overleaf/services/web/test/UnitTests/coffee/PasswordReset/PasswordResetTokenHandlerTests.coffee

should = require('chai').should()
SandboxedModule = require('sandboxed-module')
assert = require('assert')
path = require('path')
sinon = require('sinon')
modulePath = path.join __dirname, "../../../../app/js/Features/PasswordReset/PasswordResetTokenHandler"
expect = require("chai").expect

describe "PasswordResetTokenHandler", ->

	beforeEach ->
		@user_id = "user id here"
		@stubbedToken = require("crypto").randomBytes(32)

		@settings = 
			redis:
				web:{}
		@redisMulti =
			set:sinon.stub()
			get:sinon.stub()
			del:sinon.stub()
			expire:sinon.stub()
			exec:sinon.stub()
		@uuid = v4 : -> return @stubbedToken
		self = @
		@PasswordResetTokenHandler = SandboxedModule.require modulePath, requires:
			"redis" :
				createClient: =>
					auth:->
					multi: -> return self.redisMulti

			"settings-sharelatex":@settings
			"logger-sharelatex": log:->
			"node-uuid":@uuid


	describe "getNewToken", ->

		it "should set a new token into redis with a ttl", (done)->
			@redisMulti.exec.callsArgWith(0) 
			@PasswordResetTokenHandler.getNewToken @user_id, (err, token)=>
				@redisMulti.set "password_token:#{@stubbedToken}", @user_id
				@redisMulti.expire "password_token:#{@stubbedToken}", 60 * 60
				done()

		it "should return if there was an error", (done)->
			@redisMulti.exec.callsArgWith(0, "error")
			@PasswordResetTokenHandler.getNewToken @user_id, (err, token)=>
				err.should.exist
				done()


	describe "getUserIdFromTokenAndExpire", ->

		it "should get and delete the token", (done)->
			@redisMulti.exec.callsArgWith(0, null, [@user_id]) 
			@PasswordResetTokenHandler.getUserIdFromTokenAndExpire @stubbedToken, (err, user_id)=>
				user_id.should.equal @user_id
				@redisMulti.get.calledWith("password_token:#{@stubbedToken}").should.equal true
				@redisMulti.del.calledWith("password_token:#{@stubbedToken}").should.equal true
				done()
added the token generator and its getNewToken function 2014-05-15 12:16:20 -04:00			`should = require('chai').should()`
			`SandboxedModule = require('sandboxed-module')`
			`assert = require('assert')`
			`path = require('path')`
			`sinon = require('sinon')`
renamed TokenGenerator to PasswordResetTokenHandler and added Expire to function name 2014-05-16 05:43:55 -04:00			`modulePath = path.join __dirname, "../../../../app/js/Features/PasswordReset/PasswordResetTokenHandler"`
added the token generator and its getNewToken function 2014-05-15 12:16:20 -04:00			`expect = require("chai").expect`

renamed TokenGenerator to PasswordResetTokenHandler and added Expire to function name 2014-05-16 05:43:55 -04:00			`describe "PasswordResetTokenHandler", ->`
added the token generator and its getNewToken function 2014-05-15 12:16:20 -04:00
			`beforeEach ->`
			`@user_id = "user id here"`
Use crypto.randomBytes 2014-05-16 05:52:31 -04:00			`@stubbedToken = require("crypto").randomBytes(32)`
added the token generator and its getNewToken function 2014-05-15 12:16:20 -04:00
			`@settings =`
			`redis:`
			`web:{}`
			`@redisMulti =`
			`set:sinon.stub()`
writen getUserIdFromToken 2014-05-15 12:20:42 -04:00			`get:sinon.stub()`
			`del:sinon.stub()`
added the token generator and its getNewToken function 2014-05-15 12:16:20 -04:00			`expire:sinon.stub()`
			`exec:sinon.stub()`
			`@uuid = v4 : -> return @stubbedToken`
			`self = @`
renamed TokenGenerator to PasswordResetTokenHandler and added Expire to function name 2014-05-16 05:43:55 -04:00			`@PasswordResetTokenHandler = SandboxedModule.require modulePath, requires:`
added the token generator and its getNewToken function 2014-05-15 12:16:20 -04:00			`"redis" :`
			`createClient: =>`
			`auth:->`
			`multi: -> return self.redisMulti`

			`"settings-sharelatex":@settings`
			`"logger-sharelatex": log:->`
			`"node-uuid":@uuid`


			`describe "getNewToken", ->`

			`it "should set a new token into redis with a ttl", (done)->`
			`@redisMulti.exec.callsArgWith(0)`
renamed TokenGenerator to PasswordResetTokenHandler and added Expire to function name 2014-05-16 05:43:55 -04:00			`@PasswordResetTokenHandler.getNewToken @user_id, (err, token)=>`
token based reset works 2014-05-15 12:58:25 -04:00			`@redisMulti.set "password_token:#{@stubbedToken}", @user_id`
			`@redisMulti.expire "password_token:#{@stubbedToken}", 60 * 60`
added the token generator and its getNewToken function 2014-05-15 12:16:20 -04:00			`done()`

			`it "should return if there was an error", (done)->`
			`@redisMulti.exec.callsArgWith(0, "error")`
renamed TokenGenerator to PasswordResetTokenHandler and added Expire to function name 2014-05-16 05:43:55 -04:00			`@PasswordResetTokenHandler.getNewToken @user_id, (err, token)=>`
added the token generator and its getNewToken function 2014-05-15 12:16:20 -04:00			`err.should.exist`
			`done()`
writen getUserIdFromToken 2014-05-15 12:20:42 -04:00

renamed TokenGenerator to PasswordResetTokenHandler and added Expire to function name 2014-05-16 05:43:55 -04:00			`describe "getUserIdFromTokenAndExpire", ->`
writen getUserIdFromToken 2014-05-15 12:20:42 -04:00
			`it "should get and delete the token", (done)->`
			`@redisMulti.exec.callsArgWith(0, null, [@user_id])`
renamed TokenGenerator to PasswordResetTokenHandler and added Expire to function name 2014-05-16 05:43:55 -04:00			`@PasswordResetTokenHandler.getUserIdFromTokenAndExpire @stubbedToken, (err, user_id)=>`
writen getUserIdFromToken 2014-05-15 12:20:42 -04:00			`user_id.should.equal @user_id`
token based reset works 2014-05-15 12:58:25 -04:00			`@redisMulti.get.calledWith("password_token:#{@stubbedToken}").should.equal true`
			`@redisMulti.del.calledWith("password_token:#{@stubbedToken}").should.equal true`
writen getUserIdFromToken 2014-05-15 12:20:42 -04:00			`done()`