UNPKG

hellojs-xiaotian

Version:

A clientside Javascript library for standardizing requests to OAuth2 web services (and OAuth1 - with a shim)

adodson.com/hello.js

MrSwitch/hello.js

218 lines (144 loc) 5.66 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
define([], function() { var utils = hello.utils; function mockLocation(url) { var a = document.createElement('a'); a.href = url; var mock = { assign: function() { } }; var props = ['hash', 'host', 'hostname', 'href', 'pathname', 'port', 'protocol', 'search']; for (var i = 0; i < props.length; i++) { var x = props[i]; mock[x] = a[x]; } return mock; } describe('utils.responseHandler', function() { // Window denotes the current window which is operating the script. // Parent refers to that windows parent. var _window; var _parent; var _state; var _accessToken; describe('OAuth handler', function() { var _store = utils.store; beforeEach(function() { _accessToken = '1234'; _state = { callback: '_hellojs_callbackTestFunc', network: 'network' }; // Mock up _window and _parent objects for the tests _window = { location: mockLocation('http://adodson.com/redirect.html?state=' + JSON.stringify(_state) + '&access_token=' + _accessToken), close: function() { } }; _parent = { _hellojs_callbackTestFunc: function() { // This is the callback function on the parent } }; }); afterEach(function() { utils.store = _store; }); it('should do nothing if the current window has no state parameter', function() { _window.location = mockLocation('http://adodson.com/redirect.html'); var spy = sinon.spy(); _window.close = spy; utils.responseHandler(_window, _parent); expect(spy.callCount).to.be(0); }); it('should redirect to oauth proxy and preserve the query string', function() { _state.oauth_proxy = 'http://adodson.com/oauth_proxy?foo=bar'; _state.redirect_uri = 'http://adodson.com/'; _window.location = mockLocation('http://adodson.com/redirect.html?code=abc&state=' + JSON.stringify(_state)); var spy = sinon.spy(); _window.location.assign = spy; utils.responseHandler(_window, _parent); // Using regex, instead of eq comparison, because the order // of query string parameters is not guaranteed expect(spy.args[0][0]).to.match(/foo=bar/); expect(spy.args[0][0]).to.match(/redirect_uri=/); }); it('should return the access_token to the parent if the current window location contains a access_token and a state parameter containing a callback and network', function() { var spy = sinon.spy(); _window.close = spy; var spy2 = sinon.spy(); _parent._hellojs_callbackTestFunc = spy2; utils.responseHandler(_window, _parent); expect(spy.calledOnce).to.be.ok(); expect(spy2.calledOnce).to.be.ok(); var response = spy2.args[0][0]; expect(response).to.be.a('string'); response = JSON.parse(response); expect(response).to.have.property('network', _state.network); expect(response).to.have.property('access_token', _accessToken); }); it('should always close window despite a parent handler which throws an exception', function() { var spy = sinon.spy(); _window.close = spy; var spy2 = sinon.spy(function() { throw 'Error'; }); _parent._hellojs_callbackTestFunc = spy2; utils.responseHandler(_window, _parent); expect(spy.calledOnce).to.be.ok(); expect(spy2.calledOnce).to.be.ok(); var response = spy2.args[0][0]; expect(response).to.be.a('string'); response = JSON.parse(response); expect(response).to.have.property('network', _state.network); expect(response).to.have.property('access_token', _accessToken); }); it('should close the iframe window', function(done) { window._hellojs_testIframeCloses = function() { // After the initial load we can expect this to have removed itself; setTimeout(function() { expect(frm.parentNode).to.eql(null); done(); }, 100); }; // In this example we load a page containing the responseHandler script on it. var frm = document.createElement('iframe'); frm.src = 'redirect.html?state={}&network=test&callback=_hellojs_testIframeCloses&access_token=token'; document.body.appendChild(frm); }); it('should return OAuth failures', function() { var spy = sinon.spy(); _window.close = spy; _window.location = mockLocation('http://adodson.com/redirect.html?error=error&error_description=description&state=' + JSON.stringify(_state)); var spy2 = sinon.spy(); _parent._hellojs_callbackTestFunc = spy2; utils.responseHandler(_window, _parent); expect(spy.calledOnce).to.be.ok(); expect(spy2.calledOnce).to.be.ok(); var response = spy2.args[0][0]; expect(response).to.be.a('string'); response = JSON.parse(response); expect(response).to.have.property('error'); expect(response.error).to.have.property('code', 'error') .and.to.have.property('message', 'description'); }); it('should call hello.utils.store with the authResponse including callback property, if the callback was not found on the parent', function() { var spy = sinon.spy(); _window.close = spy; // Remove the global callback function delete _parent._hellojs_callbackTestFunc; // Spy on the store function var spy2 = sinon.spy(); utils.store = spy2; // Trigger the response handler utils.responseHandler(_window, _parent); expect(spy.calledOnce).to.be.ok(); expect(spy2.calledOnce).to.be.ok(); // Should set the callback name along with the auth response. expect(spy2.args[0][1]).to.have.property('callback', '_hellojs_callbackTestFunc'); }); }); xdescribe('POST Response', function() { }); }); });