tabshift/payloadcms
1
0
Fork 0
Code Issues Pull Requests Actions 3 Packages Projects Releases Wiki Activity
Files
d193c677c73e44dea02e0cc27436984466a51553
payloadcms/test/auth/removed-token/int.spec.ts
Dan Ribbens d193c677c7 chore: attach mongoMemoryServer to db and destroy in tests (#5326) 
* chore: attach mongoMemoryServer to db and destroy in tests

* bump mongodb-memory-server to 9.x

---------

Co-authored-by: Paul Popus <paul@nouance.io>
2024-03-14 15:41:20 -04:00

71 lines
2.4 KiB
TypeScript
Raw Blame History

import type { Payload } from '../../../packages/payload/src/index.js'
import { getPayload } from '../../../packages/payload/src/index.js'
import { devUser } from '../../credentials.js'
import { NextRESTClient } from '../../helpers/NextRESTClient.js'
import { startMemoryDB } from '../../startMemoryDB.js'
import configPromise, { collectionSlug } from './config.js'
let restClient: NextRESTClient
let payload: Payload
describe('Remove token from auth responses', () => {
beforeAll(async () => {
const config = await startMemoryDB(configPromise)
payload = await getPayload({ config })
restClient = new NextRESTClient(payload.config)
await restClient.POST(`/${collectionSlug}/first-register`, {
body: JSON.stringify(devUser),
})
await restClient.login({ slug: collectionSlug, credentials: devUser })
})
afterAll(async () => {
if (typeof payload.db.destroy === 'function') {
await payload.db.destroy()
}
})
it('should not include token in response from /login', async () => {
const result = await restClient.login({
slug: collectionSlug,
credentials: devUser,
})
expect(result.token).not.toBeDefined()
expect(result.user.email).toBeDefined()
})
it('should not include token in response from /me', async () => {
const response = await restClient.GET(`/${collectionSlug}/me`)
const result = await response.json()
expect(response.status).toBe(200)
expect(result.token).not.toBeDefined()
expect(result.user.email).toBeDefined()
})
it('should not include token in response from /refresh-token', async () => {
const response = await restClient.POST(`/${collectionSlug}/refresh-token`)
const result = await response.json()
expect(response.status).toBe(200)
expect(result.refreshedToken).not.toBeDefined()
expect(result.user.email).toBeDefined()
})
it('should not include token in response from /reset-password', async () => {
const token = await payload.forgotPassword({
collection: collectionSlug,
data: { email: devUser.email },
disableEmail: true,
})
const response = await restClient.POST(`/${collectionSlug}/reset-password`, {
body: JSON.stringify({ password: devUser.password, token }),
})
const result = await response.json()
expect(response.status).toBe(200)
expect(result.token).not.toBeDefined()
expect(result.user.email).toBeDefined()
})
})
Reference in New Issue View Git Blame Copy Permalink