Assignment4

* added hapi-auth-bearer-token * auth strategy is registered in it's own plugin './authtoken.js' * all routes must have valid token to be accessed - currently only one route exists. * adjusted project values to reflect assignment4 * tests adjusted to posses valid token.
zoe-1 · Dec 26, 2017 · 697dee8 · 697dee8
1 parent 7cd9e61
commit 697dee8
Show file tree

Hide file tree

Showing 7 changed files with 59 additions and 7 deletions.
diff --git a/README.md b/README.md
@@ -3,3 +3,4 @@
 * lesson1
 * lesson2
 * lesson3
+* lesson4
diff --git a/lib/authtoken.js b/lib/authtoken.js
@@ -0,0 +1,29 @@
+'use strict';
+
+// Declare internals
+
+const internals = {};
+
+
+const defaultValidateFunc = (request, token) => {
+
+    // Put database query to authenticate the token is valid here.
+
+    return {
+        isValid: token === '12345678',
+        credentials: { token }
+    };
+};
+
+exports.plugin = {
+    name: 'authtoken',
+    version: '1.0.0',
+    description: 'register hapi-auth-bearer-token strategy.',
+    register: function (server, options) {
+
+        server.auth.strategy('default', 'bearer-access-token', {
+            validate: defaultValidateFunc
+        });
+        server.auth.default('default');
+    }
+};
diff --git a/lib/index.js b/lib/index.js
@@ -5,6 +5,8 @@
 
 const Hapi = require('hapi');
 const Hoek = require('hoek');
+const HapiAuthBearerToken = require('hapi-auth-bearer-token');
+const AuthToken = require('./authtoken');
 
 // Load custom plugins
 
@@ -13,7 +15,9 @@ const Version = require('./version');
 const internals = {};
 
 internals.customPlugins = [
-    { plugin: Version, options: { message: 'lesson3' } }
+    { plugin: HapiAuthBearerToken, options: {} },
+    { plugin: AuthToken, options: {} },
+    { plugin: Version, options: { message: 'lesson4' } }
 ];
 
 internals.init = async (serverOptions) => {
@@ -24,8 +28,10 @@ internals.init = async (serverOptions) => {
 
         const server = new Hapi.Server(serverOptions);
 
-        await server.register(internals.customPlugins, { once: true });  // Our custom plugins register only once.
+        await server.register(internals.customPlugins, { once: true });  // These plugins register only once.
+
         await server.start();
+
         return server;
     }
     catch (err) {

diff --git a/lib/version.js b/lib/version.js
@@ -11,6 +11,9 @@ exports.plugin = {
     version: '1.0.0',
     register: function (server, options) {
 
+        // Use below to test requests to the live server.
+        // curl -H "Authorization: Bearer 12345678" -X GET http://localhost:8000/version
+
         const version = function (request, h) {
 
             return 'version ' + Package.version + ' ' + options.message;

diff --git a/package-lock.json b/package-lock.json
diff --git a/package.json b/package.json
@@ -1,6 +1,6 @@
 {
   "name": "university-v1.0.0",
-  "version": "1.0.3",
+  "version": "1.0.4",
   "description": "rewrite of the university",
   "main": "lib/index.js",
   "directories": {
@@ -27,7 +27,8 @@
   },
   "homepage": "https://github.com/zoe-1/university-rewrite#readme",
   "dependencies": {
-    "hapi": "17.x.x"
+    "hapi": "17.x.x",
+    "hapi-auth-bearer-token": "6.x.x"
   },
   "devDependencies": {
     "code": "5.x.x",

diff --git a/test/version.js b/test/version.js
@@ -24,9 +24,11 @@ describe('/version', () => {
 
         expect(server).to.be.an.object();
 
-        const res = await server.inject('/version');
+        const request = { method: 'GET', url: '/version', headers: { authorization: 'Bearer 12345678' } };
 
-        expect(res.result).to.equal('version 1.0.3 lesson3');
+        const res = await server.inject(request);
+
+        expect(res.result).to.equal('version 1.0.4 lesson4');
         await server.stop();
     });
 });