test(oidc-client): cover dispatchAuthorizeµ error branches via authorize.background()

ryanbas21 · ryanbas21 · commit 5d310d4b411a · 2026-05-20T13:34:54.000-06:00
diff --git a/packages/oidc-client/src/lib/client.store.test.ts b/packages/oidc-client/src/lib/client.store.test.ts
@@ -400,6 +400,87 @@ describe('authorize.url() with PAR enabled', async () => {
   });
 });
 
+describe('authorize.background() dispatch error branches', async () => {
+  const standardConfig: OidcConfig = {
+    clientId: '123456789',
+    redirectUri: 'https://example.com/callback.html',
+    scope: 'openid profile',
+    serverConfig: {
+      wellknown: 'https://api.example.com/wellknown',
+    },
+    responseType: 'code',
+  };
+
+  beforeEach(() => {
+    customStorage.remove(storageKey);
+  });
+
+  it('surfaces CONFIGURATION_ERROR without a redirectUrl', async () => {
+    server.use(
+      http.post('*/as/authorize', async () =>
+        HttpResponse.json(
+          { error: 'invalid_request', error_description: 'misconfigured client' },
+          { status: 400 },
+        ),
+      ),
+    );
+
+    const oidcClient = await oidc({ config: standardConfig, storage: customStorageConfig });
+    if ('error' in oidcClient) throw new Error('Error creating OIDC Client');
+
+    const result = await oidcClient.authorize.background();
+    if (!('error' in result)) expect.fail('Expected error, got success');
+
+    expect(result.error).toBe('CONFIGURATION_ERROR');
+    expect(result.type).toBe('network_error');
+    expect('redirectUrl' in result).toBe(false);
+  });
+
+  it('builds redirectUrl for non-configuration authorize errors (details array)', async () => {
+    server.use(
+      http.post('*/as/authorize', async () =>
+        HttpResponse.json(
+          {
+            details: [{ code: 'access_denied', message: 'user denied consent' }],
+          },
+          { status: 403 },
+        ),
+      ),
+    );
+
+    const oidcClient = await oidc({ config: standardConfig, storage: customStorageConfig });
+    if ('error' in oidcClient) throw new Error('Error creating OIDC Client');
+
+    const result = await oidcClient.authorize.background();
+    if (!('error' in result)) expect.fail('Expected error, got success');
+
+    expect(result.error).toBe('access_denied');
+    expect(result.type).toBe('auth_error');
+    expect('redirectUrl' in result).toBe(true);
+    if ('redirectUrl' in result) {
+      expect(typeof result.redirectUrl).toBe('string');
+      expect(result.redirectUrl).toContain('authorize');
+    }
+  });
+
+  it('returns Unknown_Error when authorize response body lacks authorizeResponse', async () => {
+    server.use(
+      http.post('*/as/authorize', async () =>
+        HttpResponse.json({ unexpected: 'shape' }, { status: 200 }),
+      ),
+    );
+
+    const oidcClient = await oidc({ config: standardConfig, storage: customStorageConfig });
+    if ('error' in oidcClient) throw new Error('Error creating OIDC Client');
+
+    const result = await oidcClient.authorize.background();
+    if (!('error' in result)) expect.fail('Expected error, got success');
+
+    expect(result.error).toBe('Unknown_Error');
+    expect(result.type).toBe('unknown_error');
+  });
+});
+
 describe('PAR factory validation', async () => {
   it('returns argument_error when wellknown requires PAR but config.par is explicitly false', async () => {
     server.use(
