SEA.certify unit tests

2025-03-30 15:08:33 +00:00 · 2020-11-07 16:27:08 +07:00 · 2020-11-07 16:27:08 +07:00 · 5701b8b581
commit 5701b8b581
parent c95b99d376
2 changed files with 117 additions and 2 deletions
--- a/sea.js
+++ b/sea.js
@ -702,7 +702,6 @@
      if(cb){ try{ cb(r) }catch(e){console.log(e)} }
      return r;
    } catch(e) {
-      console.log(e);
      SEA.err = e;
      if(SEA.throw){ throw e }
      if(cb){ cb() }
@ -1322,7 +1321,8 @@
          // now verify certificate
          return SEA.verify(certificate, pub, data => { // check if "pub" (of the graph owner) really issued this cert
            if (u !== data && u !== data.e && msg.put['>'] && msg.put['>'] > parseFloat(data.e)) return no("Certificate expired.")
-            if (u !== data && data.c && data.p && (data.c.indexOf('*') || data.c.indexOf(certificant))) { // "data.c" = a list of certificants/certified users, "data.p" = a list of allowed patterns
+            // "data.c" = a list of certificants/certified users, "data.p" = a list of allowed patterns
+            if (u !== data && data.c && data.p && (data.c.indexOf('*') || data.c.indexOf(certificant))) {
              // ok, now "certificant" is in the "certificants" list, but is "path" allowed? Check path
              let path = soul + '/' + key
              path = path.replace(path.substring(0, path.indexOf('/') + 1), '')
--- a/test/sea/sea.js
+++ b/test/sea/sea.js
@ -1,3 +1,5 @@
+const expect = require('../expect')
+
 var root;
 var Gun;
 (function(){
@ -523,6 +525,119 @@ describe('SEA', function(){
        gun.user().auth(alice);
      });
    });
+
+    var alice = {
+      epriv: "Odtnqn-gng-NCLAULCdhxcG7KE26WSWdnNTBSYf8Dsw",
+      epub:
+          "rOWulaGGaNOKhrS9XtZUbdWjcIfTM5k5pImolyNwLe0.9Ks7JRrOQl3e401dSgCGlNWgvIC_DQm0EA9jGKXBDg0",
+      priv: "ijke9inZcbIpNUy5p3wiMRxUvqM12xU8WLewGzUXj8E",
+      pub:
+          "Zpf4KFmDmxNnHbRcTkZcAvPnke8_4hLv_FtNhBLcSps.ICAIjzky_T0ENNFIC5cjE-dN87dWp7cb88y0Rb3Nbvo"
+    }
+
+    var bob = {
+        epriv: "z5OC6iWYPVZO-sNqxd20t_qAPsA5nn9d-_yg5uW2mZM",
+        epub:
+            "bHUUjC-xP9QoTEyY5rubZJwft_szXgvetGOGUPOT8Mw.5J2j9SBZ8lqSHKgeFRbMZDs0EuNgM-VVWgMHE3YMFSI",
+        priv: "dWDbrbKUinmSxrlilKmyPzKAgmZCzm9i14bTydUf0kQ",
+        pub:
+            "naP2o7Ebn5tFF2V-z8pDFwOgOazduoiKogWnZ0cTtEE.K-sa7v6DXkb_saMFlCepqPUH--C-6rv6cO1t3wEo6-M"
+    }
+
+    var dave = {
+        epriv: "1eBCIIk30bzfTN50uqSTIN10TWP2AqkqExioV5P-oCE",
+        epub:
+            "PneRg1oMRw3mrrnjbRq8YSADLrdbg8BGEBoC0_P6It4.Vhv8QIkLhurxU5-LhHctaaNn5u3LNujqMNRdh6JbzvU",
+        priv: "XKJrGFWoERdHfhXfhc-VY0nIWeI2eAIDAfkX0nu_O0A",
+        pub:
+            "AXEGD2GABu1lnzTKML_wXHSlznwI5ZFebF-MLPKxI8Y.0Sx-Sd5GpF_1kzrUcliWRdhppq7FFehQi41oZ-WOJmI"
+    }
+    
+    it('certify + the good', function(done){(async function(){
+      var cert = await SEA.certify(bob, ["^private.*"], alice)
+      
+      user.auth(bob, () => {
+          var data = Gun.state.lex()
+          gun.get("~" + alice.pub)
+              .get("private")
+              .get("asdf")
+              .get("qwerty")
+              .put(data, () => {
+                  gun.get("~" + alice.pub)
+                  .get("private")
+                  .get("asdf")
+                  .get("qwerty").once(_data=>{
+                      expect(_data).to.be(data)
+                      user.leave()
+                      done()
+                  })
+              }, { opt: { cert } })
+      })
+    }())})
+
+    it('certify + the public', function(done){(async function(){
+      var cert = await SEA.certify(bob, ["^private.*"], alice)
+      
+      user.auth(bob, () => {
+          var data = Gun.state.lex()
+          gun.get("~" + alice.pub)
+              .get("private")
+              .get("asdf")
+              .get("qwerty")
+              .put(data, () => {
+                  user.leave()
+                  gun.get("~" + alice.pub)
+                  .get("private")
+                  .get("asdf")
+                  .get("qwerty").once(_data=>{
+                      expect(_data).to.be(data)
+                      done()
+                  })
+              }, { opt: { cert } })
+      })
+    }())})
+
+    it('certify + someone', function(done){(async function(){
+      var cert = await SEA.certify(bob, ["^private.*"], alice)
+      
+      user.auth(bob, () => {
+          var data = Gun.state.lex()
+          gun.get("~" + alice.pub)
+              .get("private")
+              .get("asdf")
+              .get("qwerty")
+              .put(data, () => {
+                  user.leave()
+                  user.auth(dave, () => {
+                      gun.get("~" + alice.pub)
+                      .get("private")
+                      .get("asdf")
+                      .get("qwerty").once(_data=>{
+                          expect(_data).to.be(data)
+                          done()
+                      })
+                  })
+                  
+              }, { opt: { cert } })
+      })
+    }())})
+
+    it('certify + the evil', function(done){(async function(){
+      var cert = await SEA.certify(bob, ["^private.*"], alice)
+      
+      user.auth(bob, () => {
+          var data = Gun.state.lex()
+          gun.get("~" + alice.pub)
+              .get("wrongway")
+              .get("asdf")
+              .get("qwerty")
+              .put(data, ack => {
+                expect(ack.err).to.be.ok()
+                done()
+              }, { opt: { cert } })
+      })
+    }())})
+
  });
 })