PageRenderTime 51ms CodeModel.GetById 25ms RepoModel.GetById 0ms app.codeStats 0ms

/test/authorizer.js

https://gitlab.com/harshit-bangar/mosca
JavaScript | 297 lines | 252 code | 45 blank | 0 comment | 0 complexity | 114484d6fe383b0b79950bb05ea6344c MD5 | raw file
    

  1. "use strict";
    2. 

  2. 

  3. var hasher = require("pbkdf2-password")();
    4. 

  4. var async = require("async");
    5. 

  5. 

  6. describe("mosca.Authorizer", function() {
    7. 

  7. 

  8.   var authorizer, instance, client;
    9. 

  9. 

  10.   beforeEach(function() {
    11. 

  11.     authorizer = new mosca.Authorizer();
    12. 

  12.     client = {};
    13. 

  13.   });
    14. 

  14. 

  15.   describe("authenticate", function() {
    16. 

  16. 

  17.     beforeEach(function() {
    18. 

  18.       instance = authorizer.authenticate;
    19. 

  19.     });
    20. 

  20. 

  21.     it("it should not authenticate an unknown user", function(done) {
    22. 

  22.       instance(client, "user", "pass", function(err, success) {
    23. 

  23.         expect(success).to.be.false;
    24. 

  24.         done();
    25. 

  25.       });
    26. 

  26.     });
    27. 

  27. 

  28.     it("it should authenticate a known user", function(done) {
    29. 

  29.       authorizer.addUser("user", "pass", function() {
    30. 

  30.         instance(client, "user", "pass", function(err, success) {
    31. 

  31.           expect(success).to.be.true;
    32. 

  32.           done();
    33. 

  33.         });
    34. 

  34.       });
    35. 

  35.     });
    36. 

  36. 

  37.     it("it should not authenticate a user with the wrong password", function(done) {
    38. 

  38. 

  39.       authorizer.addUser("user", "pass", function() {
    40. 

  40.         instance(client, "user", "wrongpass", function(err, success) {
    41. 

  41.           expect(success).to.be.false;
    42. 

  42.           done();
    43. 

  43.         });
    44. 

  44.       });
    45. 

  45.     });
    46. 

  46. 

  47.     it("it should not authenticate a user without a password", function(done) {
    48. 

  48. 

  49.       authorizer.addUser("user", "pass", function() {
    50. 

  50.         instance(client, "user", null, function(err, success) {
    51. 

  51.           expect(success).to.be.false;
    52. 

  52.           done();
    53. 

  53.         });
    54. 

  54.       });
    55. 

  55.     });
    56. 

  56. 

  57.     it("it should not authenticate a user without a username", function(done) {
    58. 

  58. 

  59.       authorizer.addUser("user", "pass", function() {
    60. 

  60.         instance(client, null, "pass", function(err, success) {
    61. 

  61.           expect(success).to.be.false;
    62. 

  62.           done();
    63. 

  63.         });
    64. 

  64.       });
    65. 

  65.     });
    66. 

  66. 

  67.     it("it should authenticate a user known user", function(done) {
    68. 

  68. 

  69.       authorizer.addUser("matteo", "collina", function() {
    70. 

  70.         instance(client, "matteo", "collina", function(err, success) {
    71. 

  71.           expect(success).to.be.true;
    72. 

  72.           done();
    73. 

  73.         });
    74. 

  74.       });
    75. 

  75.     });
    76. 

  76. 

  77.     it("it should not authenticate a removed user", function(done) {
    78. 

  78.       async.waterfall([
    79. 

  79.         authorizer.addUser.bind(authorizer, "matteo", "collina"),
    80. 

  80.         authorizer.rmUser.bind(authorizer, "matteo"),
    81. 

  81.         instance.bind(null, client, "matteo", "collina")
    82. 

  82.       ], function(err, success) {
    83. 

  83.         expect(success).to.be.false;
    84. 

  84.         done();
    85. 

  85.       });
    86. 

  86.     });
    87. 

  87. 

  88.     it("it should add the username to the client", function(done) {
    89. 

  89.       authorizer.addUser("user", "pass", function() {
    90. 

  90.         instance(client, "user", "pass", function(err, success) {
    91. 

  91.           expect(client).to.have.property("user", "user");
    92. 

  92.           done();
    93. 

  93.         });
    94. 

  94.       });
    95. 

  95.     });
    96. 

  96.   });
    97. 

  97. 

  98.   describe("users", function() {
    99. 

  99. 

  100.     beforeEach(function() {
    101. 

  101.       instance = authorizer;
    102. 

  102.     });
    103. 

  103. 

  104.     it("should memorize a user", function(done) {
    105. 

  105.       instance.addUser("matteo", "collina", function() {
    106. 

  106.         expect(instance.users.matteo).to.exist;
    107. 

  107.         done();
    108. 

  108.       });
    109. 

  109.     });
    110. 

  110. 

  111.     it("should memorize a user has salt/hash combination", function(done) {
    112. 

  112.       instance.addUser("matteo", "collina", function() {
    113. 

  113.         expect(instance.users.matteo.salt).to.exist;
    114. 

  114.         expect(instance.users.matteo.hash).to.exist;
    115. 

  115.         done();
    116. 

  116.       });
    117. 

  117.     });
    118. 

  118. 

  119.     it("should be a real hash", function(done) {
    120. 

  120.       instance.addUser("matteo", "collina", function() {
    121. 

  121.         hasher({
    122. 

  122.           password: "collina",
    123. 

  123.           salt: instance.users.matteo.salt
    124. 

  124.         },
    125. 

  125. 

  126.         function(err, pass, salt, hash) {
    127. 

  127.           expect(hash).to.eql(instance.users.matteo.hash);
    128. 

  128.           done();
    129. 

  129.         });
    130. 

  130.       });
    131. 

  131.     });
    132. 

  132.   });
    133. 

  133. 

  134.   it("should support passing users as a parameter", function() {
    135. 

  135.     var users = {};
    136. 

  136.     instance = new mosca.Authorizer(users);
    137. 

  137.     expect(instance.users).to.equal(users);
    138. 

  138.   });
    139. 

  139. 

  140.   describe("authorizePublish", function() {
    141. 

  141. 

  142.     beforeEach(function(done) {
    143. 

  143.       client.user = "user";
    144. 

  144.       instance = authorizer.authorizePublish;
    145. 

  145.       authorizer.addUser("user", "pass", function() {
    146. 

  146.         done();
    147. 

  147.       });
    148. 

  148.     });
    149. 

  149. 

  150.     it("it should authorize a publish based on the topic", function(done) {
    151. 

  151.       instance(client, "topic", "payload", function(err, success) {
    152. 

  152.         expect(success).to.be.true;
    153. 

  153.         done();
    154. 

  154.       });
    155. 

  155.     });
    156. 

  156. 

  157.     it("it should authorize a publish based on a long topic", function(done) {
    158. 

  158.       instance(client, "/long/topic", "payload", function(err, success) {
    159. 

  159.         expect(success).to.be.true;
    160. 

  160.         done();
    161. 

  161.       });
    162. 

  162.     });
    163. 

  163. 

  164.     it("it should not authorize a publish based on the topic", function(done) {
    165. 

  165.       authorizer.addUser("user", "pass", "/topic", function() {
    166. 

  166.         instance(client, "other", "payload", function(err, success) {
    167. 

  167.           expect(success).to.be.false;
    168. 

  168.           done();
    169. 

  169.         });
    170. 

  170.       });
    171. 

  171.     });
    172. 

  172. 

  173.     it("should default the authorizePublish param to **", function(done) {
    174. 

  174.       authorizer.addUser("user", "pass", null, function() {
    175. 

  175.         instance(client, "other", "payload", function(err, success) {
    176. 

  176.           expect(success).to.be.true;
    177. 

  177.           done();
    178. 

  178.         });
    179. 

  179.       });
    180. 

  180.     });
    181. 

  181. 

  182.     it("it should authorize a publish based on a pattern", function(done) {
    183. 

  183.       authorizer.addUser("user", "pass", "/topic/*", function() {
    184. 

  184.         instance(client, "/topic/other", "payload", function(err, success) {
    185. 

  185.           expect(success).to.be.true;
    186. 

  186.           done();
    187. 

  187.         });
    188. 

  188.       });
    189. 

  189.     });
    190. 

  190. 

  191.     it("it should not authorize a publish based on a pattern", function(done) {
    192. 

  192.       authorizer.addUser("user", "pass", "/topic/*", function() {
    193. 

  193.         instance(client, "/topic/other/buu", "payload", function(err, success) {
    194. 

  194.           expect(success).to.be.false;
    195. 

  195.           done();
    196. 

  196.         });
    197. 

  197.       });
    198. 

  198.     });
    199. 

  199. 

  200.     it("it should authorize a publish based on a unlimited pattern", function(done) {
    201. 

  201.       authorizer.addUser("user", "pass", "/topic/**", function() {
    202. 

  202.         instance(client, "/topic/other/buu", "payload", function(err, success) {
    203. 

  203.           expect(success).to.be.true;
    204. 

  204.           done();
    205. 

  205.         });
    206. 

  206.       });
    207. 

  207.     });
    208. 

  208. 

  209.     it("it should authorize a publish based on a recursive pattern", function(done) {
    210. 

  210.       authorizer.addUser("user", "pass", "/topic/**/buu", function() {
    211. 

  211.         instance(client, "/topic/other/long/buu", "payload", function(err, success) {
    212. 

  212.           expect(success).to.be.true;
    213. 

  213.           done();
    214. 

  214.         });
    215. 

  215.       });
    216. 

  216.     });
    217. 

  217.   });
    218. 

  218. 

  219.   describe("authorizeSubscribe", function() {
    220. 

  220. 

  221.     beforeEach(function(done) {
    222. 

  222.       client.user = "user";
    223. 

  223.       instance = authorizer.authorizeSubscribe;
    224. 

  224.       authorizer.addUser("user", "pass", function() {
    225. 

  225.         done();
    226. 

  226.       });
    227. 

  227.     });
    228. 

  228. 

  229.     it("it should authorize a subscribe based on the topic", function(done) {
    230. 

  230.       instance(client, "topic", function(err, success) {
    231. 

  231.         expect(success).to.be.true;
    232. 

  232.         done();
    233. 

  233.       });
    234. 

  234.     });
    235. 

  235. 

  236.     it("it should authorize a publish based on a long topic", function(done) {
    237. 

  237.       instance(client, "/long/topic", function(err, success) {
    238. 

  238.         expect(success).to.be.true;
    239. 

  239.         done();
    240. 

  240.       });
    241. 

  241.     });
    242. 

  242. 

  243.     it("should default the authorizeSubscribe param to **", function(done) {
    244. 

  244.       authorizer.addUser("user", "pass", null, null, function() {
    245. 

  245.         instance(client, "other", function(err, success) {
    246. 

  246.           expect(success).to.be.true;
    247. 

  247.           done();
    248. 

  248.         });
    249. 

  249.       });
    250. 

  250.     });
    251. 

  251. 

  252.     it("it should not authorize a publish based on the topic", function(done) {
    253. 

  253.       authorizer.addUser("user", "pass", "**", "/topic", function() {
    254. 

  254.         instance(client, "other", function(err, success) {
    255. 

  255.           expect(success).to.be.false;
    256. 

  256.           done();
    257. 

  257.         });
    258. 

  258.       });
    259. 

  259.     });
    260. 

  260. 

  261.     it("it should authorize a publish based on a pattern", function(done) {
    262. 

  262.       authorizer.addUser("user", "pass", "**", "/topic/*", function() {
    263. 

  263.         instance(client, "/topic/other", function(err, success) {
    264. 

  264.           expect(success).to.be.true;
    265. 

  265.           done();
    266. 

  266.         });
    267. 

  267.       });
    268. 

  268.     });
    269. 

  269. 

  270.     it("it should not authorize a publish based on a pattern", function(done) {
    271. 

  271.       authorizer.addUser("user", "pass", "**", "/topic/*", function() {
    272. 

  272.         instance(client, "/topic/other/buu", function(err, success) {
    273. 

  273.           expect(success).to.be.false;
    274. 

  274.           done();
    275. 

  275.         });
    276. 

  276.       });
    277. 

  277.     });
    278. 

  278. 

  279.     it("it should authorize a publish based on a unlimited pattern", function(done) {
    280. 

  280.       authorizer.addUser("user", "pass", "**", "/topic/**", function() {
    281. 

  281.         instance(client, "/topic/other/buu", function(err, success) {
    282. 

  282.           expect(success).to.be.true;
    283. 

  283.           done();
    284. 

  284.         });
    285. 

  285.       });
    286. 

  286.     });
    287. 

  287. 

  288.     it("it should authorize a publish based on a recursive pattern", function(done) {
    289. 

  289.       authorizer.addUser("user", "pass", "**", "/topic/**/buu", function() {
    290. 

  290.         instance(client, "/topic/other/long/buu", function(err, success) {
    291. 

  291.           expect(success).to.be.true;
    292. 

  292.           done();
    293. 

  293.         });
    294. 

  294.       });
    295. 

  295.     });
    296. 

  296.   });
    297. 

  297. });
    298. 

  298.