Test jwt, fix regression, semver breaking change

doesdev · doesdev · commit 1904724f6459 · 2017-11-28T10:37:04.000-05:00
2.1.0 introduced an updated version of jsonwebtoken, which contained
breaking API changes. As the phrase implies, it broke stuff.
This version implements tests for that and in the spirit of semver is
a major version bump unlike the last.
diff --git a/index.js b/index.js
@@ -98,7 +98,7 @@ const bodyParse = (req) => new Promise((resolve, reject) => {
 
 const filterObj = (obj, ary) => {
   let base = {}
-  ary.forEach((o) => { base[o] = obj[o] })
+  ary.forEach((o) => { if (o in obj) base[o] = obj[o] })
   return base
 }
 
@@ -284,7 +284,7 @@ function genToken (payload = {}) {
 }
 
 function authenticate (jwt) {
-  let key = jwtOpts.secret || jwtOpts.publicKey
+  let key = (jwtOpts || {}).secret || (jwtOpts || {}).publicKey
   if (!jwtOpts || !key) return Promise.resolve()
   return new Promise((resolve, reject) => {
     jsonwebtoken.verify(jwt, key, jwtOpts, (err, d = {}) => {
diff --git a/package.json b/package.json
@@ -1,6 +1,6 @@
 {
   "name": "scrud",
-  "version": "2.1.0",
+  "version": "3.0.0",
   "description": "Super opinionated, minimalistic, PG centric API fabric",
   "engines": {
     "node": ">=6.0.0"
diff --git a/test.js b/test.js
@@ -14,19 +14,34 @@ const postBody = {
 }
 const basePath = '/api'
 const port = 8092
-const apiCall = getScrud({host: 'localhost', port, basePath, timeout: '10s'})
+const apiOpts = {host: 'localhost', port, basePath, timeout: '10s'}
 const putBody = {zip: 37615}
 const logger = () => {}
-const opts = {port, base: basePath, namespace: 'scrud', allowOrigins, logger}
+const opts = {
+  port,
+  base: basePath,
+  namespace: 'scrud',
+  allowOrigins,
+  logger,
+  jsonwebtoken: {
+    secret: `SomeRandomAstString`,
+    algorithm: `HS256`,
+    issuer: `SCRUD`,
+    audience: `client`,
+    expiresIn: 1800
+  }
+}
 Object.assign(opts, require('./../_secrets/scrud/config.json'))
 
 // globals
-let id
+let id, apiCall, jwt
 
 // tests
 test.before(async () => {
   await scrud.register('member')
   await scrud.start(opts)
+  jwt = await scrud.genToken({some: 'stuffs'})
+  apiCall = getScrud(Object.assign({jwt}, apiOpts))
 })
 
 test.serial('CREATE', async (assert) => {
@@ -57,7 +72,8 @@ test.serial('DELETE', async (assert) => {
 
 test.serial('regession: body parses gracefully', async (assert) => {
   let url = `http://localhost:${port}${basePath}/member/${id}`
-  await assert.notThrows(axios({method: 'PUT', url, data: 'u'}))
+  let headers = {Authorization: `Bearer ${jwt}`}
+  await assert.notThrows(axios({method: 'PUT', url, data: 'u', headers}))
 })
 
 test.skip('close ends pg client (not really testable)', async (assert) => {

Original file line number	Diff line number	Diff line change
`@@ -98,7 +98,7 @@ const bodyParse = (req) => new Promise((resolve, reject) => {`
`98`	`98`
`99`	`99`	`const filterObj = (obj, ary) => {`
`100`	`100`	`let base = {}`
`101`		`- ary.forEach((o) => { base[o] = obj[o] })`
	`101`	`+ ary.forEach((o) => { if (o in obj) base[o] = obj[o] })`
`102`	`102`	`return base`
`103`	`103`	`}`
`104`	`104`
`@@ -284,7 +284,7 @@ function genToken (payload = {}) {`
`284`	`284`	`}`
`285`	`285`
`286`	`286`	`function authenticate (jwt) {`
`287`		`- let key = jwtOpts.secret \|\| jwtOpts.publicKey`
	`287`	`+ let key = (jwtOpts \|\| {}).secret \|\| (jwtOpts \|\| {}).publicKey`
`288`	`288`	`if (!jwtOpts \|\| !key) return Promise.resolve()`
`289`	`289`	`return new Promise((resolve, reject) => {`
`290`	`290`	`jsonwebtoken.verify(jwt, key, jwtOpts, (err, d = {}) => {`
Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,6 @@`
`1`	`1`	`{`
`2`	`2`	`"name": "scrud",`
`3`		`- "version": "2.1.0",`
	`3`	`+ "version": "3.0.0",`
`4`	`4`	`"description": "Super opinionated, minimalistic, PG centric API fabric",`
`5`	`5`	`"engines": {`
`6`	`6`	`"node": ">=6.0.0"`