Merge pull request #94 from koajs/consistent-errors-100-percent-coverage

sdd · web-flow · commit 186016f7f767 · 2017-03-30T08:28:43.000+01:00
Consistent error messages, 100% coverage, misc tweaks
diff --git a/.gitignore b/.gitignore
@@ -3,3 +3,4 @@ node_modules/*
 npm-debug.log
 coverage
 .nyc_output
+.idea
diff --git a/lib/get-secret.js b/lib/get-secret.js
@@ -1,7 +1,12 @@
 const { decode } = require('jsonwebtoken');
 
 module.exports = async (provider, token) => {
-  const { header } = decode(token, { complete: true });
 
-  return provider(header);
-}
+  const decoded = decode(token, { complete: true });
+
+  if (!decoded || !decoded.header) {
+    throw new Error('Invalid token');
+  }
+
+  return provider(decoded.header);
+};
diff --git a/lib/index.js b/lib/index.js
@@ -19,38 +19,37 @@ module.exports = (opts = {}) => {
         tokenResolvers.find(resolver => token = resolver(ctx, opts));
 
         if (!token && !passthrough) {
-            ctx.throw(401, 'No authentication token found\n');
+            ctx.throw(401, debug ? 'Token not found' : 'Authentication Error');
         }
 
-        let { state: { secret = opts.secret } = {} } = ctx;
-        if (!secret) {
-            ctx.throw(401, 'Invalid secret\n');
-        }
+        let { state: { secret = opts.secret } } = ctx;
 
         try {
             if(typeof secret === 'function') {
               secret = await getSecret(secret, token);
             }
 
+            if (!secret) {
+                ctx.throw(401, 'Secret not provided');
+            }
+
             const decodedToken = await verify(token, secret, opts);
 
             if (isRevoked) {
                 const tokenRevoked = await isRevoked(ctx, decodedToken, token);
                 if (tokenRevoked) {
-                    throw new Error('Revoked token');
+                    throw new Error('Token revoked');
                 }
             }
 
-            ctx.state = ctx.state || {};
             ctx.state[key] = decodedToken;
             if (tokenKey) {
                 ctx.state[tokenKey] = token;
             }
 
         } catch (e) {
             if (!passthrough) {
-                const debugString = debug ? ` - ${e.message}` : '';
-                const msg = `Invalid token${debugString}\n`;
+                const msg = debug ? e.message : 'Authentication Error';
                 ctx.throw(401, msg);
             }
         }
diff --git a/lib/resolvers/auth-header.js b/lib/resolvers/auth-header.js
@@ -23,6 +23,6 @@ module.exports = function resolveAuthorizationHeader(ctx, opts) {
         }
     }
     if (!opts.passthrough) {
-        ctx.throw(401, 'Bad Authorization header format. Format is "Authorization: Bearer <token>"\n');
+        ctx.throw(401, 'Bad Authorization header format. Format is "Authorization: Bearer <token>"');
     }
 };
diff --git a/lib/resolvers/cookie.js b/lib/resolvers/cookie.js
@@ -9,4 +9,4 @@
  */
 module.exports = function resolveCookies(ctx, opts) {
     return opts.cookie && ctx.cookies.get(opts.cookie);
-}
+};
diff --git a/package.json b/package.json
@@ -53,6 +53,6 @@
   },
   "scripts": {
     "test": "nyc npm run test-only",
-    "test-only": "mocha --reporter spec --bail test/test.js"
+    "test-only": "mocha --reporter spec test/test.js"
   }
 }
diff --git a/test/test.js b/test/test.js

Original file line number	Diff line number	Diff line change
`@@ -23,6 +23,6 @@ module.exports = function resolveAuthorizationHeader(ctx, opts) {`
`23`	`23`	`}`
`24`	`24`	`}`
`25`	`25`	`if (!opts.passthrough) {`
`26`		`- ctx.throw(401, 'Bad Authorization header format. Format is "Authorization: Bearer <token>"\n');`
	`26`	`+ ctx.throw(401, 'Bad Authorization header format. Format is "Authorization: Bearer <token>"');`
`27`	`27`	`}`
`28`	`28`	`};`
Original file line number	Diff line number	Diff line change
`@@ -53,6 +53,6 @@`
`53`	`53`	`},`
`54`	`54`	`"scripts": {`
`55`	`55`	`"test": "nyc npm run test-only",`
`56`		`- "test-only": "mocha --reporter spec --bail test/test.js"`
	`56`	`+ "test-only": "mocha --reporter spec test/test.js"`
`57`	`57`	`}`
`58`	`58`	`}`