huanld/speckle-server
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
Files
55f91d2cdf35460bd760f4a05d90c1192d9861df
speckle-server/packages/server/modules/core/tests/usersGraphql.spec.ts
T
Daniel Gak Anagrov 55f91d2cdf fix(gql): scopes, roles, auth (#5724) 
* fix(workspace): auto approval
* fix(scopes): access scopes across the server
* fix(hasAccessRole): establish for all mutations
* feat(token): scoping does not require the token to exist
* chore(scopes): added additional roles
* fix: replaced UNAUTHORIZED_ACCESS_ERROR with UNAUTHORIZED
* fix(email): user list scopes
2025-10-29 09:53:11 +00:00

168 lines
5.5 KiB
TypeScript
Raw Blame History

import { Users } from '@/modules/core/dbSchema'
import type { BasicTestUser } from '@/test/authHelper'
import { createTestUser, createTestUsers } from '@/test/authHelper'
import { getActiveUser, getOtherUser } from '@/test/graphql/users'
import { beforeEachContext, truncateTables } from '@/test/hooks'
import { expect } from 'chai'
import {
createRandomEmail,
createRandomPassword
} from '@/modules/core/helpers/testHelpers'
import {
createUserEmailFactory,
ensureNoPrimaryEmailForUserFactory,
findEmailFactory
} from '@/modules/core/repositories/userEmails'
import { db } from '@/db/knex'
import type { ServerAndContext } from '@/test/graphqlHelper'
import {
createAuthedTestContext,
createTestContext,
testApolloServer
} from '@/test/graphqlHelper'
import { GetActiveUserEmailsDocument } from '@/modules/core/graph/generated/graphql'
import { validateAndCreateUserEmailFactory } from '@/modules/core/services/userEmails'
import { finalizeInvitedServerRegistrationFactory } from '@/modules/serverinvites/services/processing'
import {
deleteServerOnlyInvitesFactory,
updateAllInviteTargetsFactory
} from '@/modules/serverinvites/repositories/serverInvites'
import { buildApolloServer } from '@/app'
import { requestNewEmailVerificationFactory } from '@/modules/emails/services/verification/request'
import { deleteOldAndInsertNewVerificationFactory } from '@/modules/emails/repositories'
import { renderEmail } from '@/modules/emails/services/emailRendering'
import { sendEmail } from '@/modules/emails/services/sending'
import { getUserFactory } from '@/modules/core/repositories/users'
import { getServerInfoFactory } from '@/modules/core/repositories/server'
const getServerInfo = getServerInfoFactory({ db })
const getUser = getUserFactory({ db })
const requestNewEmailVerification = requestNewEmailVerificationFactory({
findEmail: findEmailFactory({ db }),
getUser,
getServerInfo,
deleteOldAndInsertNewVerification: deleteOldAndInsertNewVerificationFactory({ db }),
renderEmail,
sendEmail
})
const createUserEmail = validateAndCreateUserEmailFactory({
createUserEmail: createUserEmailFactory({ db }),
ensureNoPrimaryEmailForUser: ensureNoPrimaryEmailForUserFactory({ db }),
findEmail: findEmailFactory({ db }),
updateEmailInvites: finalizeInvitedServerRegistrationFactory({
deleteServerOnlyInvites: deleteServerOnlyInvitesFactory({ db }),
updateAllInviteTargets: updateAllInviteTargetsFactory({ db })
}),
requestNewEmailVerification
})
describe('Users (GraphQL)', () => {
const me: BasicTestUser = {
id: '',
email: '',
name: 'its a meeeee',
bio: 'ayyy',
company: 'ayyy inc'
}
const otherGuy: BasicTestUser = {
id: '',
email: '',
name: 'its an other guyyyyy',
bio: 'fffoooo',
company: 'fooooo inc'
}
before(async () => {
await truncateTables([Users.name])
await createTestUsers([me, otherGuy])
})
describe('when unauthenticated', () => {
let apollo: ServerAndContext
before(async () => {
apollo = {
apollo: await buildApolloServer(),
context: await createTestContext()
}
})
it('activeUser returns null', async () => {
const results = await getActiveUser(apollo)
expect(results).to.not.haveGraphQLErrors()
expect(results.data?.activeUser).to.be.null
})
it('otherUser throws an authorization error', async () => {
const results = await getOtherUser(apollo, { id: otherGuy.id })
expect(results.data?.otherUser).to.be.null
expect(results).to.haveGraphQLErrors('Must provide an auth token')
})
})
describe('when authenticated', () => {
let apollo: ServerAndContext
before(async () => {
apollo = {
apollo: await buildApolloServer(),
context: await createAuthedTestContext(me.id)
}
})
it('activeUser returns authenticated user info', async () => {
const results = await getActiveUser(apollo)
expect(results).to.not.haveGraphQLErrors()
expect(results.data?.activeUser?.id).to.eq(me.id)
expect(results.data?.activeUser?.name).to.be.ok
expect(results.data?.activeUser?.bio).to.be.ok
expect(results.data?.activeUser?.company).to.be.ok
})
it('otherUser returns limited user info', async () => {
const results = await getOtherUser(apollo, { id: otherGuy.id })
expect(results).to.not.haveGraphQLErrors()
expect(results.data?.otherUser?.id).to.eq(otherGuy.id)
expect(results.data?.otherUser?.name).to.be.ok
expect(results.data?.otherUser?.bio).to.be.ok
expect(results.data?.otherUser?.company).to.be.ok
})
describe('emails field resolver', () => {
// TODO: this logic should not be here but we need to refactor this test
// We should avoid having the same user used in all tests to avoid tests depending on each other
before(async () => {
await beforeEachContext()
})
it('should return emails for user', async () => {
const { id: userId } = await createTestUser({
name: 'emails user',
email: createRandomEmail(),
password: createRandomPassword(),
verified: false
})
await createUserEmail({
userEmail: {
email: createRandomEmail(),
userId,
primary: false
}
})
const apollo = await testApolloServer({ authUserId: userId })
const res = await apollo.execute(GetActiveUserEmailsDocument, {})
expect(res).to.not.haveGraphQLErrors()
expect(res?.data?.activeUser?.emails).to.have.length(2)
})
})
})
})
Reference in New Issue View Git Blame Copy Permalink