Authentication mocks (#16)

* Updated npm dependencies

* Added basic auth test

* Added the documentation

Author: StanleyMasinde

.mocharc.json

@@ -1,3 +1,4 @@
 {
-    "timeout": 5000
+    "timeout": 5000,
+    "exit": true
 }

README.md

@@ -13,6 +13,7 @@
 | /products                    |  GET   |  Returns a collection of products         |
 | /products/:sku               |  GET   |  Returns the products with the specified sku|
 | /restaurants                 |  GET   |  Returns a collection of restaurant data  |
+| /auth/login                  |  POST  |  Returns a token for the user             |
 
 ## Development 
 1. Clone this repository `git clone https://github.com/opensource254/mock-api.git`

app.js

@@ -10,6 +10,7 @@ const postsRouter = require('./routes/posts');
 const postWithUserRouter = require('./routes/postwithuser');
 const productRouter = require('./routes/products');
 const restaurantsRouter = require('./routes/restaurants');
+const authRouter = require('./routes/auth');
 
 const app = express();
 
@@ -26,5 +27,6 @@ app.use('/posts', postsRouter);
 app.use('/postwithuser', postWithUserRouter);
 app.use('/products', productRouter)
 app.use('/restaurants', restaurantsRouter)
+app.use('/auth', authRouter)
 
 module.exports = app;

package-lock.json

@@ -12,6 +12,7 @@
     "cors": "^2.8.5",
     "debug": "~2.6.9",
     "express": "~4.16.1",
+    "faker": "^5.5.3",
     "morgan": "~1.9.1"
   },
   "devDependencies": {

package.json

@@ -0,0 +1,46 @@
+const router = require('express').Router();
+const faker = require('faker');
+
+router.post('/login', (req, res) => {
+    let admin = {
+        username: 'admin',
+        password: 'admin'
+    };
+
+    let user = {
+        username: 'user',
+        password: 'user'
+    };
+
+    if (req.body.username === admin.username && req.body.password === admin.password) {
+        // Create a fake user
+        let user = {
+            id: faker.datatype.uuid(),
+            username: faker.internet.userName(),
+            role: 'admin',
+            token: faker.datatype.uuid(),
+            createdAt: faker.date.past(),
+            updatedAt: faker.date.past()
+        };
+        return res.json({ user });
+    }
+
+    if (req.body.username === user.username && req.body.password === user.password) {
+        // Create a fake user
+        let user = {
+            id: faker.datatype.uuid(),
+            username: faker.internet.userName(),
+            role: 'user',
+            token: faker.datatype.uuid(),
+            createdAt: faker.date.past(),
+            updatedAt: faker.date.past()
+        };
+        return res.json({ user });
+    }
+
+    res.status(401).json({
+        message: 'Invalid Credentials'
+    });
+})
+
+module.exports = router;

routes/auth.js

@@ -0,0 +1,40 @@
+const chai = require('chai');
+const { should } = require('chai')
+const chaiHttp = require('chai-http')
+const server = require('../app')
+const app = chai.use(chaiHttp).request(server).keepOpen()
+
+describe('#Stateless authentication', () => {
+    it('Should return a simple token on successful authentication', async () => {
+        const res = await app.post('/auth/login').send({
+            username: 'admin',
+            password: 'admin'
+        })
+        console.log(res.body);
+        res.should.have.status(200)
+        res.body.user.should.have.property('token')
+    })
+
+    it('Should return an error on failed authentication', async () => {
+        const res = await app.post('/auth/login').send({
+            username: 'admin',
+            password: 'wrong'
+        })
+        res.should.have.status(401)
+        res.body.should.have.property('message')
+    })
+
+    it('Should get the user info on successful authentication', async () => {
+        const res = await app.post('/auth/login').send({
+            username: 'admin',
+            password: 'admin'
+        })
+        res.should.have.status(200)
+        res.body.should.have.property('user')
+        res.body.user.should.have.property('username')
+        res.body.user.should.have.property('role')
+        res.body.user.should.have.property('id')
+        res.body.user.should.have.property('createdAt')
+        res.body.user.should.have.property('updatedAt')
+    })
+})