Home Explore Help
Sign In
Emmanuil
/
module_chat.js
Watch 1
Star 0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 5985163b40
Branches Tags
module_chat.js
/
node_modules
/
express-jwt
/
test
/
revocation.test.js

revocation.test.js 1.7 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667 
  1. var jwt = require('jsonwebtoken');
    2. 

  2. var assert = require('assert');
    3. 

  3. 

  4. var expressjwt = require('../lib');
    5. 

  5. var UnauthorizedError = require('../lib/errors/UnauthorizedError');
    6. 

  6. 

  7. describe('revoked jwts', function(){
    8. 

  8.   var secret = 'shhhhhh';
    9. 

  9. 

  10.   var revoked_id = '1234'
    11. 

  11. 

  12.   var middleware = expressjwt({
    13. 

  13.     secret: secret,
    14. 

  14.     algorithms: ['HS256'],
    15. 

  15.     isRevoked: function(req, payload, done){
    16. 

  16.       done(null, payload.jti && payload.jti === revoked_id);
    17. 

  17.     }
    18. 

  18.   });
    19. 

  19. 

  20.   it('should throw if token is revoked', function(){
    21. 

  21.     var req = {};
    22. 

  22.     var res = {};
    23. 

  23.     var token = jwt.sign({ jti: revoked_id, foo: 'bar'}, secret);
    24. 

  24. 

  25.     req.headers = {};
    26. 

  26.     req.headers.authorization = 'Bearer ' + token;
    27. 

  27. 

  28.     middleware(req, res, function(err) {
    29. 

  29.       assert.ok(err);
    30. 

  30.       assert.equal(err.code, 'revoked_token');
    31. 

  31.       assert.equal(err.message, 'The token has been revoked.');
    32. 

  32.     });
    33. 

  33.   });
    34. 

  34. 

  35.   it('should work if token is not revoked', function(){
    36. 

  36.     var req = {};
    37. 

  37.     var res = {};
    38. 

  38.     var token = jwt.sign({ jti: '1233', foo: 'bar'}, secret);
    39. 

  39. 

  40.     req.headers = {};
    41. 

  41.     req.headers.authorization = 'Bearer ' + token;
    42. 

  42. 

  43.     middleware(req, res, function() {
    44. 

  44.       assert.equal('bar', req.user.foo);
    45. 

  45.     });
    46. 

  46.   });
    47. 

  47. 

  48.   it('should throw if error occurs checking if token is revoked', function(){
    49. 

  49.     var req = {};
    50. 

  50.     var res = {};
    51. 

  51.     var token = jwt.sign({ jti: revoked_id, foo: 'bar'}, secret);
    52. 

  52. 

  53.     req.headers = {};
    54. 

  54.     req.headers.authorization = 'Bearer ' + token;
    55. 

  55. 

  56.     expressjwt({
    57. 

  57.       secret: secret,
    58. 

  58.       algorithms: ['HS256'],
    59. 

  59.       isRevoked: function(req, payload, done){
    60. 

  60.         done(new Error('An error ocurred'));
    61. 

  61.       }
    62. 

  62.     })(req, res, function(err) {
    63. 

  63.       assert.ok(err);
    64. 

  64.       assert.equal(err.message, 'An error ocurred');
    65. 

  65.     });
    66. 

  66.   });
    67. 

  67. });
    68.