mirror/formbricks
1
0
Fork 0
mirror of https://github.com/formbricks/formbricks.git synced 2026-05-12 11:28:58 -05:00
Code Issues Packages Projects Releases 172 Wiki Activity
Files
be80db8418be1b5cfbc628057a8cbc15f03dbc07
formbricks/apps/web/modules/api/lib/api-key-auth.test.ts
T
Bhagya Amarasinghe be80db8418 fix: address envoy auth review findings
2026-04-27 19:31:43 +05:30

41 lines
1.3 KiB
TypeScript
Raw Blame History

import { describe, expect, test } from "vitest";
import { getApiKeyFromHeaders, getBearerTokenFromHeaders } from "./api-key-auth";
describe("api-key-auth helpers", () => {
test("prefers x-api-key over bearer authorization", () => {
const headers = new Headers({
"x-api-key": "fbk_from_header",
authorization: "Bearer fbk_from_bearer",
});
expect(getApiKeyFromHeaders(headers)).toBe("fbk_from_header");
});
test("extracts bearer API keys", () => {
const headers = new Headers({
authorization: "Bearer fbk_from_bearer",
});
expect(getApiKeyFromHeaders(headers)).toBe("fbk_from_bearer");
expect(getBearerTokenFromHeaders(headers)).toBe("fbk_from_bearer");
});
test("does not treat jwt-shaped bearer tokens as API keys", () => {
const headers = new Headers({
authorization: "Bearer header.payload.signature",
});
expect(getApiKeyFromHeaders(headers)).toBeNull();
expect(getBearerTokenFromHeaders(headers)).toBe("header.payload.signature");
});
test("does not treat opaque bearer tokens as API keys", () => {
const headers = new Headers({
authorization: "Bearer opaque_service_token",
});
expect(getApiKeyFromHeaders(headers)).toBeNull();
expect(getBearerTokenFromHeaders(headers)).toBe("opaque_service_token");
});
});
Reference in New Issue View Git Blame Copy Permalink