Add JWT tests #511
Add JWT tests #511
Conversation
|
So far JWT tests are not failing: https://travis-ci.org/ably/ably-js/builds/388146773 |
|
Note: rebased on master now, to include #510 |
spec/realtime/auth.test.js
Outdated
| @@ -9,6 +9,7 @@ define(['ably', 'shared_helper', 'async'], function(Ably, helper, async) { | |||
| monitorConnection = helper.monitorConnection, | |||
| testOnAllTransports = helper.testOnAllTransports, | |||
| mixin = helper.Utils.mixin, | |||
| jwtTestChannelName = 'JWT_test' + String(Math.floor(Math.random() * 10000) + 1), | |||
| echoServer = "http://echo.ably.io"; | |||
| //echoServer = "http://localhost:5000"; | |||
spec/realtime/auth.test.js
Outdated
| * Request a JWT token that is about to be renewed, check that the client reauths | ||
| * without going through a disconnected state. | ||
| */ | ||
|
|
spec/rest/auth.test.js
Outdated
| /* RSA8g | ||
| * Tests JWT with authCallback | ||
| */ | ||
|
|
spec/rest/auth.test.js
Outdated
| }); | ||
| }; | ||
|
|
||
| /* RSA8g |
spec/realtime/auth.test.js
Outdated
| var authUrl = echoServer + '/createJWT' + utils.toQueryString(keys); | ||
| var rest = helper.AblyRest({authUrl: authUrl}); | ||
| var clientId = 'testJWTClientId'; | ||
| var authCallback = function(tokenParams, callback) { |
There was a problem hiding this comment.
Again, I don't think you should be creating an AblyRest instance just for the purpose of calling the authURL. Use http directly.
spec/realtime/auth.test.js
Outdated
| var rest = helper.AblyRest({authUrl: authUrl}); | ||
| var clientId = 'testJWTClientId'; | ||
| var authCallback = function(tokenParams, callback) { | ||
| rest.auth.requestToken({clientId: clientId}, function(err, tokenDetails) { |
There was a problem hiding this comment.
This callback is using the rest instance to create an token, but there's nothing that verifies that you actually obtain a JWT. All of the tested behaviours - allowing/disallowing operations, disconnections, etc - would still occur with a native Ably token. Perhaps there should be a single helper getJWT() function which is used by all the tests, and this can call the echoserver directly using http (ie not via an Ably instance and requestToken()) and then you know that you're getting the token from the server.
Then you should have separate tests that explicitly test setting the authURL to the echoserver, and test with the different content types (ie text/plain vs application/jwt).
There was a problem hiding this comment.
Also, there was already a test for application/jwt
I added another one f817d81
spec/realtime/auth.test.js
Outdated
| var keys = {keyName: currentKey.keyName, keySecret: currentKey.keySecret}; | ||
| var authUrl = echoServer + '/createJWT' + utils.toQueryString(keys); | ||
| var rest = helper.AblyRest({authUrl: authUrl}); | ||
| var authCallback = function(tokenParams, callback) { |
There was a problem hiding this comment.
This has the same issue as the test above, and also the tests that follow.
spec/rest/auth.test.js
Outdated
| /* RSC1, RSC1a, RSC1c, RSA4f, RSA8c, RSA3d | ||
| * Tests the different combinations of authParams declared above, with valid keys | ||
| */ | ||
|
|
|
@paddybyers addressed all your comments above |
Fix #505
ClientOptionsauthURLauthCallbackx-ably-tokenapplication/jwtContent-Typeauth_urlwhen echo server is deployed. See TODOs