fix failing tests (fix AccessTokenUtils.revokePersonalAccessToken)

Author: maltem-za

src/main/java/org/gitlab4j/api/models/OauthTokenResponse.java

@@ -1,5 +1,7 @@
 package org.gitlab4j.api.models;
 
+import com.fasterxml.jackson.annotation.JsonIgnore;
+
 import java.util.Date;
 
 public class OauthTokenResponse {
@@ -60,6 +62,7 @@ public void setCreatedAt(Long createdAt) {
     }
 
 
+    @JsonIgnore
     public Date getExpiresAt() {
         if (expiresIn == null) {
             return null;
@@ -69,6 +72,7 @@ public Date getExpiresAt() {
         return new Date(expiryTimeInSecondsSinceEpoch * 1000);
     }
 
+    @JsonIgnore
     public boolean isExpired() {
         Date expiresAt = getExpiresAt();
         if (expiresAt == null) {

src/main/java/org/gitlab4j/api/utils/AccessTokenUtils.java

@@ -98,7 +98,8 @@ public String toString() {
     protected static final String PERSONAL_ACCESS_TOKEN_REGEX = "\\{\"new_token\":\"([^\"]*)\"";
     protected static final Pattern PERSONAL_ACCESS_TOKEN_PATTERN = Pattern.compile(PERSONAL_ACCESS_TOKEN_REGEX);
 
-    protected static final String REVOKE_PERSONAL_ACCESS_TOKEN_REGEX = "href=\\\"([^\\\"]*)\\\"";
+    protected static final String REVOKE_PERSONAL_ACCESS_TOKEN_REGEX =
+        "\\{.*?"name":"(.*?)",.*?"scopes":\\[(.*?)\\],.*?"revoke_path":"(.*?)"\\}";
     protected static final Pattern REVOKE_PERSONAL_ACCESS_TOKEN_PATTERN = Pattern.compile(REVOKE_PERSONAL_ACCESS_TOKEN_REGEX);
 
     protected static final String FEED_TOKEN_REGEX = "<div data-tokens-data=\\\"\\{.*&quot;feed_token&quot;:\\{.*?&quot;token&quot;:&quot;(.*?)&quot;,";
@@ -325,49 +326,59 @@ public static final void revokePersonalAccessToken(final String baseUrl, final S
              * Step 3: Submit the /profile/personal_access_tokens page with the info to    *
              * revoke the first matching personal access token.                            *
              *******************************************************************************/
-            int indexOfTokenName = content.indexOf("<td>" + tokenName + "</td>");
-            if (indexOfTokenName == -1) {
+            String tokensDataAttribute = "data-initial-active-access-tokens";
+            int indexOfStartOfTokensJsonData = content.indexOf(tokensDataAttribute);
+            if (indexOfStartOfTokensJsonData == -1) {
                 throw new GitLabApiException("personal access token not found, aborting!");
             }
+            indexOfStartOfTokensJsonData += tokensDataAttribute.length() + 2; // attribute name + ="
 
-            content = content.substring(indexOfTokenName);
-            int indexOfLinkEnd = content.indexOf("</a>");
-            if (indexOfTokenName == -1) {
+            content = content.substring(indexOfStartOfTokensJsonData);
+            int indexOfEndOfTokensJsonData = content.indexOf("\"");
+            if (indexOfEndOfTokensJsonData == -1) {
                 throw new GitLabApiException("personal access token not found, aborting!");
             }
 
-            content = content.substring(0, indexOfLinkEnd);
-            String scopesText = "";
-            if (scopes != null && scopes.size() > 0) {
-                final StringJoiner joiner = new StringJoiner(", ");
-                scopes.forEach(s -> joiner.add(s.toString()));
-                scopesText = joiner.toString();
-            }
+            content = content.substring(0, indexOfEndOfTokensJsonData);
 
-            if (content.indexOf(scopesText) == -1) {
+            matcher = REVOKE_PERSONAL_ACCESS_TOKEN_PATTERN.matcher(content);
+            if (!matcher.find()) {
                 throw new GitLabApiException("personal access token not found, aborting!");
             }
 
-            matcher = REVOKE_PERSONAL_ACCESS_TOKEN_PATTERN.matcher(content);
-            if (!matcher.find()) {
+            // the first token returned should be the one we want to revoke
+            // iterate over the remaining matches if that changes
+            String foundTokenName = matcher.group(1);
+            String foundTokenScopes = matcher.group(2); // eg: &quot;api&quot;,&quot;sudo&quot;
+            foundTokenScopes = foundTokenScopes.replace("&quot;", "");
+            String foundTokenRevokePath = matcher.group(3);
+
+            String expectedScopesText = "";
+            if (scopes != null && scopes.size() > 0) {
+                final StringJoiner joiner = new StringJoiner(",");
+                scopes.forEach(s -> joiner.add(s.toString()));
+                expectedScopesText = joiner.toString();
+            }
+
+            if (!foundTokenName.equals(tokenName) || !foundTokenScopes.equals(expectedScopesText)) {
                 throw new GitLabApiException("personal access token not found, aborting!");
             }
 
-            String revokePath = matcher.group(1);
-            url = new URL(baseUrl + revokePath);
+            url = new URL(baseUrl + foundTokenRevokePath);
             connection = (HttpURLConnection) url.openConnection();
             connection.setRequestProperty("User-Agent", USER_AGENT);
             connection.setRequestProperty("Content-Type", "application/x-www-form-urlencoded");
             connection.setRequestProperty("Charset", "utf-8");
             connection.setRequestProperty("Cookie", cookies);
             connection.setReadTimeout(10000);
             connection.setConnectTimeout(10000);
-            connection.setRequestMethod("PUT");
+            connection.setRequestMethod("POST");
             connection.setDoInput(true);
             connection.setDoOutput(true);
 
             // Submit the form
             StringBuilder formData = new StringBuilder();
+            addFormData(formData, "_method", "put");
             addFormData(formData, "authenticity_token", csrfToken);
             connection.setRequestProperty("Content-Length", String.valueOf(formData.length()));
             OutputStream output = connection.getOutputStream();

src/test/java/org/gitlab4j/api/TestGroupApi.java

@@ -219,7 +219,7 @@ public void testRequestAccess() throws GitLabApiException {
             }
 
             Stream<AccessRequest> requests = gitLabApi.getGroupApi().getAccessRequestsStream(testGroup);
-            assertTrue(requests.anyMatch(r -> r.getId() == userId));
+            assertTrue(requests.anyMatch(r -> r.getId().equals(userId)));
 
             AccessRequest accessRequest = gitLabApi.getGroupApi().approveAccessRequest(testGroup, user.getId(), AccessLevel.DEVELOPER);
             assertNotNull(accessRequest);
@@ -264,7 +264,7 @@ public void testDenyRequestAccess() throws GitLabApiException {
             }
 
             List<AccessRequest> requests = gitLabApi.getGroupApi().getAccessRequests(testGroup);
-            assertTrue(requests.stream().anyMatch(r -> r.getId() == userId));
+            assertTrue(requests.stream().anyMatch(r -> r.getId().equals(userId)));
 
             gitLabApi.getGroupApi().denyAccessRequest(testGroup, userId);
 

src/test/java/org/gitlab4j/api/TestProjectApi.java

@@ -807,7 +807,7 @@ public void testRequestAccess() throws GitLabApiException {
             }
 
             Stream<AccessRequest> requests = gitLabApi.getProjectApi().getAccessRequestsStream(testProject);
-            assertTrue(requests.anyMatch(r -> r.getId() == userId));
+            assertTrue(requests.anyMatch(r -> r.getId().equals(userId)));
 
             AccessRequest accessRequest = gitLabApi.getProjectApi().approveAccessRequest(testProject, user.getId(), AccessLevel.DEVELOPER);
             assertNotNull(accessRequest);
@@ -817,7 +817,7 @@ public void testRequestAccess() throws GitLabApiException {
             user = null;
 
             requests = gitLabApi.getProjectApi().getAccessRequestsStream(testProject);
-            assertFalse(requests.anyMatch(r -> r.getId() == userId));
+            assertFalse(requests.anyMatch(r -> r.getId().equals(userId)));
 
         } finally {
             try {
@@ -852,12 +852,12 @@ public void testDenyRequestAccess() throws GitLabApiException {
             }
 
             List<AccessRequest> requests = gitLabApi.getProjectApi().getAccessRequests(testProject);
-            assertTrue(requests.stream().anyMatch(r -> r.getId() == userId));
+            assertTrue(requests.stream().anyMatch(r -> r.getId().equals(userId)));
 
             gitLabApi.getProjectApi().denyAccessRequest(testProject, userId);
 
             requests = gitLabApi.getProjectApi().getAccessRequests(testProject);
-            assertFalse(requests.stream().anyMatch(r -> r.getId() == userId));
+            assertFalse(requests.stream().anyMatch(r -> r.getId().equals(userId)));
 
             user = null;
 

src/test/resources/org/gitlab4j/api/oauth-token.json

@@ -1,7 +1,8 @@
 {
     "access_token": "7e6f7f02d5ce8e5c3d2123a210674ccea6b70547c77132b0dca502f8a4df760f",
     "token_type": "bearer",
+    "expires_in": 7200,
     "refresh_token": "c29a678544ceb726a2a605e44502fa5cad8752cfab42aeae21413cacb703178f",
     "scope": "api",
     "created_at": 1514489666
-}
+}