verdnatura-mirror
/
loopback
mirror of https://github.com/strongloop/loopback.git
0
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #529 from Coobaha/fix/user_include 

user#login include server crash fix
This commit is contained in:
Raymond Feng 2014-09-11 16:57:58 -07:00
parent bd56d973d1 58538f02b7
commit 1e41064a87
2 changed files with 27 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
lib/models/user.js
View File

@ -161,7 +161,16 @@ User.login = function (credentials, include, fn) {
include = undefined; include = undefined;
} }
include = (include || '').toLowerCase(); include = (include || '');
if (Array.isArray(include)) {
include = include.map(function ( val ) {
return val.toLowerCase();
});
}else {
include = include.toLowerCase();
}
var query = {}; var query = {};
if(credentials.email) { if(credentials.email) {
@ -198,7 +207,7 @@ User.login = function (credentials, include, fn) {
} else if(isMatch) { } else if(isMatch) {
user.createAccessToken(credentials.ttl, function(err, token) { user.createAccessToken(credentials.ttl, function(err, token) {
if (err) return fn(err); if (err) return fn(err);
if (include === 'user') { if (Array.isArray(include) ? include.indexOf('user') !== -1 : include === 'user') {
// NOTE(bajtos) We can't set token.user here: // NOTE(bajtos) We can't set token.user here:
// 1. token.user already exists, it's a function injected by // 1. token.user already exists, it's a function injected by
// "AccessToken belongsTo User" relation // "AccessToken belongsTo User" relation

16
test/user.test.js
View File

@ -265,6 +265,22 @@ describe('User', function(){
}); });
}); });
it('should handle multiple `include`', function(done) {
request(app)
.post('/users/login?include=USER&include=Post')
.send(validCredentials)
.expect(200)
.expect('Content-Type', /json/)
.end(function(err, res) {
if (err) return done(err);
var token = res.body;
expect(token.user, 'body.user').to.not.equal(undefined);
expect(token.user, 'body.user')
.to.have.property('email', validCredentials.email);
done();
});
});
it('Login should only allow correct credentials', function(done) { it('Login should only allow correct credentials', function(done) {
User.create({email: 'foo22@bar.com', password: 'bar'}, function(user, err) { User.create({email: 'foo22@bar.com', password: 'bar'}, function(user, err) {
User.login({email: 'foo44@bar.com', password: 'bar'}, function(err, accessToken) { User.login({email: 'foo44@bar.com', password: 'bar'}, function(err, accessToken) {