bubblev
/
swagger-ui
4
0
Fork 0
Koodi Ongelmat 0 Pull-pyynnöt 0 Julkaisut 0 Wiki Toiminta
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4410 Commitit
2 Branchit
306 MiB
 
 
 
 
Puu: 560b428f0a
Branchit Tagit
${ item.name }
Create branch ${ searchTerm }
from '560b428f0a'
${ noResults }
swagger-ui/test/mocha/core/oauth2-authorize.js

75 rivejä
2.7 KiB
Raaka Blame Historia 

  1. /* eslint-env mocha */

  2. import expect, { spyOn } from "expect"

  3. import win from "core/window"

  4. import oauth2Authorize from "core/oauth2-authorize"

  5. import * as utils from "core/utils"

  6. 

  7. describe("oauth2", function () {

  8. 

  9.   let mockSchema = {

  10.     flow: "accessCode",

  11.     authorizationUrl: "https://testAuthorizationUrl"

  12.   }

  13. 

  14.   let authConfig = {

  15.     auth: { schema: { get: (key)=> mockSchema[key] } }, 

  16.     authActions: {}, 

  17.     errActions: {}, 

  18.     configs: { oauth2RedirectUrl: "" }, 

  19.     authConfigs: {}

  20.   }

  21. 

  22.   describe("authorize redirect", function () {

  23.     it("should build authorize url", function() {

  24.       const windowOpenSpy = spyOn(win, "open")

  25.       oauth2Authorize(authConfig)

  26.       expect(windowOpenSpy.calls.length).toEqual(1)

  27.       expect(windowOpenSpy.calls[0].arguments[0]).toMatch("https://testAuthorizationUrl?response_type=code&redirect_uri=&state=")

  28. 

  29.       windowOpenSpy.restore()

  30.     })

  31. 

  32.     it("should append query parameters to authorizeUrl with query parameters", function() {

  33.       const windowOpenSpy = spyOn(win, "open")

  34.       mockSchema.authorizationUrl = "https://testAuthorizationUrl?param=1"

  35.       oauth2Authorize(authConfig)

  36.       expect(windowOpenSpy.calls.length).toEqual(1)

  37.       expect(windowOpenSpy.calls[0].arguments[0]).toMatch("https://testAuthorizationUrl?param=1&response_type=code&redirect_uri=&state=")

  38.       

  39.       windowOpenSpy.restore()

  40.     })

  41. 

  42.     it("should send code_challenge when using authorizationCode flow with usePkceWithAuthorizationCodeGrant enabled", function () {

  43.       const windowOpenSpy = spyOn(win, "open")

  44.       mockSchema.flow = "authorizationCode"

  45. 

  46.       const expectedCodeVerifier = "mock_code_verifier"

  47.       const expectedCodeChallenge = "mock_code_challenge"

  48.       

  49.       const generateCodeVerifierSpy = spyOn(utils, "generateCodeVerifier").andReturn(expectedCodeVerifier)

  50.       const createCodeChallengeSpy = spyOn(utils, "createCodeChallenge").andReturn(expectedCodeChallenge)

  51. 

  52.       authConfig.authConfigs.usePkceWithAuthorizationCodeGrant = true

  53. 

  54.       oauth2Authorize(authConfig)

  55.       expect(win.open.calls.length).toEqual(1)

  56. 

  57.       const actualUrl = new URLSearchParams(win.open.calls[0].arguments[0])

  58.       expect(actualUrl.get("code_challenge")).toBe(expectedCodeChallenge)

  59.       expect(actualUrl.get("code_challenge_method")).toBe("S256")

  60. 

  61.       expect(createCodeChallengeSpy.calls.length).toEqual(1)

  62.       expect(createCodeChallengeSpy.calls[0].arguments[0]).toBe(expectedCodeVerifier)

  63. 

  64.       // The code_verifier should be stored to be able to send in

  65.       // on the TokenUrl call

  66.       expect(authConfig.auth.codeVerifier).toBe(expectedCodeVerifier)

  67. 

  68.       // Restore spies

  69.       windowOpenSpy.restore()

  70.       generateCodeVerifierSpy.restore()

  71.       createCodeChallengeSpy.restore()

  72.     })    

  73.   })

  74. })