Home/ Questions/Q 9290377
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-06-18T20:24:21+00:00

I want to test a controller action using Action composition. Here’s an example of

  • 0

I want to test a controller action using Action composition.
Here’s an example of the composed action and its test code.

The Secured trait:

trait Secured {
   def username(request: RequestHeader) = request.session.get(Security.username)
   def onUnauthorized(request: RequestHeader) = Results.Redirect(routes.Auth.login)

   def withAuth(f: => String => Request[AnyContent] => Result) = {
      Security.Authenticated(username, onUnauthorized) { user =>
        Action(request => f(user)(request))
   }
}

The controller:

MyController extends Contrller with Secured {
   def simple = Action { Ok("ok") }
   def simpleWithauth = withAuth { implicit username => implicit request=> Ok("ok") }
}

The test code:

// This work fine
val result1 = controller.simple()(FakeRequest())

// This wont compile
val result2 = controller.simpleWithAuth()(FakeRequest())

The latter would require a Request[Action[AnyContent], AnyContent]
but FakeRequest returns a Request[AnyContent]

Any pointers on how to create a fake request of the appropriate type?

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    This is what I had to do to test secured action 

    def wrappedActionResult[A](wrapped: Action[(Action[A], A)], request: Request[A]): Result = wrapped.parser(request).run.await.get match {
  case Left(errorResult) => errorResult
  case Right((innerAction, _)) => innerAction(request)
}

    and the test

        running(app) {
      val result = wrappedActionResult(FakeController().securedAction, invalidRequest)
      status(result) must_== UNAUTHORIZED
      contentAsString(result) must_== "must be authenticated"
    }

    That doesn’t work with Play 2.1 though, types have been changed…

    UPDATE:
    in Play 2.1 it’s even easier

    I’ve added some sugar

    implicit class ActionExecutor(action: EssentialAction) {
  def process[A](request: Request[A]): Result = concurrent.Await.result(action(request).run, Duration(1, "sec"))
}

    and the test now looks like this

      running(app) {
    val result = FakeController().securedAction process invalidRequest
    status(result) must_== UNAUTHORIZED
    contentAsString(result) must_== "must be authenticated"
  }

    UPDATE: here is a related blog post i wrote sometime ago
    http://www.daodecode.com/blog/2013/03/08/testing-security-dot-authenticated-in-play-2-dot-0-and-2-dot-1/

    • 0