This repository was archived by the owner on Apr 23, 2019. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 19
/
Copy pathrest.test.js
153 lines (129 loc) · 4.62 KB
/
rest.test.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
const feathers = require('@feathersjs/feathers');
const rest = require('@feathersjs/rest-client');
const localstorage = require('localstorage-memory');
const superagent = require('superagent');
const { expect } = require('chai');
const authentication = require('../../lib/index');
const createApplication = require('../fixtures/server');
const port = 8998;
const baseURL = `http://localhost:${port}`;
const app = createApplication({ secret: 'supersecret' });
let options;
describe('REST client authentication', () => {
let server;
let client;
before(done => {
server = app.listen(port);
server.once('listening', () => {
client = feathers()
.configure(rest(baseURL).superagent(superagent))
.configure(authentication());
done();
});
});
beforeEach(() => {
options = {
strategy: 'local',
email: 'admin@feathersjs.com',
password: 'admin'
};
});
after(done => {
server.close();
done();
});
it('can use client.passport.getJWT() to get the accessToken', () => {
return client.authenticate(options).then(response => {
client.passport.getJWT().then(accessToken => {
expect(accessToken).to.equal(response.accessToken);
});
});
});
it('can decode a accessToken with client.passport.verifyToken()', () => {
return client.authenticate(options).then(response => {
return client.passport.verifyJWT(response.accessToken).then(payload => {
expect(payload.userId).to.equal(0);
expect(payload.iss).to.equal('feathers');
expect(payload.sub).to.equal('anonymous');
});
});
});
it('local username password authentication', () => {
return client.authenticate(options).then(response => {
expect(response.accessToken).to.not.equal(undefined);
expect(client.get('accessToken')).to.deep.equal(response.accessToken);
});
});
it('`authenticated` event', done => {
client.once('authenticated', response => {
try {
expect(response.accessToken).to.not.equal(undefined);
expect(client.get('accessToken')).to.deep.equal(response.accessToken);
done();
} catch (e) {
done(e);
}
});
client.authenticate(options);
});
it('local username password authentication and access to protected service', () => {
return client.authenticate(options).then(response => {
expect(response.accessToken).to.not.equal(undefined);
return client.service('users').get(0).then(user => {
expect(user.id).to.equal(0);
});
});
});
it('local authentication with wrong credentials fails', () => {
options.password = 'this is wrong';
return client.authenticate(options).catch(error => {
expect(error.name).to.equal('NotAuthenticated');
expect(error.code).to.equal(401);
});
});
it('authentication with no options and no stored accessToken fails', () => {
return client.authenticate().catch(error => {
expect(error.message).to.equal('Could not find stored JWT and no authentication type was given');
expect(error.code).to.equal(401);
});
});
it('uses localStorage compatible stores', () => {
const oldStorage = client.get('storage');
client.set('storage', localstorage);
return client.authenticate(options).then(response => {
expect(response.accessToken).to.equal(localstorage.getItem('feathers-jwt'));
client.set('storage', oldStorage);
});
});
it('accessToken is stored and re-authentication with stored accessToken works', () => {
return client.authenticate(options).then(response => {
expect(response.accessToken).to.not.equal(undefined);
return client.authenticate().then(response => {
expect(client.get('accessToken')).to.equal(response.accessToken);
});
});
});
it('.logout works, does not grant access to protected service and accessToken is removed from localstorage', () => {
return client.authenticate(options).then(response => {
expect(response.accessToken).to.not.equal(undefined);
return client.logout();
})
.then(() => {
expect(client.get('accessToken')).to.equal(null);
return Promise.resolve(client.get('storage').getItem('feathers-jwt'));
})
.then(accessToken => {
expect(accessToken).to.equal(undefined);
return client.service('users').get(0).catch(error => {
expect(error.code).to.equal(401);
});
});
});
it('`logout` event', done => {
client.once('logout', () => done());
client.authenticate(options).then(response => {
expect(response.accessToken).to.not.equal(undefined);
return client.logout();
});
});
});