2022-07-13 19:38:11 +12:00
|
|
|
<?php
|
|
|
|
|
|
|
|
namespace Tests\E2E\Services\GraphQL;
|
|
|
|
|
|
|
|
use Tests\E2E\Client;
|
|
|
|
use Tests\E2E\Scopes\ProjectCustom;
|
|
|
|
use Tests\E2E\Scopes\Scope;
|
|
|
|
use Tests\E2E\Scopes\SideClient;
|
2023-01-16 22:25:40 +13:00
|
|
|
use Utopia\Database\Helpers\ID;
|
|
|
|
use Utopia\Database\Helpers\Role;
|
|
|
|
use Utopia\Database\Helpers\Permission;
|
2022-07-13 19:38:11 +12:00
|
|
|
|
2022-09-22 20:29:42 +12:00
|
|
|
class AuthTest extends Scope
|
2022-07-13 19:38:11 +12:00
|
|
|
{
|
|
|
|
use ProjectCustom;
|
|
|
|
use SideClient;
|
2022-09-22 20:29:42 +12:00
|
|
|
use Base;
|
2022-07-13 19:38:11 +12:00
|
|
|
|
|
|
|
private array $account1;
|
|
|
|
private array $account2;
|
|
|
|
|
|
|
|
private string $token1;
|
|
|
|
private string $token2;
|
|
|
|
|
|
|
|
private array $database;
|
|
|
|
private array $collection;
|
|
|
|
|
|
|
|
public function setUp(): void
|
|
|
|
{
|
|
|
|
parent::setUp();
|
|
|
|
|
|
|
|
$projectId = $this->getProject()['$id'];
|
|
|
|
$query = $this->getQuery(self::$CREATE_ACCOUNT);
|
|
|
|
|
|
|
|
$email1 = 'test' . \rand() . '@test.com';
|
|
|
|
$email2 = 'test' . \rand() . '@test.com';
|
|
|
|
|
|
|
|
// Create account 1
|
|
|
|
$graphQLPayload = [
|
|
|
|
'query' => $query,
|
|
|
|
'variables' => [
|
2022-09-22 13:53:41 +12:00
|
|
|
'userId' => ID::unique(),
|
2022-07-13 19:38:11 +12:00
|
|
|
'name' => 'User Name',
|
|
|
|
'email' => $email1,
|
|
|
|
'password' => 'password',
|
|
|
|
],
|
|
|
|
];
|
|
|
|
$this->account1 = $this->client->call(Client::METHOD_POST, '/graphql', [
|
|
|
|
'content-type' => 'application/json',
|
|
|
|
'x-appwrite-project' => $projectId,
|
|
|
|
], $graphQLPayload);
|
|
|
|
|
|
|
|
// Create account 2
|
2022-09-22 20:22:10 +12:00
|
|
|
$graphQLPayload['variables']['userId'] = ID::unique();
|
2022-07-13 19:38:11 +12:00
|
|
|
$graphQLPayload['variables']['email'] = $email2;
|
2022-09-22 20:22:10 +12:00
|
|
|
|
2022-07-13 19:38:11 +12:00
|
|
|
$account2 = $this->client->call(Client::METHOD_POST, '/graphql', [
|
|
|
|
'content-type' => 'application/json',
|
|
|
|
'x-appwrite-project' => $projectId,
|
|
|
|
], $graphQLPayload);
|
|
|
|
|
|
|
|
// Create session 1
|
|
|
|
$query = $this->getQuery(self::$CREATE_ACCOUNT_SESSION);
|
|
|
|
$graphQLPayload = [
|
|
|
|
'query' => $query,
|
|
|
|
'variables' => [
|
|
|
|
'email' => $email1,
|
|
|
|
'password' => 'password',
|
|
|
|
]
|
|
|
|
];
|
|
|
|
$session1 = $this->client->call(Client::METHOD_POST, '/graphql', [
|
|
|
|
'content-type' => 'application/json',
|
|
|
|
'x-appwrite-project' => $projectId,
|
|
|
|
], $graphQLPayload);
|
|
|
|
|
2023-12-09 12:36:01 +13:00
|
|
|
$this->token1 = $session1['cookies']['a_session_' . $projectId];
|
2022-07-13 19:38:11 +12:00
|
|
|
|
|
|
|
// Create session 2
|
|
|
|
$graphQLPayload['variables']['email'] = $email2;
|
2022-09-22 20:29:42 +12:00
|
|
|
|
2022-07-13 19:38:11 +12:00
|
|
|
$session2 = $this->client->call(Client::METHOD_POST, '/graphql', [
|
|
|
|
'content-type' => 'application/json',
|
|
|
|
'x-appwrite-project' => $projectId,
|
|
|
|
], $graphQLPayload);
|
|
|
|
|
2023-12-09 12:36:01 +13:00
|
|
|
$this->token2 = $session2['cookies']['a_session_' . $projectId];
|
2022-07-13 19:38:11 +12:00
|
|
|
|
|
|
|
// Create database
|
|
|
|
$query = $this->getQuery(self::$CREATE_DATABASE);
|
|
|
|
$gqlPayload = [
|
|
|
|
'query' => $query,
|
|
|
|
'variables' => [
|
2022-09-22 13:53:41 +12:00
|
|
|
'databaseId' => ID::unique(),
|
2022-07-13 19:38:11 +12:00
|
|
|
'name' => 'Actors',
|
|
|
|
]
|
|
|
|
];
|
|
|
|
$this->database = $this->client->call(Client::METHOD_POST, '/graphql', [
|
|
|
|
'content-type' => 'application/json',
|
|
|
|
'x-appwrite-project' => $projectId,
|
|
|
|
'x-appwrite-key' => $this->getProject()['apiKey'],
|
|
|
|
], $gqlPayload);
|
|
|
|
|
|
|
|
// Create collection
|
|
|
|
$query = $this->getQuery(self::$CREATE_COLLECTION);
|
2022-12-08 16:08:57 +13:00
|
|
|
$userId = $this->account1['body']['data']['accountCreate']['_id'];
|
2022-07-13 19:38:11 +12:00
|
|
|
$gqlPayload = [
|
|
|
|
'query' => $query,
|
|
|
|
'variables' => [
|
2022-12-08 16:08:57 +13:00
|
|
|
'databaseId' => $this->database['body']['data']['databasesCreate']['_id'],
|
2022-09-22 13:53:41 +12:00
|
|
|
'collectionId' => ID::unique(),
|
2022-07-13 19:38:11 +12:00
|
|
|
'name' => 'Actors',
|
2022-09-21 19:11:49 +12:00
|
|
|
'documentSecurity' => true,
|
|
|
|
'permissions' => [
|
|
|
|
Permission::create(Role::user($userId))
|
|
|
|
]
|
2022-07-13 19:38:11 +12:00
|
|
|
]
|
|
|
|
];
|
|
|
|
$this->collection = $this->client->call(Client::METHOD_POST, '/graphql', [
|
|
|
|
'content-type' => 'application/json',
|
|
|
|
'x-appwrite-project' => $projectId,
|
|
|
|
'x-appwrite-key' => $this->getProject()['apiKey'],
|
|
|
|
], $gqlPayload);
|
|
|
|
|
|
|
|
// Create string attribute
|
|
|
|
$query = $this->getQuery(self::$CREATE_STRING_ATTRIBUTE);
|
|
|
|
$gqlPayload = [
|
|
|
|
'query' => $query,
|
|
|
|
'variables' => [
|
2022-12-08 16:08:57 +13:00
|
|
|
'databaseId' => $this->database['body']['data']['databasesCreate']['_id'],
|
|
|
|
'collectionId' => $this->collection['body']['data']['databasesCreateCollection']['_id'],
|
2022-07-13 19:38:11 +12:00
|
|
|
'key' => 'name',
|
|
|
|
'size' => 256,
|
|
|
|
'required' => true,
|
|
|
|
]
|
|
|
|
];
|
|
|
|
$this->client->call(Client::METHOD_POST, '/graphql', [
|
|
|
|
'content-type' => 'application/json',
|
|
|
|
'x-appwrite-project' => $projectId,
|
|
|
|
'x-appwrite-key' => $this->getProject()['apiKey'],
|
|
|
|
], $gqlPayload);
|
|
|
|
|
|
|
|
sleep(1);
|
|
|
|
}
|
|
|
|
|
|
|
|
public function testInvalidAuth()
|
|
|
|
{
|
|
|
|
$projectId = $this->getProject()['$id'];
|
|
|
|
|
|
|
|
// Create document as account 1
|
|
|
|
$query = $this->getQuery(self::$CREATE_DOCUMENT);
|
2022-12-08 16:08:57 +13:00
|
|
|
$userId = $this->account1['body']['data']['accountCreate']['_id'];
|
2022-07-13 19:38:11 +12:00
|
|
|
$gqlPayload = [
|
|
|
|
'query' => $query,
|
|
|
|
'variables' => [
|
2022-12-08 16:08:57 +13:00
|
|
|
'databaseId' => $this->database['body']['data']['databasesCreate']['_id'],
|
|
|
|
'collectionId' => $this->collection['body']['data']['databasesCreateCollection']['_id'],
|
2022-09-22 13:53:41 +12:00
|
|
|
'documentId' => ID::unique(),
|
2022-07-13 19:38:11 +12:00
|
|
|
'data' => [
|
|
|
|
'name' => 'John Doe',
|
|
|
|
],
|
2022-09-21 19:11:49 +12:00
|
|
|
'permissions' => [
|
|
|
|
Permission::read(Role::user($userId)),
|
|
|
|
Permission::update(Role::user($userId)),
|
|
|
|
Permission::delete(Role::user($userId)),
|
|
|
|
]
|
2022-07-13 19:38:11 +12:00
|
|
|
]
|
|
|
|
];
|
|
|
|
$document = $this->client->call(Client::METHOD_POST, '/graphql', [
|
|
|
|
'content-type' => 'application/json',
|
|
|
|
'x-appwrite-project' => $projectId,
|
|
|
|
'cookie' => 'a_session_' . $projectId . '=' . $this->token1,
|
|
|
|
], $gqlPayload);
|
|
|
|
|
|
|
|
// Try to read as account 1
|
|
|
|
$query = $this->getQuery(self::$GET_DOCUMENT);
|
|
|
|
$gqlPayload = [
|
|
|
|
'query' => $query,
|
|
|
|
'variables' => [
|
2022-12-08 16:08:57 +13:00
|
|
|
'databaseId' => $this->database['body']['data']['databasesCreate']['_id'],
|
|
|
|
'collectionId' => $this->collection['body']['data']['databasesCreateCollection']['_id'],
|
|
|
|
'documentId' => $document['body']['data']['databasesCreateDocument']['_id'],
|
2022-07-13 19:38:11 +12:00
|
|
|
]
|
|
|
|
];
|
|
|
|
$document = $this->client->call(Client::METHOD_POST, '/graphql', [
|
|
|
|
'content-type' => 'application/json',
|
|
|
|
'x-appwrite-project' => $projectId,
|
|
|
|
'cookie' => 'a_session_' . $projectId . '=' . $this->token1,
|
|
|
|
], $gqlPayload);
|
|
|
|
|
|
|
|
$this->assertIsArray($document['body']['data']['databasesGetDocument']);
|
|
|
|
$this->assertArrayNotHasKey('errors', $document['body']);
|
|
|
|
|
|
|
|
// Try to read as account 2
|
|
|
|
$document = $this->client->call(Client::METHOD_POST, '/graphql', [
|
|
|
|
'content-type' => 'application/json',
|
|
|
|
'x-appwrite-project' => $projectId,
|
|
|
|
'cookie' => 'a_session_' . $projectId . '=' . $this->token2,
|
|
|
|
], $gqlPayload);
|
|
|
|
|
|
|
|
$this->assertArrayHasKey('errors', $document['body']);
|
2022-09-21 19:11:49 +12:00
|
|
|
$this->assertEquals('Document with the requested ID could not be found.', $document['body']['errors'][0]['message']);
|
2022-07-13 19:38:11 +12:00
|
|
|
}
|
|
|
|
|
|
|
|
public function testValidAuth()
|
|
|
|
{
|
|
|
|
$projectId = $this->getProject()['$id'];
|
|
|
|
|
|
|
|
// Create document as account 1
|
|
|
|
$query = $this->getQuery(self::$CREATE_DOCUMENT);
|
2022-12-08 16:08:57 +13:00
|
|
|
$userId = $this->account1['body']['data']['accountCreate']['_id'];
|
2022-07-13 19:38:11 +12:00
|
|
|
$gqlPayload = [
|
|
|
|
'query' => $query,
|
|
|
|
'variables' => [
|
2022-12-08 16:08:57 +13:00
|
|
|
'databaseId' => $this->database['body']['data']['databasesCreate']['_id'],
|
|
|
|
'collectionId' => $this->collection['body']['data']['databasesCreateCollection']['_id'],
|
2022-09-22 13:53:41 +12:00
|
|
|
'documentId' => ID::unique(),
|
2022-07-13 19:38:11 +12:00
|
|
|
'data' => [
|
|
|
|
'name' => 'John Doe',
|
|
|
|
],
|
2022-09-21 20:17:17 +12:00
|
|
|
'permissions' => [
|
|
|
|
Permission::read(Role::user($userId)),
|
|
|
|
Permission::update(Role::user($userId)),
|
|
|
|
Permission::delete(Role::user($userId)),
|
|
|
|
],
|
2022-07-13 19:38:11 +12:00
|
|
|
]
|
|
|
|
];
|
|
|
|
$document = $this->client->call(Client::METHOD_POST, '/graphql', [
|
|
|
|
'content-type' => 'application/json',
|
|
|
|
'x-appwrite-project' => $projectId,
|
|
|
|
'cookie' => 'a_session_' . $projectId . '=' . $this->token1,
|
|
|
|
], $gqlPayload);
|
|
|
|
|
|
|
|
// Try to delete as account 1
|
|
|
|
$query = $this->getQuery(self::$DELETE_DOCUMENT);
|
|
|
|
$gqlPayload = [
|
|
|
|
'query' => $query,
|
|
|
|
'variables' => [
|
2022-12-08 16:08:57 +13:00
|
|
|
'databaseId' => $this->database['body']['data']['databasesCreate']['_id'],
|
|
|
|
'collectionId' => $this->collection['body']['data']['databasesCreateCollection']['_id'],
|
|
|
|
'documentId' => $document['body']['data']['databasesCreateDocument']['_id'],
|
2022-07-13 19:38:11 +12:00
|
|
|
]
|
|
|
|
];
|
|
|
|
$document = $this->client->call(Client::METHOD_POST, '/graphql', [
|
|
|
|
'content-type' => 'application/json',
|
|
|
|
'x-appwrite-project' => $projectId,
|
|
|
|
'cookie' => 'a_session_' . $projectId . '=' . $this->token1,
|
|
|
|
], $gqlPayload);
|
|
|
|
|
2022-07-18 21:38:13 +12:00
|
|
|
$this->assertIsNotArray($document['body']);
|
2022-07-13 19:38:11 +12:00
|
|
|
$this->assertEquals(204, $document['headers']['status-code']);
|
|
|
|
}
|
|
|
|
}
|