unleash.unleash/src/test/e2e/services/user-service.e2e.test.ts

import dbInit from '../helpers/database-init';
import getLogger from '../../fixtures/no-logger';
import UserService from '../../../lib/services/user-service';
import { AccessService } from '../../../lib/services/access-service';
import UserStore from '../../../lib/db/user-store';
import ResetTokenService from '../../../lib/services/reset-token-service';
import { EmailService } from '../../../lib/services/email-service';
import { createTestConfig } from '../../config/test-config';
import SessionService from '../../../lib/services/session-service';
import NotFoundError from '../../../lib/error/notfound-error';
import { IRole } from '../../../lib/types/stores/access-store';
import { RoleName } from '../../../lib/types/model';

let db;
let stores;
let userService: UserService;
let userStore: UserStore;
let adminRole: IRole;
let viewerRole: IRole;
let sessionService: SessionService;

beforeAll(async () => {
    db = await dbInit('user_service_serial', getLogger);
    stores = db.stores;
    const config = createTestConfig();
    const accessService = new AccessService(stores, config);
    const resetTokenService = new ResetTokenService(stores, config);
    const emailService = new EmailService(undefined, config.getLogger);
    sessionService = new SessionService(stores, config);

    userService = new UserService(stores, config, {
        accessService,
        resetTokenService,
        emailService,
        sessionService,
    });
    userStore = stores.userStore;
    const rootRoles = await accessService.getRootRoles();
    adminRole = rootRoles.find((r) => r.name === RoleName.ADMIN);
    viewerRole = rootRoles.find((r) => r.name === RoleName.VIEWER);
});

afterAll(async () => {
    await db.destroy();
});

afterEach(async () => {
    await userStore.deleteAll();
});

test('should create initial admin user', async () => {
    await userService.initAdminUser();
    await expect(async () =>
        userService.loginUser('admin', 'wrong-password'),
    ).rejects.toThrow(Error);
    await expect(async () =>
        userService.loginUser('admin', 'unleash4all'),
    ).toBeTruthy();
});

test('should not init default user if we already have users', async () => {
    await userService.createUser({
        username: 'test',
        password: 'A very strange P4ssw0rd_',
        rootRole: adminRole.id,
    });
    await userService.initAdminUser();
    const users = await userService.getAll();
    expect(users).toHaveLength(1);
    expect(users[0].username).toBe('test');
    await expect(async () =>
        userService.loginUser('admin', 'unleash4all'),
    ).rejects.toThrow(Error);
});

test('should not be allowed to create existing user', async () => {
    await userStore.insert({ username: 'test', name: 'Hans Mola' });
    await expect(async () =>
        userService.createUser({ username: 'test', rootRole: adminRole.id }),
    ).rejects.toThrow(Error);
});

test('should create user with password', async () => {
    await userService.createUser({
        username: 'test',
        password: 'A very strange P4ssw0rd_',
        rootRole: adminRole.id,
    });
    const user = await userService.loginUser(
        'test',
        'A very strange P4ssw0rd_',
    );
    expect(user.username).toBe('test');
});

test('should login for user _without_ password', async () => {
    const email = 'some@test.com';
    await userService.createUser({
        email,
        password: 'A very strange P4ssw0rd_',
        rootRole: adminRole.id,
    });
    const user = await userService.loginUserWithoutPassword(email);
    expect(user.email).toBe(email);
});

test('should get user with root role', async () => {
    const email = 'some@test.com';
    const u = await userService.createUser({
        email,
        password: 'A very strange P4ssw0rd_',
        rootRole: adminRole.id,
    });
    const user = await userService.getUser(u.id);
    expect(user.email).toBe(email);
    expect(user.id).toBe(u.id);
    expect(user.rootRole).toBe(adminRole.id);
});

test('should get user with root role by name', async () => {
    const email = 'some2@test.com';
    const u = await userService.createUser({
        email,
        password: 'A very strange P4ssw0rd_',
        rootRole: RoleName.ADMIN,
    });
    const user = await userService.getUser(u.id);
    expect(user.email).toBe(email);
    expect(user.id).toBe(u.id);
    expect(user.rootRole).toBe(adminRole.id);
});

test("deleting a user should delete the user's sessions", async () => {
    const email = 'some@test.com';
    const user = await userService.createUser({
        email,
        password: 'A very strange P4ssw0rd_',
        rootRole: adminRole.id,
    });
    const testComSession = {
        sid: 'xyz321',
        sess: {
            cookie: {
                originalMaxAge: 2880000,
                expires: new Date(Date.now() + 86400000).toDateString(),
                secure: false,
                httpOnly: true,
                path: '/',
            },
            user,
        },
    };
    await sessionService.insertSession(testComSession);
    const userSessions = await sessionService.getSessionsForUser(user.id);
    expect(userSessions.length).toBe(1);
    await userService.deleteUser(user.id);
    await expect(async () =>
        sessionService.getSessionsForUser(user.id),
    ).rejects.toThrow(NotFoundError);
});

test('should login and create user via SSO', async () => {
    const email = 'some@test.com';
    const user = await userService.loginUserSSO({
        email,
        rootRole: RoleName.VIEWER,
        name: 'some',
        autoCreate: true,
    });

    const userWithRole = await userService.getUser(user.id);
    expect(user.email).toBe(email);
    expect(user.name).toBe('some');
    expect(userWithRole.name).toBe('some');
    expect(userWithRole.rootRole).toBe(viewerRole.id);
});

test('should throw if rootRole is wrong via SSO', async () => {
    expect.assertions(1);

    try {
        await userService.loginUserSSO({
            email: 'some@test.com',
            rootRole: RoleName.MEMBER,
            name: 'some',
            autoCreate: true,
        });
    } catch (e) {
        expect(e.message).toBe('Could not find rootRole=Member');
    }
});

test('should update user name when signing in via SSO', async () => {
    const email = 'some@test.com';
    const originalUser = await userService.createUser({
        email,
        rootRole: RoleName.VIEWER,
        name: 'some',
    });

    await userService.loginUserSSO({
        email,
        rootRole: RoleName.ADMIN,
        name: 'New name!',
        autoCreate: true,
    });

    const actualUser = await userService.getUser(originalUser.id);

    expect(actualUser.email).toBe(email);
    expect(actualUser.name).toBe('New name!');
    expect(actualUser.rootRole).toBe(viewerRole.id);
});

test('should update name if it is different via SSO', async () => {
    const email = 'some@test.com';
    const originalUser = await userService.createUser({
        email,
        rootRole: RoleName.VIEWER,
        name: 'some',
    });

    await userService.loginUserSSO({
        email,
        rootRole: RoleName.ADMIN,
        name: 'New name!',
        autoCreate: false,
    });

    const actualUser = await userService.getUser(originalUser.id);

    expect(actualUser.email).toBe(email);
    expect(actualUser.name).toBe('New name!');
    expect(actualUser.rootRole).toBe(viewerRole.id);
});

test('should throw if autoCreate is false via SSO', async () => {
    expect.assertions(1);

    try {
        await userService.loginUserSSO({
            email: 'some@test.com',
            rootRole: RoleName.MEMBER,
            name: 'some',
            autoCreate: false,
        });
    } catch (e) {
        expect(e.message).toBe('No user found');
    }
});
feat: Add username/password authentication (#777) 2021-04-09 13:46:53 +02:00			`import dbInit from '../helpers/database-init';`
			`import getLogger from '../../fixtures/no-logger';`
			`import UserService from '../../../lib/services/user-service';`
fix: Stores as typescript and with interfaces. (#902) Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-08-12 15:04:37 +02:00			`import { AccessService } from '../../../lib/services/access-service';`
feat: Add username/password authentication (#777) 2021-04-09 13:46:53 +02:00			`import UserStore from '../../../lib/db/user-store';`
Reset token (#786) feat: Add Reset token functionality This allows admin users to create a reset token for other users. Thus allowing resetting their password. Co-authored-by: Fredrik Oseberg <fredrik.no@gmail.com> fixes: #778 2021-04-16 15:29:23 +02:00			`import ResetTokenService from '../../../lib/services/reset-token-service';`
			`import { EmailService } from '../../../lib/services/email-service';`
fix: convert AUTH_TYPE to uppercase (#797) Make sure we support both `AUTH_TYPE=demo` and `AUTH_TYPE=DEMO` Co-authored-by: Christopher Kolstad <chriswk@getunleash.ai> 2021-04-22 15:04:08 +02:00			`import { createTestConfig } from '../../config/test-config';`
fix: active sessions are now destroyed if auth/reset and auth/validate endpoints are used (#806) 2021-04-27 09:16:44 +02:00			`import SessionService from '../../../lib/services/session-service';`
fix: deletes sessions for user when user is removed (#810) 2021-04-29 10:54:11 +02:00			`import NotFoundError from '../../../lib/error/notfound-error';`
fix: Stores as typescript and with interfaces. (#902) Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-08-12 15:04:37 +02:00			`import { IRole } from '../../../lib/types/stores/access-store';`
			`import { RoleName } from '../../../lib/types/model';`
feat: Add username/password authentication (#777) 2021-04-09 13:46:53 +02:00
			`let db;`
			`let stores;`
			`let userService: UserService;`
			`let userStore: UserStore;`
			`let adminRole: IRole;`
feat: sync fields when logging in via SSO (#916) 2021-08-23 12:11:29 +02:00			`let viewerRole: IRole;`
fix: deletes sessions for user when user is removed (#810) 2021-04-29 10:54:11 +02:00			`let sessionService: SessionService;`
feat: Add username/password authentication (#777) 2021-04-09 13:46:53 +02:00
Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`beforeAll(async () => {`
feat: Add username/password authentication (#777) 2021-04-09 13:46:53 +02:00			`db = await dbInit('user_service_serial', getLogger);`
			`stores = db.stores;`
fix: convert AUTH_TYPE to uppercase (#797) Make sure we support both `AUTH_TYPE=demo` and `AUTH_TYPE=DEMO` Co-authored-by: Christopher Kolstad <chriswk@getunleash.ai> 2021-04-22 15:04:08 +02:00			`const config = createTestConfig();`
feat: Add username/password authentication (#777) 2021-04-09 13:46:53 +02:00			`const accessService = new AccessService(stores, config);`
Reset token (#786) feat: Add Reset token functionality This allows admin users to create a reset token for other users. Thus allowing resetting their password. Co-authored-by: Fredrik Oseberg <fredrik.no@gmail.com> fixes: #778 2021-04-16 15:29:23 +02:00			`const resetTokenService = new ResetTokenService(stores, config);`
Feat/options need types (#794) feat: options are now typed - This makes it easier to know what to send to unleash.start / unleash.create - Using a Partial to instantiate the config, then melding it with defaults to get a config object with all fields set either to their defaults or to whatever is passed in. Co-authored-by: Fredrik Strand Oseberg <fredrik.no@gmail.com> Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-04-22 10:07:10 +02:00			`const emailService = new EmailService(undefined, config.getLogger);`
fix: deletes sessions for user when user is removed (#810) 2021-04-29 10:54:11 +02:00			`sessionService = new SessionService(stores, config);`
Reset token (#786) feat: Add Reset token functionality This allows admin users to create a reset token for other users. Thus allowing resetting their password. Co-authored-by: Fredrik Oseberg <fredrik.no@gmail.com> fixes: #778 2021-04-16 15:29:23 +02:00
			`userService = new UserService(stores, config, {`
			`accessService,`
			`resetTokenService,`
			`emailService,`
fix: active sessions are now destroyed if auth/reset and auth/validate endpoints are used (#806) 2021-04-27 09:16:44 +02:00			`sessionService,`
Reset token (#786) feat: Add Reset token functionality This allows admin users to create a reset token for other users. Thus allowing resetting their password. Co-authored-by: Fredrik Oseberg <fredrik.no@gmail.com> fixes: #778 2021-04-16 15:29:23 +02:00			`});`
feat: Add username/password authentication (#777) 2021-04-09 13:46:53 +02:00			`userStore = stores.userStore;`
			`const rootRoles = await accessService.getRootRoles();`
fix: Stores as typescript and with interfaces. (#902) Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-08-12 15:04:37 +02:00			`adminRole = rootRoles.find((r) => r.name === RoleName.ADMIN);`
feat: sync fields when logging in via SSO (#916) 2021-08-23 12:11:29 +02:00			`viewerRole = rootRoles.find((r) => r.name === RoleName.VIEWER);`
feat: Add username/password authentication (#777) 2021-04-09 13:46:53 +02:00			`});`

Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`afterAll(async () => {`
feat: Add username/password authentication (#777) 2021-04-09 13:46:53 +02:00			`await db.destroy();`
			`});`

Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`afterEach(async () => {`
fix: deletes sessions for user when user is removed (#810) 2021-04-29 10:54:11 +02:00			`await userStore.deleteAll();`
feat: Add username/password authentication (#777) 2021-04-09 13:46:53 +02:00			`});`

Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`test('should create initial admin user', async () => {`
feat: Add username/password authentication (#777) 2021-04-09 13:46:53 +02:00			`await userService.initAdminUser();`
Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`await expect(async () =>`
			`userService.loginUser('admin', 'wrong-password'),`
			`).rejects.toThrow(Error);`
			`await expect(async () =>`
			`userService.loginUser('admin', 'unleash4all'),`
			`).toBeTruthy();`
feat: Add username/password authentication (#777) 2021-04-09 13:46:53 +02:00			`});`

fix: create admin users if enabled and zero users already 2021-10-12 21:27:06 +02:00			`test('should not init default user if we already have users', async () => {`
			`await userService.createUser({`
			`username: 'test',`
			`password: 'A very strange P4ssw0rd_',`
			`rootRole: adminRole.id,`
			`});`
			`await userService.initAdminUser();`
			`const users = await userService.getAll();`
			`expect(users).toHaveLength(1);`
			`expect(users[0].username).toBe('test');`
			`await expect(async () =>`
			`userService.loginUser('admin', 'unleash4all'),`
			`).rejects.toThrow(Error);`
			`});`

Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`test('should not be allowed to create existing user', async () => {`
fix: User should require a ID field set (#799) 2021-04-22 23:40:52 +02:00			`await userStore.insert({ username: 'test', name: 'Hans Mola' });`
Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`await expect(async () =>`
feat: Add username/password authentication (#777) 2021-04-09 13:46:53 +02:00			`userService.createUser({ username: 'test', rootRole: adminRole.id }),`
Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`).rejects.toThrow(Error);`
feat: Add username/password authentication (#777) 2021-04-09 13:46:53 +02:00			`});`

Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`test('should create user with password', async () => {`
feat: Add username/password authentication (#777) 2021-04-09 13:46:53 +02:00			`await userService.createUser({`
			`username: 'test',`
			`password: 'A very strange P4ssw0rd_',`
			`rootRole: adminRole.id,`
			`});`
			`const user = await userService.loginUser(`
			`'test',`
			`'A very strange P4ssw0rd_',`
			`);`
Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`expect(user.username).toBe('test');`
feat: Add username/password authentication (#777) 2021-04-09 13:46:53 +02:00			`});`

Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`test('should login for user _without_ password', async () => {`
feat: Add username/password authentication (#777) 2021-04-09 13:46:53 +02:00			`const email = 'some@test.com';`
			`await userService.createUser({`
			`email,`
			`password: 'A very strange P4ssw0rd_',`
			`rootRole: adminRole.id,`
			`});`
			`const user = await userService.loginUserWithoutPassword(email);`
Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`expect(user.email).toBe(email);`
feat: Add username/password authentication (#777) 2021-04-09 13:46:53 +02:00			`});`

Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`test('should get user with root role', async () => {`
feat: Add username/password authentication (#777) 2021-04-09 13:46:53 +02:00			`const email = 'some@test.com';`
			`const u = await userService.createUser({`
			`email,`
			`password: 'A very strange P4ssw0rd_',`
			`rootRole: adminRole.id,`
			`});`
			`const user = await userService.getUser(u.id);`
Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`expect(user.email).toBe(email);`
			`expect(user.id).toBe(u.id);`
			`expect(user.rootRole).toBe(adminRole.id);`
fix: define root role by setting the name of the role (#823) 2021-04-30 13:25:24 +02:00			`});`

Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`test('should get user with root role by name', async () => {`
fix: define root role by setting the name of the role (#823) 2021-04-30 13:25:24 +02:00			`const email = 'some2@test.com';`
			`const u = await userService.createUser({`
			`email,`
			`password: 'A very strange P4ssw0rd_',`
			`rootRole: RoleName.ADMIN,`
			`});`
			`const user = await userService.getUser(u.id);`
Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`expect(user.email).toBe(email);`
			`expect(user.id).toBe(u.id);`
			`expect(user.rootRole).toBe(adminRole.id);`
feat: Add username/password authentication (#777) 2021-04-09 13:46:53 +02:00			`});`
fix: deletes sessions for user when user is removed (#810) 2021-04-29 10:54:11 +02:00
fix: Stores as typescript and with interfaces. (#902) Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-08-12 15:04:37 +02:00			`test("deleting a user should delete the user's sessions", async () => {`
fix: deletes sessions for user when user is removed (#810) 2021-04-29 10:54:11 +02:00			`const email = 'some@test.com';`
			`const user = await userService.createUser({`
			`email,`
			`password: 'A very strange P4ssw0rd_',`
			`rootRole: adminRole.id,`
			`});`
			`const testComSession = {`
			`sid: 'xyz321',`
			`sess: {`
			`cookie: {`
			`originalMaxAge: 2880000,`
			`expires: new Date(Date.now() + 86400000).toDateString(),`
			`secure: false,`
			`httpOnly: true,`
			`path: '/',`
			`},`
			`user,`
			`},`
			`};`
			`await sessionService.insertSession(testComSession);`
			`const userSessions = await sessionService.getSessionsForUser(user.id);`
Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`expect(userSessions.length).toBe(1);`
fix: deletes sessions for user when user is removed (#810) 2021-04-29 10:54:11 +02:00			`await userService.deleteUser(user.id);`
Migrate to jest (#854) * Migrate to jest * Use --force-exit until dns close handle issue https://github.com/facebook/jest/issues/9982 Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-05-28 11:10:24 +02:00			`await expect(async () =>`
			`sessionService.getSessionsForUser(user.id),`
			`).rejects.toThrow(NotFoundError);`
fix: deletes sessions for user when user is removed (#810) 2021-04-29 10:54:11 +02:00			`});`
feat: sync fields when logging in via SSO (#916) 2021-08-23 12:11:29 +02:00
			`test('should login and create user via SSO', async () => {`
			`const email = 'some@test.com';`
			`const user = await userService.loginUserSSO({`
			`email,`
			`rootRole: RoleName.VIEWER,`
			`name: 'some',`
			`autoCreate: true,`
			`});`

			`const userWithRole = await userService.getUser(user.id);`
			`expect(user.email).toBe(email);`
			`expect(user.name).toBe('some');`
			`expect(userWithRole.name).toBe('some');`
			`expect(userWithRole.rootRole).toBe(viewerRole.id);`
			`});`

			`test('should throw if rootRole is wrong via SSO', async () => {`
			`expect.assertions(1);`

			`try {`
			`await userService.loginUserSSO({`
			`email: 'some@test.com',`
			`rootRole: RoleName.MEMBER,`
			`name: 'some',`
			`autoCreate: true,`
			`});`
			`} catch (e) {`
			`expect(e.message).toBe('Could not find rootRole=Member');`
			`}`
			`});`

			`test('should update user name when signing in via SSO', async () => {`
			`const email = 'some@test.com';`
			`const originalUser = await userService.createUser({`
			`email,`
			`rootRole: RoleName.VIEWER,`
			`name: 'some',`
			`});`

			`await userService.loginUserSSO({`
			`email,`
			`rootRole: RoleName.ADMIN,`
			`name: 'New name!',`
			`autoCreate: true,`
			`});`

			`const actualUser = await userService.getUser(originalUser.id);`

			`expect(actualUser.email).toBe(email);`
			`expect(actualUser.name).toBe('New name!');`
			`expect(actualUser.rootRole).toBe(viewerRole.id);`
			`});`

			`test('should update name if it is different via SSO', async () => {`
			`const email = 'some@test.com';`
			`const originalUser = await userService.createUser({`
			`email,`
			`rootRole: RoleName.VIEWER,`
			`name: 'some',`
			`});`

			`await userService.loginUserSSO({`
			`email,`
			`rootRole: RoleName.ADMIN,`
			`name: 'New name!',`
			`autoCreate: false,`
			`});`

			`const actualUser = await userService.getUser(originalUser.id);`

			`expect(actualUser.email).toBe(email);`
			`expect(actualUser.name).toBe('New name!');`
			`expect(actualUser.rootRole).toBe(viewerRole.id);`
			`});`

			`test('should throw if autoCreate is false via SSO', async () => {`
			`expect.assertions(1);`

			`try {`
			`await userService.loginUserSSO({`
			`email: 'some@test.com',`
			`rootRole: RoleName.MEMBER,`
			`name: 'some',`
			`autoCreate: false,`
			`});`
			`} catch (e) {`
			`expect(e.message).toBe('No user found');`
			`}`
			`});`