UNPKG

@petercraftsmn/auth-util

Version:

Auth utility functions

github.com/petercraftsmn/auth-util

petercraftsmn/auth-util

104 lines (97 loc) 4.29 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
const assert = require('assert').strict; const index = require('../../index'); describe('JwtCreator test', function () { const auth = new index.JwtReader(); describe('jwtCreate good input', function () { it('test true results of jwt create', function (done) { const header = { "alg": "sha512", "typ": "JWT" }; const payload = { "sub": "1234567890", "name": "John Doe", "time": Date.now() }; const secretKey = "my-secret-key"; const jwt = auth.jwtCreate(header, payload, secretKey); const decryptedJWT = auth.jwtRead(jwt); assert.ok(auth.jwtIsSignatureValid(jwt, secretKey), 'Signature not valid'); assert.ok(auth.jwtIsExpired(jwt, 1), 'Jwt is expired'); assert.deepStrictEqual(decryptedJWT.payload.time, payload.time, 'Time is not same'); done(); }); }); describe('jwtCreate bad input', function () { it('test false results of jwt create and read', function (done) { const header = { "alg": "sha512", "typ": "JWT" }; const payload = { "sub": "1234567890", "name": "John Doe", "time": (Date.now() - 2000) }; const secretKey = "my-secret-key"; const jwt = auth.jwtCreate(header, payload, secretKey); const jwtTempered = 'eyJhbGciOiJzaGE1MTILCJ0eXAiOiJKV1QifQ.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwidGltZSI6MTYxMDg0MTIyNTc4Nn0.146t2ctokZasu0g7InTYhYzq3_R2RbRvZevIHbPXTCP_BbP7NX31xxuDPXFdD2tQgtJLi15IrQHx80j7gHrHbQ'; const verifiedTemperedJWT = auth.jwtIsSignatureValid(jwtTempered, secretKey); assert.ok(!verifiedTemperedJWT); const jwtExpired = auth.jwtIsExpired(jwt, 1); assert.ok(!jwtExpired, 'jwtIsExpired'); const jwtDecrypted = auth.jwtRead(jwtTempered); assert.ok(!jwtDecrypted, 'return value is not null'); done(); }); }); describe('jwtCreateSHA512 good input', function () { it('test true results of jwt create', function (done) { const header = {}; const payload = { "sub": "1234567890", "name": "John Doe", "time": Date.now() }; const secretKey = "my-secret-key"; const jwt = auth.jwtCreateSHA512(header, payload, secretKey); const decryptedJWT = auth.jwtRead(jwt); assert.ok(auth.jwtIsSignatureValid(jwt, secretKey), 'Signature not valid'); assert.ok(auth.jwtIsExpired(jwt, 1), 'Jwt is expired'); assert.deepStrictEqual(decryptedJWT.payload.time, payload.time, 'Time is not same'); done(); }); }); describe('jwtCreateFromPayloadSHA512 good input', function () { it('test true results of jwt create', function (done) { const payload = { "sub": "1234567890", "name": "John Doe", "time": Date.now() }; const secretKey = "my-secret-key"; const jwt = auth.jwtCreateFromPayloadSHA512(payload, secretKey); const decryptedJWT = auth.jwtRead(jwt); assert.ok(auth.jwtIsSignatureValid(jwt, secretKey), 'Signature not valid'); assert.ok(auth.jwtIsExpired(jwt, 1), 'Jwt is expired'); assert.deepStrictEqual(decryptedJWT.payload.time, payload.time, 'Time is not same'); done(); }); }); describe('headerPayloadUrlSafeStringCreate good input', function () { it('test url safe string', function (done) { const header = { "alg": "sha512", "typ": "JWT" }; const payload = { "sub": "1234567890", "name": "John Doe", "time": Date.now() }; const headerPayloadUrlSafe = auth.headerPayloadUrlSafeStringCreate(header, payload); assert.ok(headerPayloadUrlSafe.length > 100, 'Time is not same'); done(); }); }); });