UNPKG

jscas-server

Version:

An implementation of Apereo's CAS protocol

github.com/jscas/jscas-server

jscas/jscas-server

90 lines (81 loc) 2.29 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
'use strict' const fs = require('fs') const path = require('path') const crypto = require('crypto') const test = require('tap').test const parser = require('../../../../lib/routes/samlValidate/contentTypeParser') const padding = crypto.randomBytes(32).toString('hex') test('rejects bodies that are too short', (t) => { t.plan(3) parser(null, 'too short', (err, result) => { t.is(result, undefined) t.type(err, Error) t.is(err.message, 'invalid xml') }) }) test('rejects unparseable xml', (t) => { t.plan(3) parser(null, `<foo><bar>${padding}</foo>`, (err, result) => { t.is(result, undefined) t.type(err, Error) t.match(err, /Unexpected close tag/) }) }) test('rejects for missing envelope', (t) => { t.plan(3) parser(null, `<foo>${padding}</foo>`, (err, result) => { t.is(result, undefined) t.type(err, Error) t.is(err.message, 'missing SOAP envelope') }) }) test('rejects for missing envelope body', (t) => { t.plan(3) parser(null, `<SOAP-ENV:Envelope>${padding}</SOAP-ENV:Envelope>`, (err, result) => { t.is(result, undefined) t.type(err, Error) t.is(err.message, 'missing SOAP envelope body') }) }) test('rejects for missing samlp request', (t) => { t.plan(3) const xml = ` <SOAP-ENV:Envelope> <SOAP-ENV:Body>${padding}</SOAP-ENV:Body> </SOAP-ENV:Envelope> ` parser(null, xml, (err, result) => { t.is(result, undefined) t.type(err, Error) t.is(err.message, 'missing SAMLP request') }) }) test('rejects for missing assertion', (t) => { t.plan(3) const xml = ` <SOAP-ENV:Envelope> <SOAP-ENV:Body> <samlp:Request>${padding}</samlp:Request> </SOAP-ENV:Body> </SOAP-ENV:Envelope> ` parser(null, xml, (err, result) => { t.is(result, undefined) t.type(err, Error) t.is(err.message, 'missing assertion artifact') }) }) test('returns parsed xml payload object', (t) => { t.plan(2) const xml = fs.readFileSync( path.join(__dirname, 'fixtures', 'valid-post-body.xml') ) parser(null, xml, (err, result) => { t.error(err) t.strictDeepEqual(result, { id: '_192.168.16.51.1024506224022', issued: new Date('2002-06-19T17:03:44.022Z'), ticket: 'ST-1-u4hrm3td92cLxpCvrjylcas.example.com' }) }) })