StarAppeal/matrix-backend
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
46b58451408783a8b581c1083bb6cc6ec9c0dd53
matrix-backend/tests/rest/middleware/authenticateJwt.test.ts
T
StarAppeal 46b5845140 add mule and @ts-ignore where needed
2025-09-25 02:05:21 +02:00

78 lines
3.1 KiB
TypeScript
Raw Blame History

import { describe, it, expect, vi, beforeEach, afterEach, type Mocked } from "vitest";
import { Request, Response, NextFunction } from "express";
import { authenticateJwt } from "../../../src/rest/middleware/authenticateJwt";
// @ts-ignore
import { createMockJwtAuthenticator } from "../../helpers/testSetup";
vi.mock("../../../src/utils/jwtAuthenticator");
describe("authenticateJwt middleware", () => {
let mockJwtInstance: ReturnType<typeof createMockJwtAuthenticator>;
let req: Mocked<Request>;
let res: Mocked<Response>;
let next: Mocked<NextFunction>;
let _authenticateJwt: any;
beforeEach(() => {
vi.clearAllMocks();
mockJwtInstance = createMockJwtAuthenticator();
// @ts-ignore
_authenticateJwt = authenticateJwt(mockJwtInstance);
req = { headers: {} } as Mocked<Request>;
res = {
status: vi.fn().mockReturnThis(),
send: vi.fn().mockReturnThis(),
} as unknown as Mocked<Response>;
next = vi.fn();
});
afterEach(() => {
vi.unstubAllEnvs();
});
describe("Success Scenarios", () => {
it("should authenticate a valid token, set req.payload, and call next", () => {
const mockPayload = { uuid: "test-uuid-123" };
req.headers.authorization = "Bearer valid-jwt-token";
mockJwtInstance.verifyToken.mockReturnValue(mockPayload);
_authenticateJwt(req, res, next);
expect(mockJwtInstance.verifyToken).toHaveBeenCalledWith("valid-jwt-token");
// @ts-ignore
expect(req.payload).toEqual(mockPayload);
expect(next).toHaveBeenCalledOnce();
expect(res.status).not.toHaveBeenCalled();
});
});
describe("Failure Scenarios", () => {
it.each([
{ description: "no authorization header", authHeader: undefined, errorMessage: "Unauthorized: No Authorization header provided" },
{ description: "empty authorization header", authHeader: "", errorMessage: "Unauthorized: No Authorization header provided" },
{ description: "header with only 'Bearer '", authHeader: "Bearer ", errorMessage: "Unauthorized: Token is missing" },
{ description: "an invalid/expired token", authHeader: "Bearer invalid-token", errorMessage: "Unauthorized: Invalid token", callVerifyToken: true },
])("should return 401 Unauthorized when there is $description", ({ authHeader, errorMessage, callVerifyToken }) => {
req.headers.authorization = authHeader;
mockJwtInstance.verifyToken.mockReturnValue(null);
_authenticateJwt(req, res, next);
const expected = { ok: false, data: {details: undefined, message: errorMessage}}
if (!callVerifyToken) {
expect(mockJwtInstance.verifyToken).not.toHaveBeenCalled();
} else {
expect(mockJwtInstance.verifyToken).toHaveBeenCalled();
}
expect(res.status).toHaveBeenCalledWith(401);
expect(res.send).toHaveBeenCalledWith(expected);
expect(next).not.toHaveBeenCalled();
});
});
});
Reference in New Issue View Git Blame Copy Permalink