[英]Testing Express and Passport OAuth2 with Mocha and Chai
我有一個使用Express和Passport的應用程序。 我正在將Google OAuth2策略與Passport一起使用。 我有一些路線需要通過此策略登錄。
我目前正在與Mocha和Chai進行集成測試,但不確定如何繞開或使用某些路線所需的OAuth2身份驗證。
例如,這是我的測試之一:
it("should list a single item on /items/<id> GET", function(done) {
chai.request(server)
.get('/items/' + id)
.end(function(err, res) {
res.should.have.status(200);
res.should.be.json;
res.body.should.be.a('object');
res.body.should.have.property('description');
done();
});
});
我的/items/:id
路線
router.get('/items/:id', auth.isLoggedIn, function(req, res) {
var item = getItem();
res.json(item);
});
/items/:id
需要登錄。 有沒有一種方法可以繞過登錄進行測試,或者模擬用戶可以進行集成測試?
我能夠使用mocha chai chai-http nock和nock-github-oauth測試github OAuth / passport
nock-github-oauth
將令牌URL存根
還要手動給GitHub用戶和電子郵件api調用加上GitHub API文檔中的示例
這是我的auth_controller_spec.js
//During the test the env variable is set to test
process.env.NODE_ENV = 'test';
var chai = require('chai');
var chaiHttp = require('chai-http');
var should = chai.should();
var expect = chai.expect
var User = require.main.require('models/User');
// https://gist.github.com/branneman/8048520#7-the-wrapper
var app = require.main.require('app');
chai.use(chaiHttp);
function nockGitHubUserAPI(nock) {
/**
* Intercept `https://api.github.com:443/user` API Call.
*/
nock('https://api.github.com:443')
.filteringPath(/\/user.+/, '/user')
.get('/user')
.reply(200,
{
"login": "octocat",
"id": 1,
"avatar_url": "https://github.com/images/error/octocat_happy.gif",
"gravatar_id": "",
"url": "https://api.github.com/users/octocat",
"html_url": "https://github.com/octocat",
"followers_url": "https://api.github.com/users/octocat/followers",
"following_url": "https://api.github.com/users/octocat/following{/other_user}",
"gists_url": "https://api.github.com/users/octocat/gists{/gist_id}",
"starred_url": "https://api.github.com/users/octocat/starred{/owner}{/repo}",
"subscriptions_url": "https://api.github.com/users/octocat/subscriptions",
"organizations_url": "https://api.github.com/users/octocat/orgs",
"repos_url": "https://api.github.com/users/octocat/repos",
"events_url": "https://api.github.com/users/octocat/events{/privacy}",
"received_events_url": "https://api.github.com/users/octocat/received_events",
"type": "User",
"site_admin": false,
"name": "monalisa octocat",
"company": "GitHub",
"blog": "https://github.com/blog",
"location": "San Francisco",
"email": "octocat@github.com",
"hireable": false,
"bio": "There once was...",
"public_repos": 2,
"public_gists": 1,
"followers": 20,
"following": 0,
"created_at": "2008-01-14T04:33:35Z",
"updated_at": "2008-01-14T04:33:35Z"
}
);
/**
* Intercept `https://api.github.com:443/user/emails` API Call.
*/
nock('https://api.github.com:443')
.filteringPath(/\/user\/emails.+/, '/user/emails')
.get('/user/emails')
.reply(200,
[
{
"email": "octocat@github.com",
"verified": true,
"primary": true
}
]
);
}
describe('Auth Controller', (done) => {
var user, nock, github, mockToken, githubHost;
before((done) => {
nock = require('nock');
nock.enableNetConnect('127.0.0.1');
github = require('nock-github-oauth');
nockGitHubUserAPI(nock)
github.nock(done);
})
beforeEach((done) => { //Before each test we reset the database
User.query().del().then(() => {
var params = {name: 'bonzo', authtype: 'github', authid: '12345678'}
// Create a user so the db isn't empty
// May help us uncover odd bugs
new User(params).save()
.then((bonzo) => {
user = bonzo;
done();
})
})
});
after(function(done) {
nock.cleanAll();
done();
});
describe('github link', () => {
it('it should redirect to github.com login / approve page', (done) => {
chai.request(app)
.get('/auth/github')
.redirects(0)
.end((err, res) => {
expect(res.headers['location']).to.match(/^https:\/\/github.com\/login\/oauth\/authorize/);
done();
});
});
});
describe('github callback', () => {
it(' should poll github api for details, upsert the user and log them in', (done) => {
var agent = chai.request.agent(app)
agent.get('/auth/github/callback')
.query({code : '9835b716e83875665b21' })
.end((err, res) => {
// If successful layout displays username on page in (brackets)
expect(res.text).to.match(/\(octocat\)/);
done();
});
});
});
describe('logout', () => {
it('it should end the session and show login', (done) => {
chai.request(app)
.get('/auth/logout')
.end((err, res) => {
expect(res.redirects[0]).to.match(/\/$/);
// If successful layout displays Login links
expect(res.text).to.match(/Login/);
done();
});
});
});
});
完整的源代碼在這里: https : //github.com/stujo/node-express-gamebase
我想出了如何通過在我的摩卡測試中的請求對象中模擬isAuthenticated來實現此目的的方法。
var chai = require('chai');
var chaiHttp = require('chaiHttp');
var server = require('../app');
var should = chai.should();
chai.use(chaiHttp);
// Allows the middleware to think we're already authenticated.
server.request.isAuthenticated = function() {
return true;
}
describe('Items', function() {
it('should list all items on / GET', function(done) {
chai.request(server)
.get('/')
.end(function(err, res) {
res.should.have.status(200);
res.should.be.json;
// more tests...
done();
});
});
});
您可以根據需要創建自己的方法來繞過該方法,但最好的方法是也測試登錄名,然后才能測試要求用戶登錄的功能。
我以前從未使用過Chai,但您可能可以執行以下操作:
var user = null;
it("should log the user in", function(done) {
chai.request(server)
.post('/login', userCredentials)
.end(function(err, res) {
res.should.have.status(200);
user = res.body;
done();
});
});
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.