Sākums Izpētīt Palīdzība
Pierakstīties
Lawsun
/
ysjj-system
1
0
Atdalīts 0
Faili Problēmas 0 Izmaiņu pieprasījumi 0 Vikivietne
Koks: ad561b8dcb
Atzari Tagi
ysjj-system
/
node_modules
/
koa-jwt2
/
test
/
revocation.test.js

revocation.test.js 1.6 KB
Vēsture Neapstrādāts

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263 
  1. const jwt = require("jsonwebtoken");
    2. 

  2. const assert = require("assert");
    3. 

  3. 

  4. const koajwt = require("../lib");
    5. 

  5. const UnauthorizedError = require("../lib/errors/UnauthorizedError");
    6. 

  6. const mockContext = require("./context");
    7. 

  7. 

  8. describe("revoked jwts", function() {
    9. 

  9.   const secret = "shhhhhh";
    10. 

  10.   const revoked_id = "1234";
    11. 

  11. 

  12.   let ctx;
    13. 

  13. 

  14.   beforeEach(() => {
    15. 

  15.     ctx = mockContext();
    16. 

  16.   });
    17. 

  17. 

  18.   const middleware = koajwt({
    19. 

  19.     secret: secret,
    20. 

  20.     isRevoked: async function(ctx, payload) {
    21. 

  21.       return payload.jti && payload.jti === revoked_id;
    22. 

  22.     }
    23. 

  23.   });
    24. 

  24. 

  25.   it("should throw if token is revoked", async () => {
    26. 

  26.     const token = jwt.sign({ jti: revoked_id, foo: "bar" }, secret);
    27. 

  27. 

  28.     ctx.headers.authorization = "Bearer " + token;
    29. 

  29. 

  30.     try {
    31. 

  31.       await middleware(ctx, () => {});
    32. 

  32.     } catch (err) {
    33. 

  33.       assert.ok(err);
    34. 

  34.       assert.equal(err.code, "revoked_token");
    35. 

  35.       assert.equal(err.message, "The token has been revoked.");
    36. 

  36.     }
    37. 

  37.   });
    38. 

  38. 

  39.   it("should work if token is not revoked", async () => {
    40. 

  40.     const token = jwt.sign({ jti: "1233", foo: "bar" }, secret);
    41. 

  41.     ctx.headers.authorization = "Bearer " + token;
    42. 

  42. 

  43.     await middleware(ctx, () => {});
    44. 

  44.     assert.equal("bar", ctx.state.user.foo);
    45. 

  45.   });
    46. 

  46. 

  47.   it("should throw if error occurs checking if token is revoked", async () => {
    48. 

  48.     const token = jwt.sign({ jti: revoked_id, foo: "bar" }, secret);
    49. 

  49.     ctx.headers.authorization = "Bearer " + token;
    50. 

  50. 

  51.     try {
    52. 

  52.       await koajwt({
    53. 

  53.         secret,
    54. 

  54.         isRevoked: async (ctx, payload) => {
    55. 

  55.           throw new Error("An error ocurred");
    56. 

  56.         }
    57. 

  57.       })(ctx, () => {});
    58. 

  58.     } catch (err) {
    59. 

  59.       assert.ok(err);
    60. 

  60.       assert.equal(err.message, "An error ocurred");
    61. 

  61.     }
    62. 

  62.   });
    63. 

  63. });
    64.