Matteo Cominetti
189 lines
7.5 KiB
JavaScript
189 lines
7.5 KiB
JavaScript
/* istanbul ignore file */
|
|
const expect = require( 'chai' ).expect
|
|
const assert = require( 'assert' )
|
|
const appRoot = require( 'app-root-path' )
|
|
|
|
const { createUser } = require( `${appRoot}/modules/core/services/users` )
|
|
const { validateToken } = require( `${appRoot}/modules/core/services/tokens` )
|
|
const { beforeEachContext } = require( `${appRoot}/test/hooks` )
|
|
const { getApp, getAllPublicApps, createApp, updateApp, deleteApp, createAuthorizationCode, createAppTokenFromAccessCode, refreshAppToken, revokeExistingAppCredentialsForUser } = require( '../services/apps' )
|
|
|
|
describe( 'Services @apps-services', ( ) => {
|
|
let actor = {
|
|
name: 'Dimitrie Stefanescu',
|
|
email: 'didimitrie@gmail.com',
|
|
password: 'wtfwtfwtf'
|
|
}
|
|
|
|
before( async () => {
|
|
await beforeEachContext( )
|
|
actor.id = await createUser( actor )
|
|
} )
|
|
|
|
it( 'Should get the frontend main app', async ( ) => {
|
|
let app = await getApp( { id: 'spklwebapp' } )
|
|
expect( app ).to.be.an( 'object' )
|
|
expect( app.redirectUrl ).to.be.a( 'string' )
|
|
expect( app.scopes ).to.be.a( 'array' )
|
|
} )
|
|
|
|
it( 'Should get the desktop manager app', async ( ) => {
|
|
let app = await getApp( { id: 'sdm' } )
|
|
expect( app ).to.be.an( 'object' )
|
|
expect( app.redirectUrl ).to.be.a( 'string' )
|
|
expect( app.scopes ).to.be.a( 'array' )
|
|
} )
|
|
|
|
it( 'Should get the explorer app', async ( ) => {
|
|
let app = await getApp( { id: 'explorer' } )
|
|
expect( app ).to.be.an( 'object' )
|
|
expect( app.redirectUrl ).to.be.a( 'string' )
|
|
expect( app.scopes ).to.be.a( 'array' )
|
|
} )
|
|
|
|
it( 'Should get the excel app', async ( ) => {
|
|
let app = await getApp( { id: 'spklexcel' } )
|
|
expect( app ).to.be.an( 'object' )
|
|
expect( app.redirectUrl ).to.be.a( 'string' )
|
|
expect( app.scopes ).to.be.a( 'array' )
|
|
} )
|
|
|
|
let myTestApp = null
|
|
|
|
it( 'Should register an app', async ( ) => {
|
|
const res = await createApp( { name: 'test application', public: true, scopes: [ 'streams:read' ], redirectUrl: 'http://localhost:1335' } )
|
|
|
|
expect( res ).to.have.property( 'id' )
|
|
expect( res ).to.have.property( 'secret' )
|
|
|
|
expect( res.id ).to.be.a( 'string' )
|
|
expect( res.secret ).to.be.a( 'string' )
|
|
|
|
let app = await getApp( { id: res.id } )
|
|
expect( app.id ).to.equal( res.id )
|
|
myTestApp = app
|
|
} )
|
|
|
|
it( 'Should get all the public apps on this server', async ( ) => {
|
|
let apps = await getAllPublicApps( )
|
|
expect( apps ).to.be.an( 'array' )
|
|
expect( apps.length ).to.equal( 6 )
|
|
} )
|
|
|
|
it( 'Should fail to register an app with no scopes', async ( ) => {
|
|
try {
|
|
const res = await createApp( { name: 'test application2', redirectUrl: 'http://localhost:1335' } )
|
|
assert.fail( )
|
|
} catch ( e ) {
|
|
// pass
|
|
}
|
|
} )
|
|
|
|
it( 'Should update an app', async ( ) => {
|
|
const res = await updateApp( { app: { name: 'updated test application', id: myTestApp.id, scopes: [ 'streams:read', 'users:read' ] } } )
|
|
expect( res ).to.be.a( 'string' )
|
|
|
|
let app = await getApp( { id: myTestApp.id } )
|
|
expect( app.name ).to.equal( 'updated test application' )
|
|
expect( app.scopes ).to.be.an( 'array' )
|
|
expect( app.scopes.map( s => s.name ) ).to.include( 'users:read' )
|
|
expect( app.scopes.map( s => s.name ) ).to.include( 'streams:read' )
|
|
} )
|
|
|
|
let challenge = 'random'
|
|
let authorizationCode = null
|
|
|
|
it( 'Should get an authorization code for the app', async ( ) => {
|
|
authorizationCode = await createAuthorizationCode( { appId: myTestApp.id, userId: actor.id, challenge } )
|
|
expect( authorizationCode ).to.be.a( 'string' )
|
|
} )
|
|
|
|
let tokenCreateResponse = null
|
|
|
|
it( 'Should get an api token in exchange for the authorization code ', async ( ) => {
|
|
const response = await createAppTokenFromAccessCode( { appId: myTestApp.id, appSecret: myTestApp.secret, accessCode: authorizationCode, challenge: 'random' } )
|
|
expect( response ).to.have.property( 'token' )
|
|
expect( response.token ).to.be.a( 'string' )
|
|
expect( response ).to.have.property( 'refreshToken' )
|
|
expect( response.refreshToken ).to.be.a( 'string' )
|
|
|
|
tokenCreateResponse = response
|
|
|
|
let validation = await validateToken( response.token )
|
|
expect( validation.valid ).to.equal( true )
|
|
expect( validation.userId ).to.equal( actor.id )
|
|
expect( validation.scopes[ 0 ] ).to.equal( 'streams:read' )
|
|
} )
|
|
|
|
it( 'Should refresh the token using the refresh token, and get a fresh refresh token and token', async ( ) => {
|
|
const res = await refreshAppToken( { refreshToken: tokenCreateResponse.refreshToken, appId: myTestApp.id, appSecret: myTestApp.secret, userId: actor.id } )
|
|
|
|
expect( res.token ).to.be.a( 'string' )
|
|
expect( res.refreshToken ).to.be.a( 'string' )
|
|
|
|
let validation = await validateToken( res.token )
|
|
expect( validation.valid ).to.equal( true )
|
|
expect( validation.userId ).to.equal( actor.id )
|
|
} )
|
|
|
|
it( 'Should invalidate all tokens, refresh tokens and access codes for an app if it is updated', async ( ) => {
|
|
let unusedAccessCode = await createAuthorizationCode( { appId: myTestApp.id, userId: actor.id, challenge } )
|
|
let usedAccessCode = await createAuthorizationCode( { appId: myTestApp.id, userId: actor.id, challenge } )
|
|
let apiTokenResponse = await createAppTokenFromAccessCode( { appId: myTestApp.id, appSecret: myTestApp.secret, accessCode: usedAccessCode, challenge: challenge } )
|
|
|
|
// We now have one unused access code, an api token and a refresh token.
|
|
// Proceed to update the app:
|
|
const res = await updateApp( { app: { name: 'updated test application', id: myTestApp.id, scopes: [ 'streams:write', 'users:read' ] } } )
|
|
|
|
let validationResponse = await validateToken( apiTokenResponse.token )
|
|
expect( validationResponse.valid ).to.equal( false )
|
|
|
|
try {
|
|
let refresh = await refreshAppToken( { refreshToken: apiTokenResponse.refreshToken, appId: myTestApp.id, appSecret: myTestApp.secret } )
|
|
assert.fail( 'Should not be able to refresh token' )
|
|
} catch ( e ) {
|
|
// Pass
|
|
}
|
|
|
|
try {
|
|
let token = await createAppTokenFromAccessCode( { appId: myTestApp.id, appSecret: myTestApp.secret, accessCode: unusedAccessCode, challenge: 'random' } )
|
|
assert.fail( 'Should not be able to generate new token using old access code' )
|
|
} catch ( e ) {
|
|
// Pass
|
|
}
|
|
} )
|
|
|
|
it( 'Should revoke access for a given user', async ( ) => {
|
|
let secondUser = {
|
|
name: 'Dimitrie Stefanescu',
|
|
email: 'didimitrie.wow@gmail.com',
|
|
password: 'wtfwtfwtf'
|
|
}
|
|
|
|
secondUser.id = await createUser( secondUser )
|
|
let accesCode = await createAuthorizationCode( { appId: myTestApp.id, userId: secondUser.id, challenge } )
|
|
let apiTokenResponse = await createAppTokenFromAccessCode( { appId: myTestApp.id, appSecret: myTestApp.secret, accessCode: accesCode, challenge: challenge } )
|
|
|
|
const res = await revokeExistingAppCredentialsForUser( { appId: myTestApp.id, userId: secondUser.id } )
|
|
|
|
try {
|
|
let refresh = await refreshAppToken( { refreshToken: apiTokenResponse.refreshToken, appId: myTestApp.id, appSecret: myTestApp.secret } )
|
|
assert.fail( 'Should not be able to refresh token' )
|
|
} catch ( e ) {
|
|
// Pass
|
|
}
|
|
|
|
try {
|
|
let token = await createAppTokenFromAccessCode( { appId: myTestApp.id, appSecret: myTestApp.secret, accessCode: unusedAccessCode, challenge: 'random' } )
|
|
assert.fail( 'Should not be able to generate new token using old access code' )
|
|
} catch ( e ) {
|
|
// Pass
|
|
}
|
|
} )
|
|
|
|
it( 'Should delete an app', async ( ) => {
|
|
const res = await deleteApp( { id: myTestApp.id } )
|
|
expect( res ).to.equal( 1 )
|
|
} )
|
|
} )
|