lisone/ds2api
1
0
Fork 0
mirror of https://github.com/CJackHwang/ds2api.git synced 2026-05-22 00:47:45 +08:00
Code Issues Packages Projects Releases Wiki Activity

feat: Implement admin settings UI, enhance admin authentication with password hashing, and add new streaming runtime logic for Claude and OpenAI adapters with extensive compatibility tests.

Browse Source
This commit is contained in:
CJACK
2026-02-19 02:45:38 +08:00
parent d21aedac83
commit 7307a5cc9a
64 changed files with 4078 additions and 967 deletions
Download Patch File Download Diff File Expand all files Collapse all files

57
internal/auth/admin_test.go
View File

@@ -3,6 +3,8 @@ package auth
import (
"net/http"
"testing"
"ds2api/internal/config"
)
func TestJWTCreateVerify(t *testing.T) {
@@ -27,3 +29,58 @@ func TestVerifyAdminRequest(t *testing.T) {
t.Fatalf("expected token accepted: %v", err)
}
}
func TestVerifyJWTWithStoreValidAfter(t *testing.T) {
t.Setenv("DS2API_CONFIG_JSON", `{"admin":{"password_hash":"`+HashAdminPassword("oldpass")+`"}}`)
store := config.LoadStore()
token, err := CreateJWTWithStore(1, store)
if err != nil {
t.Fatalf("create jwt failed: %v", err)
}
if _, err := VerifyJWTWithStore(token, store); err != nil {
t.Fatalf("verify before invalidation failed: %v", err)
}
if err := store.Update(func(c *config.Config) error {
c.Admin.JWTValidAfterUnix = 1<<62 - 1
return nil
}); err != nil {
t.Fatalf("set valid-after failed: %v", err)
}
if _, err := VerifyJWTWithStore(token, store); err == nil {
t.Fatal("expected token invalid after valid-after update")
}
}
func TestVerifyJWTWithStoreSameSecondInvalidationAndRelogin(t *testing.T) {
t.Setenv("DS2API_CONFIG_JSON", `{"admin":{"password_hash":"`+HashAdminPassword("oldpass")+`"}}`)
store := config.LoadStore()
oldToken, err := CreateJWTWithStore(1, store)
if err != nil {
t.Fatalf("create old jwt failed: %v", err)
}
oldPayload, err := VerifyJWTWithStore(oldToken, store)
if err != nil {
t.Fatalf("verify old jwt before invalidation failed: %v", err)
}
oldIAT, _ := oldPayload["iat"].(float64)
if err := store.Update(func(c *config.Config) error {
c.Admin.JWTValidAfterUnix = int64(oldIAT)
return nil
}); err != nil {
t.Fatalf("set valid-after failed: %v", err)
}
if _, err := VerifyJWTWithStore(oldToken, store); err == nil {
t.Fatal("expected old token invalid when iat == valid-after")
}
newToken, err := CreateJWTWithStore(1, store)
if err != nil {
t.Fatalf("create new jwt failed: %v", err)
}
if _, err := VerifyJWTWithStore(newToken, store); err != nil {
t.Fatalf("expected new token valid after invalidation cutoff: %v", err)
}
}