More integration tests and fixing cookies in v2.0 request

janaz · janaz · commit 5dfbfa1913c3 · 2020-05-02T16:50:10.000+10:00
diff --git a/src/eventToRequestOptions.ts b/src/eventToRequestOptions.ts
@@ -22,6 +22,9 @@ const eventToRequestOptions = (event: APIGatewayEvent, ctx?: LambdaContext): InP
   let ssl = false;
   const queryStringParams = getValuesFromStringAndMultiString(event.queryStringParameters, event.multiValueQueryStringParameters, false);
   const headers = getValuesFromStringAndMultiString(event.headers, event.multiValueHeaders);
+  if (Array.isArray(event.cookies)) {
+    headers['cookie'] = event.cookies.join('; ')
+  }
   if (ctx) {
     headers['x-aws-lambda-request-id'] = ctx.awsRequestId;
   }
diff --git a/src/types.ts b/src/types.ts
@@ -13,6 +13,7 @@ interface HttpRequestContext {
 export interface APIGatewayEvent {
   path?: string,
   version?: number | string,
+  cookies?: string[],
   queryStringParameters?: StringMap<string> | null,
   multiValueQueryStringParameters?: StringMap<string[]> | null,
   body?: string | null,
diff --git a/test/app/index.ts b/test/app/index.ts
@@ -23,6 +23,7 @@ app.get('/cookies', (_, res) => {
   res.cookie('chocolate', '10');
   res.cookie('peanut_butter', '20');
   res.cookie('cinnamon', '30');
+  res.cookie('hackyname', 'h3c/ky=;va{lu]e')
   res.send("cookies set");
 });
 
diff --git a/test/eventToRequestOptions.test.ts b/test/eventToRequestOptions.test.ts
@@ -23,7 +23,7 @@ describe('eventToRequestOptions', () => {
         "cloudfront-is-smarttv-viewer": "false",
         "cloudfront-is-tablet-viewer": "false",
         "cloudfront-viewer-country": "AU",
-        "cookie": "cookie1=value1; cookie2=value2; cookie3=value3",
+        "cookie": "cookie1=value1; cookie2=value2; cookie3=value3; hackyname=h3c%2Fky%3D%3Bva%7Blu%5De",
         "host": "apiid.execute-api.ap-southeast-2.amazonaws.com",
         "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36",
         "via": "2.0 6e1c2492999626e81fa810e92ced9820.cloudfront.net (CloudFront)",
@@ -49,7 +49,7 @@ describe('eventToRequestOptions', () => {
       "headers":  {
         "accept": "text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3",
         "accept-language": "en-US,en;q=0.9,pl-PL;q=0.8,pl;q=0.7,ru;q=0.6",
-        "cookie": "cookie3=value3; cookie2=value2; cookie1=value1",
+        "cookie": "cookie3=value3; cookie2=value2; cookie1=value1; hackyname=h3c%2Fky%3D%3Bva%7Blu%5De",
         "connection": "keep-alive",
         "host": "elbname-234234234234.ap-southeast-2.elb.amazonaws.com",
         "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36",
diff --git a/test/fixtures/alb-event.json b/test/fixtures/alb-event.json
@@ -14,7 +14,7 @@
         "accept-encoding": "gzip, deflate",
         "accept-language": "en-US,en;q=0.9,pl-PL;q=0.8,pl;q=0.7,ru;q=0.6",
         "connection": "keep-alive",
-        "cookie": "cookie3=value3; cookie2=value2; cookie1=value1",
+        "cookie": "cookie3=value3; cookie2=value2; cookie1=value1; hackyname=h3c%2Fky%3D%3Bva%7Blu%5De",
         "host": "elbname-234234234234.ap-southeast-2.elb.amazonaws.com",
         "upgrade-insecure-requests": "1",
         "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36",
diff --git a/test/fixtures/event-http-api-1.0.json b/test/fixtures/event-http-api-1.0.json
@@ -1,14 +1,14 @@
 {
     "version": "1.0",
     "resource": "$default",
-    "path": "/cookies",
+    "path": "/inspect",
     "httpMethod": "GET",
     "headers": {
         "Content-Length": "0",
-        "Host": "myapiid.execute-api.ap-southeast-2.amazonaws.com",
+        "Host": "apiid.execute-api.ap-southeast-2.amazonaws.com",
         "User-Agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36",
         "X-Amzn-Trace-Id": "Root=1-5eac36bd-7a4863e4e05a7ca67c0a68ae",
-        "X-Forwarded-For": "14.201.132.129",
+        "X-Forwarded-For": "1.2.3.4, 4.5.6.7, 9.9.9.9",
         "X-Forwarded-Port": "443",
         "X-Forwarded-Proto": "https",
         "accept": "text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9",
@@ -18,14 +18,15 @@
         "sec-fetch-mode": "navigate",
         "sec-fetch-site": "none",
         "sec-fetch-user": "?1",
-        "upgrade-insecure-requests": "1"
+        "upgrade-insecure-requests": "1",
+        "cookie": "cookie1=value1; cookie2=value2; cookie3=value3; hackyname=h3c%2Fky%3D%3Bva%7Blu%5De"
     },
     "multiValueHeaders": {
         "Content-Length": [
             "0"
         ],
         "Host": [
-            "myapiid.execute-api.ap-southeast-2.amazonaws.com"
+            "apiid.execute-api.ap-southeast-2.amazonaws.com"
         ],
         "User-Agent": [
             "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
@@ -34,7 +35,7 @@
             "Root=1-5eac36bd-7a4863e4e05a7ca67c0a68ae"
         ],
         "X-Forwarded-For": [
-            "14.201.132.129"
+            "1.2.3.4, 4.5.6.7, 9.9.9.9"
         ],
         "X-Forwarded-Port": [
             "443"
@@ -65,15 +66,20 @@
         ],
         "upgrade-insecure-requests": [
             "1"
+        ],
+        "cookie": [
+            "cookie1=value1; cookie2=value2; cookie3=value3; hackyname=h3c%2Fky%3D%3Bva%7Blu%5De"
         ]
     },
-    "queryStringParameters": null,
+    "queryStringParameters": {
+        "param": "ab cd"
+    },
     "multiValueQueryStringParameters": null,
     "requestContext": {
         "accountId": "356111732087",
-        "apiId": "myapiid",
-        "domainName": "myapiid.execute-api.ap-southeast-2.amazonaws.com",
-        "domainPrefix": "myapiid",
+        "apiId": "apiid",
+        "domainName": "apiid.execute-api.ap-southeast-2.amazonaws.com",
+        "domainPrefix": "apiid",
         "extendedRequestId": "L219niDmywMEJPQ=",
         "httpMethod": "GET",
         "identity": {
@@ -85,12 +91,12 @@
             "cognitoIdentityId": null,
             "cognitoIdentityPoolId": null,
             "principalOrgId": null,
-            "sourceIp": "14.201.132.129",
+            "sourceIp": "9.9.9.9",
             "user": null,
             "userAgent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36",
             "userArn": null
         },
-        "path": "/cookies",
+        "path": "/inspect",
         "protocol": "HTTP/1.1",
         "requestId": "L219niDmywMEJPQ=",
         "requestTime": "01/May/2020:14:48:29 +0000",
diff --git a/test/fixtures/event-http-api-2.0.json b/test/fixtures/event-http-api-2.0.json
@@ -1,36 +1,45 @@
 {
   "version": "2.0",
   "routeKey": "$default",
-  "rawPath": "/inspects",
-  "rawQueryString": "",
+  "rawPath": "/inspect",
+  "rawQueryString": "param=ab%20cd",
+  "cookies": [
+    "cookie1=value1",
+    "cookie2=value2",
+    "cookie3=value3",
+    "hackyname=h3c%2Fky%3D%3Bva%7Blu%5De"
+  ],
   "headers": {
       "accept": "text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9",
       "accept-encoding": "gzip, deflate, br",
       "accept-language": "en-US,en;q=0.9,pl-PL;q=0.8,pl;q=0.7,ru;q=0.6",
       "cache-control": "max-age=0",
       "content-length": "0",
-      "host": "myapiid.execute-api.ap-southeast-2.amazonaws.com",
+      "host": "apiid.execute-api.ap-southeast-2.amazonaws.com",
       "sec-fetch-dest": "document",
       "sec-fetch-mode": "navigate",
       "sec-fetch-site": "none",
       "sec-fetch-user": "?1",
       "upgrade-insecure-requests": "1",
       "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36",
       "x-amzn-trace-id": "Root=1-5eac37e3-8e447320ce745898566b3300",
-      "x-forwarded-for": "123.123.123.123",
+      "x-forwarded-for": "1.2.3.4, 4.5.6.7, 9.9.9.9",
       "x-forwarded-port": "443",
       "x-forwarded-proto": "https"
   },
+  "queryStringParameters": {
+    "param": "ab cd"
+  },
   "requestContext": {
       "accountId": "356111732087",
-      "apiId": "myapiid",
-      "domainName": "myapiid.execute-api.ap-southeast-2.amazonaws.com",
-      "domainPrefix": "myapiid",
+      "apiId": "apiid",
+      "domainName": "apiid.execute-api.ap-southeast-2.amazonaws.com",
+      "domainPrefix": "apiid",
       "http": {
           "method": "GET",
-          "path": "/cookies",
+          "path": "/inspect",
           "protocol": "HTTP/1.1",
-          "sourceIp": "123.123.123.123",
+          "sourceIp": "9.9.9.9",
           "userAgent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
       },
       "requestId": "L22rohfjSwMEMHA=",
diff --git a/test/fixtures/event-http-api.json b/test/fixtures/event-http-api.json
@@ -11,7 +11,7 @@
         "X-Forwarded-Port": "443",
         "X-Forwarded-Proto": "https",
         "accept": "*/*",
-        "cookie": "cookie1=value1; cookie2=value2; cookie3=value3"
+        "cookie": "cookie1=value1; cookie2=value2; cookie3=value3; hackyname=h3c%2Fky%3D%3Bva%7Blu%5De"
     },
     "multiValueHeaders": {
         "Content-Length": [
@@ -39,7 +39,7 @@
             "*/*"
         ],
         "cookie": [
-            "cookie1=value1; cookie2=value2; cookie3=value3"
+            "cookie1=value1; cookie2=value2; cookie3=value3; hackyname=h3c%2Fky%3D%3Bva%7Blu%5De"
         ]
     },
     "queryStringParameters": {
diff --git a/test/fixtures/event.json b/test/fixtures/event.json
@@ -12,7 +12,7 @@
         "CloudFront-Is-SmartTV-Viewer": "false",
         "CloudFront-Is-Tablet-Viewer": "false",
         "CloudFront-Viewer-Country": "AU",
-        "Cookie": "cookie1=value1; cookie2=value2; cookie3=value3",
+        "Cookie": "cookie1=value1; cookie2=value2; cookie3=value3; hackyname=h3c%2Fky%3D%3Bva%7Blu%5De",
         "Host": "apiid.execute-api.ap-southeast-2.amazonaws.com",
         "upgrade-insecure-requests": "1",
         "User-Agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36",
@@ -52,7 +52,7 @@
             "AU"
         ],
         "Cookie": [
-            "cookie1=value1; cookie2=value2; cookie3=value3"
+            "cookie1=value1; cookie2=value2; cookie3=value3; hackyname=h3c%2Fky%3D%3Bva%7Blu%5De"
         ],
         "Host": [
             "apiid.execute-api.ap-southeast-2.amazonaws.com"
diff --git a/test/integration.test.ts b/test/integration.test.ts
@@ -42,6 +42,7 @@ describe('integration', () => {
         'chocolate=10; Path=/',
         'peanut_butter=20; Path=/',
         'cinnamon=30; Path=/',
+        'hackyname=h3c%2Fky%3D%3Bva%7Blu%5De; Path=/',
       ]
     }));
   });
@@ -109,6 +110,7 @@ describe('integration', () => {
         cookie1: "value1",
         cookie2: "value2",
         cookie3: "value3",
+        hackyname: "h3c/ky=;va{lu]e",
       },
       fresh: false,
       hostname: "apiid.execute-api.ap-southeast-2.amazonaws.com",
@@ -142,6 +144,7 @@ describe('integration', () => {
     expect(response.isBase64Encoded).toEqual(false);
     expect(response.multiValueHeaders!["content-type"][0]).toEqual('application/json; charset=utf-8');
     expect(response.multiValueHeaders!["x-powered-by"][0]).toEqual('Express');
+    expect(response.headers).toBeUndefined()
     const json = JSON.parse(response.body);
     expect(json).toEqual({
       baseUrl: "",
@@ -150,6 +153,7 @@ describe('integration', () => {
         cookie1: "value1",
         cookie2: "value2",
         cookie3: "value3",
+        hackyname: "h3c/ky=;va{lu]e",
       },
       fresh: false,
       hostname: "apiid.execute-api.ap-southeast-2.amazonaws.com",
@@ -181,33 +185,86 @@ describe('integration', () => {
     const response = await handler(eventHttpApiV1)
     expect(response.statusCode).toEqual(200);
     expect(response.isBase64Encoded).toEqual(false);
-    expect(response.multiValueHeaders!["content-type"][0]).toEqual('text/html; charset=utf-8');
+    expect(response.multiValueHeaders!["content-type"][0]).toEqual('application/json; charset=utf-8');
     expect(response.multiValueHeaders!["x-powered-by"][0]).toEqual('Express');
-    expect(response.multiValueHeaders!["set-cookie"]).toEqual([
-      'chocolate=10; Path=/',
-      'peanut_butter=20; Path=/',
-      'cinnamon=30; Path=/',
-    ])
     expect(response.headers).toBeUndefined()
-    expect(response.cookies).toBeUndefined()
-    expect(response.body).toEqual('cookies set');
+    const json = JSON.parse(response.body);
+    expect(json).toEqual({
+      baseUrl: "",
+      body: {},
+      cookies: {
+        cookie1: "value1",
+        cookie2: "value2",
+        cookie3: "value3",
+        hackyname: "h3c/ky=;va{lu]e",
+      },
+      fresh: false,
+      hostname: "apiid.execute-api.ap-southeast-2.amazonaws.com",
+      ip: "4.5.6.7",
+      ips: ["4.5.6.7", "9.9.9.9"],
+      method: "GET",
+      originalUrl: "/inspect?param=ab%20cd",
+      params: {},
+      path: "/inspect",
+      protocol: "https",
+      query: {
+        param: "ab cd",
+      },
+      secure: true,
+      signedCookies: {},
+      stale: true,
+      subdomains: [
+        "ap-southeast-2",
+        "execute-api",
+        "apiid",
+      ],
+      url: "/inspect?param=ab%20cd",
+      xForwardedFor: "1.2.3.4, 4.5.6.7, 9.9.9.9",
+      xhr: false,
+    })
   })
 
   it('handles HTTP API v2.0 event', async () => {
     const response = await handler(eventHttpApiV2)
     expect(response.statusCode).toEqual(200);
     expect(response.isBase64Encoded).toEqual(false);
-    expect(response.headers!["content-type"]).toEqual('text/html; charset=utf-8');
+    expect(response.headers!["content-type"]).toEqual('application/json; charset=utf-8');
     expect(response.headers!["x-powered-by"]).toEqual('Express');
-    expect(response.headers!["set-cookie"]).toBeUndefined()
     expect(response.multiValueHeaders).toBeUndefined()
-    expect(response.cookies).toEqual([
-      'chocolate=10; Path=/',
-      'peanut_butter=20; Path=/',
-      'cinnamon=30; Path=/',
-      ])
-    expect(response.body).toEqual('cookies set');
-
+    const json = JSON.parse(response.body);
+    expect(json).toEqual({
+      baseUrl: "",
+      body: {},
+      cookies: {
+        cookie1: "value1",
+        cookie2: "value2",
+        cookie3: "value3",
+        hackyname: "h3c/ky=;va{lu]e",
+      },
+      fresh: false,
+      hostname: "apiid.execute-api.ap-southeast-2.amazonaws.com",
+      ip: "4.5.6.7",
+      ips: ["4.5.6.7", "9.9.9.9"],
+      method: "GET",
+      originalUrl: "/inspect?param=ab%20cd",
+      params: {},
+      path: "/inspect",
+      protocol: "https",
+      query: {
+        param: "ab cd",
+      },
+      secure: true,
+      signedCookies: {},
+      stale: true,
+      subdomains: [
+        "ap-southeast-2",
+        "execute-api",
+        "apiid",
+      ],
+      url: "/inspect?param=ab%20cd",
+      xForwardedFor: "1.2.3.4, 4.5.6.7, 9.9.9.9",
+      xhr: false,
+    })
   })
 
 
@@ -225,6 +282,7 @@ describe('integration', () => {
         cookie1: "value1",
         cookie2: "value2",
         cookie3: "value3",
+        hackyname: "h3c/ky=;va{lu]e",
       },
       fresh: false,
       hostname: "elbname-234234234234.ap-southeast-2.elb.amazonaws.com",
