67 lines
No EOL
1.7 KiB
JavaScript
67 lines
No EOL
1.7 KiB
JavaScript
var jwt = require('jsonwebtoken');
|
|
var assert = require('assert');
|
|
|
|
var expressjwt = require('../lib');
|
|
var UnauthorizedError = require('../lib/errors/UnauthorizedError');
|
|
|
|
describe('revoked jwts', function(){
|
|
var secret = 'shhhhhh';
|
|
|
|
var revoked_id = '1234'
|
|
|
|
var middleware = expressjwt({
|
|
secret: secret,
|
|
algorithms: ['HS256'],
|
|
isRevoked: function(req, payload, done){
|
|
done(null, payload.jti && payload.jti === revoked_id);
|
|
}
|
|
});
|
|
|
|
it('should throw if token is revoked', function(){
|
|
var req = {};
|
|
var res = {};
|
|
var token = jwt.sign({ jti: revoked_id, foo: 'bar'}, secret);
|
|
|
|
req.headers = {};
|
|
req.headers.authorization = 'Bearer ' + token;
|
|
|
|
middleware(req, res, function(err) {
|
|
assert.ok(err);
|
|
assert.equal(err.code, 'revoked_token');
|
|
assert.equal(err.message, 'The token has been revoked.');
|
|
});
|
|
});
|
|
|
|
it('should work if token is not revoked', function(){
|
|
var req = {};
|
|
var res = {};
|
|
var token = jwt.sign({ jti: '1233', foo: 'bar'}, secret);
|
|
|
|
req.headers = {};
|
|
req.headers.authorization = 'Bearer ' + token;
|
|
|
|
middleware(req, res, function() {
|
|
assert.equal('bar', req.user.foo);
|
|
});
|
|
});
|
|
|
|
it('should throw if error occurs checking if token is revoked', function(){
|
|
var req = {};
|
|
var res = {};
|
|
var token = jwt.sign({ jti: revoked_id, foo: 'bar'}, secret);
|
|
|
|
req.headers = {};
|
|
req.headers.authorization = 'Bearer ' + token;
|
|
|
|
expressjwt({
|
|
secret: secret,
|
|
algorithms: ['HS256'],
|
|
isRevoked: function(req, payload, done){
|
|
done(new Error('An error ocurred'));
|
|
}
|
|
})(req, res, function(err) {
|
|
assert.ok(err);
|
|
assert.equal(err.message, 'An error ocurred');
|
|
});
|
|
});
|
|
}); |