@grantex/conformance 0.1.3 → 0.1.5
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/runner.d.ts.map +1 -1
- package/dist/runner.js +2 -0
- package/dist/runner.js.map +1 -1
- package/dist/suites/principal-sessions.d.ts.map +1 -1
- package/dist/suites/principal-sessions.js +39 -3
- package/dist/suites/principal-sessions.js.map +1 -1
- package/dist/suites/rate-limit-headers.d.ts.map +1 -1
- package/dist/suites/rate-limit-headers.js +4 -3
- package/dist/suites/rate-limit-headers.js.map +1 -1
- package/dist/suites/token-refresh.d.ts +3 -0
- package/dist/suites/token-refresh.d.ts.map +1 -0
- package/dist/suites/token-refresh.js +109 -0
- package/dist/suites/token-refresh.js.map +1 -0
- package/package.json +5 -1
package/dist/runner.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"runner.d.ts","sourceRoot":"","sources":["../src/runner.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,iBAAiB,EAA2D,MAAM,YAAY,CAAC;
|
|
1
|
+
{"version":3,"file":"runner.d.ts","sourceRoot":"","sources":["../src/runner.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,iBAAiB,EAA2D,MAAM,YAAY,CAAC;AA2FxH,wBAAsB,mBAAmB,CAAC,MAAM,EAAE,SAAS,GAAG,OAAO,CAAC,iBAAiB,CAAC,CA6FvF"}
|
package/dist/runner.js
CHANGED
|
@@ -20,6 +20,7 @@ import { ssoSuite } from './suites/sso.js';
|
|
|
20
20
|
import { anomaliesSuite } from './suites/anomalies.js';
|
|
21
21
|
import { complianceSuite } from './suites/compliance.js';
|
|
22
22
|
import { principalSessionsSuite } from './suites/principal-sessions.js';
|
|
23
|
+
import { tokenRefreshSuite } from './suites/token-refresh.js';
|
|
23
24
|
const coreSuites = [
|
|
24
25
|
healthSuite,
|
|
25
26
|
agentsSuite,
|
|
@@ -40,6 +41,7 @@ const optionalSuites = [
|
|
|
40
41
|
anomaliesSuite,
|
|
41
42
|
complianceSuite,
|
|
42
43
|
principalSessionsSuite,
|
|
44
|
+
tokenRefreshSuite,
|
|
43
45
|
];
|
|
44
46
|
async function setupSharedAgent(http) {
|
|
45
47
|
const listRes = await http.get('/v1/agents');
|
package/dist/runner.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"runner.js","sourceRoot":"","sources":["../src/runner.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,qBAAqB,EAAE,MAAM,kBAAkB,CAAC;AACzD,OAAO,EAAE,cAAc,EAAE,MAAM,cAAc,CAAC;AAC9C,OAAO,EAAE,cAAc,EAAE,MAAM,WAAW,CAAC;AAE3C,cAAc;AACd,OAAO,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AACvD,OAAO,EAAE,UAAU,EAAE,MAAM,mBAAmB,CAAC;AAC/C,OAAO,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AACzD,OAAO,EAAE,UAAU,EAAE,MAAM,mBAAmB,CAAC;AAC/C,OAAO,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAC;AACrD,OAAO,EAAE,qBAAqB,EAAE,MAAM,gCAAgC,CAAC;AAEvE,kBAAkB;AAClB,OAAO,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAC;AACrD,OAAO,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAC;AACrD,OAAO,EAAE,SAAS,EAAE,MAAM,kBAAkB,CAAC;AAC7C,OAAO,EAAE,QAAQ,EAAE,MAAM,iBAAiB,CAAC;AAC3C,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AACvD,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AACzD,OAAO,EAAE,sBAAsB,EAAE,MAAM,gCAAgC,CAAC;
|
|
1
|
+
{"version":3,"file":"runner.js","sourceRoot":"","sources":["../src/runner.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,qBAAqB,EAAE,MAAM,kBAAkB,CAAC;AACzD,OAAO,EAAE,cAAc,EAAE,MAAM,cAAc,CAAC;AAC9C,OAAO,EAAE,cAAc,EAAE,MAAM,WAAW,CAAC;AAE3C,cAAc;AACd,OAAO,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AACvD,OAAO,EAAE,UAAU,EAAE,MAAM,mBAAmB,CAAC;AAC/C,OAAO,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AACzD,OAAO,EAAE,UAAU,EAAE,MAAM,mBAAmB,CAAC;AAC/C,OAAO,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAC;AACrD,OAAO,EAAE,qBAAqB,EAAE,MAAM,gCAAgC,CAAC;AAEvE,kBAAkB;AAClB,OAAO,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAC;AACrD,OAAO,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAC;AACrD,OAAO,EAAE,SAAS,EAAE,MAAM,kBAAkB,CAAC;AAC7C,OAAO,EAAE,QAAQ,EAAE,MAAM,iBAAiB,CAAC;AAC3C,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AACvD,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AACzD,OAAO,EAAE,sBAAsB,EAAE,MAAM,gCAAgC,CAAC;AACxE,OAAO,EAAE,iBAAiB,EAAE,MAAM,2BAA2B,CAAC;AAE9D,MAAM,UAAU,GAAsB;IACpC,WAAW;IACX,WAAW;IACX,cAAc;IACd,UAAU;IACV,WAAW;IACX,WAAW;IACX,eAAe;IACf,UAAU;IACV,aAAa;IACb,qBAAqB;CACtB,CAAC;AAEF,MAAM,cAAc,GAAsB;IACxC,aAAa;IACb,aAAa;IACb,SAAS;IACT,QAAQ;IACR,cAAc;IACd,eAAe;IACf,sBAAsB;IACtB,iBAAiB;CAClB,CAAC;AAEF,KAAK,UAAU,gBAAgB,CAAC,IAA2B;IACzD,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,GAAG,CAAsF,YAAY,CAAC,CAAC;IAElI,IAAI,OAAO,CAAC,MAAM,KAAK,GAAG,IAAI,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACnG,wDAAwD;QACxD,MAAM,UAAU,GAAG,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CACzC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,CAC/D,CAAC;QACF,MAAM,KAAK,GAAG,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAE,CAAC;QAEpD,mCAAmC;QACnC,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;YACtE,MAAM,IAAI,CAAC,KAAK,CAAC,cAAc,KAAK,CAAC,OAAO,EAAE,EAAE,EAAE,MAAM,EAAE,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,CAAC,CAAC;QACjF,CAAC;QAED,qEAAqE;QACrE,KAAK,MAAM,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;YACxC,IAAI,KAAK,CAAC,OAAO,KAAK,KAAK,CAAC,OAAO,EAAE,CAAC;gBACpC,IAAI,CAAC;oBACH,MAAM,IAAI,CAAC,MAAM,CAAC,cAAc,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;gBACnD,CAAC;gBAAC,MAAM,CAAC;oBACP,iDAAiD;gBACnD,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO,EAAE,OAAO,EAAE,KAAK,CAAC,OAAO,EAAE,QAAQ,EAAE,KAAK,CAAC,GAAG,EAAE,IAAI,EAAE,KAAK,CAAC,IAAI,EAAE,CAAC;IAC3E,CAAC;IAED,+BAA+B;IAC/B,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,IAAI,CAAiD,YAAY,EAAE;QACxF,IAAI,EAAE,oBAAoB;QAC1B,MAAM,EAAE,CAAC,MAAM,EAAE,OAAO,CAAC;KAC1B,CAAC,CAAC;IACH,IAAI,GAAG,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;QACvB,MAAM,IAAI,KAAK,CAAC,kCAAkC,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC;IACjF,CAAC;IACD,OAAO,EAAE,OAAO,EAAE,GAAG,CAAC,IAAI,CAAC,OAAO,EAAE,QAAQ,EAAE,GAAG,CAAC,IAAI,CAAC,GAAG,EAAE,IAAI,EAAE,GAAG,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;AACpF,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,mBAAmB,CAAC,MAAiB;IACzD,MAAM,SAAS,GAAG,IAAI,qBAAqB,CAAC,MAAM,CAAC,OAAO,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC;IAE3E,wEAAwE;IACxE,MAAM,WAAW,GAAG,MAAM,gBAAgB,CAAC,SAAS,CAAC,CAAC;IAEtD,MAAM,SAAS,GAAG,CAAC,GAAG,UAAU,CAAC,CAAC;IAElC,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;QACnB,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;YACjC,MAAM,KAAK,GAAG,cAAc,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,GAAG,CAAC,CAAC;YACzD,IAAI,KAAK,EAAE,CAAC;gBACV,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YACxB,CAAC;QACH,CAAC;IACH,CAAC;IAED,IAAI,WAAW,GAAG,SAAS,CAAC;IAC5B,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC;QACjB,WAAW,GAAG,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,MAAM,CAAC,KAAK,CAAC,CAAC;QAC/D,IAAI,WAAW,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC7B,MAAM,SAAS,GAAG,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAC1D,MAAM,IAAI,KAAK,CAAC,kBAAkB,MAAM,CAAC,KAAK,iBAAiB,SAAS,EAAE,CAAC,CAAC;QAC9E,CAAC;IACH,CAAC;IAED,MAAM,OAAO,GAAkB,EAAE,CAAC;IAClC,MAAM,YAAY,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAChC,IAAI,MAAM,GAAG,KAAK,CAAC;IAEnB,KAAK,MAAM,KAAK,IAAI,WAAW,EAAE,CAAC;QAChC,IAAI,MAAM;YAAE,MAAM;QAElB,MAAM,IAAI,GAAG,IAAI,qBAAqB,CAAC,MAAM,CAAC,OAAO,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC;QACtE,MAAM,OAAO,GAAG,IAAI,cAAc,CAAC,IAAI,CAAC,CAAC;QACzC,MAAM,IAAI,GAAG,IAAI,cAAc,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;QAE/C,MAAM,GAAG,GAAiB;YACxB,OAAO,EAAE,MAAM,CAAC,OAAO;YACvB,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,IAAI;YACJ,IAAI;YACJ,OAAO;YACP,WAAW;SACZ,CAAC;QAEF,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAC9B,IAAI,CAAC;YACH,MAAM,KAAK,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YACnC,OAAO,CAAC,IAAI,CAAC;gBACX,IAAI,EAAE,KAAK,CAAC,IAAI;gBAChB,WAAW,EAAE,KAAK,CAAC,WAAW;gBAC9B,QAAQ,EAAE,KAAK,CAAC,QAAQ;gBACxB,KAAK;gBACL,UAAU,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,UAAU;aACpC,CAAC,CAAC;YAEH,IAAI,MAAM,CAAC,IAAI,IAAI,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC,EAAE,CAAC;gBAC1D,MAAM,GAAG,IAAI,CAAC;YAChB,CAAC;QACH,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,OAAO,CAAC,IAAI,CAAC;gBACX,IAAI,EAAE,KAAK,CAAC,IAAI;gBAChB,WAAW,EAAE,KAAK,CAAC,WAAW;gBAC9B,QAAQ,EAAE,KAAK,CAAC,QAAQ;gBACxB,KAAK,EAAE;oBACL;wBACE,IAAI,EAAE,GAAG,KAAK,CAAC,IAAI,QAAQ;wBAC3B,MAAM,EAAE,MAAM;wBACd,UAAU,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,UAAU;wBACnC,OAAO,EAAE,EAAE;wBACX,KAAK,EAAE,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC;qBACxD;iBACF;gBACD,UAAU,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,UAAU;aACpC,CAAC,CAAC;YACH,IAAI,MAAM,CAAC,IAAI;gBAAE,MAAM,GAAG,IAAI,CAAC;QACjC,CAAC;gBAAS,CAAC;YACT,MAAM,OAAO,CAAC,QAAQ,EAAE,CAAC;QAC3B,CAAC;IACH,CAAC;IAED,MAAM,QAAQ,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;IACjD,OAAO;QACL,MAAM,EAAE,OAAO;QACf,OAAO,EAAE;YACP,KAAK,EAAE,QAAQ,CAAC,MAAM;YACtB,MAAM,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC,MAAM;YAC1D,MAAM,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC,MAAM;YAC1D,OAAO,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC,MAAM;YAC3D,UAAU,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,YAAY;SACtC;KACF,CAAC;AACJ,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"principal-sessions.d.ts","sourceRoot":"","sources":["../../src/suites/principal-sessions.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAA4B,MAAM,aAAa,CAAC;AAG7E,eAAO,MAAM,sBAAsB,EAAE,
|
|
1
|
+
{"version":3,"file":"principal-sessions.d.ts","sourceRoot":"","sources":["../../src/suites/principal-sessions.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAA4B,MAAM,aAAa,CAAC;AAG7E,eAAO,MAAM,sBAAsB,EAAE,eAuLpC,CAAC"}
|
|
@@ -32,12 +32,10 @@ export const principalSessionsSuite = {
|
|
|
32
32
|
expectStatus(res, 400);
|
|
33
33
|
}));
|
|
34
34
|
results.push(await test('Session token can be used to GET /v1/principal/grants', '§12', async () => {
|
|
35
|
-
// Create a session token
|
|
36
35
|
const sessionRes = await ctx.http.post('/v1/principal-sessions', {
|
|
37
36
|
principalId,
|
|
38
37
|
});
|
|
39
38
|
expectStatus(sessionRes, 201);
|
|
40
|
-
// Use the session token to fetch grants
|
|
41
39
|
const grantsRes = await ctx.http.doRequestWithToken('GET', '/v1/principal/grants', sessionRes.body.sessionToken);
|
|
42
40
|
expectStatus(grantsRes, 200);
|
|
43
41
|
if (!Array.isArray(grantsRes.body.grants)) {
|
|
@@ -46,12 +44,50 @@ export const principalSessionsSuite = {
|
|
|
46
44
|
if (grantsRes.body.principalId !== principalId) {
|
|
47
45
|
throw new Error(`Expected principalId ${principalId}, got ${grantsRes.body.principalId}`);
|
|
48
46
|
}
|
|
49
|
-
// Should find the grant we created
|
|
50
47
|
const found = grantsRes.body.grants.some((g) => g.grantId === flow.grantId);
|
|
51
48
|
if (!found) {
|
|
52
49
|
throw new Error(`Expected to find grant ${flow.grantId} in principal grants`);
|
|
53
50
|
}
|
|
54
51
|
}));
|
|
52
|
+
results.push(await test('Session token can be used to GET /v1/principal/audit', '§12', async () => {
|
|
53
|
+
const sessionRes = await ctx.http.post('/v1/principal-sessions', {
|
|
54
|
+
principalId,
|
|
55
|
+
});
|
|
56
|
+
expectStatus(sessionRes, 201);
|
|
57
|
+
const auditRes = await ctx.http.doRequestWithToken('GET', '/v1/principal/audit', sessionRes.body.sessionToken);
|
|
58
|
+
expectStatus(auditRes, 200);
|
|
59
|
+
if (!Array.isArray(auditRes.body.entries)) {
|
|
60
|
+
throw new Error('Expected entries to be an array');
|
|
61
|
+
}
|
|
62
|
+
}));
|
|
63
|
+
results.push(await test('Session token can revoke a principal grant via DELETE /v1/principal/grants/:id', '§12', async () => {
|
|
64
|
+
// Create a fresh grant to revoke
|
|
65
|
+
const revokeFlow = await ctx.flow.executeFullFlow({
|
|
66
|
+
agentId,
|
|
67
|
+
agentDid,
|
|
68
|
+
scopes: ['read'],
|
|
69
|
+
principalId,
|
|
70
|
+
});
|
|
71
|
+
const sessionRes = await ctx.http.post('/v1/principal-sessions', {
|
|
72
|
+
principalId,
|
|
73
|
+
});
|
|
74
|
+
expectStatus(sessionRes, 201);
|
|
75
|
+
const revokeRes = await ctx.http.doRequestWithToken('DELETE', `/v1/principal/grants/${revokeFlow.grantId}`, sessionRes.body.sessionToken);
|
|
76
|
+
expectStatus(revokeRes, 204);
|
|
77
|
+
}));
|
|
78
|
+
results.push(await test('Session token is rejected on developer API endpoints (401)', '§12', async () => {
|
|
79
|
+
const sessionRes = await ctx.http.post('/v1/principal-sessions', {
|
|
80
|
+
principalId,
|
|
81
|
+
});
|
|
82
|
+
expectStatus(sessionRes, 201);
|
|
83
|
+
// Using session token on a developer endpoint should fail
|
|
84
|
+
const agentsRes = await ctx.http.doRequestWithToken('GET', '/v1/agents', sessionRes.body.sessionToken);
|
|
85
|
+
expectStatus(agentsRes, 401);
|
|
86
|
+
}));
|
|
87
|
+
results.push(await test('GET /permissions returns HTML page (200)', '§12', async () => {
|
|
88
|
+
const res = await ctx.http.requestPublic('GET', '/permissions');
|
|
89
|
+
expectStatus(res, 200);
|
|
90
|
+
}));
|
|
55
91
|
return results;
|
|
56
92
|
},
|
|
57
93
|
};
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"principal-sessions.js","sourceRoot":"","sources":["../../src/suites/principal-sessions.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,IAAI,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,eAAe,CAAC;AAEjE,MAAM,CAAC,MAAM,sBAAsB,GAAoB;IACrD,IAAI,EAAE,oBAAoB;IAC1B,WAAW,EAAE,4DAA4D;IACzE,QAAQ,EAAE,IAAI;IACd,GAAG,EAAE,KAAK,EAAE,GAAiB,EAAyB,EAAE;QACtD,MAAM,OAAO,GAAiB,EAAE,CAAC;QACjC,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,GAAG,GAAG,CAAC,WAAW,CAAC;QAE9C,uEAAuE;QACvE,MAAM,WAAW,GAAG,qBAAqB,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC;QACtD,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,eAAe,CAAC;YAC1C,OAAO;YACP,QAAQ;YACR,MAAM,EAAE,CAAC,MAAM,EAAE,OAAO,CAAC;YACzB,WAAW;SACZ,CAAC,CAAC;QAEH,OAAO,CAAC,IAAI,CACV,MAAM,IAAI,CACR,4EAA4E,EAC5E,KAAK,EACL,KAAK,IAAI,EAAE;YACT,MAAM,GAAG,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,IAAI,CAI5B,wBAAwB,EAAE;gBAC3B,WAAW;gBACX,SAAS,EAAE,IAAI;aAChB,CAAC,CAAC;YACH,YAAY,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;YACvB,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,YAAY,EAAE,cAAc,CAAC,CAAC;YACpD,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,YAAY,EAAE,cAAc,CAAC,CAAC;YACpD,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,EAAE,WAAW,CAAC,CAAC;YAE9C,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,uBAAuB,CAAC,EAAE,CAAC;gBAC7D,MAAM,IAAI,KAAK,CACb,gEAAgE,GAAG,CAAC,IAAI,CAAC,YAAY,EAAE,CACxF,CAAC;YACJ,CAAC;QACH,CAAC,CACF,CACF,CAAC;QAEF,OAAO,CAAC,IAAI,CACV,MAAM,IAAI,CACR,6DAA6D,EAC7D,KAAK,EACL,KAAK,IAAI,EAAE;YACT,MAAM,GAAG,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,wBAAwB,EAAE,EAAE,CAAC,CAAC;YAC9D,YAAY,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;QACzB,CAAC,CACF,CACF,CAAC;QAEF,OAAO,CAAC,IAAI,CACV,MAAM,IAAI,CACR,uDAAuD,EACvD,KAAK,EACL,KAAK,IAAI,EAAE;YACT,
|
|
1
|
+
{"version":3,"file":"principal-sessions.js","sourceRoot":"","sources":["../../src/suites/principal-sessions.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,IAAI,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,eAAe,CAAC;AAEjE,MAAM,CAAC,MAAM,sBAAsB,GAAoB;IACrD,IAAI,EAAE,oBAAoB;IAC1B,WAAW,EAAE,4DAA4D;IACzE,QAAQ,EAAE,IAAI;IACd,GAAG,EAAE,KAAK,EAAE,GAAiB,EAAyB,EAAE;QACtD,MAAM,OAAO,GAAiB,EAAE,CAAC;QACjC,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,GAAG,GAAG,CAAC,WAAW,CAAC;QAE9C,uEAAuE;QACvE,MAAM,WAAW,GAAG,qBAAqB,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC;QACtD,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,eAAe,CAAC;YAC1C,OAAO;YACP,QAAQ;YACR,MAAM,EAAE,CAAC,MAAM,EAAE,OAAO,CAAC;YACzB,WAAW;SACZ,CAAC,CAAC;QAEH,OAAO,CAAC,IAAI,CACV,MAAM,IAAI,CACR,4EAA4E,EAC5E,KAAK,EACL,KAAK,IAAI,EAAE;YACT,MAAM,GAAG,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,IAAI,CAI5B,wBAAwB,EAAE;gBAC3B,WAAW;gBACX,SAAS,EAAE,IAAI;aAChB,CAAC,CAAC;YACH,YAAY,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;YACvB,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,YAAY,EAAE,cAAc,CAAC,CAAC;YACpD,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,YAAY,EAAE,cAAc,CAAC,CAAC;YACpD,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,EAAE,WAAW,CAAC,CAAC;YAE9C,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,uBAAuB,CAAC,EAAE,CAAC;gBAC7D,MAAM,IAAI,KAAK,CACb,gEAAgE,GAAG,CAAC,IAAI,CAAC,YAAY,EAAE,CACxF,CAAC;YACJ,CAAC;QACH,CAAC,CACF,CACF,CAAC;QAEF,OAAO,CAAC,IAAI,CACV,MAAM,IAAI,CACR,6DAA6D,EAC7D,KAAK,EACL,KAAK,IAAI,EAAE;YACT,MAAM,GAAG,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,wBAAwB,EAAE,EAAE,CAAC,CAAC;YAC9D,YAAY,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;QACzB,CAAC,CACF,CACF,CAAC;QAEF,OAAO,CAAC,IAAI,CACV,MAAM,IAAI,CACR,uDAAuD,EACvD,KAAK,EACL,KAAK,IAAI,EAAE;YACT,MAAM,UAAU,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,IAAI,CAEnC,wBAAwB,EAAE;gBAC3B,WAAW;aACZ,CAAC,CAAC;YACH,YAAY,CAAC,UAAU,EAAE,GAAG,CAAC,CAAC;YAE9B,MAAM,SAAS,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,kBAAkB,CAGhD,KAAK,EAAE,sBAAsB,EAAE,UAAU,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;YAChE,YAAY,CAAC,SAAS,EAAE,GAAG,CAAC,CAAC;YAE7B,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBAC1C,MAAM,IAAI,KAAK,CAAC,gCAAgC,CAAC,CAAC;YACpD,CAAC;YACD,IAAI,SAAS,CAAC,IAAI,CAAC,WAAW,KAAK,WAAW,EAAE,CAAC;gBAC/C,MAAM,IAAI,KAAK,CACb,wBAAwB,WAAW,SAAS,SAAS,CAAC,IAAI,CAAC,WAAW,EAAE,CACzE,CAAC;YACJ,CAAC;YACD,MAAM,KAAK,GAAG,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CACtC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,KAAK,IAAI,CAAC,OAAO,CAClC,CAAC;YACF,IAAI,CAAC,KAAK,EAAE,CAAC;gBACX,MAAM,IAAI,KAAK,CACb,0BAA0B,IAAI,CAAC,OAAO,sBAAsB,CAC7D,CAAC;YACJ,CAAC;QACH,CAAC,CACF,CACF,CAAC;QAEF,OAAO,CAAC,IAAI,CACV,MAAM,IAAI,CACR,sDAAsD,EACtD,KAAK,EACL,KAAK,IAAI,EAAE;YACT,MAAM,UAAU,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,IAAI,CAEnC,wBAAwB,EAAE;gBAC3B,WAAW;aACZ,CAAC,CAAC;YACH,YAAY,CAAC,UAAU,EAAE,GAAG,CAAC,CAAC;YAE9B,MAAM,QAAQ,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,kBAAkB,CAE/C,KAAK,EAAE,qBAAqB,EAAE,UAAU,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;YAC/D,YAAY,CAAC,QAAQ,EAAE,GAAG,CAAC,CAAC;YAE5B,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;gBAC1C,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;YACrD,CAAC;QACH,CAAC,CACF,CACF,CAAC;QAEF,OAAO,CAAC,IAAI,CACV,MAAM,IAAI,CACR,gFAAgF,EAChF,KAAK,EACL,KAAK,IAAI,EAAE;YACT,iCAAiC;YACjC,MAAM,UAAU,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,eAAe,CAAC;gBAChD,OAAO;gBACP,QAAQ;gBACR,MAAM,EAAE,CAAC,MAAM,CAAC;gBAChB,WAAW;aACZ,CAAC,CAAC;YAEH,MAAM,UAAU,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,IAAI,CAEnC,wBAAwB,EAAE;gBAC3B,WAAW;aACZ,CAAC,CAAC;YACH,YAAY,CAAC,UAAU,EAAE,GAAG,CAAC,CAAC;YAE9B,MAAM,SAAS,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,kBAAkB,CACjD,QAAQ,EACR,wBAAwB,UAAU,CAAC,OAAO,EAAE,EAC5C,UAAU,CAAC,IAAI,CAAC,YAAY,CAC7B,CAAC;YACF,YAAY,CAAC,SAAS,EAAE,GAAG,CAAC,CAAC;QAC/B,CAAC,CACF,CACF,CAAC;QAEF,OAAO,CAAC,IAAI,CACV,MAAM,IAAI,CACR,4DAA4D,EAC5D,KAAK,EACL,KAAK,IAAI,EAAE;YACT,MAAM,UAAU,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,IAAI,CAEnC,wBAAwB,EAAE;gBAC3B,WAAW;aACZ,CAAC,CAAC;YACH,YAAY,CAAC,UAAU,EAAE,GAAG,CAAC,CAAC;YAE9B,0DAA0D;YAC1D,MAAM,SAAS,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,kBAAkB,CACjD,KAAK,EACL,YAAY,EACZ,UAAU,CAAC,IAAI,CAAC,YAAY,CAC7B,CAAC;YACF,YAAY,CAAC,SAAS,EAAE,GAAG,CAAC,CAAC;QAC/B,CAAC,CACF,CACF,CAAC;QAEF,OAAO,CAAC,IAAI,CACV,MAAM,IAAI,CACR,0CAA0C,EAC1C,KAAK,EACL,KAAK,IAAI,EAAE;YACT,MAAM,GAAG,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,aAAa,CAAC,KAAK,EAAE,cAAc,CAAC,CAAC;YAChE,YAAY,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;QACzB,CAAC,CACF,CACF,CAAC;QAEF,OAAO,OAAO,CAAC;IACjB,CAAC;CACF,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"rate-limit-headers.d.ts","sourceRoot":"","sources":["../../src/suites/rate-limit-headers.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAA4B,MAAM,aAAa,CAAC;
|
|
1
|
+
{"version":3,"file":"rate-limit-headers.d.ts","sourceRoot":"","sources":["../../src/suites/rate-limit-headers.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAA4B,MAAM,aAAa,CAAC;AAG7E,eAAO,MAAM,qBAAqB,EAAE,eAsDnC,CAAC"}
|
|
@@ -1,5 +1,4 @@
|
|
|
1
1
|
import { test, expectStatus, expectNumericHeader } from '../helpers.js';
|
|
2
|
-
const YEAR_2020_EPOCH = 1577836800;
|
|
3
2
|
export const rateLimitHeadersSuite = {
|
|
4
3
|
name: 'rate-limit-headers',
|
|
5
4
|
description: 'Rate limit headers presence and format',
|
|
@@ -12,8 +11,10 @@ export const rateLimitHeadersSuite = {
|
|
|
12
11
|
expectNumericHeader(res, 'x-ratelimit-limit');
|
|
13
12
|
expectNumericHeader(res, 'x-ratelimit-remaining');
|
|
14
13
|
const reset = expectNumericHeader(res, 'x-ratelimit-reset');
|
|
15
|
-
|
|
16
|
-
|
|
14
|
+
// Per IETF draft-ietf-httpapi-ratelimit-headers, reset is seconds
|
|
15
|
+
// remaining until the window resets (not a Unix timestamp)
|
|
16
|
+
if (reset < 0 || reset > 3600) {
|
|
17
|
+
throw new Error(`Expected x-ratelimit-reset to be seconds remaining (0–3600), got ${reset}`);
|
|
17
18
|
}
|
|
18
19
|
}));
|
|
19
20
|
results.push(await test('Rate limit headers on token verify endpoint', '§14', async () => {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"rate-limit-headers.js","sourceRoot":"","sources":["../../src/suites/rate-limit-headers.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,IAAI,EAAE,YAAY,EAAE,mBAAmB,EAAE,MAAM,eAAe,CAAC;AAExE,MAAM,
|
|
1
|
+
{"version":3,"file":"rate-limit-headers.js","sourceRoot":"","sources":["../../src/suites/rate-limit-headers.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,IAAI,EAAE,YAAY,EAAE,mBAAmB,EAAE,MAAM,eAAe,CAAC;AAExE,MAAM,CAAC,MAAM,qBAAqB,GAAoB;IACpD,IAAI,EAAE,oBAAoB;IAC1B,WAAW,EAAE,wCAAwC;IACrD,QAAQ,EAAE,KAAK;IACf,GAAG,EAAE,KAAK,EAAE,GAAiB,EAAyB,EAAE;QACtD,MAAM,OAAO,GAAiB,EAAE,CAAC;QAEjC,OAAO,CAAC,IAAI,CACV,MAAM,IAAI,CAAC,8CAA8C,EAAE,KAAK,EAAE,KAAK,IAAI,EAAE;YAC3E,MAAM,GAAG,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;YAC7C,YAAY,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;YAEvB,mBAAmB,CAAC,GAAG,EAAE,mBAAmB,CAAC,CAAC;YAC9C,mBAAmB,CAAC,GAAG,EAAE,uBAAuB,CAAC,CAAC;YAClD,MAAM,KAAK,GAAG,mBAAmB,CAAC,GAAG,EAAE,mBAAmB,CAAC,CAAC;YAE5D,kEAAkE;YAClE,2DAA2D;YAC3D,IAAI,KAAK,GAAG,CAAC,IAAI,KAAK,GAAG,IAAI,EAAE,CAAC;gBAC9B,MAAM,IAAI,KAAK,CACb,oEAAoE,KAAK,EAAE,CAC5E,CAAC;YACJ,CAAC;QACH,CAAC,CAAC,CACH,CAAC;QAEF,OAAO,CAAC,IAAI,CACV,MAAM,IAAI,CAAC,6CAA6C,EAAE,KAAK,EAAE,KAAK,IAAI,EAAE;YAC1E,MAAM,GAAG,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,mBAAmB,EAAE;gBACnD,KAAK,EAAE,gCAAgC;aACxC,CAAC,CAAC;YAEH,mBAAmB,CAAC,GAAG,EAAE,mBAAmB,CAAC,CAAC;YAC9C,mBAAmB,CAAC,GAAG,EAAE,uBAAuB,CAAC,CAAC;YAClD,mBAAmB,CAAC,GAAG,EAAE,mBAAmB,CAAC,CAAC;QAChD,CAAC,CAAC,CACH,CAAC;QAEF,OAAO,CAAC,IAAI,CACV,MAAM,IAAI,CAAC,uCAAuC,EAAE,KAAK,EAAE,KAAK,IAAI,EAAE;YACpE,MAAM,GAAG,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,aAAa,CAAC,KAAK,EAAE,wBAAwB,CAAC,CAAC;YAC1E,YAAY,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;YAEvB,MAAM,YAAY,GAAG,GAAG,CAAC,OAAO,CAAC,mBAAmB,CAAC,KAAK,SAAS,CAAC;YACpE,IAAI,YAAY,EAAE,CAAC;gBACjB,MAAM,IAAI,KAAK,CACb,gGAAgG,CACjG,CAAC;YACJ,CAAC;QACH,CAAC,CAAC,CACH,CAAC;QAEF,OAAO,OAAO,CAAC;IACjB,CAAC;CACF,CAAC"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"token-refresh.d.ts","sourceRoot":"","sources":["../../src/suites/token-refresh.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAA4B,MAAM,aAAa,CAAC;AAG7E,eAAO,MAAM,iBAAiB,EAAE,eA+K/B,CAAC"}
|
|
@@ -0,0 +1,109 @@
|
|
|
1
|
+
import { test, expectStatus, expectString, expectArray, expectIsoDate } from '../helpers.js';
|
|
2
|
+
export const tokenRefreshSuite = {
|
|
3
|
+
name: 'token-refresh',
|
|
4
|
+
description: 'Token refresh — single-use rotation per SPEC §7.4',
|
|
5
|
+
optional: true,
|
|
6
|
+
run: async (ctx) => {
|
|
7
|
+
const results = [];
|
|
8
|
+
const { agentId, agentDid } = ctx.sharedAgent;
|
|
9
|
+
results.push(await test('POST /v1/token/refresh returns new grantToken with same grantId', '§7.4', async () => {
|
|
10
|
+
const flow = await ctx.flow.executeFullFlow({
|
|
11
|
+
agentId,
|
|
12
|
+
agentDid,
|
|
13
|
+
scopes: ['read', 'write'],
|
|
14
|
+
});
|
|
15
|
+
const res = await ctx.http.post('/v1/token/refresh', {
|
|
16
|
+
refreshToken: flow.refreshToken,
|
|
17
|
+
agentId,
|
|
18
|
+
});
|
|
19
|
+
expectStatus(res, 201);
|
|
20
|
+
expectString(res.body.grantToken, 'grantToken');
|
|
21
|
+
expectString(res.body.refreshToken, 'refreshToken');
|
|
22
|
+
expectString(res.body.grantId, 'grantId');
|
|
23
|
+
expectArray(res.body.scopes, 'scopes');
|
|
24
|
+
expectIsoDate(res.body.expiresAt, 'expiresAt');
|
|
25
|
+
if (res.body.grantId !== flow.grantId) {
|
|
26
|
+
throw new Error(`Expected same grantId ${flow.grantId}, got ${res.body.grantId}`);
|
|
27
|
+
}
|
|
28
|
+
if (res.body.refreshToken === flow.refreshToken) {
|
|
29
|
+
throw new Error('Expected rotated refresh token, got the same one');
|
|
30
|
+
}
|
|
31
|
+
ctx.cleanup.trackGrant(res.body.grantId);
|
|
32
|
+
}));
|
|
33
|
+
results.push(await test('POST /v1/token/refresh rejects used refresh token (single-use)', '§7.4', async () => {
|
|
34
|
+
const flow = await ctx.flow.executeFullFlow({
|
|
35
|
+
agentId,
|
|
36
|
+
agentDid,
|
|
37
|
+
scopes: ['read'],
|
|
38
|
+
});
|
|
39
|
+
// First refresh — succeeds
|
|
40
|
+
const first = await ctx.http.post('/v1/token/refresh', {
|
|
41
|
+
refreshToken: flow.refreshToken,
|
|
42
|
+
agentId,
|
|
43
|
+
});
|
|
44
|
+
expectStatus(first, 201);
|
|
45
|
+
ctx.cleanup.trackGrant(first.body.grantId);
|
|
46
|
+
// Second refresh with same token — rejected
|
|
47
|
+
const second = await ctx.http.post('/v1/token/refresh', {
|
|
48
|
+
refreshToken: flow.refreshToken,
|
|
49
|
+
agentId,
|
|
50
|
+
});
|
|
51
|
+
expectStatus(second, 400);
|
|
52
|
+
}));
|
|
53
|
+
results.push(await test('POST /v1/token/refresh rejects mismatched agentId (400)', '§7.4', async () => {
|
|
54
|
+
const flow = await ctx.flow.executeFullFlow({
|
|
55
|
+
agentId,
|
|
56
|
+
agentDid,
|
|
57
|
+
scopes: ['read'],
|
|
58
|
+
});
|
|
59
|
+
const res = await ctx.http.post('/v1/token/refresh', {
|
|
60
|
+
refreshToken: flow.refreshToken,
|
|
61
|
+
agentId: 'ag_nonexistent_12345',
|
|
62
|
+
});
|
|
63
|
+
expectStatus(res, 400);
|
|
64
|
+
}));
|
|
65
|
+
results.push(await test('POST /v1/token/refresh rejects missing refreshToken (400)', '§7.4', async () => {
|
|
66
|
+
const res = await ctx.http.post('/v1/token/refresh', {
|
|
67
|
+
agentId,
|
|
68
|
+
});
|
|
69
|
+
expectStatus(res, 400);
|
|
70
|
+
}));
|
|
71
|
+
results.push(await test('POST /v1/token/refresh rejects missing agentId (400)', '§7.4', async () => {
|
|
72
|
+
const flow = await ctx.flow.executeFullFlow({
|
|
73
|
+
agentId,
|
|
74
|
+
agentDid,
|
|
75
|
+
scopes: ['read'],
|
|
76
|
+
});
|
|
77
|
+
const res = await ctx.http.post('/v1/token/refresh', {
|
|
78
|
+
refreshToken: flow.refreshToken,
|
|
79
|
+
});
|
|
80
|
+
expectStatus(res, 400);
|
|
81
|
+
}));
|
|
82
|
+
results.push(await test('Refreshed token can be verified online', '§7.4', async () => {
|
|
83
|
+
const flow = await ctx.flow.executeFullFlow({
|
|
84
|
+
agentId,
|
|
85
|
+
agentDid,
|
|
86
|
+
scopes: ['read', 'write'],
|
|
87
|
+
});
|
|
88
|
+
const refreshRes = await ctx.http.post('/v1/token/refresh', {
|
|
89
|
+
refreshToken: flow.refreshToken,
|
|
90
|
+
agentId,
|
|
91
|
+
});
|
|
92
|
+
expectStatus(refreshRes, 201);
|
|
93
|
+
ctx.cleanup.trackGrant(refreshRes.body.grantId);
|
|
94
|
+
// Verify the new token
|
|
95
|
+
const verifyRes = await ctx.http.post('/v1/tokens/verify', {
|
|
96
|
+
token: refreshRes.body.grantToken,
|
|
97
|
+
});
|
|
98
|
+
expectStatus(verifyRes, 200);
|
|
99
|
+
if (verifyRes.body.valid !== true) {
|
|
100
|
+
throw new Error('Expected refreshed token to be valid');
|
|
101
|
+
}
|
|
102
|
+
if (verifyRes.body.grantId !== flow.grantId) {
|
|
103
|
+
throw new Error(`Expected grantId ${flow.grantId}, got ${verifyRes.body.grantId}`);
|
|
104
|
+
}
|
|
105
|
+
}));
|
|
106
|
+
return results;
|
|
107
|
+
},
|
|
108
|
+
};
|
|
109
|
+
//# sourceMappingURL=token-refresh.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"token-refresh.js","sourceRoot":"","sources":["../../src/suites/token-refresh.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,IAAI,EAAE,YAAY,EAAE,YAAY,EAAE,WAAW,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AAE7F,MAAM,CAAC,MAAM,iBAAiB,GAAoB;IAChD,IAAI,EAAE,eAAe;IACrB,WAAW,EAAE,mDAAmD;IAChE,QAAQ,EAAE,IAAI;IACd,GAAG,EAAE,KAAK,EAAE,GAAiB,EAAyB,EAAE;QACtD,MAAM,OAAO,GAAiB,EAAE,CAAC;QACjC,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,GAAG,GAAG,CAAC,WAAW,CAAC;QAE9C,OAAO,CAAC,IAAI,CACV,MAAM,IAAI,CACR,iEAAiE,EACjE,MAAM,EACN,KAAK,IAAI,EAAE;YACT,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,eAAe,CAAC;gBAC1C,OAAO;gBACP,QAAQ;gBACR,MAAM,EAAE,CAAC,MAAM,EAAE,OAAO,CAAC;aAC1B,CAAC,CAAC;YAEH,MAAM,GAAG,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,IAAI,CAM5B,mBAAmB,EAAE;gBACtB,YAAY,EAAE,IAAI,CAAC,YAAY;gBAC/B,OAAO;aACR,CAAC,CAAC;YACH,YAAY,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;YACvB,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,UAAU,EAAE,YAAY,CAAC,CAAC;YAChD,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,YAAY,EAAE,cAAc,CAAC,CAAC;YACpD,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC;YAC1C,WAAW,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;YACvC,aAAa,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,EAAE,WAAW,CAAC,CAAC;YAE/C,IAAI,GAAG,CAAC,IAAI,CAAC,OAAO,KAAK,IAAI,CAAC,OAAO,EAAE,CAAC;gBACtC,MAAM,IAAI,KAAK,CACb,yBAAyB,IAAI,CAAC,OAAO,SAAS,GAAG,CAAC,IAAI,CAAC,OAAO,EAAE,CACjE,CAAC;YACJ,CAAC;YACD,IAAI,GAAG,CAAC,IAAI,CAAC,YAAY,KAAK,IAAI,CAAC,YAAY,EAAE,CAAC;gBAChD,MAAM,IAAI,KAAK,CAAC,kDAAkD,CAAC,CAAC;YACtE,CAAC;YACD,GAAG,CAAC,OAAO,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAC3C,CAAC,CACF,CACF,CAAC;QAEF,OAAO,CAAC,IAAI,CACV,MAAM,IAAI,CACR,gEAAgE,EAChE,MAAM,EACN,KAAK,IAAI,EAAE;YACT,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,eAAe,CAAC;gBAC1C,OAAO;gBACP,QAAQ;gBACR,MAAM,EAAE,CAAC,MAAM,CAAC;aACjB,CAAC,CAAC;YAEH,2BAA2B;YAC3B,MAAM,KAAK,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,IAAI,CAAsB,mBAAmB,EAAE;gBAC1E,YAAY,EAAE,IAAI,CAAC,YAAY;gBAC/B,OAAO;aACR,CAAC,CAAC;YACH,YAAY,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;YACzB,GAAG,CAAC,OAAO,CAAC,UAAU,CAAC,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAE3C,4CAA4C;YAC5C,MAAM,MAAM,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,mBAAmB,EAAE;gBACtD,YAAY,EAAE,IAAI,CAAC,YAAY;gBAC/B,OAAO;aACR,CAAC,CAAC;YACH,YAAY,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;QAC5B,CAAC,CACF,CACF,CAAC;QAEF,OAAO,CAAC,IAAI,CACV,MAAM,IAAI,CACR,yDAAyD,EACzD,MAAM,EACN,KAAK,IAAI,EAAE;YACT,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,eAAe,CAAC;gBAC1C,OAAO;gBACP,QAAQ;gBACR,MAAM,EAAE,CAAC,MAAM,CAAC;aACjB,CAAC,CAAC;YAEH,MAAM,GAAG,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,mBAAmB,EAAE;gBACnD,YAAY,EAAE,IAAI,CAAC,YAAY;gBAC/B,OAAO,EAAE,sBAAsB;aAChC,CAAC,CAAC;YACH,YAAY,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;QACzB,CAAC,CACF,CACF,CAAC;QAEF,OAAO,CAAC,IAAI,CACV,MAAM,IAAI,CACR,2DAA2D,EAC3D,MAAM,EACN,KAAK,IAAI,EAAE;YACT,MAAM,GAAG,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,mBAAmB,EAAE;gBACnD,OAAO;aACR,CAAC,CAAC;YACH,YAAY,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;QACzB,CAAC,CACF,CACF,CAAC;QAEF,OAAO,CAAC,IAAI,CACV,MAAM,IAAI,CACR,sDAAsD,EACtD,MAAM,EACN,KAAK,IAAI,EAAE;YACT,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,eAAe,CAAC;gBAC1C,OAAO;gBACP,QAAQ;gBACR,MAAM,EAAE,CAAC,MAAM,CAAC;aACjB,CAAC,CAAC;YAEH,MAAM,GAAG,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,mBAAmB,EAAE;gBACnD,YAAY,EAAE,IAAI,CAAC,YAAY;aAChC,CAAC,CAAC;YACH,YAAY,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;QACzB,CAAC,CACF,CACF,CAAC;QAEF,OAAO,CAAC,IAAI,CACV,MAAM,IAAI,CACR,wCAAwC,EACxC,MAAM,EACN,KAAK,IAAI,EAAE;YACT,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,eAAe,CAAC;gBAC1C,OAAO;gBACP,QAAQ;gBACR,MAAM,EAAE,CAAC,MAAM,EAAE,OAAO,CAAC;aAC1B,CAAC,CAAC;YAEH,MAAM,UAAU,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,IAAI,CAGnC,mBAAmB,EAAE;gBACtB,YAAY,EAAE,IAAI,CAAC,YAAY;gBAC/B,OAAO;aACR,CAAC,CAAC;YACH,YAAY,CAAC,UAAU,EAAE,GAAG,CAAC,CAAC;YAC9B,GAAG,CAAC,OAAO,CAAC,UAAU,CAAC,UAAU,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAEhD,uBAAuB;YACvB,MAAM,SAAS,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,IAAI,CAIlC,mBAAmB,EAAE;gBACtB,KAAK,EAAE,UAAU,CAAC,IAAI,CAAC,UAAU;aAClC,CAAC,CAAC;YACH,YAAY,CAAC,SAAS,EAAE,GAAG,CAAC,CAAC;YAE7B,IAAI,SAAS,CAAC,IAAI,CAAC,KAAK,KAAK,IAAI,EAAE,CAAC;gBAClC,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;YAC1D,CAAC;YACD,IAAI,SAAS,CAAC,IAAI,CAAC,OAAO,KAAK,IAAI,CAAC,OAAO,EAAE,CAAC;gBAC5C,MAAM,IAAI,KAAK,CACb,oBAAoB,IAAI,CAAC,OAAO,SAAS,SAAS,CAAC,IAAI,CAAC,OAAO,EAAE,CAClE,CAAC;YACJ,CAAC;QACH,CAAC,CACF,CACF,CAAC;QAEF,OAAO,OAAO,CAAC;IACjB,CAAC;CACF,CAAC"}
|
package/package.json
CHANGED
|
@@ -1,7 +1,11 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@grantex/conformance",
|
|
3
|
-
"version": "0.1.
|
|
3
|
+
"version": "0.1.5",
|
|
4
4
|
"description": "Conformance test suite for the Grantex protocol",
|
|
5
|
+
"homepage": "https://grantex.dev",
|
|
6
|
+
"bugs": {
|
|
7
|
+
"url": "https://github.com/mishrasanjeev/grantex/issues"
|
|
8
|
+
},
|
|
5
9
|
"type": "module",
|
|
6
10
|
"bin": {
|
|
7
11
|
"grantex-conformance": "./dist/index.js"
|