Mirrors/unleash.unleash
1
0
Fork 0
mirror of https://github.com/Unleash/unleash.git synced 2025-01-25 00:07:47 +01:00
Code Issues Projects Releases Wiki Activity
b7b19de442
unleash.unleash/src/lib/middleware/api-token-middleware.test.ts

162 lines
3.5 KiB
TypeScript
Raw Normal View History

Feat: Api-Tokens (#774) fixes: #774
2021-03-29 19:58:11 +02:00
import test from 'ava';
import sinon from 'sinon';
import apiTokenMiddleware from './api-token-middleware';
import getLogger from '../../test/fixtures/no-logger';
import User from '../user';
import { CLIENT } from '../permissions';
let config: any;
test.beforeEach(() => {
config = {
getLogger,
authentication: {
enableApiToken: true,
},
};
});
test('should not do anything if request does not contain a authorization', async t => {
const apiTokenService = {
getUserForToken: sinon.fake(),
};
const func = apiTokenMiddleware(config, { apiTokenService });
const cb = sinon.fake();
const req = {
header: sinon.fake(),
};
await func(req, undefined, cb);
t.true(req.header.calledOnce);
t.true(cb.calledOnce);
});
test('should not add user if unknown token', async t => {
const apiTokenService = {
getUserForToken: sinon.fake(),
};
const func = apiTokenMiddleware(config, { apiTokenService });
const cb = sinon.fake();
const req = {
header: sinon.fake.returns('some-token'),
user: undefined,
};
await func(req, undefined, cb);
t.true(cb.called);
t.true(req.header.called);
t.falsy(req.user);
});
test('should add user if unknown token', async t => {
const apiUser = new User({
isAPI: true,
username: 'default',
permissions: [CLIENT],
});
const apiTokenService = {
getUserForToken: sinon.fake.returns(apiUser),
};
const func = apiTokenMiddleware(config, { apiTokenService });
const cb = sinon.fake();
const req = {
header: sinon.fake.returns('some-known-token'),
user: undefined,
};
await func(req, undefined, cb);
t.true(cb.called);
t.true(req.header.called);
t.is(req.user, apiUser);
});
test('should not add user if disabled', async t => {
const apiUser = new User({
isAPI: true,
username: 'default',
permissions: [CLIENT],
});
const apiTokenService = {
getUserForToken: sinon.fake.returns(apiUser),
};
const disabledConfig = {
getLogger,
authentication: {
enableApiToken: false,
},
};
const func = apiTokenMiddleware(disabledConfig, { apiTokenService });
const cb = sinon.fake();
const req = {
header: sinon.fake.returns('some-known-token'),
user: undefined,
};
await func(req, undefined, cb);
t.true(cb.called);
t.falsy(req.user);
});
test('should call next if apiTokenService throws', async t => {
getLogger.setMuteError(true);
const apiTokenService = {
getUserForToken: () => {
throw new Error('hi there, i am stupid');
},
};
const func = apiTokenMiddleware(config, { apiTokenService });
const cb = sinon.fake();
const req = {
header: sinon.fake.returns('some-token'),
user: undefined,
};
await func(req, undefined, cb);
t.true(cb.called);
getLogger.setMuteError(false);
});
test('should call next if apiTokenService throws x2', async t => {
const apiTokenService = {
getUserForToken: () => {
throw new Error('hi there, i am stupid');
},
};
const func = apiTokenMiddleware(config, { apiTokenService });
const cb = sinon.fake();
const req = {
header: sinon.fake.returns('some-token'),
user: undefined,
};
await func(req, undefined, cb);
t.true(cb.called);
});
Reference in New Issue Copy Permalink