Главная Обзор Помощь
Вход
SMusatov
/
send
зеркало из https://gitlab.com/timvisee/send.git
1
0
Ответвить 0
Файлы
Дерево: 11319080a8
Ветки Метки
send
/
test
/
frontend
/
tests
/
auth-tests.js

auth-tests.js 2.2 KB
История Исходник

123456789101112131415161718192021222324252627282930313233343536373839404142434445 
  1. import assert from 'assert';
    2. 

  2. import storage from '../../../app/storage';
    3. 

  3. import { decryptBundle, prepareScopedBundleKey } from '../../../app/fxa';
    4. 

  4. import { b64ToArray } from '../../../app/utils';
    5. 

  5. 

  6. const decoder = new TextDecoder();
    7. 

  7. 

  8. describe('user auth', function() {
    9. 

  9.   it('prepares ECDH keys for PKCE auth', async function() {
    10. 

  10.     const empty = storage.get('scopedBundlePrivateKey');
    11. 

  11.     assert.equal(empty, undefined);
    12. 

  12.     const publicKeyB64 = await prepareScopedBundleKey(storage);
    13. 

  13.     const publicKey = JSON.parse(decoder.decode(b64ToArray(publicKeyB64)));
    14. 

  14.     assert(!publicKey.d, 'not a public key');
    15. 

  15.     assert(publicKey.x);
    16. 

  16.     assert(publicKey.y);
    17. 

  17.     assert.equal(publicKey.kty, 'EC');
    18. 

  18.     assert.equal(publicKey.crv, 'P-256');
    19. 

  19. 

  20.     const privateKey = JSON.parse(storage.get('scopedBundlePrivateKey'));
    21. 

  21.     storage.remove('scopedBundlePrivateKey');
    22. 

  22.     assert.equal(privateKey.kty, 'EC');
    23. 

  23.     assert.equal(privateKey.crv, 'P-256');
    24. 

  24.     assert(privateKey.d, 'not a private key');
    25. 

  25.   });
    26. 

  26. 

  27.   it('decrypts the PKCE auth bundle', async function() {
    28. 

  28.     storage.set(
    29. 

  29.       'scopedBundlePrivateKey',
    30. 

  30.       '{"kty":"EC","kid":"cV9_thVX9XRa-R2nVZF9rFdwrcR_eST4UZuUCx03ebI","crv":"P-256","x":"-0OOb6SPdYBz0CkQLWRu8ojDUhRe-VoKnwLEBi97KAk","y":"U3fXgj1LV7KhiO5O60niMjPpDqToh15-R6C22NnmNXY","d":"KfIQCxZrqSI6j69rAC6fEiGIYKwYv2buQG9NTcKOiGc"}'
    31. 

  31.     );
    32. 

  32.     const jwks = await decryptBundle(
    33. 

  33.       storage,
    34. 

  34.       'eyJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiRUNESC1FUyIsImtpZCI6ImNWOV90aFZYOVhSYS1SMm5WWkY5ckZkd3JjUl9lU1Q0VVp1VUN4MDNlYkkiLCJlcGsiOnsia3R5IjoiRUMiLCJjcnYiOiJQLTI1NiIsIngiOiJqckcwajNFODNodDZJcDE1YmtuZWRUV3kwZmR1WnR0V3NtMkFybUNoQU5rIiwieSI6Ijl3SmNQUDRrQmQ5amtCbEJJcWRhclQ2NjVIQU00SndUX0FSSFc0aTN4QUUifX0..Dkf-FXtakCiPuXjW.-KfVQEntYjUe3f5OxslSQwjLFauc50RurLQHDV75sUixNTlsjTIldCZVb6WUKpQkpOdFHOUYFX9_Cvk2ENKdfcVm2eTuyomlKklHF3q5209KwJz8lDK3gOQuAlz79eDou0k_Z3JNGu-qZ8IiDhZZ9iNSgBrsq0BZwVXZ9ViSFEW-YzJBQlKmildscXhp_-Lf6-qiJJrPbZCXFD3PZmzcule3kyBOarg_fjjHLFlIpdjP1lI5wBETqdjk7iBKeO2isSQO7-8.q5EzqP6OPg9yb5BcJH2oFg'
    35. 

  35.     );
    36. 

  36.     assert.deepEqual(jwks, {
    37. 

  37.       'https://identity.mozilla.com/apps/send': {
    38. 

  38.         kty: 'oct',
    39. 

  39.         scope: 'https://identity.mozilla.com/apps/send',
    40. 

  40.         k: '5_jrbS76RzJ4EwlKSl527vqz3BDqf5DM4sNsoEK_hoA',
    41. 

  41.         kid: '1414456160-n6yE-eL-ADvnsJo_huq3DA'
    42. 

  42.       }
    43. 

  43.     });
    44. 

  44.   });
    45. 

  45. });
    46.