@civic/auth 0.3.2-beta.3 → 0.3.2-beta.4
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/cjs/nextjs/config.d.ts +1 -0
- package/dist/cjs/nextjs/config.d.ts.map +1 -1
- package/dist/cjs/nextjs/config.js +8 -0
- package/dist/cjs/nextjs/config.js.map +1 -1
- package/dist/cjs/shared/version.d.ts +1 -1
- package/dist/cjs/shared/version.js +1 -1
- package/dist/cjs/shared/version.js.map +1 -1
- package/dist/esm/nextjs/config.d.ts +1 -0
- package/dist/esm/nextjs/config.d.ts.map +1 -1
- package/dist/esm/nextjs/config.js +8 -0
- package/dist/esm/nextjs/config.js.map +1 -1
- package/dist/esm/shared/version.d.ts +1 -1
- package/dist/esm/shared/version.js +1 -1
- package/dist/esm/shared/version.js.map +1 -1
- package/dist/generateVersion.d.ts +2 -0
- package/dist/generateVersion.d.ts.map +1 -0
- package/dist/generateVersion.js +12 -0
- package/dist/generateVersion.js.map +1 -0
- package/dist/package.json +118 -0
- package/dist/src/browser/storage.d.ts +9 -0
- package/dist/src/browser/storage.d.ts.map +1 -0
- package/dist/src/browser/storage.js +17 -0
- package/dist/src/browser/storage.js.map +1 -0
- package/dist/src/config.d.ts +3 -0
- package/dist/src/config.d.ts.map +1 -0
- package/dist/src/config.js +5 -0
- package/dist/src/config.js.map +1 -0
- package/dist/src/constants.d.ts +8 -0
- package/dist/src/constants.d.ts.map +1 -0
- package/dist/src/constants.js +16 -0
- package/dist/src/constants.js.map +1 -0
- package/dist/src/index.d.ts +6 -0
- package/dist/src/index.d.ts.map +1 -0
- package/dist/src/index.js +4 -0
- package/dist/src/index.js.map +1 -0
- package/dist/src/lib/cookies.d.ts +7 -0
- package/dist/src/lib/cookies.d.ts.map +1 -0
- package/dist/src/lib/cookies.js +25 -0
- package/dist/src/lib/cookies.js.map +1 -0
- package/dist/src/lib/jwt.d.ts +3 -0
- package/dist/src/lib/jwt.d.ts.map +1 -0
- package/dist/src/lib/jwt.js +9 -0
- package/dist/src/lib/jwt.js.map +1 -0
- package/dist/src/lib/logger.d.ts +26 -0
- package/dist/src/lib/logger.d.ts.map +1 -0
- package/dist/src/lib/logger.js +55 -0
- package/dist/src/lib/logger.js.map +1 -0
- package/dist/src/lib/oauth.d.ts +19 -0
- package/dist/src/lib/oauth.d.ts.map +1 -0
- package/dist/src/lib/oauth.js +61 -0
- package/dist/src/lib/oauth.js.map +1 -0
- package/dist/src/lib/obj.d.ts +3 -0
- package/dist/src/lib/obj.d.ts.map +1 -0
- package/dist/src/lib/obj.js +18 -0
- package/dist/src/lib/obj.js.map +1 -0
- package/dist/src/lib/postMessage.d.ts +4 -0
- package/dist/src/lib/postMessage.d.ts.map +1 -0
- package/dist/src/lib/postMessage.js +15 -0
- package/dist/src/lib/postMessage.js.map +1 -0
- package/dist/src/lib/windowUtil.d.ts +4 -0
- package/dist/src/lib/windowUtil.d.ts.map +1 -0
- package/dist/src/lib/windowUtil.js +31 -0
- package/dist/src/lib/windowUtil.js.map +1 -0
- package/dist/src/nextjs/GetUser.d.ts +6 -0
- package/dist/src/nextjs/GetUser.d.ts.map +1 -0
- package/dist/src/nextjs/GetUser.js +7 -0
- package/dist/src/nextjs/GetUser.js.map +1 -0
- package/dist/src/nextjs/config.d.ts +181 -0
- package/dist/src/nextjs/config.d.ts.map +1 -0
- package/dist/src/nextjs/config.js +177 -0
- package/dist/src/nextjs/config.js.map +1 -0
- package/dist/src/nextjs/cookies.d.ts +30 -0
- package/dist/src/nextjs/cookies.d.ts.map +1 -0
- package/dist/src/nextjs/cookies.js +112 -0
- package/dist/src/nextjs/cookies.js.map +1 -0
- package/dist/src/nextjs/hooks/index.d.ts +2 -0
- package/dist/src/nextjs/hooks/index.d.ts.map +1 -0
- package/dist/src/nextjs/hooks/index.js +2 -0
- package/dist/src/nextjs/hooks/index.js.map +1 -0
- package/dist/src/nextjs/hooks/usePrevious.d.ts +2 -0
- package/dist/src/nextjs/hooks/usePrevious.d.ts.map +1 -0
- package/dist/src/nextjs/hooks/usePrevious.js +9 -0
- package/dist/src/nextjs/hooks/usePrevious.js.map +1 -0
- package/dist/src/nextjs/hooks/useUserCookie.d.ts +8 -0
- package/dist/src/nextjs/hooks/useUserCookie.d.ts.map +1 -0
- package/dist/src/nextjs/hooks/useUserCookie.js +88 -0
- package/dist/src/nextjs/hooks/useUserCookie.js.map +1 -0
- package/dist/src/nextjs/index.d.ts +7 -0
- package/dist/src/nextjs/index.d.ts.map +1 -0
- package/dist/src/nextjs/index.js +8 -0
- package/dist/src/nextjs/index.js.map +1 -0
- package/dist/src/nextjs/middleware/index.d.ts +2 -0
- package/dist/src/nextjs/middleware/index.d.ts.map +1 -0
- package/dist/src/nextjs/middleware/index.js +4 -0
- package/dist/src/nextjs/middleware/index.js.map +1 -0
- package/dist/src/nextjs/middleware.d.ts +59 -0
- package/dist/src/nextjs/middleware.d.ts.map +1 -0
- package/dist/src/nextjs/middleware.js +107 -0
- package/dist/src/nextjs/middleware.js.map +1 -0
- package/dist/src/nextjs/providers/NextAuthProvider.d.ts +13 -0
- package/dist/src/nextjs/providers/NextAuthProvider.d.ts.map +1 -0
- package/dist/src/nextjs/providers/NextAuthProvider.js +94 -0
- package/dist/src/nextjs/providers/NextAuthProvider.js.map +1 -0
- package/dist/src/nextjs/routeHandler.d.ts +19 -0
- package/dist/src/nextjs/routeHandler.d.ts.map +1 -0
- package/dist/src/nextjs/routeHandler.js +309 -0
- package/dist/src/nextjs/routeHandler.js.map +1 -0
- package/dist/src/nextjs/utils.d.ts +3 -0
- package/dist/src/nextjs/utils.d.ts.map +1 -0
- package/dist/src/nextjs/utils.js +5 -0
- package/dist/src/nextjs/utils.js.map +1 -0
- package/dist/src/reactjs/components/SignInButton.d.ts +8 -0
- package/dist/src/reactjs/components/SignInButton.d.ts.map +1 -0
- package/dist/src/reactjs/components/SignInButton.js +14 -0
- package/dist/src/reactjs/components/SignInButton.js.map +1 -0
- package/dist/src/reactjs/components/SignOutButton.d.ts +6 -0
- package/dist/src/reactjs/components/SignOutButton.d.ts.map +1 -0
- package/dist/src/reactjs/components/SignOutButton.js +14 -0
- package/dist/src/reactjs/components/SignOutButton.js.map +1 -0
- package/dist/src/reactjs/components/UserButton.d.ts +6 -0
- package/dist/src/reactjs/components/UserButton.d.ts.map +1 -0
- package/dist/src/reactjs/components/UserButton.js +118 -0
- package/dist/src/reactjs/components/UserButton.js.map +1 -0
- package/dist/src/reactjs/components/index.d.ts +6 -0
- package/dist/src/reactjs/components/index.d.ts.map +1 -0
- package/dist/src/reactjs/components/index.js +6 -0
- package/dist/src/reactjs/components/index.js.map +1 -0
- package/dist/src/reactjs/hooks/index.d.ts +6 -0
- package/dist/src/reactjs/hooks/index.d.ts.map +1 -0
- package/dist/src/reactjs/hooks/index.js +6 -0
- package/dist/src/reactjs/hooks/index.js.map +1 -0
- package/dist/src/reactjs/hooks/useAuth.d.ts +3 -0
- package/dist/src/reactjs/hooks/useAuth.d.ts.map +1 -0
- package/dist/src/reactjs/hooks/useAuth.js +12 -0
- package/dist/src/reactjs/hooks/useAuth.js.map +1 -0
- package/dist/src/reactjs/hooks/useClientTokenExchangeSession.d.ts +3 -0
- package/dist/src/reactjs/hooks/useClientTokenExchangeSession.d.ts.map +1 -0
- package/dist/src/reactjs/hooks/useClientTokenExchangeSession.js +13 -0
- package/dist/src/reactjs/hooks/useClientTokenExchangeSession.js.map +1 -0
- package/dist/src/reactjs/hooks/useUser.d.ts +4 -0
- package/dist/src/reactjs/hooks/useUser.d.ts.map +1 -0
- package/dist/src/reactjs/hooks/useUser.js +12 -0
- package/dist/src/reactjs/hooks/useUser.js.map +1 -0
- package/dist/src/reactjs/index.d.ts +6 -0
- package/dist/src/reactjs/index.d.ts.map +1 -0
- package/dist/src/reactjs/index.js +10 -0
- package/dist/src/reactjs/index.js.map +1 -0
- package/dist/src/reactjs/providers/AuthProvider.d.ts +11 -0
- package/dist/src/reactjs/providers/AuthProvider.d.ts.map +1 -0
- package/dist/src/reactjs/providers/AuthProvider.js +76 -0
- package/dist/src/reactjs/providers/AuthProvider.js.map +1 -0
- package/dist/src/reactjs/providers/CivicAuthProvider.d.ts +6 -0
- package/dist/src/reactjs/providers/CivicAuthProvider.d.ts.map +1 -0
- package/dist/src/reactjs/providers/CivicAuthProvider.js +32 -0
- package/dist/src/reactjs/providers/CivicAuthProvider.js.map +1 -0
- package/dist/src/reactjs/providers/ClientTokenExchangeSessionProvider.d.ts +17 -0
- package/dist/src/reactjs/providers/ClientTokenExchangeSessionProvider.d.ts.map +1 -0
- package/dist/src/reactjs/providers/ClientTokenExchangeSessionProvider.js +148 -0
- package/dist/src/reactjs/providers/ClientTokenExchangeSessionProvider.js.map +1 -0
- package/dist/src/reactjs/providers/index.d.ts +8 -0
- package/dist/src/reactjs/providers/index.d.ts.map +1 -0
- package/dist/src/reactjs/providers/index.js +7 -0
- package/dist/src/reactjs/providers/index.js.map +1 -0
- package/dist/src/server/ServerAuthenticationResolver.d.ts +20 -0
- package/dist/src/server/ServerAuthenticationResolver.d.ts.map +1 -0
- package/dist/src/server/ServerAuthenticationResolver.js +67 -0
- package/dist/src/server/ServerAuthenticationResolver.js.map +1 -0
- package/dist/src/server/config.d.ts +10 -0
- package/dist/src/server/config.d.ts.map +1 -0
- package/dist/src/server/config.js +2 -0
- package/dist/src/server/config.js.map +1 -0
- package/dist/src/server/index.d.ts +7 -0
- package/dist/src/server/index.d.ts.map +1 -0
- package/dist/src/server/index.js +7 -0
- package/dist/src/server/index.js.map +1 -0
- package/dist/src/server/login.d.ts +21 -0
- package/dist/src/server/login.d.ts.map +1 -0
- package/dist/src/server/login.js +56 -0
- package/dist/src/server/login.js.map +1 -0
- package/dist/src/server/refresh.d.ts +7 -0
- package/dist/src/server/refresh.d.ts.map +1 -0
- package/dist/src/server/refresh.js +13 -0
- package/dist/src/server/refresh.js.map +1 -0
- package/dist/src/services/AuthenticationService.d.ts +91 -0
- package/dist/src/services/AuthenticationService.d.ts.map +1 -0
- package/dist/src/services/AuthenticationService.js +322 -0
- package/dist/src/services/AuthenticationService.js.map +1 -0
- package/dist/src/services/PKCE.d.ts +20 -0
- package/dist/src/services/PKCE.d.ts.map +1 -0
- package/dist/src/services/PKCE.js +44 -0
- package/dist/src/services/PKCE.js.map +1 -0
- package/dist/src/services/types.d.ts +24 -0
- package/dist/src/services/types.d.ts.map +1 -0
- package/dist/src/services/types.js +7 -0
- package/dist/src/services/types.js.map +1 -0
- package/dist/src/shared/components/BlockDisplay.d.ts +7 -0
- package/dist/src/shared/components/BlockDisplay.d.ts.map +1 -0
- package/dist/src/shared/components/BlockDisplay.js +25 -0
- package/dist/src/shared/components/BlockDisplay.js.map +1 -0
- package/dist/src/shared/components/CivicAuthIframe.d.ts +9 -0
- package/dist/src/shared/components/CivicAuthIframe.d.ts.map +1 -0
- package/dist/src/shared/components/CivicAuthIframe.js +8 -0
- package/dist/src/shared/components/CivicAuthIframe.js.map +1 -0
- package/dist/src/shared/components/CivicAuthIframeContainer.d.ts +13 -0
- package/dist/src/shared/components/CivicAuthIframeContainer.d.ts.map +1 -0
- package/dist/src/shared/components/CivicAuthIframeContainer.js +138 -0
- package/dist/src/shared/components/CivicAuthIframeContainer.js.map +1 -0
- package/dist/src/shared/components/CivicAuthLogoutIframeContainer.d.ts +7 -0
- package/dist/src/shared/components/CivicAuthLogoutIframeContainer.d.ts.map +1 -0
- package/dist/src/shared/components/CivicAuthLogoutIframeContainer.js +22 -0
- package/dist/src/shared/components/CivicAuthLogoutIframeContainer.js.map +1 -0
- package/dist/src/shared/components/CloseIcon.d.ts +4 -0
- package/dist/src/shared/components/CloseIcon.d.ts.map +1 -0
- package/dist/src/shared/components/CloseIcon.js +6 -0
- package/dist/src/shared/components/CloseIcon.js.map +1 -0
- package/dist/src/shared/components/IFrameAndLoading.d.ts +8 -0
- package/dist/src/shared/components/IFrameAndLoading.d.ts.map +1 -0
- package/dist/src/shared/components/IFrameAndLoading.js +27 -0
- package/dist/src/shared/components/IFrameAndLoading.js.map +1 -0
- package/dist/src/shared/components/LoadingIcon.d.ts +4 -0
- package/dist/src/shared/components/LoadingIcon.d.ts.map +1 -0
- package/dist/src/shared/components/LoadingIcon.js +30 -0
- package/dist/src/shared/components/LoadingIcon.js.map +1 -0
- package/dist/src/shared/hooks/index.d.ts +11 -0
- package/dist/src/shared/hooks/index.d.ts.map +1 -0
- package/dist/src/shared/hooks/index.js +11 -0
- package/dist/src/shared/hooks/index.js.map +1 -0
- package/dist/src/shared/hooks/useAuth.d.ts +3 -0
- package/dist/src/shared/hooks/useAuth.d.ts.map +1 -0
- package/dist/src/shared/hooks/useAuth.js +12 -0
- package/dist/src/shared/hooks/useAuth.js.map +1 -0
- package/dist/src/shared/hooks/useCivicAuthConfig.d.ts +3 -0
- package/dist/src/shared/hooks/useCivicAuthConfig.d.ts.map +1 -0
- package/dist/src/shared/hooks/useCivicAuthConfig.js +10 -0
- package/dist/src/shared/hooks/useCivicAuthConfig.js.map +1 -0
- package/dist/src/shared/hooks/useClientTokenExchangeSession.d.ts +3 -0
- package/dist/src/shared/hooks/useClientTokenExchangeSession.d.ts.map +1 -0
- package/dist/src/shared/hooks/useClientTokenExchangeSession.js +13 -0
- package/dist/src/shared/hooks/useClientTokenExchangeSession.js.map +1 -0
- package/dist/src/shared/hooks/useCurrentUrl.d.ts +3 -0
- package/dist/src/shared/hooks/useCurrentUrl.d.ts.map +1 -0
- package/dist/src/shared/hooks/useCurrentUrl.js +24 -0
- package/dist/src/shared/hooks/useCurrentUrl.js.map +1 -0
- package/dist/src/shared/hooks/useIframe.d.ts +3 -0
- package/dist/src/shared/hooks/useIframe.d.ts.map +1 -0
- package/dist/src/shared/hooks/useIframe.js +13 -0
- package/dist/src/shared/hooks/useIframe.js.map +1 -0
- package/dist/src/shared/hooks/useIsInIframe.d.ts +3 -0
- package/dist/src/shared/hooks/useIsInIframe.d.ts.map +1 -0
- package/dist/src/shared/hooks/useIsInIframe.js +14 -0
- package/dist/src/shared/hooks/useIsInIframe.js.map +1 -0
- package/dist/src/shared/hooks/useOAuthEndpoints.d.ts +4 -0
- package/dist/src/shared/hooks/useOAuthEndpoints.d.ts.map +1 -0
- package/dist/src/shared/hooks/useOAuthEndpoints.js +14 -0
- package/dist/src/shared/hooks/useOAuthEndpoints.js.map +1 -0
- package/dist/src/shared/hooks/useRefresh.d.ts +4 -0
- package/dist/src/shared/hooks/useRefresh.d.ts.map +1 -0
- package/dist/src/shared/hooks/useRefresh.js +38 -0
- package/dist/src/shared/hooks/useRefresh.js.map +1 -0
- package/dist/src/shared/hooks/useSession.d.ts +3 -0
- package/dist/src/shared/hooks/useSession.d.ts.map +1 -0
- package/dist/src/shared/hooks/useSession.js +13 -0
- package/dist/src/shared/hooks/useSession.js.map +1 -0
- package/dist/src/shared/hooks/useSignIn.d.ts +15 -0
- package/dist/src/shared/hooks/useSignIn.d.ts.map +1 -0
- package/dist/src/shared/hooks/useSignIn.js +126 -0
- package/dist/src/shared/hooks/useSignIn.js.map +1 -0
- package/dist/src/shared/hooks/useToken.d.ts +3 -0
- package/dist/src/shared/hooks/useToken.d.ts.map +1 -0
- package/dist/src/shared/hooks/useToken.js +12 -0
- package/dist/src/shared/hooks/useToken.js.map +1 -0
- package/dist/src/shared/hooks/useWindowFocused.d.ts +5 -0
- package/dist/src/shared/hooks/useWindowFocused.d.ts.map +1 -0
- package/dist/src/shared/hooks/useWindowFocused.js +21 -0
- package/dist/src/shared/hooks/useWindowFocused.js.map +1 -0
- package/dist/src/shared/index.d.ts +5 -0
- package/dist/src/shared/index.d.ts.map +1 -0
- package/dist/src/shared/index.js +16 -0
- package/dist/src/shared/index.js.map +1 -0
- package/dist/src/shared/lib/GenericAuthenticationRefresher.d.ts +20 -0
- package/dist/src/shared/lib/GenericAuthenticationRefresher.d.ts.map +1 -0
- package/dist/src/shared/lib/GenericAuthenticationRefresher.js +73 -0
- package/dist/src/shared/lib/GenericAuthenticationRefresher.js.map +1 -0
- package/dist/src/shared/lib/UserSession.d.ts +12 -0
- package/dist/src/shared/lib/UserSession.d.ts.map +1 -0
- package/dist/src/shared/lib/UserSession.js +20 -0
- package/dist/src/shared/lib/UserSession.js.map +1 -0
- package/dist/src/shared/lib/session.d.ts +3 -0
- package/dist/src/shared/lib/session.d.ts.map +1 -0
- package/dist/src/shared/lib/session.js +21 -0
- package/dist/src/shared/lib/session.js.map +1 -0
- package/dist/src/shared/lib/storage.d.ts +25 -0
- package/dist/src/shared/lib/storage.d.ts.map +1 -0
- package/dist/src/shared/lib/storage.js +17 -0
- package/dist/src/shared/lib/storage.js.map +1 -0
- package/dist/src/shared/lib/types.d.ts +36 -0
- package/dist/src/shared/lib/types.d.ts.map +1 -0
- package/dist/src/shared/lib/types.js +18 -0
- package/dist/src/shared/lib/types.js.map +1 -0
- package/dist/src/shared/lib/util.d.ts +34 -0
- package/dist/src/shared/lib/util.d.ts.map +1 -0
- package/dist/src/shared/lib/util.js +137 -0
- package/dist/src/shared/lib/util.js.map +1 -0
- package/dist/src/shared/providers/AuthContext.d.ts +11 -0
- package/dist/src/shared/providers/AuthContext.d.ts.map +1 -0
- package/dist/src/shared/providers/AuthContext.js +3 -0
- package/dist/src/shared/providers/AuthContext.js.map +1 -0
- package/dist/src/shared/providers/AuthProvider.d.ts +22 -0
- package/dist/src/shared/providers/AuthProvider.d.ts.map +1 -0
- package/dist/src/shared/providers/AuthProvider.js +72 -0
- package/dist/src/shared/providers/AuthProvider.js.map +1 -0
- package/dist/src/shared/providers/CivicAuthConfigContext.d.ts +18 -0
- package/dist/src/shared/providers/CivicAuthConfigContext.d.ts.map +1 -0
- package/dist/src/shared/providers/CivicAuthConfigContext.js +52 -0
- package/dist/src/shared/providers/CivicAuthConfigContext.js.map +1 -0
- package/dist/src/shared/providers/CivicAuthProvider.d.ts +6 -0
- package/dist/src/shared/providers/CivicAuthProvider.d.ts.map +1 -0
- package/dist/src/shared/providers/CivicAuthProvider.js +32 -0
- package/dist/src/shared/providers/CivicAuthProvider.js.map +1 -0
- package/dist/src/shared/providers/ClientTokenExchangeSessionProvider.d.ts +17 -0
- package/dist/src/shared/providers/ClientTokenExchangeSessionProvider.d.ts.map +1 -0
- package/dist/src/shared/providers/ClientTokenExchangeSessionProvider.js +131 -0
- package/dist/src/shared/providers/ClientTokenExchangeSessionProvider.js.map +1 -0
- package/dist/src/shared/providers/IframeProvider.d.ts +22 -0
- package/dist/src/shared/providers/IframeProvider.d.ts.map +1 -0
- package/dist/src/shared/providers/IframeProvider.js +35 -0
- package/dist/src/shared/providers/IframeProvider.js.map +1 -0
- package/dist/src/shared/providers/SessionProvider.d.ts +19 -0
- package/dist/src/shared/providers/SessionProvider.d.ts.map +1 -0
- package/dist/src/shared/providers/SessionProvider.js +23 -0
- package/dist/src/shared/providers/SessionProvider.js.map +1 -0
- package/dist/src/shared/providers/TokenProvider.d.ts +18 -0
- package/dist/src/shared/providers/TokenProvider.d.ts.map +1 -0
- package/dist/src/shared/providers/TokenProvider.js +42 -0
- package/dist/src/shared/providers/TokenProvider.js.map +1 -0
- package/dist/src/shared/providers/UserProvider.d.ts +24 -0
- package/dist/src/shared/providers/UserProvider.d.ts.map +1 -0
- package/dist/src/shared/providers/UserProvider.js +52 -0
- package/dist/src/shared/providers/UserProvider.js.map +1 -0
- package/dist/src/shared/providers/types.d.ts +15 -0
- package/dist/src/shared/providers/types.d.ts.map +1 -0
- package/dist/src/shared/providers/types.js +2 -0
- package/dist/src/shared/providers/types.js.map +1 -0
- package/dist/src/shared/version.d.ts +2 -0
- package/dist/src/shared/version.d.ts.map +1 -0
- package/dist/src/shared/version.js +3 -0
- package/dist/src/shared/version.js.map +1 -0
- package/dist/src/types.d.ts +148 -0
- package/dist/src/types.d.ts.map +1 -0
- package/dist/src/types.js +4 -0
- package/dist/src/types.js.map +1 -0
- package/dist/src/utils.d.ts +15 -0
- package/dist/src/utils.d.ts.map +1 -0
- package/dist/src/utils.js +43 -0
- package/dist/src/utils.js.map +1 -0
- package/dist/src/version.d.ts +2 -0
- package/dist/src/version.d.ts.map +1 -0
- package/dist/src/version.js +3 -0
- package/dist/src/version.js.map +1 -0
- package/dist/test/integration/sdk.test.d.ts +2 -0
- package/dist/test/integration/sdk.test.d.ts.map +1 -0
- package/dist/test/integration/sdk.test.js +237 -0
- package/dist/test/integration/sdk.test.js.map +1 -0
- package/dist/test/support/fixtures.d.ts +26 -0
- package/dist/test/support/fixtures.d.ts.map +1 -0
- package/dist/test/support/fixtures.js +55 -0
- package/dist/test/support/fixtures.js.map +1 -0
- package/dist/test/support/tokens.json +26 -0
- package/dist/test/unit/lib/oauth.test.d.ts +2 -0
- package/dist/test/unit/lib/oauth.test.d.ts.map +1 -0
- package/dist/test/unit/lib/oauth.test.js +56 -0
- package/dist/test/unit/lib/oauth.test.js.map +1 -0
- package/dist/test/unit/lib/obj.test.d.ts +2 -0
- package/dist/test/unit/lib/obj.test.d.ts.map +1 -0
- package/dist/test/unit/lib/obj.test.js +37 -0
- package/dist/test/unit/lib/obj.test.js.map +1 -0
- package/dist/test/unit/logger.test.d.ts +2 -0
- package/dist/test/unit/logger.test.d.ts.map +1 -0
- package/dist/test/unit/logger.test.js +141 -0
- package/dist/test/unit/logger.test.js.map +1 -0
- package/dist/test/unit/nextjs/NextAuthProvider.test.d.ts +2 -0
- package/dist/test/unit/nextjs/NextAuthProvider.test.d.ts.map +1 -0
- package/dist/test/unit/nextjs/NextAuthProvider.test.js +31 -0
- package/dist/test/unit/nextjs/NextAuthProvider.test.js.map +1 -0
- package/dist/test/unit/nextjs/config.test.d.ts +2 -0
- package/dist/test/unit/nextjs/config.test.d.ts.map +1 -0
- package/dist/test/unit/nextjs/config.test.js +203 -0
- package/dist/test/unit/nextjs/config.test.js.map +1 -0
- package/dist/test/unit/nextjs/getUser.test.d.ts +2 -0
- package/dist/test/unit/nextjs/getUser.test.d.ts.map +1 -0
- package/dist/test/unit/nextjs/getUser.test.js +22 -0
- package/dist/test/unit/nextjs/getUser.test.js.map +1 -0
- package/dist/test/unit/nextjs/handler.test.d.ts +2 -0
- package/dist/test/unit/nextjs/handler.test.d.ts.map +1 -0
- package/dist/test/unit/nextjs/handler.test.js +207 -0
- package/dist/test/unit/nextjs/handler.test.js.map +1 -0
- package/dist/test/unit/nextjs/middleware.test.d.ts +2 -0
- package/dist/test/unit/nextjs/middleware.test.d.ts.map +1 -0
- package/dist/test/unit/nextjs/middleware.test.js +113 -0
- package/dist/test/unit/nextjs/middleware.test.js.map +1 -0
- package/dist/test/unit/nextjs/utils.test.d.ts +2 -0
- package/dist/test/unit/nextjs/utils.test.d.ts.map +1 -0
- package/dist/test/unit/nextjs/utils.test.js +13 -0
- package/dist/test/unit/nextjs/utils.test.js.map +1 -0
- package/dist/test/unit/publicApi/apiSnapshot.test.d.ts +2 -0
- package/dist/test/unit/publicApi/apiSnapshot.test.d.ts.map +1 -0
- package/dist/test/unit/publicApi/apiSnapshot.test.js +10 -0
- package/dist/test/unit/publicApi/apiSnapshot.test.js.map +1 -0
- package/dist/test/unit/react/components/SignInButton.test.d.ts +2 -0
- package/dist/test/unit/react/components/SignInButton.test.d.ts.map +1 -0
- package/dist/test/unit/react/components/SignInButton.test.js +31 -0
- package/dist/test/unit/react/components/SignInButton.test.js.map +1 -0
- package/dist/test/unit/react/components/SignOutButton.test.d.ts +2 -0
- package/dist/test/unit/react/components/SignOutButton.test.d.ts.map +1 -0
- package/dist/test/unit/react/components/SignOutButton.test.js +30 -0
- package/dist/test/unit/react/components/SignOutButton.test.js.map +1 -0
- package/dist/test/unit/server/login.test.d.ts +2 -0
- package/dist/test/unit/server/login.test.d.ts.map +1 -0
- package/dist/test/unit/server/login.test.js +184 -0
- package/dist/test/unit/server/login.test.js.map +1 -0
- package/dist/test/unit/server/refresh.test.d.ts +2 -0
- package/dist/test/unit/server/refresh.test.d.ts.map +1 -0
- package/dist/test/unit/server/refresh.test.js +55 -0
- package/dist/test/unit/server/refresh.test.js.map +1 -0
- package/dist/test/unit/server/session.test.d.ts +2 -0
- package/dist/test/unit/server/session.test.d.ts.map +1 -0
- package/dist/test/unit/server/session.test.js +41 -0
- package/dist/test/unit/server/session.test.js.map +1 -0
- package/dist/test/unit/services/AuthenticationService.test.d.ts +2 -0
- package/dist/test/unit/services/AuthenticationService.test.d.ts.map +1 -0
- package/dist/test/unit/services/AuthenticationService.test.js +301 -0
- package/dist/test/unit/services/AuthenticationService.test.js.map +1 -0
- package/dist/test/unit/services/ServerAuthenticationResolver.test.d.ts +2 -0
- package/dist/test/unit/services/ServerAuthenticationResolver.test.d.ts.map +1 -0
- package/dist/test/unit/services/ServerAuthenticationResolver.test.js +75 -0
- package/dist/test/unit/services/ServerAuthenticationResolver.test.js.map +1 -0
- package/dist/test/unit/shared/GenericAuthenticationRefresher.test.d.ts +2 -0
- package/dist/test/unit/shared/GenericAuthenticationRefresher.test.d.ts.map +1 -0
- package/dist/test/unit/shared/GenericAuthenticationRefresher.test.js +144 -0
- package/dist/test/unit/shared/GenericAuthenticationRefresher.test.js.map +1 -0
- package/dist/test/unit/shared/UserSession.test.d.ts +2 -0
- package/dist/test/unit/shared/UserSession.test.d.ts.map +1 -0
- package/dist/test/unit/shared/UserSession.test.js +37 -0
- package/dist/test/unit/shared/UserSession.test.js.map +1 -0
- package/dist/test/unit/shared/components/CivicAuthIframeContainer.test.d.ts +2 -0
- package/dist/test/unit/shared/components/CivicAuthIframeContainer.test.d.ts.map +1 -0
- package/dist/test/unit/shared/components/CivicAuthIframeContainer.test.js +122 -0
- package/dist/test/unit/shared/components/CivicAuthIframeContainer.test.js.map +1 -0
- package/dist/test/unit/shared/printVersion.test.d.ts +2 -0
- package/dist/test/unit/shared/printVersion.test.d.ts.map +1 -0
- package/dist/test/unit/shared/printVersion.test.js +39 -0
- package/dist/test/unit/shared/printVersion.test.js.map +1 -0
- package/dist/test/unit/shared/providers/ClientTokenExchangeSessionProvider.test.d.ts +2 -0
- package/dist/test/unit/shared/providers/ClientTokenExchangeSessionProvider.test.d.ts.map +1 -0
- package/dist/test/unit/shared/providers/ClientTokenExchangeSessionProvider.test.js +108 -0
- package/dist/test/unit/shared/providers/ClientTokenExchangeSessionProvider.test.js.map +1 -0
- package/dist/test/unit/shared/storage.test.d.ts +2 -0
- package/dist/test/unit/shared/storage.test.d.ts.map +1 -0
- package/dist/test/unit/shared/storage.test.js +53 -0
- package/dist/test/unit/shared/storage.test.js.map +1 -0
- package/dist/test/unit/utils.test.d.ts +2 -0
- package/dist/test/unit/utils.test.d.ts.map +1 -0
- package/dist/test/unit/utils.test.js +40 -0
- package/dist/test/unit/utils.test.js.map +1 -0
- package/dist/tsconfig.cjs.tsbuildinfo +1 -1
- package/dist/tsconfig.esm.tsbuildinfo +1 -1
- package/dist/tsconfig.tsbuildinfo +1 -0
- package/dist/vitest.config.d.ts +3 -0
- package/dist/vitest.config.d.ts.map +1 -0
- package/dist/vitest.config.js +44 -0
- package/dist/vitest.config.js.map +1 -0
- package/package.json +19 -18
- package/dist/cjs/reactjs/hooks/useSignIn.d.ts +0 -6
- package/dist/cjs/reactjs/hooks/useSignIn.d.ts.map +0 -1
- package/dist/cjs/reactjs/hooks/useSignIn.js +0 -38
- package/dist/cjs/reactjs/hooks/useSignIn.js.map +0 -1
- package/dist/cjs/services/UserinfoService.d.ts +0 -5
- package/dist/cjs/services/UserinfoService.d.ts.map +0 -1
- package/dist/cjs/services/UserinfoService.js +0 -15
- package/dist/cjs/services/UserinfoService.js.map +0 -1
- package/dist/esm/reactjs/hooks/useSignIn.d.ts +0 -6
- package/dist/esm/reactjs/hooks/useSignIn.d.ts.map +0 -1
- package/dist/esm/reactjs/hooks/useSignIn.js +0 -34
- package/dist/esm/reactjs/hooks/useSignIn.js.map +0 -1
|
@@ -0,0 +1,203 @@
|
|
|
1
|
+
/* eslint-disable turbo/no-undeclared-env-vars */
|
|
2
|
+
import { describe, it, expect, beforeEach, afterEach, vi } from "vitest";
|
|
3
|
+
import { resolveAuthConfig, createCivicAuthPlugin, defaultAuthConfig, } from "@/nextjs/config.js";
|
|
4
|
+
import { DEFAULT_AUTH_SERVER } from "@/constants.js";
|
|
5
|
+
const defaultCookies = {
|
|
6
|
+
id_token: {
|
|
7
|
+
httpOnly: true,
|
|
8
|
+
path: "/",
|
|
9
|
+
sameSite: "strict",
|
|
10
|
+
secure: false,
|
|
11
|
+
},
|
|
12
|
+
access_token: {
|
|
13
|
+
httpOnly: true,
|
|
14
|
+
path: "/",
|
|
15
|
+
sameSite: "strict",
|
|
16
|
+
secure: false,
|
|
17
|
+
},
|
|
18
|
+
refresh_token: {
|
|
19
|
+
httpOnly: true,
|
|
20
|
+
path: "/",
|
|
21
|
+
sameSite: "strict",
|
|
22
|
+
secure: false,
|
|
23
|
+
},
|
|
24
|
+
expires_in: {
|
|
25
|
+
httpOnly: true,
|
|
26
|
+
path: "/",
|
|
27
|
+
sameSite: "strict",
|
|
28
|
+
secure: false,
|
|
29
|
+
},
|
|
30
|
+
timestamp: {
|
|
31
|
+
httpOnly: true,
|
|
32
|
+
path: "/",
|
|
33
|
+
sameSite: "strict",
|
|
34
|
+
secure: false,
|
|
35
|
+
},
|
|
36
|
+
code_verifier: {
|
|
37
|
+
httpOnly: true,
|
|
38
|
+
path: "/",
|
|
39
|
+
sameSite: "strict",
|
|
40
|
+
secure: false,
|
|
41
|
+
},
|
|
42
|
+
app_url: {
|
|
43
|
+
httpOnly: true,
|
|
44
|
+
path: "/",
|
|
45
|
+
sameSite: "strict",
|
|
46
|
+
secure: false,
|
|
47
|
+
},
|
|
48
|
+
};
|
|
49
|
+
describe("nextjs/config", () => {
|
|
50
|
+
const originalEnv = process.env;
|
|
51
|
+
beforeEach(() => {
|
|
52
|
+
vi.resetModules();
|
|
53
|
+
process.env = { ...originalEnv, NODE_ENV: "development" };
|
|
54
|
+
});
|
|
55
|
+
afterEach(() => {
|
|
56
|
+
process.env = originalEnv;
|
|
57
|
+
vi.restoreAllMocks();
|
|
58
|
+
});
|
|
59
|
+
describe("resolveAuthConfig", () => {
|
|
60
|
+
it("should throw an error if clientId is not provided", () => {
|
|
61
|
+
expect(() => resolveAuthConfig()).toThrowError("Civic Auth client ID is required");
|
|
62
|
+
});
|
|
63
|
+
it("should use default values when no config is provided", () => {
|
|
64
|
+
// client id must be defined
|
|
65
|
+
process.env._civic_auth_client_id = "clientId";
|
|
66
|
+
const result = resolveAuthConfig();
|
|
67
|
+
expect(result).toEqual({ ...defaultAuthConfig, clientId: "clientId" });
|
|
68
|
+
});
|
|
69
|
+
it("should override default values with provided config", () => {
|
|
70
|
+
const config = {
|
|
71
|
+
clientId: "clientId",
|
|
72
|
+
callbackUrl: "/custom/callback",
|
|
73
|
+
loginUrl: "/custom/login",
|
|
74
|
+
include: ["/protected/*"],
|
|
75
|
+
exclude: ["/public/*"],
|
|
76
|
+
};
|
|
77
|
+
const result = resolveAuthConfig(config);
|
|
78
|
+
expect(result.callbackUrl).toBe("/custom/callback");
|
|
79
|
+
expect(result.loginUrl).toBe("/custom/login");
|
|
80
|
+
expect(result.include).toEqual(["/protected/*"]);
|
|
81
|
+
expect(result.exclude).toEqual(["/public/*"]);
|
|
82
|
+
});
|
|
83
|
+
it("should use environment variables if set", () => {
|
|
84
|
+
process.env._civic_auth_client_id = "clientId";
|
|
85
|
+
process.env._civic_auth_callback_url = "/env/callback";
|
|
86
|
+
process.env._civic_auth_login_url = "/env/login";
|
|
87
|
+
process.env._civic_auth_includes = "/env/protected/*";
|
|
88
|
+
process.env._civic_auth_excludes = "/env/public/*";
|
|
89
|
+
const result = resolveAuthConfig();
|
|
90
|
+
expect(result.callbackUrl).toBe("/env/callback");
|
|
91
|
+
expect(result.loginUrl).toBe("/env/login");
|
|
92
|
+
expect(result.include).toEqual(["/env/protected/*"]);
|
|
93
|
+
expect(result.exclude).toEqual(["/env/public/*"]);
|
|
94
|
+
});
|
|
95
|
+
it("should prioritize provided config over environment variables", () => {
|
|
96
|
+
process.env._civic_auth_callback_url = "/env/callback";
|
|
97
|
+
const config = {
|
|
98
|
+
clientId: "clientId",
|
|
99
|
+
callbackUrl: "/config/callback",
|
|
100
|
+
};
|
|
101
|
+
const result = resolveAuthConfig(config);
|
|
102
|
+
expect(result.callbackUrl).toBe("/config/callback");
|
|
103
|
+
});
|
|
104
|
+
it("should merge cookie configurations correctly", () => {
|
|
105
|
+
const config = {
|
|
106
|
+
clientId: "clientId",
|
|
107
|
+
cookies: {
|
|
108
|
+
tokens: {
|
|
109
|
+
id_token: { ...defaultCookies.id_token, secure: false },
|
|
110
|
+
},
|
|
111
|
+
user: {
|
|
112
|
+
httpOnly: false,
|
|
113
|
+
secure: false,
|
|
114
|
+
sameSite: "strict",
|
|
115
|
+
},
|
|
116
|
+
},
|
|
117
|
+
};
|
|
118
|
+
const result = resolveAuthConfig(config);
|
|
119
|
+
expect(result.cookies.tokens).toEqual({
|
|
120
|
+
...defaultCookies,
|
|
121
|
+
id_token: { ...defaultCookies.id_token, secure: false },
|
|
122
|
+
});
|
|
123
|
+
expect(result.cookies.user).toEqual({
|
|
124
|
+
httpOnly: false,
|
|
125
|
+
secure: false,
|
|
126
|
+
sameSite: "strict",
|
|
127
|
+
path: "/",
|
|
128
|
+
maxAge: 3600,
|
|
129
|
+
});
|
|
130
|
+
});
|
|
131
|
+
it("should set secure to true in the default cookie configs if NODE_ENV is not development", async () => {
|
|
132
|
+
process.env = { ...originalEnv, NODE_ENV: "production" };
|
|
133
|
+
// re-import to get the configs with the updated NODE_ENV
|
|
134
|
+
const configs = await import("../../../src/nextjs/config.js");
|
|
135
|
+
const result = configs.resolveAuthConfig({ clientId: "clientId" });
|
|
136
|
+
Object.values(result.cookies.tokens).forEach((cookie) => {
|
|
137
|
+
expect(cookie.secure).toBe(true);
|
|
138
|
+
});
|
|
139
|
+
});
|
|
140
|
+
});
|
|
141
|
+
describe("createCivicAuthPlugin", () => {
|
|
142
|
+
it("should return a function", () => {
|
|
143
|
+
const plugin = createCivicAuthPlugin({ clientId: "clientId" });
|
|
144
|
+
expect(typeof plugin).toBe("function");
|
|
145
|
+
});
|
|
146
|
+
it("should set environment variables based on resolved config", () => {
|
|
147
|
+
const config = {
|
|
148
|
+
clientId: "clientId",
|
|
149
|
+
callbackUrl: "/custom/callback",
|
|
150
|
+
loginUrl: "/custom/login",
|
|
151
|
+
logoutUrl: "/custom/logout",
|
|
152
|
+
logoutCallbackUrl: "/custom/logoutcallback",
|
|
153
|
+
include: ["/protected/*"],
|
|
154
|
+
exclude: ["/public/*"],
|
|
155
|
+
cookies: {
|
|
156
|
+
tokens: defaultCookies,
|
|
157
|
+
user: {
|
|
158
|
+
secure: false,
|
|
159
|
+
sameSite: "strict",
|
|
160
|
+
maxAge: 3600,
|
|
161
|
+
},
|
|
162
|
+
},
|
|
163
|
+
};
|
|
164
|
+
const plugin = createCivicAuthPlugin(config);
|
|
165
|
+
const nextConfig = plugin({});
|
|
166
|
+
expect(nextConfig.env).toEqual({
|
|
167
|
+
_civic_auth_client_id: "clientId",
|
|
168
|
+
_civic_auth_callback_url: "/custom/callback",
|
|
169
|
+
_civic_auth_challenge_url: "/api/auth/challenge",
|
|
170
|
+
_civic_auth_login_url: "/custom/login",
|
|
171
|
+
_civic_auth_logout_url: "/custom/logout",
|
|
172
|
+
_civic_auth_logout_callback_url: "/custom/logoutcallback",
|
|
173
|
+
_civic_auth_includes: "/protected/*",
|
|
174
|
+
_civic_auth_excludes: "/public/*",
|
|
175
|
+
_civic_oauth_server: DEFAULT_AUTH_SERVER,
|
|
176
|
+
_civic_auth_cookie_config: JSON.stringify({
|
|
177
|
+
tokens: defaultCookies,
|
|
178
|
+
user: {
|
|
179
|
+
secure: false,
|
|
180
|
+
httpOnly: false,
|
|
181
|
+
sameSite: "strict",
|
|
182
|
+
path: "/",
|
|
183
|
+
maxAge: 3600,
|
|
184
|
+
},
|
|
185
|
+
}),
|
|
186
|
+
});
|
|
187
|
+
});
|
|
188
|
+
it("should merge with existing Next.js config", () => {
|
|
189
|
+
const existingConfig = {
|
|
190
|
+
reactStrictMode: true,
|
|
191
|
+
env: {
|
|
192
|
+
CUSTOM_VAR: "value",
|
|
193
|
+
},
|
|
194
|
+
};
|
|
195
|
+
const plugin = createCivicAuthPlugin({ clientId: "clientId" });
|
|
196
|
+
const nextConfig = plugin(existingConfig);
|
|
197
|
+
expect(nextConfig.reactStrictMode).toBe(true);
|
|
198
|
+
expect(nextConfig.env).toHaveProperty("CUSTOM_VAR", "value");
|
|
199
|
+
expect(nextConfig.env).toHaveProperty("_civic_auth_callback_url");
|
|
200
|
+
});
|
|
201
|
+
});
|
|
202
|
+
});
|
|
203
|
+
//# sourceMappingURL=config.test.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"config.test.js","sourceRoot":"","sources":["../../../../test/unit/nextjs/config.test.ts"],"names":[],"mappings":"AAAA,iDAAiD;AACjD,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,UAAU,EAAE,SAAS,EAAE,EAAE,EAAE,MAAM,QAAQ,CAAC;AACzE,OAAO,EACL,iBAAiB,EACjB,qBAAqB,EAErB,iBAAiB,GAClB,MAAM,oBAAoB,CAAC;AAE5B,OAAO,EAAE,mBAAmB,EAAE,MAAM,gBAAgB,CAAC;AAErD,MAAM,cAAc,GAAG;IACrB,QAAQ,EAAE;QACR,QAAQ,EAAE,IAAI;QACd,IAAI,EAAE,GAAG;QACT,QAAQ,EAAE,QAAQ;QAClB,MAAM,EAAE,KAAK;KACd;IACD,YAAY,EAAE;QACZ,QAAQ,EAAE,IAAI;QACd,IAAI,EAAE,GAAG;QACT,QAAQ,EAAE,QAAQ;QAClB,MAAM,EAAE,KAAK;KACd;IACD,aAAa,EAAE;QACb,QAAQ,EAAE,IAAI;QACd,IAAI,EAAE,GAAG;QACT,QAAQ,EAAE,QAAQ;QAClB,MAAM,EAAE,KAAK;KACd;IACD,UAAU,EAAE;QACV,QAAQ,EAAE,IAAI;QACd,IAAI,EAAE,GAAG;QACT,QAAQ,EAAE,QAAQ;QAClB,MAAM,EAAE,KAAK;KACd;IACD,SAAS,EAAE;QACT,QAAQ,EAAE,IAAI;QACd,IAAI,EAAE,GAAG;QACT,QAAQ,EAAE,QAAQ;QAClB,MAAM,EAAE,KAAK;KACd;IACD,aAAa,EAAE;QACb,QAAQ,EAAE,IAAI;QACd,IAAI,EAAE,GAAG;QACT,QAAQ,EAAE,QAAQ;QAClB,MAAM,EAAE,KAAK;KACd;IACD,OAAO,EAAE;QACP,QAAQ,EAAE,IAAI;QACd,IAAI,EAAE,GAAG;QACT,QAAQ,EAAE,QAAQ;QAClB,MAAM,EAAE,KAAK;KACd;CACoB,CAAC;AAExB,QAAQ,CAAC,eAAe,EAAE,GAAG,EAAE;IAC7B,MAAM,WAAW,GAAG,OAAO,CAAC,GAAG,CAAC;IAEhC,UAAU,CAAC,GAAG,EAAE;QACd,EAAE,CAAC,YAAY,EAAE,CAAC;QAClB,OAAO,CAAC,GAAG,GAAG,EAAE,GAAG,WAAW,EAAE,QAAQ,EAAE,aAAa,EAAE,CAAC;IAC5D,CAAC,CAAC,CAAC;IAEH,SAAS,CAAC,GAAG,EAAE;QACb,OAAO,CAAC,GAAG,GAAG,WAAW,CAAC;QAC1B,EAAE,CAAC,eAAe,EAAE,CAAC;IACvB,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,mBAAmB,EAAE,GAAG,EAAE;QACjC,EAAE,CAAC,mDAAmD,EAAE,GAAG,EAAE;YAC3D,MAAM,CAAC,GAAG,EAAE,CAAC,iBAAiB,EAAE,CAAC,CAAC,YAAY,CAC5C,kCAAkC,CACnC,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,sDAAsD,EAAE,GAAG,EAAE;YAC9D,4BAA4B;YAC5B,OAAO,CAAC,GAAG,CAAC,qBAAqB,GAAG,UAAU,CAAC;YAC/C,MAAM,MAAM,GAAG,iBAAiB,EAAE,CAAC;YACnC,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,EAAE,GAAG,iBAAiB,EAAE,QAAQ,EAAE,UAAU,EAAE,CAAC,CAAC;QACzE,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,qDAAqD,EAAE,GAAG,EAAE;YAC7D,MAAM,MAAM,GAAe;gBACzB,QAAQ,EAAE,UAAU;gBACpB,WAAW,EAAE,kBAAkB;gBAC/B,QAAQ,EAAE,eAAe;gBACzB,OAAO,EAAE,CAAC,cAAc,CAAC;gBACzB,OAAO,EAAE,CAAC,WAAW,CAAC;aACvB,CAAC;YACF,MAAM,MAAM,GAAG,iBAAiB,CAAC,MAAM,CAAC,CAAC;YACzC,MAAM,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC;YACpD,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;YAC9C,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,OAAO,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC;YACjD,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,OAAO,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC;QAChD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,yCAAyC,EAAE,GAAG,EAAE;YACjD,OAAO,CAAC,GAAG,CAAC,qBAAqB,GAAG,UAAU,CAAC;YAC/C,OAAO,CAAC,GAAG,CAAC,wBAAwB,GAAG,eAAe,CAAC;YACvD,OAAO,CAAC,GAAG,CAAC,qBAAqB,GAAG,YAAY,CAAC;YACjD,OAAO,CAAC,GAAG,CAAC,oBAAoB,GAAG,kBAAkB,CAAC;YACtD,OAAO,CAAC,GAAG,CAAC,oBAAoB,GAAG,eAAe,CAAC;YAEnD,MAAM,MAAM,GAAG,iBAAiB,EAAE,CAAC;YACnC,MAAM,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;YACjD,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;YAC3C,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,OAAO,CAAC,CAAC,kBAAkB,CAAC,CAAC,CAAC;YACrD,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,OAAO,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC;QACpD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,8DAA8D,EAAE,GAAG,EAAE;YACtE,OAAO,CAAC,GAAG,CAAC,wBAAwB,GAAG,eAAe,CAAC;YACvD,MAAM,MAAM,GAAe;gBACzB,QAAQ,EAAE,UAAU;gBACpB,WAAW,EAAE,kBAAkB;aAChC,CAAC;YAEF,MAAM,MAAM,GAAG,iBAAiB,CAAC,MAAM,CAAC,CAAC;YACzC,MAAM,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC;QACtD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,8CAA8C,EAAE,GAAG,EAAE;YACtD,MAAM,MAAM,GAAe;gBACzB,QAAQ,EAAE,UAAU;gBACpB,OAAO,EAAE;oBACP,MAAM,EAAE;wBACN,QAAQ,EAAE,EAAE,GAAG,cAAc,CAAC,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE;qBAClC;oBACvB,IAAI,EAAE;wBACJ,QAAQ,EAAE,KAAK;wBACf,MAAM,EAAE,KAAK;wBACb,QAAQ,EAAE,QAAQ;qBACnB;iBACF;aACF,CAAC;YAEF,MAAM,MAAM,GAAG,iBAAiB,CAAC,MAAM,CAAC,CAAC;YACzC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC;gBACpC,GAAG,cAAc;gBACjB,QAAQ,EAAE,EAAE,GAAG,cAAc,CAAC,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE;aACxD,CAAC,CAAC;YAEH,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC;gBAClC,QAAQ,EAAE,KAAK;gBACf,MAAM,EAAE,KAAK;gBACb,QAAQ,EAAE,QAAQ;gBAClB,IAAI,EAAE,GAAG;gBACT,MAAM,EAAE,IAAI;aACb,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,wFAAwF,EAAE,KAAK,IAAI,EAAE;YACtG,OAAO,CAAC,GAAG,GAAG,EAAE,GAAG,WAAW,EAAE,QAAQ,EAAE,YAAY,EAAE,CAAC;YACzD,yDAAyD;YACzD,MAAM,OAAO,GAAG,MAAM,MAAM,CAAC,+BAA+B,CAAC,CAAC;YAC9D,MAAM,MAAM,GAAG,OAAO,CAAC,iBAAiB,CAAC,EAAE,QAAQ,EAAE,UAAU,EAAE,CAAC,CAAC;YACnE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,CAAC,MAAM,EAAE,EAAE;gBACtD,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACnC,CAAC,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,uBAAuB,EAAE,GAAG,EAAE;QACrC,EAAE,CAAC,0BAA0B,EAAE,GAAG,EAAE;YAClC,MAAM,MAAM,GAAG,qBAAqB,CAAC,EAAE,QAAQ,EAAE,UAAU,EAAE,CAAC,CAAC;YAC/D,MAAM,CAAC,OAAO,MAAM,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QACzC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,2DAA2D,EAAE,GAAG,EAAE;YACnE,MAAM,MAAM,GAAG;gBACb,QAAQ,EAAE,UAAU;gBACpB,WAAW,EAAE,kBAAkB;gBAC/B,QAAQ,EAAE,eAAe;gBACzB,SAAS,EAAE,gBAAgB;gBAC3B,iBAAiB,EAAE,wBAAwB;gBAC3C,OAAO,EAAE,CAAC,cAAc,CAAC;gBACzB,OAAO,EAAE,CAAC,WAAW,CAAC;gBACtB,OAAO,EAAE;oBACP,MAAM,EAAE,cAAc;oBACtB,IAAI,EAAE;wBACJ,MAAM,EAAE,KAAK;wBACb,QAAQ,EAAE,QAAQ;wBAClB,MAAM,EAAE,IAAI;qBACJ;iBACX;aACF,CAAC;YAEF,MAAM,MAAM,GAAG,qBAAqB,CAAC,MAAM,CAAC,CAAC;YAC7C,MAAM,UAAU,GAAG,MAAM,CAAC,EAAE,CAAC,CAAC;YAE9B,MAAM,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,OAAO,CAAC;gBAC7B,qBAAqB,EAAE,UAAU;gBACjC,wBAAwB,EAAE,kBAAkB;gBAC5C,yBAAyB,EAAE,qBAAqB;gBAChD,qBAAqB,EAAE,eAAe;gBACtC,sBAAsB,EAAE,gBAAgB;gBACxC,+BAA+B,EAAE,wBAAwB;gBACzD,oBAAoB,EAAE,cAAc;gBACpC,oBAAoB,EAAE,WAAW;gBACjC,mBAAmB,EAAE,mBAAmB;gBACxC,yBAAyB,EAAE,IAAI,CAAC,SAAS,CAAC;oBACxC,MAAM,EAAE,cAAc;oBACtB,IAAI,EAAE;wBACJ,MAAM,EAAE,KAAK;wBACb,QAAQ,EAAE,KAAK;wBACf,QAAQ,EAAE,QAAQ;wBAClB,IAAI,EAAE,GAAG;wBACT,MAAM,EAAE,IAAI;qBACb;iBACF,CAAC;aACH,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,2CAA2C,EAAE,GAAG,EAAE;YACnD,MAAM,cAAc,GAAG;gBACrB,eAAe,EAAE,IAAI;gBACrB,GAAG,EAAE;oBACH,UAAU,EAAE,OAAO;iBACpB;aACF,CAAC;YAEF,MAAM,MAAM,GAAG,qBAAqB,CAAC,EAAE,QAAQ,EAAE,UAAU,EAAE,CAAC,CAAC;YAC/D,MAAM,UAAU,GAAG,MAAM,CAAC,cAAc,CAAC,CAAC;YAE1C,MAAM,CAAC,UAAU,CAAC,eAAe,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAC9C,MAAM,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,cAAc,CAAC,YAAY,EAAE,OAAO,CAAC,CAAC;YAC7D,MAAM,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,cAAc,CAAC,0BAA0B,CAAC,CAAC;QACpE,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC","sourcesContent":["/* eslint-disable turbo/no-undeclared-env-vars */\nimport { describe, it, expect, beforeEach, afterEach, vi } from \"vitest\";\nimport {\n resolveAuthConfig,\n createCivicAuthPlugin,\n type AuthConfig,\n defaultAuthConfig,\n} from \"@/nextjs/config.js\";\nimport type { TokensCookieConfig } from \"@/index.js\";\nimport { DEFAULT_AUTH_SERVER } from \"@/constants.js\";\n\nconst defaultCookies = {\n id_token: {\n httpOnly: true,\n path: \"/\",\n sameSite: \"strict\",\n secure: false,\n },\n access_token: {\n httpOnly: true,\n path: \"/\",\n sameSite: \"strict\",\n secure: false,\n },\n refresh_token: {\n httpOnly: true,\n path: \"/\",\n sameSite: \"strict\",\n secure: false,\n },\n expires_in: {\n httpOnly: true,\n path: \"/\",\n sameSite: \"strict\",\n secure: false,\n },\n timestamp: {\n httpOnly: true,\n path: \"/\",\n sameSite: \"strict\",\n secure: false,\n },\n code_verifier: {\n httpOnly: true,\n path: \"/\",\n sameSite: \"strict\",\n secure: false,\n },\n app_url: {\n httpOnly: true,\n path: \"/\",\n sameSite: \"strict\",\n secure: false,\n },\n} as TokensCookieConfig;\n\ndescribe(\"nextjs/config\", () => {\n const originalEnv = process.env;\n\n beforeEach(() => {\n vi.resetModules();\n process.env = { ...originalEnv, NODE_ENV: \"development\" };\n });\n\n afterEach(() => {\n process.env = originalEnv;\n vi.restoreAllMocks();\n });\n\n describe(\"resolveAuthConfig\", () => {\n it(\"should throw an error if clientId is not provided\", () => {\n expect(() => resolveAuthConfig()).toThrowError(\n \"Civic Auth client ID is required\",\n );\n });\n\n it(\"should use default values when no config is provided\", () => {\n // client id must be defined\n process.env._civic_auth_client_id = \"clientId\";\n const result = resolveAuthConfig();\n expect(result).toEqual({ ...defaultAuthConfig, clientId: \"clientId\" });\n });\n\n it(\"should override default values with provided config\", () => {\n const config: AuthConfig = {\n clientId: \"clientId\",\n callbackUrl: \"/custom/callback\",\n loginUrl: \"/custom/login\",\n include: [\"/protected/*\"],\n exclude: [\"/public/*\"],\n };\n const result = resolveAuthConfig(config);\n expect(result.callbackUrl).toBe(\"/custom/callback\");\n expect(result.loginUrl).toBe(\"/custom/login\");\n expect(result.include).toEqual([\"/protected/*\"]);\n expect(result.exclude).toEqual([\"/public/*\"]);\n });\n\n it(\"should use environment variables if set\", () => {\n process.env._civic_auth_client_id = \"clientId\";\n process.env._civic_auth_callback_url = \"/env/callback\";\n process.env._civic_auth_login_url = \"/env/login\";\n process.env._civic_auth_includes = \"/env/protected/*\";\n process.env._civic_auth_excludes = \"/env/public/*\";\n\n const result = resolveAuthConfig();\n expect(result.callbackUrl).toBe(\"/env/callback\");\n expect(result.loginUrl).toBe(\"/env/login\");\n expect(result.include).toEqual([\"/env/protected/*\"]);\n expect(result.exclude).toEqual([\"/env/public/*\"]);\n });\n\n it(\"should prioritize provided config over environment variables\", () => {\n process.env._civic_auth_callback_url = \"/env/callback\";\n const config: AuthConfig = {\n clientId: \"clientId\",\n callbackUrl: \"/config/callback\",\n };\n\n const result = resolveAuthConfig(config);\n expect(result.callbackUrl).toBe(\"/config/callback\");\n });\n\n it(\"should merge cookie configurations correctly\", () => {\n const config: AuthConfig = {\n clientId: \"clientId\",\n cookies: {\n tokens: {\n id_token: { ...defaultCookies.id_token, secure: false },\n } as TokensCookieConfig,\n user: {\n httpOnly: false,\n secure: false,\n sameSite: \"strict\",\n },\n },\n };\n\n const result = resolveAuthConfig(config);\n expect(result.cookies.tokens).toEqual({\n ...defaultCookies,\n id_token: { ...defaultCookies.id_token, secure: false },\n });\n\n expect(result.cookies.user).toEqual({\n httpOnly: false,\n secure: false,\n sameSite: \"strict\",\n path: \"/\",\n maxAge: 3600,\n });\n });\n\n it(\"should set secure to true in the default cookie configs if NODE_ENV is not development\", async () => {\n process.env = { ...originalEnv, NODE_ENV: \"production\" };\n // re-import to get the configs with the updated NODE_ENV\n const configs = await import(\"../../../src/nextjs/config.js\");\n const result = configs.resolveAuthConfig({ clientId: \"clientId\" });\n Object.values(result.cookies.tokens).forEach((cookie) => {\n expect(cookie.secure).toBe(true);\n });\n });\n });\n\n describe(\"createCivicAuthPlugin\", () => {\n it(\"should return a function\", () => {\n const plugin = createCivicAuthPlugin({ clientId: \"clientId\" });\n expect(typeof plugin).toBe(\"function\");\n });\n\n it(\"should set environment variables based on resolved config\", () => {\n const config = {\n clientId: \"clientId\",\n callbackUrl: \"/custom/callback\",\n loginUrl: \"/custom/login\",\n logoutUrl: \"/custom/logout\",\n logoutCallbackUrl: \"/custom/logoutcallback\",\n include: [\"/protected/*\"],\n exclude: [\"/public/*\"],\n cookies: {\n tokens: defaultCookies,\n user: {\n secure: false,\n sameSite: \"strict\",\n maxAge: 3600,\n } as const,\n },\n };\n\n const plugin = createCivicAuthPlugin(config);\n const nextConfig = plugin({});\n\n expect(nextConfig.env).toEqual({\n _civic_auth_client_id: \"clientId\",\n _civic_auth_callback_url: \"/custom/callback\",\n _civic_auth_challenge_url: \"/api/auth/challenge\",\n _civic_auth_login_url: \"/custom/login\",\n _civic_auth_logout_url: \"/custom/logout\",\n _civic_auth_logout_callback_url: \"/custom/logoutcallback\",\n _civic_auth_includes: \"/protected/*\",\n _civic_auth_excludes: \"/public/*\",\n _civic_oauth_server: DEFAULT_AUTH_SERVER,\n _civic_auth_cookie_config: JSON.stringify({\n tokens: defaultCookies,\n user: {\n secure: false,\n httpOnly: false,\n sameSite: \"strict\",\n path: \"/\",\n maxAge: 3600,\n },\n }),\n });\n });\n\n it(\"should merge with existing Next.js config\", () => {\n const existingConfig = {\n reactStrictMode: true,\n env: {\n CUSTOM_VAR: \"value\",\n },\n };\n\n const plugin = createCivicAuthPlugin({ clientId: \"clientId\" });\n const nextConfig = plugin(existingConfig);\n\n expect(nextConfig.reactStrictMode).toBe(true);\n expect(nextConfig.env).toHaveProperty(\"CUSTOM_VAR\", \"value\");\n expect(nextConfig.env).toHaveProperty(\"_civic_auth_callback_url\");\n });\n });\n});\n"]}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"getUser.test.d.ts","sourceRoot":"","sources":["../../../../test/unit/nextjs/getUser.test.ts"],"names":[],"mappings":""}
|
|
@@ -0,0 +1,22 @@
|
|
|
1
|
+
import { describe, it, expect, beforeEach, vi } from "vitest";
|
|
2
|
+
import { GenericUserSession } from "@/shared/lib/UserSession.js";
|
|
3
|
+
import { getUser } from "@/nextjs/index.js";
|
|
4
|
+
import { NextjsClientStorage } from "@/nextjs/cookies.js";
|
|
5
|
+
import * as session from "@/shared/lib/session.js";
|
|
6
|
+
const mockUser = {
|
|
7
|
+
id: "user123",
|
|
8
|
+
name: "John Doe",
|
|
9
|
+
email: "john@example.com",
|
|
10
|
+
picture: "https://example.com/john.jpg",
|
|
11
|
+
};
|
|
12
|
+
describe("getUser", () => {
|
|
13
|
+
beforeEach(() => {
|
|
14
|
+
vi.clearAllMocks();
|
|
15
|
+
vi.spyOn(session, "getUser").mockResolvedValue(mockUser);
|
|
16
|
+
});
|
|
17
|
+
it("should get the user from session", async () => {
|
|
18
|
+
const user = await getUser();
|
|
19
|
+
expect(user).toEqual(mockUser);
|
|
20
|
+
});
|
|
21
|
+
});
|
|
22
|
+
//# sourceMappingURL=getUser.test.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"getUser.test.js","sourceRoot":"","sources":["../../../../test/unit/nextjs/getUser.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,UAAU,EAAE,EAAE,EAAE,MAAM,QAAQ,CAAC;AAC9D,OAAO,EAAE,kBAAkB,EAAE,MAAM,6BAA6B,CAAC;AAEjE,OAAO,EAAE,OAAO,EAAE,MAAM,mBAAmB,CAAC;AAC5C,OAAO,EAAE,mBAAmB,EAAE,MAAM,qBAAqB,CAAC;AAC1D,OAAO,KAAK,OAAO,MAAM,yBAAyB,CAAC;AAEnD,MAAM,QAAQ,GAAS;IACrB,EAAE,EAAE,SAAS;IACb,IAAI,EAAE,UAAU;IAChB,KAAK,EAAE,kBAAkB;IACzB,OAAO,EAAE,8BAA8B;CACrB,CAAC;AAErB,QAAQ,CAAC,SAAS,EAAE,GAAG,EAAE;IACvB,UAAU,CAAC,GAAG,EAAE;QACd,EAAE,CAAC,aAAa,EAAE,CAAC;QACnB,EAAE,CAAC,KAAK,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC,iBAAiB,CAAC,QAAQ,CAAC,CAAC;IAC3D,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,kCAAkC,EAAE,KAAK,IAAI,EAAE;QAChD,MAAM,IAAI,GAAG,MAAM,OAAO,EAAE,CAAC;QAC7B,MAAM,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;IACjC,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC","sourcesContent":["import { describe, it, expect, beforeEach, vi } from \"vitest\";\nimport { GenericUserSession } from \"@/shared/lib/UserSession.js\";\nimport type { User } from \"@/types.ts\";\nimport { getUser } from \"@/nextjs/index.js\";\nimport { NextjsClientStorage } from \"@/nextjs/cookies.js\";\nimport * as session from \"@/shared/lib/session.js\";\n\nconst mockUser: User = {\n id: \"user123\",\n name: \"John Doe\",\n email: \"john@example.com\",\n picture: \"https://example.com/john.jpg\",\n} as unknown as User;\n\ndescribe(\"getUser\", () => {\n beforeEach(() => {\n vi.clearAllMocks();\n vi.spyOn(session, \"getUser\").mockResolvedValue(mockUser);\n });\n\n it(\"should get the user from session\", async () => {\n const user = await getUser();\n expect(user).toEqual(mockUser);\n });\n});\n"]}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"handler.test.d.ts","sourceRoot":"","sources":["../../../../test/unit/nextjs/handler.test.ts"],"names":[],"mappings":""}
|
|
@@ -0,0 +1,207 @@
|
|
|
1
|
+
import { describe, it, expect, beforeEach, vi } from "vitest";
|
|
2
|
+
import * as PKCE from "@/services/PKCE.js";
|
|
3
|
+
import { NextRequest } from "next/server.js";
|
|
4
|
+
import { handler } from "@/nextjs/routeHandler.js";
|
|
5
|
+
import { revalidatePath } from "next/cache.js";
|
|
6
|
+
import * as logger from "@/lib/logger.js";
|
|
7
|
+
import * as login from "@/server/login.js";
|
|
8
|
+
import * as session from "@/shared/lib/session.js";
|
|
9
|
+
import * as cookies from "@/nextjs/cookies.js";
|
|
10
|
+
import { GenericUserSession } from "@/shared/lib/UserSession.js";
|
|
11
|
+
import { TOKEN_EXCHANGE_TRIGGER_TEXT } from "@/constants.js";
|
|
12
|
+
vi.mock("@/services/PKCE.js");
|
|
13
|
+
vi.mock("next/cache", () => ({
|
|
14
|
+
revalidatePath: vi.fn(),
|
|
15
|
+
}));
|
|
16
|
+
const mockUser = {
|
|
17
|
+
id: "user123",
|
|
18
|
+
name: "John Doe",
|
|
19
|
+
email: "john@example.com",
|
|
20
|
+
picture: "https://example.com/john.jpg",
|
|
21
|
+
};
|
|
22
|
+
const mockCookies = {
|
|
23
|
+
get: vi.fn(),
|
|
24
|
+
set: vi.fn(),
|
|
25
|
+
delete: vi.fn(),
|
|
26
|
+
};
|
|
27
|
+
vi.mock("next/headers.js", () => {
|
|
28
|
+
return {
|
|
29
|
+
cookies: () => mockCookies,
|
|
30
|
+
};
|
|
31
|
+
});
|
|
32
|
+
describe("Auth Route Handler", () => {
|
|
33
|
+
let mockLogger;
|
|
34
|
+
afterEach(vi.clearAllMocks);
|
|
35
|
+
beforeEach(() => {
|
|
36
|
+
mockLogger = {
|
|
37
|
+
error: vi.fn(),
|
|
38
|
+
info: vi.fn(),
|
|
39
|
+
warn: vi.fn(),
|
|
40
|
+
debug: vi.fn(),
|
|
41
|
+
};
|
|
42
|
+
vi.spyOn(logger.loggers.nextjs.handlers.auth, "debug").mockImplementation((...args) => mockLogger.debug(...args));
|
|
43
|
+
vi.spyOn(logger.loggers.nextjs.handlers.auth, "info").mockImplementation((...args) => mockLogger.info(...args));
|
|
44
|
+
vi.spyOn(logger.loggers.nextjs.handlers.auth, "warn").mockImplementation((...args) => mockLogger.warn(...args));
|
|
45
|
+
vi.spyOn(logger.loggers.nextjs.handlers.auth, "error").mockImplementation((...args) => mockLogger.error(...args));
|
|
46
|
+
});
|
|
47
|
+
beforeEach(() => {
|
|
48
|
+
vi.clearAllMocks();
|
|
49
|
+
vi.stubEnv("_civic_auth_client_id", "test-client-id");
|
|
50
|
+
vi.spyOn(login, "resolveOAuthAccessCode").mockResolvedValue({});
|
|
51
|
+
vi.spyOn(session, "getUser").mockResolvedValue(mockUser);
|
|
52
|
+
vi.spyOn(GenericUserSession.prototype, "set");
|
|
53
|
+
});
|
|
54
|
+
describe("Challenge Handler", () => {
|
|
55
|
+
beforeEach(() => {
|
|
56
|
+
vi.spyOn(PKCE.GenericPublicClientPKCEProducer.prototype, "getCodeChallenge").mockResolvedValue("test-code-challenge");
|
|
57
|
+
});
|
|
58
|
+
it("should handle challenge request", async () => {
|
|
59
|
+
const mockRequest = new NextRequest("https://example.com/api/auth/challenge");
|
|
60
|
+
const routeHandler = handler();
|
|
61
|
+
const response = await routeHandler(mockRequest);
|
|
62
|
+
expect(response.json()).resolves.toEqual({
|
|
63
|
+
status: "success",
|
|
64
|
+
challenge: "test-code-challenge",
|
|
65
|
+
});
|
|
66
|
+
});
|
|
67
|
+
});
|
|
68
|
+
describe("Callback Handler", () => {
|
|
69
|
+
let mockRequest;
|
|
70
|
+
let routeHandler;
|
|
71
|
+
beforeAll(() => {
|
|
72
|
+
routeHandler = handler();
|
|
73
|
+
});
|
|
74
|
+
it("should handle missing parameters", async () => {
|
|
75
|
+
mockRequest = new NextRequest("https://example.com/api/auth/callback");
|
|
76
|
+
vi.spyOn(mockRequest.cookies, "get").mockReturnValue("test-code-verifier");
|
|
77
|
+
vi.spyOn(mockRequest.cookies, "set");
|
|
78
|
+
const response = await routeHandler(mockRequest);
|
|
79
|
+
expect(response.json()).resolves.toEqual({
|
|
80
|
+
error: "Bad parameters",
|
|
81
|
+
});
|
|
82
|
+
expect(response.status).toBe(400);
|
|
83
|
+
});
|
|
84
|
+
describe("with all parameters passed in", () => {
|
|
85
|
+
beforeAll(() => {
|
|
86
|
+
mockRequest = new NextRequest("https://example.com/api/auth/callback?code=123&state=testState&appUrl=https://example.com");
|
|
87
|
+
vi.spyOn(mockRequest.cookies, "get").mockReturnValue("test-code-verifier");
|
|
88
|
+
vi.spyOn(mockRequest.cookies, "set");
|
|
89
|
+
});
|
|
90
|
+
it("should handle error when resolving the access code", async () => {
|
|
91
|
+
vi.spyOn(login, "resolveOAuthAccessCode").mockRejectedValue("Token exchange failed");
|
|
92
|
+
const response = await routeHandler(mockRequest);
|
|
93
|
+
expect(response.json()).resolves.toEqual({
|
|
94
|
+
error: "Failed to authenticate user",
|
|
95
|
+
});
|
|
96
|
+
expect(response.status).toBe(401);
|
|
97
|
+
});
|
|
98
|
+
describe("with code_verifier cookie present on request", () => {
|
|
99
|
+
it("should do token exchange", async () => {
|
|
100
|
+
const routeHandler = handler();
|
|
101
|
+
const response = await routeHandler(mockRequest);
|
|
102
|
+
// should have resolved the access code
|
|
103
|
+
expect(login.resolveOAuthAccessCode).toHaveBeenCalled();
|
|
104
|
+
// verify response data
|
|
105
|
+
expect(response.status).toBe(200);
|
|
106
|
+
// verify user is being set to the session
|
|
107
|
+
expect(GenericUserSession.prototype.set).toHaveBeenCalledWith(mockUser);
|
|
108
|
+
});
|
|
109
|
+
it("should return empty html response", async () => {
|
|
110
|
+
const response = await routeHandler(mockRequest);
|
|
111
|
+
const body = await response.text();
|
|
112
|
+
expect(body).toEqual('<html><span style="display:none">serverSideTokenExchangeSuccess</span></html>');
|
|
113
|
+
});
|
|
114
|
+
});
|
|
115
|
+
describe("with no code_verifier cookie present on request", () => {
|
|
116
|
+
beforeAll(() => {
|
|
117
|
+
vi.spyOn(mockRequest.cookies, "get").mockReturnValue(undefined);
|
|
118
|
+
});
|
|
119
|
+
it("should not do token exchange", async () => {
|
|
120
|
+
const response = await routeHandler(mockRequest);
|
|
121
|
+
// should have resolved the access code
|
|
122
|
+
expect(login.resolveOAuthAccessCode).not.toHaveBeenCalled();
|
|
123
|
+
// verify response data
|
|
124
|
+
expect(response.status).toBe(200);
|
|
125
|
+
// verify user is being set to the session
|
|
126
|
+
expect(GenericUserSession.prototype.set).not.toHaveBeenCalled();
|
|
127
|
+
});
|
|
128
|
+
describe("in server token-exchange mode", () => {
|
|
129
|
+
let state;
|
|
130
|
+
beforeEach(() => {
|
|
131
|
+
state =
|
|
132
|
+
"eyJ1dWlkIjoiMGY0NWU5YWItY2U1Ni00OWZiLTlkYmUtOGQ3ZmM3YTI3NDFhIiwiZGlzcGxheU1vZGUiOiJpZnJhbWUiLCJzZXJ2ZXJUb2tlbkV4Y2hhbmdlIjp0cnVlfQ";
|
|
133
|
+
const params = new URLSearchParams({ code: "123", state });
|
|
134
|
+
mockRequest = new NextRequest(`https://example.com/api/auth/callback?${params.toString()}`);
|
|
135
|
+
vi.spyOn(mockRequest.cookies, "get").mockReturnValue(undefined);
|
|
136
|
+
});
|
|
137
|
+
it("should return html with a javascript fetch call to retry the callback token exchange", async () => {
|
|
138
|
+
// this state indicates server-side token exchange
|
|
139
|
+
const response = await routeHandler(mockRequest);
|
|
140
|
+
const body = await response.text();
|
|
141
|
+
expect(body).toContain(`fetch('/api/auth/callback?code=123&state=${state}&sameDomainCallback=true&appUrl=' + appUrl)`);
|
|
142
|
+
});
|
|
143
|
+
});
|
|
144
|
+
describe("in client token-exchange mode", () => {
|
|
145
|
+
let state;
|
|
146
|
+
beforeEach(() => {
|
|
147
|
+
state =
|
|
148
|
+
"eyJ1dWlkIjoiNzE5MmI3MmItYzk5ZC00NjhmLTliMDAtMWFhOWVhYjI0YjgxIiwiZGlzcGxheU1vZGUiOiJyZWRpcmVjdCJ9";
|
|
149
|
+
const params = new URLSearchParams({ code: "123", state });
|
|
150
|
+
mockRequest = new NextRequest(`https://example.com/api/auth/callback?${params.toString()}`);
|
|
151
|
+
vi.spyOn(mockRequest.cookies, "get").mockReturnValue(undefined);
|
|
152
|
+
});
|
|
153
|
+
it("should return html response indicating a token exchange is required", async () => {
|
|
154
|
+
const response = await routeHandler(mockRequest);
|
|
155
|
+
const body = await response.text();
|
|
156
|
+
expect(body).toEqual(`<html><body><span style="display:none">${TOKEN_EXCHANGE_TRIGGER_TEXT}</span></body></html>`);
|
|
157
|
+
});
|
|
158
|
+
});
|
|
159
|
+
});
|
|
160
|
+
});
|
|
161
|
+
});
|
|
162
|
+
describe.skip("Logout Handler", () => {
|
|
163
|
+
beforeEach(() => {
|
|
164
|
+
vi.spyOn(cookies, "clearAuthCookies");
|
|
165
|
+
vi.spyOn(cookies.NextjsCookieStorage.prototype, "get").mockResolvedValue("test");
|
|
166
|
+
});
|
|
167
|
+
it("should clear auth cookies", async () => {
|
|
168
|
+
const mockRequest = new NextRequest("https://example.com/api/auth/logout?redirect=/dashboard");
|
|
169
|
+
const routeHandler = handler();
|
|
170
|
+
await routeHandler(mockRequest);
|
|
171
|
+
expect(cookies.clearAuthCookies).toHaveBeenCalled();
|
|
172
|
+
});
|
|
173
|
+
it("should handle relative redirect paths", async () => {
|
|
174
|
+
const mockRequest = new NextRequest("https://example.com/api/auth/logout?redirect=/dashboard&state=testState");
|
|
175
|
+
const routeHandler = handler();
|
|
176
|
+
const response = await routeHandler(mockRequest);
|
|
177
|
+
expect(response.url).toBe("https://example.com/dashboard");
|
|
178
|
+
expect(revalidatePath).toHaveBeenCalledWith("/dashboard");
|
|
179
|
+
});
|
|
180
|
+
it("should handle default redirect to home", async () => {
|
|
181
|
+
const mockRequest = new NextRequest("https://example.com/api/auth/logout");
|
|
182
|
+
const routeHandler = handler();
|
|
183
|
+
const response = await routeHandler(mockRequest);
|
|
184
|
+
expect(response.url).toBe("https://example.com/");
|
|
185
|
+
expect(revalidatePath).toHaveBeenCalledWith("/");
|
|
186
|
+
});
|
|
187
|
+
it("should handle absolute URLs and preserve the domain", async () => {
|
|
188
|
+
const mockRequest = new NextRequest("https://example.com/api/auth/logout?redirect=https://other-domain.com/page");
|
|
189
|
+
const routeHandler = handler();
|
|
190
|
+
const response = await routeHandler(mockRequest);
|
|
191
|
+
// The URL constructor will preserve the absolute URL
|
|
192
|
+
expect(response.url).toBe("https://other-domain.com/page");
|
|
193
|
+
expect(revalidatePath).toHaveBeenCalledWith("https://other-domain.com/page");
|
|
194
|
+
});
|
|
195
|
+
it("should handle revalidation failure gracefully", async () => {
|
|
196
|
+
const mockRequest = new NextRequest("https://example.com/api/auth/logout?redirect=/dashboard");
|
|
197
|
+
vi.mocked(revalidatePath).mockImplementationOnce(() => {
|
|
198
|
+
throw new Error("Revalidation failed");
|
|
199
|
+
});
|
|
200
|
+
const routeHandler = handler();
|
|
201
|
+
const response = await routeHandler(mockRequest);
|
|
202
|
+
expect(response.url).toBe("https://example.com/dashboard");
|
|
203
|
+
expect(mockLogger.warn).toHaveBeenCalled();
|
|
204
|
+
});
|
|
205
|
+
});
|
|
206
|
+
});
|
|
207
|
+
//# sourceMappingURL=handler.test.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"handler.test.js","sourceRoot":"","sources":["../../../../test/unit/nextjs/handler.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,UAAU,EAAE,EAAE,EAAE,MAAM,QAAQ,CAAC;AAC9D,OAAO,KAAK,IAAI,MAAM,oBAAoB,CAAC;AAE3C,OAAO,EAAE,WAAW,EAAE,MAAM,gBAAgB,CAAC;AAC7C,OAAO,EAAE,OAAO,EAAE,MAAM,0BAA0B,CAAC;AAEnD,OAAO,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AAE/C,OAAO,KAAK,MAAM,MAAM,iBAAiB,CAAC;AAC1C,OAAO,KAAK,KAAK,MAAM,mBAAmB,CAAC;AAC3C,OAAO,KAAK,OAAO,MAAM,yBAAyB,CAAC;AACnD,OAAO,KAAK,OAAO,MAAM,qBAAqB,CAAC;AAC/C,OAAO,EAAE,kBAAkB,EAAE,MAAM,6BAA6B,CAAC;AACjE,OAAO,EAAE,2BAA2B,EAAE,MAAM,gBAAgB,CAAC;AAE7D,EAAE,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC;AAE9B,EAAE,CAAC,IAAI,CAAC,YAAY,EAAE,GAAG,EAAE,CAAC,CAAC;IAC3B,cAAc,EAAE,EAAE,CAAC,EAAE,EAAE;CACxB,CAAC,CAAC,CAAC;AAEJ,MAAM,QAAQ,GAAS;IACrB,EAAE,EAAE,SAAS;IACb,IAAI,EAAE,UAAU;IAChB,KAAK,EAAE,kBAAkB;IACzB,OAAO,EAAE,8BAA8B;CACrB,CAAC;AAErB,MAAM,WAAW,GAAG;IAClB,GAAG,EAAE,EAAE,CAAC,EAAE,EAAE;IACZ,GAAG,EAAE,EAAE,CAAC,EAAE,EAAE;IACZ,MAAM,EAAE,EAAE,CAAC,EAAE,EAAE;CAChB,CAAC;AAEF,EAAE,CAAC,IAAI,CAAC,iBAAiB,EAAE,GAAG,EAAE;IAC9B,OAAO;QACL,OAAO,EAAE,GAAG,EAAE,CAAC,WAAW;KAC3B,CAAC;AACJ,CAAC,CAAC,CAAC;AAEH,QAAQ,CAAC,oBAAoB,EAAE,GAAG,EAAE;IAClC,IAAI,UAAyB,CAAC;IAC9B,SAAS,CAAC,EAAE,CAAC,aAAa,CAAC,CAAC;IAC5B,UAAU,CAAC,GAAG,EAAE;QACd,UAAU,GAAG;YACX,KAAK,EAAE,EAAE,CAAC,EAAE,EAAE;YACd,IAAI,EAAE,EAAE,CAAC,EAAE,EAAE;YACb,IAAI,EAAE,EAAE,CAAC,EAAE,EAAE;YACb,KAAK,EAAE,EAAE,CAAC,EAAE,EAAE;SACf,CAAC;QACF,EAAE,CAAC,KAAK,CAAC,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC,kBAAkB,CACvE,CAAC,GAAG,IAAI,EAAE,EAAE,CAAC,UAAU,CAAC,KAAK,CAAC,GAAG,IAAI,CAAC,CACvC,CAAC;QACF,EAAE,CAAC,KAAK,CAAC,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC,kBAAkB,CACtE,CAAC,GAAG,IAAI,EAAE,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,CACtC,CAAC;QACF,EAAE,CAAC,KAAK,CAAC,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC,kBAAkB,CACtE,CAAC,GAAG,IAAI,EAAE,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,CACtC,CAAC;QACF,EAAE,CAAC,KAAK,CAAC,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC,kBAAkB,CACvE,CAAC,GAAG,IAAI,EAAE,EAAE,CAAC,UAAU,CAAC,KAAK,CAAC,GAAG,IAAI,CAAC,CACvC,CAAC;IACJ,CAAC,CAAC,CAAC;IACH,UAAU,CAAC,GAAG,EAAE;QACd,EAAE,CAAC,aAAa,EAAE,CAAC;QACnB,EAAE,CAAC,OAAO,CAAC,uBAAuB,EAAE,gBAAgB,CAAC,CAAC;QACtD,EAAE,CAAC,KAAK,CAAC,KAAK,EAAE,wBAAwB,CAAC,CAAC,iBAAiB,CACzD,EAA2B,CAC5B,CAAC;QACF,EAAE,CAAC,KAAK,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC,iBAAiB,CAAC,QAAQ,CAAC,CAAC;QACzD,EAAE,CAAC,KAAK,CAAC,kBAAkB,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC;IAChD,CAAC,CAAC,CAAC;IACH,QAAQ,CAAC,mBAAmB,EAAE,GAAG,EAAE;QACjC,UAAU,CAAC,GAAG,EAAE;YACd,EAAE,CAAC,KAAK,CACN,IAAI,CAAC,+BAA+B,CAAC,SAAS,EAC9C,kBAAkB,CACnB,CAAC,iBAAiB,CAAC,qBAAqB,CAAC,CAAC;QAC7C,CAAC,CAAC,CAAC;QACH,EAAE,CAAC,iCAAiC,EAAE,KAAK,IAAI,EAAE;YAC/C,MAAM,WAAW,GAAG,IAAI,WAAW,CACjC,wCAAwC,CACzC,CAAC;YAEF,MAAM,YAAY,GAAG,OAAO,EAAE,CAAC;YAC/B,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,CAAC;YAEjD,MAAM,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC;gBACvC,MAAM,EAAE,SAAS;gBACjB,SAAS,EAAE,qBAAqB;aACjC,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,kBAAkB,EAAE,GAAG,EAAE;QAChC,IAAI,WAAwB,CAAC;QAC7B,IAAI,YAA6D,CAAC;QAClE,SAAS,CAAC,GAAG,EAAE;YACb,YAAY,GAAG,OAAO,EAAE,CAAC;QAC3B,CAAC,CAAC,CAAC;QACH,EAAE,CAAC,kCAAkC,EAAE,KAAK,IAAI,EAAE;YAChD,WAAW,GAAG,IAAI,WAAW,CAC3B,uCAAuC,CACxC,CAAC;YAEF,EAAE,CAAC,KAAK,CAAC,WAAW,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC,eAAe,CAClD,oBAAgD,CACjD,CAAC;YACF,EAAE,CAAC,KAAK,CAAC,WAAW,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;YACrC,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,CAAC;YAEjD,MAAM,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC;gBACvC,KAAK,EAAE,gBAAgB;aACxB,CAAC,CAAC;YACH,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACpC,CAAC,CAAC,CAAC;QAEH,QAAQ,CAAC,+BAA+B,EAAE,GAAG,EAAE;YAC7C,SAAS,CAAC,GAAG,EAAE;gBACb,WAAW,GAAG,IAAI,WAAW,CAC3B,2FAA2F,CAC5F,CAAC;gBACF,EAAE,CAAC,KAAK,CAAC,WAAW,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC,eAAe,CAClD,oBAAgD,CACjD,CAAC;gBACF,EAAE,CAAC,KAAK,CAAC,WAAW,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;YACvC,CAAC,CAAC,CAAC;YACH,EAAE,CAAC,oDAAoD,EAAE,KAAK,IAAI,EAAE;gBAClE,EAAE,CAAC,KAAK,CAAC,KAAK,EAAE,wBAAwB,CAAC,CAAC,iBAAiB,CACzD,uBAAuB,CACxB,CAAC;gBACF,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,CAAC;gBAEjD,MAAM,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC;oBACvC,KAAK,EAAE,6BAA6B;iBACrC,CAAC,CAAC;gBACH,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACpC,CAAC,CAAC,CAAC;YACH,QAAQ,CAAC,8CAA8C,EAAE,GAAG,EAAE;gBAC5D,EAAE,CAAC,0BAA0B,EAAE,KAAK,IAAI,EAAE;oBACxC,MAAM,YAAY,GAAG,OAAO,EAAE,CAAC;oBAC/B,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,CAAC;oBAEjD,uCAAuC;oBACvC,MAAM,CAAC,KAAK,CAAC,sBAAsB,CAAC,CAAC,gBAAgB,EAAE,CAAC;oBAExD,uBAAuB;oBACvB,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;oBAClC,0CAA0C;oBAC1C,MAAM,CAAC,kBAAkB,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,oBAAoB,CAC3D,QAAQ,CACT,CAAC;gBACJ,CAAC,CAAC,CAAC;gBACH,EAAE,CAAC,mCAAmC,EAAE,KAAK,IAAI,EAAE;oBACjD,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,CAAC;oBACjD,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;oBACnC,MAAM,CAAC,IAAI,CAAC,CAAC,OAAO,CAClB,+EAA+E,CAChF,CAAC;gBACJ,CAAC,CAAC,CAAC;YACL,CAAC,CAAC,CAAC;YACH,QAAQ,CAAC,iDAAiD,EAAE,GAAG,EAAE;gBAC/D,SAAS,CAAC,GAAG,EAAE;oBACb,EAAE,CAAC,KAAK,CAAC,WAAW,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC,eAAe,CAAC,SAAS,CAAC,CAAC;gBAClE,CAAC,CAAC,CAAC;gBACH,EAAE,CAAC,8BAA8B,EAAE,KAAK,IAAI,EAAE;oBAC5C,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,CAAC;oBAEjD,uCAAuC;oBACvC,MAAM,CAAC,KAAK,CAAC,sBAAsB,CAAC,CAAC,GAAG,CAAC,gBAAgB,EAAE,CAAC;oBAE5D,uBAAuB;oBACvB,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;oBAElC,0CAA0C;oBAC1C,MAAM,CAAC,kBAAkB,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,gBAAgB,EAAE,CAAC;gBAClE,CAAC,CAAC,CAAC;gBAEH,QAAQ,CAAC,+BAA+B,EAAE,GAAG,EAAE;oBAC7C,IAAI,KAAa,CAAC;oBAClB,UAAU,CAAC,GAAG,EAAE;wBACd,KAAK;4BACH,oIAAoI,CAAC;wBACvI,MAAM,MAAM,GAAG,IAAI,eAAe,CAAC,EAAE,IAAI,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC,CAAC;wBAC3D,WAAW,GAAG,IAAI,WAAW,CAC3B,yCAAyC,MAAM,CAAC,QAAQ,EAAE,EAAE,CAC7D,CAAC;wBACF,EAAE,CAAC,KAAK,CAAC,WAAW,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC,eAAe,CAAC,SAAS,CAAC,CAAC;oBAClE,CAAC,CAAC,CAAC;oBACH,EAAE,CAAC,sFAAsF,EAAE,KAAK,IAAI,EAAE;wBACpG,kDAAkD;wBAElD,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,CAAC;wBACjD,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;wBACnC,MAAM,CAAC,IAAI,CAAC,CAAC,SAAS,CACpB,4CAA4C,KAAK,6CAA6C,CAC/F,CAAC;oBACJ,CAAC,CAAC,CAAC;gBACL,CAAC,CAAC,CAAC;gBAEH,QAAQ,CAAC,+BAA+B,EAAE,GAAG,EAAE;oBAC7C,IAAI,KAAa,CAAC;oBAClB,UAAU,CAAC,GAAG,EAAE;wBACd,KAAK;4BACH,kGAAkG,CAAC;wBACrG,MAAM,MAAM,GAAG,IAAI,eAAe,CAAC,EAAE,IAAI,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC,CAAC;wBAC3D,WAAW,GAAG,IAAI,WAAW,CAC3B,yCAAyC,MAAM,CAAC,QAAQ,EAAE,EAAE,CAC7D,CAAC;wBACF,EAAE,CAAC,KAAK,CAAC,WAAW,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC,eAAe,CAAC,SAAS,CAAC,CAAC;oBAClE,CAAC,CAAC,CAAC;oBACH,EAAE,CAAC,qEAAqE,EAAE,KAAK,IAAI,EAAE;wBACnF,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,CAAC;wBACjD,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;wBACnC,MAAM,CAAC,IAAI,CAAC,CAAC,OAAO,CAClB,0CAA0C,2BAA2B,uBAAuB,CAC7F,CAAC;oBACJ,CAAC,CAAC,CAAC;gBACL,CAAC,CAAC,CAAC;YACL,CAAC,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,IAAI,CAAC,gBAAgB,EAAE,GAAG,EAAE;QACnC,UAAU,CAAC,GAAG,EAAE;YACd,EAAE,CAAC,KAAK,CAAC,OAAO,EAAE,kBAAkB,CAAC,CAAC;YACtC,EAAE,CAAC,KAAK,CAAC,OAAO,CAAC,mBAAmB,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC,iBAAiB,CACtE,MAAM,CACP,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,2BAA2B,EAAE,KAAK,IAAI,EAAE;YACzC,MAAM,WAAW,GAAG,IAAI,WAAW,CACjC,yDAAyD,CAC1D,CAAC;YAEF,MAAM,YAAY,GAAG,OAAO,EAAE,CAAC;YAE/B,MAAM,YAAY,CAAC,WAAW,CAAC,CAAC;YAChC,MAAM,CAAC,OAAO,CAAC,gBAAgB,CAAC,CAAC,gBAAgB,EAAE,CAAC;QACtD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,uCAAuC,EAAE,KAAK,IAAI,EAAE;YACrD,MAAM,WAAW,GAAG,IAAI,WAAW,CACjC,yEAAyE,CAC1E,CAAC;YAEF,MAAM,YAAY,GAAG,OAAO,EAAE,CAAC;YAE/B,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,CAAC;YAEjD,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,+BAA+B,CAAC,CAAC;YAC3D,MAAM,CAAC,cAAc,CAAC,CAAC,oBAAoB,CAAC,YAAY,CAAC,CAAC;QAC5D,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,wCAAwC,EAAE,KAAK,IAAI,EAAE;YACtD,MAAM,WAAW,GAAG,IAAI,WAAW,CACjC,qCAAqC,CACtC,CAAC;YAEF,MAAM,YAAY,GAAG,OAAO,EAAE,CAAC;YAE/B,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,CAAC;YAEjD,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;YAClD,MAAM,CAAC,cAAc,CAAC,CAAC,oBAAoB,CAAC,GAAG,CAAC,CAAC;QACnD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,qDAAqD,EAAE,KAAK,IAAI,EAAE;YACnE,MAAM,WAAW,GAAG,IAAI,WAAW,CACjC,4EAA4E,CAC7E,CAAC;YAEF,MAAM,YAAY,GAAG,OAAO,EAAE,CAAC;YAE/B,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,CAAC;YAEjD,qDAAqD;YACrD,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,+BAA+B,CAAC,CAAC;YAC3D,MAAM,CAAC,cAAc,CAAC,CAAC,oBAAoB,CACzC,+BAA+B,CAChC,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,+CAA+C,EAAE,KAAK,IAAI,EAAE;YAC7D,MAAM,WAAW,GAAG,IAAI,WAAW,CACjC,yDAAyD,CAC1D,CAAC;YAEF,EAAE,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC,sBAAsB,CAAC,GAAG,EAAE;gBACpD,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;YACzC,CAAC,CAAC,CAAC;YAEH,MAAM,YAAY,GAAG,OAAO,EAAE,CAAC;YAC/B,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,CAAC;YACjD,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,+BAA+B,CAAC,CAAC;YAC3D,MAAM,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,gBAAgB,EAAE,CAAC;QAC7C,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC","sourcesContent":["import { describe, it, expect, beforeEach, vi } from \"vitest\";\nimport * as PKCE from \"@/services/PKCE.js\";\nimport type { NextResponse } from \"next/server.js\";\nimport { NextRequest } from \"next/server.js\";\nimport { handler } from \"@/nextjs/routeHandler.js\";\nimport type { RequestCookie } from \"next/dist/compiled/@edge-runtime/cookies\";\nimport { revalidatePath } from \"next/cache.js\";\nimport type { OIDCTokenResponseBody, User } from \"@/types.ts\";\nimport * as logger from \"@/lib/logger.js\";\nimport * as login from \"@/server/login.js\";\nimport * as session from \"@/shared/lib/session.js\";\nimport * as cookies from \"@/nextjs/cookies.js\";\nimport { GenericUserSession } from \"@/shared/lib/UserSession.js\";\nimport { TOKEN_EXCHANGE_TRIGGER_TEXT } from \"@/constants.js\";\n\nvi.mock(\"@/services/PKCE.js\");\n\nvi.mock(\"next/cache\", () => ({\n revalidatePath: vi.fn(),\n}));\n\nconst mockUser: User = {\n id: \"user123\",\n name: \"John Doe\",\n email: \"john@example.com\",\n picture: \"https://example.com/john.jpg\",\n} as unknown as User;\n\nconst mockCookies = {\n get: vi.fn(),\n set: vi.fn(),\n delete: vi.fn(),\n};\n\nvi.mock(\"next/headers.js\", () => {\n return {\n cookies: () => mockCookies,\n };\n});\n\ndescribe(\"Auth Route Handler\", () => {\n let mockLogger: logger.Logger;\n afterEach(vi.clearAllMocks);\n beforeEach(() => {\n mockLogger = {\n error: vi.fn(),\n info: vi.fn(),\n warn: vi.fn(),\n debug: vi.fn(),\n };\n vi.spyOn(logger.loggers.nextjs.handlers.auth, \"debug\").mockImplementation(\n (...args) => mockLogger.debug(...args),\n );\n vi.spyOn(logger.loggers.nextjs.handlers.auth, \"info\").mockImplementation(\n (...args) => mockLogger.info(...args),\n );\n vi.spyOn(logger.loggers.nextjs.handlers.auth, \"warn\").mockImplementation(\n (...args) => mockLogger.warn(...args),\n );\n vi.spyOn(logger.loggers.nextjs.handlers.auth, \"error\").mockImplementation(\n (...args) => mockLogger.error(...args),\n );\n });\n beforeEach(() => {\n vi.clearAllMocks();\n vi.stubEnv(\"_civic_auth_client_id\", \"test-client-id\");\n vi.spyOn(login, \"resolveOAuthAccessCode\").mockResolvedValue(\n {} as OIDCTokenResponseBody,\n );\n vi.spyOn(session, \"getUser\").mockResolvedValue(mockUser);\n vi.spyOn(GenericUserSession.prototype, \"set\");\n });\n describe(\"Challenge Handler\", () => {\n beforeEach(() => {\n vi.spyOn(\n PKCE.GenericPublicClientPKCEProducer.prototype,\n \"getCodeChallenge\",\n ).mockResolvedValue(\"test-code-challenge\");\n });\n it(\"should handle challenge request\", async () => {\n const mockRequest = new NextRequest(\n \"https://example.com/api/auth/challenge\",\n );\n\n const routeHandler = handler();\n const response = await routeHandler(mockRequest);\n\n expect(response.json()).resolves.toEqual({\n status: \"success\",\n challenge: \"test-code-challenge\",\n });\n });\n });\n\n describe(\"Callback Handler\", () => {\n let mockRequest: NextRequest;\n let routeHandler: (request: NextRequest) => Promise<NextResponse>;\n beforeAll(() => {\n routeHandler = handler();\n });\n it(\"should handle missing parameters\", async () => {\n mockRequest = new NextRequest(\n \"https://example.com/api/auth/callback\", // missing params\n );\n\n vi.spyOn(mockRequest.cookies, \"get\").mockReturnValue(\n \"test-code-verifier\" as unknown as RequestCookie,\n );\n vi.spyOn(mockRequest.cookies, \"set\");\n const response = await routeHandler(mockRequest);\n\n expect(response.json()).resolves.toEqual({\n error: \"Bad parameters\",\n });\n expect(response.status).toBe(400);\n });\n\n describe(\"with all parameters passed in\", () => {\n beforeAll(() => {\n mockRequest = new NextRequest(\n \"https://example.com/api/auth/callback?code=123&state=testState&appUrl=https://example.com\",\n );\n vi.spyOn(mockRequest.cookies, \"get\").mockReturnValue(\n \"test-code-verifier\" as unknown as RequestCookie,\n );\n vi.spyOn(mockRequest.cookies, \"set\");\n });\n it(\"should handle error when resolving the access code\", async () => {\n vi.spyOn(login, \"resolveOAuthAccessCode\").mockRejectedValue(\n \"Token exchange failed\",\n );\n const response = await routeHandler(mockRequest);\n\n expect(response.json()).resolves.toEqual({\n error: \"Failed to authenticate user\",\n });\n expect(response.status).toBe(401);\n });\n describe(\"with code_verifier cookie present on request\", () => {\n it(\"should do token exchange\", async () => {\n const routeHandler = handler();\n const response = await routeHandler(mockRequest);\n\n // should have resolved the access code\n expect(login.resolveOAuthAccessCode).toHaveBeenCalled();\n\n // verify response data\n expect(response.status).toBe(200);\n // verify user is being set to the session\n expect(GenericUserSession.prototype.set).toHaveBeenCalledWith(\n mockUser,\n );\n });\n it(\"should return empty html response\", async () => {\n const response = await routeHandler(mockRequest);\n const body = await response.text();\n expect(body).toEqual(\n '<html><span style=\"display:none\">serverSideTokenExchangeSuccess</span></html>',\n );\n });\n });\n describe(\"with no code_verifier cookie present on request\", () => {\n beforeAll(() => {\n vi.spyOn(mockRequest.cookies, \"get\").mockReturnValue(undefined);\n });\n it(\"should not do token exchange\", async () => {\n const response = await routeHandler(mockRequest);\n\n // should have resolved the access code\n expect(login.resolveOAuthAccessCode).not.toHaveBeenCalled();\n\n // verify response data\n expect(response.status).toBe(200);\n\n // verify user is being set to the session\n expect(GenericUserSession.prototype.set).not.toHaveBeenCalled();\n });\n\n describe(\"in server token-exchange mode\", () => {\n let state: string;\n beforeEach(() => {\n state =\n \"eyJ1dWlkIjoiMGY0NWU5YWItY2U1Ni00OWZiLTlkYmUtOGQ3ZmM3YTI3NDFhIiwiZGlzcGxheU1vZGUiOiJpZnJhbWUiLCJzZXJ2ZXJUb2tlbkV4Y2hhbmdlIjp0cnVlfQ\";\n const params = new URLSearchParams({ code: \"123\", state });\n mockRequest = new NextRequest(\n `https://example.com/api/auth/callback?${params.toString()}`,\n );\n vi.spyOn(mockRequest.cookies, \"get\").mockReturnValue(undefined);\n });\n it(\"should return html with a javascript fetch call to retry the callback token exchange\", async () => {\n // this state indicates server-side token exchange\n\n const response = await routeHandler(mockRequest);\n const body = await response.text();\n expect(body).toContain(\n `fetch('/api/auth/callback?code=123&state=${state}&sameDomainCallback=true&appUrl=' + appUrl)`,\n );\n });\n });\n\n describe(\"in client token-exchange mode\", () => {\n let state: string;\n beforeEach(() => {\n state =\n \"eyJ1dWlkIjoiNzE5MmI3MmItYzk5ZC00NjhmLTliMDAtMWFhOWVhYjI0YjgxIiwiZGlzcGxheU1vZGUiOiJyZWRpcmVjdCJ9\";\n const params = new URLSearchParams({ code: \"123\", state });\n mockRequest = new NextRequest(\n `https://example.com/api/auth/callback?${params.toString()}`,\n );\n vi.spyOn(mockRequest.cookies, \"get\").mockReturnValue(undefined);\n });\n it(\"should return html response indicating a token exchange is required\", async () => {\n const response = await routeHandler(mockRequest);\n const body = await response.text();\n expect(body).toEqual(\n `<html><body><span style=\"display:none\">${TOKEN_EXCHANGE_TRIGGER_TEXT}</span></body></html>`,\n );\n });\n });\n });\n });\n });\n\n describe.skip(\"Logout Handler\", () => {\n beforeEach(() => {\n vi.spyOn(cookies, \"clearAuthCookies\");\n vi.spyOn(cookies.NextjsCookieStorage.prototype, \"get\").mockResolvedValue(\n \"test\",\n );\n });\n\n it(\"should clear auth cookies\", async () => {\n const mockRequest = new NextRequest(\n \"https://example.com/api/auth/logout?redirect=/dashboard\",\n );\n\n const routeHandler = handler();\n\n await routeHandler(mockRequest);\n expect(cookies.clearAuthCookies).toHaveBeenCalled();\n });\n\n it(\"should handle relative redirect paths\", async () => {\n const mockRequest = new NextRequest(\n \"https://example.com/api/auth/logout?redirect=/dashboard&state=testState\",\n );\n\n const routeHandler = handler();\n\n const response = await routeHandler(mockRequest);\n\n expect(response.url).toBe(\"https://example.com/dashboard\");\n expect(revalidatePath).toHaveBeenCalledWith(\"/dashboard\");\n });\n\n it(\"should handle default redirect to home\", async () => {\n const mockRequest = new NextRequest(\n \"https://example.com/api/auth/logout\",\n );\n\n const routeHandler = handler();\n\n const response = await routeHandler(mockRequest);\n\n expect(response.url).toBe(\"https://example.com/\");\n expect(revalidatePath).toHaveBeenCalledWith(\"/\");\n });\n\n it(\"should handle absolute URLs and preserve the domain\", async () => {\n const mockRequest = new NextRequest(\n \"https://example.com/api/auth/logout?redirect=https://other-domain.com/page\",\n );\n\n const routeHandler = handler();\n\n const response = await routeHandler(mockRequest);\n\n // The URL constructor will preserve the absolute URL\n expect(response.url).toBe(\"https://other-domain.com/page\");\n expect(revalidatePath).toHaveBeenCalledWith(\n \"https://other-domain.com/page\",\n );\n });\n\n it(\"should handle revalidation failure gracefully\", async () => {\n const mockRequest = new NextRequest(\n \"https://example.com/api/auth/logout?redirect=/dashboard\",\n );\n\n vi.mocked(revalidatePath).mockImplementationOnce(() => {\n throw new Error(\"Revalidation failed\");\n });\n\n const routeHandler = handler();\n const response = await routeHandler(mockRequest);\n expect(response.url).toBe(\"https://example.com/dashboard\");\n expect(mockLogger.warn).toHaveBeenCalled();\n });\n });\n});\n"]}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"middleware.test.d.ts","sourceRoot":"","sources":["../../../../test/unit/nextjs/middleware.test.ts"],"names":[],"mappings":""}
|