gitea-mirror/Pulse
1
0
Fork 0
mirror of https://github.com/rcourtman/Pulse.git synced 2026-02-18 00:17:39 +01:00
Code Issues Packages Projects Releases Wiki Activity

Verify host uninstall enforces token binding

Browse Source
This commit is contained in:
rcourtman
2026-02-04 15:16:12 +00:00
parent e069507d97
commit 895a7e07e2
1 changed files with 25 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

25
internal/api/host_agents_additional_test.go
View File

@@ -164,6 +164,31 @@ func TestHostAgentHandlers_HandleUninstall(t *testing.T) {
}
}
func TestHostAgentHandlers_HandleUninstallRejectsTokenMismatch(t *testing.T) {
handler, monitor := newHostAgentHandlers(t, nil)
hostID := seedHostAgent(t, monitor)
state := monitorState(t, monitor)
state.UpsertHost(models.Host{
ID: hostID,
Hostname: "host-token-mismatch.local",
TokenID: "token-1",
})
body := []byte(`{"hostId":"` + hostID + `"}`)
req := httptest.NewRequest(http.MethodPost, "/api/agents/host/uninstall", bytes.NewReader(body))
attachAPITokenRecord(req, &config.APITokenRecord{
ID: "token-2",
Scopes: []string{config.ScopeHostReport},
})
rec := httptest.NewRecorder()
handler.HandleUninstall(rec, req)
if rec.Code != http.StatusForbidden {
t.Fatalf("status = %d, want 403: %s", rec.Code, rec.Body.String())
}
}
func TestHostAgentHandlers_HandleLinkUnlink(t *testing.T) {
handler, monitor := newHostAgentHandlers(t, nil)
hostID := seedHostAgent(t, monitor)