Merge pull request #396 from cloudant/error-on-cookie-auth-failure-tests

Update tests to expect an error on cookie authentication failure.

Author: smithsz

test/client.js

@@ -1,4 +1,4 @@
-// Copyright © 2017, 2018 IBM Corp. All rights reserved.
+// Copyright © 2017, 2019 IBM Corp. All rights reserved.
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
@@ -227,23 +227,23 @@ describe('CloudantClient', function() {
 
   describe('Error Handling', function() {
     it('Propagate request error: Invalid protocol.', function(done) {
-      var cloudantClient = new Client();
+      var cloudantClient = new Client({ plugins: [] });
       cloudantClient.request('abc://localhost:5984', function(err) {
         assert.equal(err.message, 'Invalid protocol: abc:');
         done();
       });
     });
 
     it('Propagate request error: Base URL must be type string.', function(done) {
-      var cloudantClient = new Client();
+      var cloudantClient = new Client({ plugins: [] });
       cloudantClient.request({ baseUrl: 123, url: '/_all_dbs' }, function(err) {
         assert.equal(err.message, 'options.baseUrl must be a string');
         done();
       });
     });
 
     it('Propagate request error: `unix://` URL scheme is no longer supported.', function(done) {
-      var cloudantClient = new Client();
+      var cloudantClient = new Client({ plugins: [] });
       cloudantClient.request('unix://abc', function(err) {
         assert.equal(
           err.message,
@@ -294,8 +294,8 @@ describe('CloudantClient', function() {
           .get(DBNAME)
           .reply(200, {doc_count: 1});
 
-      var cloudantClient = new Client();
-      assert.equal(cloudantClient._plugins.length, 1);
+      var cloudantClient = new Client({ plugins: [] });
+      assert.equal(cloudantClient._plugins.length, 0);
 
       var options = {
         url: SERVER + DBNAME,

test/legacy/api.js

@@ -73,9 +73,8 @@ describe('#db Initialization', function() {
 
     var mocks = nock(SERVER)
       .post('/_session')
+      .times(3)
       .replyWithError({code: 'ECONNRESET', message: 'socket hang up'})
-      .get('/')
-      .replyWithError({code: 'ECONNRESET', message: 'socket hang up'});
 
     Cloudant({username: ME, password: PASSWORD, url: SERVER}, function(er, cloudant, body) {
       er.should.be.an.Object;

test/legacy/plugin.js

@@ -1,4 +1,4 @@
-// Copyright © 2015, 2018 IBM Corp. All rights reserved.
+// Copyright © 2015, 2019 IBM Corp. All rights reserved.
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
@@ -170,142 +170,6 @@ describe('promises #db', function() {
   });
 });
 
-describe('cookieauth plugin #db', function() {
-  before(onBefore);
-  after(onAfter);
-
-  it('should return a promise', function(done) {
-    var mocks = nock(SERVER)
-        .post('/_session').reply(200, { ok: true })
-        .get('/' + dbName).reply(200, { ok: true });
-    var cloudant = Cloudant({plugins: 'cookieauth', url: SERVER, username: ME, password: PASSWORD});
-    var db = cloudant.db.use(dbName);
-    var p = db.info().then(function(data) {
-      data.should.be.an.Object;
-      // check that we use all the nocked API calls
-      mocks.done();
-      done();
-    });
-    assert.equal(p instanceof Promise, true);
-  });
-
-  it('should authenticate before attempting API call', function(done) {
-    var mocks = nock(SERVER)
-        .post('/_session', {name: ME, password: PASSWORD}).reply(200, { ok: true, info: {}, userCtx: { name: ME, roles: ['_admin'] } })
-        .get('/' + dbName + '/mydoc').reply(200, { _id: 'mydoc', _rev: '1-123', ok: true });
-    var cloudant = Cloudant({plugins: 'cookieauth', url: SERVER, username: ME, password: PASSWORD});
-    var db = cloudant.db.use(dbName);
-    var p = db.get('mydoc', function(err, data) {
-      assert.equal(err, null);
-      data.should.be.an.Object;
-      data.should.have.property._id;
-      data.should.have.property._rev;
-      data.should.have.property.ok;
-
-      // check that we use all the nocked API calls
-      mocks.done();
-      done();
-    });
-  });
-
-  it('should fail with incorrect authentication', function(done) {
-    var mocks = nock(SERVER)
-        .post('/_session', {name: ME, password: 'wrongpassword'})
-        .reply(401, {error: 'unauthorized', reason: 'Name or password is incorrect.'})
-        .get('/' + dbName + '/mydoc')
-        .reply(401, {error: 'unauthorized', reason: 'Name or password is incorrect.'});
-    var cloudant = Cloudant({plugins: 'cookieauth', url: SERVER, username: ME, password: 'wrongpassword'});
-    var db = cloudant.db.use(dbName);
-    var p = db.get('mydoc', function(err, data) {
-      assert.equal(data, null);
-      err.should.be.an.Object;
-      err.should.have.property.error;
-      err.should.have.property.reason;
-
-      // check that we use all the nocked API calls
-      mocks.done();
-      done();
-    });
-  });
-
-  it('should only authenticate once', function(done) {
-    var mocks = nock(SERVER)
-        .post('/_session', {name: ME, password: PASSWORD}).reply(200, { ok: true, info: {}, userCtx: { name: ME, roles: ['_admin'] } }, { 'Set-Cookie': 'AuthSession=xyz; Version=1; Path=/; HttpOnly' })
-        .get('/' + dbName + '/mydoc').reply(200, { _id: 'mydoc', _rev: '1-123', ok: true })
-        .get('/' + dbName + '/mydoc').reply(200, { _id: 'mydoc', _rev: '1-123', ok: true });
-    var cloudant = Cloudant({plugins: 'cookieauth', url: SERVER, username: ME, password: PASSWORD});
-    var db = cloudant.db.use(dbName);
-    var p = db.get('mydoc', function(err, data) {
-      assert.equal(err, null);
-      data.should.be.an.Object;
-      data.should.have.property._id;
-      data.should.have.property._rev;
-      data.should.have.property.ok;
-
-      db.get('mydoc', function(err, data) {
-        assert.equal(err, null);
-        data.should.be.an.Object;
-        data.should.have.property._id;
-        data.should.have.property._rev;
-        data.should.have.property.ok;
-
-        // check that we use all the nocked API calls
-        mocks.done();
-        done();
-      });
-    });
-  });
-
-  it('should not authenticate without credentials', function(done) {
-    var mocks = nock(SERVER)
-        .get('/' + dbName + '/mydoc').reply(401, { error: 'unauthorized', reason: '_reader access is required for this request' });
-    var cloudant = Cloudant({plugins: 'cookieauth', url: SERVER});
-    var db = cloudant.db.use(dbName);
-    var p = db.get('mydoc', function(err, data) {
-      assert.equal(data, null);
-      err.should.be.an.Object;
-      err.should.have.property.error;
-      err.should.have.property.reason;
-
-      // check that we use all the nocked API calls
-      mocks.done();
-      done();
-    });
-  });
-
-  it('should work with asynchronous instantiation', function(done) {
-    if (process.env.NOCK_OFF) {
-      this.skip();
-    }
-    var mocks = nock(SERVER)
-        .post('/_session', {name: ME, password: PASSWORD})
-        .reply(401, {error: 'unauthorized', reason: 'Name or password is incorrect.'})
-        .get('/')
-        .reply(200, {couchdb: 'Welcome', version: '1.0.2', cloudant_build: '2488'});
-    var cloudant = Cloudant({plugins: 'cookieauth', url: SERVER, username: ME, password: PASSWORD}, function(err, cloudant, data) {
-      cloudant.should.be.an.Object;
-      data.should.be.an.Object.have.a.property('couchdb');
-      mocks.done();
-      done();
-    });
-  });
-
-  it('should work with asynchronous instantiation with no credentials', function(done) {
-    if (process.env.NOCK_OFF) {
-      this.skip();
-    }
-    var mocks = nock(SERVER)
-      .get('/')
-      .reply(200, { couchdb: 'Welcome', version: '1.0.2', cloudant_build: '2488' });
-    var cloudant = Cloudant({plugins: 'cookieauth', url: SERVER}, function(err, cloudant, data) {
-      cloudant.should.be.an.Object;
-      data.should.be.an.Object.have.a.property('couchdb');
-      mocks.done();
-      done();
-    });
-  });
-});
-
 describe('custom plugin #db', function() {
   before(onBefore);
   after(onAfter);
@@ -357,35 +221,71 @@ describe('custom plugin #db', function() {
       done();
     });
   });
+});
 
-  it('should allow custom plugins using asynchronous instantiation with invalid credentials', function(done) {
-    const badPass = 'bAD%%Pa$$w0rd123';
+describe('cookieauth plugin #db', function() {
+  before(onBefore);
+  after(onAfter);
 
+  it('should return a promise', function(done) {
     var mocks = nock(SERVER)
-        .post('/_session', { name: ME, password: badPass })
-        .reply(401, { error: 'unauthorized', reason: 'Name or password is incorrect.' })
-        .get('/')
-        .reply(401, { error: 'unauthorized', reason: 'Name or password is incorrect.' });
-
-    Cloudant({ plugins: defaultPlugin, url: SERVER, username: ME, password: badPass }, function(err, nano) {
-      assert.equal(err.error, 'unauthorized');
-      assert.equal(nano, null);
+        .post('/_session').reply(200, { ok: true })
+        .get('/' + dbName).reply(200, { ok: true });
+    var cloudant = Cloudant({plugins: 'cookieauth', url: SERVER, username: ME, password: PASSWORD});
+    var db = cloudant.db.use(dbName);
+    var p = db.info().then(function(data) {
+      data.should.be.an.Object;
+      // check that we use all the nocked API calls
       mocks.done();
       done();
     });
+    assert.equal(p instanceof Promise, true);
   });
 
-  it('should allow custom plugins using asynchronous instantiation with no credentials', function(done) {
+  it('should authenticate before attempting API call', function(done) {
     var mocks = nock(SERVER)
-        .get('/')
-        .reply(200, { couchdb: 'Welcome' });
-
-    Cloudant({ plugins: defaultPlugin, url: SERVER }, function(err, nano, pong) {
+        .post('/_session', {name: ME, password: PASSWORD}).reply(200, { ok: true, info: {}, userCtx: { name: ME, roles: ['_admin'] } })
+        .get('/' + dbName + '/mydoc').reply(200, { _id: 'mydoc', _rev: '1-123', ok: true });
+    var cloudant = Cloudant({plugins: 'cookieauth', url: SERVER, username: ME, password: PASSWORD});
+    var db = cloudant.db.use(dbName);
+    var p = db.get('mydoc', function(err, data) {
       assert.equal(err, null);
-      assert.notEqual(nano, null);
-      assert.equal(pong.couchdb, 'Welcome');
+      data.should.be.an.Object;
+      data.should.have.property._id;
+      data.should.have.property._rev;
+      data.should.have.property.ok;
+
+      // check that we use all the nocked API calls
       mocks.done();
       done();
     });
   });
+
+  it('should only authenticate once', function(done) {
+    var mocks = nock(SERVER)
+        .post('/_session', {name: ME, password: PASSWORD}).reply(200, { ok: true, info: {}, userCtx: { name: ME, roles: ['_admin'] } }, { 'Set-Cookie': 'AuthSession=xyz; Version=1; Path=/; HttpOnly' })
+        .get('/' + dbName + '/mydoc').reply(200, { _id: 'mydoc', _rev: '1-123', ok: true })
+        .get('/' + dbName + '/mydoc').reply(200, { _id: 'mydoc', _rev: '1-123', ok: true });
+    var cloudant = Cloudant({plugins: 'cookieauth', url: SERVER, username: ME, password: PASSWORD});
+    var db = cloudant.db.use(dbName);
+    var p = db.get('mydoc', function(err, data) {
+      assert.equal(err, null);
+      data.should.be.an.Object;
+      data.should.have.property._id;
+      data.should.have.property._rev;
+      data.should.have.property.ok;
+
+      db.get('mydoc', function(err, data) {
+        assert.equal(err, null);
+        data.should.be.an.Object;
+        data.should.have.property._id;
+        data.should.have.property._rev;
+        data.should.have.property.ok;
+
+        // check that we use all the nocked API calls
+        mocks.done();
+        done();
+      });
+    });
+  });
 });

test/legacy/readme-examples.js

@@ -34,6 +34,9 @@ var ME = process.env.cloudant_username || 'nodejs';
 var PASSWORD = process.env.cloudant_password || 'sjedon';
 var SERVER = process.env.SERVER_URL || 'https://' + ME + '.cloudant.com';
 
+const MOCK_COOKIE = 'AuthSession=Y2xbZWr0bQlpcc19ZQN8OeU4OWFCNYcZOxgdhy-QRDp4i6JQrfkForX5OU5P';
+const MOCK_SET_COOKIE_HEADER = { 'set-cookie': `${MOCK_COOKIE}; Version=1; Max-Age=86400; Path=/; HttpOnly` };
+
 var real_require = require;
 require = function(module) {
   return (module == '@cloudant/cloudant')
@@ -129,7 +132,7 @@ if (SERVER.endsWith('.cloudant.com')) {
     });
     before(function() {
       mocks = nock(SERVER)
-        .post('/_session').reply(200, {XXXXX: 'YYYYYYYYYY', ok: true, userCtx: {name: 'jhs', roles: []}})
+        .post('/_session').reply(200, {ok: true}, MOCK_SET_COOKIE_HEADER)
         .get('/').reply(200, {couchdb: 'Welcome', version: '1.0.2', cloudant_build: '2488'})
         .get('/animaldb/dog').reply(404, {error: 'not_found', reason: 'missing'});
     });
@@ -166,8 +169,8 @@ if (SERVER.endsWith('.cloudant.com')) {
         this.skip();
       }
       mocks = nock(SERVER)
-        .post('/_session').reply(200, {ok:true})
-        .get('/').reply(200, {couchdb: 'Welcome!!!!!', version: '1.0.2', cloudant_build: '2488'});
+        .post('/_session').reply(200, {ok: true}, MOCK_SET_COOKIE_HEADER)
+        .get('/').reply(200, {couchdb: 'Welcome', version: '1.0.2', cloudant_build: '2488'});
     });
 
     it('Example 1', function(done) {
@@ -515,7 +518,7 @@ if (SERVER.endsWith('.cloudant.com')) {
     });
     before(function(done) {
       mocks = nock(SERVER)
-        .post('/_session').reply(200, { ok: true, name: ME, roles: [] }, {'set-cookie': ['AuthSession=bm9kZWpzOjU1RTA1NDdEOsUsoq9lykQCEBhwTpIyEbgmYpvX; Version=1; Expires=Sat, 29 Aug 2015 12:30:53 GMT; Max-Age=86400; Path=/; HttpOnly; Secure']})
+        .post('/_session').reply(200, {ok: true}, MOCK_SET_COOKIE_HEADER)
         .put(`/${alice}`).reply(200, { ok: true })
         .post(`/${alice}`).reply(200, { ok: true, id: '72e0367f3e195340e239948164bbb7e7', rev: '1-feb5539029f4fc50dc3f827b164a2088' })
         .get('/_session').reply(200, {ok: true, userCtx: {name: ME, roles: ['_admin', '_reader', '_writer']}})