2019-10-13 15:52:14 +02:00
|
|
|
const fixture = require('./fixture/secret_function');
|
|
|
|
const request = require('request');
|
|
|
|
const io = require('socket.io-client');
|
2015-11-18 21:36:24 +01:00
|
|
|
|
|
|
|
describe('authorizer with secret function', function () {
|
|
|
|
|
|
|
|
//start and stop the server
|
|
|
|
before(fixture.start);
|
|
|
|
after(fixture.stop);
|
|
|
|
|
|
|
|
describe('when the user is not logged in', function () {
|
|
|
|
|
2019-10-13 15:52:14 +02:00
|
|
|
it('should emit error with unauthorized handshake', function (done) {
|
|
|
|
const socket = io.connect('http://localhost:9000?token=boooooo', { forceNew: true });
|
2015-11-18 21:36:24 +01:00
|
|
|
|
2019-10-13 15:52:14 +02:00
|
|
|
socket.on('error', function(err) {
|
2015-11-18 21:36:24 +01:00
|
|
|
err.message.should.eql("jwt malformed");
|
|
|
|
err.code.should.eql("invalid_token");
|
|
|
|
socket.close();
|
|
|
|
done();
|
|
|
|
});
|
|
|
|
});
|
|
|
|
|
|
|
|
});
|
|
|
|
|
|
|
|
describe('when the user is logged in', function() {
|
|
|
|
|
|
|
|
beforeEach(function (done) {
|
|
|
|
request.post({
|
|
|
|
url: 'http://localhost:9000/login',
|
|
|
|
json: { username: 'valid_signature', password: 'Pa123' }
|
|
|
|
}, function (err, resp, body) {
|
|
|
|
this.token = body.token;
|
|
|
|
done();
|
|
|
|
}.bind(this));
|
|
|
|
});
|
|
|
|
|
2019-10-13 15:52:14 +02:00
|
|
|
it('should do the handshake and connect', function (done) {
|
|
|
|
const socket = io.connect('http://localhost:9000', {
|
|
|
|
forceNew: true,
|
|
|
|
query: 'token=' + this.token
|
2015-11-18 21:36:24 +01:00
|
|
|
});
|
2019-10-13 15:52:14 +02:00
|
|
|
|
|
|
|
socket
|
|
|
|
.on('connect', function() {
|
|
|
|
socket.close();
|
|
|
|
done();
|
|
|
|
})
|
|
|
|
.on('error', done);
|
2015-11-18 21:36:24 +01:00
|
|
|
});
|
|
|
|
});
|
|
|
|
|
|
|
|
describe('unsigned token', function() {
|
|
|
|
beforeEach(function () {
|
|
|
|
this.token = 'eyJhbGciOiJub25lIiwiY3R5IjoiSldUIn0.eyJuYW1lIjoiSm9obiBGb28ifQ.';
|
|
|
|
});
|
|
|
|
|
2019-10-13 15:52:14 +02:00
|
|
|
it('should not do the handshake and connect', function (done) {
|
|
|
|
const socket = io.connect('http://localhost:9000', {
|
|
|
|
forceNew: true,
|
|
|
|
query: 'token=' + this.token
|
2015-11-18 21:36:24 +01:00
|
|
|
});
|
2019-10-13 15:52:14 +02:00
|
|
|
|
|
|
|
socket
|
|
|
|
.on('connect', function () {
|
|
|
|
socket.close();
|
|
|
|
done(new Error('this shouldnt happen'));
|
|
|
|
})
|
|
|
|
.on('error', function (err) {
|
|
|
|
socket.close();
|
|
|
|
err.message.should.eql("jwt signature is required");
|
|
|
|
done();
|
|
|
|
});
|
2015-11-18 21:36:24 +01:00
|
|
|
});
|
|
|
|
});
|
|
|
|
|
|
|
|
});
|