UNPKG

@quarks/quarks-iam

Version:

A modern authorization server built to authenticate your users and protect your APIs

github.com/anvilresearch/connect

anvilresearch/connect

105 lines (68 loc) 2.45 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
# Test dependencies cwd = process.cwd() path = require 'path' faker = require 'faker' chai = require 'chai' sinon = require 'sinon' sinonChai = require 'sinon-chai' mockMulti = require '../lib/multi' expect = chai.expect # Configure Chai and Sinon chai.use sinonChai chai.should() # Code under test Modinha = require 'modinha' Scope = require path.join(cwd, 'models/Scope') # Redis lib for spying and stubbing Redis = require('ioredis') rclient = Redis.prototype {client,multi} = {} describe 'Scope', -> before -> client = new Redis(12345) multi = mockMulti(rclient) Scope.__client = client after -> rclient.multi.restore() describe 'schema', -> it 'should use name for unique identifier', -> Scope.uniqueId.should.equal 'name' it 'should require name' it 'should require description' it 'should have a false default property by default' it 'should have a false restricted property by default' describe 'determine', -> {scp, scps} = {} before (done) -> scopes = [ new Scope { name: 'a', description: 'a', restricted: true } new Scope { name: 'b', description: 'b', restricted: true } new Scope { name: 'c', description: 'c', restricted: true } new Scope { name: 'd', description: 'd', restricted: false } new Scope { name: 'e', description: 'e', restricted: false } new Scope { name: 'f', description: 'f', restricted: false } ] sinon.stub(Scope, 'get').callsArgWith(1, null, scopes) reqScopes = 'a b c d e f unknown' # requested by client subScopes = 'b' # explicitly permitted via role subject = authorizedScope: sinon.stub().callsArgWith(0, null, subScopes) Scope.determine reqScopes, subject, (error, result, results) -> err = error scp = result scps = results done() after -> Scope.get.restore() it 'should ignore unknown scopes', -> scp.should.not.contain 'unknown' it 'should not include unauthorized restricted scopes', -> scp.should.not.contain 'a' scp.should.not.contain 'c' it 'should include authorized restricted scopes', -> scp.should.contain 'b' it 'should include requested unrestricted scopes', -> scp.should.contain 'd' scp.should.contain 'e' scp.should.contain 'f' it 'should include default scopes'