Add support for --force-user flag for oidc auth

Author: dmitrizagidulin

config/defaults.js

@@ -1,7 +1,7 @@
 'use strict'
 
 module.exports = {
-  'auth': 'tls',
+  'auth': 'oidc',
   'configPath': './config',
   'dbPath': './.db',
   'port': 8443,

lib/api/authn/index.js

@@ -1,6 +1,23 @@
 'use strict'
 
+const debug = require('../../debug').authentication
+
+/**
+ * Enforces the `--force-user` server flag, hardcoding a webid for all requests,
+ * for testing purposes.
+ */
+function overrideWith (forceUserId) {
+  return (req, res, next) => {
+    req.session.userId = forceUserId
+    req.session.identified = true
+    debug('Identified user (override): ' + forceUserId)
+    res.set('User', forceUserId)
+    return next()
+  }
+}
+
 module.exports = {
   oidc: require('./webid-oidc'),
-  tls: require('./webid-tls')
+  tls: require('./webid-tls'),
+  overrideWith
 }

lib/create-app.js

@@ -203,6 +203,10 @@ function initAuthentication (argv, app) {
 
       // Enforce authentication with WebID-OIDC on all LDP routes
       app.use('/', oidc.rs.authenticate())
+
+      if (argv.forceUser) {
+        app.use('/', API.authn.overrideWith(argv.forceUser))
+      }
       break
     default:
       throw new TypeError('Unsupported authentication scheme')

lib/models/account-manager.js

@@ -489,8 +489,6 @@ class AccountManager {
       .then(resetToken => {
         let resetUrl = this.passwordResetUrl(resetToken, returnToUrl)
 
-        debug('Reset URL:', resetUrl)
-
         let emailData = {
           to: userAccount.email,
           webId: userAccount.webId,

test/integration/acl-tls.js

@@ -31,7 +31,8 @@ describe('ACL HTTP', function () {
     sslKey: path.join(__dirname, '../keys/key.pem'),
     sslCert: path.join(__dirname, '../keys/cert.pem'),
     webid: true,
-    strictOrigin: true
+    strictOrigin: true,
+    auth: 'tls'
   })
 
   before(function (done) {

test/unit/create-account-request.js

@@ -68,8 +68,10 @@ describe('CreateAccountRequest', () => {
   describe('createAccount()', () => {
     it('should return a 400 error if account already exists', done => {
       let accountManager = AccountManager.from({ host })
-      let locals = { authMethod: defaults.auth, accountManager }
-      let aliceData = { username: 'alice' }
+      let locals = { authMethod: defaults.auth, accountManager, oidc: { users: {} } }
+      let aliceData = {
+        username: 'alice', password: '1234'
+      }
       let req = HttpMocks.createRequest({ app: { locals }, body: aliceData })
 
       let request = CreateAccountRequest.fromParams(req, res)