UNPKG

realm-object-server

Version:

Realm Object Server

realm.io

realm/ros

278 lines 12.6 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
"use strict"; var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) { return new (P || (P = Promise))(function (resolve, reject) { function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } } function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } } function step(result) { result.done ? resolve(result.value) : new P(function (resolve) { resolve(result.value); }).then(fulfilled, rejected); } step((generator = generator.apply(thisArg, _arguments || [])).next()); }); }; Object.defineProperty(exports, "__esModule", { value: true }); const chai_1 = require("chai"); const sinon = require("sinon"); const chai = require("chai"); chai.use(require("chai-as-promised")); const proxyquire = require("proxyquire"); const TestServer_1 = require("../TestServer"); const Token_1 = require("../shared/Token"); const SyncService_1 = require("../services/SyncService"); const Constants_1 = require("../shared/Constants"); const shared_1 = require("../shared"); const events_1 = require("events"); describe("SyncProxyService", () => { let service; let server; let httpProxy; let proxy; let syncService; let startArgs; beforeEach(() => __awaiter(this, void 0, void 0, function* () { server = new TestServer_1.TestServer(); proxy = { on: sinon.stub(), ws: sinon.stub(), close: sinon.stub(), }; httpProxy = { createProxy: sinon.stub().returns(proxy), }; const proxied = proxyquire("./SyncProxyService", { "http-proxy": httpProxy }); service = new proxied.SyncProxyService(); syncService = new SyncService_1.SyncService(); yield server.start(Object.assign({ services: [service, syncService] }, (startArgs || {}))); })); afterEach(() => __awaiter(this, void 0, void 0, function* () { yield server.shutdown().catch((err) => { }); })); function runHandler(req) { return __awaiter(this, void 0, void 0, function* () { const socket = new events_1.EventEmitter(); socket.destroy = sinon.stub(); if (!req.headers["sec-websocket-protocol"]) { req.headers["sec-websocket-protocol"] = "io.realm.sync.24"; } yield service["websocketHandler"](req, socket, sinon.stub()); return socket; }); } function createAuthorizationHeader(token, version = 1) { return `Realm-Access-Token version=${version} token="${token.sign(server.privateKey)}"`; } const validToken = new Token_1.AccessToken({ access: ["download"], identity: "some-user", appId: "io.realm.Test", path: "/some-uid/myrealm", syncLabel: "default", }); const adminToken = new Token_1.AccessToken({ access: ["download"], identity: Constants_1.Constants.AdminUserId, appId: "io.realm.Test", syncLabel: "default", }); const noSyncLabelToken = new Token_1.AccessToken({ access: ["download"], identity: "some-user", appId: "io.realm.Test", path: "/some-uid/myrealm" }); function assertConnectionProxied() { sinon.assert.called(httpProxy.createProxy); sinon.assert.called(proxy.on); sinon.assert.called(proxy.ws); } function describeAuthorizationBehavior(header = "authorization") { describe("without an authorization header", () => { it("should reject with an error", () => __awaiter(this, void 0, void 0, function* () { yield chai_1.assert.isRejected(runHandler({ headers: {}, }), "Authorization header was not provided"); })); }); describe("with an invalid access token header", () => { it("should reject with an error", () => __awaiter(this, void 0, void 0, function* () { yield chai_1.assert.isRejected(runHandler({ headers: { [header]: "gibberish", }, }), "Authorization header is not in a valid format"); })); }); describe("with a valid access token header", () => { it("should open a proxy connection", () => __awaiter(this, void 0, void 0, function* () { yield chai_1.assert.isFulfilled(runHandler({ headers: { [header]: createAuthorizationHeader(validToken), }, params: { path: "/some-uid/myrealm", } })); assertConnectionProxied(); })); describe("with mismatching path parameters", () => { describe("as a regular user", () => { it("should reject with an error", () => __awaiter(this, void 0, void 0, function* () { yield chai_1.assert.isRejected(runHandler({ headers: { [header]: createAuthorizationHeader(validToken), }, params: { path: "/some-uid/otherrealm", } }), "Your request parameters did not validate."); })); }); describe("as an admin user", () => { it("should fulfill", () => __awaiter(this, void 0, void 0, function* () { yield chai_1.assert.isFulfilled(runHandler({ headers: { [header]: createAuthorizationHeader(adminToken), }, params: { path: "/some-uid/otherrealm", } })); assertConnectionProxied(); })); }); }); describe("without a syncLabel", () => { it("should lookup the location", () => __awaiter(this, void 0, void 0, function* () { const stub = sinon.stub(server.realmDirectoryClient, "findByPath").returns(undefined); yield chai_1.assert.isRejected(runHandler({ headers: { [header]: createAuthorizationHeader(noSyncLabelToken), }, params: { path: "/some-uid/myrealm", } }), "AccessToken is not valid: sync label was not found in token"); sinon.assert.calledWithMatch(stub, { realmPath: "/some-uid/myrealm", shouldCreate: false, }); })); }); }); } describe("websocketHandler", () => { describe("with default authorization header name", () => { describeAuthorizationBehavior(); }); describe("with custom authorization header name", () => { before(() => { startArgs = { authorizationHeaderName: "MyCustomHeader" }; }); describeAuthorizationBehavior("mycustomheader"); after(() => { startArgs = undefined; }); }); describe.skip("sync service failover", () => { it("should close existing connection", () => __awaiter(this, void 0, void 0, function* () { const socket = yield chai_1.assert.isFulfilled(runHandler({ headers: { "authorization": createAuthorizationHeader(validToken), }, params: { path: "/some-uid/myrealm", } })); sinon.assert.calledOnce(proxy.ws); sinon.assert.notCalled(proxy.close); yield server.discovery.deregisterService(syncService); sinon.assert.calledOnce(proxy.close); sinon.assert.calledOnce(socket.destroy); yield chai_1.assert.isRejected(runHandler({ headers: { "authorization": createAuthorizationHeader(validToken), }, params: { path: "/some-uid/myrealm", } }), "The requested service is temporarily unavailable."); })); }); describe("with minimum sync protocol version", () => { before(() => { startArgs = { minimumSupportedSyncProtocolVersion: 20 }; }); function request(protocolVersion) { return runHandler({ headers: { "authorization": createAuthorizationHeader(validToken), "sec-websocket-protocol": `io.realm.sync.${protocolVersion}` }, params: { path: "/some-uid/myrealm", } }); } describe("when request protocol is lower version", () => { it("should return error", () => __awaiter(this, void 0, void 0, function* () { yield chai_1.assert.isRejected(request(10), "The server was not configured to support the requested operation."); })); }); describe("when request protocol is same version", () => { it("should open a proxy connection", () => __awaiter(this, void 0, void 0, function* () { yield chai_1.assert.isFulfilled(request(20)); assertConnectionProxied(); })); }); describe("when request protocol is higher version", () => { it("should open a proxy connection", () => __awaiter(this, void 0, void 0, function* () { yield chai_1.assert.isFulfilled(request(30)); assertConnectionProxied(); })); }); after(() => { startArgs = undefined; }); }); }); describe("stop", () => { describe("with existing connections", () => { it("should close existing connections", () => __awaiter(this, void 0, void 0, function* () { const socket = yield chai_1.assert.isFulfilled(runHandler({ headers: { "authorization": createAuthorizationHeader(validToken), }, params: { path: "/some-uid/myrealm", } })); yield server.shutdown(); sinon.assert.called(proxy.close); sinon.assert.called(socket.destroy); })); }); }); describe("as event emitter", () => { it("should emit socket connected/disconnected", () => __awaiter(this, void 0, void 0, function* () { const connectedPromise = shared_1.waitForEvent(service, "socketConnected"); const disconnectedPromise = shared_1.waitForEvent(service, "socketDisconnected"); const socket = yield runHandler({ headers: { ["authorization"]: createAuthorizationHeader(validToken), ["user-agent"]: "some-user-agent", }, params: { path: "/some-uid/myrealm", } }); const { path: connectedPath, userAgent: connectedUserAgent, socketId: connectedSocketId } = yield connectedPromise; chai_1.assert.equal(connectedUserAgent, "some-user-agent"); chai_1.assert.equal(connectedPath, "/some-uid/myrealm"); socket.emit("close"); const { path: disconnectedPath, userAgent: disconnectedUserAgent, socketId: disconnectedSocketId } = yield disconnectedPromise; chai_1.assert.equal(disconnectedUserAgent, "some-user-agent"); chai_1.assert.equal(disconnectedPath, "/some-uid/myrealm"); chai_1.assert.equal(connectedSocketId, disconnectedSocketId); })); }); }); //# sourceMappingURL=SyncProxyService.spec.js.map