accounts-frontend/src/services/api/authentication.test.js

/* eslint-disable camelcase */
import expect from 'test/unexpected';
import sinon from 'sinon';

import request from 'services/request';
import * as authentication from 'services/api/authentication';
import * as accounts from 'services/api/accounts';

describe('authentication api', () => {
    let server;

    beforeEach(() => {
        server = sinon.createFakeServer({
            autoRespond: true
        });

        ['get', 'post'].forEach((method) => {
            server[method] = (url, resp = {}, status = 200, headers = {}) => {
                server.respondWith(method, url, [
                    status,
                    { 'Content-Type': 'application/json', ...headers },
                    JSON.stringify(resp)
                ]);
            };
        });
    });

    afterEach(() => {
        server.restore();
    });

    describe('#login', () => {
        const params = {
            login: 'foo',
            password: 'secret',
            rememberMe: false
        };

        beforeEach(() => {
            sinon.stub(request, 'post').named('request.post');

            request.post.returns(Promise.resolve());
        });

        afterEach(() => {
            request.post.restore();
        });

        it('should post to login api', () => {
            authentication.login(params);

            expect(request.post, 'to have a call satisfying', [
                '/api/authentication/login', params, {}
            ]);
        });

        it('should disable any token', () => {
            authentication.login(params);

            expect(request.post, 'to have a call satisfying', [
                '/api/authentication/login', params, {token: null}
            ]);
        });
    });

    describe('#validateToken()', () => {
        const validToken = 'foo';
        const validRefreshToken = 'bar';
        const user = { id: 1 };
        const validateTokenArgs = [user.id, validToken, validRefreshToken];

        beforeEach(() => {
            sinon.stub(accounts, 'getInfo');
            accounts.getInfo.returns(Promise.resolve(user));
        });

        afterEach(() => {
            accounts.getInfo.restore();
        });

        it('should request accounts.getInfo', () =>
            expect(authentication.validateToken(...validateTokenArgs), 'to be fulfilled')
                .then(() => {
                    expect(accounts.getInfo, 'to have a call satisfying', [
                        user.id,
                        validToken,
                    ]);
                })
        );

        it('should resolve with both tokens and user object', () =>
            expect(authentication.validateToken(...validateTokenArgs), 'to be fulfilled with', {
                token: validToken,
                refreshToken: validRefreshToken,
                user,
            })
        );

        it('rejects if token has a bad type', () =>
            expect(authentication.validateToken(user.id, {}),
                'to be rejected with', 'token must be a string'
            )
        );

        it('should allow empty refreshToken', () =>
            expect(authentication.validateToken(user.id, 'foo', null), 'to be fulfilled')
        );

        it('rejects if accounts.getInfo request is unexpectedly failed', () => {
            const error = 'Something wrong';
            accounts.getInfo.returns(Promise.reject(error));

            return expect(authentication.validateToken(...validateTokenArgs),
                'to be rejected with', error
            );
        });

        describe('when token is expired', () => {
            const expiredResponse = {
                name: 'Unauthorized',
                message: 'Token expired',
                code: 0,
                status: 401,
                type: 'yii\\web\\UnauthorizedHttpException',
            };
            const newToken = 'baz';

            beforeEach(() => {
                sinon.stub(authentication, 'requestToken');

                accounts.getInfo.onCall(0).returns(Promise.reject(expiredResponse));
                authentication.requestToken.returns(Promise.resolve(newToken));
            });

            afterEach(() => {
                authentication.requestToken.restore();
            });

            it('resolves with new token and user object', async () => {
                server.post('/api/authentication/refresh-token', {
                    access_token: newToken,
                    refresh_token: validRefreshToken,
                    success: true,
                    expires_in: 50000
                });


                await expect(authentication.validateToken(...validateTokenArgs),
                    'to be fulfilled with', {token: newToken, refreshToken: validRefreshToken, user}
                );

                expect(server.requests[0].requestBody, 'to equal', `refresh_token=${validRefreshToken}`);
            });

            it('rejects if token request failed', () => {
                const error = {error: 'Unexpected error example'};
                server.post('/api/authentication/refresh-token', error, 500);

                return expect(authentication.validateToken(...validateTokenArgs),
                    'to be rejected with', error
                );
            });
        });

        describe('when token is incorrect', () => {
            const expiredResponse = {
                name: 'Unauthorized',
                message: 'Incorrect token',
                code: 0,
                status: 401,
                type: 'yii\\web\\UnauthorizedHttpException',
            };
            const newToken = 'baz';

            beforeEach(() => {
                accounts.getInfo.onCall(0).returns(Promise.reject(expiredResponse));
            });

            it('resolves with new token and user object', async () => {
                server.post('/api/authentication/refresh-token', {
                    access_token: newToken,
                    refresh_token: validRefreshToken,
                    success: true,
                    expires_in: 50000
                });


                await expect(authentication.validateToken(...validateTokenArgs),
                    'to be fulfilled with', {token: newToken, refreshToken: validRefreshToken, user}
                );

                expect(server.requests[0].requestBody, 'to equal', `refresh_token=${validRefreshToken}`);
            });

            it('rejects if token request failed', () => {
                const error = {error: 'Unexpected error example'};
                server.post('/api/authentication/refresh-token', error, 500);

                return expect(authentication.validateToken(...validateTokenArgs),
                    'to be rejected with', error
                );
            });
        });
    });

    describe('#logout', () => {
        beforeEach(() => {
            sinon.stub(request, 'post').named('request.post');
        });

        afterEach(() => {
            request.post.restore();
        });

        it('should request logout api', () => {
            authentication.logout();

            expect(request.post, 'to have a call satisfying', [
                '/api/authentication/logout', {}, {}
            ]);
        });

        it('returns a promise', () => {
            request.post.returns(Promise.resolve());

            return expect(authentication.logout(), 'to be fulfilled');
        });

        it('overrides token if provided', () => {
            const token = 'foo';

            authentication.logout(token);

            expect(request.post, 'to have a call satisfying', [
                '/api/authentication/logout', {}, {token}
            ]);
        });
    });

    describe('#requestToken', () => {
        const refreshToken = 'refresh-token';

        beforeEach(() => {
            sinon.stub(request, 'post').named('request.post');
        });

        afterEach(() => {
            request.post.restore();
        });

        it('should request refresh-token api', () => {
            request.post.returns(Promise.resolve({}));

            authentication.requestToken(refreshToken);

            expect(request.post, 'to have a call satisfying', [
                '/api/authentication/refresh-token', {
                    refresh_token: refreshToken // eslint-disable-line
                }, {}
            ]);
        });

        it('should disable bearer auth for request', () => {
            request.post.returns(Promise.resolve({}));

            authentication.requestToken(refreshToken);

            expect(request.post, 'to have a call satisfying', [
                '/api/authentication/refresh-token', {
                    refresh_token: refreshToken // eslint-disable-line
                }, {token: null}
            ]);
        });

        it('should resolve with token', () => {
            const token = 'token';

            request.post.returns(Promise.resolve({
                access_token: token // eslint-disable-line
            }));

            return expect(authentication.requestToken(refreshToken),
                'to be fulfilled with', token,
            );
        });
    });
});
#355: fix authentication.test.js 2019-02-05 02:44:58 +05:30			`/* eslint-disable camelcase */`
Major deps updates: router, redux, intl, react-transition-group, flow-type, testing deps 2019-06-30 19:02:50 +05:30			`import expect from 'test/unexpected';`
Disable bearer header for refresh-token request 2016-12-13 01:37:49 +05:30			`import sinon from 'sinon';`
#48: integrate accounts with app 2016-11-05 15:41:41 +05:30
#48: call authentication.logout for each revoked account 2016-11-15 11:25:15 +05:30			`import request from 'services/request';`
Completely migrate to the new backend API 2019-01-28 00:42:58 +05:30			`import * as authentication from 'services/api/authentication';`
			`import * as accounts from 'services/api/accounts';`
#48: integrate accounts with app 2016-11-05 15:41:41 +05:30
			`describe('authentication api', () => {`
#355: fix authentication.test.js 2019-02-05 02:44:58 +05:30			`let server;`

			`beforeEach(() => {`
			`server = sinon.createFakeServer({`
			`autoRespond: true`
			`});`

			`['get', 'post'].forEach((method) => {`
			`server[method] = (url, resp = {}, status = 200, headers = {}) => {`
			`server.respondWith(method, url, [`
			`status,`
			`{ 'Content-Type': 'application/json', ...headers },`
			`JSON.stringify(resp)`
			`]);`
			`};`
			`});`
			`});`

			`afterEach(() => {`
			`server.restore();`
			`});`

Ignore token for some guest-specific requests 2016-12-25 23:39:47 +05:30			`describe('#login', () => {`
			`const params = {`
			`login: 'foo',`
			`password: 'secret',`
			`rememberMe: false`
			`};`

			`beforeEach(() => {`
			`sinon.stub(request, 'post').named('request.post');`
#305: add mfa step during auth 2017-08-23 00:09:08 +05:30
			`request.post.returns(Promise.resolve());`
Ignore token for some guest-specific requests 2016-12-25 23:39:47 +05:30			`});`

			`afterEach(() => {`
			`request.post.restore();`
			`});`

			`it('should post to login api', () => {`
			`authentication.login(params);`

			`expect(request.post, 'to have a call satisfying', [`
			`'/api/authentication/login', params, {}`
			`]);`
			`});`

			`it('should disable any token', () => {`
			`authentication.login(params);`

			`expect(request.post, 'to have a call satisfying', [`
			`'/api/authentication/login', params, {token: null}`
			`]);`
			`});`
			`});`

#48: integrate accounts with app 2016-11-05 15:41:41 +05:30			`describe('#validateToken()', () => {`
Completely migrate to the new backend API 2019-01-28 00:42:58 +05:30			`const validToken = 'foo';`
			`const validRefreshToken = 'bar';`
			`const user = { id: 1 };`
			`const validateTokenArgs = [user.id, validToken, validRefreshToken];`
#48: integrate accounts with app 2016-11-05 15:41:41 +05:30
			`beforeEach(() => {`
Completely migrate to the new backend API 2019-01-28 00:42:58 +05:30			`sinon.stub(accounts, 'getInfo');`
			`accounts.getInfo.returns(Promise.resolve(user));`
#48: integrate accounts with app 2016-11-05 15:41:41 +05:30			`});`

			`afterEach(() => {`
Completely migrate to the new backend API 2019-01-28 00:42:58 +05:30			`accounts.getInfo.restore();`
#48: integrate accounts with app 2016-11-05 15:41:41 +05:30			`});`

Completely migrate to the new backend API 2019-01-28 00:42:58 +05:30			`it('should request accounts.getInfo', () =>`
			`expect(authentication.validateToken(...validateTokenArgs), 'to be fulfilled')`
#48: integrate accounts with app 2016-11-05 15:41:41 +05:30			`.then(() => {`
Completely migrate to the new backend API 2019-01-28 00:42:58 +05:30			`expect(accounts.getInfo, 'to have a call satisfying', [`
			`user.id,`
			`validToken,`
#48: integrate accounts with app 2016-11-05 15:41:41 +05:30			`]);`
			`})`
			`);`

#246: remove redundant /current calls during account authentication 2017-01-06 11:34:14 +05:30			`it('should resolve with both tokens and user object', () =>`
Completely migrate to the new backend API 2019-01-28 00:42:58 +05:30			`expect(authentication.validateToken(...validateTokenArgs), 'to be fulfilled with', {`
			`token: validToken,`
			`refreshToken: validRefreshToken,`
			`user,`
#246: remove redundant /current calls during account authentication 2017-01-06 11:34:14 +05:30			`})`
#48: integrate accounts with app 2016-11-05 15:41:41 +05:30			`);`

			`it('rejects if token has a bad type', () =>`
Completely migrate to the new backend API 2019-01-28 00:42:58 +05:30			`expect(authentication.validateToken(user.id, {}),`
#48: integrate accounts with app 2016-11-05 15:41:41 +05:30			`'to be rejected with', 'token must be a string'`
			`)`
			`);`

Do not require refreshToken during auth 2016-11-19 21:20:30 +05:30			`it('should allow empty refreshToken', () =>`
Completely migrate to the new backend API 2019-01-28 00:42:58 +05:30			`expect(authentication.validateToken(user.id, 'foo', null), 'to be fulfilled')`
#48: integrate accounts with app 2016-11-05 15:41:41 +05:30			`);`

Completely migrate to the new backend API 2019-01-28 00:42:58 +05:30			`it('rejects if accounts.getInfo request is unexpectedly failed', () => {`
#48: integrate accounts with app 2016-11-05 15:41:41 +05:30			`const error = 'Something wrong';`
Completely migrate to the new backend API 2019-01-28 00:42:58 +05:30			`accounts.getInfo.returns(Promise.reject(error));`
#48: integrate accounts with app 2016-11-05 15:41:41 +05:30
Completely migrate to the new backend API 2019-01-28 00:42:58 +05:30			`return expect(authentication.validateToken(...validateTokenArgs),`
#48: integrate accounts with app 2016-11-05 15:41:41 +05:30			`'to be rejected with', error`
			`);`
			`});`

			`describe('when token is expired', () => {`
			`const expiredResponse = {`
			`name: 'Unauthorized',`
			`message: 'Token expired',`
			`code: 0,`
			`status: 401,`
Completely migrate to the new backend API 2019-01-28 00:42:58 +05:30			`type: 'yii\\web\\UnauthorizedHttpException',`
#48: integrate accounts with app 2016-11-05 15:41:41 +05:30			`};`
			`const newToken = 'baz';`

			`beforeEach(() => {`
			`sinon.stub(authentication, 'requestToken');`

Completely migrate to the new backend API 2019-01-28 00:42:58 +05:30			`accounts.getInfo.onCall(0).returns(Promise.reject(expiredResponse));`
			`authentication.requestToken.returns(Promise.resolve(newToken));`
#48: integrate accounts with app 2016-11-05 15:41:41 +05:30			`});`

			`afterEach(() => {`
#365: improve token api errors handling 2017-12-26 01:33:21 +05:30			`authentication.requestToken.restore();`
			`});`

#355: fix authentication.test.js 2019-02-05 02:44:58 +05:30			`it('resolves with new token and user object', async () => {`
			`server.post('/api/authentication/refresh-token', {`
			`access_token: newToken,`
			`refresh_token: validRefreshToken,`
			`success: true,`
			`expires_in: 50000`
			`});`


			`await expect(authentication.validateToken(...validateTokenArgs),`
Completely migrate to the new backend API 2019-01-28 00:42:58 +05:30			`'to be fulfilled with', {token: newToken, refreshToken: validRefreshToken, user}`
#355: fix authentication.test.js 2019-02-05 02:44:58 +05:30			`);`

			expect(server.requests[0].requestBody, 'to equal', `refresh_token=${validRefreshToken}`);
			`});`
#365: improve token api errors handling 2017-12-26 01:33:21 +05:30
			`it('rejects if token request failed', () => {`
#355: fix authentication.test.js 2019-02-05 02:44:58 +05:30			`const error = {error: 'Unexpected error example'};`
			`server.post('/api/authentication/refresh-token', error, 500);`
#365: improve token api errors handling 2017-12-26 01:33:21 +05:30
Completely migrate to the new backend API 2019-01-28 00:42:58 +05:30			`return expect(authentication.validateToken(...validateTokenArgs),`
#365: improve token api errors handling 2017-12-26 01:33:21 +05:30			`'to be rejected with', error`
			`);`
			`});`
			`});`

			`describe('when token is incorrect', () => {`
			`const expiredResponse = {`
			`name: 'Unauthorized',`
			`message: 'Incorrect token',`
			`code: 0,`
			`status: 401,`
Completely migrate to the new backend API 2019-01-28 00:42:58 +05:30			`type: 'yii\\web\\UnauthorizedHttpException',`
#365: improve token api errors handling 2017-12-26 01:33:21 +05:30			`};`
			`const newToken = 'baz';`

			`beforeEach(() => {`
Completely migrate to the new backend API 2019-01-28 00:42:58 +05:30			`accounts.getInfo.onCall(0).returns(Promise.reject(expiredResponse));`
#365: improve token api errors handling 2017-12-26 01:33:21 +05:30			`});`

#355: fix authentication.test.js 2019-02-05 02:44:58 +05:30			`it('resolves with new token and user object', async () => {`
			`server.post('/api/authentication/refresh-token', {`
			`access_token: newToken,`
			`refresh_token: validRefreshToken,`
			`success: true,`
			`expires_in: 50000`
			`});`

#48: integrate accounts with app 2016-11-05 15:41:41 +05:30
#355: fix authentication.test.js 2019-02-05 02:44:58 +05:30			`await expect(authentication.validateToken(...validateTokenArgs),`
Completely migrate to the new backend API 2019-01-28 00:42:58 +05:30			`'to be fulfilled with', {token: newToken, refreshToken: validRefreshToken, user}`
#355: fix authentication.test.js 2019-02-05 02:44:58 +05:30			`);`

			expect(server.requests[0].requestBody, 'to equal', `refresh_token=${validRefreshToken}`);
			`});`
#48: integrate accounts with app 2016-11-05 15:41:41 +05:30
			`it('rejects if token request failed', () => {`
#355: fix authentication.test.js 2019-02-05 02:44:58 +05:30			`const error = {error: 'Unexpected error example'};`
			`server.post('/api/authentication/refresh-token', error, 500);`
#48: integrate accounts with app 2016-11-05 15:41:41 +05:30
Completely migrate to the new backend API 2019-01-28 00:42:58 +05:30			`return expect(authentication.validateToken(...validateTokenArgs),`
#48: integrate accounts with app 2016-11-05 15:41:41 +05:30			`'to be rejected with', error`
			`);`
			`});`
			`});`
			`});`
#48: call authentication.logout for each revoked account 2016-11-15 11:25:15 +05:30
			`describe('#logout', () => {`
			`beforeEach(() => {`
			`sinon.stub(request, 'post').named('request.post');`
			`});`

			`afterEach(() => {`
			`request.post.restore();`
			`});`

			`it('should request logout api', () => {`
			`authentication.logout();`

			`expect(request.post, 'to have a call satisfying', [`
			`'/api/authentication/logout', {}, {}`
			`]);`
			`});`

			`it('returns a promise', () => {`
			`request.post.returns(Promise.resolve());`

			`return expect(authentication.logout(), 'to be fulfilled');`
			`});`

			`it('overrides token if provided', () => {`
			`const token = 'foo';`

Completely migrate to the new backend API 2019-01-28 00:42:58 +05:30			`authentication.logout(token);`
#48: call authentication.logout for each revoked account 2016-11-15 11:25:15 +05:30
			`expect(request.post, 'to have a call satisfying', [`
			`'/api/authentication/logout', {}, {token}`
			`]);`
			`});`
			`});`
Disable bearer header for refresh-token request 2016-12-13 01:37:49 +05:30
			`describe('#requestToken', () => {`
			`const refreshToken = 'refresh-token';`

			`beforeEach(() => {`
			`sinon.stub(request, 'post').named('request.post');`
			`});`

			`afterEach(() => {`
			`request.post.restore();`
			`});`

			`it('should request refresh-token api', () => {`
			`request.post.returns(Promise.resolve({}));`

			`authentication.requestToken(refreshToken);`

			`expect(request.post, 'to have a call satisfying', [`
			`'/api/authentication/refresh-token', {`
			`refresh_token: refreshToken // eslint-disable-line`
			`}, {}`
			`]);`
			`});`

			`it('should disable bearer auth for request', () => {`
			`request.post.returns(Promise.resolve({}));`

			`authentication.requestToken(refreshToken);`

			`expect(request.post, 'to have a call satisfying', [`
			`'/api/authentication/refresh-token', {`
			`refresh_token: refreshToken // eslint-disable-line`
			`}, {token: null}`
			`]);`
			`});`

			`it('should resolve with token', () => {`
			`const token = 'token';`

			`request.post.returns(Promise.resolve({`
			`access_token: token // eslint-disable-line`
			`}));`

			`return expect(authentication.requestToken(refreshToken),`
Completely migrate to the new backend API 2019-01-28 00:42:58 +05:30			`'to be fulfilled with', token,`
Disable bearer header for refresh-token request 2016-12-13 01:37:49 +05:30			`);`
			`});`
			`});`
#48: integrate accounts with app 2016-11-05 15:41:41 +05:30			`});`