neoris/openvidu
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
openvidu/backend/tests/integration/api/security/participant-security.test.ts
Carlos Santos a2aa400a71 tests: fixed typos
2025-04-23 14:26:38 +02:00

266 lines
9.8 KiB
TypeScript
Raw Blame History

import request from 'supertest';
import { describe, it, expect, beforeAll, afterAll } from '@jest/globals';
import { Express } from 'express';
import { createRoom, startTestServer } from '../../../utils/helpers.js';
import { AuthMode, UserRole } from '../../../../src/typings/ce/index.js';
import INTERNAL_CONFIG from '../../../../src/config/internal-config.js';
import { MeetRoomHelper } from '../../../../src/helpers/room.helper.js';
import { changeSecurityPreferences, deleteAllRooms, loginUserAsRole } from '../../../utils/helpers.js';
const PARTICIPANTS_PATH = `${INTERNAL_CONFIG.INTERNAL_API_BASE_PATH_V1}/participants`;
describe('Participant API Security Tests', () => {
const PARTICIPANT_NAME = 'testParticipant';
let app: Express;
let userCookie: string;
let adminCookie: string;
let roomId: string;
let moderatorSecret: string;
let publisherSecret: string;
beforeAll(async () => {
app = startTestServer();
// Get cookies for admin and user
userCookie = await loginUserAsRole(UserRole.USER);
adminCookie = await loginUserAsRole(UserRole.ADMIN);
// Create a room and extract the roomId
const room = await createRoom();
roomId = room.roomId;
// Extract the moderator and publisher secrets from the room
({ moderatorSecret, publisherSecret } = MeetRoomHelper.extractSecretsFromRoom(room));
});
afterAll(async () => {
await deleteAllRooms();
}, 20000);
describe('Generate Participant Token Tests', () => {
it('should succeed when no authentication is required and participant is publisher', async () => {
await changeSecurityPreferences(adminCookie, { authMode: AuthMode.NONE });
const response = await request(app).post(`${PARTICIPANTS_PATH}/token`).send({
roomId,
participantName: PARTICIPANT_NAME,
secret: publisherSecret
});
expect(response.status).toBe(200);
});
it('should succeed when no authentication is required and participant is moderator', async () => {
await changeSecurityPreferences(adminCookie, { authMode: AuthMode.NONE });
const response = await request(app).post(`${PARTICIPANTS_PATH}/token`).send({
roomId,
participantName: PARTICIPANT_NAME,
secret: moderatorSecret
});
expect(response.status).toBe(200);
});
it('should succeed when authentication is required for moderator and participant is publisher', async () => {
await changeSecurityPreferences(adminCookie, { authMode: AuthMode.MODERATORS_ONLY });
const response = await request(app).post(`${PARTICIPANTS_PATH}/token`).send({
roomId,
participantName: PARTICIPANT_NAME,
secret: publisherSecret
});
expect(response.status).toBe(200);
});
it('should succeed when authentication is required for moderator, participant is moderator and authenticated', async () => {
await changeSecurityPreferences(adminCookie, { authMode: AuthMode.MODERATORS_ONLY });
const response = await request(app).post(`${PARTICIPANTS_PATH}/token`).set('Cookie', userCookie).send({
roomId,
participantName: PARTICIPANT_NAME,
secret: moderatorSecret
});
expect(response.status).toBe(200);
});
it('should fail when authentication is required for moderator and participant is moderator but not authenticated', async () => {
await changeSecurityPreferences(adminCookie, { authMode: AuthMode.MODERATORS_ONLY });
const response = await request(app).post(`${PARTICIPANTS_PATH}/token`).send({
roomId,
participantName: PARTICIPANT_NAME,
secret: moderatorSecret
});
expect(response.status).toBe(401);
});
it('should succeed when authentication is required for all users, participant is publisher and authenticated', async () => {
await changeSecurityPreferences(adminCookie, { authMode: AuthMode.ALL_USERS });
const response = await request(app).post(`${PARTICIPANTS_PATH}/token`).set('Cookie', userCookie).send({
roomId,
participantName: PARTICIPANT_NAME,
secret: publisherSecret
});
expect(response.status).toBe(200);
});
it('should fail when authentication is required for all users and participant is publisher but not authenticated', async () => {
await changeSecurityPreferences(adminCookie, { authMode: AuthMode.ALL_USERS });
const response = await request(app).post(`${PARTICIPANTS_PATH}/token`).send({
roomId,
participantName: PARTICIPANT_NAME,
secret: publisherSecret
});
expect(response.status).toBe(401);
});
it('should succeed when authentication is required for all users, participant is moderator and authenticated', async () => {
await changeSecurityPreferences(adminCookie, { authMode: AuthMode.ALL_USERS });
const response = await request(app).post(`${PARTICIPANTS_PATH}/token`).set('Cookie', userCookie).send({
roomId,
participantName: PARTICIPANT_NAME,
secret: moderatorSecret
});
expect(response.status).toBe(200);
});
it('should fail when authentication is required for all users and participant is moderator but not authenticated', async () => {
await changeSecurityPreferences(adminCookie, { authMode: AuthMode.ALL_USERS });
const response = await request(app).post(`${PARTICIPANTS_PATH}/token`).send({
roomId,
participantName: PARTICIPANT_NAME,
secret: moderatorSecret
});
expect(response.status).toBe(401);
});
});
describe('Refresh Participant Token Tests', () => {
it('should succeed when no authentication is required and participant is publisher', async () => {
await changeSecurityPreferences(adminCookie, { authMode: AuthMode.NONE });
const response = await request(app).post(`${PARTICIPANTS_PATH}/token/refresh`).send({
roomId,
participantName: PARTICIPANT_NAME,
secret: publisherSecret
});
// The response code should be 404 to consider a success because there is no real participant inside the room
expect(response.status).toBe(404);
});
it('should succeed when no authentication is required and participant is moderator', async () => {
await changeSecurityPreferences(adminCookie, { authMode: AuthMode.NONE });
const response = await request(app).post(`${PARTICIPANTS_PATH}/token/refresh`).send({
roomId,
participantName: PARTICIPANT_NAME,
secret: moderatorSecret
});
// The response code should be 404 to consider a success because there is no real participant inside the room
expect(response.status).toBe(404);
});
it('should succeed when authentication is required for moderator and participant is publisher', async () => {
await changeSecurityPreferences(adminCookie, { authMode: AuthMode.MODERATORS_ONLY });
const response = await request(app).post(`${PARTICIPANTS_PATH}/token/refresh`).send({
roomId,
participantName: PARTICIPANT_NAME,
secret: publisherSecret
});
// The response code should be 404 to consider a success because there is no real participant inside the room
expect(response.status).toBe(404);
});
it('should succeed when authentication is required for moderator, participant is moderator and authenticated', async () => {
await changeSecurityPreferences(adminCookie, { authMode: AuthMode.MODERATORS_ONLY });
const response = await request(app)
.post(`${PARTICIPANTS_PATH}/token/refresh`)
.set('Cookie', userCookie)
.send({
roomId,
participantName: PARTICIPANT_NAME,
secret: moderatorSecret
});
// The response code should be 404 to consider a success because there is no real participant inside the room
expect(response.status).toBe(404);
});
it('should fail when authentication is required for moderator and participant is moderator but not authenticated', async () => {
await changeSecurityPreferences(adminCookie, { authMode: AuthMode.MODERATORS_ONLY });
const response = await request(app).post(`${PARTICIPANTS_PATH}/token/refresh`).send({
roomId,
participantName: PARTICIPANT_NAME,
secret: moderatorSecret
});
expect(response.status).toBe(401);
});
it('should succeed when authentication is required for all users, participant is publisher and authenticated', async () => {
await changeSecurityPreferences(adminCookie, { authMode: AuthMode.ALL_USERS });
const response = await request(app)
.post(`${PARTICIPANTS_PATH}/token/refresh`)
.set('Cookie', userCookie)
.send({
roomId,
participantName: PARTICIPANT_NAME,
secret: publisherSecret
});
// The response code should be 404 to consider a success because there is no real participant inside the room
expect(response.status).toBe(404);
});
it('should fail when authentication is required for all users and participant is publisher but not authenticated', async () => {
await changeSecurityPreferences(adminCookie, { authMode: AuthMode.ALL_USERS });
const response = await request(app).post(`${PARTICIPANTS_PATH}/token/refresh`).send({
roomId,
participantName: PARTICIPANT_NAME,
secret: publisherSecret
});
expect(response.status).toBe(401);
});
it('should succeed when authentication is required for all users, participant is moderator and authenticated', async () => {
await changeSecurityPreferences(adminCookie, { authMode: AuthMode.ALL_USERS });
const response = await request(app)
.post(`${PARTICIPANTS_PATH}/token/refresh`)
.set('Cookie', userCookie)
.send({
roomId,
participantName: PARTICIPANT_NAME,
secret: moderatorSecret
});
// The response code should be 404 to consider a success because there is no real participant inside the room
expect(response.status).toBe(404);
});
it('should fail when authentication is required for all users and participant is moderator but not authenticated', async () => {
await changeSecurityPreferences(adminCookie, { authMode: AuthMode.ALL_USERS });
const response = await request(app).post(`${PARTICIPANTS_PATH}/token/refresh`).send({
roomId,
participantName: PARTICIPANT_NAME,
secret: moderatorSecret
});
expect(response.status).toBe(401);
});
});
});
Reference in New Issue View Git Blame Copy Permalink