wallet-core/packages/taler-wallet-cli/src/integrationtests/test-merchant-instances.ts

184 lines
4.9 KiB
TypeScript
Raw Normal View History

2021-03-02 20:03:39 +01:00
/*
This file is part of GNU Taler
(C) 2021 Taler Systems S.A.
GNU Taler is free software; you can redistribute it and/or modify it under the
terms of the GNU General Public License as published by the Free Software
Foundation; either version 3, or (at your option) any later version.
GNU Taler is distributed in the hope that it will be useful, but WITHOUT ANY
WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR
A PARTICULAR PURPOSE. See the GNU General Public License for more details.
You should have received a copy of the GNU General Public License along with
GNU Taler; see the file COPYING. If not, see <http://www.gnu.org/licenses/>
*/
/**
* Imports.
*/
import { URL } from "@gnu-taler/taler-util";
2021-03-02 20:03:39 +01:00
import axios from "axios";
import {
ExchangeService,
GlobalTestState,
MerchantApiClient,
MerchantService,
setupDb,
getPayto
2021-10-20 13:06:31 +02:00
} from "../harness/harness.js";
2021-03-02 20:03:39 +01:00
/**
* Do basic checks on instance management and authentication.
*/
export async function runMerchantInstancesTest(t: GlobalTestState) {
// Set up test environment
const db = await setupDb(t);
const exchange = ExchangeService.create(t, {
name: "testexchange-1",
currency: "TESTKUDOS",
httpPort: 8081,
database: db.connStr,
});
const merchant = await MerchantService.create(t, {
name: "testmerchant-1",
currency: "TESTKUDOS",
httpPort: 8083,
database: db.connStr,
});
// We add the exchange to the config, but note that the exchange won't be started.
merchant.addExchange(exchange);
await merchant.start();
await merchant.pingUntilAvailable();
// Base URL for the default instance.
const baseUrl = merchant.makeInstanceBaseUrl();
{
const r = await axios.get(new URL("config", baseUrl).href);
console.log(r.data);
t.assertDeepEqual(r.data.currency, "TESTKUDOS");
}
// Instances should initially be empty
{
const r = await axios.get(new URL("management/instances", baseUrl).href);
2021-03-02 20:03:39 +01:00
t.assertDeepEqual(r.data.instances, []);
}
// Add an instance, no auth!
await merchant.addInstance({
id: "default",
name: "Default Instance",
paytoUris: [getPayto("merchant-default")],
2021-03-02 20:03:39 +01:00
auth: {
method: "external",
},
});
2021-03-04 13:42:08 +01:00
// Add an instance, no auth!
await merchant.addInstance({
id: "myinst",
name: "Second Instance",
paytoUris: [getPayto("merchant-default")],
2021-03-04 13:42:08 +01:00
auth: {
method: "external",
},
});
2021-03-02 20:03:39 +01:00
let merchantClient = new MerchantApiClient(merchant.makeInstanceBaseUrl(), {
method: "external",
});
{
const r = await merchantClient.getInstances();
2021-03-04 13:42:08 +01:00
t.assertDeepEqual(r.instances.length, 2);
2021-03-02 20:03:39 +01:00
}
// Check that a "malformed" bearer Authorization header gets ignored
{
const url = merchant.makeInstanceBaseUrl();
const resp = await axios.get(new URL("management/instances", url).href, {
2021-03-02 20:03:39 +01:00
headers: {
2021-03-04 13:42:08 +01:00
Authorization: "foo bar-baz",
2021-03-02 20:03:39 +01:00
},
});
t.assertDeepEqual(resp.status, 200);
}
{
const fullDetails = await merchantClient.getInstanceFullDetails("default");
t.assertDeepEqual(fullDetails.auth.method, "external");
}
2021-03-02 20:03:39 +01:00
await merchantClient.changeAuth({
method: "token",
token: "secret-token:foobar",
});
// Now this should fail, as we didn't change the auth of the client yet.
const exc = await t.assertThrowsAsync(async () => {
2021-04-08 16:31:43 +02:00
console.log("requesting instances with auth", merchantClient.auth);
const resp = await merchantClient.getInstances();
2021-04-09 16:43:57 +02:00
console.log("instances result:", resp);
2021-03-02 20:03:39 +01:00
});
2021-04-09 16:43:57 +02:00
console.log(exc);
2021-03-02 20:03:39 +01:00
t.assertAxiosError(exc);
2021-04-09 16:43:57 +02:00
t.assertTrue(exc.response?.status === 401);
2021-03-02 20:03:39 +01:00
merchantClient = new MerchantApiClient(merchant.makeInstanceBaseUrl(), {
method: "token",
token: "secret-token:foobar",
});
// With the new client auth settings, request should work again.
await merchantClient.getInstances();
// Now, try some variations.
{
const url = merchant.makeInstanceBaseUrl();
const resp = await axios.get(new URL("management/instances", url).href, {
2021-03-02 20:03:39 +01:00
headers: {
// Note the spaces
2021-03-04 13:42:08 +01:00
Authorization: "Bearer secret-token:foobar",
},
2021-03-02 20:03:39 +01:00
});
t.assertDeepEqual(resp.status, 200);
}
// Check that auth is reported properly
{
const fullDetails = await merchantClient.getInstanceFullDetails("default");
t.assertDeepEqual(fullDetails.auth.method, "token");
// Token should *not* be reported back.
t.assertDeepEqual(fullDetails.auth.token, undefined);
}
2021-03-04 13:42:08 +01:00
// Check that deleting an instance checks the auth
// of the default instance.
{
const unauthMerchantClient = new MerchantApiClient(
merchant.makeInstanceBaseUrl(),
{
method: "external",
},
);
const exc = await t.assertThrowsAsync(async () => {
2021-03-04 15:59:31 +01:00
await unauthMerchantClient.deleteInstance("myinst");
2021-03-04 13:42:08 +01:00
});
console.log(exc);
t.assertAxiosError(exc);
2021-04-09 16:43:57 +02:00
t.assertDeepEqual(exc.response?.status, 401);
2021-03-04 13:42:08 +01:00
}
2021-03-02 20:03:39 +01:00
}
runMerchantInstancesTest.suites = ["merchant"];