UNPKG

passport-azure-ad

Version:

OIDC and Bearer Passport strategies for Azure Active Directory

github.com/AzureAD/passport-azure-ad

AzureAD/passport-azure-ad

56 lines (46 loc) 2.42 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
/** * Copyright (c) Microsoft Corporation * All Rights Reserved * MIT License * * Permission is hereby granted, free of charge, to any person obtaining a copy of this * software and associated documentation files (the "Software"), to deal in the Software * without restriction, including without limitation the rights to use, copy, modify, * merge, publish, distribute, sublicense, and/or sell copies of the Software, and to * permit persons to whom the Software is furnished to do so, subject to the following * conditions: * * The above copyright notice and this permission notice shall be * included in all copies or substantial portions of the Software. * * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, * EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS * OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, * WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT * OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. */ 'use strict'; var chai = require('chai'); var jws = require('jws'); var jwt = require('../../lib/jsonWebToken'); const TEST_TIMEOUT = 1000000; // 1000 seconds const secret = "12345678901234567890123456789012"; // 512 bit symmetric key describe('json web token test', function() { this.timeout(TEST_TIMEOUT); var signStream = jws.createSign( { 'header': { 'alg': 'HS256', 'typ': 'JWT'}, 'payload': { 'nbf': Date.now() / 1000, 'exp': Date.now() / 1000 + 300, 'iat': Date.now() / 1000, 'iss': 'https://example.com', 'aud': 'audience' }, 'secret': secret }); var jwtString = signStream.sign(); // create the corresponding json web token var options = { audience: 'audience', algorithms: ['HS256'], issuer: 'https://example.com' }; // validation options it('should fail with missing sub error', function(done) { jwt.verify(jwtString, secret, options, (err, token) => { chai.expect(err.message).to.equal('invalid sub value in payload'); done(); }); }); it('should succeed if testing access token', function(done) { options.isAccessToken = true; jwt.verify(jwtString, secret, options, (err, token) => { chai.expect(err).to.equal(null); done(); }); }); });