2. Tutorials
  3. hapi — Inject Request Payload, Headers and Parameters While Testing Route Handlers

hapi — Inject Request Payload, Headers and Parameters While Testing Route Handlers

Testing in hapi builds on top of a single method: server.inject. Injecting requests is a core element in testing your hapi app.

A previous tutorial walked you through the basics of injecting requests to test route handlers. What we didn’t cover there is the ability to inject requests with payload, headers, and parameters. Let’s tackle that now!

hapi Series Overview

  1. Get Your Server Up and Running
  2. v17 Upgrade Guide (Your Move to async/await)
  3. Become a Better Developer in 2018
  4. Become a Better Developer in 2017
  1. What You’ll Build
  2. Prepare Your Project: Stack & Structure
  3. Environment Variables and Storing Secrets
  4. Set Up MongoDB and Connect With Mongoose
  5. Sending Emails in Node.js
  6. Load the User’s Profile Picture From Gravatar Using Virtuals in Mongoose
  7. Implement a User Profile Editing Screen
  8. Generate a Username in Mongoose Middleware
  9. Displaying Seasons and Episodes for TV Shows with Mongoose Relationship Population
  10. Implementing Pagination for Movies
  11. Implement a Watchlist
  12. Create a Full Text Search with MongoDB
  1. Create a REST API with JSON Endpoints
  2. Update Mongoose Models for JSON Responses
  3. API Pagination for TV Shows
  4. Customize API Endpoints with Query Parameters
  5. Always Throw and Handle API Validation Errors
  6. Advanced API Validation With Custom Errors
  7. Create an API Documentation with Swagger
  8. Customize Your Swagger API Documentation URL
  9. Describe Endpoint Details in Your Swagger API Documentation
  10. 10 Tips on API Testing With Postman
  11. JWT Authentication in Swagger API Documentation
  12. API Versioning with Request Headers
  1. IP-Based Rate Limits (Part 1 of 7)
  2. Rate Limits for Routes (Part 2 of 7)
  3. Dynamic Rate Limits (Part 3 of 7)
  4. Render a “Rate Limit Exceeded” View (Part 4 of 7)
  5. Show “Rate Limit Exceeded” Error on Login (Part 5 of 7)
  6. Disable Rate Limiting (Part 6 of 7)
  7. Rate Limiter Refactoring & Cleanup (Part 7 of 7)
  1. API Login With Username and Password to Generate a JWT
  2. JWT Authentication and Private API Endpoints
  3. Refresh Tokens With JWT Authentication
  4. Create a JWT Utility
  5. JWT Refresh Token for Multiple Devices
  6. Check Refresh Token in Authentication Strategy
  7. Rate Limit Your Refresh Token API Endpoint
  8. How to Revoke a JWT
  9. Invalidate JWTs With Blacklists
  10. JWT Logout (Part 1/2)
  11. JWT “Immediate” Logout (Part 2/2)
  12. A Better Place to Invalidate Tokens
  13. How to Switch the JWT Signing Algorithm
  14. Roll Your Own Refresh Token Authentication Scheme
  15. JWT Claims 101
  16. Use JWT With Asymmetric Signatures (RS256 & Co.)
  17. Encrypt the JWT Payload (The Simple Way)
  18. Increase JWT Security Beyond the Signature
  19. Unsigned JSON Web Tokens (Unsecured JWS)
  20. JWK and JWKS Overview
  21. Provide a JWKS API Endpoint
  22. Create a JWK from a Shared Secret
  23. JWT Verification via JWKS API Endpoint
  24. What is JOSE in JWT
  25. Encrypt a JWT (the JWE Way)
  26. Authenticate Encrypted JWTs (JWE)
  27. Encrypted and Signed JWT (Nested JWT)
  28. Bringing Back JWT Decoding and Authentication
  29. Bringing Back JWT Claims in the JWT Payload
  1. How to Run Separate Frontend and Backend Servers Within a Single Project
  2. How to Use Server Labels
  3. How to Correctly Stop Your Server and Close Existing Connections
  1. Basic Authentication With Username and Password
  2. Authentication and Remember Me Using Cookies
  3. How to Set a Default Authentication Strategy
  4. Define Multiple Authentication Strategies for a Route
  5. Restrict User Access With Scopes
  6. Show „Insufficient Scope“ View for Routes With Restricted Access
  7. Access Restriction With Dynamic and Advanced Scopes
  8. hapi - How to Fix „unknown authentication strategy“
  9. Authenticate with GitHub And Remember the Login
  10. Authenticate with GitLab And Remember the User
  11. How to Combine Bell With Another Authentication Strategy
  12. Custom OAuth Bell Strategy to Connect With any Server
  13. Redirect to Previous Page After Login
  14. How to Implement a Complete Sign Up Flow With Email and Password
  15. How to Implement a Complete Login Flow
  16. Implement a Password-Reset Flow
  1. Views in hapi 9 (and above)
  2. How to Render and Reply Views
  3. How to Reply and Render Pug Views (Using Pug 2.0)
  4. How to Create a Dynamic Handlebars Layout Template
  5. Create and Use Handlebars Partial Views
  6. Create and Use Custom Handlebars Helpers
  7. Specify a Different Handlebars Layout for a Specific View
  8. How to Create Jade-Like Layout Blocks in Handlebars
  9. Use Vue.js Mustache Tags in Handlebars Templates
  10. How to Use Multiple Handlebars Layouts
  1. Extend Your Server Functionality With Plugins
  2. Create Your Own Custom Plugin
  3. How to Register Plugins for a Selected Server Instance
  4. hapi Plugin for Client Geo Location (by Future Studio 🚀)
  5. Increase Development Speed With Errors in the Browser or as JSON Response
  1. Route Handling and Drive Traffic to Your Server
  2. How to Serve Static Files (Images, JS, CSS, etc.)
  3. How to Use Query Parameters
  4. Optional Path Parameters
  5. Multi-Segment/Wildcard Path Parameters
  6. Ignore Trailing Slashes on Route Paths
  7. How to Fix “Unsupported Media Type”
  1. How to Access and Handle Request Payload
  2. Access Request Headers
  3. How to Manage Cookies and HTTP States Across Requests
  4. Detect and Get the Client IP Address
  5. How to Upload Files
  6. Quick Access to Logged In User in Route Handlers
  7. How to Fix “handler method did not return a value, a promise, or throw an error”
  8. How to Fix “X must return an error, a takeover response, or a continue signal”
  1. How to Reply a JSON Response
  2. How to Set Response Status Code
  3. How to Handle 404 Responses for Missing Routes
  1. Query Parameter Validation With Joi
  2. Path Parameter Validation With Joi
  3. Request Payload Validation With Joi
  4. Validate Query and Path Parameters, Payload and Headers All at Once on Your Routes
  5. Validate Request Headers With Joi
  6. Reply Custom View for Failed Validations
  7. Handle Failed Validations and Show Errors Details at Inputs
  8. How to Fix AssertionError, Cannot validate HEAD or GET requests
  1. Add CSRF Protection on Forms and API Endpoints
  1. Report Errors to Sentry
  2. Don’t Report Errors to Sentry in Development Mode
  3. Logging Fundamentals
  4. Log to Console With Good
  5. Log to File With Good
  1. Zero-Downtime Deployments Using PM2

Inject Request Payload

Web apps have different types of endpoints. You’ll serve static assets (images, CSS, JS), render web views, or reply data in another format, like JSON or XML. Your platform might also use forms or API requests sending data to the server.

Testing routes that expect data in the request payload is no problem for hapi. The options for server.inject allow you to pass a payload property with the injection.

// … imports (lab, code), assignments, export lab script, etc. :)

describe('requests with payload, headers and params,', () => {  
  it('injects payload', async () => {
    const server = new Hapi.Server()

    // add route to hapi server with handler that directly returns the request payload
    server.route({
      method: 'POST',
      path: '/',
      handler: request => {
        // you can do assertions here, too
        expect(request.payload).to.exist()

        return request.payload
      }
    })

    // remember: injecting payload isn’t available on GET requests
    // use HTTP methods that support request payloads, like POST and PUT
    const injectOptions = {
      method: 'POST',
      url: '/',
      payload: {
        name: 'Marcus',
        isDeveloper: true,
        isHapiPassionate: 'YEEEEAHHH'
      }
    }

    const response = await server.inject(injectOptions)

    // expect(…)
  })
})

The sample code illustrates the request payload property that uses a plain JavaScript object (consisting of three properties: name, isDeveloper, isHapiPassionate). The route handler for this test expects the request payload to exist and returns it as a response. You can then do your assertions for the awaited response and the expected response payload.

This example calls expect() in the sample route handler. You can do assertions there, too. This might be helpful to test plugins which do their magic before the route handler. An example where is this beneficial is a plugin that decorates the request object and want to test whether the plugin works correctly.

Notice that GET requests don’t allow request payload. Hapi ignores incoming request payload in case you’re passing it along. The injected request will hit the specified route handler without the payload.

Inject Request Headers

Does your app behave differently when providing specific request headers? Our hapi-dev-errors plugin does. It renders a web view with error details about a failing operation by default. If you provide a Content-Type request header with a value containing “json”, like Content-Type: application/json, it responds the error details as JSON.

Test situations like this by using the headers property in the injected request options.

// … imports (lab, code), assignments, export lab script, etc. :)

describe('requests with payload, headers and params,', () => {  
  it('injects headers', async () => {
    const server = new Hapi.Server()

    server.route({
      method: 'GET',
      path: '/',
      handler: request => {
        if (request.headers['x-custom-header']) {
          return {
            a: 'different object',
            based: 'on the request headers'
          }
        }
      }
    })

    const injectOptions = {
      method: 'GET',
      url: '/',
      headers: { 'x-custom-header': 'my-funky-value' }
    }

    const response = await server.inject(injectOptions)
    const payload = JSON.parse(response.payload || {})

    expect(payload.a).to.exist()
    expect(payload.based).to.exist()
  })
})

The sample route implements a route handler that returns an object for a present x-custom-header.

Inject Query and Path Parameters

Not every route in your project has a static route. Dynamic routes with path parameters become part of the project and you want to test them as well. Do that by injecting requests with a corresponding path.

The server.inject method doesn’t provide an option for query parameters. You need to add them either directly to the injected request path or use a helper utility like Node.js’ qs module and append them.

// … imports (lab, code), assignments, export lab script, etc. :)

describe('requests with payload, headers and params,', () => {  
  it('injects path params', async () => {
    const server = new Hapi.Server()

    server.route({
      method: 'GET',
      path: '/{framework}',
      handler: request => {
        return {
          params: request.params
          query: request.query
        }
      }
    })

    const response = await server.inject('/hapi?name=Marcus')
    const payload = JSON.parse(response.payload || {})


    // expect payload.params.framework = hapi
    // expect payload.query.name = Marcus
  })
})

qs is helpful if you want to create a query parameter string from a JavaScript object. It takes care of using the ? or & characters to compose a string for query parameters.

This time we don’t use an object and pass it to server.inject and instead provide the request URL directly. Passing a string value assumes a GET request on the given path.

Inject Request All at Once

Of course you can combine all options and inject a more complex request. Let’s compose an example that sends request payload, headers and parameters to an endpoint:

'use strict'

// … imports (lab, code), assignments, export lab script, etc. :)

describe('requests with payload, headers and params,', () => {  
  it('injects payload, headers and params', async () => {
   const server = new Hapi.Server()

   // add route(s) here
   // skipped to focus on the injected options object

    const injectOptions = {
      method: 'POST',
      url: '/marcus?isDeveloper=yes',
      payload: { team: 'Future Studio' },
      headers: { 'x-custom-header': 'my-funky-value' }
    }

    const response = await server.inject(injectOptions)

    // expect(…)
  })
})

The inject options are a powerful mechanism to inject fine-grained requests that hit your route handlers. If your handlers behaves differently depending on values from headers, payload or parameters, test all these cases with ease!

Outlook

Injecting data with requests is a great way to test different types of applications. Test your web routes that render views. Do you expect a JSON response instead of HTML when providing a request header? No problem. Inject payload and parameters to your requests and test any situation.

You might notice that each individual test creates their own hapi server instance. You don’t want your tests to rely on each other. Creating a global hapi server would share the instance across tests.

In the next tutorial, we’ll optimize the hapi server initialization by running a function before each test and initialize a fresh hapi server there 👌

We’re happy to hear your thoughts and comments. Please don’t hesitate to use the comments below or find us on Twitter @futurestud_io. Let us know what you think!

Enjoy coding & make it rock!

Mentioned Resources

Marcus Pöhls

Marcus is a fullstack JS developer. He’s passionate about the hapi framework for Node.js and loves to build web apps and APIs. Creator of Futureflix and the “learn hapi” learning path.

Explore the Library

Find interesting tutorials and solutions for your problems.

Android

Node.js

Server

Miscellaneous