UNPKG

oauth20-provider

Version:

OAuth 2.0 provider toolkit for nodeJS

github.com/t1msh/node-oauth20-provider

t1msh/node-oauth20-provider

111 lines (97 loc) 3.89 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
var query = require('querystring'), request = require('supertest'), data = require('./server/model/data.js'), app = require('./server/app.js'); describe('Authorization Code Grant Type ',function() { before(function() { app.get('oauth2').model.client.checkGrantType = function(client, grant){ return grant != 'refresh_token'; }; }); after(function(){ app.get('oauth2').model.client.checkGrantType = function(client, grant){ return []; }; }); var loginUrl, authorizationUrl, cookie, code, accessToken; var cookiePattern = new RegExp('connect.sid=(.*?);'); it('GET /authorization with response_type="code" expect login form redirect', function(done) { request(app) .get('/authorization?' + query.stringify({ redirect_uri: data.clients[1].redirectUri, client_id: data.clients[1].id, response_type: 'code' })) .expect('Location', new RegExp('login')) .expect(302, function(err, res) { if (err) return done(err); loginUrl = res.headers.location; done(); }); }); it('POST /login expect authorized', function(done) { request(app) .post(loginUrl) .send({ username: data.users[0].username, password: data.users[0].password }) .expect('Location', new RegExp('authorization')) .expect(302, function(err, res) { if (err) return done(err); authorizationUrl = res.headers.location; cookie = cookiePattern.exec(res.headers['set-cookie'][0])[0]; done(); }); }); it('GET /authorize with response_type="code" expect decision', function(done) { request(app) .get(authorizationUrl) .set('Cookie', cookie) .expect(200, function(err, res) { if (err) return done(err); done(); }); }); it('POST /authorize with response_type="code" and decision="1" expect code redirect', function(done) { request(app) .post(authorizationUrl) .send({ decision: 1 }) .set('Cookie', cookie) .expect(302, function(err, res) { if (err) return done(err); var uri = res.headers.location; if (uri.indexOf('?') == -1) return done(new Error('Failed to parse redirect uri')); var q = query.parse(uri.substr(uri.indexOf('?') + 1)); if (!q['code']) return done(new Error('No code value found in redirect uri')); code = q['code']; done(); }) }); it('POST /token with grant_type="authorization_code" expect token but not refresh_token', function(done) { request(app) .post('/token') .set('Authorization', 'Basic ' + new Buffer(data.clients[1].id + ':' + data.clients[1].secret, 'ascii').toString('base64')) .send({grant_type: 'authorization_code', code: code, redirectUri: data.clients[1].redirectUri}) .expect(200) .expect(function check_no_refresh_token(res){ if(res.body.refresh_token){ throw new Error('refresh_token received') } }) .end(function(err, res) { if (err) return done(err); accessToken = res.body.access_token; done(); }); }); it('POST /secure expect authorized', function(done) { request(app) .get('/secure') .set('Authorization', 'Bearer ' + accessToken) .expect(200, new RegExp(data.users[0].id, 'i'), done); }); });