UNPKG

@quarks/quarks-iam

Version:

A modern authorization server built to authenticate your users and protect your APIs

github.com/anvilresearch/connect

anvilresearch/connect

103 lines (67 loc) 2.73 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
# Test dependencies _ = require 'lodash' nock = require 'nock' chai = require 'chai' sinon = require 'sinon' sinonChai = require 'sinon-chai' expect = chai.expect # Assertions chai.use sinonChai chai.should() # Code under test OAuthStrategy = require '../../../../protocols/OAuth' providers = require '../../../../providers' describe 'OAuthStrategy temporaryCredentials', -> {err,req,res,headers,provider,client} = {} describe 'with defaults and valid parameters', -> beforeEach (done) -> provider = _.clone providers.oauthtest, true client = oauth_consumer_key: '1q2w3e4r' oauth_consumer_secret: 's3cr3t' verifier = () -> reply = 'oauth_token=hdk48Djdsa&oauth_token_secret=xyz4992k83j47x0b&oauth_callback_confirmed=true' scope = nock(provider.url) .post('/credentials') .reply(200, reply, { 'content-type': 'application/x-www-form-urlencoded' }) strategy = new OAuthStrategy provider, client, verifier req = strategy.temporaryCredentials (error, response) -> err = error res = response done() headers = req.req._headers it 'should use the specified endpoint', -> req.url.should.equal provider.endpoints.credentials.url it 'should use the "POST" method', -> req.method.should.equal 'POST' it 'should set the "Authorization" header', -> expect(headers.authorization).to.not.be.undefined it 'should use the "OAuth" scheme', -> headers.authorization.should.contain 'OAuth' # it 'should set the realm' it 'should set the oauth_consumer_key', -> headers.authorization.should.contain( 'oauth_consumer_key="' + client.oauth_consumer_key + '"' ) it 'should set the oauth_signature_method', -> headers.authorization.should.contain( 'oauth_signature_method="' + provider.oauth_signature_method + '"' ) it 'should set the oauth_callback', -> headers.authorization.should.contain( 'oauth_callback="' + encodeURIComponent(provider.oauth_callback) + '"' ) it 'should set the oauth_signature', -> headers.authorization.should.contain( 'oauth_signature="' + encodeURIComponent(client.oauth_consumer_secret + '&') + '"' ) it 'should set the accept header', -> headers.accept.should.contain 'application/x-www-form-urlencoded' it 'should set the user agent', -> headers['user-agent'].should.contain 'Anvil Connect/' it 'should provide a null error', -> expect(err).to.null it 'should provide credentials', -> res.oauth_token.should.equal 'hdk48Djdsa'