Michael Freno
71972436b6
- Install jose (JWT) and bcryptjs (password hashing) dependencies - Create auth utilities: JWT sign/verify, password hash/verify, session management - Create createTRPCContext that extracts auth from session cookie, Bearer JWT, or x-api-key - Add publicProcedure, protectedProcedure, adminProcedure, rateLimitedProcedure with middleware - Wire context builder into SolidStart tRPC API handler - Update tRPC client to inject auth tokens and handle 401 redirects - Add unit tests for JWT, password, context builder, and middleware
23 lines
744 B
TypeScript
23 lines
744 B
TypeScript
import { describe, it, expect } from "vitest";
|
|
import { hashPassword, verifyPassword } from "./password";
|
|
|
|
describe("password", () => {
|
|
it("should hash a password", async () => {
|
|
const hash = await hashPassword("secure-password");
|
|
expect(hash).toBeTruthy();
|
|
expect(hash).not.toBe("secure-password");
|
|
});
|
|
|
|
it("should verify correct password", async () => {
|
|
const hash = await hashPassword("secure-password");
|
|
const valid = await verifyPassword("secure-password", hash);
|
|
expect(valid).toBe(true);
|
|
});
|
|
|
|
it("should reject wrong password", async () => {
|
|
const hash = await hashPassword("secure-password");
|
|
const valid = await verifyPassword("wrong-password", hash);
|
|
expect(valid).toBe(false);
|
|
});
|
|
});
|