socketio-jwt/test/authorizer_secret_function_qs.test.js

var fixture = require('./fixture/secret_function');
var request = require('request');
var io = require('socket.io-client');

describe('authorizer with secret function', function () {

  //start and stop the server
  before(fixture.start);
  after(fixture.stop);

  describe('when the user is not logged in', function () {

    it('should emit error with unauthorized handshake', function (done){
      var socket = io.connect('http://localhost:9000?token=boooooo', {
        'forceNew': true
      });

      socket.on('error', function(err){
        err.message.should.eql("jwt malformed");
        err.code.should.eql("invalid_token");
        socket.close();
        done();
      });
    });

  });

  describe('when the user is logged in', function() {

    beforeEach(function (done) {
      request.post({
        url: 'http://localhost:9000/login',
        json: { username: 'valid_signature', password: 'Pa123' }
      }, function (err, resp, body) {
        this.token = body.token;
        done();
      }.bind(this));
    });

    it('should do the handshake and connect', function (done){
      var socket = io.connect('http://localhost:9000', {
        'forceNew':true,
        'query': 'token=' + this.token
      });
      socket.on('connect', function(){
        socket.close();
        done();
      }).on('error', done);
    });
  });

  describe('unsigned token', function() {
    beforeEach(function () {
      this.token = 'eyJhbGciOiJub25lIiwiY3R5IjoiSldUIn0.eyJuYW1lIjoiSm9obiBGb28ifQ.';
    });

    it('should not do the handshake and connect', function (done){
      var socket = io.connect('http://localhost:9000', {
        'forceNew':true,
        'query': 'token=' + this.token
      });
      socket.on('connect', function () {
        socket.close();
        done(new Error('this shouldnt happen'));
      }).on('error', function (err) {
        socket.close();
        err.message.should.eql("jwt signature is required");
        done();
      });
    });
  });

});
Add ability to generate secret dynamically This allow you to pass a function instead of an string in order to generate secret based on the new connection features. 2015-11-18 21:36:24 +01:00			`var fixture = require('./fixture/secret_function');`
			`var request = require('request');`
			`var io = require('socket.io-client');`

			`describe('authorizer with secret function', function () {`

			`//start and stop the server`
			`before(fixture.start);`
			`after(fixture.stop);`

			`describe('when the user is not logged in', function () {`

			`it('should emit error with unauthorized handshake', function (done){`
			`var socket = io.connect('http://localhost:9000?token=boooooo', {`
			`'forceNew': true`
			`});`

			`socket.on('error', function(err){`
			`err.message.should.eql("jwt malformed");`
			`err.code.should.eql("invalid_token");`
			`socket.close();`
			`done();`
			`});`
			`});`

			`});`

			`describe('when the user is logged in', function() {`

			`beforeEach(function (done) {`
			`request.post({`
			`url: 'http://localhost:9000/login',`
			`json: { username: 'valid_signature', password: 'Pa123' }`
			`}, function (err, resp, body) {`
			`this.token = body.token;`
			`done();`
			`}.bind(this));`
			`});`

			`it('should do the handshake and connect', function (done){`
			`var socket = io.connect('http://localhost:9000', {`
			`'forceNew':true,`
			`'query': 'token=' + this.token`
			`});`
			`socket.on('connect', function(){`
			`socket.close();`
			`done();`
			`}).on('error', done);`
			`});`
			`});`

			`describe('unsigned token', function() {`
			`beforeEach(function () {`
			`this.token = 'eyJhbGciOiJub25lIiwiY3R5IjoiSldUIn0.eyJuYW1lIjoiSm9obiBGb28ifQ.';`
			`});`

			`it('should not do the handshake and connect', function (done){`
			`var socket = io.connect('http://localhost:9000', {`
			`'forceNew':true,`
			`'query': 'token=' + this.token`
			`});`
			`socket.on('connect', function () {`
			`socket.close();`
			`done(new Error('this shouldnt happen'));`
			`}).on('error', function (err) {`
			`socket.close();`
			`err.message.should.eql("jwt signature is required");`
			`done();`
			`});`
			`});`
			`});`

			`});`