Improve security config validation (#1154)

srknzl · web-flow · commit 875c52855e6a · 2021-12-29T14:04:43.000+03:00
Initialize username and password with null to avoid them being `undefined`.
With `undefined` value it still works due to `CodecUtil.encodeNullable` logic
but it may be confusing.

Also, if `token` is not provided in token credentials throw instead of ignoring.
diff --git a/src/config/ConfigBuilder.ts b/src/config/ConfigBuilder.ts
@@ -137,8 +137,8 @@ export class ConfigBuilder {
     }
 
     private handleUsernamePasswordCredentials(jsonObject: any): void {
-        let username: string;
-        let password: string;
+        let username: string | null = null;
+        let password: string | null = null;
         for (const key in jsonObject) {
             const value = jsonObject[key];
             if (key === 'username') {
@@ -168,7 +168,7 @@ export class ConfigBuilder {
         }
 
         if (token == null) {
-            return;
+            throw new RangeError('\'token\' option must be provided in token credentials.');
         }
 
         this.effectiveConfig.security.token = new TokenCredentialsImpl(token, encoding);
diff --git a/test/unit/config/ConfigBuilderTest.js b/test/unit/config/ConfigBuilderTest.js
@@ -570,6 +570,14 @@ describe('ConfigBuilderValidationTest', function () {
                     }
                 }
             },
+            // token field is mandatory
+            {
+                'security': {
+                    'token': {
+                        'encoding': TokenEncoding.ASCII
+                    }
+                }
+            },
             {
                 'security': {
                     'token': {

Original file line number	Diff line number	Diff line change
`@@ -137,8 +137,8 @@ export class ConfigBuilder {`
`137`	`137`	`}`
`138`	`138`
`139`	`139`	`private handleUsernamePasswordCredentials(jsonObject: any): void {`
`140`		`- let username: string;`
`141`		`- let password: string;`
	`140`	`+ let username: string \| null = null;`
	`141`	`+ let password: string \| null = null;`
`142`	`142`	`for (const key in jsonObject) {`
`143`	`143`	`const value = jsonObject[key];`
`144`	`144`	`if (key === 'username') {`
`@@ -168,7 +168,7 @@ export class ConfigBuilder {`
`168`	`168`	`}`
`169`	`169`
`170`	`170`	`if (token == null) {`
`171`		`- return;`
	`171`	`+ throw new RangeError('\'token\' option must be provided in token credentials.');`
`172`	`172`	`}`
`173`	`173`
`174`	`174`	`this.effectiveConfig.security.token = new TokenCredentialsImpl(token, encoding);`
Original file line number	Diff line number	Diff line change
`@@ -570,6 +570,14 @@ describe('ConfigBuilderValidationTest', function () {`
`570`	`570`	`}`
`571`	`571`	`}`
`572`	`572`	`},`
	`573`	`+ // token field is mandatory`
	`574`	`+ {`
	`575`	`+ 'security': {`
	`576`	`+ 'token': {`
	`577`	`+ 'encoding': TokenEncoding.ASCII`
	`578`	`+ }`
	`579`	`+ }`
	`580`	`+ },`
`573`	`581`	`{`
`574`	`582`	`'security': {`
`575`	`583`	`'token': {`