logto/packages/integration-tests/tests/api/get-access-token.test.ts

import path from 'path';

import { fetchTokenByRefreshToken } from '@logto/js';
import { managementResource } from '@logto/schemas/lib/seeds';
import { assert } from '@silverhand/essentials';
import fetch from 'node-fetch';

import { signInWithPassword } from '@/api';
import MockClient, { defaultConfig } from '@/client';
import { logtoUrl } from '@/constants';
import { createUserByAdmin } from '@/helpers';
import { generateUsername, generatePassword } from '@/utils';

describe('get access token', () => {
  const username = generateUsername();
  const password = generatePassword();

  beforeAll(async () => {
    await createUserByAdmin(username, password);
  });

  it('sign-in and getAccessToken', async () => {
    const client = new MockClient({ resources: [managementResource.indicator] });
    await client.initSession();
    assert(client.interactionCookie, new Error('Session not found'));

    const { redirectTo } = await signInWithPassword({
      username,
      password,
      interactionCookie: client.interactionCookie,
    });

    await client.processSession(redirectTo);

    assert(client.isAuthenticated, new Error('Sign in get get access token failed'));

    const accessToken = await client.getAccessToken(managementResource.indicator);

    expect(accessToken).not.toBeNull();

    // Request for invalid resource should throw
    void expect(client.getAccessToken('api.foo.com')).rejects.toThrow();
  });

  it('sign-in and get multiple Access Token by the same Refresh Token within refreshTokenReuseInterval', async () => {
    const client = new MockClient({ resources: [managementResource.indicator] });
    await client.initSession();
    assert(client.interactionCookie, new Error('Session not found'));

    const { redirectTo } = await signInWithPassword({
      username,
      password,
      interactionCookie: client.interactionCookie,
    });

    await client.processSession(redirectTo);
    assert(client.isAuthenticated, new Error('Sign in get get access token failed'));

    const refreshToken = await client.getRefreshToken();
    assert(refreshToken, new Error('No Refresh Token found'));

    const getAccessTokenByRefreshToken = async () =>
      fetchTokenByRefreshToken(
        {
          clientId: defaultConfig.appId,
          tokenEndpoint: path.join(logtoUrl, '/oidc/token'),
          refreshToken,
          resource: managementResource.indicator,
        },
        async <T>(...args: Parameters<typeof fetch>): Promise<T> => {
          const response = await fetch(...args);
          assert(response.ok, new Error('Request error'));

          return response.json();
        }
      );

    // Allow to use the same refresh token to fetch access token within short time period
    await Promise.all([getAccessTokenByRefreshToken(), getAccessTokenByRefreshToken()]);
  });
});
refactor: replace dayjs with date-fns 2022-11-07 01:33:47 -05:00			`import path from 'path';`

			`import { fetchTokenByRefreshToken } from '@logto/js';`
test(test): add get access token flow test (#1701) add get access token flow test 2022-08-01 02:50:24 -05:00			`import { managementResource } from '@logto/schemas/lib/seeds';`
			`import { assert } from '@silverhand/essentials';`
refactor: replace dayjs with date-fns 2022-11-07 01:33:47 -05:00			`import fetch from 'node-fetch';`
test(test): add get access token flow test (#1701) add get access token flow test 2022-08-01 02:50:24 -05:00
refactor(core,test): allow create user with email and add tests - Allow create user with email or username for admin user route - Add integration tests for email and password sign-in 2022-11-09 03:25:54 -05:00			`import { signInWithPassword } from '@/api';`
refactor: replace dayjs with date-fns 2022-11-07 01:33:47 -05:00			`import MockClient, { defaultConfig } from '@/client';`
			`import { logtoUrl } from '@/constants';`
test(test): add get access token flow test (#1701) add get access token flow test 2022-08-01 02:50:24 -05:00			`import { createUserByAdmin } from '@/helpers';`
			`import { generateUsername, generatePassword } from '@/utils';`

			`describe('get access token', () => {`
			`const username = generateUsername();`
			`const password = generatePassword();`

			`beforeAll(async () => {`
			`await createUserByAdmin(username, password);`
			`});`

			`it('sign-in and getAccessToken', async () => {`
			`const client = new MockClient({ resources: [managementResource.indicator] });`
			`await client.initSession();`
			`assert(client.interactionCookie, new Error('Session not found'));`

refactor(core,test): allow create user with email and add tests - Allow create user with email or username for admin user route - Add integration tests for email and password sign-in 2022-11-09 03:25:54 -05:00			`const { redirectTo } = await signInWithPassword({`
test(test): add get access token flow test (#1701) add get access token flow test 2022-08-01 02:50:24 -05:00			`username,`
			`password,`
refactor(core,test): allow create user with email and add tests - Allow create user with email or username for admin user route - Add integration tests for email and password sign-in 2022-11-09 03:25:54 -05:00			`interactionCookie: client.interactionCookie,`
			`});`
test(test): add get access token flow test (#1701) add get access token flow test 2022-08-01 02:50:24 -05:00
			`await client.processSession(redirectTo);`

			`assert(client.isAuthenticated, new Error('Sign in get get access token failed'));`

			`const accessToken = await client.getAccessToken(managementResource.indicator);`

			`expect(accessToken).not.toBeNull();`

			`// Request for invalid resource should throw`
			`void expect(client.getAccessToken('api.foo.com')).rejects.toThrow();`
			`});`
refactor: replace dayjs with date-fns 2022-11-07 01:33:47 -05:00
			`it('sign-in and get multiple Access Token by the same Refresh Token within refreshTokenReuseInterval', async () => {`
			`const client = new MockClient({ resources: [managementResource.indicator] });`
			`await client.initSession();`
			`assert(client.interactionCookie, new Error('Session not found'));`

refactor(core,test): allow create user with email and add tests - Allow create user with email or username for admin user route - Add integration tests for email and password sign-in 2022-11-09 03:25:54 -05:00			`const { redirectTo } = await signInWithPassword({`
refactor: replace dayjs with date-fns 2022-11-07 01:33:47 -05:00			`username,`
			`password,`
refactor(core,test): allow create user with email and add tests - Allow create user with email or username for admin user route - Add integration tests for email and password sign-in 2022-11-09 03:25:54 -05:00			`interactionCookie: client.interactionCookie,`
			`});`
refactor: replace dayjs with date-fns 2022-11-07 01:33:47 -05:00
			`await client.processSession(redirectTo);`
			`assert(client.isAuthenticated, new Error('Sign in get get access token failed'));`

			`const refreshToken = await client.getRefreshToken();`
			`assert(refreshToken, new Error('No Refresh Token found'));`

			`const getAccessTokenByRefreshToken = async () =>`
			`fetchTokenByRefreshToken(`
			`{`
			`clientId: defaultConfig.appId,`
			`tokenEndpoint: path.join(logtoUrl, '/oidc/token'),`
			`refreshToken,`
			`resource: managementResource.indicator,`
			`},`
			`async <T>(...args: Parameters<typeof fetch>): Promise<T> => {`
			`const response = await fetch(...args);`
			`assert(response.ok, new Error('Request error'));`

			`return response.json();`
			`}`
			`);`

			`// Allow to use the same refresh token to fetch access token within short time period`
			`await Promise.all([getAccessTokenByRefreshToken(), getAccessTokenByRefreshToken()]);`
			`});`
test(test): add get access token flow test (#1701) add get access token flow test 2022-08-01 02:50:24 -05:00			`});`