summaryrefslogtreecommitdiffstats
path: root/services/fxaccounts/tests/xpcshell/test_oauth_grant_client_server.js
blob: bd446513e89ed2ea6e4eb08be6f5b1ff40bcfdf2 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73

/* Any copyright is dedicated to the Public Domain.
 * http://creativecommons.org/publicdomain/zero/1.0/ */

// A test of FxAccountsOAuthGrantClient but using a real server it can
// hit.
"use strict";

Cu.import("resource://gre/modules/FxAccountsCommon.js");
Cu.import("resource://gre/modules/FxAccountsOAuthGrantClient.jsm");

// handlers for our server.
var numTokenFetches;
var activeTokens;

function authorize(request, response) {
  response.setStatusLine("1.1", 200, "OK");
  let token = "token" + numTokenFetches;
  numTokenFetches += 1;
  activeTokens.add(token);
  response.write(JSON.stringify({access_token: token}));
}

function destroy(request, response) {
  // Getting the body seems harder than it should be!
  let sis = Cc["@mozilla.org/scriptableinputstream;1"]
            .createInstance(Ci.nsIScriptableInputStream);
  sis.init(request.bodyInputStream);
  let body = JSON.parse(sis.read(sis.available()));
  sis.close();
  let token = body.token;
  ok(activeTokens.delete(token));
  print("after destroy have", activeTokens.size, "tokens left.")
  response.setStatusLine("1.1", 200, "OK");
  response.write('{}');
}

function startServer() {
  numTokenFetches = 0;
  activeTokens = new Set();
  let srv = new HttpServer();
  srv.registerPathHandler("/v1/authorization", authorize);
  srv.registerPathHandler("/v1/destroy", destroy);
  srv.start(-1);
  return srv;
}

function promiseStopServer(server) {
  return new Promise(resolve => {
    server.stop(resolve);
  });
}

add_task(function* getAndRevokeToken () {
  let server = startServer();
  let clientOptions = {
    serverURL: "http://localhost:" + server.identity.primaryPort + "/v1",
    client_id: 'abc123',
  }

  let client = new FxAccountsOAuthGrantClient(clientOptions);
  let result = yield client.getTokenFromAssertion("assertion", "scope");
  equal(result.access_token, "token0");
  equal(numTokenFetches, 1, "we hit the server to fetch a token");
  yield client.destroyToken("token0");
  equal(activeTokens.size, 0, "We hit the server to revoke it");
  yield promiseStopServer(server);
});

// XXX - TODO - we should probably add more tests for unexpected responses etc.

function run_test() {
  run_next_test();
}
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-29 23:39:23 +0000