overleaf/libraries/access-token-encryptor/test/unit/coffee/AccessTokenEncryptorTests.js

sinon = require('sinon')
chai = require('chai')
should = chai.should()
expect = chai.expect
modulePath = "../../../index.js"
SandboxedModule = require('sandboxed-module')
path = require('path')

describe 'AccessTokenEncryptor', ->

	beforeEach ->
		@testObject = {"hello":"world"}
		@encrypted2015 = "2015.1:473a66fb5d816bc716f278ab819d88a5:+mTg7O9sgUND8pNQFG6h2GE="
		@encrypted2016 = "2016.1:76a7d64a444ccee1a515b49c44844a69:m5YSkexUsLjcF4gLncm72+k="
		@encrypted2019 = "2019.1:627143b2ab185a020c8720253a4c984e:7gnY6Ez3/Y3UWgLHLfBtJsE=:bf75cecb6aeea55b3c060e1122d2a82d"
		@badLabel = "xxxxxx:c7a39310056b694c:jQf+Uh5Den3JREtvc82GW5Q="
		@badKey = "2015.1:d7a39310056b694c:jQf+Uh5Den3JREtvc82GW5Q="
		@badCipherText = "2015.1:c7a39310056b694c:xQf+Uh5Den3JREtvc82GW5Q="
		@settings =
			cipherLabel: "2019.1"
			cipherPasswords:
				"2016.1": "11111111111111111111111111111111111111"
				"2015.1": "22222222222222222222222222222222222222"
				"2019.1": "33333333333333333333333333333333333333"
		@AccessTokenEncryptor = SandboxedModule.require modulePath
		@encryptor = new @AccessTokenEncryptor(@settings)

	describe "encrypt", ->
		it 'should encrypt the object', (done)->
			@encryptor.encryptJson @testObject, (err, encrypted)->
				expect(err).to.be.null
				encrypted.should.match(/^2019.1:[0-9a-f]{32}:[a-zA-Z0-9=+\/]+:[0-9a-f]{32}$/)
				done()

		it 'should encrypt the object differently the next time', (done)->
			@encryptor.encryptJson @testObject, (err, encrypted1)=>
				@encryptor.encryptJson @testObject, (err, encrypted2)=>
					encrypted1.should.not.equal(encrypted2)
					done()

	describe "decrypt", ->
		it 'should decrypt the string to get the same object', (done)->
			@encryptor.encryptJson @testObject, (err, encrypted) =>
				expect(err).to.be.null
				@encryptor.decryptToJson encrypted, (err, decrypted) =>
					expect(err).to.be.null
					expect(decrypted).to.deep.equal @testObject
					done()

		it 'should decrypt an 2015 string to get the same object', (done)->
			@encryptor.decryptToJson @encrypted2015, (err, decrypted)=>
				expect(err).to.be.null
				expect(decrypted).to.deep.equal @testObject
				done()

		it 'should decrypt an 2016 string to get the same object', (done)->
			@encryptor.decryptToJson @encrypted2016, (err, decrypted)=>
				expect(err).to.be.null
				expect(decrypted).to.deep.equal @testObject
				done()

		it 'should decrypt an 2019 string to get the same object', (done)->
			@encryptor.decryptToJson @encrypted2019, (err, decrypted)=>
				expect(err).to.be.null
				expect(decrypted).to.deep.equal @testObject
				done()

		it 'should return an error when decrypting an invalid label', (done)->
			@encryptor.decryptToJson @badLabel, (err, decrypted)->
				expect(err).to.be.instanceof(Error)
				expect(decrypted).to.be.undefined
				done()

		it 'should return an error when decrypting an invalid key', (done)->
			@encryptor.decryptToJson @badKey, (err, decrypted)->
				expect(err).to.be.instanceof(Error)
				expect(decrypted).to.be.undefined
				done()

		it 'should return an error when decrypting an invalid ciphertext',(done)->
			@encryptor.decryptToJson	@badCipherText, (err, decrypted)->
				expect(err).to.be.instanceof(Error)
				expect(decrypted).to.be.undefined
				done()
init (copied from thirdpartydatastore-sharelatex) 2016-03-25 07:04:46 -04:00			`sinon = require('sinon')`
			`chai = require('chai')`
			`should = chai.should()`
			`expect = chai.expect`
			`modulePath = "../../../index.js"`
			`SandboxedModule = require('sandboxed-module')`
			`path = require('path')`

			`describe 'AccessTokenEncryptor', ->`

			`beforeEach ->`
			`@testObject = {"hello":"world"}`
Replace deprecated createCipher with createCipheriv for new tokens Co-authored-by: Alasdair Smith <ali@alasdairsmith.co.uk> 2019-12-04 05:03:10 -05:00			`@encrypted2015 = "2015.1:473a66fb5d816bc716f278ab819d88a5:+mTg7O9sgUND8pNQFG6h2GE="`
			`@encrypted2016 = "2016.1:76a7d64a444ccee1a515b49c44844a69:m5YSkexUsLjcF4gLncm72+k="`
Add an explicit test for a 2019 string 2019-12-09 11:07:25 -05:00			`@encrypted2019 = "2019.1:627143b2ab185a020c8720253a4c984e:7gnY6Ez3/Y3UWgLHLfBtJsE=:bf75cecb6aeea55b3c060e1122d2a82d"`
init (copied from thirdpartydatastore-sharelatex) 2016-03-25 07:04:46 -04:00			`@badLabel = "xxxxxx:c7a39310056b694c:jQf+Uh5Den3JREtvc82GW5Q="`
			`@badKey = "2015.1:d7a39310056b694c:jQf+Uh5Den3JREtvc82GW5Q="`
			`@badCipherText = "2015.1:c7a39310056b694c:xQf+Uh5Den3JREtvc82GW5Q="`
change to be a class, with settings passed in 2016-03-25 10:33:38 -04:00			`@settings =`
Replace deprecated createCipher with createCipheriv for new tokens Co-authored-by: Alasdair Smith <ali@alasdairsmith.co.uk> 2019-12-04 05:03:10 -05:00			`cipherLabel: "2019.1"`
change to be a class, with settings passed in 2016-03-25 10:33:38 -04:00			`cipherPasswords:`
			`"2016.1": "11111111111111111111111111111111111111"`
			`"2015.1": "22222222222222222222222222222222222222"`
Replace deprecated createCipher with createCipheriv for new tokens Co-authored-by: Alasdair Smith <ali@alasdairsmith.co.uk> 2019-12-04 05:03:10 -05:00			`"2019.1": "33333333333333333333333333333333333333"`
Keep oldmethods and use old method when app uses an older label 2019-12-09 09:49:23 -05:00			`@AccessTokenEncryptor = SandboxedModule.require modulePath`
			`@encryptor = new @AccessTokenEncryptor(@settings)`
init (copied from thirdpartydatastore-sharelatex) 2016-03-25 07:04:46 -04:00
			`describe "encrypt", ->`
			`it 'should encrypt the object', (done)->`
change to be a class, with settings passed in 2016-03-25 10:33:38 -04:00			`@encryptor.encryptJson @testObject, (err, encrypted)->`
init (copied from thirdpartydatastore-sharelatex) 2016-03-25 07:04:46 -04:00			`expect(err).to.be.null`
Keep oldmethods and use old method when app uses an older label 2019-12-09 09:49:23 -05:00			`encrypted.should.match(/^2019.1:[0-9a-f]{32}:[a-zA-Z0-9=+\/]+:[0-9a-f]{32}$/)`
init (copied from thirdpartydatastore-sharelatex) 2016-03-25 07:04:46 -04:00			`done()`

			`it 'should encrypt the object differently the next time', (done)->`
change to be a class, with settings passed in 2016-03-25 10:33:38 -04:00			`@encryptor.encryptJson @testObject, (err, encrypted1)=>`
			`@encryptor.encryptJson @testObject, (err, encrypted2)=>`
init (copied from thirdpartydatastore-sharelatex) 2016-03-25 07:04:46 -04:00			`encrypted1.should.not.equal(encrypted2)`
			`done()`

			`describe "decrypt", ->`
			`it 'should decrypt the string to get the same object', (done)->`
change to be a class, with settings passed in 2016-03-25 10:33:38 -04:00			`@encryptor.encryptJson @testObject, (err, encrypted) =>`
init (copied from thirdpartydatastore-sharelatex) 2016-03-25 07:04:46 -04:00			`expect(err).to.be.null`
change to be a class, with settings passed in 2016-03-25 10:33:38 -04:00			`@encryptor.decryptToJson encrypted, (err, decrypted) =>`
init (copied from thirdpartydatastore-sharelatex) 2016-03-25 07:04:46 -04:00			`expect(err).to.be.null`
			`expect(decrypted).to.deep.equal @testObject`
			`done()`

Replace deprecated createCipher with createCipheriv for new tokens Co-authored-by: Alasdair Smith <ali@alasdairsmith.co.uk> 2019-12-04 05:03:10 -05:00			`it 'should decrypt an 2015 string to get the same object', (done)->`
			`@encryptor.decryptToJson @encrypted2015, (err, decrypted)=>`
			`expect(err).to.be.null`
			`expect(decrypted).to.deep.equal @testObject`
			`done()`

			`it 'should decrypt an 2016 string to get the same object', (done)->`
			`@encryptor.decryptToJson @encrypted2016, (err, decrypted)=>`
init (copied from thirdpartydatastore-sharelatex) 2016-03-25 07:04:46 -04:00			`expect(err).to.be.null`
			`expect(decrypted).to.deep.equal @testObject`
			`done()`

Add an explicit test for a 2019 string 2019-12-09 11:07:25 -05:00			`it 'should decrypt an 2019 string to get the same object', (done)->`
			`@encryptor.decryptToJson @encrypted2019, (err, decrypted)=>`
			`expect(err).to.be.null`
			`expect(decrypted).to.deep.equal @testObject`
			`done()`

init (copied from thirdpartydatastore-sharelatex) 2016-03-25 07:04:46 -04:00			`it 'should return an error when decrypting an invalid label', (done)->`
change to be a class, with settings passed in 2016-03-25 10:33:38 -04:00			`@encryptor.decryptToJson @badLabel, (err, decrypted)->`
init (copied from thirdpartydatastore-sharelatex) 2016-03-25 07:04:46 -04:00			`expect(err).to.be.instanceof(Error)`
			`expect(decrypted).to.be.undefined`
			`done()`

			`it 'should return an error when decrypting an invalid key', (done)->`
change to be a class, with settings passed in 2016-03-25 10:33:38 -04:00			`@encryptor.decryptToJson @badKey, (err, decrypted)->`
init (copied from thirdpartydatastore-sharelatex) 2016-03-25 07:04:46 -04:00			`expect(err).to.be.instanceof(Error)`
			`expect(decrypted).to.be.undefined`
			`done()`

			`it 'should return an error when decrypting an invalid ciphertext',(done)->`
change to be a class, with settings passed in 2016-03-25 10:33:38 -04:00			`@encryptor.decryptToJson @badCipherText, (err, decrypted)->`
init (copied from thirdpartydatastore-sharelatex) 2016-03-25 07:04:46 -04:00			`expect(err).to.be.instanceof(Error)`
			`expect(decrypted).to.be.undefined`
			`done()`