UNPKG

actionhero

Version:

The reusable, scalable, and quick node.js API server for stateless and stateful applications

www.actionherojs.com

actionhero/actionhero

89 lines (80 loc) 2.64 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
import axios, { AxiosError } from "axios"; import { Process, config } from "./../../../src/index"; const actionhero = new Process(); let url: string; jest.mock("./../../../src/config/web.ts", () => ({ __esModule: true, test: { web: () => { return { enabled: true, secure: false, automaticRoutes: ["get"], allowedRequestHosts: ["https://www.site.com"], urlPathForActions: "api", urlPathForFiles: "public", rootEndpointType: "file", port: 18080 + parseInt(process.env.JEST_WORKER_ID || "0"), matchExtensionMime: true, metadataOptions: { serverInformation: true, requesterInformation: false, }, fingerprintOptions: { cookieKey: "sessionID", }, }; }, }, })); describe("Server: Web", () => { beforeAll(async () => { await actionhero.start(); url = "http://localhost:" + config.web!.port; }); afterAll(async () => await actionhero.stop()); describe("request redirection (allowedRequestHosts)", () => { test("will redirect clients if they do not request the proper host", async () => { try { await axios.get(url + "/api/randomNumber", { maxRedirects: 0, headers: { Host: "lalala.site.com" }, }); throw new Error("should not get here"); } catch (error) { if (error instanceof AxiosError) { expect(error.response?.status).toEqual(302); expect(error.response?.data).toMatch( /You are being redirected to https:\/\/www.site.com\/api\/randomNumber/, ); } else throw error; } }); test("will redirect clients if they do not request the proper protocol", async () => { try { await axios.get(url + "/api/randomNumber", { maxRedirects: 0, headers: { Host: "www.site.com" }, }); throw new Error("should not get here"); } catch (error) { if (error instanceof AxiosError) { expect(error.response?.status).toEqual(302); expect(error.response?.data).toMatch( /You are being redirected to https:\/\/www.site.com\/api\/randomNumber/, ); } else throw error; } }); test("will allow API access from the proper hosts", async () => { const response = await axios.get(url + "/api/randomNumber", { maxRedirects: 0, headers: { Host: "www.site.com", "x-forwarded-proto": "https", }, }); expect(response.data["randomNumber"]).not.toBeUndefined(); }); }); });