UNPKG

@mindconnect/mindconnect-nodejs

Version:

MindConnect Library for NodeJS (community based)

github.com/mindsphere/mindconnect-nodejs

mindsphere/mindconnect-nodejs

167 lines 7.92 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
"use strict"; var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) { function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); } return new (P || (P = Promise))(function (resolve, reject) { function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } } function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } } function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); } step((generator = generator.apply(thisArg, _arguments || [])).next()); }); }; Object.defineProperty(exports, "__esModule", { value: true }); // Copyright (C), Siemens AG 2017 const chai = require("chai"); const debug = require("debug"); const mocha_1 = require("mocha"); const nock = require("nock"); require("url-search-params-polyfill"); const src_1 = require("../src"); const sdk_1 = require("../src/api/sdk/"); const utils_1 = require("../src/api/utils"); const test_agent_setup_utils_1 = require("./test-agent-setup-utils"); const test_utils_1 = require("./test-utils"); const log = debug("mindconnect-agent-auth"); chai.should(); describe("Agent Auth Rotation", () => { const auth = utils_1.loadAuth(); const sdk = new sdk_1.MindSphereSdk({ gateway: auth.gateway, basicAuth: utils_1.decrypt(auth, "passkey.4.unit.test"), tenant: auth.tenant }); let agentConfig = {}; let unitTestConfiguration = {}; before(() => __awaiter(void 0, void 0, void 0, function* () { nock.cleanAll(); unitTestConfiguration = yield test_agent_setup_utils_1.unitTestSetup(sdk, sdk_1.AgentManagementModels.AgentUpdate.SecurityProfileEnum.SHAREDSECRET); agentConfig = unitTestConfiguration.agentConfig; })); after(() => __awaiter(void 0, void 0, void 0, function* () { yield test_agent_setup_utils_1.tearDownAgents(sdk, unitTestConfiguration); })); mocha_1.it("onboarding should be able to handle internet connection problems", () => __awaiter(void 0, void 0, void 0, function* () { // respond 3 times with internal server error before returning the correct response let errors = 0; const scope = nock("https://southgate.eu1.mindsphere.io:443", { encodedQueryParams: true, allowUnmocked: true }) .post("/api/agentmanagement/v3/register", {}) .thrice() .reply(500, "Internal Server Error") .log(() => errors++); const agent = new src_1.MindConnectAgent(agentConfig); agent.should.not.be.undefined; // try 8 times so that we can be sure that the agent will get onboarded const result = yield utils_1.retry(8, () => agent.OnBoard()); errors.should.be.equal(3); result.should.be.equal(src_1.OnboardingStatus.StatusEnum.ONBOARDED); scope.done(); })); mocha_1.it("should be able to recover from a problem with key rotation.", () => __awaiter(void 0, void 0, void 0, function* () { const agent = new src_1.MindConnectAgent(agentConfig); agent.should.not.be.undefined; nock.cleanAll(); if (!agent.IsOnBoarded()) yield utils_1.retry(5, () => agent.OnBoard()); const responseA = JSON.stringify(agent._configuration.response); yield agent.RotateKey(); agent._configuration.response = JSON.parse(responseA); yield agent.RotateKey(); const responseB = JSON.stringify(agent._configuration.response); agent._configuration.response = JSON.parse(responseA); yield agent.RotateKey(); yield agent.AquireToken(); yield agent.AquireToken(); yield agent.RenewToken(); agent._configuration.response = JSON.parse(responseB); const errorShouldOccur = yield test_utils_1.errorHelper(() => agent.RotateKey()); errorShouldOccur.should.be.true; // await agent.TryRecovery(); // await (agent as any).RotateKey(); // (agent as any)._configuration.response = { test: "XX" }; // await agent.TryRecovery(); yield agent.RenewToken(); // await (agent as any).SaveConfig(); })); mocha_1.it("should be able to store old keys", () => __awaiter(void 0, void 0, void 0, function* () { const agent = new src_1.MindConnectAgent(agentConfig); agent.should.not.be.undefined; nock.cleanAll(); if (!agent.IsOnBoarded()) yield utils_1.retry(5, () => agent.OnBoard()); yield agent.RotateKey(); yield agent.RotateKey(); yield agent.RotateKey(); yield agent.RotateKey(); yield agent.RotateKey(); agent._configuration.recovery.length.should.be.equal(5); yield agent.RotateKey(); agent._configuration.recovery.length.should.be.equal(5); })); mocha_1.it("should be able to handle errors in key rotation", () => __awaiter(void 0, void 0, void 0, function* () { const agent = new src_1.MindConnectAgent(agentConfig); agent.should.not.be.undefined; nock.cleanAll(); if (!agent.IsOnBoarded()) yield utils_1.retry(5, () => agent.OnBoard()); yield utils_1.retry(3, () => agent.RotateKey()); yield utils_1.retry(3, () => agent.RenewToken()); agent._configuration.recovery.length.should.be.greaterThan(1); let error = 0; const scope = nock("https://southgate.eu1.mindsphere.io:443", { encodedQueryParams: true, allowUnmocked: true }) .put(`/api/agentmanagement/v3/register/${agent.ClientId()}`, { client_id: `${agent.ClientId()}` }) .times(24) .reply(500, "Internal Server error") .log(() => { ++error; }); const today = new Date(); const inOneHour = new Date(today); inOneHour.setHours(today.getHours() + 1); agent._configuration .response.client_secret_expires_at = Math.trunc(inOneHour.getTime() / 1000); agent._configuration.response.client_secret = "broken"; agent._configuration.response.registration_access_token = "broken"; yield agent.RenewToken(); yield agent.RenewToken(); yield agent.RenewToken(); error.should.be.equal(24); // (5 + 3 failed recovery attempts) * 3 scope.done(); nock.cleanAll(); agent._accessToken = undefined; const token = yield agent.GetAgentToken(); token.should.not.be.undefined; token.should.not.be.null; token.should.not.be.equal(""); scope.done(); })); mocha_1.it("should handle problems with certificate urls", () => __awaiter(void 0, void 0, void 0, function* () { const agent = new src_1.MindConnectAgent(agentConfig); agent.should.not.be.undefined; nock.cleanAll(); if (!agent.IsOnBoarded()) yield utils_1.retry(5, () => agent.OnBoard()); let error = 0; const scope = nock("https://southgate.eu1.mindsphere.io:443", { encodedQueryParams: true, allowUnmocked: true }) .get(`/api/agentmanagement/v3/oauth/token_key`) .times(4) .reply(500, "Internal Server error") .log(() => ++error); yield utils_1.retry(2, () => agent.RenewToken()); const token = yield agent.GetAgentToken(); token.should.not.be.undefined; token.length.should.be.greaterThan(10); error.should.be.equal(4); scope.done(); })); }); //# sourceMappingURL=agent-auth.spec.js.map