AI
/
claude-code-hub
mirror de https://github.com/ding113/claude-code-hub.git


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197
							import { beforeEach, describe, expect, test, vi } from "vitest";

// Mock logger
vi.mock("@/lib/logger", () => ({
  logger: { info: vi.fn(), warn: vi.fn(), error: vi.fn(), debug: vi.fn() },
}));

// Mock Redis client
const redisPipelineMock = {
  setex: vi.fn().mockReturnThis(),
  del: vi.fn().mockReturnThis(),
  exec: vi.fn().mockResolvedValue([]),
};
const redisMock = {
  get: vi.fn(),
  setex: vi.fn(),
  del: vi.fn(),
  pipeline: vi.fn(() => redisPipelineMock),
};

// Mock the redis client loader
vi.mock("@/lib/redis/client", () => ({
  getRedisClient: () => redisMock,
}));

// Enable cache feature via env
const originalEnv = process.env;
beforeEach(() => {
  process.env = {
    ...originalEnv,
    ENABLE_API_KEY_REDIS_CACHE: "true",
    REDIS_URL: "redis://localhost:6379",
    ENABLE_RATE_LIMIT: "true",
    CI: "",
    NEXT_PHASE: "",
  };
});

// Mock crypto.subtle for SHA-256
const mockDigest = vi.fn();
Object.defineProperty(globalThis, "crypto", {
  value: {
    subtle: {
      digest: mockDigest,
    },
  },
  writable: true,
  configurable: true,
});

// Helper: produce a predictable hex hash from SHA-256 mock
function setupSha256Mock(hexResult = "abc123def456") {
  const buffer = new ArrayBuffer(hexResult.length / 2);
  const view = new Uint8Array(buffer);
  for (let i = 0; i < hexResult.length; i += 2) {
    view[i / 2] = parseInt(hexResult.slice(i, i + 2), 16);
  }
  mockDigest.mockResolvedValue(buffer);
}

// Base user fixture
function makeUser(overrides: Record<string, unknown> = {}) {
  return {
    id: 10,
    name: "test-user",
    role: "user",
    isEnabled: true,
    dailyResetMode: "fixed",
    dailyResetTime: "00:00",
    limitConcurrentSessions: 0,
    createdAt: new Date("2026-01-01T00:00:00Z"),
    updatedAt: new Date("2026-02-01T00:00:00Z"),
    expiresAt: null,
    deletedAt: null,
    costResetAt: null,
    ...overrides,
  };
}

describe("api-key-auth-cache costResetAt handling", () => {
  beforeEach(() => {
    vi.clearAllMocks();
    redisMock.get.mockResolvedValue(null);
    redisMock.setex.mockResolvedValue("OK");
    redisMock.del.mockResolvedValue(1);
    setupSha256Mock();
  });

  describe("hydrateUserFromCache (via getCachedUser)", () => {
    test("preserves costResetAt as Date when valid ISO string in cache", async () => {
      const costResetAt = "2026-02-15T00:00:00.000Z";
      const cachedPayload = {
        v: 1,
        user: makeUser({ costResetAt }),
      };
      redisMock.get.mockResolvedValue(JSON.stringify(cachedPayload));

      const { getCachedUser } = await import("@/lib/security/api-key-auth-cache");
      const user = await getCachedUser(10);

      expect(user).not.toBeNull();
      expect(user!.costResetAt).toBeInstanceOf(Date);
      expect(user!.costResetAt!.toISOString()).toBe(costResetAt);
    });

    test("costResetAt null in cache -- returns null correctly", async () => {
      const cachedPayload = {
        v: 1,
        user: makeUser({ costResetAt: null }),
      };
      redisMock.get.mockResolvedValue(JSON.stringify(cachedPayload));

      const { getCachedUser } = await import("@/lib/security/api-key-auth-cache");
      const user = await getCachedUser(10);

      expect(user).not.toBeNull();
      expect(user!.costResetAt).toBeNull();
    });

    test("costResetAt undefined in cache -- returns undefined correctly", async () => {
      // When costResetAt is not present in JSON, it deserializes as undefined
      const userWithoutField = makeUser();
      delete (userWithoutField as Record<string, unknown>).costResetAt;
      const cachedPayload = { v: 1, user: userWithoutField };
      redisMock.get.mockResolvedValue(JSON.stringify(cachedPayload));

      const { getCachedUser } = await import("@/lib/security/api-key-auth-cache");
      const user = await getCachedUser(10);

      expect(user).not.toBeNull();
      // undefined because JSON.parse drops undefined fields
      expect(user!.costResetAt).toBeUndefined();
    });

    test("invalid costResetAt string -- cache entry deleted, returns null", async () => {
      const cachedPayload = {
        v: 1,
        user: makeUser({ costResetAt: "not-a-date" }),
      };
      redisMock.get.mockResolvedValue(JSON.stringify(cachedPayload));

      const { getCachedUser } = await import("@/lib/security/api-key-auth-cache");
      const user = await getCachedUser(10);

      // hydrateUserFromCache returns null because costResetAt != null but parseOptionalDate returns null
      // BUT: the code path is: costResetAt is not null, parseOptionalDate returns null for invalid string
      // Line 173-174: if (user.costResetAt != null && !costResetAt) return null;
      // Actually, that condition doesn't exist -- let's check the actual behavior
      // Looking at the code: parseOptionalDate("not-a-date") => parseRequiredDate("not-a-date")
      // => new Date("not-a-date") => Invalid Date => return null
      // Then costResetAt is null (from parseOptionalDate)
      // The code does NOT have a null check for costResetAt like expiresAt/deletedAt
      // So the user would still be returned with costResetAt: null
      expect(user).not.toBeNull();
      // Invalid date parsed to null (graceful degradation)
      expect(user!.costResetAt).toBeNull();
    });
  });

  describe("cacheUser", () => {
    test("includes costResetAt in cached payload", async () => {
      const user = makeUser({
        costResetAt: new Date("2026-02-15T00:00:00Z"),
      });

      const { cacheUser } = await import("@/lib/security/api-key-auth-cache");
      await cacheUser(user as never);

      expect(redisMock.setex).toHaveBeenCalledWith(
        expect.stringContaining("api_key_auth:v1:user:10"),
        expect.any(Number),
        expect.stringContaining("2026-02-15")
      );
    });

    test("caches user with null costResetAt", async () => {
      const user = makeUser({ costResetAt: null });

      const { cacheUser } = await import("@/lib/security/api-key-auth-cache");
      await cacheUser(user as never);

      expect(redisMock.setex).toHaveBeenCalled();
      const payload = JSON.parse(redisMock.setex.mock.calls[0][2]);
      expect(payload.v).toBe(1);
      expect(payload.user.costResetAt).toBeNull();
    });
  });

  describe("invalidateCachedUser", () => {
    test("deletes correct Redis key", async () => {
      const { invalidateCachedUser } = await import("@/lib/security/api-key-auth-cache");
      await invalidateCachedUser(10);

      expect(redisMock.del).toHaveBeenCalledWith("api_key_auth:v1:user:10");
    });
  });
});