huanld/speckle-server
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
Files
bc1b3f5325ca4e2ad26c48e9859faadbef798aee
speckle-server/packages/server/modules/workspaces/tests/unit/services/projects.spec.ts
T
Chuck Driesler 9bafc388aa fix(workspaces): prohibit workspace guests from being project owners (#3244) 
* fix(workspaces): prohibit workspace guests from being project owners

* Small FE fix

---------

Co-authored-by: Mike Tasset <mike.tasset@gmail.com>
2024-10-14 10:02:17 +01:00

428 lines
14 KiB
TypeScript
Raw Blame History

import { ProjectTeamMember } from '@/modules/core/domain/projects/types'
import { Stream } from '@/modules/core/domain/streams/types'
import { StreamAclRecord, StreamRecord } from '@/modules/core/helpers/types'
import {
moveProjectToWorkspaceFactory,
queryAllWorkspaceProjectsFactory,
updateWorkspaceProjectRoleFactory
} from '@/modules/workspaces/services/projects'
import { WorkspaceAcl } from '@/modules/workspacesCore/domain/types'
import { expectToThrow } from '@/test/assertionHelper'
import { Roles } from '@speckle/shared'
import { assert, expect } from 'chai'
import cryptoRandomString from 'crypto-random-string'
const getWorkspaceRoleToDefaultProjectRoleMapping = async () => ({
'workspace:admin': Roles.Stream.Owner,
'workspace:guest': null,
'workspace:member': Roles.Stream.Contributor
})
describe('Project retrieval services', () => {
describe('queryAllWorkspaceProjectFactory returns a generator, that', () => {
it('returns all streams for a workspace', async () => {
const workspaceId = cryptoRandomString({ length: 10 })
const foundProjects: StreamRecord[] = []
const storedProjects: StreamRecord[] = [{ workspaceId } as StreamRecord]
const queryAllWorkspaceProjectsGenerator = queryAllWorkspaceProjectsFactory({
getStreams: async () => {
return {
streams: storedProjects,
totalCount: storedProjects.length,
cursorDate: null
}
}
})
for await (const projectsPage of queryAllWorkspaceProjectsGenerator({
workspaceId
})) {
foundProjects.push(...projectsPage)
}
expect(foundProjects.length).to.equal(1)
})
it('returns all streams for a workspace if the query requires multiple pages of results', async () => {
const workspaceId = cryptoRandomString({ length: 10 })
const foundProjects: StreamRecord[] = []
const storedProjects: StreamRecord[] = [
{ workspaceId } as StreamRecord,
{ workspaceId } as StreamRecord
]
const queryAllWorkspaceProjectsGenerator = queryAllWorkspaceProjectsFactory({
getStreams: async ({ cursor }) => {
return cursor
? { streams: [storedProjects[1]], totalCount: 1, cursorDate: null }
: { streams: [storedProjects[0]], totalCount: 1, cursorDate: new Date() }
}
})
for await (const projectsPage of queryAllWorkspaceProjectsGenerator({
workspaceId
})) {
foundProjects.push(...projectsPage)
}
expect(foundProjects.length).to.equal(2)
})
it('exits if no results are found', async () => {
const workspaceId = cryptoRandomString({ length: 10 })
const foundProjects: StreamRecord[] = []
const queryAllWorkspaceProjectsGenerator = queryAllWorkspaceProjectsFactory({
getStreams: async () => {
return { streams: [], totalCount: 0, cursorDate: null }
}
})
for await (const projectsPage of queryAllWorkspaceProjectsGenerator({
workspaceId
})) {
foundProjects.push(...projectsPage)
}
expect(foundProjects.length).to.equal(0)
})
})
})
describe('Project management services', () => {
describe('moveProjectToWorkspaceFactory returns a function, that', () => {
it('should throw if attempting to move a project already in a workspace', async () => {
const moveProjectToWorkspace = moveProjectToWorkspaceFactory({
getProject: async () => {
return {
workspaceId: cryptoRandomString({ length: 6 })
} as StreamRecord
},
updateProject: async () => {
expect.fail()
},
upsertProjectRole: async () => {
expect.fail()
},
getProjectCollaborators: async () => {
expect.fail()
},
getWorkspaceRoles: async () => {
expect.fail()
},
getWorkspaceRoleToDefaultProjectRoleMapping: async () => {
expect.fail()
},
updateWorkspaceRole: async () => {
expect.fail()
}
})
await expectToThrow(() =>
moveProjectToWorkspace({
projectId: cryptoRandomString({ length: 6 }),
workspaceId: cryptoRandomString({ length: 6 })
})
)
})
it('should preserve existing workspace roles in target workspace', async () => {
const userId = cryptoRandomString({ length: 6 })
const projectId = cryptoRandomString({ length: 6 })
const workspaceId = cryptoRandomString({ length: 6 })
const updatedRoles: Partial<WorkspaceAcl>[] = []
const moveProjectToWorkspace = moveProjectToWorkspaceFactory({
getProject: async () => {
return {} as StreamRecord
},
updateProject: async () => {
return {} as StreamRecord
},
upsertProjectRole: async () => {
return {} as StreamRecord
},
getProjectCollaborators: async () => {
return [
{
id: userId,
streamRole: Roles.Stream.Contributor
} as unknown as ProjectTeamMember
]
},
getWorkspaceRoles: async () => {
return [
{
userId,
role: Roles.Workspace.Admin,
workspaceId,
createdAt: new Date()
}
]
},
getWorkspaceRoleToDefaultProjectRoleMapping: async () => ({
'workspace:admin': Roles.Stream.Owner,
'workspace:guest': null,
'workspace:member': Roles.Stream.Contributor
}),
updateWorkspaceRole: async (role) => {
updatedRoles.push(role)
}
})
await moveProjectToWorkspace({ projectId, workspaceId })
expect(updatedRoles.length).to.equal(1)
expect(updatedRoles[0].role).to.equal(Roles.Workspace.Admin)
})
it('should set project members as workspace members in target workspace', async () => {
const userId = cryptoRandomString({ length: 6 })
const projectId = cryptoRandomString({ length: 6 })
const workspaceId = cryptoRandomString({ length: 6 })
const updatedRoles: Partial<WorkspaceAcl>[] = []
const moveProjectToWorkspace = moveProjectToWorkspaceFactory({
getProject: async () => {
return {} as StreamRecord
},
updateProject: async () => {
return {} as StreamRecord
},
upsertProjectRole: async () => {
return {} as StreamRecord
},
getProjectCollaborators: async () => {
return [
{
id: userId,
streamRole: Roles.Stream.Contributor
} as unknown as ProjectTeamMember
]
},
getWorkspaceRoles: async () => {
return []
},
getWorkspaceRoleToDefaultProjectRoleMapping,
updateWorkspaceRole: async (role) => {
updatedRoles.push(role)
}
})
await moveProjectToWorkspace({ projectId, workspaceId })
expect(updatedRoles.length).to.equal(1)
expect(updatedRoles[0].role).to.equal(Roles.Workspace.Member)
})
it('should set project members that are server guests as workspace guests in target workspace', async () => {
const userId = cryptoRandomString({ length: 6 })
const projectId = cryptoRandomString({ length: 6 })
const workspaceId = cryptoRandomString({ length: 6 })
const updatedRoles: Partial<WorkspaceAcl>[] = []
const moveProjectToWorkspace = moveProjectToWorkspaceFactory({
getProject: async () => {
return {} as StreamRecord
},
updateProject: async () => {
return {} as StreamRecord
},
upsertProjectRole: async () => {
return {} as StreamRecord
},
getProjectCollaborators: async () => {
return [
{
id: userId,
role: Roles.Server.Guest,
streamRole: Roles.Stream.Contributor
} as unknown as ProjectTeamMember
]
},
getWorkspaceRoles: async () => {
return []
},
getWorkspaceRoleToDefaultProjectRoleMapping,
updateWorkspaceRole: async (role) => {
updatedRoles.push(role)
}
})
await moveProjectToWorkspace({ projectId, workspaceId })
expect(updatedRoles.length).to.equal(1)
expect(updatedRoles[0].role).to.equal(Roles.Workspace.Guest)
})
it('should preserve project roles for project members', async () => {
const userId = cryptoRandomString({ length: 6 })
const projectId = cryptoRandomString({ length: 6 })
const workspaceId = cryptoRandomString({ length: 6 })
const updatedRoles: Partial<StreamAclRecord>[] = []
const moveProjectToWorkspace = moveProjectToWorkspaceFactory({
getProject: async () => {
return {} as StreamRecord
},
updateProject: async () => {
return {} as StreamRecord
},
upsertProjectRole: async (role) => {
updatedRoles.push(role)
return {} as StreamRecord
},
getProjectCollaborators: async () => {
return [
{
id: userId,
role: Roles.Server.User,
streamRole: Roles.Stream.Owner
} as unknown as ProjectTeamMember
]
},
getWorkspaceRoles: async () => {
return []
},
getWorkspaceRoleToDefaultProjectRoleMapping,
updateWorkspaceRole: async () => {}
})
await moveProjectToWorkspace({ projectId, workspaceId })
expect(updatedRoles.length).to.equal(1)
expect(updatedRoles[0].role).to.equal(Roles.Stream.Owner)
})
it('should guarantee that target workspace members get at least the default workspace project role', async () => {
const userId = cryptoRandomString({ length: 6 })
const projectId = cryptoRandomString({ length: 6 })
const workspaceId = cryptoRandomString({ length: 6 })
const updatedRoles: Partial<StreamAclRecord>[] = []
const moveProjectToWorkspace = moveProjectToWorkspaceFactory({
getProject: async () => {
return {} as StreamRecord
},
updateProject: async () => {
return {} as StreamRecord
},
upsertProjectRole: async (role) => {
updatedRoles.push(role)
return {} as StreamRecord
},
getProjectCollaborators: async () => {
return [
{
id: userId,
role: Roles.Server.User,
streamRole: Roles.Stream.Reviewer
} as unknown as ProjectTeamMember
]
},
getWorkspaceRoles: async () => {
return []
},
getWorkspaceRoleToDefaultProjectRoleMapping: async () => ({
[Roles.Workspace.Guest]: null,
[Roles.Workspace.Member]: Roles.Stream.Contributor,
[Roles.Workspace.Admin]: Roles.Stream.Owner
}),
updateWorkspaceRole: async () => {}
})
await moveProjectToWorkspace({ projectId, workspaceId })
expect(updatedRoles.length).to.equal(1)
expect(updatedRoles[0].role).to.equal(Roles.Stream.Contributor)
})
it('should guarantee that target workspace admins become project owners', async () => {
const userId = cryptoRandomString({ length: 6 })
const projectId = cryptoRandomString({ length: 6 })
const workspaceId = cryptoRandomString({ length: 6 })
const updatedRoles: Partial<StreamAclRecord>[] = []
const moveProjectToWorkspace = moveProjectToWorkspaceFactory({
getProject: async () => {
return {} as StreamRecord
},
updateProject: async () => {
return {} as StreamRecord
},
upsertProjectRole: async (role) => {
updatedRoles.push(role)
return {} as StreamRecord
},
getProjectCollaborators: async () => {
return [
{
id: userId,
role: Roles.Server.User,
streamRole: Roles.Stream.Reviewer
} as unknown as ProjectTeamMember
]
},
getWorkspaceRoles: async () => {
return [
{
userId,
workspaceId,
role: Roles.Workspace.Admin,
createdAt: new Date()
}
]
},
getWorkspaceRoleToDefaultProjectRoleMapping: async () => ({
[Roles.Workspace.Guest]: null,
[Roles.Workspace.Member]: Roles.Stream.Contributor,
[Roles.Workspace.Admin]: Roles.Stream.Owner
}),
updateWorkspaceRole: async () => {}
})
await moveProjectToWorkspace({ projectId, workspaceId })
expect(updatedRoles.length).to.equal(1)
expect(updatedRoles[0].role).to.equal(Roles.Stream.Owner)
})
})
describe('updateWorkspaceProjectRoleFactory returns a function, that', () => {
it('should throw when attempting to promote a workspace guest to project owner', async () => {
const workspaceId = cryptoRandomString({ length: 9 })
const projectId = cryptoRandomString({ length: 9 })
const userId = cryptoRandomString({ length: 9 })
const updateWorkspaceProjectRole = updateWorkspaceProjectRoleFactory({
getStream: async () => {
return { workspaceId } as Stream
},
getWorkspaceRoleForUser: async () => ({
workspaceId,
userId,
role: Roles.Workspace.Guest,
createdAt: new Date()
}),
updateStreamRoleAndNotify: async () => {
assert.fail()
}
})
await expectToThrow(() =>
updateWorkspaceProjectRole({
role: { userId, projectId, role: Roles.Stream.Owner },
updater: { userId: '', resourceAccessRules: [] }
})
)
})
})
})
Reference in New Issue View Git Blame Copy Permalink