2aa14adf87
* Only allow basic auth credentials with a known appId * Update middlewares.js * Updating basic auth tests to use valid appId
317 lines
9.5 KiB
JavaScript
317 lines
9.5 KiB
JavaScript
"use strict"
|
||
var request = require('request');
|
||
var parseServerPackage = require('../package.json');
|
||
var MockEmailAdapterWithOptions = require('./MockEmailAdapterWithOptions');
|
||
var ParseServer = require("../src/index");
|
||
var Config = require('../src/Config');
|
||
var express = require('express');
|
||
|
||
const MongoStorageAdapter = require('../src/Adapters/Storage/Mongo/MongoStorageAdapter');
|
||
|
||
describe('server', () => {
|
||
it('requires a master key and app id', done => {
|
||
reconfigureServer({ appId: undefined })
|
||
.catch(error => {
|
||
expect(error).toEqual('You must provide an appId!');
|
||
return reconfigureServer({ masterKey: undefined });
|
||
})
|
||
.catch(error => {
|
||
expect(error).toEqual('You must provide a masterKey!');
|
||
return reconfigureServer({ serverURL: undefined });
|
||
})
|
||
.catch(error => {
|
||
expect(error).toEqual('You must provide a serverURL!');
|
||
done();
|
||
});
|
||
});
|
||
|
||
it('support http basic authentication with masterkey', done => {
|
||
reconfigureServer({ appId: 'test' }).then(() => {
|
||
request.get({
|
||
url: 'http://localhost:8378/1/classes/TestObject',
|
||
headers: {
|
||
'Authorization': 'Basic ' + new Buffer('test:' + 'test').toString('base64')
|
||
}
|
||
}, (error, response, body) => {
|
||
expect(response.statusCode).toEqual(200);
|
||
done();
|
||
});
|
||
})
|
||
});
|
||
|
||
it('support http basic authentication with javascriptKey', done => {
|
||
reconfigureServer({ appId: 'test' }).then(() => {
|
||
request.get({
|
||
url: 'http://localhost:8378/1/classes/TestObject',
|
||
headers: {
|
||
'Authorization': 'Basic ' + new Buffer('test:javascript-key=' + 'test').toString('base64')
|
||
}
|
||
}, (error, response, body) => {
|
||
expect(response.statusCode).toEqual(200);
|
||
done();
|
||
});
|
||
})
|
||
});
|
||
|
||
it('fails if database is unreachable', done => {
|
||
reconfigureServer({ databaseAdapter: new MongoStorageAdapter({ uri: 'mongodb://fake:fake@localhost:43605/drew3' }) })
|
||
.catch(() => {
|
||
//Need to use rest api because saving via JS SDK results in fail() not getting called
|
||
request.post({
|
||
url: 'http://localhost:8378/1/classes/NewClass',
|
||
headers: {
|
||
'X-Parse-Application-Id': 'test',
|
||
'X-Parse-REST-API-Key': 'rest',
|
||
},
|
||
body: {},
|
||
json: true,
|
||
}, (error, response, body) => {
|
||
expect(response.statusCode).toEqual(500);
|
||
expect(body.code).toEqual(1);
|
||
expect(body.message).toEqual('Internal server error.');
|
||
reconfigureServer().then(done, done);
|
||
});
|
||
});
|
||
});
|
||
|
||
it('can load email adapter via object', done => {
|
||
reconfigureServer({
|
||
appName: 'unused',
|
||
verifyUserEmails: true,
|
||
emailAdapter: MockEmailAdapterWithOptions({
|
||
fromAddress: 'parse@example.com',
|
||
apiKey: 'k',
|
||
domain: 'd',
|
||
}),
|
||
publicServerURL: 'http://localhost:8378/1'
|
||
}).then(done, fail);
|
||
});
|
||
|
||
it('can load email adapter via class', done => {
|
||
reconfigureServer({
|
||
appName: 'unused',
|
||
verifyUserEmails: true,
|
||
emailAdapter: {
|
||
class: MockEmailAdapterWithOptions,
|
||
options: {
|
||
fromAddress: 'parse@example.com',
|
||
apiKey: 'k',
|
||
domain: 'd',
|
||
}
|
||
},
|
||
publicServerURL: 'http://localhost:8378/1'
|
||
}).then(done, fail);
|
||
});
|
||
|
||
it('can load email adapter via module name', done => {
|
||
reconfigureServer({
|
||
appName: 'unused',
|
||
verifyUserEmails: true,
|
||
emailAdapter: {
|
||
module: 'parse-server-simple-mailgun-adapter',
|
||
options: {
|
||
fromAddress: 'parse@example.com',
|
||
apiKey: 'k',
|
||
domain: 'd',
|
||
}
|
||
},
|
||
publicServerURL: 'http://localhost:8378/1'
|
||
}).then(done, fail);
|
||
});
|
||
|
||
it('can load email adapter via only module name', done => {
|
||
reconfigureServer({
|
||
appName: 'unused',
|
||
verifyUserEmails: true,
|
||
emailAdapter: 'parse-server-simple-mailgun-adapter',
|
||
publicServerURL: 'http://localhost:8378/1'
|
||
})
|
||
.catch(error => {
|
||
expect(error).toEqual('SimpleMailgunAdapter requires an API Key, domain, and fromAddress.');
|
||
done();
|
||
});
|
||
});
|
||
|
||
it('throws if you initialize email adapter incorrecly', done => {
|
||
reconfigureServer({
|
||
appName: 'unused',
|
||
verifyUserEmails: true,
|
||
emailAdapter: {
|
||
module: 'parse-server-simple-mailgun-adapter',
|
||
options: {
|
||
domain: 'd',
|
||
}
|
||
},
|
||
publicServerURL: 'http://localhost:8378/1'
|
||
})
|
||
.catch(error => {
|
||
expect(error).toEqual('SimpleMailgunAdapter requires an API Key, domain, and fromAddress.');
|
||
done();
|
||
});
|
||
});
|
||
|
||
it('can report the server version', done => {
|
||
request.get({
|
||
url: 'http://localhost:8378/1/serverInfo',
|
||
headers: {
|
||
'X-Parse-Application-Id': 'test',
|
||
'X-Parse-Master-Key': 'test',
|
||
},
|
||
json: true,
|
||
}, (error, response, body) => {
|
||
expect(body.parseServerVersion).toEqual(parseServerPackage.version);
|
||
done();
|
||
})
|
||
});
|
||
|
||
it('can create a parse-server v1', done => {
|
||
var parseServer = new ParseServer.default(Object.assign({},
|
||
defaultConfiguration, {
|
||
appId: "aTestApp",
|
||
masterKey: "aTestMasterKey",
|
||
serverURL: "http://localhost:12666/parse",
|
||
__indexBuildCompletionCallbackForTests: promise => {
|
||
promise
|
||
.then(() => {
|
||
expect(Parse.applicationId).toEqual("aTestApp");
|
||
var app = express();
|
||
app.use('/parse', parseServer.app);
|
||
|
||
var server = app.listen(12666);
|
||
var obj = new Parse.Object("AnObject");
|
||
var objId;
|
||
obj.save().then((obj) => {
|
||
objId = obj.id;
|
||
var q = new Parse.Query("AnObject");
|
||
return q.first();
|
||
}).then((obj) => {
|
||
expect(obj.id).toEqual(objId);
|
||
server.close(done);
|
||
}).fail((err) => {
|
||
server.close(done);
|
||
})
|
||
});
|
||
}})
|
||
);
|
||
});
|
||
|
||
it('can create a parse-server v2', done => {
|
||
let objId;
|
||
let server
|
||
let parseServer = ParseServer.ParseServer(Object.assign({},
|
||
defaultConfiguration, {
|
||
appId: "anOtherTestApp",
|
||
masterKey: "anOtherTestMasterKey",
|
||
serverURL: "http://localhost:12667/parse",
|
||
__indexBuildCompletionCallbackForTests: promise => {
|
||
promise
|
||
.then(() => {
|
||
expect(Parse.applicationId).toEqual("anOtherTestApp");
|
||
let app = express();
|
||
app.use('/parse', parseServer);
|
||
|
||
server = app.listen(12667);
|
||
let obj = new Parse.Object("AnObject");
|
||
return obj.save()
|
||
})
|
||
.then(obj => {
|
||
objId = obj.id;
|
||
let q = new Parse.Query("AnObject");
|
||
return q.first();
|
||
})
|
||
.then(obj => {
|
||
expect(obj.id).toEqual(objId);
|
||
server.close(done);
|
||
})
|
||
.catch(error => {
|
||
fail(JSON.stringify(error))
|
||
if (server) {
|
||
server.close(done);
|
||
} else {
|
||
done();
|
||
}
|
||
});
|
||
}}
|
||
));
|
||
});
|
||
|
||
it('has createLiveQueryServer', done => {
|
||
// original implementation through the factory
|
||
expect(typeof ParseServer.ParseServer.createLiveQueryServer).toEqual('function');
|
||
// For import calls
|
||
expect(typeof ParseServer.default.createLiveQueryServer).toEqual('function');
|
||
done();
|
||
});
|
||
|
||
it('exposes correct adapters', done => {
|
||
expect(ParseServer.S3Adapter).toThrow();
|
||
expect(ParseServer.GCSAdapter).toThrow('GCSAdapter is not provided by parse-server anymore; please install parse-server-gcs-adapter');
|
||
expect(ParseServer.FileSystemAdapter).toThrow();
|
||
expect(ParseServer.InMemoryCacheAdapter).toThrow();
|
||
done();
|
||
});
|
||
|
||
it('properly gives publicServerURL when set', done => {
|
||
reconfigureServer({ publicServerURL: 'https://myserver.com/1' })
|
||
.then(() => {
|
||
var config = new Config('test', 'http://localhost:8378/1');
|
||
expect(config.mount).toEqual('https://myserver.com/1');
|
||
done();
|
||
});
|
||
});
|
||
|
||
it('properly removes trailing slash in mount', done => {
|
||
reconfigureServer({})
|
||
.then(() => {
|
||
var config = new Config('test', 'http://localhost:8378/1/');
|
||
expect(config.mount).toEqual('http://localhost:8378/1');
|
||
done();
|
||
});
|
||
});
|
||
|
||
it('should throw when getting invalid mount', done => {
|
||
reconfigureServer({ publicServerURL: 'blabla:/some' })
|
||
.catch(error => {
|
||
expect(error).toEqual('publicServerURL should be a valid HTTPS URL starting with https://')
|
||
done();
|
||
})
|
||
});
|
||
|
||
it('fails if the session length is not a number', done => {
|
||
reconfigureServer({ sessionLength: 'test' })
|
||
.catch(error => {
|
||
expect(error).toEqual('Session length must be a valid number.');
|
||
done();
|
||
});
|
||
});
|
||
|
||
it('fails if the session length is less than or equal to 0', done => {
|
||
reconfigureServer({ sessionLength: '-33' })
|
||
.catch(error => {
|
||
expect(error).toEqual('Session length must be a value greater than 0.');
|
||
return reconfigureServer({ sessionLength: '0' })
|
||
})
|
||
.catch(error => {
|
||
expect(error).toEqual('Session length must be a value greater than 0.');
|
||
done();
|
||
});
|
||
});
|
||
|
||
it('ignores the session length when expireInactiveSessions set to false', (done) => {
|
||
reconfigureServer({
|
||
sessionLength: '-33',
|
||
expireInactiveSessions: false
|
||
})
|
||
.then(() => reconfigureServer({
|
||
sessionLength: '0',
|
||
expireInactiveSessions: false
|
||
}))
|
||
.then(done);
|
||
})
|
||
|
||
it('fails if you try to set revokeSessionOnPasswordReset to non-boolean', done => {
|
||
reconfigureServer({ revokeSessionOnPasswordReset: 'non-bool' })
|
||
.catch(done);
|
||
});
|
||
});
|