tabshift/payload
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
e3e0f056a9a863f3798e31b2dc4efe5538fe4ba1
payload/test/auth/removed-token/int.spec.ts
Alessio Gravili e3e0f056a9 chore: auth test suite lint & prettier
2024-03-14 10:48:48 -04:00

73 lines
2.4 KiB
TypeScript
Raw Blame History

import type { Payload } from '../../../packages/payload/src/index.js'
import { getPayload } from '../../../packages/payload/src/index.js'
import { devUser } from '../../credentials.js'
import { NextRESTClient } from '../../helpers/NextRESTClient.js'
import { startMemoryDB } from '../../startMemoryDB.js'
import { collectionSlug } from './config.js'
import configPromise from './config.js'
let restClient: NextRESTClient
let payload: Payload
describe('Remove token from auth responses', () => {
beforeAll(async () => {
const config = await startMemoryDB(configPromise)
payload = await getPayload({ config })
restClient = new NextRESTClient(payload.config)
await restClient.POST(`/${collectionSlug}/first-register`, {
body: JSON.stringify(devUser),
})
await restClient.login({ slug: collectionSlug, credentials: devUser })
})
afterAll(async () => {
if (typeof payload.db.destroy === 'function') {
await payload.db.destroy(payload)
}
})
it('should not include token in response from /login', async () => {
const result = await restClient.login({
slug: collectionSlug,
credentials: devUser,
})
expect(result.token).not.toBeDefined()
expect(result.user.email).toBeDefined()
})
it('should not include token in response from /me', async () => {
const response = await restClient.GET(`/${collectionSlug}/me`)
const result = await response.json()
expect(response.status).toBe(200)
expect(result.token).not.toBeDefined()
expect(result.user.email).toBeDefined()
})
it('should not include token in response from /refresh-token', async () => {
const response = await restClient.POST(`/${collectionSlug}/refresh-token`)
const result = await response.json()
expect(response.status).toBe(200)
expect(result.refreshedToken).not.toBeDefined()
expect(result.user.email).toBeDefined()
})
it('should not include token in response from /reset-password', async () => {
const token = await payload.forgotPassword({
collection: collectionSlug,
data: { email: devUser.email },
disableEmail: true,
})
const response = await restClient.POST(`/${collectionSlug}/reset-password`, {
body: JSON.stringify({ password: devUser.password, token }),
})
const result = await response.json()
expect(response.status).toBe(200)
expect(result.token).not.toBeDefined()
expect(result.user.email).toBeDefined()
})
})
Reference in New Issue View Git Blame Copy Permalink