UNPKG

pusher-js

Version:

Pusher Channels JavaScript library for browsers, React Native, NodeJS and web workers

github.com/pusher/pusher-js

pusher/pusher-js

344 lines (311 loc) 12.6 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
const Errors = require("core/errors"); const Logger = require('core/logger').default; const EncryptedChannel = require("core/channels/encrypted_channel").default; const Mocks = require("mocks"); const nacl = require("tweetnacl"); const utf8 = require("@stablelib/utf8"); const base64 = require("@stablelib/base64"); describe("EncryptedChannel", function() { var pusher; var channel; var channelAuthorizer; const secretUTF8 = "It Must Be Thirty Two Characters"; const secretBytes = utf8.encode(secretUTF8); const secretBase64 = base64.encode(secretBytes); const nonceUTF8 = "aaaaaaaaaaaaaaaaaaaaaaaa"; const nonceBytes = utf8.encode(nonceUTF8); const nonceBase64 = base64.encode(nonceBytes); const testEncrypt = function(payload) { let payloadBytes = utf8.encode(JSON.stringify(payload)); let bytes = nacl.secretbox(payloadBytes, nonceBytes, secretBytes); return base64.encode(bytes); }; beforeEach(function() { channelAuthorizer = jasmine.createSpy("channelAuthorizer").and.callFake(function(params, callback) {}) pusher = Mocks.getPusher({ channelAuthorizer: channelAuthorizer }); channel = new EncryptedChannel("private-encrypted-test", pusher, nacl); }); describe("after construction", function() { it("#subscribed should be false", function() { expect(channel.subscribed).toEqual(false); }); it("#subscriptionPending should be false", function() { expect(channel.subscriptionPending).toEqual(false); }); it("#subscriptionCancelled should be false", function() { expect(channel.subscriptionCancelled).toEqual(false); }); }); describe("#authorize", function() { it("should call channelAuthorizer", function() { const callback = function(){} channel.authorize("1.23", callback); expect(channelAuthorizer.calls.count()).toEqual(1); expect(channelAuthorizer).toHaveBeenCalledWith( { socketId: "1.23", channelName: "private-encrypted-test" }, jasmine.any(Function)); }); it("should call the callback if an authorizaiton error is encountered", function() { const callback = jasmine.createSpy("callback") channel.authorize("1.23", callback); expect(channelAuthorizer.calls.count()).toEqual(1); expect(channelAuthorizer).toHaveBeenCalledWith( { socketId: "1.23", channelName: "private-encrypted-test" }, jasmine.any(Function)); const encryptedChannelCallback = channelAuthorizer.calls.mostRecent().args[1]; encryptedChannelCallback("error", {}) expect(callback).toHaveBeenCalledWith("error", {}) }); it("should fail if AuthData doens't have a shared_secret", function() { const callback = jasmine.createSpy("callback") channel.authorize("1.23", callback); expect(channelAuthorizer.calls.count()).toEqual(1); expect(channelAuthorizer).toHaveBeenCalledWith( { socketId: "1.23", channelName: "private-encrypted-test" }, jasmine.any(Function)); const encryptedChannelCallback = channelAuthorizer.calls.mostRecent().args[1]; encryptedChannelCallback(null, {}) expect(callback.calls.count()).toEqual(1) let args = callback.calls.first().args; expect(args.length).toEqual(2) expect(args[0]).toEqual(jasmine.any(Error)) expect(args[0].message).toEqual( "No shared_secret key in auth payload for encrypted channel: private-encrypted-test" ); expect(args[1]).toEqual(null); }); it("should succeed if AuthData has a shared_secret", function() { const callback = jasmine.createSpy("callback") channel.authorize("1.23", callback); expect(channelAuthorizer.calls.count()).toEqual(1); expect(channelAuthorizer).toHaveBeenCalledWith( { socketId: "1.23", channelName: "private-encrypted-test" }, jasmine.any(Function)); const encryptedChannelCallback = channelAuthorizer.calls.mostRecent().args[1]; encryptedChannelCallback(null, { shared_secret: secretBase64, foo: 'bar', }) expect(callback).toHaveBeenCalledWith(null, { foo: 'bar', }) }); }); describe("#trigger", function() { beforeEach(function() { let callback = function() {}; channel.authorize("1.23", callback); }); it("should raise an exception if called", function() { expect(() => channel.trigger('whatever', {})).toThrow( jasmine.any(Errors.UnsupportedFeature) ); }); }); describe("#disconnect", function() { it("should set subscribed to false", function() { channel.handleEvent({ event: "pusher_internal:subscription_succeeded" }); channel.disconnect(); expect(channel.subscribed).toEqual(false); }); }); describe("#handleEvent", function() { it("should not emit pusher_internal:* events", function() { let callback = jasmine.createSpy("callback"); channel.bind("pusher_internal:test", callback); channel.bind_global(callback); channel.handleEvent({ event: "pusher_internal:test" }); expect(callback).not.toHaveBeenCalled(); }); describe("on pusher_internal:subscription_succeeded", function() { it("should emit pusher:subscription_succeeded", function() { let callback = jasmine.createSpy("callback"); channel.bind("pusher:subscription_succeeded", callback); channel.handleEvent({ event: "pusher_internal:subscription_succeeded", data: "123" }); expect(callback).toHaveBeenCalledWith("123"); }); it("should set #subscribed to true", function() { channel.handleEvent({ event: "pusher_internal:subscription_succeeded", data: "123" }); expect(channel.subscribed).toEqual(true); }); it("should set #subscriptionPending to false", function() { channel.handleEvent({ event: "pusher_internal:subscription_succeeded", data: "123" }); expect(channel.subscriptionPending).toEqual(false); }); }); describe("pusher_internal:subscription_succeeded but subscription cancelled", function() { it("should not emit pusher:subscription_succeeded", function() { let callback = jasmine.createSpy("callback"); channel.bind("pusher:subscription_succeeded", callback); channel.cancelSubscription(); channel.handleEvent({ event: "pusher_internal:subscription_succeeded", data: "123" }); expect(callback).not.toHaveBeenCalled(); }); it("should set #subscribed to true", function() { channel.cancelSubscription(); channel.handleEvent({ event: "pusher_internal:subscription_succeeded", data: "123" }); expect(channel.subscribed).toEqual(true); }); it("should set #subscriptionPending to false", function() { channel.cancelSubscription(); channel.handleEvent({ event: "pusher_internal:subscription_succeeded", data: "123" }); expect(channel.subscriptionPending).toEqual(false); }); it("should call #pusher.unsubscribe", function() { expect(pusher.unsubscribe).not.toHaveBeenCalled(); channel.cancelSubscription(); channel.handleEvent({ event: "pusher_internal:subscription_succeeded", data: "123" }); expect(pusher.unsubscribe).toHaveBeenCalledWith(channel.name); }); }); describe("on other events", function() { beforeEach(function() { channelAuthorizer.and.callFake(function(params, callback) { callback(null, { shared_secret: secretBase64, foo: 'bar', }); }); channel.authorize("1.23", function (){}); }); it("should decrypt the event payload and emit the event", function() { let payload = { test: "payload" }; let encryptedPayload = { nonce: nonceBase64, ciphertext: testEncrypt(payload) }; let boundCallback = jasmine.createSpy("boundCallback"); channel.bind("something", boundCallback); channel.handleEvent({ event: "something", data: encryptedPayload }); expect(boundCallback).toHaveBeenCalledWith(payload); }); it("should emit pusher: prefixed events unmodified", function() { let payload = { test: "payload" }; let boundCallback = jasmine.createSpy("boundCallback"); channel.bind("pusher:subscription_error", boundCallback); channel.handleEvent({ event: "pusher:subscription_error", data: payload }); expect(boundCallback).toHaveBeenCalledWith(payload, {}); }); it("should not swallow errors thrown by the handler", function() { // previously, if the handler threw an error, when called with the // parsed json, we tried again with a string. This test aims to check // that an error thrown by a handler should not be caught by the lib let payload = { test: "payload" }; let encryptedPayload = { nonce: nonceBase64, ciphertext: testEncrypt(payload) }; let callCount = 0; channel.bind("something", (data)=> { if (callCount == 0) { callCount++; throw new Error("some error"); } }) expect(function() { channel.handleEvent({ event: "something", data: encryptedPayload }); }).toThrow() }); describe("with rotated shared key", function() { const newSecretUTF8 = "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx"; const newSecretBytes = utf8.encode(newSecretUTF8); const newSecretBase64 = base64.encode(newSecretBytes); const newTestEncrypt = function(payload) { let payloadBytes = utf8.encode(JSON.stringify(payload)); let bytes = nacl.secretbox(payloadBytes, nonceBytes, newSecretBytes); return base64.encode(bytes); }; beforeEach(function() { // Channel has already been authorized with the old secret channel.authorize("1.23", function (){}); pusher.connection = { socket_id: "9.37" }; // Next call to authorize will use the new secret channelAuthorizer.and.callFake(function(params, callback) { callback(null, { shared_secret: newSecretBase64, foo: 'bar', }); }); }); it("should request new key from authorizer and decrypt event", function() { let payload = { test: "payload" }; let encryptedPayload = { nonce: nonceBase64, ciphertext: newTestEncrypt(payload) }; let boundCallback = jasmine.createSpy("boundCallback"); channel.bind("something", boundCallback); channel.handleEvent({ event: "something", data: encryptedPayload }); expect(boundCallback).toHaveBeenCalledWith(payload); }); it("should log a warning if it fails to decrypt event after requesting a new key from the auth endpoint", function() { let encryptedPayload = { nonce: nonceBase64, ciphertext: base64.encode('garbage-ciphertext') }; spyOn(Logger, "error"); channel.handleEvent({ event: "something", data: encryptedPayload }); expect(Logger.error).toHaveBeenCalledWith( "Failed to decrypt event with new key. Dropping encrypted event" ); }); it("should log a warning if it fails to call the auth endpoint after failing to decrypt an event", function() { let payload = { test: "payload" }; let encryptedPayload = { nonce: nonceBase64, ciphertext: newTestEncrypt(payload) }; spyOn(Logger, "error"); channelAuthorizer.and.callFake(function(params, callback) { callback(true, "ERROR"); }); channel.handleEvent({ event: "something", data: encryptedPayload }); expect(Logger.error).toHaveBeenCalledWith( "Failed to make a request to the authEndpoint: ERROR. Unable to fetch new key, so dropping encrypted event" ); }); }); }); }); });