npm - mongodb-dynamic-api - Versions diffs - 3.2.0 → 4.0.0 - Mend

mongodb-dynamic-api 3.2.0 → 4.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (330) hide show

package/test/for-root/auth-api-logout.e2e-spec.js ADDED Viewed

@@ -0,0 +1,74 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const mongoose_1 = require("mongoose");
+const src_1 = require("../../src");
+const e2e_setup_1 = require("../e2e.setup");
+require("dotenv/config");
+const shared_1 = require("../shared");
+describe('DynamicApiModule forRoot - POST /auth/logout (e2e)', () => {
+    beforeEach(() => {
+        src_1.DynamicApiModule.state['resetState']();
+    });
+    afterEach(async () => {
+        await (0, e2e_setup_1.closeTestingApp)(mongoose_1.default.connections);
+    });
+    describe('Bearer mode (useCookie: false) with refreshTokenField', () => {
+        let refreshToken;
+        beforeEach(async () => {
+            const User = (0, shared_1.createUserWithRefreshTokenEntity)();
+            await (0, shared_1.initModule)({
+                useAuth: {
+                    userEntity: User,
+                    jwt: { secret: 'secret', expiresIn: '15m', refreshTokenExpiresIn: '7d' },
+                    refreshToken: { refreshTokenField: 'refreshTokenHash' },
+                },
+            });
+            await e2e_setup_1.server.post('/auth/register', { email: 'logout@test.co', password: 'test' });
+            const { body } = await e2e_setup_1.server.post('/auth/login', { email: 'logout@test.co', password: 'test' });
+            refreshToken = body.refreshToken;
+        });
+        it('should return 204 on logout', async () => {
+            const { status } = await e2e_setup_1.server.post('/auth/logout', {}, {
+                headers: { Authorization: `Bearer ${refreshToken}` },
+            });
+            expect(status).toBe(204);
+        });
+        it('should invalidate the refresh token after logout', async () => {
+            const headers = { Authorization: `Bearer ${refreshToken}` };
+            await e2e_setup_1.server.post('/auth/logout', {}, { headers });
+            const { status } = await e2e_setup_1.server.post('/auth/refresh-token', {}, { headers });
+            expect(status).toBe(401);
+        });
+        it('should return 401 on logout without refresh token', async () => {
+            const { status } = await e2e_setup_1.server.post('/auth/logout', {});
+            expect(status).toBe(401);
+        });
+    });
+    describe('Bearer mode without refreshTokenField (warning only)', () => {
+        let refreshToken;
+        beforeEach(async () => {
+            await (0, shared_1.initModule)({
+                useAuth: {
+                    userEntity: (0, shared_1.createBasicUserEntity)(),
+                    jwt: { secret: 'secret', expiresIn: '15m', refreshTokenExpiresIn: '7d' },
+                },
+            });
+            await e2e_setup_1.server.post('/auth/register', { email: 'logout-nowarn@test.co', password: 'test' });
+            const { body } = await e2e_setup_1.server.post('/auth/login', { email: 'logout-nowarn@test.co', password: 'test' });
+            refreshToken = body.refreshToken;
+        });
+        it('should return 204 even without refreshTokenField (logs warning)', async () => {
+            const { status } = await e2e_setup_1.server.post('/auth/logout', {}, {
+                headers: { Authorization: `Bearer ${refreshToken}` },
+            });
+            expect(status).toBe(204);
+        });
+        it('should still allow refresh after logout (no server-side revocation)', async () => {
+            const headers = { Authorization: `Bearer ${refreshToken}` };
+            await e2e_setup_1.server.post('/auth/logout', {}, { headers });
+            const { status } = await e2e_setup_1.server.post('/auth/refresh-token', {}, { headers });
+            expect(status).toBe(200);
+        });
+    });
+});
+//# sourceMappingURL=auth-api-logout.e2e-spec.js.map

package/test/for-root/auth-api-logout.e2e-spec.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"auth-api-logout.e2e-spec.js","sourceRoot":"","sources":["../../../libs/dynamic-api/test/for-root/auth-api-logout.e2e-spec.ts"],"names":[],"mappings":";;AAAA,uCAAgC;AAChC,mCAA6C;AAC7C,4CAAuD;AACvD,yBAAuB;AACvB,sCAAgG;AAEhG,QAAQ,CAAC,oDAAoD,EAAE,GAAG,EAAE;IAClE,UAAU,CAAC,GAAG,EAAE;QACd,sBAAgB,CAAC,KAAK,CAAC,YAAY,CAAC,EAAE,CAAC;IACzC,CAAC,CAAC,CAAC;IAEH,SAAS,CAAC,KAAK,IAAI,EAAE;QACnB,MAAM,IAAA,2BAAe,EAAC,kBAAQ,CAAC,WAAW,CAAC,CAAC;IAC9C,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,uDAAuD,EAAE,GAAG,EAAE;QACrE,IAAI,YAAoB,CAAC;QAEzB,UAAU,CAAC,KAAK,IAAI,EAAE;YACpB,MAAM,IAAI,GAAG,IAAA,yCAAgC,GAAE,CAAC;YAChD,MAAM,IAAA,mBAAU,EAAC;gBACf,OAAO,EAAE;oBACP,UAAU,EAAE,IAAI;oBAChB,GAAG,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE,SAAS,EAAE,KAAK,EAAE,qBAAqB,EAAE,IAAI,EAAE;oBACxE,YAAY,EAAE,EAAE,iBAAiB,EAAE,kBAAkB,EAAE;iBACxD;aACF,CAAC,CAAC;YAEH,MAAM,kBAAM,CAAC,IAAI,CAAC,gBAAgB,EAAE,EAAE,KAAK,EAAE,gBAAgB,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC,CAAC;YACnF,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,aAAa,EAAE,EAAE,KAAK,EAAE,gBAAgB,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC,CAAC;YACjG,YAAY,GAAG,IAAI,CAAC,YAAY,CAAC;QACnC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,6BAA6B,EAAE,KAAK,IAAI,EAAE;YAC3C,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,cAAc,EAAE,EAAE,EAAE;gBACvD,OAAO,EAAE,EAAE,aAAa,EAAE,UAAU,YAAY,EAAE,EAAE;aACrD,CAAC,CAAC;YACH,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC3B,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,kDAAkD,EAAE,KAAK,IAAI,EAAE;YAChE,MAAM,OAAO,GAAG,EAAE,aAAa,EAAE,UAAU,YAAY,EAAE,EAAE,CAAC;YAC5D,MAAM,kBAAM,CAAC,IAAI,CAAC,cAAc,EAAE,EAAE,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;YAEnD,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,qBAAqB,EAAE,EAAE,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;YAC7E,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC3B,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,mDAAmD,EAAE,KAAK,IAAI,EAAE;YACjE,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,cAAc,EAAE,EAAE,CAAC,CAAC;YACzD,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC3B,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,sDAAsD,EAAE,GAAG,EAAE;QACpE,IAAI,YAAoB,CAAC;QAEzB,UAAU,CAAC,KAAK,IAAI,EAAE;YACpB,MAAM,IAAA,mBAAU,EAAC;gBACf,OAAO,EAAE;oBACP,UAAU,EAAE,IAAA,8BAAqB,GAAE;oBACnC,GAAG,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE,SAAS,EAAE,KAAK,EAAE,qBAAqB,EAAE,IAAI,EAAE;iBACzE;aACF,CAAC,CAAC;YAEH,MAAM,kBAAM,CAAC,IAAI,CAAC,gBAAgB,EAAE,EAAE,KAAK,EAAE,uBAAuB,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC,CAAC;YAC1F,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,aAAa,EAAE,EAAE,KAAK,EAAE,uBAAuB,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC,CAAC;YACxG,YAAY,GAAG,IAAI,CAAC,YAAY,CAAC;QACnC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,iEAAiE,EAAE,KAAK,IAAI,EAAE;YAC/E,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,cAAc,EAAE,EAAE,EAAE;gBACvD,OAAO,EAAE,EAAE,aAAa,EAAE,UAAU,YAAY,EAAE,EAAE;aACrD,CAAC,CAAC;YACH,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC3B,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,qEAAqE,EAAE,KAAK,IAAI,EAAE;YACnF,MAAM,OAAO,GAAG,EAAE,aAAa,EAAE,UAAU,YAAY,EAAE,EAAE,CAAC;YAC5D,MAAM,kBAAM,CAAC,IAAI,CAAC,cAAc,EAAE,EAAE,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;YAGnD,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,qBAAqB,EAAE,EAAE,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;YAC7E,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC3B,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/test/for-root/auth-api-refresh-token-cookie.e2e-spec.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ import 'dotenv/config';

package/test/for-root/auth-api-refresh-token-cookie.e2e-spec.js ADDED Viewed

@@ -0,0 +1,110 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const supertest = require("supertest");
+const mongoose_1 = require("mongoose");
+const src_1 = require("../../src");
+const e2e_setup_1 = require("../e2e.setup");
+require("dotenv/config");
+const shared_1 = require("../shared");
+describe('DynamicApiModule forRoot - Cookie mode (useCookie: true) (e2e)', () => {
+    let agent;
+    let accessToken;
+    beforeEach(() => {
+        src_1.DynamicApiModule.state['resetState']();
+    });
+    afterEach(async () => {
+        await (0, e2e_setup_1.closeTestingApp)(mongoose_1.default.connections);
+    });
+    beforeEach(async () => {
+        const User = (0, shared_1.createUserWithRefreshTokenEntity)();
+        await (0, shared_1.initModule)({
+            useAuth: {
+                userEntity: User,
+                jwt: {
+                    secret: 'secret',
+                    expiresIn: '15m',
+                    refreshTokenExpiresIn: '7d',
+                },
+                refreshToken: {
+                    useCookie: true,
+                    refreshTokenField: 'refreshTokenHash',
+                },
+            },
+        });
+        agent = supertest.agent(global.app.getHttpServer());
+        await agent
+            .post('/auth/register')
+            .send({ email: 'cookie@test.co', password: 'test' })
+            .set('Content-Type', 'application/json');
+        const loginRes = await agent
+            .post('/auth/login')
+            .send({ email: 'cookie@test.co', password: 'test' })
+            .set('Content-Type', 'application/json');
+        accessToken = loginRes.body.accessToken;
+    });
+    it('should set httpOnly refreshToken cookie on login and not expose it in body', async () => {
+        const res = await agent
+            .post('/auth/login')
+            .send({ email: 'cookie@test.co', password: 'test' })
+            .set('Content-Type', 'application/json');
+        expect(res.status).toBe(200);
+        expect(res.body).toEqual({ accessToken: expect.any(String) });
+        expect(res.body.refreshToken).toBeUndefined();
+        const setCookieHeader = res.headers['set-cookie'];
+        expect(setCookieHeader).toBeDefined();
+        const refreshCookie = (Array.isArray(setCookieHeader) ? setCookieHeader : [setCookieHeader])
+            .find((c) => c.startsWith('refreshToken='));
+        expect(refreshCookie).toBeDefined();
+        expect(refreshCookie).toContain('HttpOnly');
+    });
+    it('should refresh using cookie (no Bearer needed)', async () => {
+        const res = await agent
+            .post('/auth/refresh-token')
+            .set('Content-Type', 'application/json');
+        expect(res.status).toBe(200);
+        expect(res.body).toEqual({ accessToken: expect.any(String) });
+        expect(res.body.refreshToken).toBeUndefined();
+        const setCookieHeader = res.headers['set-cookie'];
+        const refreshCookie = (Array.isArray(setCookieHeader) ? setCookieHeader : [setCookieHeader])
+            .find((c) => c.startsWith('refreshToken='));
+        expect(refreshCookie).toBeDefined();
+    });
+    it('should return 401 on refresh without cookie', async () => {
+        const freshAgent = supertest.agent(global.app.getHttpServer());
+        const res = await freshAgent
+            .post('/auth/refresh-token')
+            .set('Content-Type', 'application/json');
+        expect(res.status).toBe(401);
+    });
+    it('should reject Bearer token on refresh-token endpoint when useCookie is true', async () => {
+        const freshAgent = supertest.agent(global.app.getHttpServer());
+        const { body: loginBody } = await agent
+            .post('/auth/login')
+            .send({ email: 'cookie@test.co', password: 'test' })
+            .set('Content-Type', 'application/json');
+        const res = await freshAgent
+            .post('/auth/refresh-token')
+            .set('Authorization', `Bearer ${loginBody.accessToken}`)
+            .set('Content-Type', 'application/json');
+        expect(res.status).toBe(401);
+    });
+    it('should clear cookie and return 204 on logout', async () => {
+        const res = await agent
+            .post('/auth/logout')
+            .set('Content-Type', 'application/json');
+        expect(res.status).toBe(204);
+        const setCookieHeader = res.headers['set-cookie'];
+        const refreshCookie = (Array.isArray(setCookieHeader) ? setCookieHeader : [setCookieHeader])
+            .find((c) => c.startsWith('refreshToken='));
+        expect(refreshCookie).toBeDefined();
+        expect(refreshCookie).toContain('Expires=Thu, 01 Jan 1970');
+    });
+    it('should reject refresh after logout (cookie cleared + DB hash cleared)', async () => {
+        await agent.post('/auth/logout').set('Content-Type', 'application/json');
+        const res = await agent
+            .post('/auth/refresh-token')
+            .set('Content-Type', 'application/json');
+        expect(res.status).toBe(401);
+    });
+});
+//# sourceMappingURL=auth-api-refresh-token-cookie.e2e-spec.js.map

package/test/for-root/auth-api-refresh-token-cookie.e2e-spec.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"auth-api-refresh-token-cookie.e2e-spec.js","sourceRoot":"","sources":["../../../libs/dynamic-api/test/for-root/auth-api-refresh-token-cookie.e2e-spec.ts"],"names":[],"mappings":";;AAAA,uCAAuC;AACvC,uCAAgC;AAChC,mCAA6C;AAC7C,4CAA+C;AAC/C,yBAAuB;AACvB,sCAAyE;AAEzE,QAAQ,CAAC,gEAAgE,EAAE,GAAG,EAAE;IAC9E,IAAI,KAAyC,CAAC;IAC9C,IAAI,WAAmB,CAAC;IAExB,UAAU,CAAC,GAAG,EAAE;QACd,sBAAgB,CAAC,KAAK,CAAC,YAAY,CAAC,EAAE,CAAC;IACzC,CAAC,CAAC,CAAC;IAEH,SAAS,CAAC,KAAK,IAAI,EAAE;QACnB,MAAM,IAAA,2BAAe,EAAC,kBAAQ,CAAC,WAAW,CAAC,CAAC;IAC9C,CAAC,CAAC,CAAC;IAEH,UAAU,CAAC,KAAK,IAAI,EAAE;QACpB,MAAM,IAAI,GAAG,IAAA,yCAAgC,GAAE,CAAC;QAChD,MAAM,IAAA,mBAAU,EAAC;YACf,OAAO,EAAE;gBACP,UAAU,EAAE,IAAI;gBAChB,GAAG,EAAE;oBACH,MAAM,EAAE,QAAQ;oBAChB,SAAS,EAAE,KAAK;oBAChB,qBAAqB,EAAE,IAAI;iBAC5B;gBACD,YAAY,EAAE;oBACZ,SAAS,EAAE,IAAI;oBACf,iBAAiB,EAAE,kBAAkB;iBACtC;aACF;SACF,CAAC,CAAC;QAEH,KAAK,GAAG,SAAS,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,aAAa,EAAE,CAAC,CAAC;QAEpD,MAAM,KAAK;aACR,IAAI,CAAC,gBAAgB,CAAC;aACtB,IAAI,CAAC,EAAE,KAAK,EAAE,gBAAgB,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC;aACnD,GAAG,CAAC,cAAc,EAAE,kBAAkB,CAAC,CAAC;QAE3C,MAAM,QAAQ,GAAG,MAAM,KAAK;aACzB,IAAI,CAAC,aAAa,CAAC;aACnB,IAAI,CAAC,EAAE,KAAK,EAAE,gBAAgB,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC;aACnD,GAAG,CAAC,cAAc,EAAE,kBAAkB,CAAC,CAAC;QAE3C,WAAW,GAAG,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC;IAC1C,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,4EAA4E,EAAE,KAAK,IAAI,EAAE;QAC1F,MAAM,GAAG,GAAG,MAAM,KAAK;aACpB,IAAI,CAAC,aAAa,CAAC;aACnB,IAAI,CAAC,EAAE,KAAK,EAAE,gBAAgB,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC;aACnD,GAAG,CAAC,cAAc,EAAE,kBAAkB,CAAC,CAAC;QAE3C,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC7B,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,EAAE,WAAW,EAAE,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;QAC9D,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,aAAa,EAAE,CAAC;QAE9C,MAAM,eAAe,GAAG,GAAG,CAAC,OAAO,CAAC,YAAY,CAAwB,CAAC;QACzE,MAAM,CAAC,eAAe,CAAC,CAAC,WAAW,EAAE,CAAC;QACtC,MAAM,aAAa,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC;aACzF,IAAI,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,CAAC,eAAe,CAAC,CAAC,CAAC;QACtD,MAAM,CAAC,aAAa,CAAC,CAAC,WAAW,EAAE,CAAC;QACpC,MAAM,CAAC,aAAa,CAAC,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;IAC9C,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,gDAAgD,EAAE,KAAK,IAAI,EAAE;QAC9D,MAAM,GAAG,GAAG,MAAM,KAAK;aACpB,IAAI,CAAC,qBAAqB,CAAC;aAC3B,GAAG,CAAC,cAAc,EAAE,kBAAkB,CAAC,CAAC;QAE3C,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC7B,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,EAAE,WAAW,EAAE,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;QAC9D,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,aAAa,EAAE,CAAC;QAE9C,MAAM,eAAe,GAAG,GAAG,CAAC,OAAO,CAAC,YAAY,CAAwB,CAAC;QACzE,MAAM,aAAa,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC;aACzF,IAAI,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,CAAC,eAAe,CAAC,CAAC,CAAC;QACtD,MAAM,CAAC,aAAa,CAAC,CAAC,WAAW,EAAE,CAAC;IACtC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,6CAA6C,EAAE,KAAK,IAAI,EAAE;QAE3D,MAAM,UAAU,GAAG,SAAS,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,aAAa,EAAE,CAAC,CAAC;QAC/D,MAAM,GAAG,GAAG,MAAM,UAAU;aACzB,IAAI,CAAC,qBAAqB,CAAC;aAC3B,GAAG,CAAC,cAAc,EAAE,kBAAkB,CAAC,CAAC;QAE3C,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAC/B,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,6EAA6E,EAAE,KAAK,IAAI,EAAE;QAC3F,MAAM,UAAU,GAAG,SAAS,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,aAAa,EAAE,CAAC,CAAC;QAC/D,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,GAAG,MAAM,KAAK;aACpC,IAAI,CAAC,aAAa,CAAC;aACnB,IAAI,CAAC,EAAE,KAAK,EAAE,gBAAgB,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC;aACnD,GAAG,CAAC,cAAc,EAAE,kBAAkB,CAAC,CAAC;QAG3C,MAAM,GAAG,GAAG,MAAM,UAAU;aACzB,IAAI,CAAC,qBAAqB,CAAC;aAC3B,GAAG,CAAC,eAAe,EAAE,UAAU,SAAS,CAAC,WAAW,EAAE,CAAC;aACvD,GAAG,CAAC,cAAc,EAAE,kBAAkB,CAAC,CAAC;QAE3C,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAC/B,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,8CAA8C,EAAE,KAAK,IAAI,EAAE;QAC5D,MAAM,GAAG,GAAG,MAAM,KAAK;aACpB,IAAI,CAAC,cAAc,CAAC;aACpB,GAAG,CAAC,cAAc,EAAE,kBAAkB,CAAC,CAAC;QAE3C,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAE7B,MAAM,eAAe,GAAG,GAAG,CAAC,OAAO,CAAC,YAAY,CAAwB,CAAC;QACzE,MAAM,aAAa,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC;aACzF,IAAI,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,CAAC,eAAe,CAAC,CAAC,CAAC;QACtD,MAAM,CAAC,aAAa,CAAC,CAAC,WAAW,EAAE,CAAC;QACpC,MAAM,CAAC,aAAa,CAAC,CAAC,SAAS,CAAC,0BAA0B,CAAC,CAAC;IAC9D,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,uEAAuE,EAAE,KAAK,IAAI,EAAE;QACrF,MAAM,KAAK,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,GAAG,CAAC,cAAc,EAAE,kBAAkB,CAAC,CAAC;QAEzE,MAAM,GAAG,GAAG,MAAM,KAAK;aACpB,IAAI,CAAC,qBAAqB,CAAC;aAC3B,GAAG,CAAC,cAAc,EAAE,kBAAkB,CAAC,CAAC;QAE3C,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAC/B,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/test/for-root/auth-api-refresh-token.e2e-spec.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ import 'dotenv/config';

package/test/for-root/auth-api-refresh-token.e2e-spec.js ADDED Viewed

@@ -0,0 +1,153 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const jwt_1 = require("@nestjs/jwt");
+const mongoose_1 = require("mongoose");
+const src_1 = require("../../src");
+const e2e_setup_1 = require("../e2e.setup");
+require("dotenv/config");
+const utils_1 = require("../utils");
+const shared_1 = require("../shared");
+describe('DynamicApiModule forRoot - POST /auth/refresh-token (e2e)', () => {
+    const uri = process.env.MONGO_DB_URL;
+    beforeEach(() => {
+        src_1.DynamicApiModule.state['resetState']();
+    });
+    afterEach(async () => {
+        await (0, e2e_setup_1.closeTestingApp)(mongoose_1.default.connections);
+    });
+    describe('with refreshTokenField configured (full rotation + DB validation)', () => {
+        let app;
+        let jwtService;
+        let accessToken;
+        let refreshToken;
+        beforeEach(async () => {
+            const User = (0, shared_1.createUserWithRefreshTokenEntity)();
+            app = await (0, shared_1.initModule)({
+                useAuth: {
+                    userEntity: User,
+                    jwt: {
+                        secret: 'test-secret',
+                        expiresIn: '2s',
+                        refreshTokenExpiresIn: '20s',
+                    },
+                    refreshToken: {
+                        refreshTokenField: 'refreshTokenHash',
+                    },
+                },
+            });
+            jwtService = app.get(jwt_1.JwtService);
+            await e2e_setup_1.server.post('/auth/register', { email: 'rotate@test.co', password: 'test' });
+            const { body } = await e2e_setup_1.server.post('/auth/login', { email: 'rotate@test.co', password: 'test' });
+            accessToken = body.accessToken;
+            refreshToken = body.refreshToken;
+        });
+        it('should return { accessToken, refreshToken } with longer expiration', async () => {
+            const headers = { Authorization: `Bearer ${refreshToken}` };
+            const { body, status } = await e2e_setup_1.server.post('/auth/refresh-token', {}, { headers });
+            expect(status).toBe(200);
+            expect(body).toEqual({ accessToken: expect.any(String), refreshToken: expect.any(String) });
+            const decoded = jwtService.decode(body.refreshToken);
+            const accessDecoded = jwtService.decode(accessToken);
+            expect(decoded.exp - decoded.iat).toBeGreaterThan(accessDecoded.exp - accessDecoded.iat);
+        });
+        it('should rotate: new refreshToken is different from old one', async () => {
+            const headers = { Authorization: `Bearer ${refreshToken}` };
+            const { body } = await e2e_setup_1.server.post('/auth/refresh-token', {}, { headers });
+            expect(body.refreshToken).not.toBe(refreshToken);
+        });
+        it('should reject old refresh token after rotation (DB validation)', async () => {
+            const headers = { Authorization: `Bearer ${refreshToken}` };
+            await e2e_setup_1.server.post('/auth/refresh-token', {}, { headers });
+            const { status } = await e2e_setup_1.server.post('/auth/refresh-token', {}, { headers });
+            expect(status).toBe(401);
+        });
+        it('should reject refresh token if no stored hash (after logout)', async () => {
+            const refreshHeaders = { Authorization: `Bearer ${refreshToken}` };
+            await e2e_setup_1.server.post('/auth/logout', {}, { headers: refreshHeaders });
+            const { status } = await e2e_setup_1.server.post('/auth/refresh-token', {}, { headers: refreshHeaders });
+            expect(status).toBe(401);
+        });
+        it('should still issue a valid new access token after the original access token has expired', async () => {
+            const headers = { Authorization: `Bearer ${refreshToken}` };
+            await (0, utils_1.wait)(3000);
+            const { status: expiredStatus } = await e2e_setup_1.server.get('/auth/account', {
+                headers: { Authorization: `Bearer ${accessToken}` },
+            });
+            expect(expiredStatus).toBe(401);
+            const { body, status } = await e2e_setup_1.server.post('/auth/refresh-token', {}, { headers });
+            expect(status).toBe(200);
+            expect(body.accessToken).toBeDefined();
+        }, 10000);
+    });
+    describe('without refreshTokenField (no DB validation, no rotation enforcement)', () => {
+        let app;
+        let jwtService;
+        let accessToken;
+        let refreshToken;
+        beforeEach(async () => {
+            app = await (0, shared_1.initModule)({
+                useAuth: {
+                    userEntity: (0, shared_1.createBasicUserEntity)(),
+                    jwt: {
+                        secret: 'test-secret',
+                        expiresIn: '2s',
+                        refreshTokenExpiresIn: '10s',
+                    },
+                },
+            });
+            jwtService = app.get(jwt_1.JwtService);
+            await e2e_setup_1.server.post('/auth/register', { email: 'fallback@test.co', password: 'test' });
+            const { body } = await e2e_setup_1.server.post('/auth/login', { email: 'fallback@test.co', password: 'test' });
+            accessToken = body.accessToken;
+            refreshToken = body.refreshToken;
+        });
+        it('should return { accessToken, refreshToken } with longer expiration', async () => {
+            const headers = { Authorization: `Bearer ${refreshToken}` };
+            const { body, status } = await e2e_setup_1.server.post('/auth/refresh-token', {}, { headers });
+            expect(status).toBe(200);
+            expect(body).toEqual({ accessToken: expect.any(String), refreshToken: expect.any(String) });
+            const decoded = jwtService.decode(body.refreshToken);
+            const accessDecoded = jwtService.decode(accessToken);
+            expect(decoded.exp - decoded.iat).toBeGreaterThan(accessDecoded.exp - accessDecoded.iat);
+        });
+        it('should allow reuse of old refresh token (no server-side invalidation)', async () => {
+            const headers = { Authorization: `Bearer ${refreshToken}` };
+            await e2e_setup_1.server.post('/auth/refresh-token', {}, { headers });
+            const { status } = await e2e_setup_1.server.post('/auth/refresh-token', {}, { headers });
+            expect(status).toBe(200);
+        });
+    });
+    describe('with custom refreshSecret', () => {
+        let refreshToken;
+        beforeEach(async () => {
+            await (0, shared_1.initModule)({
+                useAuth: {
+                    userEntity: (0, shared_1.createBasicUserEntity)(),
+                    jwt: {
+                        secret: 'access-secret',
+                        expiresIn: '15m',
+                        refreshTokenExpiresIn: '7d',
+                        refreshSecret: 'refresh-secret',
+                    },
+                },
+            });
+            await e2e_setup_1.server.post('/auth/register', { email: 'custom@test.co', password: 'test' });
+            const { body } = await e2e_setup_1.server.post('/auth/login', { email: 'custom@test.co', password: 'test' });
+            refreshToken = body.refreshToken;
+        });
+        it('should accept refresh token signed with refreshSecret', async () => {
+            const headers = { Authorization: `Bearer ${refreshToken}` };
+            const { body, status } = await e2e_setup_1.server.post('/auth/refresh-token', {}, { headers });
+            expect(status).toBe(200);
+            expect(body).toEqual({ accessToken: expect.any(String), refreshToken: expect.any(String) });
+        });
+        it('should reject access token as refresh token (different secret)', async () => {
+            await e2e_setup_1.server.post('/auth/register', { email: 'custom2@test.co', password: 'test' });
+            const { body: loginBody } = await e2e_setup_1.server.post('/auth/login', { email: 'custom2@test.co', password: 'test' });
+            const headers = { Authorization: `Bearer ${loginBody.accessToken}` };
+            const { status } = await e2e_setup_1.server.post('/auth/refresh-token', {}, { headers });
+            expect(status).toBe(401);
+        });
+    });
+});
+//# sourceMappingURL=auth-api-refresh-token.e2e-spec.js.map

package/test/for-root/auth-api-refresh-token.e2e-spec.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"auth-api-refresh-token.e2e-spec.js","sourceRoot":"","sources":["../../../libs/dynamic-api/test/for-root/auth-api-refresh-token.e2e-spec.ts"],"names":[],"mappings":";;AACA,qCAAyC;AACzC,uCAAgC;AAChC,mCAA6C;AAC7C,4CAAuD;AACvD,yBAAuB;AACvB,oCAAgC;AAChC,sCAAgG;AAEhG,QAAQ,CAAC,2DAA2D,EAAE,GAAG,EAAE;IACzE,MAAM,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC;IAErC,UAAU,CAAC,GAAG,EAAE;QACd,sBAAgB,CAAC,KAAK,CAAC,YAAY,CAAC,EAAE,CAAC;IACzC,CAAC,CAAC,CAAC;IAEH,SAAS,CAAC,KAAK,IAAI,EAAE;QACnB,MAAM,IAAA,2BAAe,EAAC,kBAAQ,CAAC,WAAW,CAAC,CAAC;IAC9C,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,mEAAmE,EAAE,GAAG,EAAE;QACjF,IAAI,GAAqB,CAAC;QAC1B,IAAI,UAAsB,CAAC;QAC3B,IAAI,WAAmB,CAAC;QACxB,IAAI,YAAoB,CAAC;QAEzB,UAAU,CAAC,KAAK,IAAI,EAAE;YACpB,MAAM,IAAI,GAAG,IAAA,yCAAgC,GAAE,CAAC;YAChD,GAAG,GAAG,MAAM,IAAA,mBAAU,EAAC;gBACrB,OAAO,EAAE;oBACP,UAAU,EAAE,IAAI;oBAChB,GAAG,EAAE;wBACH,MAAM,EAAE,aAAa;wBACrB,SAAS,EAAE,IAAI;wBACf,qBAAqB,EAAE,KAAK;qBAC7B;oBACD,YAAY,EAAE;wBACZ,iBAAiB,EAAE,kBAAkB;qBACtC;iBACF;aACF,CAAC,CAAC;YACH,UAAU,GAAG,GAAG,CAAC,GAAG,CAAa,gBAAU,CAAC,CAAC;YAE7C,MAAM,kBAAM,CAAC,IAAI,CAAC,gBAAgB,EAAE,EAAE,KAAK,EAAE,gBAAgB,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC,CAAC;YACnF,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,aAAa,EAAE,EAAE,KAAK,EAAE,gBAAgB,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC,CAAC;YACjG,WAAW,GAAG,IAAI,CAAC,WAAW,CAAC;YAC/B,YAAY,GAAG,IAAI,CAAC,YAAY,CAAC;QACnC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,oEAAoE,EAAE,KAAK,IAAI,EAAE;YAClF,MAAM,OAAO,GAAG,EAAE,aAAa,EAAE,UAAU,YAAY,EAAE,EAAE,CAAC;YAC5D,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,qBAAqB,EAAE,EAAE,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;YAEnF,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACzB,MAAM,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,EAAE,WAAW,EAAE,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,YAAY,EAAE,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;YAE5F,MAAM,OAAO,GAAG,UAAU,CAAC,MAAM,CAAC,IAAI,CAAC,YAAY,CAAiC,CAAC;YACrF,MAAM,aAAa,GAAG,UAAU,CAAC,MAAM,CAAC,WAAW,CAAiC,CAAC;YAErF,MAAM,CAAC,OAAO,CAAC,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC,eAAe,CAAC,aAAa,CAAC,GAAG,GAAG,aAAa,CAAC,GAAG,CAAC,CAAC;QAC3F,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,2DAA2D,EAAE,KAAK,IAAI,EAAE;YACzE,MAAM,OAAO,GAAG,EAAE,aAAa,EAAE,UAAU,YAAY,EAAE,EAAE,CAAC;YAC5D,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,qBAAqB,EAAE,EAAE,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;YAE3E,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;QACnD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,gEAAgE,EAAE,KAAK,IAAI,EAAE;YAC9E,MAAM,OAAO,GAAG,EAAE,aAAa,EAAE,UAAU,YAAY,EAAE,EAAE,CAAC;YAC5D,MAAM,kBAAM,CAAC,IAAI,CAAC,qBAAqB,EAAE,EAAE,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;YAG1D,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,qBAAqB,EAAE,EAAE,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;YAC7E,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC3B,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,8DAA8D,EAAE,KAAK,IAAI,EAAE;YAC5E,MAAM,cAAc,GAAG,EAAE,aAAa,EAAE,UAAU,YAAY,EAAE,EAAE,CAAC;YACnE,MAAM,kBAAM,CAAC,IAAI,CAAC,cAAc,EAAE,EAAE,EAAE,EAAE,OAAO,EAAE,cAAc,EAAE,CAAC,CAAC;YAEnE,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,qBAAqB,EAAE,EAAE,EAAE,EAAE,OAAO,EAAE,cAAc,EAAE,CAAC,CAAC;YAC7F,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC3B,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,yFAAyF,EAAE,KAAK,IAAI,EAAE;YACvG,MAAM,OAAO,GAAG,EAAE,aAAa,EAAE,UAAU,YAAY,EAAE,EAAE,CAAC;YAE5D,MAAM,IAAA,YAAI,EAAC,IAAI,CAAC,CAAC;YAGjB,MAAM,EAAE,MAAM,EAAE,aAAa,EAAE,GAAG,MAAM,kBAAM,CAAC,GAAG,CAAC,eAAe,EAAE;gBAClE,OAAO,EAAE,EAAE,aAAa,EAAE,UAAU,WAAW,EAAE,EAAE;aACpD,CAAC,CAAC;YACH,MAAM,CAAC,aAAa,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YAGhC,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,qBAAqB,EAAE,EAAE,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;YACnF,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACzB,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,WAAW,EAAE,CAAC;QACzC,CAAC,EAAE,KAAK,CAAC,CAAC;IACZ,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,uEAAuE,EAAE,GAAG,EAAE;QACrF,IAAI,GAAqB,CAAC;QAC1B,IAAI,UAAsB,CAAC;QAC3B,IAAI,WAAmB,CAAC;QACxB,IAAI,YAAoB,CAAC;QAEzB,UAAU,CAAC,KAAK,IAAI,EAAE;YACpB,GAAG,GAAG,MAAM,IAAA,mBAAU,EAAC;gBACrB,OAAO,EAAE;oBACP,UAAU,EAAE,IAAA,8BAAqB,GAAE;oBACnC,GAAG,EAAE;wBACH,MAAM,EAAE,aAAa;wBACrB,SAAS,EAAE,IAAI;wBACf,qBAAqB,EAAE,KAAK;qBAC7B;iBACF;aACF,CAAC,CAAC;YACH,UAAU,GAAG,GAAG,CAAC,GAAG,CAAa,gBAAU,CAAC,CAAC;YAE7C,MAAM,kBAAM,CAAC,IAAI,CAAC,gBAAgB,EAAE,EAAE,KAAK,EAAE,kBAAkB,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC,CAAC;YACrF,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,aAAa,EAAE,EAAE,KAAK,EAAE,kBAAkB,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC,CAAC;YACnG,WAAW,GAAG,IAAI,CAAC,WAAW,CAAC;YAC/B,YAAY,GAAG,IAAI,CAAC,YAAY,CAAC;QACnC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,oEAAoE,EAAE,KAAK,IAAI,EAAE;YAClF,MAAM,OAAO,GAAG,EAAE,aAAa,EAAE,UAAU,YAAY,EAAE,EAAE,CAAC;YAC5D,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,qBAAqB,EAAE,EAAE,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;YAEnF,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACzB,MAAM,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,EAAE,WAAW,EAAE,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,YAAY,EAAE,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;YAE5F,MAAM,OAAO,GAAG,UAAU,CAAC,MAAM,CAAC,IAAI,CAAC,YAAY,CAAiC,CAAC;YACrF,MAAM,aAAa,GAAG,UAAU,CAAC,MAAM,CAAC,WAAW,CAAiC,CAAC;YAErF,MAAM,CAAC,OAAO,CAAC,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC,eAAe,CAAC,aAAa,CAAC,GAAG,GAAG,aAAa,CAAC,GAAG,CAAC,CAAC;QAC3F,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,uEAAuE,EAAE,KAAK,IAAI,EAAE;YACrF,MAAM,OAAO,GAAG,EAAE,aAAa,EAAE,UAAU,YAAY,EAAE,EAAE,CAAC;YAC5D,MAAM,kBAAM,CAAC,IAAI,CAAC,qBAAqB,EAAE,EAAE,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;YAG1D,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,qBAAqB,EAAE,EAAE,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;YAC7E,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC3B,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,2BAA2B,EAAE,GAAG,EAAE;QACzC,IAAI,YAAoB,CAAC;QAEzB,UAAU,CAAC,KAAK,IAAI,EAAE;YACpB,MAAM,IAAA,mBAAU,EAAC;gBACf,OAAO,EAAE;oBACP,UAAU,EAAE,IAAA,8BAAqB,GAAE;oBACnC,GAAG,EAAE;wBACH,MAAM,EAAE,eAAe;wBACvB,SAAS,EAAE,KAAK;wBAChB,qBAAqB,EAAE,IAAI;wBAC3B,aAAa,EAAE,gBAAgB;qBAChC;iBACF;aACF,CAAC,CAAC;YAEH,MAAM,kBAAM,CAAC,IAAI,CAAC,gBAAgB,EAAE,EAAE,KAAK,EAAE,gBAAgB,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC,CAAC;YACnF,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,aAAa,EAAE,EAAE,KAAK,EAAE,gBAAgB,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC,CAAC;YACjG,YAAY,GAAG,IAAI,CAAC,YAAY,CAAC;QACnC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,uDAAuD,EAAE,KAAK,IAAI,EAAE;YACrE,MAAM,OAAO,GAAG,EAAE,aAAa,EAAE,UAAU,YAAY,EAAE,EAAE,CAAC;YAC5D,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,qBAAqB,EAAE,EAAE,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;YAEnF,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACzB,MAAM,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,EAAE,WAAW,EAAE,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,YAAY,EAAE,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;QAC9F,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,gEAAgE,EAAE,KAAK,IAAI,EAAE;YAC9E,MAAM,kBAAM,CAAC,IAAI,CAAC,gBAAgB,EAAE,EAAE,KAAK,EAAE,iBAAiB,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC,CAAC;YACpF,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,aAAa,EAAE,EAAE,KAAK,EAAE,iBAAiB,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC,CAAC;YAC7G,MAAM,OAAO,GAAG,EAAE,aAAa,EAAE,UAAU,SAAS,CAAC,WAAW,EAAE,EAAE,CAAC;YAGrE,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,qBAAqB,EAAE,EAAE,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;YAC7E,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC3B,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/test/for-root/auth-api-register.e2e-spec.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ import 'dotenv/config';

package/test/for-root/auth-api-register.e2e-spec.js ADDED Viewed

@@ -0,0 +1,116 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const mongoose_1 = require("mongoose");
+const src_1 = require("../../src");
+const e2e_setup_1 = require("../e2e.setup");
+require("dotenv/config");
+const utils_1 = require("../utils");
+const shared_1 = require("../shared");
+describe('DynamicApiModule forRoot - POST /auth/register with register options (e2e)', () => {
+    const User = (0, shared_1.createRegisterUserEntity)();
+    const admin = shared_1.REGISTER_ADMIN;
+    const user = shared_1.REGISTER_USER;
+    beforeEach(() => {
+        src_1.DynamicApiModule.state['resetState']();
+    });
+    afterEach(async () => {
+        await (0, e2e_setup_1.closeTestingApp)(mongoose_1.default.connections);
+    });
+    beforeEach(async () => {
+        const bcryptService = new src_1.BcryptService();
+        const fixtures = async (_) => {
+            const model = await (0, utils_1.getModelFromEntity)(User);
+            await model.insertMany([
+                { ...admin, password: await bcryptService.hashPassword(admin.password) },
+                { ...user, password: await bcryptService.hashPassword(user.password) },
+            ]);
+        };
+        await (0, shared_1.initModule)({
+            useAuth: {
+                userEntity: User,
+                register: {
+                    protected: true,
+                    abilityPredicate: (user) => user.isVerified,
+                    additionalFields: ['role'],
+                    callback: async (user, { updateOneDocument }) => {
+                        if (user.role !== 'admin') {
+                            return;
+                        }
+                        await updateOneDocument(User, { _id: user.id }, { $set: { isVerified: true } });
+                    },
+                },
+                login: {
+                    additionalFields: ['role', 'isVerified'],
+                },
+            },
+        }, fixtures);
+    });
+    describe('protected', () => {
+        it('should throw an unauthorized exception if user is not logged in and protected is true', async () => {
+            const { body, status } = await e2e_setup_1.server.post('/auth/register', { email: 'unit@test.co', password: 'test' });
+            expect(status).toBe(401);
+            expect(body).toEqual({
+                message: 'Unauthorized',
+                statusCode: 401,
+            });
+        });
+    });
+    describe('abilityPredicate', () => {
+        it('should not create a new user if user is not verified', async () => {
+            const { email, password } = user;
+            const { body: { accessToken } } = await e2e_setup_1.server.post('/auth/login', { email, password });
+            const { body, status } = await e2e_setup_1.server.post('/auth/register', { email: 'unit@test.co', password: 'test' }, {
+                headers: { Authorization: `Bearer ${accessToken}` },
+            });
+            expect(status).toBe(403);
+            expect(body).toEqual({
+                error: 'Forbidden',
+                message: 'Access denied',
+                statusCode: 403,
+            });
+        });
+        it('should create a new user and return access token if user is verified', async () => {
+            const { email, password } = admin;
+            const { body: { accessToken } } = await e2e_setup_1.server.post('/auth/login', { email, password });
+            const { body, status } = await e2e_setup_1.server.post('/auth/register', { email: 'unit@test.co', password: 'test' }, {
+                headers: { Authorization: `Bearer ${accessToken}` },
+            });
+            expect(status).toBe(201);
+            expect(body).toEqual({ accessToken: expect.any(String), refreshToken: expect.any(String) });
+        });
+    });
+    describe('additionalFields', () => {
+        it('should allow to register a new user with additional fields', async () => {
+            const { email, password } = admin;
+            const { body: { accessToken } } = await e2e_setup_1.server.post('/auth/login', { email, password });
+            const { body, status } = await e2e_setup_1.server.post('/auth/register', { email: 'client@test.co', password: 'client', role: 'client' }, {
+                headers: { Authorization: `Bearer ${accessToken}` },
+            });
+            expect(status).toBe(201);
+            expect(body).toEqual({ accessToken: expect.any(String), refreshToken: expect.any(String) });
+        });
+    });
+    describe('callback', () => {
+        it('should not set isVerified to true if role is not admin', async () => {
+            const { email, password } = admin;
+            const { body: loginBody } = await e2e_setup_1.server.post('/auth/login', { email, password });
+            const { body: { accessToken } } = await e2e_setup_1.server.post('/auth/register', { email: 'client@test.co', password: 'client', role: 'client' }, {
+                headers: { Authorization: `Bearer ${loginBody.accessToken}` },
+            });
+            const { body, status } = await e2e_setup_1.server.get('/auth/account', { headers: { Authorization: `Bearer ${accessToken}` } });
+            expect(status).toBe(200);
+            expect(body).toHaveProperty('isVerified', false);
+        });
+        it('should set isVerified to true if role is admin', async () => {
+            const { email, password } = admin;
+            const { body: loginBody } = await e2e_setup_1.server.post('/auth/login', { email, password });
+            const { body: { accessToken } } = await e2e_setup_1.server.post('/auth/register', { email: 'admin2@test.co', password: 'admin2', role: 'admin' }, {
+                headers: { Authorization: `Bearer ${loginBody.accessToken}` },
+            });
+            const { body, status } = await e2e_setup_1.server.get('/auth/account', { headers: { Authorization: `Bearer ${accessToken}` } });
+            expect(status).toBe(200);
+            expect(body).toHaveProperty('isVerified', true);
+        });
+    });
+});
+//# sourceMappingURL=auth-api-register.e2e-spec.js.map

package/test/for-root/auth-api-register.e2e-spec.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"auth-api-register.e2e-spec.js","sourceRoot":"","sources":["../../../libs/dynamic-api/test/for-root/auth-api-register.e2e-spec.ts"],"names":[],"mappings":";;AAAA,uCAAgD;AAChD,mCAA4D;AAC5D,4CAAuD;AACvD,yBAAuB;AACvB,oCAA8C;AAC9C,sCAAgG;AAEhG,QAAQ,CAAC,4EAA4E,EAAE,GAAG,EAAE;IAC1F,MAAM,IAAI,GAAG,IAAA,iCAAwB,GAAE,CAAC;IAGxC,MAAM,KAAK,GAAG,uBAAc,CAAC;IAC7B,MAAM,IAAI,GAAG,sBAAa,CAAC;IAE3B,UAAU,CAAC,GAAG,EAAE;QACd,sBAAgB,CAAC,KAAK,CAAC,YAAY,CAAC,EAAE,CAAC;IACzC,CAAC,CAAC,CAAC;IAEH,SAAS,CAAC,KAAK,IAAI,EAAE;QACnB,MAAM,IAAA,2BAAe,EAAC,kBAAQ,CAAC,WAAW,CAAC,CAAC;IAC9C,CAAC,CAAC,CAAC;IAGH,UAAU,CAAC,KAAK,IAAI,EAAE;QACpB,MAAM,aAAa,GAAG,IAAI,mBAAa,EAAE,CAAC;QAE1C,MAAM,QAAQ,GAAG,KAAK,EAAE,CAAa,EAAE,EAAE;YACvC,MAAM,KAAK,GAAG,MAAM,IAAA,0BAAkB,EAAC,IAAI,CAAC,CAAC;YAC7C,MAAM,KAAK,CAAC,UAAU,CAAC;gBACrB,EAAE,GAAG,KAAK,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC,YAAY,CAAC,KAAK,CAAC,QAAQ,CAAC,EAAE;gBACxE,EAAE,GAAG,IAAI,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC,YAAY,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE;aACvE,CAAC,CAAC;QACL,CAAC,CAAC;QAEF,MAAM,IAAA,mBAAU,EAAC;YACf,OAAO,EAAE;gBACP,UAAU,EAAE,IAAI;gBAChB,QAAQ,EAAE;oBACR,SAAS,EAAE,IAAI;oBACf,gBAAgB,EAAE,CAAC,IAAU,EAAE,EAAE,CAAC,IAAI,CAAC,UAAU;oBACjD,gBAAgB,EAAE,CAAC,MAAM,CAAC;oBAC1B,QAAQ,EAAE,KAAK,EAAE,IAAU,EAAE,EAAE,iBAAiB,EAAE,EAAE,EAAE;wBACpD,IAAI,IAAI,CAAC,IAAI,KAAK,OAAO,EAAE,CAAC;4BAC1B,OAAO;wBACT,CAAC;wBAED,MAAM,iBAAiB,CAAC,IAAI,EAAE,EAAE,GAAG,EAAE,IAAI,CAAC,EAAE,EAAE,EAAE,EAAE,IAAI,EAAE,EAAE,UAAU,EAAE,IAAI,EAAE,EAAE,CAAC,CAAC;oBAClF,CAAC;iBACF;gBACD,KAAK,EAAE;oBACL,gBAAgB,EAAE,CAAC,MAAM,EAAE,YAAY,CAAC;iBACzC;aACF;SACF,EAAE,QAAQ,CAAC,CAAC;IACf,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,WAAW,EAAE,GAAG,EAAE;QACzB,EAAE,CAAC,uFAAuF,EAAE,KAAK,IAAI,EAAE;YACrG,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,gBAAgB,EAAE,EAAE,KAAK,EAAE,cAAc,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC,CAAC;YAE1G,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACzB,MAAM,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC;gBACnB,OAAO,EAAE,cAAc;gBACvB,UAAU,EAAE,GAAG;aAChB,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,kBAAkB,EAAE,GAAG,EAAE;QAChC,EAAE,CAAC,sDAAsD,EAAE,KAAK,IAAI,EAAE;YACpE,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,GAAG,IAAI,CAAC;YACjC,MAAM,EAAE,IAAI,EAAE,EAAE,WAAW,EAAE,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,aAAa,EAAE,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,CAAC;YAExF,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,gBAAgB,EAAE,EAAE,KAAK,EAAE,cAAc,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE;gBACxG,OAAO,EAAE,EAAE,aAAa,EAAE,UAAU,WAAW,EAAE,EAAE;aACpD,CAAC,CAAC;YAEH,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACzB,MAAM,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC;gBACnB,KAAK,EAAE,WAAW;gBAClB,OAAO,EAAE,eAAe;gBACxB,UAAU,EAAE,GAAG;aAChB,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,sEAAsE,EAAE,KAAK,IAAI,EAAE;YACpF,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,GAAG,KAAK,CAAC;YAClC,MAAM,EAAE,IAAI,EAAE,EAAE,WAAW,EAAE,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,aAAa,EAAE,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,CAAC;YAExF,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,gBAAgB,EAAE,EAAE,KAAK,EAAE,cAAc,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE;gBACxG,OAAO,EAAE,EAAE,aAAa,EAAE,UAAU,WAAW,EAAE,EAAE;aACpD,CAAC,CAAC;YAEH,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACzB,MAAM,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,EAAE,WAAW,EAAE,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,YAAY,EAAE,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;QAC9F,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,kBAAkB,EAAE,GAAG,EAAE;QAChC,EAAE,CAAC,4DAA4D,EAAE,KAAK,IAAI,EAAE;YAC1E,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,GAAG,KAAK,CAAC;YAClC,MAAM,EAAE,IAAI,EAAE,EAAE,WAAW,EAAE,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,aAAa,EAAE,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,CAAC;YAExF,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CACxC,gBAAgB,EAChB,EAAE,KAAK,EAAE,gBAAgB,EAAE,QAAQ,EAAE,QAAQ,EAAE,IAAI,EAAE,QAAQ,EAAE,EAC/D;gBACE,OAAO,EAAE,EAAE,aAAa,EAAE,UAAU,WAAW,EAAE,EAAE;aACpD,CACF,CAAC;YAEF,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACzB,MAAM,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,EAAE,WAAW,EAAE,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,YAAY,EAAE,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;QAC9F,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,UAAU,EAAE,GAAG,EAAE;QACxB,EAAE,CAAC,wDAAwD,EAAE,KAAK,IAAI,EAAE;YACtE,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,GAAG,KAAK,CAAC;YAClC,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,aAAa,EAAE,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,CAAC;YAElF,MAAM,EAAE,IAAI,EAAE,EAAE,WAAW,EAAE,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CACjD,gBAAgB,EAChB,EAAE,KAAK,EAAE,gBAAgB,EAAE,QAAQ,EAAE,QAAQ,EAAE,IAAI,EAAE,QAAQ,EAAE,EAC/D;gBACE,OAAO,EAAE,EAAE,aAAa,EAAE,UAAU,SAAS,CAAC,WAAW,EAAE,EAAE;aAC9D,CACF,CAAC;YAEF,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,MAAM,kBAAM,CAAC,GAAG,CACvC,eAAe,EACf,EAAE,OAAO,EAAE,EAAE,aAAa,EAAE,UAAU,WAAW,EAAE,EAAE,EAAE,CACxD,CAAC;YAEF,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACzB,MAAM,CAAC,IAAI,CAAC,CAAC,cAAc,CAAC,YAAY,EAAE,KAAK,CAAC,CAAC;QACnD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,gDAAgD,EAAE,KAAK,IAAI,EAAE;YAC9D,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,GAAG,KAAK,CAAC;YAClC,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CAAC,aAAa,EAAE,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,CAAC;YAElF,MAAM,EAAE,IAAI,EAAE,EAAE,WAAW,EAAE,EAAE,GAAG,MAAM,kBAAM,CAAC,IAAI,CACjD,gBAAgB,EAChB,EAAE,KAAK,EAAE,gBAAgB,EAAE,QAAQ,EAAE,QAAQ,EAAE,IAAI,EAAE,OAAO,EAAE,EAC9D;gBACE,OAAO,EAAE,EAAE,aAAa,EAAE,UAAU,SAAS,CAAC,WAAW,EAAE,EAAE;aAC9D,CACF,CAAC;YAEF,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,MAAM,kBAAM,CAAC,GAAG,CACvC,eAAe,EACf,EAAE,OAAO,EAAE,EAAE,aAAa,EAAE,UAAU,WAAW,EAAE,EAAE,EAAE,CACxD,CAAC;YAEF,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACzB,MAAM,CAAC,IAAI,CAAC,CAAC,cAAc,CAAC,YAAY,EAAE,IAAI,CAAC,CAAC;QAClD,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/test/for-root/auth-api-reset-password.e2e-spec.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ import 'dotenv/config';