UNPKG

@exodus/networking-spec

Version:

Platform-agnostic test suites for networking related features

github.com/ExodusMovement/hydra/tree/master/modules/networking-spec

ExodusMovement/hydra

164 lines (163 loc) 7.36 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
import { CONTROL_CHARACTERS, SEPARATORS } from '@exodus/networking-common/cookie/constants'; export function testsuite(getInstance, unrestrictedAccess = true) { describe('CookieJar', () => { let cookieJar; beforeEach(async () => { cookieJar = getInstance(); await cookieJar.removeAll(); }); function normalize(value) { if (Array.isArray(value)) return value; return [value]; } const url = 'https://my-domain.com'; it('should set a cookie', async () => { const cookie = { name: 'csrf', httpOnly: false, value: 'abcd1234', }; await cookieJar.set(cookie, url); const actual = normalize(await cookieJar.get({ url, name: 'csrf' })); expect(actual[0]?.value).toEqual(cookie.value); }); describe('invalid characters', () => { describe('name', () => { const forbidden = new Set([...CONTROL_CHARACTERS, ...SEPARATORS]); forbidden.forEach((character) => { it(`should throw when it contains ${character}`, async () => { const cookie = { name: `name${character}`, value: 'abcdefgh', }; try { await cookieJar.set(cookie, url); expect(true).toEqual(false); } catch (e) { expect(e.message).toContain('invalid character'); } }); }); }); describe('value', () => { const forbidden = new Set([...CONTROL_CHARACTERS, ' ', '"', ',', ';', '\\']); forbidden.forEach((character) => { it(`should throw when it contains ${character}`, async () => { const cookie = { name: 'csrf', value: `value${character}`, }; try { await cookieJar.set(cookie, url); expect(true).toEqual(false); } catch (e) { expect(e.message).toContain('invalid character'); } }); }); }); }); it('should set a cookie with = in its value', async () => { const cookie = { name: 'csrf', value: 'abc=def', }; await cookieJar.set(cookie, url); const actual = normalize(await cookieJar.get({ url, name: 'csrf' })); expect(actual[0]?.value).toEqual(cookie.value); }); it('should set a cookie from response header', async () => { const headerValue = 'name=bruce; SameSite=Lax'; await cookieJar.set(headerValue, url); const [actual] = normalize(await cookieJar.get({ url, name: 'name' })); expect(actual?.value).toEqual('bruce'); }); describe('with cookies', () => { const cookies = [ { name: 'csrf', httpOnly: false, value: 'abcd1234', maxAge: 100, version: '0.1', }, { name: 'session_id', httpOnly: false, value: 'abcd1234', secure: true, }, ]; beforeEach(async () => { await Promise.all(cookies.map((cookie) => cookieJar.set(cookie, url))); }); if (unrestrictedAccess) { describe('unrestricted access', () => { describe('get', () => { it('should get cookies for url and name', async () => { const actual = await cookieJar.get({ url, name: 'csrf' }); expect(actual).toEqual([cookies[0]]); }); it('should get no cookies for other domain and name', async () => { expect(await cookieJar.get({ url: 'https://visit-arkham.com', name: 'csrf' })).toEqual([]); }); it('should get no cookies for other name', async () => { expect(await cookieJar.get({ url, name: 'dr. who' })).toEqual([]); }); }); describe('getAll', () => { it('should return all cookies', async () => { const actual = await cookieJar.getAll(); expect(actual).toEqual(cookies); }); it('should return all cookies for a url', async () => { const otherUrl = 'https://wayne-foundation.com'; const veryTastyCookie = { name: 'recipe', value: 'bat-cookie-blend-heat-ready' }; await cookieJar.set(veryTastyCookie, otherUrl); const actual = await cookieJar.getAll({ url }); expect(actual).toEqual(cookies); }); }); }); } else { describe('restricted access', () => { let jar; beforeEach(() => { jar = cookieJar; }); describe('get', () => { it('should get cookie by name', async () => { const { name, value } = cookies[0] ?? {}; const actual = await jar.get({ name: 'csrf' }); expect(actual).toEqual({ name, value }); }); it('should get no cookies for other name', async () => { expect(await jar.get({ name: 'dr. who' })).toBeUndefined(); }); }); describe('getAll', () => { it('should return all cookies', async () => { const actual = await cookieJar.getAll(); expect(actual).toEqual(cookies.map(({ name, value }) => ({ name, value }))); }); }); }); } it('should remove a cookie', async () => { await cookieJar.remove({ url, name: 'session_id' }); const remaining = await cookieJar.getAll({ url }); expect(remaining.length).toEqual(1); expect(remaining[0]?.name).toEqual('csrf'); }); it('should remove all cookies', async () => { await cookieJar.removeAll(); const cookies = await cookieJar.getAll({ url }); expect(cookies.length).toEqual(0); }); }); }); }