mirror of
https://github.com/versia-pub/server.git
synced 2025-12-06 16:38:19 +01:00
159 lines
5 KiB
TypeScript
159 lines
5 KiB
TypeScript
import { afterAll, beforeAll, describe, expect, test } from "bun:test";
|
|
import type { Application, Token } from "@prisma/client";
|
|
import { client } from "~database/datasource";
|
|
import { createNewLocalUser } from "~database/entities/User";
|
|
import { sendTestRequest, wrapRelativeUrl } from "./utils";
|
|
|
|
const base_url = "http://lysand.localhost:8080"; //config.http.base_url;
|
|
|
|
let client_id: string;
|
|
let client_secret: string;
|
|
let code: string;
|
|
let token: Token;
|
|
|
|
beforeAll(async () => {
|
|
// Init test user
|
|
await createNewLocalUser({
|
|
email: "test@test.com",
|
|
username: "test",
|
|
password: "test",
|
|
display_name: "",
|
|
});
|
|
});
|
|
|
|
describe("POST /api/v1/apps/", () => {
|
|
test("should create an application", async () => {
|
|
const formData = new FormData();
|
|
|
|
formData.append("client_name", "Test Application");
|
|
formData.append("website", "https://example.com");
|
|
formData.append("redirect_uris", "https://example.com");
|
|
formData.append("scopes", "read write");
|
|
|
|
const response = await sendTestRequest(
|
|
new Request(wrapRelativeUrl("/api/v1/apps/", base_url), {
|
|
method: "POST",
|
|
body: formData,
|
|
}),
|
|
);
|
|
|
|
expect(response.status).toBe(200);
|
|
expect(response.headers.get("content-type")).toBe("application/json");
|
|
|
|
const json = await response.json();
|
|
|
|
expect(json).toEqual({
|
|
id: expect.any(String),
|
|
name: "Test Application",
|
|
website: "https://example.com",
|
|
client_id: expect.any(String),
|
|
client_secret: expect.any(String),
|
|
redirect_uri: "https://example.com",
|
|
vapid_link: null,
|
|
});
|
|
|
|
client_id = json.client_id;
|
|
client_secret = json.client_secret;
|
|
});
|
|
});
|
|
|
|
describe("POST /auth/login/", () => {
|
|
test("should get a code", async () => {
|
|
const formData = new FormData();
|
|
|
|
formData.append("email", "test@test.com");
|
|
formData.append("password", "test");
|
|
|
|
const response = await sendTestRequest(
|
|
new Request(
|
|
wrapRelativeUrl(
|
|
`/auth/login/?client_id=${client_id}&redirect_uri=https://example.com&response_type=code&scope=read+write`,
|
|
base_url,
|
|
),
|
|
{
|
|
method: "POST",
|
|
body: formData,
|
|
},
|
|
),
|
|
);
|
|
|
|
expect(response.status).toBe(302);
|
|
expect(response.headers.get("Location")).toMatch(
|
|
/^\/oauth\/redirect\?redirect_uri=https%3A%2F%2Fexample.com&code=[a-f0-9]+&client_id=[a-zA-Z0-9_-]+&application=Test\+Application&website=https%3A%2F%2Fexample.com&scope=read\+write$/,
|
|
);
|
|
|
|
code =
|
|
new URL(
|
|
response.headers.get("Location") ?? "",
|
|
"http://lysand.localhost:8080",
|
|
).searchParams.get("code") ?? "";
|
|
});
|
|
});
|
|
|
|
describe("POST /oauth/token/", () => {
|
|
test("should get an access token", async () => {
|
|
const formData = new FormData();
|
|
|
|
formData.append("grant_type", "authorization_code");
|
|
formData.append("code", code);
|
|
formData.append("redirect_uri", "https://example.com");
|
|
formData.append("client_id", client_id);
|
|
formData.append("client_secret", client_secret);
|
|
formData.append("scope", "read+write");
|
|
|
|
const response = await sendTestRequest(
|
|
new Request(wrapRelativeUrl("/oauth/token/", base_url), {
|
|
method: "POST",
|
|
body: formData,
|
|
}),
|
|
);
|
|
|
|
const json = await response.json();
|
|
|
|
expect(response.status).toBe(200);
|
|
expect(response.headers.get("content-type")).toBe("application/json");
|
|
expect(json).toEqual({
|
|
access_token: expect.any(String),
|
|
token_type: "Bearer",
|
|
scope: "read write",
|
|
created_at: expect.any(Number),
|
|
});
|
|
|
|
token = json;
|
|
});
|
|
});
|
|
|
|
describe("GET /api/v1/apps/verify_credentials", () => {
|
|
test("should return the authenticated application's credentials", async () => {
|
|
const response = await sendTestRequest(
|
|
new Request(
|
|
wrapRelativeUrl("/api/v1/apps/verify_credentials", base_url),
|
|
{
|
|
headers: {
|
|
Authorization: `Bearer ${token.access_token}`,
|
|
},
|
|
},
|
|
),
|
|
);
|
|
|
|
expect(response.status).toBe(200);
|
|
expect(response.headers.get("content-type")).toBe("application/json");
|
|
|
|
const credentials = (await response.json()) as Partial<Application>;
|
|
|
|
expect(credentials.name).toBe("Test Application");
|
|
expect(credentials.website).toBe("https://example.com");
|
|
expect(credentials.redirect_uris).toBe("https://example.com");
|
|
expect(credentials.scopes).toBe("read write");
|
|
});
|
|
});
|
|
|
|
afterAll(async () => {
|
|
// Clean up user
|
|
await client.user.delete({
|
|
where: {
|
|
username: "test",
|
|
},
|
|
});
|
|
});
|