mirror of
https://github.com/n8n-io/n8n.git
synced 2026-06-03 10:17:00 +02:00
123 lines
3.5 KiB
TypeScript
123 lines
3.5 KiB
TypeScript
import { createHmac } from 'crypto';
|
|
|
|
import { verifySignature } from '../CalTriggerHelpers';
|
|
|
|
describe('CalTriggerHelpers', () => {
|
|
let mockWebhookFunctions: any;
|
|
const testSecret = 'test-secret-key-12345';
|
|
const testPayload = Buffer.from('{"triggerEvent":"BOOKING_CREATED"}');
|
|
|
|
beforeEach(() => {
|
|
jest.clearAllMocks();
|
|
|
|
mockWebhookFunctions = {
|
|
getRequestObject: jest.fn(),
|
|
getWorkflowStaticData: jest.fn(),
|
|
};
|
|
});
|
|
|
|
describe('verifySignature', () => {
|
|
it('should return true if no secret is configured', () => {
|
|
mockWebhookFunctions.getWorkflowStaticData.mockReturnValue({});
|
|
mockWebhookFunctions.getRequestObject.mockReturnValue({
|
|
header: jest.fn().mockReturnValue(null),
|
|
rawBody: testPayload,
|
|
});
|
|
|
|
const result = verifySignature.call(mockWebhookFunctions);
|
|
|
|
expect(result).toBe(true);
|
|
});
|
|
|
|
it('should return true if signatures match', () => {
|
|
const hmac = createHmac('sha256', testSecret);
|
|
hmac.update(testPayload);
|
|
const expectedSignature = hmac.digest('hex');
|
|
|
|
mockWebhookFunctions.getWorkflowStaticData.mockReturnValue({
|
|
webhookSecret: testSecret,
|
|
});
|
|
mockWebhookFunctions.getRequestObject.mockReturnValue({
|
|
header: jest.fn().mockImplementation((header) => {
|
|
if (header === 'x-cal-signature-256') return expectedSignature;
|
|
return null;
|
|
}),
|
|
rawBody: testPayload,
|
|
});
|
|
|
|
const result = verifySignature.call(mockWebhookFunctions);
|
|
|
|
expect(result).toBe(true);
|
|
});
|
|
|
|
it('should return false if signatures do not match', () => {
|
|
const wrongSignature = 'a'.repeat(64);
|
|
|
|
mockWebhookFunctions.getWorkflowStaticData.mockReturnValue({
|
|
webhookSecret: testSecret,
|
|
});
|
|
mockWebhookFunctions.getRequestObject.mockReturnValue({
|
|
header: jest.fn().mockImplementation((header) => {
|
|
if (header === 'x-cal-signature-256') return wrongSignature;
|
|
return null;
|
|
}),
|
|
rawBody: testPayload,
|
|
});
|
|
|
|
const result = verifySignature.call(mockWebhookFunctions);
|
|
|
|
expect(result).toBe(false);
|
|
});
|
|
|
|
it('should return false if signature header is missing', () => {
|
|
mockWebhookFunctions.getWorkflowStaticData.mockReturnValue({
|
|
webhookSecret: testSecret,
|
|
});
|
|
mockWebhookFunctions.getRequestObject.mockReturnValue({
|
|
header: jest.fn().mockReturnValue(null),
|
|
rawBody: testPayload,
|
|
});
|
|
|
|
const result = verifySignature.call(mockWebhookFunctions);
|
|
|
|
expect(result).toBe(false);
|
|
});
|
|
|
|
it('should return false if rawBody is missing but secret is configured', () => {
|
|
mockWebhookFunctions.getWorkflowStaticData.mockReturnValue({
|
|
webhookSecret: testSecret,
|
|
});
|
|
mockWebhookFunctions.getRequestObject.mockReturnValue({
|
|
header: jest.fn().mockReturnValue('any-signature'),
|
|
rawBody: undefined,
|
|
});
|
|
|
|
const result = verifySignature.call(mockWebhookFunctions);
|
|
|
|
expect(result).toBe(false);
|
|
});
|
|
|
|
it('should accept rawBody as a string', () => {
|
|
const stringPayload = '{"triggerEvent":"BOOKING_CREATED"}';
|
|
const hmac = createHmac('sha256', testSecret);
|
|
hmac.update(Buffer.from(stringPayload));
|
|
const expectedSignature = hmac.digest('hex');
|
|
|
|
mockWebhookFunctions.getWorkflowStaticData.mockReturnValue({
|
|
webhookSecret: testSecret,
|
|
});
|
|
mockWebhookFunctions.getRequestObject.mockReturnValue({
|
|
header: jest.fn().mockImplementation((header) => {
|
|
if (header === 'x-cal-signature-256') return expectedSignature;
|
|
return null;
|
|
}),
|
|
rawBody: stringPayload,
|
|
});
|
|
|
|
const result = verifySignature.call(mockWebhookFunctions);
|
|
|
|
expect(result).toBe(true);
|
|
});
|
|
});
|
|
});
|