Skip to content

chore: Move token verification logic to util #1189

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
wants to merge 7 commits into from
Closed

chore: Move token verification logic to util #1189

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
7 commits
Select commit Hold shift + click to select a range
8044f7d
chore: Move Token verification logic to util
lahirumaramba Mar 8, 2021
6719cfa
Moved Auth related items to token-verifier-util
lahirumaramba Mar 9, 2021
913ce37
Change the value errors in FirebaseTokenVerifier constructor to Error…
lahirumaramba Mar 9, 2021
bba0b02
Move the error type test into verifyJWT() tests
lahirumaramba Mar 9, 2021
27e0e6f
Merge expired error code to erro code config
lahirumaramba Mar 10, 2021
5d3597a
Fixed copyright years
lahirumaramba Mar 10, 2021
ac28a55
Remove all Auth dependencies from the token verifier
lahirumaramba Mar 11, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
Change the value errors in FirebaseTokenVerifier constructor to Error… 
… types.
  • Loading branch information
@lahirumaramba
lahirumaramba committed Mar 9, 2021
commit 913ce37bb768c1d1ea52c85c49f8161495bf44c3
49 changes: 11 additions & 38 deletions src/utils/token-verifier.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -58,51 +58,24 @@ export class FirebaseTokenVerifier {
private readonly app: FirebaseApp) {

if (!validator.isURL(clientCertUrl)) {
throw new this.tokenInfo.errorType(
this.tokenInfo.errorCodeConfig.invalidArg,
'The provided public client certificate URL is an invalid URL.',
);

throw new Error('The provided public client certificate URL is an invalid URL.');
} else if (!validator.isNonEmptyString(algorithm)) {
throw new this.tokenInfo.errorType(
this.tokenInfo.errorCodeConfig.invalidArg,
'The provided JWT algorithm is an empty string.',
);
throw new Error('The provided JWT algorithm is an empty string.');
} else if (!validator.isURL(issuer)) {
throw new this.tokenInfo.errorType(
this.tokenInfo.errorCodeConfig.invalidArg,
'The provided JWT issuer is an invalid URL.',
);
throw new Error('The provided JWT issuer is an invalid URL.');
} else if (!validator.isNonNullObject(tokenInfo)) {
throw new this.tokenInfo.errorType(
this.tokenInfo.errorCodeConfig.invalidArg,
'The provided JWT information is not an object or null.',
);
throw new Error('The provided JWT information is not an object or null.');
} else if (!validator.isURL(tokenInfo.url)) {
throw new this.tokenInfo.errorType(
this.tokenInfo.errorCodeConfig.invalidArg,
'The provided JWT verification documentation URL is invalid.',
);
throw new Error('The provided JWT verification documentation URL is invalid.');
} else if (!validator.isNonEmptyString(tokenInfo.verifyApiName)) {
throw new this.tokenInfo.errorType(
this.tokenInfo.errorCodeConfig.invalidArg,
'The JWT verify API name must be a non-empty string.',
);
throw new Error('The JWT verify API name must be a non-empty string.');
} else if (!validator.isNonEmptyString(tokenInfo.jwtName)) {
throw new this.tokenInfo.errorType(
this.tokenInfo.errorCodeConfig.invalidArg,
'The JWT public full name must be a non-empty string.',
);
throw new Error('The JWT public full name must be a non-empty string.');
} else if (!validator.isNonEmptyString(tokenInfo.shortName)) {
throw new this.tokenInfo.errorType(
this.tokenInfo.errorCodeConfig.invalidArg,
'The JWT public short name must be a non-empty string.',
);
} else if (!validator.isNonNullObject(tokenInfo.expiredErrorCode) || !('code' in tokenInfo.expiredErrorCode)) {
throw new this.tokenInfo.errorType(
this.tokenInfo.errorCodeConfig.invalidArg,
'The JWT expiration error code must be a non-null ErrorInfo object.',
);
throw new Error('The JWT public short name must be a non-empty string.');
} else if (!validator.isNonNullObject(tokenInfo.expiredErrorCode) ||
!('code' in tokenInfo.expiredErrorCode)) {
throw new Error('The JWT expiration error code must be a non-null ErrorInfo object.');
}
this.shortNameArticle = tokenInfo.shortName.charAt(0).match(/[aeiou]/i) ? 'an' : 'a';

Expand Down
37 changes: 20 additions & 17 deletions test/unit/auth/token-verifier.spec.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -316,24 +316,27 @@ describe('FirebaseTokenVerifier', () => {
{ type: FirebaseAuthError, code: AUTH_ERROR_CODE_CONFIG },
];
errorTypes.forEach((errorType) => {
it('should throw with the correct error type set in token info', () => {
const tokenVerifier = new verifier.FirebaseTokenVerifier(
'https://www.example.com/publicKeys',
'RS256',
'https://www.example.com/issuer/',
{
url: 'https://docs.example.com/verify-tokens',
verifyApiName: 'verifyToken()',
jwtName: 'Important Token',
shortName: 'token',
expiredErrorCode: errorType.code.invalidArg,
errorCodeConfig: errorType.code,
errorType: errorType.type,
},
app,
);
it('should throw with the correct error type and code set in token info', () => {
expect(() => {
new verifier.FirebaseTokenVerifier(
'https://www.example.com/publicKeys',
'RS256',
'https://www.example.com/issuer/',
{
url: 'https://docs.example.com/verify-tokens',
verifyApiName: 'verifyToken()',
jwtName: 'Important Token',
shortName: '',
expiredErrorCode: errorType.code.invalidArg,
errorCodeConfig: errorType.code,
errorType: errorType.type,
},
app,
);
}).to.throw(errorType.type).with.property('code', 'auth/argument-error');
(tokenVerifier as any).verifyJWT();
}).to.throw(errorType.type).with.property('code').match(
new RegExp(`(.*)/${errorType.code.invalidArg.code}`)
);
});
});

Expand Down