JWTAuth to JWT

Signed-off-by: Vishal Rana <vr@labstack.com>
2025-12-13 23:35:43 +02:00 · 2016-05-07 07:45:03 -07:00
parent 37f05202e8
commit e943ed24be
3 changed files with 22 additions and 22 deletions
--- a/middleware/jwt_test.go
+++ b/middleware/jwt_test.go
@@ -0,0 +1,56 @@
+package middleware
+
+import (
+	"net/http"
+	"testing"
+
+	"github.com/dgrijalva/jwt-go"
+	"github.com/labstack/echo"
+	"github.com/labstack/echo/test"
+	"github.com/stretchr/testify/assert"
+)
+
+func TestJWT(t *testing.T) {
+	e := echo.New()
+	req := test.NewRequest(echo.GET, "/", nil)
+	res := test.NewResponseRecorder()
+	c := e.NewContext(req, res)
+	handler := func(c echo.Context) error {
+		return c.String(http.StatusOK, "test")
+	}
+	config := JWTConfig{}
+	token := "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiYWRtaW4iOnRydWV9.TJVA95OrM7E2cBab30RMHrHDcEfxjoYZgeFONFh7HgQ"
+
+	// No signing key provided
+	assert.Panics(t, func() {
+		JWTWithConfig(config)
+	})
+
+	// Unexpected signing method
+	config.SigningKey = []byte("secret")
+	config.SigningMethod = "RS256"
+	h := JWTWithConfig(config)(handler)
+	he := h(c).(*echo.HTTPError)
+	assert.Equal(t, http.StatusBadRequest, he.Code)
+
+	// Invalid key
+	auth := bearer + " " + token
+	req.Header().Set(echo.HeaderAuthorization, auth)
+	config.SigningKey = []byte("invalid-key")
+	h = JWTWithConfig(config)(handler)
+	he = h(c).(*echo.HTTPError)
+	assert.Equal(t, http.StatusUnauthorized, he.Code)
+
+	// Valid JWT
+	h = JWT([]byte("secret"))(handler)
+	if assert.NoError(t, h(c)) {
+		user := c.Get("user").(*jwt.Token)
+		assert.Equal(t, user.Claims["name"], "John Doe")
+	}
+
+	// Invalid Authorization header
+	req.Header().Set(echo.HeaderAuthorization, "invalid-auth")
+	h = JWT([]byte("secret"))(handler)
+	he = h(c).(*echo.HTTPError)
+	assert.Equal(t, http.StatusBadRequest, he.Code)
+}