Zod parsing for registration response

allenzhou101 · allenzhou101 · commit aa5690b182ed · 2025-02-24T20:17:08.000-08:00
diff --git a/src/server/auth/proxyProvider.test.ts b/src/server/auth/proxyProvider.test.ts
@@ -64,6 +64,16 @@ describe("Proxy OAuth Server Provider", () => {
     });
   });
 
+  // Add helper function for failed responses
+  const mockFailedResponse = () => {
+    (global.fetch as jest.Mock).mockImplementation(() => 
+      Promise.resolve({
+        ok: false,
+        status: 400,
+      })
+    );
+  };
+
   afterEach(() => {
     global.fetch = originalFetch;
     jest.clearAllMocks();
@@ -178,13 +188,7 @@ describe("Proxy OAuth Server Provider", () => {
     });
 
     it("handles token exchange failure", async () => {
-      (global.fetch as jest.Mock).mockImplementation(() => 
-        Promise.resolve({
-          ok: false,
-          status: 400,
-        })
-      );
-
+      mockFailedResponse();
       await expect(
         provider.exchangeAuthorizationCode(validClient, "invalid-code")
       ).rejects.toThrow(ServerError);
@@ -221,13 +225,7 @@ describe("Proxy OAuth Server Provider", () => {
     });
 
     it("handles registration failure", async () => {
-      (global.fetch as jest.Mock).mockImplementation(() => 
-        Promise.resolve({
-          ok: false,
-          status: 400,
-        })
-      );
-
+      mockFailedResponse();
       const newClient: OAuthClientInformationFull = {
         client_id: "new-client",
         redirect_uris: ["https://new-client.com/callback"],
@@ -265,13 +263,7 @@ describe("Proxy OAuth Server Provider", () => {
     });
 
     it("handles revocation failure", async () => {
-      (global.fetch as jest.Mock).mockImplementation(() => 
-        Promise.resolve({
-          ok: false,
-          status: 400,
-        })
-      );
-
+      mockFailedResponse();
       await expect(
         provider.revokeToken!(validClient, {
           token: "invalid-token",
diff --git a/src/server/auth/proxyProvider.ts b/src/server/auth/proxyProvider.ts
@@ -2,6 +2,7 @@ import { Response } from "express";
 import { OAuthRegisteredClientsStore } from "./clients.js";
 import { 
   OAuthClientInformationFull, 
+  OAuthClientInformationFullSchema, 
   OAuthTokenRevocationRequest, 
   OAuthTokens,
   OAuthTokensSchema,
@@ -106,7 +107,8 @@ export class ProxyOAuthServerProvider implements OAuthServerProvider {
             throw new ServerError(`Client registration failed: ${response.status}`);
           }
 
-          return response.json();
+          const data = await response.json();
+          return OAuthClientInformationFullSchema.parse(data);
         }
       })
     }

Original file line number	Diff line number	Diff line change
`@@ -2,6 +2,7 @@ import { Response } from "express";`
`2`	`2`	`import { OAuthRegisteredClientsStore } from "./clients.js";`
`3`	`3`	`import {`
`4`	`4`	`OAuthClientInformationFull,`
	`5`	`+ OAuthClientInformationFullSchema,`
`5`	`6`	`OAuthTokenRevocationRequest,`
`6`	`7`	`OAuthTokens,`
`7`	`8`	`OAuthTokensSchema,`
`@@ -106,7 +107,8 @@ export class ProxyOAuthServerProvider implements OAuthServerProvider {`
`106`	`107`	throw new ServerError(`Client registration failed: ${response.status}`);
`107`	`108`	`}`
`108`	`109`
`109`		`- return response.json();`
	`110`	`+ const data = await response.json();`
	`111`	`+ return OAuthClientInformationFullSchema.parse(data);`
`110`	`112`	`}`
`111`	`113`	`})`
`112`	`114`	`}`