From ddf275730612e4c270dbee74d9e1a4d3d54257e6 Mon Sep 17 00:00:00 2001
From: Ben Francis <ben@tola.me.uk>
Date: Fri, 2 Aug 2024 13:19:00 +0100
Subject: [PATCH] Further WWW-Authenticate tests

---
 src/test/integration/oauth-test.ts | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/src/test/integration/oauth-test.ts b/src/test/integration/oauth-test.ts
index 2e3791996..af24b13ee 100644
--- a/src/test/integration/oauth-test.ts
+++ b/src/test/integration/oauth-test.ts
@@ -169,8 +169,9 @@ describe('oauth/', function () {
     let res = await chai
       .request(server)
       .get(Constants.THINGS_PATH)
-      .set('Accept', 'application/json')
+      .set('Accept', 'application/json');
     expect(res.status).toEqual(401);
+    expect(res.header).toHaveProperty('www-authenticate');
     expect(res.get('WWW-Authenticate')).toEqual('Bearer');
   });
 
@@ -217,6 +218,7 @@ describe('oauth/', function () {
       .set(...headerAuth(jwt));
     expect(err.status).toEqual(403);
     expect(err.header).toHaveProperty('www-authenticate');
+    expect(err.get('www-authenticate')).toEqual(expect.stringContaining('insufficient_scope'));
 
     res = await chai
       .request(server)
@@ -503,6 +505,7 @@ describe('oauth/', function () {
       .set(...headerAuth(jwt));
     expect(err.status).toEqual(403);
     expect(err.header).toHaveProperty('www-authenticate');
+    expect(err.get('www-authenticate')).toEqual(expect.stringContaining('insufficient_scope'));
   });
 
   it('rejects use of authorization code as access token', async () => {
@@ -537,5 +540,6 @@ describe('oauth/', function () {
       .set(...headerAuth(jwt));
     expect(err.status).toEqual(403);
     expect(err.header).toHaveProperty('www-authenticate');
+    expect(err.get('www-authenticate')).toEqual(expect.stringContaining('insufficient_scope'));
   });
 });