(t *testing.T)
| 108 | } |
| 109 | |
| 110 | func TestTokenScoped(t *testing.T) { |
| 111 | t.Parallel() |
| 112 | |
| 113 | ctx, cancel := context.WithTimeout(context.Background(), testutil.WaitLong) |
| 114 | defer cancel() |
| 115 | client := coderdtest.New(t, nil) |
| 116 | _ = coderdtest.CreateFirstUser(t, client) |
| 117 | |
| 118 | res, err := client.CreateToken(ctx, codersdk.Me, codersdk.CreateTokenRequest{ |
| 119 | Scope: codersdk.APIKeyScopeApplicationConnect, |
| 120 | }) |
| 121 | require.NoError(t, err) |
| 122 | require.Greater(t, len(res.Key), 2) |
| 123 | |
| 124 | keys, err := client.Tokens(ctx, codersdk.Me, codersdk.TokensFilter{}) |
| 125 | require.NoError(t, err) |
| 126 | require.EqualValues(t, len(keys), 1) |
| 127 | require.Contains(t, res.Key, keys[0].ID) |
| 128 | require.Equal(t, keys[0].Scope, codersdk.APIKeyScopeApplicationConnect) |
| 129 | require.Len(t, keys[0].AllowList, 1) |
| 130 | require.Equal(t, "*:*", keys[0].AllowList[0].String()) |
| 131 | } |
| 132 | |
| 133 | // Ensure backward-compat: when a token is created using the legacy singular |
| 134 | // scope names ("all" or "application_connect"), the API returns the same |
nothing calls this directly
no test coverage detected