unleash.unleash/src/lib/routes/admin-api/user.test.js

'use strict';

const supertest = require('supertest');
const { EventEmitter } = require('events');
const { createServices } = require('../../services');
const { createTestConfig } = require('../../../test/config/test-config');

const store = require('../../../test/fixtures/store');
const getApp = require('../../app');
const User = require('../../types/user');

const eventBus = new EventEmitter();

const currentUser = new User({ id: 1337, email: 'test@mail.com' });

function getSetup() {
    const base = `/random${Math.round(Math.random() * 1000)}`;
    const stores = store.createStores();
    stores.userStore.insert(currentUser);

    const config = createTestConfig({
        preHook: a => {
            a.use((req, res, next) => {
                req.user = currentUser;
                next();
            });
        },
        server: { baseUriPath: base },
    });
    const services = createServices(stores, config);
    const app = getApp(config, stores, services, eventBus);
    return {
        base,
        userStore: stores.userStore,
        request: supertest(app),
    };
}

test('should return current user', () => {
    expect.assertions(1);
    const { request, base } = getSetup();

    return request
        .get(`${base}/api/admin/user`)
        .expect(200)
        .expect('Content-Type', /json/)
        .expect(res => {
            expect(res.body.user.email).toBe(currentUser.email);
        });
});
const owaspPassword = 't7GTx&$Y9pcsnxRv6';

test('should allow user to change password', async () => {
    expect.assertions(2);
    const { request, base, userStore } = getSetup();
    const before = await userStore.get(currentUser);
    expect(before.passwordHash).toBeFalsy();
    await request
        .post(`${base}/api/admin/user/change-password`)
        .send({ password: owaspPassword, confirmPassword: owaspPassword })
        .expect(200);
    const updated = await userStore.get(currentUser);
    expect(updated.passwordHash).toBeTruthy();
});

test('should deny if password and confirmPassword are not equal', async () => {
    expect.assertions(0);
    const { request, base } = getSetup();
    return request
        .post(`${base}/api/admin/user/change-password`)
        .send({ password: owaspPassword, confirmPassword: 'somethingelse' })
        .expect(400);
});

test('should deny if password does not fulfill owasp criteria', async () => {
    expect.assertions(0);
    const { request, base } = getSetup();
    return request
        .post(`${base}/api/admin/user/change-password`)
        .send({ password: 'hunter123', confirmPassword: 'hunter123' })
        .expect(400);
});
Add sign-out route #288 2018-01-17 09:46:16 +01:00			`'use strict';`

			`const supertest = require('supertest');`
fix: use airbnb lint rules directly (#583) This drops usage of finn-eslint rules as they are no longer maintained. 2020-04-14 22:29:11 +02:00			`const { EventEmitter } = require('events');`
Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`const { createServices } = require('../../services');`
			`const { createTestConfig } = require('../../../test/config/test-config');`

fix: use airbnb lint rules directly (#583) This drops usage of finn-eslint rules as they are no longer maintained. 2020-04-14 22:29:11 +02:00			`const store = require('../../../test/fixtures/store');`
Add sign-out route #288 2018-01-17 09:46:16 +01:00			`const getApp = require('../../app');`
fix: User should require a ID field set (#799) 2021-04-22 23:40:52 +02:00			`const User = require('../../types/user');`
Add sign-out route #288 2018-01-17 09:46:16 +01:00
			`const eventBus = new EventEmitter();`

fix: User should require a ID field set (#799) 2021-04-22 23:40:52 +02:00			`const currentUser = new User({ id: 1337, email: 'test@mail.com' });`
Add sign-out route #288 2018-01-17 09:46:16 +01:00
			`function getSetup() {`
			const base = `/random${Math.round(Math.random() * 1000)}`;
			`const stores = store.createStores();`
feat: Add change-password endpoint to user-controller (#800) fixes: #801 Co-authored-by: Fredrik Oseberg <fredrik.no@gmail.com> 2021-04-22 16:05:59 +02:00			`stores.userStore.insert(currentUser);`

Feat/options need types (#794) feat: options are now typed - This makes it easier to know what to send to unleash.start / unleash.create - Using a Partial to instantiate the config, then melding it with defaults to get a config object with all fields set either to their defaults or to whatever is passed in. Co-authored-by: Fredrik Strand Oseberg <fredrik.no@gmail.com> Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-04-22 10:07:10 +02:00			`const config = createTestConfig({`
			`preHook: a => {`
			`a.use((req, res, next) => {`
			`req.user = currentUser;`
			`next();`
			`});`
Add sign-out route #288 2018-01-17 09:46:16 +01:00			`},`
Feat/options need types (#794) feat: options are now typed - This makes it easier to know what to send to unleash.start / unleash.create - Using a Partial to instantiate the config, then melding it with defaults to get a config object with all fields set either to their defaults or to whatever is passed in. Co-authored-by: Fredrik Strand Oseberg <fredrik.no@gmail.com> Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-04-22 10:07:10 +02:00			`server: { baseUriPath: base },`
			`});`
			`const services = createServices(stores, config);`
			`const app = getApp(config, stores, services, eventBus);`
Add sign-out route #288 2018-01-17 09:46:16 +01:00			`return {`
			`base,`
feat: Add change-password endpoint to user-controller (#800) fixes: #801 Co-authored-by: Fredrik Oseberg <fredrik.no@gmail.com> 2021-04-22 16:05:59 +02:00			`userStore: stores.userStore,`
Add sign-out route #288 2018-01-17 09:46:16 +01:00			`request: supertest(app),`
			`};`
			`}`

Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`test('should return current user', () => {`
			`expect.assertions(1);`
Add sign-out route #288 2018-01-17 09:46:16 +01:00			`const { request, base } = getSetup();`

			`return request`
			.get(`${base}/api/admin/user`)
			`.expect(200)`
			`.expect('Content-Type', /json/)`
			`.expect(res => {`
Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`expect(res.body.user.email).toBe(currentUser.email);`
Add sign-out route #288 2018-01-17 09:46:16 +01:00			`});`
			`});`
feat: Add change-password endpoint to user-controller (#800) fixes: #801 Co-authored-by: Fredrik Oseberg <fredrik.no@gmail.com> 2021-04-22 16:05:59 +02:00			`const owaspPassword = 't7GTx&$Y9pcsnxRv6';`

Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`test('should allow user to change password', async () => {`
			`expect.assertions(2);`
feat: Add change-password endpoint to user-controller (#800) fixes: #801 Co-authored-by: Fredrik Oseberg <fredrik.no@gmail.com> 2021-04-22 16:05:59 +02:00			`const { request, base, userStore } = getSetup();`
			`const before = await userStore.get(currentUser);`
Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`expect(before.passwordHash).toBeFalsy();`
feat: Add change-password endpoint to user-controller (#800) fixes: #801 Co-authored-by: Fredrik Oseberg <fredrik.no@gmail.com> 2021-04-22 16:05:59 +02:00			`await request`
			.post(`${base}/api/admin/user/change-password`)
			`.send({ password: owaspPassword, confirmPassword: owaspPassword })`
			`.expect(200);`
			`const updated = await userStore.get(currentUser);`
Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`expect(updated.passwordHash).toBeTruthy();`
feat: Add change-password endpoint to user-controller (#800) fixes: #801 Co-authored-by: Fredrik Oseberg <fredrik.no@gmail.com> 2021-04-22 16:05:59 +02:00			`});`
Add sign-out route #288 2018-01-17 09:46:16 +01:00
Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`test('should deny if password and confirmPassword are not equal', async () => {`
			`expect.assertions(0);`
Add sign-out route #288 2018-01-17 09:46:16 +01:00			`const { request, base } = getSetup();`
feat: Add change-password endpoint to user-controller (#800) fixes: #801 Co-authored-by: Fredrik Oseberg <fredrik.no@gmail.com> 2021-04-22 16:05:59 +02:00			`return request`
			.post(`${base}/api/admin/user/change-password`)
			`.send({ password: owaspPassword, confirmPassword: 'somethingelse' })`
			`.expect(400);`
			`});`
Add sign-out route #288 2018-01-17 09:46:16 +01:00
Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`test('should deny if password does not fulfill owasp criteria', async () => {`
			`expect.assertions(0);`
feat: Add change-password endpoint to user-controller (#800) fixes: #801 Co-authored-by: Fredrik Oseberg <fredrik.no@gmail.com> 2021-04-22 16:05:59 +02:00			`const { request, base } = getSetup();`
Add sign-out route #288 2018-01-17 09:46:16 +01:00			`return request`
feat: Add change-password endpoint to user-controller (#800) fixes: #801 Co-authored-by: Fredrik Oseberg <fredrik.no@gmail.com> 2021-04-22 16:05:59 +02:00			.post(`${base}/api/admin/user/change-password`)
			`.send({ password: 'hunter123', confirmPassword: 'hunter123' })`
			`.expect(400);`
Add sign-out route #288 2018-01-17 09:46:16 +01:00			`});`