From 13e052e606a9e47934b9deeb10cec7272816b3e9 Mon Sep 17 00:00:00 2001 From: Sahil-SF <138437395+sf-sahil-jassal@users.noreply.github.com> Date: Wed, 17 Jan 2024 19:58:29 +0530 Subject: [PATCH] fix(component): make client password and bearer strategy as mandatory (#210) make client password strategy mandatory as it needs to be for any authentication by any strategy. Also, make bearer stratgey mandatory as everybody use it GH-209 --- docs/README.md | 2 - package.json | 12 +-- .../apple-oauth2.integration.ts | 26 +++---- .../bearer-token-verify.integration.ts | 73 ++++++++++++++----- .../client-password-verify.integration.ts | 67 ++++++++++++++--- .../cognito-oauth2.integration.ts | 26 +++---- .../google-oauth2.integration.ts | 26 +++---- .../instagram-oauth2.integration.ts | 26 +++---- .../passport-keycloak/keycloak.integration.ts | 26 +++---- .../local-passport.integration.ts | 24 ++---- .../resource-owner-password.integration.ts | 24 ++---- .../apple-oauth2.integration.ts | 28 +++---- .../bearer-token-verify.integration.ts | 73 ++++++++++++++----- .../client-password-verify.integration.ts | 67 ++++++++++++++--- .../cognito-oauth2.integration.ts | 24 ++---- .../google-oauth2.integration.ts | 26 +++---- .../instagram-oauth2.integration.ts | 26 +++---- .../passport-keycloak/keycloak.integration.ts | 26 +++---- .../local-passport.integration.ts | 24 ++---- .../resource-owner-password.integration.ts | 24 ++---- src/component.ts | 22 +++++- src/strategies/passport/index.ts | 2 + 22 files changed, 365 insertions(+), 309 deletions(-) diff --git a/docs/README.md b/docs/README.md index 700a32f..aecb047 100644 --- a/docs/README.md +++ b/docs/README.md @@ -87,7 +87,6 @@ Once this is done, you are ready to configure any of the available strategy in t ### Oauth2-client-password -In order to use it, run `npm install passport-oauth2-client-password`. First, create an AuthClient model implementing the IAuthClient interface. The purpose of this model is to store oauth registered clients for the app in the DB. See sample below. ```ts @@ -250,7 +249,6 @@ For accessing the authenticated AuthClient model reference, you can inject the C ### Http-bearer -In order to use it, run `npm install passport-http-bearer`. First, create a AuthUser model implementing the IAuthUser interface. You can implement the interface in the user model itself. See sample below. ```ts diff --git a/package.json b/package.json index 6954976..056eb1d 100644 --- a/package.json +++ b/package.json @@ -20,14 +20,6 @@ "type": "./dist/strategies/passport/passport-azure-ad/index.d.ts", "default": "./dist/strategies/passport/passport-azure-ad/index.js" }, - "./passport-bearer": { - "type": "./dist/strategies/passport/passport-bearer/index.d.ts", - "default": "./dist/strategies/passport/passport-bearer/index.js" - }, - "./passport-client-password": { - "type": "./dist/strategies/passport/passport-client-password/index.d.ts", - "default": "./dist/strategies/passport/passport-client-password/index.js" - }, "./passport-cognito-oauth2": { "type": "./dist/strategies/passport/passport-cognito-oauth2/index.d.ts", "default": "./dist/strategies/passport/passport-cognito-oauth2/index.js" @@ -157,6 +149,8 @@ "https-proxy-agent": "^5.0.0", "jsonwebtoken": "^9.0.0", "passport": "^0.6.0", + "passport-http-bearer": "^1.0.1", + "passport-oauth2-client-password": "^0.1.2", "tslib": "^2.0.0" }, "devDependencies": { @@ -208,11 +202,9 @@ "passport-cognito-oauth2": "^0.1.1", "passport-facebook": "^3.0.0", "passport-google-oauth20": "^2.0.0", - "passport-http-bearer": "^1.0.1", "passport-instagram": "^1.0.0", "passport-local": "^1.0.0", "passport-oauth2": "^1.6.1", - "passport-oauth2-client-password": "^0.1.2", "@exlinc/keycloak-passport": "^1.0.2" }, "publishConfig": { diff --git a/src/__tests__/integration/action-sequence/passport-apple-oauth2/apple-oauth2.integration.ts b/src/__tests__/integration/action-sequence/passport-apple-oauth2/apple-oauth2.integration.ts index 69acbdf..a110560 100644 --- a/src/__tests__/integration/action-sequence/passport-apple-oauth2/apple-oauth2.integration.ts +++ b/src/__tests__/integration/action-sequence/passport-apple-oauth2/apple-oauth2.integration.ts @@ -1,18 +1,16 @@ -import {Client, createClientForHandler} from '@loopback/testlab'; -import {RestServer, Request} from '@loopback/rest'; -import {Application, Constructor, Provider} from '@loopback/core'; +import {Application, Provider} from '@loopback/core'; import {get} from '@loopback/openapi-v3'; +import {Request, RestServer} from '@loopback/rest'; +import {Client, createClientForHandler} from '@loopback/testlab'; +import AppleStrategy, {DecodedIdToken} from 'passport-apple'; import {authenticate} from '../../../../decorators'; -import {STRATEGY} from '../../../../strategy-name.enum'; -import {getApp} from '../helpers/helpers'; -import {MyAuthenticationSequence} from '../../../fixtures/sequences/authentication.sequence'; -import {Strategies} from '../../../../strategies/keys'; import {VerifyFunction} from '../../../../strategies'; -import {userWithoutReqObj} from '../../../fixtures/data/bearer-data'; -import AppleStrategy, {DecodedIdToken} from 'passport-apple'; +import {Strategies} from '../../../../strategies/keys'; import {AppleAuthStrategyFactoryProvider} from '../../../../strategies/passport/passport-apple-oauth2'; -import {ClientPasswordVerifyProvider} from '../../../fixtures/providers/passport-client.provider'; -import {ClientPasswordStrategyFactoryProvider} from '../../../../strategies/passport/passport-client-password'; +import {STRATEGY} from '../../../../strategy-name.enum'; +import {userWithoutReqObj} from '../../../fixtures/data/bearer-data'; +import {MyAuthenticationSequence} from '../../../fixtures/sequences/authentication.sequence'; +import {getApp} from '../helpers/helpers'; describe('getting apple oauth2 strategy with options', () => { let app: Application; @@ -51,12 +49,6 @@ describe('getting apple oauth2 strategy with options', () => { } function getAuthVerifier() { - app - .bind(Strategies.Passport.OAUTH2_CLIENT_PASSWORD_VERIFIER) - .toProvider(ClientPasswordVerifyProvider); - app - .bind(Strategies.Passport.CLIENT_PASSWORD_STRATEGY_FACTORY) - .toProvider(ClientPasswordStrategyFactoryProvider); app .bind(Strategies.Passport.APPLE_OAUTH2_STRATEGY_FACTORY) .toProvider(AppleAuthStrategyFactoryProvider); diff --git a/src/__tests__/integration/action-sequence/passport-bearer/bearer-token-verify.integration.ts b/src/__tests__/integration/action-sequence/passport-bearer/bearer-token-verify.integration.ts index c8de2dd..da5f0f0 100644 --- a/src/__tests__/integration/action-sequence/passport-bearer/bearer-token-verify.integration.ts +++ b/src/__tests__/integration/action-sequence/passport-bearer/bearer-token-verify.integration.ts @@ -1,18 +1,15 @@ -import {IAuthUser} from '../../../../types'; -import {expect, Client, createClientForHandler} from '@loopback/testlab'; -import {RestServer} from '@loopback/rest'; import {Application, inject} from '@loopback/core'; import {get} from '@loopback/openapi-v3'; +import {RestServer} from '@loopback/rest'; +import {Client, createClientForHandler, expect} from '@loopback/testlab'; import {authenticate} from '../../../../decorators'; -import {STRATEGY} from '../../../../strategy-name.enum'; -import {getApp} from '../helpers/helpers'; -import {MyAuthenticationSequence} from '../../../fixtures/sequences/authentication.sequence'; -import {Strategies} from '../../../../strategies/keys'; import {AuthenticationBindings} from '../../../../keys'; +import {Strategies} from '../../../../strategies/keys'; +import {STRATEGY} from '../../../../strategy-name.enum'; +import {IAuthUser} from '../../../../types'; import {BearerTokenVerifyProvider} from '../../../fixtures/providers/bearer-passport.provider'; -import {BearerStrategyFactoryProvider} from '../../../../strategies/passport/passport-bearer'; -import {ClientPasswordVerifyProvider} from '../../../fixtures/providers/passport-client.provider'; -import {ClientPasswordStrategyFactoryProvider} from '../../../../strategies/passport/passport-client-password'; +import {MyAuthenticationSequence} from '../../../fixtures/sequences/authentication.sequence'; +import {getApp} from '../helpers/helpers'; /** * Testing overall flow of authentication with bearer strategy @@ -242,15 +239,53 @@ describe('Bearer-token strategy', () => { app .bind(Strategies.Passport.BEARER_TOKEN_VERIFIER) .toProvider(BearerTokenVerifyProvider); - app - .bind(Strategies.Passport.BEARER_STRATEGY_FACTORY) - .toProvider(BearerStrategyFactoryProvider); - app - .bind(Strategies.Passport.OAUTH2_CLIENT_PASSWORD_VERIFIER) - .toProvider(ClientPasswordVerifyProvider); - app - .bind(Strategies.Passport.CLIENT_PASSWORD_STRATEGY_FACTORY) - .toProvider(ClientPasswordStrategyFactoryProvider); + } + + function givenAuthenticatedSequence() { + // bind user defined sequence + server.sequence(MyAuthenticationSequence); + } +}); + +describe('integration test when no provider was implemented', () => { + let app: Application; + let server: RestServer; + beforeEach(givenAServer); + beforeEach(givenAuthenticatedSequence); + + it('should return error as the verifier is not implemented', async () => { + class BearerNoVerifierController { + constructor( + @inject(AuthenticationBindings.CURRENT_USER) // tslint:disable-next-line: no-shadowed-variable + private readonly user: IAuthUser | undefined, + ) {} + + options = { + passRequestToCallback: false, + }; + + @get('/auth/bearer/no-verifier') + @authenticate(STRATEGY.BEARER, {passReqToCallback: false}) + async test() { + return this.user; + } + } + + app.controller(BearerNoVerifierController); + + await whenIMakeRequestTo(server) + .get('/auth/bearer/no-verifier') + .set('Authorization', 'Bearer sometoken') + .expect(401); + }); + + function whenIMakeRequestTo(restServer: RestServer): Client { + return createClientForHandler(restServer.requestHandler); + } + + async function givenAServer() { + app = getApp(); + server = await app.getServer(RestServer); } function givenAuthenticatedSequence() { diff --git a/src/__tests__/integration/action-sequence/passport-client-password/client-password-verify.integration.ts b/src/__tests__/integration/action-sequence/passport-client-password/client-password-verify.integration.ts index 4673c1e..48778a8 100644 --- a/src/__tests__/integration/action-sequence/passport-client-password/client-password-verify.integration.ts +++ b/src/__tests__/integration/action-sequence/passport-client-password/client-password-verify.integration.ts @@ -1,18 +1,17 @@ /* eslint-disable @typescript-eslint/naming-convention */ -import {IAuthClient} from '../../../../types'; -import {Client, createClientForHandler, expect} from '@loopback/testlab'; -import {RestServer} from '@loopback/rest'; import {Application, inject} from '@loopback/core'; import {post, requestBody} from '@loopback/openapi-v3'; +import {RestServer} from '@loopback/rest'; +import {Client, createClientForHandler, expect} from '@loopback/testlab'; import {authenticateClient} from '../../../../decorators'; -import {STRATEGY} from '../../../../strategy-name.enum'; -import {getApp} from '../helpers/helpers'; -import {MyAuthenticationSequence} from '../../../fixtures/sequences/authentication.sequence'; -import {Strategies} from '../../../../strategies/keys'; import {AuthenticationBindings} from '../../../../keys'; +import {Strategies} from '../../../../strategies/keys'; +import {STRATEGY} from '../../../../strategy-name.enum'; +import {IAuthClient} from '../../../../types'; import {ClientPasswordVerifyProvider} from '../../../fixtures/providers/passport-client.provider'; -import {ClientPasswordStrategyFactoryProvider} from '../../../../strategies/passport/passport-client-password'; +import {MyAuthenticationSequence} from '../../../fixtures/sequences/authentication.sequence'; +import {getApp} from '../helpers/helpers'; describe('Client-password strategy', () => { let app: Application; @@ -144,9 +143,55 @@ describe('Client-password strategy', () => { app .bind(Strategies.Passport.OAUTH2_CLIENT_PASSWORD_VERIFIER) .toProvider(ClientPasswordVerifyProvider); - app - .bind(Strategies.Passport.CLIENT_PASSWORD_STRATEGY_FACTORY) - .toProvider(ClientPasswordStrategyFactoryProvider); + } + + function givenAuthenticatedSequence() { + // bind user defined sequence + server.sequence(MyAuthenticationSequence); + } +}); + +describe('integration test for client-password and no verifier', () => { + let app: Application; + let server: RestServer; + beforeEach(givenAServer); + beforeEach(givenAuthenticatedSequence); + + it('should return status 401 as this strategy is not implemented', async () => { + class TestController { + constructor( + @inject(AuthenticationBindings.CURRENT_CLIENT) // tslint:disable-next-line: no-shadowed-variable + private readonly client: IAuthClient | undefined, + ) {} + + @post('/test') + @authenticateClient(STRATEGY.CLIENT_PASSWORD, {passReqToCallback: true}) + test( + @requestBody() + body: { + client_id: string; + client_secret: string; + }, + ) { + return this.client; + } + } + + app.controller(TestController); + + await whenIMakeRequestTo(server) + .post('/test') + .send({client_id: 'some id', client_secret: 'some secret'}) + .expect(401); + }); + + function whenIMakeRequestTo(restServer: RestServer): Client { + return createClientForHandler(restServer.requestHandler); + } + + async function givenAServer() { + app = getApp(); + server = await app.getServer(RestServer); } function givenAuthenticatedSequence() { diff --git a/src/__tests__/integration/action-sequence/passport-cognito-oauth2/cognito-oauth2.integration.ts b/src/__tests__/integration/action-sequence/passport-cognito-oauth2/cognito-oauth2.integration.ts index 6297b77..77a42cb 100644 --- a/src/__tests__/integration/action-sequence/passport-cognito-oauth2/cognito-oauth2.integration.ts +++ b/src/__tests__/integration/action-sequence/passport-cognito-oauth2/cognito-oauth2.integration.ts @@ -1,18 +1,16 @@ -import {Client, createClientForHandler} from '@loopback/testlab'; -import {RestServer, Request} from '@loopback/rest'; -import {Application, Constructor, Provider} from '@loopback/core'; +import {Application, Provider} from '@loopback/core'; import {get} from '@loopback/openapi-v3'; +import {Request, RestServer} from '@loopback/rest'; +import {Client, createClientForHandler} from '@loopback/testlab'; import {authenticate} from '../../../../decorators'; -import {STRATEGY} from '../../../../strategy-name.enum'; -import {getApp} from '../helpers/helpers'; -import {MyAuthenticationSequence} from '../../../fixtures/sequences/authentication.sequence'; -import {Strategies} from '../../../../strategies/keys'; import {VerifyFunction} from '../../../../strategies'; -import {userWithoutReqObj} from '../../../fixtures/data/bearer-data'; -import {Cognito} from '../../../../types'; +import {Strategies} from '../../../../strategies/keys'; import {CognitoStrategyFactoryProvider} from '../../../../strategies/passport/passport-cognito-oauth2'; -import {ClientPasswordVerifyProvider} from '../../../fixtures/providers/passport-client.provider'; -import {ClientPasswordStrategyFactoryProvider} from '../../../../strategies/passport/passport-client-password'; +import {STRATEGY} from '../../../../strategy-name.enum'; +import {Cognito} from '../../../../types'; +import {userWithoutReqObj} from '../../../fixtures/data/bearer-data'; +import {MyAuthenticationSequence} from '../../../fixtures/sequences/authentication.sequence'; +import {getApp} from '../helpers/helpers'; describe('getting cognito oauth2 strategy with options', () => { let app: Application; @@ -49,12 +47,6 @@ describe('getting cognito oauth2 strategy with options', () => { } function getAuthVerifier() { - app - .bind(Strategies.Passport.OAUTH2_CLIENT_PASSWORD_VERIFIER) - .toProvider(ClientPasswordVerifyProvider); - app - .bind(Strategies.Passport.CLIENT_PASSWORD_STRATEGY_FACTORY) - .toProvider(ClientPasswordStrategyFactoryProvider); app .bind(Strategies.Passport.COGNITO_OAUTH2_VERIFIER) .toProvider(CognitoAuthVerifyProvider); diff --git a/src/__tests__/integration/action-sequence/passport-google-oauth2/google-oauth2.integration.ts b/src/__tests__/integration/action-sequence/passport-google-oauth2/google-oauth2.integration.ts index cca83aa..501eba7 100644 --- a/src/__tests__/integration/action-sequence/passport-google-oauth2/google-oauth2.integration.ts +++ b/src/__tests__/integration/action-sequence/passport-google-oauth2/google-oauth2.integration.ts @@ -1,18 +1,16 @@ -import {Client, createClientForHandler} from '@loopback/testlab'; -import {RestServer, Request} from '@loopback/rest'; -import {Application, Constructor, Provider} from '@loopback/core'; +import {Application, Provider} from '@loopback/core'; import {get} from '@loopback/openapi-v3'; +import {Request, RestServer} from '@loopback/rest'; +import {Client, createClientForHandler} from '@loopback/testlab'; +import * as GoogleStrategy from 'passport-google-oauth20'; import {authenticate} from '../../../../decorators'; -import {STRATEGY} from '../../../../strategy-name.enum'; -import {getApp} from '../helpers/helpers'; -import {MyAuthenticationSequence} from '../../../fixtures/sequences/authentication.sequence'; -import {Strategies} from '../../../../strategies/keys'; import {VerifyFunction} from '../../../../strategies'; -import {userWithoutReqObj} from '../../../fixtures/data/bearer-data'; -import * as GoogleStrategy from 'passport-google-oauth20'; +import {Strategies} from '../../../../strategies/keys'; import {GoogleAuthStrategyFactoryProvider} from '../../../../strategies/passport/passport-google-oauth2'; -import {ClientPasswordVerifyProvider} from '../../../fixtures/providers/passport-client.provider'; -import {ClientPasswordStrategyFactoryProvider} from '../../../../strategies/passport/passport-client-password'; +import {STRATEGY} from '../../../../strategy-name.enum'; +import {userWithoutReqObj} from '../../../fixtures/data/bearer-data'; +import {MyAuthenticationSequence} from '../../../fixtures/sequences/authentication.sequence'; +import {getApp} from '../helpers/helpers'; describe('getting google oauth2 strategy with options', () => { let app: Application; @@ -49,12 +47,6 @@ describe('getting google oauth2 strategy with options', () => { } function getAuthVerifier() { - app - .bind(Strategies.Passport.OAUTH2_CLIENT_PASSWORD_VERIFIER) - .toProvider(ClientPasswordVerifyProvider); - app - .bind(Strategies.Passport.CLIENT_PASSWORD_STRATEGY_FACTORY) - .toProvider(ClientPasswordStrategyFactoryProvider); app .bind(Strategies.Passport.GOOGLE_OAUTH2_VERIFIER) .toProvider(GoogleAuthVerifyProvider); diff --git a/src/__tests__/integration/action-sequence/passport-instagram-oauth2/instagram-oauth2.integration.ts b/src/__tests__/integration/action-sequence/passport-instagram-oauth2/instagram-oauth2.integration.ts index 13d4ee5..02c934b 100644 --- a/src/__tests__/integration/action-sequence/passport-instagram-oauth2/instagram-oauth2.integration.ts +++ b/src/__tests__/integration/action-sequence/passport-instagram-oauth2/instagram-oauth2.integration.ts @@ -1,18 +1,16 @@ -import {Client, createClientForHandler} from '@loopback/testlab'; -import {RestServer, Request} from '@loopback/rest'; -import {Application, Constructor, Provider} from '@loopback/core'; +import {Application, Provider} from '@loopback/core'; import {get} from '@loopback/openapi-v3'; +import {Request, RestServer} from '@loopback/rest'; +import {Client, createClientForHandler} from '@loopback/testlab'; +import * as InstagramStrategy from 'passport-instagram'; import {authenticate} from '../../../../decorators'; -import {STRATEGY} from '../../../../strategy-name.enum'; -import {getApp} from '../helpers/helpers'; -import {MyAuthenticationSequence} from '../../../fixtures/sequences/authentication.sequence'; -import {Strategies} from '../../../../strategies/keys'; import {VerifyCallback, VerifyFunction} from '../../../../strategies'; -import {userWithoutReqObj} from '../../../fixtures/data/bearer-data'; -import * as InstagramStrategy from 'passport-instagram'; +import {Strategies} from '../../../../strategies/keys'; import {InstagramAuthStrategyFactoryProvider} from '../../../../strategies/passport/passport-insta-oauth2'; -import {ClientPasswordVerifyProvider} from '../../../fixtures/providers/passport-client.provider'; -import {ClientPasswordStrategyFactoryProvider} from '../../../../strategies/passport/passport-client-password'; +import {STRATEGY} from '../../../../strategy-name.enum'; +import {userWithoutReqObj} from '../../../fixtures/data/bearer-data'; +import {MyAuthenticationSequence} from '../../../fixtures/sequences/authentication.sequence'; +import {getApp} from '../helpers/helpers'; describe('getting instagram oauth2 strategy with options', () => { let app: Application; @@ -49,12 +47,6 @@ describe('getting instagram oauth2 strategy with options', () => { } function getAuthVerifier() { - app - .bind(Strategies.Passport.OAUTH2_CLIENT_PASSWORD_VERIFIER) - .toProvider(ClientPasswordVerifyProvider); - app - .bind(Strategies.Passport.CLIENT_PASSWORD_STRATEGY_FACTORY) - .toProvider(ClientPasswordStrategyFactoryProvider); app .bind(Strategies.Passport.INSTAGRAM_OAUTH2_STRATEGY_FACTORY) .toProvider(InstagramAuthStrategyFactoryProvider); diff --git a/src/__tests__/integration/action-sequence/passport-keycloak/keycloak.integration.ts b/src/__tests__/integration/action-sequence/passport-keycloak/keycloak.integration.ts index b8a508f..0dad0a7 100644 --- a/src/__tests__/integration/action-sequence/passport-keycloak/keycloak.integration.ts +++ b/src/__tests__/integration/action-sequence/passport-keycloak/keycloak.integration.ts @@ -1,18 +1,16 @@ -import {Client, createClientForHandler} from '@loopback/testlab'; -import {RestServer, Request} from '@loopback/rest'; -import {Application, Constructor, Provider} from '@loopback/core'; +import {Application, Provider} from '@loopback/core'; import {get} from '@loopback/openapi-v3'; +import {Request, RestServer} from '@loopback/rest'; +import {Client, createClientForHandler} from '@loopback/testlab'; import {authenticate} from '../../../../decorators'; -import {STRATEGY} from '../../../../strategy-name.enum'; -import {getApp} from '../helpers/helpers'; -import {MyAuthenticationSequence} from '../../../fixtures/sequences/authentication.sequence'; -import {Strategies} from '../../../../strategies/keys'; import {Keycloak, VerifyFunction} from '../../../../strategies'; -import {userWithoutReqObj} from '../../../fixtures/data/bearer-data'; -import {IAuthUser} from '../../../../types'; +import {Strategies} from '../../../../strategies/keys'; import {KeycloakStrategyFactoryProvider} from '../../../../strategies/passport/passport-keycloak'; -import {ClientPasswordVerifyProvider} from '../../../fixtures/providers/passport-client.provider'; -import {ClientPasswordStrategyFactoryProvider} from '../../../../strategies/passport/passport-client-password'; +import {STRATEGY} from '../../../../strategy-name.enum'; +import {IAuthUser} from '../../../../types'; +import {userWithoutReqObj} from '../../../fixtures/data/bearer-data'; +import {MyAuthenticationSequence} from '../../../fixtures/sequences/authentication.sequence'; +import {getApp} from '../helpers/helpers'; describe('getting keycloak oauth2 strategy with options', () => { let app: Application; @@ -55,12 +53,6 @@ describe('getting keycloak oauth2 strategy with options', () => { } function getAuthVerifier() { - app - .bind(Strategies.Passport.OAUTH2_CLIENT_PASSWORD_VERIFIER) - .toProvider(ClientPasswordVerifyProvider); - app - .bind(Strategies.Passport.CLIENT_PASSWORD_STRATEGY_FACTORY) - .toProvider(ClientPasswordStrategyFactoryProvider); app .bind(Strategies.Passport.KEYCLOAK_VERIFIER) .toProvider(KeycloakAuthVerifyProvider); diff --git a/src/__tests__/integration/action-sequence/passport-local/local-passport.integration.ts b/src/__tests__/integration/action-sequence/passport-local/local-passport.integration.ts index 16b543d..2ec3d8d 100644 --- a/src/__tests__/integration/action-sequence/passport-local/local-passport.integration.ts +++ b/src/__tests__/integration/action-sequence/passport-local/local-passport.integration.ts @@ -1,19 +1,17 @@ -import {Client, createClientForHandler, expect} from '@loopback/testlab'; -import {RestServer} from '@loopback/rest'; import {Application, inject} from '@loopback/core'; import {post, requestBody} from '@loopback/openapi-v3'; +import {RestServer} from '@loopback/rest'; +import {Client, createClientForHandler, expect} from '@loopback/testlab'; import {authenticate} from '../../../../decorators'; -import {STRATEGY} from '../../../../strategy-name.enum'; -import {getApp} from '../helpers/helpers'; -import {MyAuthenticationSequence} from '../../../fixtures/sequences/authentication.sequence'; -import {Strategies} from '../../../../strategies/keys'; -import {LocalVerifyProvider} from '../../../fixtures/providers/local-password.provider'; import {AuthenticationBindings} from '../../../../keys'; +import {Strategies} from '../../../../strategies/keys'; +import {LocalPasswordStrategyFactoryProvider} from '../../../../strategies/passport/passport-local'; +import {STRATEGY} from '../../../../strategy-name.enum'; import {IAuthUser} from '../../../../types'; +import {LocalVerifyProvider} from '../../../fixtures/providers/local-password.provider'; +import {MyAuthenticationSequence} from '../../../fixtures/sequences/authentication.sequence'; import {UserCred} from '../../../fixtures/user-cred.model'; -import {LocalPasswordStrategyFactoryProvider} from '../../../../strategies/passport/passport-local'; -import {ClientPasswordStrategyFactoryProvider} from '../../../../strategies/passport/passport-client-password'; -import {ClientPasswordVerifyProvider} from '../../../fixtures/providers/passport-client.provider'; +import {getApp} from '../helpers/helpers'; /** * Testing overall flow of authentication with bearer strategy */ @@ -179,12 +177,6 @@ describe('Local passport strategy', () => { app .bind(Strategies.Passport.LOCAL_STRATEGY_FACTORY) .toProvider(LocalPasswordStrategyFactoryProvider); - app - .bind(Strategies.Passport.OAUTH2_CLIENT_PASSWORD_VERIFIER) - .toProvider(ClientPasswordVerifyProvider); - app - .bind(Strategies.Passport.CLIENT_PASSWORD_STRATEGY_FACTORY) - .toProvider(ClientPasswordStrategyFactoryProvider); } function givenAuthenticatedSequence() { diff --git a/src/__tests__/integration/action-sequence/passport-resource-owner-password/resource-owner-password.integration.ts b/src/__tests__/integration/action-sequence/passport-resource-owner-password/resource-owner-password.integration.ts index 592d1d5..62bf8f5 100644 --- a/src/__tests__/integration/action-sequence/passport-resource-owner-password/resource-owner-password.integration.ts +++ b/src/__tests__/integration/action-sequence/passport-resource-owner-password/resource-owner-password.integration.ts @@ -1,20 +1,18 @@ /* eslint-disable @typescript-eslint/naming-convention */ -import {Client, createClientForHandler, expect} from '@loopback/testlab'; -import {RestServer} from '@loopback/rest'; import {Application, inject} from '@loopback/core'; import {post, requestBody} from '@loopback/openapi-v3'; +import {RestServer} from '@loopback/rest'; +import {Client, createClientForHandler, expect} from '@loopback/testlab'; import {authenticate} from '../../../../decorators'; -import {STRATEGY} from '../../../../strategy-name.enum'; -import {getApp} from '../helpers/helpers'; -import {MyAuthenticationSequence} from '../../../fixtures/sequences/authentication.sequence'; -import {Strategies} from '../../../../strategies/keys'; -import {ResourceOwnerVerifyProvider} from '../../../fixtures/providers/resource-owner.provider'; import {AuthenticationBindings} from '../../../../keys'; -import {IAuthUser} from '../../../../types'; +import {Strategies} from '../../../../strategies/keys'; import {ResourceOwnerPasswordStrategyFactoryProvider} from '../../../../strategies/passport/passport-resource-owner-password'; -import {ClientPasswordVerifyProvider} from '../../../fixtures/providers/passport-client.provider'; -import {ClientPasswordStrategyFactoryProvider} from '../../../../strategies/passport/passport-client-password'; +import {STRATEGY} from '../../../../strategy-name.enum'; +import {IAuthUser} from '../../../../types'; +import {ResourceOwnerVerifyProvider} from '../../../fixtures/providers/resource-owner.provider'; +import {MyAuthenticationSequence} from '../../../fixtures/sequences/authentication.sequence'; +import {getApp} from '../helpers/helpers'; describe('Resource-owner-password strategy', () => { let app: Application; @@ -210,12 +208,6 @@ describe('Resource-owner-password strategy', () => { app .bind(Strategies.Passport.RESOURCE_OWNER_STRATEGY_FACTORY) .toProvider(ResourceOwnerPasswordStrategyFactoryProvider); - app - .bind(Strategies.Passport.OAUTH2_CLIENT_PASSWORD_VERIFIER) - .toProvider(ClientPasswordVerifyProvider); - app - .bind(Strategies.Passport.CLIENT_PASSWORD_STRATEGY_FACTORY) - .toProvider(ClientPasswordStrategyFactoryProvider); } function givenAuthenticatedSequence() { diff --git a/src/__tests__/integration/middleware-sequence/passport-apple-oauth2/apple-oauth2.integration.ts b/src/__tests__/integration/middleware-sequence/passport-apple-oauth2/apple-oauth2.integration.ts index 7c4e128..58ce04d 100644 --- a/src/__tests__/integration/middleware-sequence/passport-apple-oauth2/apple-oauth2.integration.ts +++ b/src/__tests__/integration/middleware-sequence/passport-apple-oauth2/apple-oauth2.integration.ts @@ -1,20 +1,16 @@ -import {Client, createClientForHandler} from '@loopback/testlab'; -import {RestServer, Request} from '@loopback/rest'; -import {Application, Constructor, Provider} from '@loopback/core'; +import {Application, Provider} from '@loopback/core'; import {get} from '@loopback/openapi-v3'; +import {Request, RestServer} from '@loopback/rest'; +import {Client, createClientForHandler} from '@loopback/testlab'; +import AppleStrategy, {DecodedIdToken} from 'passport-apple'; import {authenticate} from '../../../../decorators'; -import {STRATEGY} from '../../../../strategy-name.enum'; -import {getApp} from '../helpers/helpers'; -import {MyAuthenticationMiddlewareSequence} from '../../../fixtures/sequences/authentication-middleware.sequence'; -import {Strategies} from '../../../../strategies/keys'; import {VerifyFunction} from '../../../../strategies'; -import {userWithoutReqObj} from '../../../fixtures/data/bearer-data'; -import AppleStrategy, {DecodedIdToken} from 'passport-apple'; +import {Strategies} from '../../../../strategies/keys'; import {AppleAuthStrategyFactoryProvider} from '../../../../strategies/passport/passport-apple-oauth2'; -import { - ClientPasswordStrategyFactoryProvider, - ClientPasswordVerifyProvider, -} from '../../../../strategies/passport/passport-client-password'; +import {STRATEGY} from '../../../../strategy-name.enum'; +import {userWithoutReqObj} from '../../../fixtures/data/bearer-data'; +import {MyAuthenticationMiddlewareSequence} from '../../../fixtures/sequences/authentication-middleware.sequence'; +import {getApp} from '../helpers/helpers'; describe('getting apple oauth2 strategy with options using Middleware Sequence', () => { let app: Application; @@ -53,12 +49,6 @@ describe('getting apple oauth2 strategy with options using Middleware Sequence', } function getAuthVerifier() { - app - .bind(Strategies.Passport.OAUTH2_CLIENT_PASSWORD_VERIFIER) - .toProvider(ClientPasswordVerifyProvider); - app - .bind(Strategies.Passport.CLIENT_PASSWORD_STRATEGY_FACTORY) - .toProvider(ClientPasswordStrategyFactoryProvider); app .bind(Strategies.Passport.APPLE_OAUTH2_STRATEGY_FACTORY) .toProvider(AppleAuthStrategyFactoryProvider); diff --git a/src/__tests__/integration/middleware-sequence/passport-bearer/bearer-token-verify.integration.ts b/src/__tests__/integration/middleware-sequence/passport-bearer/bearer-token-verify.integration.ts index 9666415..bc2383e 100644 --- a/src/__tests__/integration/middleware-sequence/passport-bearer/bearer-token-verify.integration.ts +++ b/src/__tests__/integration/middleware-sequence/passport-bearer/bearer-token-verify.integration.ts @@ -1,18 +1,15 @@ -import {IAuthUser} from '../../../../types'; -import {expect, Client, createClientForHandler} from '@loopback/testlab'; -import {RestServer} from '@loopback/rest'; import {Application, inject} from '@loopback/core'; import {get} from '@loopback/openapi-v3'; +import {RestServer} from '@loopback/rest'; +import {Client, createClientForHandler, expect} from '@loopback/testlab'; import {authenticate} from '../../../../decorators'; -import {STRATEGY} from '../../../../strategy-name.enum'; -import {getApp} from '../helpers/helpers'; -import {MyAuthenticationMiddlewareSequence} from '../../../fixtures/sequences/authentication-middleware.sequence'; -import {Strategies} from '../../../../strategies/keys'; import {AuthenticationBindings} from '../../../../keys'; +import {Strategies} from '../../../../strategies/keys'; +import {STRATEGY} from '../../../../strategy-name.enum'; +import {IAuthUser} from '../../../../types'; import {BearerTokenVerifyProvider} from '../../../fixtures/providers/bearer-passport.provider'; -import {BearerStrategyFactoryProvider} from '../../../../strategies/passport/passport-bearer'; -import {ClientPasswordVerifyProvider} from '../../../fixtures/providers/passport-client.provider'; -import {ClientPasswordStrategyFactoryProvider} from '../../../../strategies/passport/passport-client-password'; +import {MyAuthenticationMiddlewareSequence} from '../../../fixtures/sequences/authentication-middleware.sequence'; +import {getApp} from '../helpers/helpers'; /** * Testing overall flow of authentication with bearer strategy @@ -242,15 +239,53 @@ describe('Bearer-token strategy using Middleware Sequence', () => { app .bind(Strategies.Passport.BEARER_TOKEN_VERIFIER) .toProvider(BearerTokenVerifyProvider); - app - .bind(Strategies.Passport.BEARER_STRATEGY_FACTORY) - .toProvider(BearerStrategyFactoryProvider); - app - .bind(Strategies.Passport.OAUTH2_CLIENT_PASSWORD_VERIFIER) - .toProvider(ClientPasswordVerifyProvider); - app - .bind(Strategies.Passport.CLIENT_PASSWORD_STRATEGY_FACTORY) - .toProvider(ClientPasswordStrategyFactoryProvider); + } + + function givenAuthenticatedSequence() { + // bind user defined sequence + server.sequence(MyAuthenticationMiddlewareSequence); + } +}); + +describe('integration test when no provider was implemented using Middleware Sequence', () => { + let app: Application; + let server: RestServer; + beforeEach(givenAServer); + beforeEach(givenAuthenticatedSequence); + + it('should return error as the verifier is not implemented', async () => { + class BearerNoVerifierController { + constructor( + @inject(AuthenticationBindings.CURRENT_USER) // tslint:disable-next-line: no-shadowed-variable + private readonly user: IAuthUser | undefined, + ) {} + + options = { + passRequestToCallback: false, + }; + + @get('/auth/bearer/no-verifier') + @authenticate(STRATEGY.BEARER, {passReqToCallback: false}) + async test() { + return this.user; + } + } + + app.controller(BearerNoVerifierController); + + await whenIMakeRequestTo(server) + .get('/auth/bearer/no-verifier') + .set('Authorization', 'Bearer sometoken') + .expect(401); + }); + + function whenIMakeRequestTo(restServer: RestServer): Client { + return createClientForHandler(restServer.requestHandler); + } + + async function givenAServer() { + app = getApp(); + server = await app.getServer(RestServer); } function givenAuthenticatedSequence() { diff --git a/src/__tests__/integration/middleware-sequence/passport-client-password/client-password-verify.integration.ts b/src/__tests__/integration/middleware-sequence/passport-client-password/client-password-verify.integration.ts index e1f752b..683a732 100644 --- a/src/__tests__/integration/middleware-sequence/passport-client-password/client-password-verify.integration.ts +++ b/src/__tests__/integration/middleware-sequence/passport-client-password/client-password-verify.integration.ts @@ -1,18 +1,17 @@ /* eslint-disable @typescript-eslint/naming-convention */ -import {IAuthClient} from '../../../../types'; -import {Client, createClientForHandler, expect} from '@loopback/testlab'; -import {RestServer} from '@loopback/rest'; import {Application, inject} from '@loopback/core'; import {post, requestBody} from '@loopback/openapi-v3'; +import {RestServer} from '@loopback/rest'; +import {Client, createClientForHandler, expect} from '@loopback/testlab'; import {authenticateClient} from '../../../../decorators'; -import {STRATEGY} from '../../../../strategy-name.enum'; -import {getApp} from '../helpers/helpers'; -import {MyAuthenticationMiddlewareSequence} from '../../../fixtures/sequences/authentication-middleware.sequence'; -import {Strategies} from '../../../../strategies/keys'; import {AuthenticationBindings} from '../../../../keys'; +import {Strategies} from '../../../../strategies/keys'; +import {STRATEGY} from '../../../../strategy-name.enum'; +import {IAuthClient} from '../../../../types'; import {ClientPasswordVerifyProvider} from '../../../fixtures/providers/passport-client.provider'; -import {ClientPasswordStrategyFactoryProvider} from '../../../../strategies/passport/passport-client-password'; +import {MyAuthenticationMiddlewareSequence} from '../../../fixtures/sequences/authentication-middleware.sequence'; +import {getApp} from '../helpers/helpers'; describe('Client-password strategy using Middleware Sequence', () => { let app: Application; @@ -141,9 +140,6 @@ describe('Client-password strategy using Middleware Sequence', () => { } function getAuthVerifier() { - app - .bind(Strategies.Passport.CLIENT_PASSWORD_STRATEGY_FACTORY) - .toProvider(ClientPasswordStrategyFactoryProvider); app .bind(Strategies.Passport.OAUTH2_CLIENT_PASSWORD_VERIFIER) .toProvider(ClientPasswordVerifyProvider); @@ -154,3 +150,52 @@ describe('Client-password strategy using Middleware Sequence', () => { server.sequence(MyAuthenticationMiddlewareSequence); } }); + +describe('integration test for client-password and no verifier using Middleware Sequence', () => { + let app: Application; + let server: RestServer; + beforeEach(givenAServer); + beforeEach(givenAuthenticatedSequence); + + it('should return status 401 as this strategy is not implemented', async () => { + class TestController { + constructor( + @inject(AuthenticationBindings.CURRENT_CLIENT) // tslint:disable-next-line: no-shadowed-variable + private readonly client: IAuthClient | undefined, + ) {} + + @post('/test') + @authenticateClient(STRATEGY.CLIENT_PASSWORD, {passReqToCallback: true}) + test( + @requestBody() + body: { + client_id: string; + client_secret: string; + }, + ) { + return this.client; + } + } + + app.controller(TestController); + + await whenIMakeRequestTo(server) + .post('/test') + .send({client_id: 'some id', client_secret: 'some secret'}) + .expect(401); + }); + + function whenIMakeRequestTo(restServer: RestServer): Client { + return createClientForHandler(restServer.requestHandler); + } + + async function givenAServer() { + app = getApp(); + server = await app.getServer(RestServer); + } + + function givenAuthenticatedSequence() { + // bind user defined sequence + server.sequence(MyAuthenticationMiddlewareSequence); + } +}); diff --git a/src/__tests__/integration/middleware-sequence/passport-cognito-oauth2/cognito-oauth2.integration.ts b/src/__tests__/integration/middleware-sequence/passport-cognito-oauth2/cognito-oauth2.integration.ts index 96ff7f8..f9f23fa 100644 --- a/src/__tests__/integration/middleware-sequence/passport-cognito-oauth2/cognito-oauth2.integration.ts +++ b/src/__tests__/integration/middleware-sequence/passport-cognito-oauth2/cognito-oauth2.integration.ts @@ -1,18 +1,16 @@ -import {Client, createClientForHandler} from '@loopback/testlab'; -import {RestServer, Request} from '@loopback/rest'; -import {Application, Constructor, Provider} from '@loopback/core'; +import {Application, Provider} from '@loopback/core'; import {get} from '@loopback/openapi-v3'; +import {Request, RestServer} from '@loopback/rest'; +import {Client, createClientForHandler} from '@loopback/testlab'; import {authenticate} from '../../../../decorators'; -import {STRATEGY} from '../../../../strategy-name.enum'; -import {getApp} from '../helpers/helpers'; -import {Strategies} from '../../../../strategies/keys'; import {VerifyFunction} from '../../../../strategies'; -import {userWithoutReqObj} from '../../../fixtures/data/bearer-data'; +import {Strategies} from '../../../../strategies/keys'; +import {CognitoStrategyFactoryProvider} from '../../../../strategies/passport/passport-cognito-oauth2'; +import {STRATEGY} from '../../../../strategy-name.enum'; import {Cognito} from '../../../../types'; +import {userWithoutReqObj} from '../../../fixtures/data/bearer-data'; import {MyAuthenticationMiddlewareSequence} from '../../../fixtures/sequences/authentication-middleware.sequence'; -import {CognitoStrategyFactoryProvider} from '../../../../strategies/passport/passport-cognito-oauth2'; -import {ClientPasswordVerifyProvider} from '../../../fixtures/providers/passport-client.provider'; -import {ClientPasswordStrategyFactoryProvider} from '../../../../strategies/passport/passport-client-password'; +import {getApp} from '../helpers/helpers'; describe('getting cognito oauth2 strategy with options using Middleware Sequence', () => { let app: Application; @@ -49,12 +47,6 @@ describe('getting cognito oauth2 strategy with options using Middleware Sequence } function getAuthVerifier() { - app - .bind(Strategies.Passport.OAUTH2_CLIENT_PASSWORD_VERIFIER) - .toProvider(ClientPasswordVerifyProvider); - app - .bind(Strategies.Passport.CLIENT_PASSWORD_STRATEGY_FACTORY) - .toProvider(ClientPasswordStrategyFactoryProvider); app .bind(Strategies.Passport.COGNITO_OAUTH2_VERIFIER) .toProvider(CognitoAuthVerifyProvider); diff --git a/src/__tests__/integration/middleware-sequence/passport-google-oauth2/google-oauth2.integration.ts b/src/__tests__/integration/middleware-sequence/passport-google-oauth2/google-oauth2.integration.ts index da40edf..1bb2e0a 100644 --- a/src/__tests__/integration/middleware-sequence/passport-google-oauth2/google-oauth2.integration.ts +++ b/src/__tests__/integration/middleware-sequence/passport-google-oauth2/google-oauth2.integration.ts @@ -1,18 +1,16 @@ -import {Client, createClientForHandler} from '@loopback/testlab'; -import {RestServer, Request} from '@loopback/rest'; -import {Application, Constructor, Provider} from '@loopback/core'; +import {Application, Provider} from '@loopback/core'; import {get} from '@loopback/openapi-v3'; +import {Request, RestServer} from '@loopback/rest'; +import {Client, createClientForHandler} from '@loopback/testlab'; +import * as GoogleStrategy from 'passport-google-oauth20'; import {authenticate} from '../../../../decorators'; -import {STRATEGY} from '../../../../strategy-name.enum'; -import {getApp} from '../helpers/helpers'; -import {MyAuthenticationMiddlewareSequence} from '../../../fixtures/sequences/authentication-middleware.sequence'; -import {Strategies} from '../../../../strategies/keys'; import {VerifyFunction} from '../../../../strategies'; -import {userWithoutReqObj} from '../../../fixtures/data/bearer-data'; -import * as GoogleStrategy from 'passport-google-oauth20'; +import {Strategies} from '../../../../strategies/keys'; import {GoogleAuthStrategyFactoryProvider} from '../../../../strategies/passport/passport-google-oauth2'; -import {ClientPasswordVerifyProvider} from '../../../fixtures/providers/passport-client.provider'; -import {ClientPasswordStrategyFactoryProvider} from '../../../../strategies/passport/passport-client-password'; +import {STRATEGY} from '../../../../strategy-name.enum'; +import {userWithoutReqObj} from '../../../fixtures/data/bearer-data'; +import {MyAuthenticationMiddlewareSequence} from '../../../fixtures/sequences/authentication-middleware.sequence'; +import {getApp} from '../helpers/helpers'; describe('getting google oauth2 strategy with options using Middleware Sequence', () => { let app: Application; @@ -55,12 +53,6 @@ describe('getting google oauth2 strategy with options using Middleware Sequence' app .bind(Strategies.Passport.GOOGLE_OAUTH2_VERIFIER) .toProvider(GoogleAuthVerifyProvider); - app - .bind(Strategies.Passport.OAUTH2_CLIENT_PASSWORD_VERIFIER) - .toProvider(ClientPasswordVerifyProvider); - app - .bind(Strategies.Passport.CLIENT_PASSWORD_STRATEGY_FACTORY) - .toProvider(ClientPasswordStrategyFactoryProvider); } function givenAuthenticatedSequence() { diff --git a/src/__tests__/integration/middleware-sequence/passport-instagram-oauth2/instagram-oauth2.integration.ts b/src/__tests__/integration/middleware-sequence/passport-instagram-oauth2/instagram-oauth2.integration.ts index 326e80d..b314076 100644 --- a/src/__tests__/integration/middleware-sequence/passport-instagram-oauth2/instagram-oauth2.integration.ts +++ b/src/__tests__/integration/middleware-sequence/passport-instagram-oauth2/instagram-oauth2.integration.ts @@ -1,18 +1,16 @@ -import {Client, createClientForHandler} from '@loopback/testlab'; -import {RestServer, Request} from '@loopback/rest'; -import {Application, Constructor, Provider} from '@loopback/core'; +import {Application, Provider} from '@loopback/core'; import {get} from '@loopback/openapi-v3'; +import {Request, RestServer} from '@loopback/rest'; +import {Client, createClientForHandler} from '@loopback/testlab'; +import * as InstagramStrategy from 'passport-instagram'; import {authenticate} from '../../../../decorators'; -import {STRATEGY} from '../../../../strategy-name.enum'; -import {getApp} from '../helpers/helpers'; -import {MyAuthenticationMiddlewareSequence} from '../../../fixtures/sequences/authentication-middleware.sequence'; -import {Strategies} from '../../../../strategies/keys'; import {VerifyCallback, VerifyFunction} from '../../../../strategies'; -import {userWithoutReqObj} from '../../../fixtures/data/bearer-data'; -import * as InstagramStrategy from 'passport-instagram'; +import {Strategies} from '../../../../strategies/keys'; import {InstagramAuthStrategyFactoryProvider} from '../../../../strategies/passport/passport-insta-oauth2'; -import {ClientPasswordVerifyProvider} from '../../../fixtures/providers/passport-client.provider'; -import {ClientPasswordStrategyFactoryProvider} from '../../../../strategies/passport/passport-client-password'; +import {STRATEGY} from '../../../../strategy-name.enum'; +import {userWithoutReqObj} from '../../../fixtures/data/bearer-data'; +import {MyAuthenticationMiddlewareSequence} from '../../../fixtures/sequences/authentication-middleware.sequence'; +import {getApp} from '../helpers/helpers'; describe('getting instagram oauth2 strategy with options using Middleware Sequence', () => { let app: Application; @@ -55,12 +53,6 @@ describe('getting instagram oauth2 strategy with options using Middleware Sequen app .bind(Strategies.Passport.INSTAGRAM_OAUTH2_VERIFIER) .toProvider(InstagramAuthVerifyProvider); - app - .bind(Strategies.Passport.OAUTH2_CLIENT_PASSWORD_VERIFIER) - .toProvider(ClientPasswordVerifyProvider); - app - .bind(Strategies.Passport.CLIENT_PASSWORD_STRATEGY_FACTORY) - .toProvider(ClientPasswordStrategyFactoryProvider); } function givenAuthenticatedSequence() { diff --git a/src/__tests__/integration/middleware-sequence/passport-keycloak/keycloak.integration.ts b/src/__tests__/integration/middleware-sequence/passport-keycloak/keycloak.integration.ts index 5df654c..cd4cf53 100644 --- a/src/__tests__/integration/middleware-sequence/passport-keycloak/keycloak.integration.ts +++ b/src/__tests__/integration/middleware-sequence/passport-keycloak/keycloak.integration.ts @@ -1,18 +1,16 @@ -import {Client, createClientForHandler} from '@loopback/testlab'; -import {RestServer, Request} from '@loopback/rest'; -import {Application, Constructor, Provider} from '@loopback/core'; +import {Application, Provider} from '@loopback/core'; import {get} from '@loopback/openapi-v3'; +import {Request, RestServer} from '@loopback/rest'; +import {Client, createClientForHandler} from '@loopback/testlab'; import {authenticate} from '../../../../decorators'; -import {STRATEGY} from '../../../../strategy-name.enum'; -import {getApp} from '../helpers/helpers'; -import {MyAuthenticationMiddlewareSequence} from '../../../fixtures/sequences/authentication-middleware.sequence'; -import {Strategies} from '../../../../strategies/keys'; import {Keycloak, VerifyFunction} from '../../../../strategies'; -import {userWithoutReqObj} from '../../../fixtures/data/bearer-data'; -import {IAuthUser} from '../../../../types'; +import {Strategies} from '../../../../strategies/keys'; import {KeycloakStrategyFactoryProvider} from '../../../../strategies/passport/passport-keycloak'; -import {ClientPasswordStrategyFactoryProvider} from '../../../../strategies/passport/passport-client-password'; -import {ClientPasswordVerifyProvider} from '../../../fixtures/providers/passport-client.provider'; +import {STRATEGY} from '../../../../strategy-name.enum'; +import {IAuthUser} from '../../../../types'; +import {userWithoutReqObj} from '../../../fixtures/data/bearer-data'; +import {MyAuthenticationMiddlewareSequence} from '../../../fixtures/sequences/authentication-middleware.sequence'; +import {getApp} from '../helpers/helpers'; describe('getting keycloak oauth2 strategy with options using Middleware Sequence', () => { let app: Application; @@ -61,12 +59,6 @@ describe('getting keycloak oauth2 strategy with options using Middleware Sequenc app .bind(Strategies.Passport.KEYCLOAK_VERIFIER) .toProvider(KeycloakAuthVerifyProvider); - app - .bind(Strategies.Passport.OAUTH2_CLIENT_PASSWORD_VERIFIER) - .toProvider(ClientPasswordVerifyProvider); - app - .bind(Strategies.Passport.CLIENT_PASSWORD_STRATEGY_FACTORY) - .toProvider(ClientPasswordStrategyFactoryProvider); } function givenAuthenticatedSequence() { diff --git a/src/__tests__/integration/middleware-sequence/passport-local/local-passport.integration.ts b/src/__tests__/integration/middleware-sequence/passport-local/local-passport.integration.ts index 844c828..edb0187 100644 --- a/src/__tests__/integration/middleware-sequence/passport-local/local-passport.integration.ts +++ b/src/__tests__/integration/middleware-sequence/passport-local/local-passport.integration.ts @@ -1,19 +1,17 @@ -import {Client, createClientForHandler, expect} from '@loopback/testlab'; -import {RestServer} from '@loopback/rest'; import {Application, inject} from '@loopback/core'; import {post, requestBody} from '@loopback/openapi-v3'; +import {RestServer} from '@loopback/rest'; +import {Client, createClientForHandler, expect} from '@loopback/testlab'; import {authenticate} from '../../../../decorators'; -import {STRATEGY} from '../../../../strategy-name.enum'; -import {getApp} from '../helpers/helpers'; -import {MyAuthenticationMiddlewareSequence} from '../../../fixtures/sequences/authentication-middleware.sequence'; -import {Strategies} from '../../../../strategies/keys'; -import {LocalVerifyProvider} from '../../../fixtures/providers/local-password.provider'; import {AuthenticationBindings} from '../../../../keys'; +import {Strategies} from '../../../../strategies/keys'; +import {LocalPasswordStrategyFactoryProvider} from '../../../../strategies/passport/passport-local'; +import {STRATEGY} from '../../../../strategy-name.enum'; import {IAuthUser} from '../../../../types'; +import {LocalVerifyProvider} from '../../../fixtures/providers/local-password.provider'; +import {MyAuthenticationMiddlewareSequence} from '../../../fixtures/sequences/authentication-middleware.sequence'; import {UserCred} from '../../../fixtures/user-cred.model'; -import {LocalPasswordStrategyFactoryProvider} from '../../../../strategies/passport/passport-local'; -import {ClientPasswordVerifyProvider} from '../../../fixtures/providers/passport-client.provider'; -import {ClientPasswordStrategyFactoryProvider} from '../../../../strategies/passport/passport-client-password'; +import {getApp} from '../helpers/helpers'; /** * Testing overall flow of authentication with bearer strategy */ @@ -179,12 +177,6 @@ describe('Local passport strategy using Middleware Sequence', () => { app .bind(Strategies.Passport.LOCAL_PASSWORD_VERIFIER) .toProvider(LocalVerifyProvider); - app - .bind(Strategies.Passport.OAUTH2_CLIENT_PASSWORD_VERIFIER) - .toProvider(ClientPasswordVerifyProvider); - app - .bind(Strategies.Passport.CLIENT_PASSWORD_STRATEGY_FACTORY) - .toProvider(ClientPasswordStrategyFactoryProvider); } function givenAuthenticatedSequence() { diff --git a/src/__tests__/integration/middleware-sequence/passport-resource-owner-password/resource-owner-password.integration.ts b/src/__tests__/integration/middleware-sequence/passport-resource-owner-password/resource-owner-password.integration.ts index f14906d..e7134f0 100644 --- a/src/__tests__/integration/middleware-sequence/passport-resource-owner-password/resource-owner-password.integration.ts +++ b/src/__tests__/integration/middleware-sequence/passport-resource-owner-password/resource-owner-password.integration.ts @@ -1,20 +1,18 @@ /* eslint-disable @typescript-eslint/naming-convention */ -import {Client, createClientForHandler, expect} from '@loopback/testlab'; -import {RestServer} from '@loopback/rest'; import {Application, inject} from '@loopback/core'; import {post, requestBody} from '@loopback/openapi-v3'; +import {RestServer} from '@loopback/rest'; +import {Client, createClientForHandler, expect} from '@loopback/testlab'; import {authenticate} from '../../../../decorators'; -import {STRATEGY} from '../../../../strategy-name.enum'; -import {getApp} from '../helpers/helpers'; -import {MyAuthenticationMiddlewareSequence} from '../../../fixtures/sequences/authentication-middleware.sequence'; -import {Strategies} from '../../../../strategies/keys'; -import {ResourceOwnerVerifyProvider} from '../../../fixtures/providers/resource-owner.provider'; import {AuthenticationBindings} from '../../../../keys'; -import {IAuthUser} from '../../../../types'; +import {Strategies} from '../../../../strategies/keys'; import {ResourceOwnerPasswordStrategyFactoryProvider} from '../../../../strategies/passport/passport-resource-owner-password'; -import {ClientPasswordVerifyProvider} from '../../../fixtures/providers/passport-client.provider'; -import {ClientPasswordStrategyFactoryProvider} from '../../../../strategies/passport/passport-client-password'; +import {STRATEGY} from '../../../../strategy-name.enum'; +import {IAuthUser} from '../../../../types'; +import {ResourceOwnerVerifyProvider} from '../../../fixtures/providers/resource-owner.provider'; +import {MyAuthenticationMiddlewareSequence} from '../../../fixtures/sequences/authentication-middleware.sequence'; +import {getApp} from '../helpers/helpers'; describe('Resource-owner-password strategy using Middleware Sequence', () => { let app: Application; @@ -210,12 +208,6 @@ describe('Resource-owner-password strategy using Middleware Sequence', () => { app .bind(Strategies.Passport.RESOURCE_OWNER_PASSWORD_VERIFIER) .toProvider(ResourceOwnerVerifyProvider); - app - .bind(Strategies.Passport.OAUTH2_CLIENT_PASSWORD_VERIFIER) - .toProvider(ClientPasswordVerifyProvider); - app - .bind(Strategies.Passport.CLIENT_PASSWORD_STRATEGY_FACTORY) - .toProvider(ClientPasswordStrategyFactoryProvider); } function givenAuthenticatedSequence() { diff --git a/src/component.ts b/src/component.ts index aa186a2..eec3197 100644 --- a/src/component.ts +++ b/src/component.ts @@ -1,6 +1,5 @@ import {Binding, Component, inject, ProviderMap} from '@loopback/core'; import {createMiddlewareBinding} from '@loopback/express'; - import {AuthenticationBindings, Strategies} from './keys'; import { ClientAuthenticationMiddlewareProvider, @@ -12,7 +11,14 @@ import { ClientAuthenticateActionProvider, ClientAuthMetadataProvider, } from './providers'; -import {AuthStrategyProvider, ClientAuthStrategyProvider} from './strategies'; +import { + AuthStrategyProvider, + BearerStrategyFactoryProvider, + BearerTokenVerifyProvider, + ClientAuthStrategyProvider, + ClientPasswordStrategyFactoryProvider, + ClientPasswordVerifyProvider, +} from './strategies'; import {SecureClientPasswordStrategyFactoryProvider} from './strategies/passport/passport-client-password/secure-client-password-strategy-factory-provider'; import {AuthenticationConfig} from './types'; @@ -29,6 +35,18 @@ export class AuthenticationComponent implements Component { [AuthenticationBindings.CLIENT_METADATA.key]: ClientAuthMetadataProvider, [AuthenticationBindings.USER_STRATEGY.key]: AuthStrategyProvider, [AuthenticationBindings.CLIENT_STRATEGY.key]: ClientAuthStrategyProvider, + + // Strategy Function Factories + [Strategies.Passport.CLIENT_PASSWORD_STRATEGY_FACTORY.key]: + ClientPasswordStrategyFactoryProvider, + [Strategies.Passport.BEARER_STRATEGY_FACTORY.key]: + BearerStrategyFactoryProvider, + + // Strategy Verifier Functions + [Strategies.Passport.OAUTH2_CLIENT_PASSWORD_VERIFIER.key]: + ClientPasswordVerifyProvider, + [Strategies.Passport.BEARER_TOKEN_VERIFIER.key]: + BearerTokenVerifyProvider, }; if (this.config?.secureClient) { diff --git a/src/strategies/passport/index.ts b/src/strategies/passport/index.ts index 3246492..427df1b 100644 --- a/src/strategies/passport/index.ts +++ b/src/strategies/passport/index.ts @@ -1 +1,3 @@ export * from './passport-otp'; +export * from './passport-bearer'; +export * from './passport-client-password';