UNPKG

njwt

Version:

JWT Library for Node.js

github.com/jwtk/njwt

jwtk/njwt

92 lines (71 loc) 2.44 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
var assert = require('chai').assert; var nJwt = require('../'); var properties = require('../properties.json'); var fs = require('fs'); var path = require('path'); var pair = { public: fs.readFileSync(path.join(__dirname,'rsa.pub'),'utf8'), private: fs.readFileSync(path.join(__dirname,'rsa.priv'),'utf8') }; describe('JWT Builder',function(){ describe('when RS256 is specified',function(){ var token = new nJwt.Jwt({}) .setSigningAlgorithm('RS256') .setSigningKey(pair.private) .compact(); var verifier = new nJwt.Verifier().setSigningKey('RS256',pair.public); var result; before(function(done){ verifier.verify(token,function(err,res){ result = [err,res]; done(); }); }); it('should create the token with the appropriate header values',function(){ assert.isNotNull(token); }); }); }); describe('a token that is signed with an RSA private key',function() { var claims = {foo:'bar'}; var token = new nJwt.Jwt(claims) .setSigningAlgorithm('RS256') .setSigningKey(pair.private) .compact(); describe('and a verifier that is configurd with the RSA public key',function(){ var verifier = new nJwt.Verifier() .setSigningAlgorithm('RS256') .setSigningKey(pair.public); var result; before(function(done){ verifier.verify(token,function(err,res){ result = [err,res]; done(); }); }); it('should validate and return the token payload',function(){ assert.isNull(result[0],'An unexpected error was returned'); assert.isObject(result[1],'A result was not returned'); assert.equal(result[1].body.foo,claims.foo); }); }); }); describe('a token that is signed with an RSA public key but header alg of HS256',function(){ var token = new nJwt.Jwt({foo:'bar'}) .setSigningAlgorithm('HS256') .setSigningKey(pair.public) .compact(); describe('and a verifier configured with RS256 and the same public key for vefification',function(){ var result; before(function(done){ nJwt.verify(token,pair.public,'RS256',function(err,res){ result = [err,res]; done(); }); }); it('should return SIGNATURE_ALGORITHM_MISMTACH error',function(){ assert.isNotNull(result[0],'An error was not returned'); assert.equal(result[0].message,properties.errors.SIGNATURE_ALGORITHM_MISMTACH); }); }); });