PN-2750: change header keys to lower case (#68)

* fix: change header keys to lower case * fix: add test to check that tokenExchange works with uppercase keys in headerfix: add test to check that tokenExchange works with uppercase keys in headerss (cherry picked from commit 4b01d7d)
pagopa · Dec 5, 2022 · 8058b16 · 8058b16
1 parent 3d60ef3
commit 8058b16
Show file tree

Hide file tree

Showing 2 changed files with 31 additions and 1 deletion.
diff --git a/tokenExchange/src/app/eventHandler.js b/tokenExchange/src/app/eventHandler.js
@@ -5,6 +5,7 @@ const auditLog = require("./log.js");
 
 module.exports = {
     async handleEvent(event){
+        event.headers = makeLower(event.headers);
         const eventOrigin = event?.headers?.origin;
         if (eventOrigin) {
             auditLog('', 'AUD_ACC_LOGIN', eventOrigin).info('info');
@@ -109,3 +110,14 @@ function generateKoResponse(err, allowedOrigin) {
         isBase64Encoded: false
     };
 }
+
+function makeLower(headers) {
+    let head = {}
+    for(const key in headers) {
+        if (headers.hasOwnProperty(key)) {
+            head[key.toLowerCase()] = headers[key]
+        }
+    }
+
+    return head
+}
diff --git a/tokenExchange/src/test/eventHandler.test.js b/tokenExchange/src/test/eventHandler.test.js
@@ -142,7 +142,7 @@ describe('test eventHandler', () => {
         // test token exchange
         const result = await eventHandler.handleEvent({
             httpMethod: 'POST',
-            headers:{
+            headers: {
                 origin: 'https://portale-pa-develop.fe.dev.pn.pagopa.it'
             },
             body: JSON.stringify({
@@ -156,4 +156,22 @@ describe('test eventHandler', () => {
         const sessionToken = await tokenGen.generateToken(decodedToken);
         expect(body).to.be.eql({...decodedToken, sessionToken});
     })
+
+    it('handle event with uppercase origin in headers', async () => {
+        const result = await eventHandler.handleEvent({
+            httpMethod: 'POST',
+            headers: {
+                Origin: 'https://portale-pa-develop.fe.dev.pn.pagopa.it'
+            },
+            body: JSON.stringify({
+                authorizationToken: 'eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6Imh1Yi1zcGlkLWxvZ2luLXRlc3QifQ.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.kNdfWLhZTxust5GOjTXoh03G9Px5KGOri9w6gV2xFc2FftjjguNZV2FxtkBKrzKmjH8BHQTpRO0hJV3uCb8zW_VHW3hbqwDQjw5MGYOMeAmR5xmlkVfF0Xd_7eaAPQv8VevceYypkMaq0UBzQR1SkBYKPj0Dn9ga52WAsJ-2P5cLSzSA52nVkISvAaAqOLg1-eoiVLv8KGw_STKctHq60SuQFa9vmXTDHblebR30SN9vFv0AJEj0oaw_pTWRjG3wW2pVJwhLrefwhS00n8E04649hTkcUPa9JxVBDwFgcDTJyii2KBSAJ0kmi7IO20VBiESmaeZQSpsH4JpkMnjyIIO9jjIkicssfW0HeAcJLZUfCo21lZcXh9kzxAXCrZ_rK09RUew7hZwP3Xpt4X-4DS1YzXfwl4So5ayDv38zsOocT10EJEEKQg8UOCSXzh8_-MgMsukU6fgdXny3epvLKq0aahtP3vqSbl9wZd5aPPEklU08PS-bWifw2Qa8gozzSR-MOPGTdLun5230Z1MQJmyJXy_HJuLIKeKMMfCAinhR5476xBE2bpC_gjvPcr7LGfUYTI6ZRLDFf96Muf48hq0bGWZzT2nxOBs5WpWQcOvPw3XIgQ8Th9wWSOWiSakpyT-AIpbj7K83Z-HkHIUwqzgbtApRPNhnlzaMrRELqF0'
+            })
+        });
+        expect(result.statusCode).to.equal(200);
+        const body = JSON.parse(result.body);
+        expect(body.error).to.be.undefined;
+        // calc sessionToken
+        const sessionToken = await tokenGen.generateToken(decodedToken);
+        expect(body).to.be.eql({...decodedToken, sessionToken});
+    })
 });