chore: add semantic-release

close #153

.github/PULL_REQUEST_TEMPLATE.md

@@ -1,11 +1,4 @@
-<!--
+<!-- Please first discuss the change you wish to make via issue before making a change. It might avoid a waste of your time. -->
-
-Please first discuss the change you wish to make via issue before making a change. It might avoid a waste of your time.
-
-Before submitting your contribution, please take a moment to review this document:
-https://github.com/Thream/socketio-jwt/blob/master/CONTRIBUTING.md
-
--->
 
 ## What changes this PR introduce?
 

.github/dependabot.yml

@@ -1,5 +1,3 @@
-# For more information see: https://docs.github.com/en/github/administering-a-repository/configuration-options-for-dependency-updates
-
 version: 2
 updates:
   - package-ecosystem: 'github-actions'

.github/workflows/build.yml

@@ -0,0 +1,25 @@
+name: 'Build'
+
+on:
+  push:
+    branches: [master, develop]
+  pull_request:
+    branches: [master, develop]
+
+jobs:
+  build:
+    runs-on: 'ubuntu-latest'
+    steps:
+      - uses: 'actions/checkout@v2'
+
+      - name: 'Use Node.js'
+        uses: 'actions/setup-node@v2.3.0'
+        with:
+          node-version: '16.x'
+          cache: 'npm'
+
+      - name: 'Install'
+        run: 'npm install'
+
+      - name: 'Build Package'
+        run: 'npm run build'

.github/workflows/commitlint.yml

@@ -1,22 +0,0 @@
-# For more information see: https://github.com/marketplace/actions/commit-linter
-
-name: 'Lint Commit Messages'
-
-on:
-  push:
-    branches: [master, develop]
-  pull_request_review:
-    branches: [master, develop]
-    types: [submitted]
-
-jobs:
-  commitlint:
-    if: ${{ (github.event_name == 'push') || (github.event_name == 'pull_request_review' && github.event.review.state == 'approved' && (github.event.review.author_association == 'COLLABORATOR' || github.event.review.author_association == 'MEMBER' || github.event.review.author_association == 'OWNER') && !github.event.pull_request.draft && github.event.pull_request.state == 'open') }}
-    runs-on: 'ubuntu-latest'
-    steps:
-      - uses: 'actions/checkout@v2'
-        with:
-          fetch-depth: 0
-      - uses: 'wagoid/commitlint-github-action@v3.0.6'
-        with:
-          configFile: '.commitlintrc.json'

.github/workflows/lint.yml

@@ -0,0 +1,27 @@
+name: 'Lint'
+
+on:
+  push:
+    branches: [master, develop]
+  pull_request:
+    branches: [master, develop]
+
+jobs:
+  lint:
+    runs-on: 'ubuntu-latest'
+    steps:
+      - uses: 'actions/checkout@v2'
+
+      - name: 'Use Node.js'
+        uses: 'actions/setup-node@v2.3.0'
+        with:
+          node-version: '16.x'
+          cache: 'npm'
+
+      - name: 'Install'
+        run: 'npm install'
+
+      - run: 'npm run lint:commit -- --to "${{ github.sha }}"'
+      - run: 'npm run lint:editorconfig'
+      - run: 'npm run lint:markdown'
+      - run: 'npm run lint:typescript'

.github/workflows/nodejs.yml

@@ -1,49 +0,0 @@
-# For more information see: https://help.github.com/actions/language-and-framework-guides/using-nodejs-with-github-actions
-
-name: 'Node.js CI'
-
-on:
-  push:
-    branches: [master, develop]
-  pull_request_review:
-    branches: [master, develop]
-    types: [submitted]
-
-jobs:
-  ci_app:
-    if: ${{ (github.event_name == 'push') || (github.event_name == 'pull_request_review' && github.event.review.state == 'approved' && (github.event.review.author_association == 'COLLABORATOR' || github.event.review.author_association == 'MEMBER' || github.event.review.author_association == 'OWNER') && !github.event.pull_request.draft && github.event.pull_request.state == 'open') }}
-    runs-on: 'ubuntu-latest'
-    strategy:
-      matrix:
-        node-version: [14.x]
-    steps:
-      - uses: 'actions/checkout@v2'
-
-      - name: Use Node.js ${{ matrix.node-version }}
-        uses: 'actions/setup-node@v2.1.5'
-        with:
-          node-version: ${{ matrix.node-version }}
-
-      - name: 'Cache dependencies'
-        uses: 'actions/cache@v2.1.4'
-        with:
-          path: '.npm'
-          key: ${{ runner.os }}-${{ hashFiles('**/package-lock.json') }}
-
-      - name: 'Install dependencies'
-        run: 'npm ci --cache .npm --prefer-offline'
-
-      - name: 'Lint'
-        run: 'npm run lint'
-
-      - name: 'MarkdownLint'
-        run: 'npm run markdownlint'
-
-      - name: 'Build'
-        run: 'npm run build'
-
-      - name: 'Run the tests and generate coverage report'
-        run: 'npm test'
-
-      - name: 'Upload coverage to Codecov'
-        uses: 'codecov/codecov-action@v1'

.github/workflows/npm-publish.yml

@@ -1,36 +0,0 @@
-# For more information see: https://help.github.com/actions/language-and-framework-guides/publishing-nodejs-packages
-
-name: 'Node.js Package'
-
-on:
-  release:
-    types: [created]
-
-jobs:
-  publish-npm:
-    runs-on: 'ubuntu-latest'
-    steps:
-      - uses: 'actions/checkout@v2'
-
-      - name: Use Node.js ${{ matrix.node-version }}
-        uses: 'actions/setup-node@v2.1.5'
-        with:
-          node-version: 14
-          registry-url: 'https://registry.npmjs.org/'
-
-      - name: 'Cache dependencies'
-        uses: 'actions/cache@v2.1.4'
-        with:
-          path: '.npm'
-          key: ${{ runner.os }}-${{ hashFiles('**/package-lock.json') }}
-
-      - name: 'Install dependencies'
-        run: 'npm ci --cache .npm --prefer-offline'
-
-      - name: 'Build'
-        run: 'npm run build'
-
-      - name: 'Publish package on npm'
-        run: 'npm publish --access public'
-        env:
-          NODE_AUTH_TOKEN: ${{secrets.NPM_TOKEN}}

.github/workflows/release.yml

@@ -0,0 +1,29 @@
+name: 'Release'
+
+on:
+  push:
+    branches: [master]
+
+jobs:
+  release:
+    runs-on: 'ubuntu-latest'
+    steps:
+      - uses: 'actions/checkout@v2'
+
+      - name: 'Use Node.js'
+        uses: 'actions/setup-node@v2.3.0'
+        with:
+          node-version: '16.x'
+          cache: 'npm'
+
+      - name: 'Install'
+        run: 'npm install'
+
+      - name: 'Build Package'
+        run: 'npm run build'
+
+      - name: 'Release'
+        run: 'npm run release'
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          NPM_TOKEN: ${{ secrets.NPM_TOKEN }}

.github/workflows/test.yml

@@ -0,0 +1,28 @@
+name: 'Test'
+
+on:
+  push:
+    branches: [master, develop]
+  pull_request:
+    branches: [master, develop]
+
+jobs:
+  test:
+    runs-on: 'ubuntu-latest'
+    steps:
+      - uses: 'actions/checkout@v2'
+
+      - name: 'Use Node.js'
+        uses: 'actions/setup-node@v2.3.0'
+        with:
+          node-version: '16.x'
+          cache: 'npm'
+
+      - name: 'Install'
+        run: 'npm install'
+
+      - name: 'Test'
+        run: 'npm run test'
+
+      - name: 'Upload Coverage'
+        uses: 'codecov/codecov-action@v2.0.1'

.husky/.gitignore

@@ -1 +0,0 @@
-_

.husky/commit-msg

@@ -1,4 +1,4 @@
 #!/bin/sh
 . "$(dirname "$0")/_/husky.sh"
 
-npx --no-install commitlint --edit
+npm run lint:commit -- --edit

.husky/pre-commit

@@ -1,5 +1,7 @@
 #!/bin/sh
 . "$(dirname "$0")/_/husky.sh"
 
-npm run lint
+npm run lint:editorconfig
-npm run markdownlint
+npm run lint:markdown
+npm run lint:typescript
+npm run build

.releaserc.json

@@ -0,0 +1,19 @@
+{
+  "branches": ["master"],
+  "plugins": [
+    [
+      "@semantic-release/commit-analyzer",
+      {
+        "preset": "conventionalcommits"
+      }
+    ],
+    [
+      "@semantic-release/release-notes-generator",
+      {
+        "preset": "conventionalcommits"
+      }
+    ],
+    "@semantic-release/npm",
+    "@semantic-release/github"
+  ]
+}

CODE_OF_CONDUCT.md

@@ -0,0 +1,132 @@
+# Contributor Covenant Code of Conduct
+
+## Our Pledge
+
+We as members, contributors, and leaders pledge to make participation in our
+community a harassment-free experience for everyone, regardless of age, body
+size, visible or invisible disability, ethnicity, sex characteristics, gender
+identity and expression, level of experience, education, socio-economic status,
+nationality, personal appearance, race, religion, or sexual identity
+and orientation.
+
+We pledge to act and interact in ways that contribute to an open, welcoming,
+diverse, inclusive, and healthy community.
+
+## Our Standards
+
+Examples of behavior that contributes to a positive environment for our
+community include:
+
+- Demonstrating empathy and kindness toward other people
+- Being respectful of differing opinions, viewpoints, and experiences
+- Giving and gracefully accepting constructive feedback
+- Accepting responsibility and apologizing to those affected by our mistakes,
+  and learning from the experience
+- Focusing on what is best not just for us as individuals, but for the
+  overall community
+
+Examples of unacceptable behavior include:
+
+- The use of sexualized language or imagery, and sexual attention or
+  advances of any kind
+- Trolling, insulting or derogatory comments, and personal or political attacks
+- Public or private harassment
+- Publishing others' private information, such as a physical or email
+  address, without their explicit permission
+- Other conduct which could reasonably be considered inappropriate in a
+  professional setting
+
+## Enforcement Responsibilities
+
+Community leaders are responsible for clarifying and enforcing our standards of
+acceptable behavior and will take appropriate and fair corrective action in
+response to any behavior that they deem inappropriate, threatening, offensive,
+or harmful.
+
+Community leaders have the right and responsibility to remove, edit, or reject
+comments, commits, code, wiki edits, issues, and other contributions that are
+not aligned to this Code of Conduct, and will communicate reasons for moderation
+decisions when appropriate.
+
+## Scope
+
+This Code of Conduct applies within all community spaces, and also applies when
+an individual is officially representing the community in public spaces.
+Examples of representing our community include using an official e-mail address,
+posting via an official social media account, or acting as an appointed
+representative at an online or offline event.
+
+## Enforcement
+
+Instances of abusive, harassing, or otherwise unacceptable behavior may be
+reported to the community leaders responsible for enforcement at
+contact@divlo.fr.
+All complaints will be reviewed and investigated promptly and fairly.
+
+All community leaders are obligated to respect the privacy and security of the
+reporter of any incident.
+
+## Enforcement Guidelines
+
+Community leaders will follow these Community Impact Guidelines in determining
+the consequences for any action they deem in violation of this Code of Conduct:
+
+### 1. Correction
+
+**Community Impact**: Use of inappropriate language or other behavior deemed
+unprofessional or unwelcome in the community.
+
+**Consequence**: A private, written warning from community leaders, providing
+clarity around the nature of the violation and an explanation of why the
+behavior was inappropriate. A public apology may be requested.
+
+### 2. Warning
+
+**Community Impact**: A violation through a single incident or series
+of actions.
+
+**Consequence**: A warning with consequences for continued behavior. No
+interaction with the people involved, including unsolicited interaction with
+those enforcing the Code of Conduct, for a specified period of time. This
+includes avoiding interactions in community spaces as well as external channels
+like social media. Violating these terms may lead to a temporary or
+permanent ban.
+
+### 3. Temporary Ban
+
+**Community Impact**: A serious violation of community standards, including
+sustained inappropriate behavior.
+
+**Consequence**: A temporary ban from any sort of interaction or public
+communication with the community for a specified period of time. No public or
+private interaction with the people involved, including unsolicited interaction
+with those enforcing the Code of Conduct, is allowed during this period.
+Violating these terms may lead to a permanent ban.
+
+### 4. Permanent Ban
+
+**Community Impact**: Demonstrating a pattern of violation of community
+standards, including sustained inappropriate behavior, harassment of an
+individual, or aggression toward or disparagement of classes of individuals.
+
+**Consequence**: A permanent ban from any sort of public interaction within
+the community.
+
+## Attribution
+
+This Code of Conduct is adapted from the [Contributor Covenant][homepage],
+version 2.0, available at
+[https://www.contributor-covenant.org/version/2/0/code_of_conduct.html][v2.0].
+
+Community Impact Guidelines were inspired by
+[Mozilla's code of conduct enforcement ladder][mozilla coc].
+
+For answers to common questions about this code of conduct, see the FAQ at
+[https://www.contributor-covenant.org/faq][faq]. Translations are available
+at [https://www.contributor-covenant.org/translations][translations].
+
+[homepage]: https://www.contributor-covenant.org
+[v2.0]: https://www.contributor-covenant.org/version/2/0/code_of_conduct.html
+[mozilla coc]: https://github.com/mozilla/diversity
+[faq]: https://www.contributor-covenant.org/faq
+[translations]: https://www.contributor-covenant.org/translations

CONTRIBUTING.md

@@ -4,7 +4,7 @@ Thanks a lot for your interest in contributing to **Thream/socketio-jwt**! 🎉
 
 ## Code of Conduct
 
-**Thream** has adopted the [Contributor Covenant](https://www.contributor-covenant.org/) as its Code of Conduct, and we expect project participants to adhere to it. Please read [the full text](https://github.com/Thream/Thream/blob/master/.github/CODE_OF_CONDUCT.md) so that you can understand what actions will and will not be tolerated.
+**Thream** has adopted the [Contributor Covenant](https://www.contributor-covenant.org/) as its Code of Conduct, and we expect project participants to adhere to it. Please read [the full text](./CODE_OF_CONDUCT.md) so that you can understand what actions will and will not be tolerated.
 
 ## Open Development
 

README.md

@@ -5,14 +5,19 @@
 </p>
 
 <p align="center">
-  <a href="https://github.com/Thream/socketio-jwt/actions?query=workflow%3A%22Node.js+CI%22"><img src="https://github.com/Thream/socketio-jwt/workflows/Node.js%20CI/badge.svg" alt="Node.js CI" /></a>
+  <a href="./CONTRIBUTING.md"><img src="https://img.shields.io/badge/PRs-welcome-brightgreen.svg?style=flat" /></a>
-  <a href="https://codecov.io/gh/Thream/socketio-jwt"><img src="https://codecov.io/gh/Thream/socketio-jwt/branch/develop/graph/badge.svg" alt="codecov" /></a>
-  <a href="https://dependabot.com/"><img src="https://badgen.net/github/dependabot/Thream/socketio-jwt?icon=dependabot" alt="Dependabot badge" /></a>
-  <a href="https://www.npmjs.com/package/@thream/socketio-jwt"><img src="https://img.shields.io/npm/v/@thream/socketio-jwt.svg" alt="npm version"></a>
-  <a href="https://www.npmjs.com/package/ts-standard"><img alt="TypeScript Standard Style" src="https://camo.githubusercontent.com/f87caadb70f384c0361ec72ccf07714ef69a5c0a/68747470733a2f2f62616467656e2e6e65742f62616467652f636f64652532307374796c652f74732d7374616e646172642f626c75653f69636f6e3d74797065736372697074"/></a>
   <a href="./LICENSE"><img src="https://img.shields.io/badge/licence-MIT-blue.svg" alt="Licence MIT"/></a>
+  <a href="./CODE_OF_CONDUCT.md"><img src="https://img.shields.io/badge/Contributor%20Covenant-v2.0%20adopted-ff69b4.svg" alt="Contributor Covenant" /></a>
+  <a href="https://dependabot.com/"><img src="https://badgen.net/github/dependabot/Thream/socketio-jwt?icon=dependabot" alt="Dependabot badge" /></a>
+  <br/>
+  <a href="https://github.com/Thream/socketio-jwt/actions/workflows/build.yml"><img src="https://github.com/Thream/socketio-jwt/actions/workflows/build.yml/badge.svg?branch=develop" /></a>
+  <a href="https://github.com/Thream/socketio-jwt/actions/workflows/lint.yml"><img src="https://github.com/Thream/socketio-jwt/actions/workflows/lint.yml/badge.svg?branch=develop" /></a>
+  <a href="https://github.com/Thream/socketio-jwt/actions/workflows/test.yml"><img src="https://github.com/Thream/socketio-jwt/actions/workflows/test.yml/badge.svg?branch=develop" /></a>
+  <a href="https://codecov.io/gh/Thream/socketio-jwt"><img src="https://codecov.io/gh/Thream/socketio-jwt/branch/develop/graph/badge.svg" alt="codecov" /></a>
+  <br />
   <a href="https://conventionalcommits.org"><img src="https://img.shields.io/badge/Conventional%20Commits-1.0.0-yellow.svg" alt="Conventional Commits" /></a>
-  <a href="https://github.com/Thream/Thream/blob/master/.github/CODE_OF_CONDUCT.md"><img src="https://img.shields.io/badge/Contributor%20Covenant-v2.0%20adopted-ff69b4.svg" alt="Contributor Covenant" /></a>
+  <a href="https://github.com/semantic-release/semantic-release"><img src="https://img.shields.io/badge/%20%20%F0%9F%93%A6%F0%9F%9A%80-semantic--release-e10079.svg" alt="semantic-release" /></a>
+  <a href="https://www.npmjs.com/package/@thream/socketio-jwt"><img src="https://img.shields.io/npm/v/@thream/socketio-jwt.svg" alt="npm version"></a>
 </p>
 
 ## 📜 About

jest.config.js

@@ -0,0 +1,8 @@
+module.exports = {
+  preset: 'ts-jest',
+  testEnvironment: 'node',
+  rootDir: './src',
+  setupFilesAfterEnv: ['<rootDir>/__test__/setup.ts'],
+  collectCoverage: true,
+  coverageDirectory: '../coverage/'
+}

package.json

@@ -1,6 +1,6 @@
 {
   "name": "@thream/socketio-jwt",
-  "version": "2.1.0",
+  "version": "0.0.0-development",
   "description": "Authenticate socket.io incoming connections with JWTs.",
   "license": "MIT",
   "main": "build/index.js",
@@ -9,7 +9,7 @@
     "build"
   ],
   "engines": {
-    "node": ">=12"
+    "node": ">=12.0.0"
   },
   "keywords": [
     "socket",
@@ -25,40 +25,6 @@
     "url": "https://github.com/Thream/socketio-jwt/issues"
   },
   "homepage": "https://github.com/Thream/socketio-jwt#readme",
-  "release-it": {
-    "git": {
-      "commit": false,
-      "push": false,
-      "tag": false
-    },
-    "github": {
-      "release": false
-    },
-    "npm": {
-      "publish": false
-    },
-    "hooks": {
-      "before:init": [
-        "npm run lint",
-        "npm run markdownlint",
-        "npm run build",
-        "npm run test"
-      ]
-    },
-    "plugins": {
-      "@release-it/conventional-changelog": {
-        "preset": "angular",
-        "infile": "CHANGELOG.md"
-      }
-    }
-  },
-  "jest": {
-    "preset": "ts-jest",
-    "testEnvironment": "node",
-    "rootDir": "./src",
-    "collectCoverage": true,
-    "coverageDirectory": "../coverage/"
-  },
   "ts-standard": {
     "ignore": [
       "build",
@@ -73,9 +39,11 @@
   },
   "scripts": {
     "build": "rimraf ./build && tsc",
-    "markdownlint": "markdownlint '**/*.md' --dot --ignore node_modules",
+    "lint:commit": "commitlint",
-    "lint": "ts-standard",
+    "lint:editorconfig": "editorconfig-checker",
-    "release": "release-it",
+    "lint:markdown": "markdownlint '**/*.md' --dot --ignore node_modules",
+    "lint:typescript": "ts-standard",
+    "release": "semantic-release",
     "test": "jest",
     "postinstall": "husky install",
     "prepublishOnly": "pinst --disable",
@@ -88,27 +56,27 @@
     "jsonwebtoken": "8.5.1"
   },
   "devDependencies": {
-    "@commitlint/cli": "12.0.1",
+    "@commitlint/cli": "12.1.4",
-    "@commitlint/config-conventional": "12.0.1",
+    "@commitlint/config-conventional": "12.1.4",
-    "@release-it/conventional-changelog": "2.0.1",
+    "@types/express": "4.17.13",
-    "@types/express": "4.17.11",
+    "@types/jest": "26.0.24",
-    "@types/jest": "26.0.20",
+    "@types/jsonwebtoken": "8.5.4",
-    "@types/jsonwebtoken": "8.5.0",
+    "@types/node": "16.4.1",
-    "@types/node": "14.14.32",
     "@types/server-destroy": "1.0.1",
     "axios": "0.21.1",
+    "editorconfig-checker": "4.0.2",
     "express": "4.17.1",
-    "husky": "5.1.3",
+    "husky": "7.0.1",
-    "jest": "26.6.3",
+    "jest": "27.0.6",
-    "markdownlint-cli": "0.27.1",
+    "markdownlint-cli": "0.28.1",
     "pinst": "2.1.6",
-    "release-it": "14.4.1",
     "rimraf": "3.0.2",
+    "semantic-release": "17.4.4",
     "server-destroy": "1.0.1",
-    "socket.io": "3.1.2",
+    "socket.io": "4.1.3",
-    "socket.io-client": "3.1.2",
+    "socket.io-client": "4.1.3",
-    "ts-jest": "26.5.3",
+    "ts-jest": "27.0.4",
     "ts-standard": "10.0.0",
-    "typescript": "4.2.3"
+    "typescript": "4.3.5"
   }
 }

src/__test__/authorize.test.ts

@@ -6,15 +6,182 @@ import { fixtureStart, fixtureStop, getSocket, Profile } from './fixture'
 describe('authorize - with secret as string in options', () => {
   let token: string = ''
 
-  beforeEach(async (done) => {
+  beforeEach((done) => {
-    jest.setTimeout(15_000)
+    fixtureStart(async () => {
-    await fixtureStart(async () => {
       const response = await axios.post('http://localhost:9000/login')
       token = response.data.token
+    })
+      .then(done)
+      .catch((error) => {
+        done(error)
+      })
+  })
+
+  afterEach((done) => {
+    fixtureStop(done)
+  })
+
+  it('should emit error with no token provided', (done) => {
+    const socket = io('http://localhost:9000')
+    socket.on('connect_error', (err: any) => {
+      expect(err.data.message).toEqual('no token provided')
+      expect(err.data.code).toEqual('credentials_required')
+      socket.close()
       done()
     })
   })
 
+  it('should emit error with bad token format', (done) => {
+    const socket = io('http://localhost:9000', {
+      auth: { token: 'testing' }
+    })
+    socket.on('connect_error', (err: any) => {
+      expect(err.data.message).toEqual(
+        'Format is Authorization: Bearer [token]'
+      )
+      expect(err.data.code).toEqual('credentials_bad_format')
+      socket.close()
+      done()
+    })
+  })
+
+  it('should emit error with unauthorized handshake', (done) => {
+    const socket = io('http://localhost:9000', {
+      auth: { token: 'Bearer testing' }
+    })
+    socket.on('connect_error', (err: any) => {
+      expect(err.data.message).toEqual(
+        'Unauthorized: Token is missing or invalid Bearer'
+      )
+      expect(err.data.code).toEqual('invalid_token')
+      socket.close()
+      done()
+    })
+  })
+
+  it('should connect the user', (done) => {
+    const socket = io('http://localhost:9000', {
+      auth: { token: `Bearer ${token}` }
+    })
+    socket.on('connect', () => {
+      socket.close()
+      done()
+    })
+    socket.on('connect_error', (err: any) => {
+      done(err)
+    })
+  })
+})
+
+const secretCallback = async (): Promise<string> => {
+  return 'somesecret'
+}
+
+describe('authorize - with secret as callback in options', () => {
+  let token: string = ''
+
+  beforeEach((done) => {
+    fixtureStart(
+      async () => {
+        const response = await axios.post('http://localhost:9000/login')
+        token = response.data.token
+      },
+      { secret: secretCallback }
+    )
+      .then(done)
+      .catch((error) => {
+        done(error)
+      })
+  })
+
+  afterEach((done) => {
+    fixtureStop(done)
+  })
+
+  it('should emit error with no token provided', (done) => {
+    const socket = io('http://localhost:9000')
+    socket.on('connect_error', (err: any) => {
+      expect(err.data.message).toEqual('no token provided')
+      expect(err.data.code).toEqual('credentials_required')
+      socket.close()
+      done()
+    })
+  })
+
+  it('should emit error with bad token format', (done) => {
+    const socket = io('http://localhost:9000', {
+      auth: { token: 'testing' }
+    })
+    socket.on('connect_error', (err: any) => {
+      expect(err.data.message).toEqual(
+        'Format is Authorization: Bearer [token]'
+      )
+      expect(err.data.code).toEqual('credentials_bad_format')
+      socket.close()
+      done()
+    })
+  })
+
+  it('should emit error with unauthorized handshake', (done) => {
+    const socket = io('http://localhost:9000', {
+      auth: { token: 'Bearer testing' }
+    })
+    socket.on('connect_error', (err: any) => {
+      expect(err.data.message).toEqual(
+        'Unauthorized: Token is missing or invalid Bearer'
+      )
+      expect(err.data.code).toEqual('invalid_token')
+      socket.close()
+      done()
+    })
+  })
+
+  it('should connect the user', (done) => {
+    const socket = io('http://localhost:9000', {
+      auth: { token: `Bearer ${token}` }
+    })
+    socket.on('connect', () => {
+      socket.close()
+      done()
+    })
+    socket.on('connect_error', (err: any) => {
+      done(err)
+    })
+  })
+})
+
+describe('authorize - with onAuthentication callback in options', () => {
+  let token: string = ''
+  let wrongToken: string = ''
+
+  beforeEach((done) => {
+    fixtureStart(
+      async () => {
+        const response = await axios.post('http://localhost:9000/login')
+        token = response.data.token
+        const responseWrong = await axios.post(
+          'http://localhost:9000/login-wrong'
+        )
+        wrongToken = responseWrong.data.token
+      },
+      {
+        secret: secretCallback,
+        onAuthentication: (decodedToken: Profile) => {
+          if (!decodedToken.checkField) {
+            throw new Error('Check Field validation failed')
+          }
+          return {
+            email: decodedToken.email
+          }
+        }
+      }
+    )
+      .then(done)
+      .catch((error) => {
+        done(error)
+      })
+  })
+
   afterEach((done) => {
     fixtureStop(done)
   })
@@ -66,83 +233,6 @@ describe('authorize - with secret as string in options', () => {
       done()
     })
   })
-})
-
-const secretCallback = async (): Promise<string> => {
-  return 'somesecret'
-}
-
-describe('authorize - with secret as callback in options', () => {
-  let token: string = ''
-
-  beforeEach(async (done) => {
-    jest.setTimeout(15_000)
-    await fixtureStart(
-      async () => {
-        const response = await axios.post('http://localhost:9000/login')
-        token = response.data.token
-        done()
-      },
-      { secret: secretCallback }
-    )
-  })
-
-  afterEach((done) => {
-    fixtureStop(done)
-  })
-
-  it('should connect the user', (done) => {
-    const socket = io('http://localhost:9000', {
-      auth: { token: `Bearer ${token}` }
-    })
-    socket.on('connect', () => {
-      socket.close()
-      done()
-    })
-  })
-})
-
-describe('authorize - with onAuthentication callback in options', () => {
-  let token: string = ''
-  let wrongToken: string = ''
-
-  beforeEach(async (done) => {
-    jest.setTimeout(15_000)
-    await fixtureStart(
-      async () => {
-        const response = await axios.post('http://localhost:9000/login')
-        token = response.data.token
-        const responseWrong = await axios.post('http://localhost:9000/login-wrong')
-        wrongToken = responseWrong.data.token
-        done()
-      },
-      {
-        secret: secretCallback,
-        onAuthentication: (decodedToken: Profile) => {
-          if (!decodedToken.checkField) {
-            throw new Error('Check Field validation failed')
-          }
-          return {
-            email: decodedToken.email
-          }
-        }
-      }
-    )
-  })
-
-  afterEach((done) => {
-    fixtureStop(done)
-  })
-
-  it('should connect the user', (done) => {
-    const socket = io('http://localhost:9000', {
-      auth: { token: `Bearer ${token}` }
-    })
-    socket.on('connect', () => {
-      socket.close()
-      done()
-    })
-  })
 
   it('should contain user property', (done) => {
     const socketServer = getSocket()

src/__test__/fixture/index.ts

@@ -29,33 +29,29 @@ let server: HttpServer | null = null
 
 export const fixtureStart = async (
   done: any,
-  options: AuthorizeOptions = { secret: 'aaafoo super sercret' }
+  options: AuthorizeOptions = { secret: 'super secret' }
 ): Promise<void> => {
-  const app = express()
-  app.use(express.json())
-  let keySecret = 'secret'
-  if (typeof options.secret === 'string') {
-    keySecret = options.secret
-  } else {
-    keySecret = await options.secret({ header: { alg: 'RS256' }, payload: '' })
-  }
-  app.post('/login', (_req, res) => {
   const profile: Profile = {
     email: 'john@doe.com',
     id: 123,
     checkField: true
   }
+  let keySecret = ''
+  if (typeof options.secret === 'string') {
+    keySecret = options.secret
+  } else {
+    keySecret = await options.secret({ header: { alg: 'HS256' }, payload: profile })
+  }
+  const app = express()
+  app.use(express.json())
+  app.post('/login', (_req, res) => {
     const token = jwt.sign(profile, keySecret, {
       expiresIn: 60 * 60 * 5
     })
     return res.json({ token })
   })
   app.post('/login-wrong', (_req, res) => {
-    const profile: Profile = {
+    profile.checkField = false
-      email: 'john@doe.com',
-      id: 123,
-      checkField: false
-    }
     const token = jwt.sign(profile, keySecret, {
       expiresIn: 60 * 60 * 5
     })
@@ -71,7 +67,7 @@ export const fixtureStop = (callback: Function): void => {
   socket.io?.close()
   try {
     server?.destroy()
-  } catch (err) {}
+  } catch {}
   callback()
 }
 

src/__test__/setup.ts

@@ -0,0 +1 @@
+jest.setTimeout(15_000)

src/authorize.ts

@@ -30,7 +30,7 @@ interface CompleteDecodedToken {
   payload: any
 }
 
-type SecretCallback = (decodedToken: CompleteDecodedToken) => Promise<string>
+type SecretCallback = (decodedToken: CompleteDecodedToken) => Promise<string> | string
 
 export interface AuthorizeOptions {
   secret: string | SecretCallback

tsconfig.json

@@ -1,23 +1,13 @@
 {
   "compilerOptions": {
-    "target": "ES2019",
+    "target": "ESNext",
     "module": "commonjs",
-    "lib": ["ES2019"],
+    "lib": ["ESNext"],
     "moduleResolution": "node",
-    "allowJs": false,
-    "checkJs": false,
-    "declaration": true,
-    "sourceMap": false,
     "outDir": "./build",
     "rootDir": "./src",
-    "removeComments": false,
-    "noEmitOnError": true,
-    "importHelpers": false,
     "strict": true,
     "esModuleInterop": true,
-    "experimentalDecorators": true,
+    "declaration": true,
-    "emitDecoratorMetadata": true,
-    "forceConsistentCasingInFileNames": true,
-    "incremental": false
   }
 }