test: enhance security middleware and token validation tests

- Refactored security middleware tests with improved type safety and mock configurations - Updated token validation tests with more precise token generation and expiration scenarios - Improved input sanitization and request validation test coverage - Added comprehensive test cases for error handling and security header configurations - Enhanced test setup with better environment and secret management
2025-02-03 22:52:18 +01:00
parent e688c94718
commit 04123a5740
7 changed files with 296 additions and 258 deletions
--- a/src/middleware/tests/security.middleware.test.ts
+++ b/src/middleware/tests/security.middleware.test.ts
@@ -1,6 +1,9 @@
 import { Request, Response } from 'express';
 import { validateRequest, sanitizeInput, errorHandler } from '../index';
 import { TokenManager } from '../../security/index';
+import { jest } from '@jest/globals';
+
+const TEST_SECRET = 'test-secret-that-is-long-enough-for-testing-purposes';

 describe('Security Middleware', () => {
    let mockRequest: Partial<Request>;
@@ -8,23 +11,33 @@ describe('Security Middleware', () => {
    let nextFunction: jest.Mock;

    beforeEach(() => {
+        process.env.JWT_SECRET = TEST_SECRET;
        mockRequest = {
-            headers: {
-                'content-type': 'application/json'
-            },
-            body: {},
-            ip: '127.0.0.1',
            method: 'POST',
-            is: jest.fn((type: string | string[]) => type === 'application/json' ? 'application/json' : false)
+            headers: {},
+            body: {},
+            ip: '127.0.0.1'
        };
+
+        const mockJson = jest.fn().mockReturnThis();
+        const mockStatus = jest.fn().mockReturnThis();
+        const mockSetHeader = jest.fn().mockReturnThis();
+        const mockRemoveHeader = jest.fn().mockReturnThis();
+
        mockResponse = {
-            status: jest.fn().mockReturnThis(),
-            json: jest.fn().mockReturnThis(),
-            setHeader: jest.fn()
+            status: mockStatus as any,
+            json: mockJson as any,
+            setHeader: mockSetHeader as any,
+            removeHeader: mockRemoveHeader as any
        };
        nextFunction = jest.fn();
    });

+    afterEach(() => {
+        delete process.env.JWT_SECRET;
+        jest.clearAllMocks();
+    });
+
    describe('Request Validation', () => {
        it('should pass valid requests', () => {
            mockRequest.headers = {