Skip to content

fix(test): check token expiry inside jwtVerify mock implementation #359

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
sundaray wants to merge 1 commit into
base: main
Choose a base branch
from
Open

fix(test): check token expiry inside jwtVerify mock implementation #359

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
fix(test): check token expiry inside jwtVerify mock implementation
  • Loading branch information
@sundaray
sundaray committed Jan 8, 2026
commit 433e92fa423afd3ad9b4d90384b07d2f8450b524
156 changes: 133 additions & 23 deletions src/session.spec.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@ import { withAuth, updateSession, refreshSession, updateSessionMiddleware, getTo
import { getWorkOS } from './workos.js';
import * as envVariables from './env-variables.js';

import { jwtVerify } from 'jose';
import { decodeJwt, jwtVerify } from 'jose';
import { sealData } from 'iron-session';
import { User } from '@workos-inc/node';

Expand Down Expand Up @@ -50,6 +50,8 @@ describe('session.ts', () => {
let consoleLogSpy: jest.SpyInstance;

beforeEach(async () => {
jest.useFakeTimers();
jest.setSystemTime(new Date('2025-01-08T12:00:00Z'));
// Clear all mocks between tests
jest.clearAllMocks();

Expand All @@ -73,6 +75,7 @@ describe('session.ts', () => {
});

afterEach(() => {
jest.useRealTimers();
consoleLogSpy.mockRestore();
jest.resetModules();
});
Expand Down Expand Up @@ -270,10 +273,23 @@ describe('session.ts', () => {
});

it('should attempt to refresh the session when the access token is invalid', async () => {
// Setup invalid session
mockSession.accessToken = await generateTestToken({}, true);

(jwtVerify as jest.Mock).mockImplementation(() => {
throw new Error('Invalid token');
// Advance time by 1 second so exp < now
jest.advanceTimersByTime(1000);

// Mock jwtVerify to check token expiration
(jwtVerify as jest.Mock).mockImplementation(async (token) => {
const decodedJwt = decodeJwt(token);

const now = Math.floor(Date.now() / 1000);

if (decodedJwt.exp && decodedJwt.exp < now) {
throw new Error('Invalid token');
}

return { payload: decodedJwt };
});

jest.spyOn(workos.userManagement, 'authenticateWithRefreshToken').mockResolvedValue({
Expand Down Expand Up @@ -310,10 +326,23 @@ describe('session.ts', () => {
it('should delete the cookie when refreshing fails', async () => {
jest.spyOn(console, 'log').mockImplementation(() => {});

// Setup invalid session
mockSession.accessToken = await generateTestToken({}, true);

(jwtVerify as jest.Mock).mockImplementation(() => {
throw new Error('Invalid token');
// Advance time by 1 second so exp < now
jest.advanceTimersByTime(1000);

// Mock jwtVerify to check token expiration
(jwtVerify as jest.Mock).mockImplementation(async (token) => {
const decodedJwt = decodeJwt(token);

const now = Math.floor(Date.now() / 1000);

if (decodedJwt.exp && decodedJwt.exp < now) {
throw new Error('Invalid token');
}

return { payload: decodedJwt };
});

jest
Expand Down Expand Up @@ -525,10 +554,23 @@ describe('session.ts', () => {
it('should delete the cookie and redirect when refreshing fails', async () => {
jest.spyOn(console, 'log').mockImplementation(() => {});

// Setup invalid session
mockSession.accessToken = await generateTestToken({}, true);

(jwtVerify as jest.Mock).mockImplementation(() => {
throw new Error('Invalid token');
// Advance time by 1 second so exp < now
jest.advanceTimersByTime(1000);

// Mock jwtVerify to check token expiration
(jwtVerify as jest.Mock).mockImplementation(async (token) => {
const decodedJwt = decodeJwt(token);

const now = Math.floor(Date.now() / 1000);

if (decodedJwt.exp && decodedJwt.exp < now) {
throw new Error('Invalid token');
}

return { payload: decodedJwt };
});

jest
Expand Down Expand Up @@ -633,9 +675,20 @@ describe('session.ts', () => {
// Setup invalid session
mockSession.accessToken = await generateTestToken({}, true);

// Mock token verification to fail
(jwtVerify as jest.Mock).mockImplementation(() => {
throw new Error('Invalid token');
// Advance time by 1 second so exp < now
jest.advanceTimersByTime(1000);

// Mock jwtVerify to check token expiration
(jwtVerify as jest.Mock).mockImplementation(async (token) => {
const decodedJwt = decodeJwt(token);

const now = Math.floor(Date.now() / 1000);

if (decodedJwt.exp && decodedJwt.exp < now) {
throw new Error('Invalid token');
}

return { payload: decodedJwt };
});

// Mock successful refresh
Expand Down Expand Up @@ -666,9 +719,20 @@ describe('session.ts', () => {
// Setup invalid session
mockSession.accessToken = await generateTestToken({}, true);

// Mock token verification to fail
(jwtVerify as jest.Mock).mockImplementation(() => {
throw new Error('Invalid token');
// Advance time by 1 second so exp < now
jest.advanceTimersByTime(1000);

// Mock jwtVerify to check token expiration
(jwtVerify as jest.Mock).mockImplementation(async (token) => {
const decodedJwt = decodeJwt(token);

const now = Math.floor(Date.now() / 1000);

if (decodedJwt.exp && decodedJwt.exp < now) {
throw new Error('Invalid token');
}

return { payload: decodedJwt };
});

// Mock refresh failure
Expand All @@ -693,9 +757,20 @@ describe('session.ts', () => {
// Setup invalid session
mockSession.accessToken = await generateTestToken({}, true);

// Mock token verification to fail
(jwtVerify as jest.Mock).mockImplementation(() => {
throw new Error('Invalid token');
// Advance time by 1 second so exp < now
jest.advanceTimersByTime(1000);

// Mock jwtVerify to check token expiration
(jwtVerify as jest.Mock).mockImplementation(async (token) => {
const decodedJwt = decodeJwt(token);

const now = Math.floor(Date.now() / 1000);

if (decodedJwt.exp && decodedJwt.exp < now) {
throw new Error('Invalid token');
}

return { payload: decodedJwt };
});

const newAccessToken = await generateTestToken();
Expand Down Expand Up @@ -732,9 +807,20 @@ describe('session.ts', () => {
// Setup invalid session
mockSession.accessToken = await generateTestToken({}, true);

// Mock token verification to fail
(jwtVerify as jest.Mock).mockImplementation(() => {
throw new Error('Invalid token');
// Advance time by 1 second so exp < now
jest.advanceTimersByTime(1000);

// Mock jwtVerify to check token expiration
(jwtVerify as jest.Mock).mockImplementation(async (token) => {
const decodedJwt = decodeJwt(token);

const now = Math.floor(Date.now() / 1000);

if (decodedJwt.exp && decodedJwt.exp < now) {
throw new Error('Invalid token');
}

return { payload: decodedJwt };
});

const mockError = new Error('Refresh failed');
Expand Down Expand Up @@ -1048,8 +1134,20 @@ describe('session.ts', () => {
// Setup invalid session that needs refresh
mockSession.accessToken = await generateTestToken({}, true);

(jwtVerify as jest.Mock).mockImplementation(() => {
throw new Error('Invalid token');
// Advance time by 1 second so exp < now
jest.advanceTimersByTime(1000);

// Mock jwtVerify to check token expiration
(jwtVerify as jest.Mock).mockImplementation(async (token) => {
const decodedJwt = decodeJwt(token);

const now = Math.floor(Date.now() / 1000);

if (decodedJwt.exp && decodedJwt.exp < now) {
throw new Error('Invalid token');
}

return { payload: decodedJwt };
});

const newAccessToken = await generateTestToken();
Expand Down Expand Up @@ -1079,8 +1177,20 @@ describe('session.ts', () => {
// Setup invalid session
mockSession.accessToken = await generateTestToken({}, true);

(jwtVerify as jest.Mock).mockImplementation(() => {
throw new Error('Invalid token');
// Advance time by 1 second so exp < now
jest.advanceTimersByTime(1000);

// Mock jwtVerify to check token expiration
(jwtVerify as jest.Mock).mockImplementation(async (token) => {
const decodedJwt = decodeJwt(token);

const now = Math.floor(Date.now() / 1000);

if (decodedJwt.exp && decodedJwt.exp < now) {
throw new Error('Invalid token');
}

return { payload: decodedJwt };
});

jest
Expand Down