-
Notifications
You must be signed in to change notification settings - Fork 141
/
private-key-jwt.test.js
63 lines (58 loc) · 1.68 KB
/
private-key-jwt.test.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
const { assert } = require('chai');
const { once } = require('events');
const puppeteer = require('puppeteer');
const provider = require('./fixture/oidc-provider');
const {
baseUrl,
start,
runExample,
stubEnv,
goto,
login,
} = require('./fixture/helpers');
describe('private key jwt', async () => {
let authServer;
let appServer;
beforeEach(async () => {
stubEnv();
authServer = await start(provider, 3001);
appServer = await runExample('private-key-jwt');
});
afterEach(async () => {
authServer.close();
appServer.close();
});
it('should login with private key jwt client auth method', async () => {
const browser = await puppeteer.launch({
args: puppeteer
.defaultArgs()
.concat(['--no-sandbox', '--disable-setuid-sandbox']),
});
const page = await browser.newPage();
await goto(baseUrl, page);
assert.match(page.url(), /http:\/\/localhost:3000/);
await page.click('a[href="/login"]');
assert.match(
page.url(),
/http:\/\/localhost:3001\/interaction/,
'User should have been redirected to the auth server to login'
);
const promise = once(provider, 'grant.success');
await login('username', 'password', page);
const [ctx] = await promise;
assert(
ctx.oidc.body.client_assertion,
'Client should have authenticated with a client assertion payload'
);
assert.equal(
ctx.oidc.body.client_assertion_type,
'urn:ietf:params:oauth:client-assertion-type:jwt-bearer'
);
assert.equal(
page.url(),
`${baseUrl}/`,
'User is returned to the original page'
);
assert.include(await page.content(), 'hello username');
});
});