mirror of
https://github.com/Unleash/unleash.git
synced 2025-01-11 00:08:30 +01:00
ccaab0c47b
Instead of instructing users to do static calls in to Unleash, she should instead be allwed to specify the log provider as an option to Unleash. This commit introduces the "getLogger" option, a function responsible for creating a logger.
80 lines
2.1 KiB
JavaScript
80 lines
2.1 KiB
JavaScript
'use strict';
|
|
|
|
const test = require('ava');
|
|
const store = require('../../test/fixtures/store');
|
|
const checkPermission = require('./permission-checker');
|
|
const supertest = require('supertest');
|
|
const getApp = require('../app');
|
|
const getLogger = require('../../test/fixtures/no-logger');
|
|
|
|
const { EventEmitter } = require('events');
|
|
const eventBus = new EventEmitter();
|
|
|
|
function getSetup(preRouterHook) {
|
|
const base = `/random${Math.round(Math.random() * 1000)}`;
|
|
const stores = store.createStores();
|
|
const app = getApp({
|
|
baseUriPath: base,
|
|
stores,
|
|
eventBus,
|
|
getLogger,
|
|
preRouterHook(_app) {
|
|
preRouterHook(_app);
|
|
|
|
_app.get(
|
|
`${base}/protectedResource`,
|
|
checkPermission({ extendedPermissions: true }, 'READ'),
|
|
(req, res) => {
|
|
res.status(200)
|
|
.json({ message: 'OK' })
|
|
.end();
|
|
}
|
|
);
|
|
},
|
|
});
|
|
|
|
return {
|
|
base,
|
|
request: supertest(app),
|
|
};
|
|
}
|
|
|
|
test('should return 403 when missing permission', t => {
|
|
t.plan(0);
|
|
const { base, request } = getSetup(() => {});
|
|
|
|
return request.get(`${base}/protectedResource`).expect(403);
|
|
});
|
|
|
|
test('should allow access with correct permissions', t => {
|
|
const { base, request } = getSetup(app => {
|
|
app.use((req, res, next) => {
|
|
req.user = { email: 'some@email.com', permissions: ['READ'] };
|
|
next();
|
|
});
|
|
});
|
|
|
|
return request
|
|
.get(`${base}/protectedResource`)
|
|
.expect(200)
|
|
.expect(res => {
|
|
t.is(res.body.message, 'OK');
|
|
});
|
|
});
|
|
|
|
test('should allow access with admin permissions', t => {
|
|
const { base, request } = getSetup(app => {
|
|
app.use((req, res, next) => {
|
|
req.user = { email: 'some@email.com', permissions: ['ADMIN'] };
|
|
next();
|
|
});
|
|
});
|
|
|
|
return request
|
|
.get(`${base}/protectedResource`)
|
|
.expect(200)
|
|
.expect(res => {
|
|
t.is(res.body.message, 'OK');
|
|
});
|
|
});
|