UNPKG

@backstage/backend-test-utils

Version:

Test helpers library for Backstage backends

backstage.io

backstage/backstage

112 lines (108 loc) 4 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
'use strict'; var errors = require('@backstage/errors'); var mockCredentials = require('./mockCredentials.cjs.js'); class MockAuthService { pluginId; disableDefaultAuthPolicy; constructor(options) { this.pluginId = options.pluginId; this.disableDefaultAuthPolicy = options.disableDefaultAuthPolicy; } async authenticate(token, options) { switch (token) { case mockCredentials.MOCK_USER_TOKEN: return mockCredentials.mockCredentials.user(); case mockCredentials.MOCK_SERVICE_TOKEN: return mockCredentials.mockCredentials.service(); case mockCredentials.MOCK_INVALID_USER_TOKEN: throw new errors.AuthenticationError("User token is invalid"); case mockCredentials.MOCK_INVALID_USER_LIMITED_TOKEN: throw new errors.AuthenticationError("Limited user token is invalid"); case mockCredentials.MOCK_INVALID_SERVICE_TOKEN: throw new errors.AuthenticationError("Service token is invalid"); case "": throw new errors.AuthenticationError("Token is empty"); } if (token.startsWith(mockCredentials.MOCK_USER_TOKEN_PREFIX)) { const { sub: userEntityRef, actor } = JSON.parse( token.slice(mockCredentials.MOCK_USER_TOKEN_PREFIX.length) ); return mockCredentials.mockCredentials.user(userEntityRef, { actor }); } if (token.startsWith(mockCredentials.MOCK_USER_LIMITED_TOKEN_PREFIX)) { if (!options?.allowLimitedAccess) { throw new errors.AuthenticationError("Limited user token is not allowed"); } const { sub: userEntityRef } = JSON.parse( token.slice(mockCredentials.MOCK_USER_LIMITED_TOKEN_PREFIX.length) ); return mockCredentials.mockCredentials.user(userEntityRef); } if (token.startsWith(mockCredentials.MOCK_SERVICE_TOKEN_PREFIX)) { const { sub, target, obo } = JSON.parse( token.slice(mockCredentials.MOCK_SERVICE_TOKEN_PREFIX.length) ); if (target && target !== this.pluginId) { throw new errors.AuthenticationError( `Invalid mock token target plugin ID, got '${target}' but expected '${this.pluginId}'` ); } if (obo) { return mockCredentials.mockCredentials.user(obo); } return mockCredentials.mockCredentials.service(sub); } throw new errors.AuthenticationError(`Unknown mock token '${token}'`); } async getNoneCredentials() { return mockCredentials.mockCredentials.none(); } async getOwnServiceCredentials() { return mockCredentials.mockCredentials.service(`plugin:${this.pluginId}`); } isPrincipal(credentials, type) { const principal = credentials.principal; if (type === "unknown") { return true; } if (principal.type !== type) { return false; } return true; } async getPluginRequestToken(options) { const principal = options.onBehalfOf.principal; if (principal.type === "none" && this.disableDefaultAuthPolicy) { return { token: "" }; } if (principal.type !== "user" && principal.type !== "service") { throw new errors.AuthenticationError( `Refused to issue service token for credential type '${principal.type}'` ); } return { token: mockCredentials.mockCredentials.service.token({ onBehalfOf: options.onBehalfOf, targetPluginId: options.targetPluginId }) }; } async getLimitedUserToken(credentials) { if (credentials.principal.type !== "user") { throw new errors.AuthenticationError( `Refused to issue limited user token for credential type '${credentials.principal.type}'` ); } return { token: mockCredentials.mockCredentials.limitedUser.token( credentials.principal.userEntityRef ), expiresAt: new Date(Date.now() + 36e5) }; } listPublicServiceKeys() { throw new Error("Not implemented"); } } exports.MockAuthService = MockAuthService; //# sourceMappingURL=MockAuthService.cjs.js.map