
Refactor AssertExistsAndLoadBean to use generics (#20797 ) 2022-08-16 10:22:25 +08:00			`user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2})`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00			`session := loginUser(t, user.Name)`
Redesign Scoped Access Tokens (#24767 ) 2023-06-04 14:57:16 -04:00			`token := getTokenForLoggedInUser(t, session, auth_model.AccessTokenScopeReadUser)`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00
Support scoped access tokens (#20908 ) 2023-01-17 16:46:03 -05:00			`existApp := unittest.AssertExistsAndLoadBean(t, &auth_model.OAuth2Application{`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00			`UID: user.ID,`
			`Name: "test-app-1",`
			`RedirectURIs: []string{`
			`"http://www.google.com",`
			`},`
Record OAuth client type at registration (#21316 ) 2022-10-24 09:59:24 +02:00			`ConfidentialClient: true,`
Refactor AssertExistsAndLoadBean to use generics (#20797 ) 2022-08-16 10:22:25 +08:00			`})`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00
Convert to url auth to header auth in tests (#28484 ) 2023-12-22 00:59:59 +01:00			`req := NewRequest(t, "GET", "/api/v1/user/applications/oauth2").`
			`AddTokenAuth(token)`
Remove session in api tests (#21984 ) 2022-12-02 11:39:42 +08:00			`resp := MakeRequest(t, req, http.StatusOK)`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00
			`var appList api.OAuth2ApplicationList`
			`DecodeJSON(t, resp, &appList)`
			`expectedApp := appList[0]`

Enable testifylint rules (#34075 ) 2025-03-31 07:53:48 +02:00			`assert.Equal(t, expectedApp.Name, existApp.Name)`
			`assert.Equal(t, expectedApp.ClientID, existApp.ClientID)`
Enable tenv and testifylint rules (#32852 ) 2024-12-15 11:41:29 +01:00			`assert.Equal(t, expectedApp.ConfidentialClient, existApp.ConfidentialClient)`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00			`assert.Len(t, expectedApp.ClientID, 36)`
			`assert.Empty(t, expectedApp.ClientSecret)`
Enable testifylint rules (#34075 ) 2025-03-31 07:53:48 +02:00			`assert.Equal(t, existApp.RedirectURIs[0], expectedApp.RedirectURIs[0])`
Support scoped access tokens (#20908 ) 2023-01-17 16:46:03 -05:00			`unittest.AssertExistsAndLoadBean(t, &auth_model.OAuth2Application{ID: expectedApp.ID, Name: expectedApp.Name})`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00			`}`

			`func testAPIDeleteOAuth2Application(t *testing.T) {`
Refactor AssertExistsAndLoadBean to use generics (#20797 ) 2022-08-16 10:22:25 +08:00			`user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2})`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00			`session := loginUser(t, user.Name)`
Redesign Scoped Access Tokens (#24767 ) 2023-06-04 14:57:16 -04:00			`token := getTokenForLoggedInUser(t, session, auth_model.AccessTokenScopeWriteUser)`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00
Support scoped access tokens (#20908 ) 2023-01-17 16:46:03 -05:00			`oldApp := unittest.AssertExistsAndLoadBean(t, &auth_model.OAuth2Application{`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00			`UID: user.ID,`
			`Name: "test-app-1",`
Refactor AssertExistsAndLoadBean to use generics (#20797 ) 2022-08-16 10:22:25 +08:00			`})`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00
Convert to url auth to header auth in tests (#28484 ) 2023-12-22 00:59:59 +01:00			`urlStr := fmt.Sprintf("/api/v1/user/applications/oauth2/%d", oldApp.ID)`
			`req := NewRequest(t, "DELETE", urlStr).`
			`AddTokenAuth(token)`
Remove session in api tests (#21984 ) 2022-12-02 11:39:42 +08:00			`MakeRequest(t, req, http.StatusNoContent)`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00
Support scoped access tokens (#20908 ) 2023-01-17 16:46:03 -05:00			`unittest.AssertNotExistsBean(t, &auth_model.OAuth2Application{UID: oldApp.UID, Name: oldApp.Name})`
Fix delete nonexist oauth application 500 and prevent deadlock (#15384 ) 2021-04-11 04:49:10 +08:00
			`// Delete again will return not found`
Convert to url auth to header auth in tests (#28484 ) 2023-12-22 00:59:59 +01:00			`req = NewRequest(t, "DELETE", urlStr).`
			`AddTokenAuth(token)`
Remove session in api tests (#21984 ) 2022-12-02 11:39:42 +08:00			`MakeRequest(t, req, http.StatusNotFound)`
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437 ) 2020-02-29 07:19:32 +01:00			`}`
Add Get/Update for api/v1/user/applications/oauth2 (#11008 ) 2020-04-09 20:37:31 -04:00
			`func testAPIGetOAuth2Application(t *testing.T) {`
Refactor AssertExistsAndLoadBean to use generics (#20797 ) 2022-08-16 10:22:25 +08:00			`user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2})`
Add Get/Update for api/v1/user/applications/oauth2 (#11008 ) 2020-04-09 20:37:31 -04:00			`session := loginUser(t, user.Name)`
Redesign Scoped Access Tokens (#24767 ) 2023-06-04 14:57:16 -04:00			`token := getTokenForLoggedInUser(t, session, auth_model.AccessTokenScopeReadUser)`
Add Get/Update for api/v1/user/applications/oauth2 (#11008 ) 2020-04-09 20:37:31 -04:00
Support scoped access tokens (#20908 ) 2023-01-17 16:46:03 -05:00			`existApp := unittest.AssertExistsAndLoadBean(t, &auth_model.OAuth2Application{`
Add Get/Update for api/v1/user/applications/oauth2 (#11008 ) 2020-04-09 20:37:31 -04:00			`UID: user.ID,`
			`Name: "test-app-1",`
			`RedirectURIs: []string{`
			`"http://www.google.com",`
			`},`
Record OAuth client type at registration (#21316 ) 2022-10-24 09:59:24 +02:00			`ConfidentialClient: true,`
Refactor AssertExistsAndLoadBean to use generics (#20797 ) 2022-08-16 10:22:25 +08:00			`})`
Add Get/Update for api/v1/user/applications/oauth2 (#11008 ) 2020-04-09 20:37:31 -04:00
Convert to url auth to header auth in tests (#28484 ) 2023-12-22 00:59:59 +01:00			`req := NewRequest(t, "GET", fmt.Sprintf("/api/v1/user/applications/oauth2/%d", existApp.ID)).`
			`AddTokenAuth(token)`
Remove session in api tests (#21984 ) 2022-12-02 11:39:42 +08:00			`resp := MakeRequest(t, req, http.StatusOK)`
Add Get/Update for api/v1/user/applications/oauth2 (#11008 ) 2020-04-09 20:37:31 -04:00
			`var app api.OAuth2Application`
			`DecodeJSON(t, resp, &app)`
			`expectedApp := app`

Enable testifylint rules (#34075 ) 2025-03-31 07:53:48 +02:00			`assert.Equal(t, expectedApp.Name, existApp.Name)`
			`assert.Equal(t, expectedApp.ClientID, existApp.ClientID)`
Enable tenv and testifylint rules (#32852 ) 2024-12-15 11:41:29 +01:00			`assert.Equal(t, expectedApp.ConfidentialClient, existApp.ConfidentialClient)`
Add Get/Update for api/v1/user/applications/oauth2 (#11008 ) 2020-04-09 20:37:31 -04:00			`assert.Len(t, expectedApp.ClientID, 36)`
			`assert.Empty(t, expectedApp.ClientSecret)`
Fixed assert statements. (#16089 ) 2021-06-07 07:27:09 +02:00			`assert.Len(t, expectedApp.RedirectURIs, 1)`
Enable testifylint rules (#34075 ) 2025-03-31 07:53:48 +02:00			`assert.Equal(t, expectedApp.RedirectURIs[0], existApp.RedirectURIs[0])`
Support scoped access tokens (#20908 ) 2023-01-17 16:46:03 -05:00			`unittest.AssertExistsAndLoadBean(t, &auth_model.OAuth2Application{ID: expectedApp.ID, Name: expectedApp.Name})`
Add Get/Update for api/v1/user/applications/oauth2 (#11008 ) 2020-04-09 20:37:31 -04:00			`}`

			`func testAPIUpdateOAuth2Application(t *testing.T) {`
Refactor AssertExistsAndLoadBean to use generics (#20797 ) 2022-08-16 10:22:25 +08:00			`user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2})`
Add Get/Update for api/v1/user/applications/oauth2 (#11008 ) 2020-04-09 20:37:31 -04:00
Support scoped access tokens (#20908 ) 2023-01-17 16:46:03 -05:00			`existApp := unittest.AssertExistsAndLoadBean(t, &auth_model.OAuth2Application{`
Add Get/Update for api/v1/user/applications/oauth2 (#11008 ) 2020-04-09 20:37:31 -04:00			`UID: user.ID,`
			`Name: "test-app-1",`
			`RedirectURIs: []string{`
			`"http://www.google.com",`
			`},`
Refactor AssertExistsAndLoadBean to use generics (#20797 ) 2022-08-16 10:22:25 +08:00			`})`
Add Get/Update for api/v1/user/applications/oauth2 (#11008 ) 2020-04-09 20:37:31 -04:00
			`appBody := api.CreateOAuth2ApplicationOptions{`
			`Name: "test-app-1",`
			`RedirectURIs: []string{`
			`"http://www.google.com/",`
			`"http://www.github.com/",`
			`},`
Record OAuth client type at registration (#21316 ) 2022-10-24 09:59:24 +02:00			`ConfidentialClient: true,`
Add Get/Update for api/v1/user/applications/oauth2 (#11008 ) 2020-04-09 20:37:31 -04:00			`}`

			`urlStr := fmt.Sprintf("/api/v1/user/applications/oauth2/%d", existApp.ID)`
Convert to url auth to header auth in tests (#28484 ) 2023-12-22 00:59:59 +01:00			`req := NewRequestWithJSON(t, "PATCH", urlStr, &appBody).`
			`AddBasicAuth(user.Name)`
Add Get/Update for api/v1/user/applications/oauth2 (#11008 ) 2020-04-09 20:37:31 -04:00			`resp := MakeRequest(t, req, http.StatusOK)`

			`var app api.OAuth2Application`
			`DecodeJSON(t, resp, &app)`
			`expectedApp := app`

Fixed assert statements. (#16089 ) 2021-06-07 07:27:09 +02:00			`assert.Len(t, expectedApp.RedirectURIs, 2)`
Enable testifylint rules (#34075 ) 2025-03-31 07:53:48 +02:00			`assert.Equal(t, expectedApp.RedirectURIs[0], appBody.RedirectURIs[0])`
			`assert.Equal(t, expectedApp.RedirectURIs[1], appBody.RedirectURIs[1])`
Record OAuth client type at registration (#21316 ) 2022-10-24 09:59:24 +02:00			`assert.Equal(t, expectedApp.ConfidentialClient, appBody.ConfidentialClient)`
Support scoped access tokens (#20908 ) 2023-01-17 16:46:03 -05:00			`unittest.AssertExistsAndLoadBean(t, &auth_model.OAuth2Application{ID: expectedApp.ID, Name: expectedApp.Name})`
Add Get/Update for api/v1/user/applications/oauth2 (#11008 ) 2020-04-09 20:37:31 -04:00			`}`