fix tests

otothea · chipgpt · commit 74cc51c51721 · 2025-10-06T20:20:08.000-05:00
diff --git a/src/client/auth.test.ts b/src/client/auth.test.ts
@@ -37,50 +37,51 @@ describe('OAuth Authorization', () => {
         });
 
         it('returns scope when present', async () => {
-            const resourceUrl = 'https://resource.example.com/.well-known/oauth-protected-resource';
+            const scope = 'read';
             const mockResponse = {
                 headers: {
-                    get: jest.fn(name =>
-                        name === 'WWW-Authenticate' ? `Bearer realm="mcp", resource_metadata="${resourceUrl}", scope="read"` : null
-                    )
+                    get: jest.fn(name => (name === 'WWW-Authenticate' ? `Bearer realm="mcp", scope="${scope}"` : null))
                 }
             } as unknown as Response;
 
-            expect(extractWWWAuthenticateParams(mockResponse)).toEqual({ resourceMetadataUrl: new URL(resourceUrl), scope: 'read' });
+            expect(extractWWWAuthenticateParams(mockResponse)).toEqual({ scope: 'read' });
         });
 
         it('returns empty object if not bearer', async () => {
             const resourceUrl = 'https://resource.example.com/.well-known/oauth-protected-resource';
+            const scope = 'read';
             const mockResponse = {
                 headers: {
-                    get: jest.fn(name => (name === 'WWW-Authenticate' ? `Basic realm="mcp", resource_metadata="${resourceUrl}"` : null))
+                    get: jest.fn(name =>
+                        name === 'WWW-Authenticate' ? `Basic realm="mcp", resource_metadata="${resourceUrl}", scope="${scope}"` : null
+                    )
                 }
             } as unknown as Response;
 
-            expect(extractWWWAuthenticateParams(mockResponse)).toBe({});
+            expect(extractWWWAuthenticateParams(mockResponse)).toEqual({});
         });
 
         it('returns empty object if resource_metadata and scope not present', async () => {
             const mockResponse = {
                 headers: {
-                    get: jest.fn(name => (name === 'WWW-Authenticate' ? `Basic realm="mcp"` : null))
+                    get: jest.fn(name => (name === 'WWW-Authenticate' ? `Bearer realm="mcp"` : null))
                 }
             } as unknown as Response;
 
-            expect(extractWWWAuthenticateParams(mockResponse)).toBe({});
+            expect(extractWWWAuthenticateParams(mockResponse)).toEqual({});
         });
 
         it('returns undefined resourceMetadataUrl on invalid url', async () => {
             const resourceUrl = 'invalid-url';
             const mockResponse = {
                 headers: {
                     get: jest.fn(name =>
-                        name === 'WWW-Authenticate' ? `Basic realm="mcp", resource_metadata="${resourceUrl}" scope="read"` : null
+                        name === 'WWW-Authenticate' ? `Bearer realm="mcp", resource_metadata="${resourceUrl}", scope="read"` : null
                     )
                 }
             } as unknown as Response;
 
-            expect(extractWWWAuthenticateParams(mockResponse)).toBe({ scope: 'read' });
+            expect(extractWWWAuthenticateParams(mockResponse)).toEqual({ scope: 'read' });
         });
     });
 
diff --git a/src/client/middleware.test.ts b/src/client/middleware.test.ts
@@ -7,14 +7,14 @@ jest.mock('../client/auth.js', () => {
     return {
         ...actual,
         auth: jest.fn(),
-        extractResourceMetadataUrl: jest.fn()
+        extractWWWAuthenticateParams: jest.fn()
     };
 });
 
-import { auth, extractResourceMetadataUrl } from './auth.js';
+import { auth, extractWWWAuthenticateParams } from './auth.js';
 
 const mockAuth = auth as jest.MockedFunction<typeof auth>;
-const mockExtractResourceMetadataUrl = extractResourceMetadataUrl as jest.MockedFunction<typeof extractResourceMetadataUrl>;
+const mockExtractWWWAuthenticateParams = extractWWWAuthenticateParams as jest.MockedFunction<typeof extractWWWAuthenticateParams>;
 
 describe('withOAuth', () => {
     let mockProvider: jest.Mocked<OAuthClientProvider>;
@@ -129,8 +129,11 @@ describe('withOAuth', () => {
 
         mockFetch.mockResolvedValueOnce(unauthorizedResponse).mockResolvedValueOnce(successResponse);
 
-        const mockResourceUrl = new URL('https://oauth.example.com/.well-known/oauth-protected-resource');
-        mockExtractResourceMetadataUrl.mockReturnValue(mockResourceUrl);
+        const mockWWWAuthenticateParams = {
+            resourceMetadataUrl: new URL('https://oauth.example.com/.well-known/oauth-protected-resource'),
+            scope: 'read'
+        };
+        mockExtractWWWAuthenticateParams.mockReturnValue(mockWWWAuthenticateParams);
         mockAuth.mockResolvedValue('AUTHORIZED');
 
         const enhancedFetch = withOAuth(mockProvider, 'https://api.example.com')(mockFetch);
@@ -141,7 +144,8 @@ describe('withOAuth', () => {
         expect(mockFetch).toHaveBeenCalledTimes(2);
         expect(mockAuth).toHaveBeenCalledWith(mockProvider, {
             serverUrl: 'https://api.example.com',
-            resourceMetadataUrl: mockResourceUrl,
+            resourceMetadataUrl: mockWWWAuthenticateParams.resourceMetadataUrl,
+            scope: mockWWWAuthenticateParams.scope,
             fetchFn: mockFetch
         });
 
@@ -172,8 +176,11 @@ describe('withOAuth', () => {
 
         mockFetch.mockResolvedValueOnce(unauthorizedResponse).mockResolvedValueOnce(successResponse);
 
-        const mockResourceUrl = new URL('https://oauth.example.com/.well-known/oauth-protected-resource');
-        mockExtractResourceMetadataUrl.mockReturnValue(mockResourceUrl);
+        const mockWWWAuthenticateParams = {
+            resourceMetadataUrl: new URL('https://oauth.example.com/.well-known/oauth-protected-resource'),
+            scope: 'read'
+        };
+        mockExtractWWWAuthenticateParams.mockReturnValue(mockWWWAuthenticateParams);
         mockAuth.mockResolvedValue('AUTHORIZED');
 
         // Test without baseUrl - should extract from request URL
@@ -185,7 +192,8 @@ describe('withOAuth', () => {
         expect(mockFetch).toHaveBeenCalledTimes(2);
         expect(mockAuth).toHaveBeenCalledWith(mockProvider, {
             serverUrl: 'https://api.example.com', // Should be extracted from request URL
-            resourceMetadataUrl: mockResourceUrl,
+            resourceMetadataUrl: mockWWWAuthenticateParams.resourceMetadataUrl,
+            scope: mockWWWAuthenticateParams.scope,
             fetchFn: mockFetch
         });
 
@@ -203,7 +211,7 @@ describe('withOAuth', () => {
         });
 
         mockFetch.mockResolvedValue(new Response('Unauthorized', { status: 401 }));
-        mockExtractResourceMetadataUrl.mockReturnValue(undefined);
+        mockExtractWWWAuthenticateParams.mockReturnValue({});
         mockAuth.mockResolvedValue('REDIRECT');
 
         // Test without baseUrl
@@ -222,7 +230,7 @@ describe('withOAuth', () => {
         });
 
         mockFetch.mockResolvedValue(new Response('Unauthorized', { status: 401 }));
-        mockExtractResourceMetadataUrl.mockReturnValue(undefined);
+        mockExtractWWWAuthenticateParams.mockReturnValue({});
         mockAuth.mockRejectedValue(new Error('Network error'));
 
         const enhancedFetch = withOAuth(mockProvider, 'https://api.example.com')(mockFetch);
@@ -239,7 +247,7 @@ describe('withOAuth', () => {
 
         // Always return 401
         mockFetch.mockResolvedValue(new Response('Unauthorized', { status: 401 }));
-        mockExtractResourceMetadataUrl.mockReturnValue(undefined);
+        mockExtractWWWAuthenticateParams.mockReturnValue({});
         mockAuth.mockResolvedValue('AUTHORIZED');
 
         const enhancedFetch = withOAuth(mockProvider, 'https://api.example.com')(mockFetch);
@@ -345,7 +353,7 @@ describe('withOAuth', () => {
 
         mockFetch.mockResolvedValueOnce(unauthorizedResponse).mockResolvedValueOnce(successResponse);
 
-        mockExtractResourceMetadataUrl.mockReturnValue(undefined);
+        mockExtractWWWAuthenticateParams.mockReturnValue({});
         mockAuth.mockResolvedValue('AUTHORIZED');
 
         const enhancedFetch = withOAuth(mockProvider)(mockFetch);
@@ -876,7 +884,10 @@ describe('Integration Tests', () => {
 
         mockFetch.mockResolvedValueOnce(unauthorizedResponse).mockResolvedValueOnce(successResponse);
 
-        mockExtractResourceMetadataUrl.mockReturnValue(new URL('https://auth.example.com/.well-known/oauth-protected-resource'));
+        mockExtractWWWAuthenticateParams.mockReturnValue({
+            resourceMetadataUrl: new URL('https://auth.example.com/.well-known/oauth-protected-resource'),
+            scope: 'read'
+        });
         mockAuth.mockResolvedValue('AUTHORIZED');
 
         // Use custom logger to avoid console output
@@ -896,6 +907,7 @@ describe('Integration Tests', () => {
         expect(mockAuth).toHaveBeenCalledWith(mockProvider, {
             serverUrl: 'https://mcp-server.example.com',
             resourceMetadataUrl: new URL('https://auth.example.com/.well-known/oauth-protected-resource'),
+            scope: 'read',
             fetchFn: mockFetch
         });
     });
