mirror/cypress
1
0
Fork 0
mirror of https://github.com/cypress-io/cypress.git synced 2026-04-26 00:50:41 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
33eb6c818e159cdc5ecfef4ba7c926fa7eb2d554
cypress/packages/server/test/unit/cloud/encryption_spec.js
T
Tim Griesser d26d877db8 chore: internal request preflight (#25772) 
---------

Co-authored-by: Emily Rohrbough <emilyrohrbough@users.noreply.github.com>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: cypress-bot[bot] <2f0651858c6e38e0+cypress-bot[bot]@users.noreply.github.com>
Co-authored-by: Ryan Manuel <ryanm@cypress.io>
Co-authored-by: Matt Henkes <mjhenkes@gmail.com>
Co-authored-by: Zach Bloomquist <git@chary.us>
2023-02-15 08:20:57 -05:00

67 lines
1.8 KiB
JavaScript
Raw Blame History

require('../../spec_helper')
const jose = require('jose')
const crypto = require('crypto')
const encryption = require('../../../lib/cloud/encryption')
const { expect } = require('chai')
const TEST_BODY = {
test: 'string',
array: [
{
a: 1,
},
{
a: 2,
},
{
a: 3,
},
],
}
const { publicKey, privateKey } = crypto.generateKeyPairSync('rsa', {
modulusLength: 2048,
})
describe('encryption', () => {
it('encrypts payloads with encryptRequest', async () => {
const { jwe, secretKey } = await encryption.encryptRequest({
encrypt: true,
body: TEST_BODY,
}, publicKey)
const { plaintext } = await jose.generalDecrypt(jwe, privateKey)
expect(JSON.parse(plaintext)).to.eql(TEST_BODY)
const unwrappedKey = crypto.privateDecrypt(privateKey, Buffer.from(jwe.recipients[0].encrypted_key, 'base64'))
expect(
unwrappedKey.toString('base64'),
).to.eql(secretKey.export().toString('base64'))
})
it('is possible to use the secretKey to decrypt future responses', async () => {
const { jwe, secretKey } = await encryption.encryptRequest({
encrypt: true,
body: TEST_BODY,
}, publicKey)
const RESPONSE_BODY = { runId: 123 }
const unwrappedKey = crypto.privateDecrypt(privateKey, Buffer.from(jwe.recipients[0].encrypted_key, 'base64'))
const unwrappedSecretKey = crypto.createSecretKey(unwrappedKey)
const enc = new jose.GeneralEncrypt(
Buffer.from(JSON.stringify(RESPONSE_BODY)),
)
enc.setProtectedHeader({ alg: 'A256GCMKW', enc: 'A256GCM', zip: 'DEF' }).addRecipient(unwrappedSecretKey)
const jweResponse = await enc.encrypt()
const roundtripResponse = await encryption.decryptResponse(jweResponse, secretKey)
expect(roundtripResponse).to.eql(RESPONSE_BODY)
})
})
Reference in New Issue View Git Blame Copy Permalink