copy-test-files.js

Author: kentcdodds

epicshop/copy-test-files.js

@@ -0,0 +1,114 @@
+#!/usr/bin/env node
+
+import { existsSync } from 'fs'
+import { readdir, stat, copyFile, mkdir } from 'fs/promises'
+import { join, dirname } from 'path'
+
+const EXERCISES_DIR = join(process.cwd(), '..', 'exercises')
+
+/**
+ * Copy test files from solution directories to their corresponding problem directories
+ */
+async function copyTestFiles() {
+	console.log('🔍 Scanning exercises directory...')
+
+	try {
+		const exerciseDirs = await readdir(EXERCISES_DIR)
+		const exerciseNumbers = exerciseDirs
+			.filter((dir) => /^\d+\./.test(dir))
+			.sort()
+
+		console.log(
+			`📁 Found ${exerciseNumbers.length} exercise directories: ${exerciseNumbers.join(', ')}`,
+		)
+
+		let totalCopied = 0
+		let totalSkipped = 0
+
+		for (const exerciseDir of exerciseNumbers) {
+			const exercisePath = join(EXERCISES_DIR, exerciseDir)
+			const exerciseStats = await stat(exercisePath)
+
+			if (!exerciseStats.isDirectory()) continue
+
+			console.log(`\n📂 Processing ${exerciseDir}...`)
+
+			const exerciseContents = await readdir(exercisePath)
+			const solutionDirs = exerciseContents.filter((item) =>
+				item.includes('.solution.'),
+			)
+
+			for (const solutionDir of solutionDirs) {
+				const problemDir = solutionDir.replace('.solution.', '.problem.')
+
+				const solutionPath = join(exercisePath, solutionDir)
+				const problemPath = join(exercisePath, problemDir)
+
+				// Check if both directories exist
+				if (!existsSync(solutionPath) || !existsSync(problemPath)) {
+					console.log(
+						`  ⚠️  Skipping ${solutionDir} - corresponding problem directory not found`,
+					)
+					continue
+				}
+
+				const solutionTestPath = join(solutionPath, 'test')
+				const problemTestPath = join(problemPath, 'test')
+
+				// Check if solution test directory exists
+				if (!existsSync(solutionTestPath)) {
+					console.log(
+						`  ⚠️  Skipping ${solutionDir} - no test directory in solution`,
+					)
+					continue
+				}
+
+				// Ensure problem test directory exists
+				if (!existsSync(problemTestPath)) {
+					await mkdir(problemTestPath, { recursive: true })
+					console.log(`  📁 Created test directory for ${problemDir}`)
+				}
+
+				// Copy test files
+				const testFiles = await readdir(solutionTestPath)
+				let copiedInThisDir = 0
+
+				for (const testFile of testFiles) {
+					const sourceFile = join(solutionTestPath, testFile)
+					const destFile = join(problemTestPath, testFile)
+
+					try {
+						await copyFile(sourceFile, destFile)
+						console.log(
+							`  ✅ Copied ${testFile} from ${solutionDir} to ${problemDir}`,
+						)
+						copiedInThisDir++
+					} catch (error) {
+						console.log(`  ❌ Failed to copy ${testFile}: ${error.message}`)
+					}
+				}
+
+				if (copiedInThisDir > 0) {
+					totalCopied += copiedInThisDir
+					console.log(`  📊 Copied ${copiedInThisDir} files for ${problemDir}`)
+				} else {
+					totalSkipped++
+				}
+			}
+		}
+
+		console.log(`\n🎉 Copy operation completed!`)
+		console.log(`📊 Total files copied: ${totalCopied}`)
+		console.log(`⚠️  Directories skipped: ${totalSkipped}`)
+	} catch (error) {
+		console.error('❌ Error:', error.message)
+		process.exit(1)
+	}
+}
+
+// Run the script
+if (import.meta.url === `file://${process.argv[1]}`) {
+	copyTestFiles()
+}
+
+export { copyTestFiles }

exercises/05.scopes/01.problem.check-scopes/test/index.test.ts

@@ -2,8 +2,261 @@ import { test, expect, inject } from 'vitest'
 import { z } from 'zod'
 
 const mcpServerPort = inject('mcpServerPort')
-const mcpServerUrl = `http://localhost:${mcpServerPort}`
+const EPIC_ME_AUTH_SERVER_URL = 'http://localhost:7788'
 
-test(`TODO: update this test title to describe the important thing we're working on in this exercise step`, async () => {
-	// TODO: implement this test
+// TypeScript interfaces for API responses
+interface AuthServerConfig {
+	authorization_endpoint: string
+	token_endpoint: string
+	[key: string]: unknown
+}
+
+interface ClientRegistration {
+	client_id: string
+	client_secret?: string
+	[key: string]: unknown
+}
+
+interface AuthResult {
+	redirectTo: string
+	[key: string]: unknown
+}
+
+interface TokenResult {
+	access_token: string
+	token_type: string
+	[key: string]: unknown
+}
+
+// Helper function to generate PKCE challenge
+function generateCodeChallenge() {
+	const codeVerifier = btoa(
+		String.fromCharCode(...crypto.getRandomValues(new Uint8Array(32))),
+	)
+		.replace(/\+/g, '-')
+		.replace(/\//g, '_')
+		.replace(/=/g, '')
+
+	return {
+		codeVerifier,
+		codeChallenge: codeVerifier, // For simplicity, using plain method
+		codeChallengeMethod: 'plain',
+	}
+}
+
+test(`{test title that describes the important thing we're working on in this exercise step}`, async () => {
+	const mcpServerUrl = `http://localhost:${mcpServerPort}`
+
+	const unauthorizedResponse = await fetch(`${mcpServerUrl}/mcp`, {
+		method: 'POST',
+		headers: {
+			'content-type': 'application/json',
+			accept: 'application/json, text/event-stream',
+		},
+		body: JSON.stringify({
+			jsonrpc: '2.0',
+			id: 1,
+			method: 'tools/list',
+		}),
+	})
+
+	expect(
+		unauthorizedResponse.status,
+		'🚨 Expected 401 status for unauthorized request',
+	).toBe(401)
+
+	const wwwAuthHeader = unauthorizedResponse.headers.get('WWW-Authenticate')
+	expect(
+		wwwAuthHeader,
+		'🚨 WWW-Authenticate header should be present',
+	).toBeTruthy()
+	expect(
+		wwwAuthHeader,
+		'🚨 WWW-Authenticate header should contain Bearer realm',
+	).toContain('Bearer realm="EpicMe"')
+
+	// Extract the resource_metadata url from the WWW-Authenticate header
+	const resourceMetadataUrl = wwwAuthHeader
+		?.split(',')
+		.find((h) => h.includes('resource_metadata='))
+		?.split('=')[1]
+
+	expect(
+		resourceMetadataUrl,
+		'🚨 Resource metadata URL should be present in WWW-Authenticate header',
+	).toBeTruthy()
+
+	const resourceMetadataResponse = await fetch(resourceMetadataUrl!)
+	expect(
+		resourceMetadataResponse.ok,
+		'🚨 fetching resource metadata should succeed',
+	).toBe(true)
+
+	const resourceMetadataResult = z
+		.object({
+			resource: z.string(),
+			authorization_servers: z.array(z.string()).length(1),
+			scopes_supported: z.array(z.string()),
+		})
+		.safeParse(await resourceMetadataResponse.json())
+	if (!resourceMetadataResult.success) {
+		throw new Error(
+			'🚨 Invalid resource metadata: ' + resourceMetadataResult.error.message,
+		)
+	}
+	const resourceMetadata = resourceMetadataResult.data
+
+	const authorizationUrl = resourceMetadata.authorization_servers[0]!
+
+	// Step 1: Metadata discovery
+	// Test OAuth Authorization Server discovery
+	const authServerDiscoveryResponse = await fetch(
+		`${authorizationUrl}/.well-known/oauth-authorization-server`,
+	)
+	expect(
+		authServerDiscoveryResponse.ok,
+		'🚨 OAuth authorization server discovery should succeed',
+	).toBe(true)
+
+	const authServerConfig =
+		(await authServerDiscoveryResponse.json()) as AuthServerConfig
+	expect(
+		authServerConfig.authorization_endpoint,
+		'🚨 Authorization endpoint should be present in discovery',
+	).toBeTruthy()
+	expect(
+		authServerConfig.token_endpoint,
+		'🚨 Token endpoint should be present in discovery',
+	).toBeTruthy()
+
+	// Step 2: Dynamic client registration
+	const clientRegistrationResponse = await fetch(
+		`${EPIC_ME_AUTH_SERVER_URL}/oauth/register`,
+		{
+			method: 'POST',
+			headers: {
+				'content-type': 'application/json',
+				accept: 'application/json, text/event-stream',
+			},
+			body: JSON.stringify({
+				client_name: 'Test MCP Client',
+				redirect_uris: [`${mcpServerUrl}/mcp`],
+				scope: 'read write',
+			}),
+		},
+	)
+
+	expect(
+		clientRegistrationResponse.ok,
+		'🚨 Client registration should succeed',
+	).toBe(true)
+	const clientRegistration =
+		(await clientRegistrationResponse.json()) as ClientRegistration
+	expect(
+		clientRegistration.client_id,
+		'🚨 Client ID should be returned from registration',
+	).toBeTruthy()
+
+	// Step 3: Preparing Authorization (getting the auth URL)
+	const { codeVerifier, codeChallenge, codeChallengeMethod } =
+		generateCodeChallenge()
+	const state = crypto.randomUUID()
+	const redirectUri = `${mcpServerUrl}/mcp`
+
+	// Step 4: Requesting the auth code programmatically
+	const testAuthUrl = new URL(`${EPIC_ME_AUTH_SERVER_URL}/test-auth`)
+	// Use the registered client ID instead of the one from the auth URL
+	testAuthUrl.searchParams.set('client_id', clientRegistration.client_id)
+	testAuthUrl.searchParams.set('redirect_uri', redirectUri)
+	testAuthUrl.searchParams.set('response_type', 'code')
+	testAuthUrl.searchParams.set('code_challenge', codeChallenge)
+	testAuthUrl.searchParams.set('code_challenge_method', codeChallengeMethod)
+	testAuthUrl.searchParams.set('scope', 'read write')
+	testAuthUrl.searchParams.set('state', state)
+
+	const authCodeResponse = await fetch(testAuthUrl.toString())
+	expect(authCodeResponse.ok, '🚨 Auth code request should succeed').toBe(true)
+
+	const authResult = (await authCodeResponse.json()) as AuthResult
+	expect(
+		authResult.redirectTo,
+		'🚨 Redirect URL should be returned',
+	).toBeTruthy()
+
+	// Step 5: Supplying the auth code (extract from redirect URL)
+	const redirectUrl = new URL(authResult.redirectTo)
+	const authCode = redirectUrl.searchParams.get('code')
+	const returnedState = redirectUrl.searchParams.get('state')
+
+	expect(
+		authCode,
+		'🚨 Auth code should be present in redirect URL',
+	).toBeTruthy()
+	expect(returnedState, '🚨 State should be returned').toBe(state)
+
+	// Step 6: Requesting the token
+	const tokenParams = new URLSearchParams({
+		grant_type: 'authorization_code',
+		code: authCode!,
+		redirect_uri: redirectUri,
+		client_id: clientRegistration.client_id, // Use registered client ID
+		code_verifier: codeVerifier,
+	})
+
+	// Add client_secret if provided during registration
+	if (clientRegistration.client_secret) {
+		tokenParams.set('client_secret', clientRegistration.client_secret)
+	}
+
+	const tokenResponse = await fetch(`${EPIC_ME_AUTH_SERVER_URL}/oauth/token`, {
+		method: 'POST',
+		headers: { 'Content-Type': 'application/x-www-form-urlencoded' },
+		body: tokenParams,
+	})
+
+	if (!tokenResponse.ok) {
+		const errorText = await tokenResponse.text()
+		console.error('Token exchange failed:', tokenResponse.status, errorText)
+	}
+
+	expect(tokenResponse.ok, '🚨 Token exchange should succeed').toBe(true)
+	const tokenResult = (await tokenResponse.json()) as TokenResult
+	expect(
+		tokenResult.access_token,
+		'🚨 Access token should be returned',
+	).toBeTruthy()
+	expect(
+		tokenResult.token_type?.toLowerCase(),
+		'🚨 Token type should be Bearer',
+	).toBe('bearer')
+
+	// Step 7: Performing authenticated requests (listing tools)
+	// Verify the token works by making a simple authenticated request to the MCP server
+	// We'll test that we get past the authentication (no 401) even if we get protocol errors
+	const authTestResponse = await fetch(`${mcpServerUrl}/mcp`, {
+		method: 'POST',
+		headers: {
+			'Content-Type': 'application/json',
+			Accept: 'application/json, text/event-stream',
+			Authorization: `Bearer ${tokenResult.access_token}`,
+		},
+		body: JSON.stringify({
+			jsonrpc: '2.0',
+			id: 1,
+			method: 'initialize',
+			params: {
+				protocolVersion: '2024-11-05',
+				capabilities: {},
+				clientInfo: {
+					name: 'Test Client',
+					version: '1.0.0',
+				},
+			},
+		}),
+	})
+
+	expect(
+		authTestResponse.status,
+		'🚨 Should not get 401 Unauthorized with valid token',
+	).not.toBe(401)
 })