2024-03-18 13:58:05 +01:00
|
|
|
import dbInit, { type ITestDb } from '../helpers/database-init';
|
2021-03-29 19:58:11 +02:00
|
|
|
import getLogger from '../../fixtures/no-logger';
|
|
|
|
|
import { ApiTokenService } from '../../../lib/services/api-token-service';
|
2021-04-22 15:04:08 +02:00
|
|
|
import { createTestConfig } from '../../config/test-config';
|
2024-03-18 13:58:05 +01:00
|
|
|
import {
|
|
|
|
|
ApiTokenType,
|
|
|
|
|
type IApiToken,
|
|
|
|
|
} from '../../../lib/types/models/api-token';
|
2021-09-24 13:55:00 +02:00
|
|
|
import { DEFAULT_ENV } from '../../../lib/util/constants';
|
2021-11-02 15:13:46 +01:00
|
|
|
import { addDays, subDays } from 'date-fns';
|
2024-03-18 13:58:05 +01:00
|
|
|
import type ProjectService from '../../../lib/features/project/project-service';
|
2023-10-04 12:20:27 +02:00
|
|
|
import { createProjectService } from '../../../lib/features';
|
2023-10-09 10:54:00 +02:00
|
|
|
import { EventService } from '../../../lib/services';
|
2024-03-18 13:58:05 +01:00
|
|
|
import type { IUnleashStores } from '../../../lib/types';
|
2021-03-29 19:58:11 +02:00
|
|
|
|
2024-01-12 10:25:59 +01:00
|
|
|
let db: ITestDb;
|
|
|
|
|
let stores: IUnleashStores;
|
2021-03-29 19:58:11 +02:00
|
|
|
let apiTokenService: ApiTokenService;
|
2022-04-06 08:11:41 +02:00
|
|
|
let projectService: ProjectService;
|
2021-03-29 19:58:11 +02:00
|
|
|
|
2021-05-28 11:10:24 +02:00
|
|
|
beforeAll(async () => {
|
2021-04-22 15:04:08 +02:00
|
|
|
const config = createTestConfig({
|
2021-04-22 10:07:10 +02:00
|
|
|
server: { baseUriPath: '/test' },
|
2024-02-06 15:14:08 +01:00
|
|
|
experimental: {
|
|
|
|
|
flags: {
|
|
|
|
|
useMemoizedActiveTokens: true,
|
|
|
|
|
},
|
|
|
|
|
},
|
2021-04-22 10:07:10 +02:00
|
|
|
});
|
2021-04-09 13:46:53 +02:00
|
|
|
db = await dbInit('api_token_service_serial', getLogger);
|
2021-03-29 19:58:11 +02:00
|
|
|
stores = db.stores;
|
2023-09-27 15:23:05 +02:00
|
|
|
const eventService = new EventService(stores, config);
|
2022-04-06 08:11:41 +02:00
|
|
|
const project = {
|
|
|
|
|
id: 'test-project',
|
|
|
|
|
name: 'Test Project',
|
|
|
|
|
description: 'Fancy',
|
2023-03-16 15:29:52 +01:00
|
|
|
mode: 'open' as const,
|
2023-04-12 15:22:13 +02:00
|
|
|
defaultStickiness: 'clientId',
|
2022-04-06 08:11:41 +02:00
|
|
|
};
|
|
|
|
|
const user = await stores.userStore.insert({
|
|
|
|
|
name: 'Some Name',
|
|
|
|
|
email: 'test@getunleash.io',
|
|
|
|
|
});
|
2023-10-04 12:20:27 +02:00
|
|
|
projectService = createProjectService(db.rawDatabase, config);
|
2022-04-06 08:11:41 +02:00
|
|
|
|
|
|
|
|
await projectService.createProject(project, user);
|
|
|
|
|
|
2023-09-27 15:23:05 +02:00
|
|
|
apiTokenService = new ApiTokenService(stores, config, eventService);
|
2021-03-29 19:58:11 +02:00
|
|
|
});
|
|
|
|
|
|
2021-05-28 11:10:24 +02:00
|
|
|
afterAll(async () => {
|
|
|
|
|
if (db) {
|
|
|
|
|
await db.destroy();
|
|
|
|
|
}
|
2021-03-29 19:58:11 +02:00
|
|
|
});
|
2021-05-28 11:10:24 +02:00
|
|
|
afterEach(async () => {
|
2021-03-29 19:58:11 +02:00
|
|
|
const tokens = await stores.apiTokenStore.getAll();
|
|
|
|
|
const deleteAll = tokens.map((t: IApiToken) =>
|
|
|
|
|
stores.apiTokenStore.delete(t.secret),
|
|
|
|
|
);
|
|
|
|
|
await Promise.all(deleteAll);
|
|
|
|
|
});
|
|
|
|
|
|
2021-05-28 11:10:24 +02:00
|
|
|
test('should have empty list of tokens', async () => {
|
2021-03-29 19:58:11 +02:00
|
|
|
const allTokens = await apiTokenService.getAllTokens();
|
|
|
|
|
const activeTokens = await apiTokenService.getAllTokens();
|
2021-05-28 11:10:24 +02:00
|
|
|
expect(allTokens.length).toBe(0);
|
|
|
|
|
expect(activeTokens.length).toBe(0);
|
2021-03-29 19:58:11 +02:00
|
|
|
});
|
|
|
|
|
|
2021-05-28 11:10:24 +02:00
|
|
|
test('should create client token', async () => {
|
2021-09-15 20:28:10 +02:00
|
|
|
const token = await apiTokenService.createApiToken({
|
2023-05-04 09:56:00 +02:00
|
|
|
tokenName: 'default-client',
|
2021-03-29 19:58:11 +02:00
|
|
|
type: ApiTokenType.CLIENT,
|
2021-09-15 20:28:10 +02:00
|
|
|
project: '*',
|
2021-09-24 13:55:00 +02:00
|
|
|
environment: DEFAULT_ENV,
|
2021-03-29 19:58:11 +02:00
|
|
|
});
|
|
|
|
|
const allTokens = await apiTokenService.getAllTokens();
|
|
|
|
|
|
2021-05-28 11:10:24 +02:00
|
|
|
expect(allTokens.length).toBe(1);
|
|
|
|
|
expect(token.secret.length > 32).toBe(true);
|
|
|
|
|
expect(token.type).toBe(ApiTokenType.CLIENT);
|
|
|
|
|
expect(token.username).toBe('default-client');
|
|
|
|
|
expect(allTokens[0].secret).toBe(token.secret);
|
2021-03-29 19:58:11 +02:00
|
|
|
});
|
|
|
|
|
|
2021-05-28 11:10:24 +02:00
|
|
|
test('should create admin token', async () => {
|
2021-09-15 20:28:10 +02:00
|
|
|
const token = await apiTokenService.createApiToken({
|
2023-05-04 09:56:00 +02:00
|
|
|
tokenName: 'admin',
|
2021-03-29 19:58:11 +02:00
|
|
|
type: ApiTokenType.ADMIN,
|
2021-09-15 20:28:10 +02:00
|
|
|
project: '*',
|
|
|
|
|
environment: '*',
|
2021-03-29 19:58:11 +02:00
|
|
|
});
|
|
|
|
|
|
2021-05-28 11:10:24 +02:00
|
|
|
expect(token.secret.length > 32).toBe(true);
|
|
|
|
|
expect(token.type).toBe(ApiTokenType.ADMIN);
|
2021-03-29 19:58:11 +02:00
|
|
|
});
|
|
|
|
|
|
2021-05-28 11:10:24 +02:00
|
|
|
test('should set expiry of token', async () => {
|
2021-03-29 19:58:11 +02:00
|
|
|
const time = new Date('2022-01-01');
|
2021-09-15 20:28:10 +02:00
|
|
|
await apiTokenService.createApiToken({
|
2023-05-04 09:56:00 +02:00
|
|
|
tokenName: 'default-client',
|
2021-03-29 19:58:11 +02:00
|
|
|
type: ApiTokenType.CLIENT,
|
|
|
|
|
expiresAt: time,
|
2021-09-15 20:28:10 +02:00
|
|
|
project: '*',
|
2021-09-24 13:55:00 +02:00
|
|
|
environment: DEFAULT_ENV,
|
2021-03-29 19:58:11 +02:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
const [token] = await apiTokenService.getAllTokens();
|
|
|
|
|
|
2021-05-28 11:10:24 +02:00
|
|
|
expect(token.expiresAt).toEqual(time);
|
2021-03-29 19:58:11 +02:00
|
|
|
});
|
|
|
|
|
|
2021-05-28 11:10:24 +02:00
|
|
|
test('should update expiry of token', async () => {
|
2021-03-29 19:58:11 +02:00
|
|
|
const time = new Date('2022-01-01');
|
|
|
|
|
const newTime = new Date('2023-01-01');
|
|
|
|
|
|
2022-11-28 10:56:34 +01:00
|
|
|
const token = await apiTokenService.createApiToken(
|
|
|
|
|
{
|
2023-05-04 09:56:00 +02:00
|
|
|
tokenName: 'default-client',
|
2022-11-28 10:56:34 +01:00
|
|
|
type: ApiTokenType.CLIENT,
|
|
|
|
|
expiresAt: time,
|
|
|
|
|
project: '*',
|
|
|
|
|
environment: DEFAULT_ENV,
|
|
|
|
|
},
|
|
|
|
|
'tester',
|
|
|
|
|
);
|
2021-03-29 19:58:11 +02:00
|
|
|
|
2023-12-14 13:45:25 +01:00
|
|
|
await apiTokenService.updateExpiry(token.secret, newTime, 'tester', -9999);
|
2021-03-29 19:58:11 +02:00
|
|
|
|
|
|
|
|
const [updatedToken] = await apiTokenService.getAllTokens();
|
|
|
|
|
|
2021-05-28 11:10:24 +02:00
|
|
|
expect(updatedToken.expiresAt).toEqual(newTime);
|
2021-03-29 19:58:11 +02:00
|
|
|
});
|
|
|
|
|
|
2021-05-28 11:10:24 +02:00
|
|
|
test('should only return valid tokens', async () => {
|
2021-11-02 15:13:46 +01:00
|
|
|
const now = Date.now();
|
|
|
|
|
const yesterday = subDays(now, 1);
|
|
|
|
|
const tomorrow = addDays(now, 1);
|
2021-03-29 19:58:11 +02:00
|
|
|
|
2021-09-15 20:28:10 +02:00
|
|
|
await apiTokenService.createApiToken({
|
2023-05-04 09:56:00 +02:00
|
|
|
tokenName: 'default-expired',
|
2021-03-29 19:58:11 +02:00
|
|
|
type: ApiTokenType.CLIENT,
|
2021-11-02 15:13:46 +01:00
|
|
|
expiresAt: yesterday,
|
2021-09-15 20:28:10 +02:00
|
|
|
project: '*',
|
2021-09-24 13:55:00 +02:00
|
|
|
environment: DEFAULT_ENV,
|
2021-03-29 19:58:11 +02:00
|
|
|
});
|
|
|
|
|
|
2021-09-15 20:28:10 +02:00
|
|
|
const activeToken = await apiTokenService.createApiToken({
|
2023-05-04 09:56:00 +02:00
|
|
|
tokenName: 'default-valid',
|
2021-03-29 19:58:11 +02:00
|
|
|
type: ApiTokenType.CLIENT,
|
|
|
|
|
expiresAt: tomorrow,
|
2021-09-15 20:28:10 +02:00
|
|
|
project: '*',
|
2021-09-24 13:55:00 +02:00
|
|
|
environment: DEFAULT_ENV,
|
2021-03-29 19:58:11 +02:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
const tokens = await apiTokenService.getAllActiveTokens();
|
|
|
|
|
|
2021-05-28 11:10:24 +02:00
|
|
|
expect(tokens.length).toBe(1);
|
|
|
|
|
expect(activeToken.secret).toBe(tokens[0].secret);
|
2021-03-29 19:58:11 +02:00
|
|
|
});
|
2022-04-06 08:11:41 +02:00
|
|
|
|
|
|
|
|
test('should create client token with project list', async () => {
|
|
|
|
|
const token = await apiTokenService.createApiToken({
|
2023-05-04 09:56:00 +02:00
|
|
|
tokenName: 'default-client',
|
2022-04-06 08:11:41 +02:00
|
|
|
type: ApiTokenType.CLIENT,
|
|
|
|
|
projects: ['default', 'test-project'],
|
|
|
|
|
environment: DEFAULT_ENV,
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
expect(token.secret.slice(0, 2)).toEqual('[]');
|
|
|
|
|
expect(token.projects).toStrictEqual(['default', 'test-project']);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
test('should strip all other projects if ALL_PROJECTS is present', async () => {
|
|
|
|
|
const token = await apiTokenService.createApiToken({
|
2023-05-04 09:56:00 +02:00
|
|
|
tokenName: 'default-client',
|
2022-04-06 08:11:41 +02:00
|
|
|
type: ApiTokenType.CLIENT,
|
|
|
|
|
projects: ['*', 'default'],
|
|
|
|
|
environment: DEFAULT_ENV,
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
expect(token.projects).toStrictEqual(['*']);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
test('should return user with multiple projects', async () => {
|
|
|
|
|
const now = Date.now();
|
|
|
|
|
const tomorrow = addDays(now, 1);
|
|
|
|
|
|
2024-02-06 15:14:08 +01:00
|
|
|
const { secret: secret1 } = await apiTokenService.createApiToken({
|
2023-05-04 09:56:00 +02:00
|
|
|
tokenName: 'default-valid',
|
2022-04-06 08:11:41 +02:00
|
|
|
type: ApiTokenType.CLIENT,
|
|
|
|
|
expiresAt: tomorrow,
|
|
|
|
|
projects: ['test-project', 'default'],
|
|
|
|
|
environment: DEFAULT_ENV,
|
|
|
|
|
});
|
|
|
|
|
|
2024-02-06 15:14:08 +01:00
|
|
|
const { secret: secret2 } = await apiTokenService.createApiToken({
|
2023-05-04 09:56:00 +02:00
|
|
|
tokenName: 'default-also-valid',
|
2022-04-06 08:11:41 +02:00
|
|
|
type: ApiTokenType.CLIENT,
|
|
|
|
|
expiresAt: tomorrow,
|
|
|
|
|
projects: ['test-project'],
|
|
|
|
|
environment: DEFAULT_ENV,
|
|
|
|
|
});
|
|
|
|
|
|
2024-02-27 16:08:44 +01:00
|
|
|
const multiProjectUser = await apiTokenService.getUserForToken(secret1);
|
|
|
|
|
const singleProjectUser = await apiTokenService.getUserForToken(secret2);
|
2022-04-06 08:11:41 +02:00
|
|
|
|
2023-03-16 15:29:52 +01:00
|
|
|
expect(multiProjectUser!.projects).toStrictEqual([
|
2022-04-06 08:11:41 +02:00
|
|
|
'test-project',
|
|
|
|
|
'default',
|
|
|
|
|
]);
|
2023-03-16 15:29:52 +01:00
|
|
|
expect(singleProjectUser!.projects).toStrictEqual(['test-project']);
|
2022-04-06 08:11:41 +02:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
test('should not partially create token if projects are invalid', async () => {
|
|
|
|
|
try {
|
|
|
|
|
await apiTokenService.createApiTokenWithProjects({
|
2023-05-04 09:56:00 +02:00
|
|
|
tokenName: 'default-client',
|
2022-04-06 08:11:41 +02:00
|
|
|
type: ApiTokenType.CLIENT,
|
|
|
|
|
projects: ['non-existent-project'],
|
|
|
|
|
environment: DEFAULT_ENV,
|
|
|
|
|
});
|
|
|
|
|
} catch (e) {}
|
|
|
|
|
const allTokens = await apiTokenService.getAllTokens();
|
|
|
|
|
|
|
|
|
|
expect(allTokens.length).toBe(0);
|
|
|
|
|
});
|
