appwrite/tests/e2e/Services/GraphQL/GraphQLServerTest.php

<?php

namespace Tests\E2E\Services\GraphQL;

use Tests\E2E\Client;
use Tests\E2E\Scopes\ProjectCustom;
use Tests\E2E\Scopes\Scope;
use Tests\E2E\Scopes\SideServer;


class GraphQLServerTest extends Scope
{
    use ProjectCustom;
    use SideServer;
    use GraphQLBase;

    /**
     * @depends testCreateCollection
     */
    public function testDocumentCreate(array $data)
    {
        $projectId = $this->getProject()['$id'];
        $key = '';
        $query = $this->getQuery(self::$CREATE_DOCUMENT_REST);

        $variables = [
            'collectionId' => $data['collectionId'],
            'data' => [
                'name' => 'Robert',
                'ago' => 100,
                'alive' => true,
            ],
            'read' => ['role:all'],
            'write' => ['role:all'],
        ];

        $graphQLPayload = [
            'query' => $query,
            'variables' => $variables
        ];

        $document = $this->client->call(Client::METHOD_POST, '/graphql', [
            'content-type' => 'application/json',
            'x-appwrite-project' => $projectId,
            'x-appwrite-key' => $key
        ], $graphQLPayload);

        $errorMessage = 'User (role: guest) missing scope (documents.write)';
        $this->assertEquals($errorMessage, $document['body']['errors'][0]['message']);
        $this->assertIsArray($document['body']['data']);
        $this->assertNull($document['body']['data']['databaseCreateDocument']);

        $key = $this->getNewKey(['documents.write']);
        $document = $this->client->call(Client::METHOD_POST, '/graphql', array_merge([
            'origin' => 'http://localhost',
            'content-type' => 'application/json',
            'x-appwrite-project' => $projectId,
            'x-appwrite-key' => $key
        ]), $graphQLPayload);

        $this->assertNull($document['body']['errors']);
        $this->assertIsArray($document['body']['data']);
        $this->assertIsArray($document['body']['data']['databaseCreateDocument']);

        $doc = $document['body']['data']['databaseCreateDocument'];
        $this->assertArrayHasKey('$id', $doc);
        $this->assertEquals($data['collectionId'], $doc['$collection']);
        $this->assertEquals($variables['data']['name'], $doc['name']);
        $this->assertEquals($variables['data']['age'], $doc['age']);
        $this->assertEquals($variables['read'], $doc['read']);
        $this->assertEquals($variables['write'], $doc['write']);
    }

    /**
     * @throws \Exception
     */
    public function testUserCreate()
    {
        /**
         * Try to create a user without the required scope
         */
        $projectId = $this->getProject()['$id'];
        $key = '';
        $query = $this->getQuery(self::$CREATE_USER);

        $variables = [
            'email' => 'users.service@example.com',
            'password' => 'password',
            'name' => 'Project User',
        ];

        $graphQLPayload = [
            'query' => $query,
            'variables' => $variables
        ];

        $user = $this->client->call(Client::METHOD_POST, '/graphql', [
            'content-type' => 'application/json',
            'x-appwrite-project' => $projectId,
            'x-appwrite-key' => $key
        ], $graphQLPayload);

        $errorMessage = 'User (role: guest) missing scope (users.write)';
        $this->assertEquals($errorMessage, $user['body']['errors'][0]['message']);
        $this->assertIsArray($user['body']['data']);
        $this->assertNull($user['body']['data']['usersCreate']);

        /**
         * Create the user with the reqiured scopes
         */
        $key = $this->getNewKey(['users.write']);
        $user = $this->client->call(Client::METHOD_POST, '/graphql', array_merge([
            'origin' => 'http://localhost',
            'content-type' => 'application/json',
            'x-appwrite-project' => $projectId,
            'x-appwrite-key' => $key
        ]), $graphQLPayload);

        $this->assertNull($user['body']['errors']);
        $this->assertIsArray($user['body']['data']);
        $this->assertIsArray($user['body']['data']['usersCreate']);

        $data = $user['body']['data']['usersCreate'];
        $this->assertArrayHasKey('id', $data);
        $this->assertArrayHasKey('registration', $data);
        $this->assertEquals($variables['name'], $data['name']);
        $this->assertEquals($variables['email'], $data['email']);
        $this->assertEquals(0, $data['status']);
        $this->assertEquals(false, $data['emailVerification']);
        $this->assertEquals([], $data['prefs']);

        return ['userId' => $user['body']['data']['users_create']['id']];
    }

    /**
     * @depends testUserCreate
     */
    public function testUserDelete(array $data)
    {
        /**
         * Try to delete a user without the required scope
         */
        $projectId = $this->getProject()['$id'];
        $key = '';
        $query = $this->getQuery(self::$DELETE_USER);

        $variables = [
            'userId' => $data['userId'],
        ];

        $graphQLPayload = [
            'query' => $query,
            'variables' => $variables
        ];

        $user = $this->client->call(Client::METHOD_POST, '/graphql', [
            'content-type' => 'application/json',
            'x-appwrite-project' => $projectId,
            'x-appwrite-key' => $key
        ], $graphQLPayload);

        $errorMessage = 'User (role: guest) missing scope (users.write)';
        $this->assertEquals($errorMessage, $user['body']['errors'][0]['message']);
        $this->assertIsArray($user['body']['data']);
        $this->assertNull($user['body']['data']['users_deleteUser']);

        /**
         * Delete the user with the reqiured scopes
         */
        $key = $this->getNewKey(['users.write']);
        $user = $this->client->call(Client::METHOD_POST, '/graphql', array_merge([
            'origin' => 'http://localhost',
            'content-type' => 'application/json',
            'x-appwrite-project' => $projectId,
            'x-appwrite-key' => $key
        ]), $graphQLPayload);

        $this->assertNull($user['body']['errors']);
        $this->assertIsArray($user['body']['data']);
        $this->assertIsArray($user['body']['data']['usersDeleteUser']);
        $this->assertEquals([], $user['body']['data']['usersDeleteUser']);

        /**
         * Try to fetch the user and check that its empty
         */
        $query = $this->getQuery(self::$GET_USER);
        $key = $this->getNewKey(['users.read']);

        $graphQLPayload = [
            'query' => $query,
            'variables' => $variables
        ];

        $user = $this->client->call(Client::METHOD_POST, '/graphql', [
            'content-type' => 'application/json',
            'x-appwrite-project' => $projectId,
            'x-appwrite-key' => $key
        ], $graphQLPayload);

        $errorMessage = 'User not found';
        $this->assertEquals($errorMessage, $user['body']['errors'][0]['message']);
        $this->assertIsArray($user['body']['data']);
        $this->assertNull($user['body']['data']['users_get']);
    }


    public function testScopeBasedAuth()
    {
        $key = $this->getNewKey(['locale.read']);
        $projectId = $this->getProject()['$id'];

        /**
         * Check that countries can be fetched
         */
        $query = $this->getQuery(self::$LIST_COUNTRIES);
        $variables = [];
        $graphQLPayload = [
            'query' => $query,
            'variables' => $variables
        ];
        $countries = $this->client->call(Client::METHOD_POST, '/graphql', [
            'content-type' => 'application/json',
            'x-appwrite-project' => $projectId,
            'x-appwrite-key' => $key
        ], $graphQLPayload);

        $this->assertNull($countries['body']['errors']);
        $this->assertIsArray($countries['body']['data']);
        $this->assertIsArray($countries['body']['data']['localeGetCountries']);

        $data = $countries['body']['data']['localeGetCountries'];
        $this->assertEquals(194, count($data['countries']));
        $this->assertEquals(194, $data['total']);


        /**
         * Create a key withouut any scopes
         */
        $key = $this->getNewKey([]);
        $countries = $this->client->call(Client::METHOD_POST, '/graphql', [
            'content-type' => 'application/json',
            'x-appwrite-project' => $projectId,
            'x-appwrite-key' => $key
        ], $graphQLPayload);

        $errorMessage = 'app.${projectId}@service.localhost (role: application) missing scope (locale.read)';
        $this->assertEquals($countries['headers']['status-code'], 401);
        $this->assertEquals($countries['body']['errors'][0]['message'], $errorMessage);
        $this->assertIsArray($countries['body']['data']);
        $this->assertNull($countries['body']['data']['locale_getCountries']);
    }

}
feat: added some tests and code cleanup 2021-03-13 07:00:41 +13:00			`<?php`

			`namespace Tests\E2E\Services\GraphQL;`

			`use Tests\E2E\Client;`
Test updates 2022-04-09 01:52:20 +12:00			`use Tests\E2E\Scopes\ProjectCustom;`
feat: added some tests and code cleanup 2021-03-13 07:00:41 +13:00			`use Tests\E2E\Scopes\Scope;`
			`use Tests\E2E\Scopes\SideServer;`

feat: added tests for scope based auth 2021-03-17 02:34:11 +13:00
Test updates 2022-04-09 01:52:20 +12:00			`class GraphQLServerTest extends Scope`
feat: added some tests and code cleanup 2021-03-13 07:00:41 +13:00			`{`
Test updates 2022-04-09 01:52:20 +12:00			`use ProjectCustom;`
feat: added some tests and code cleanup 2021-03-13 07:00:41 +13:00			`use SideServer;`
feat: refactoring 2021-03-17 03:34:43 +13:00			`use GraphQLBase;`
feat: added some tests and code cleanup 2021-03-13 07:00:41 +13:00
feat: added more tests 2021-03-13 09:17:29 +13:00			`/**`
Test updates 2022-04-09 01:52:20 +12:00			`* @depends testCreateCollection`
			`*/`
			`public function testDocumentCreate(array $data)`
			`{`
feat: added more tests 2021-03-13 09:17:29 +13:00			`$projectId = $this->getProject()['$id'];`
feat: added tests for role based auth 2021-03-17 07:16:33 +13:00			`$key = '';`
Test updates 2022-04-09 01:52:20 +12:00			`$query = $this->getQuery(self::$CREATE_DOCUMENT_REST);`
feat: added more tests 2021-03-13 09:17:29 +13:00
			`$variables = [`
Test updates 2022-04-09 01:52:20 +12:00			`'collectionId' => $data['collectionId'],`
feat: added more tests 2021-03-13 09:17:29 +13:00			`'data' => [`
Test updates 2022-04-09 01:52:20 +12:00			`'name' => 'Robert',`
			`'ago' => 100,`
			`'alive' => true,`
feat: added more tests 2021-03-13 09:17:29 +13:00			`],`
Test updates 2022-04-09 01:52:20 +12:00			`'read' => ['role:all'],`
			`'write' => ['role:all'],`
feat: added more tests 2021-03-13 09:17:29 +13:00			`];`

			`$graphQLPayload = [`
Test updates 2022-04-09 01:52:20 +12:00			`'query' => $query,`
			`'variables' => $variables`
feat: added more tests 2021-03-13 09:17:29 +13:00			`];`

			`$document = $this->client->call(Client::METHOD_POST, '/graphql', [`
			`'content-type' => 'application/json',`
			`'x-appwrite-project' => $projectId,`
			`'x-appwrite-key' => $key`
			`], $graphQLPayload);`

Test updates 2022-04-09 01:52:20 +12:00			`$errorMessage = 'User (role: guest) missing scope (documents.write)';`
			`$this->assertEquals($errorMessage, $document['body']['errors'][0]['message']);`
feat: added tests for role based auth 2021-03-17 07:16:33 +13:00			`$this->assertIsArray($document['body']['data']);`
Test updates 2022-04-09 01:52:20 +12:00			`$this->assertNull($document['body']['data']['databaseCreateDocument']);`
feat: added some tests and code cleanup 2021-03-13 07:00:41 +13:00
Test updates 2022-04-09 01:52:20 +12:00			`$key = $this->getNewKey(['documents.write']);`
feat: added tests for role based auth 2021-03-17 07:16:33 +13:00			`$document = $this->client->call(Client::METHOD_POST, '/graphql', array_merge([`
			`'origin' => 'http://localhost',`
			`'content-type' => 'application/json',`
			`'x-appwrite-project' => $projectId,`
			`'x-appwrite-key' => $key`
			`]), $graphQLPayload);`
Test updates 2022-04-09 01:52:20 +12:00
feat: added more tests 2021-03-13 09:17:29 +13:00			`$this->assertNull($document['body']['errors']);`
			`$this->assertIsArray($document['body']['data']);`
Test updates 2022-04-09 01:52:20 +12:00			`$this->assertIsArray($document['body']['data']['databaseCreateDocument']);`

			`$doc = $document['body']['data']['databaseCreateDocument'];`
feat: added more tests 2021-03-13 09:17:29 +13:00			`$this->assertArrayHasKey('$id', $doc);`
Test updates 2022-04-09 01:52:20 +12:00			`$this->assertEquals($data['collectionId'], $doc['$collection']);`
			`$this->assertEquals($variables['data']['name'], $doc['name']);`
			`$this->assertEquals($variables['data']['age'], $doc['age']);`
			`$this->assertEquals($variables['read'], $doc['read']);`
			`$this->assertEquals($variables['write'], $doc['write']);`
feat: added more tests 2021-03-13 09:17:29 +13:00			`}`

Test updates 2022-04-09 01:52:20 +12:00			`/**`
			`* @throws \Exception`
			`*/`
			`public function testUserCreate()`
			`{`
feat: updated tests 2021-03-19 09:17:25 +13:00			`/**`
			`* Try to create a user without the required scope`
			`*/`
feat: added more tests 2021-03-13 09:17:29 +13:00			`$projectId = $this->getProject()['$id'];`
feat: added tests for role based auth 2021-03-17 07:16:33 +13:00			`$key = '';`
			`$query = $this->getQuery(self::$CREATE_USER);`
Test updates 2022-04-09 01:52:20 +12:00
feat: added more tests 2021-03-13 09:17:29 +13:00			`$variables = [`
			`'email' => 'users.service@example.com',`
			`'password' => 'password',`
			`'name' => 'Project User',`
			`];`

			`$graphQLPayload = [`
Test updates 2022-04-09 01:52:20 +12:00			`'query' => $query,`
			`'variables' => $variables`
feat: added more tests 2021-03-13 09:17:29 +13:00			`];`

			`$user = $this->client->call(Client::METHOD_POST, '/graphql', [`
			`'content-type' => 'application/json',`
			`'x-appwrite-project' => $projectId,`
			`'x-appwrite-key' => $key`
			`], $graphQLPayload);`

Test updates 2022-04-09 01:52:20 +12:00			`$errorMessage = 'User (role: guest) missing scope (users.write)';`
			`$this->assertEquals($errorMessage, $user['body']['errors'][0]['message']);`
feat: added tests for role based auth 2021-03-17 07:16:33 +13:00			`$this->assertIsArray($user['body']['data']);`
Test updates 2022-04-09 01:52:20 +12:00			`$this->assertNull($user['body']['data']['usersCreate']);`
feat: added tests for role based auth 2021-03-17 07:16:33 +13:00
feat: updated tests 2021-03-19 09:17:25 +13:00			`/**`
			`* Create the user with the reqiured scopes`
			`*/`
Test updates 2022-04-09 01:52:20 +12:00			`$key = $this->getNewKey(['users.write']);`
feat: added tests for role based auth 2021-03-17 07:16:33 +13:00			`$user = $this->client->call(Client::METHOD_POST, '/graphql', array_merge([`
			`'origin' => 'http://localhost',`
			`'content-type' => 'application/json',`
			`'x-appwrite-project' => $projectId,`
			`'x-appwrite-key' => $key`
			`]), $graphQLPayload);`

feat: added more tests 2021-03-13 09:17:29 +13:00			`$this->assertNull($user['body']['errors']);`
			`$this->assertIsArray($user['body']['data']);`
Test updates 2022-04-09 01:52:20 +12:00			`$this->assertIsArray($user['body']['data']['usersCreate']);`

			`$data = $user['body']['data']['usersCreate'];`
feat: added more tests 2021-03-13 09:17:29 +13:00			`$this->assertArrayHasKey('id', $data);`
			`$this->assertArrayHasKey('registration', $data);`
feat: added tests for role based auth 2021-03-17 07:16:33 +13:00			`$this->assertEquals($variables['name'], $data['name']);`
			`$this->assertEquals($variables['email'], $data['email']);`
feat: added more tests 2021-03-13 09:17:29 +13:00			`$this->assertEquals(0, $data['status']);`
			`$this->assertEquals(false, $data['emailVerification']);`
			`$this->assertEquals([], $data['prefs']);`
feat: added test for delete user 2021-03-19 09:14:18 +13:00
Test updates 2022-04-09 01:52:20 +12:00			`return ['userId' => $user['body']['data']['users_create']['id']];`
feat: added test for delete user 2021-03-19 09:14:18 +13:00			`}`

			`/**`
Test updates 2022-04-09 01:52:20 +12:00			`* @depends testUserCreate`
			`*/`
			`public function testUserDelete(array $data)`
			`{`
feat: updated tests 2021-03-19 09:17:25 +13:00			`/**`
			`* Try to delete a user without the required scope`
			`*/`
feat: added test for delete user 2021-03-19 09:14:18 +13:00			`$projectId = $this->getProject()['$id'];`
			`$key = '';`
			`$query = $this->getQuery(self::$DELETE_USER);`
Test updates 2022-04-09 01:52:20 +12:00
feat: added test for delete user 2021-03-19 09:14:18 +13:00			`$variables = [`
			`'userId' => $data['userId'],`
			`];`

			`$graphQLPayload = [`
Test updates 2022-04-09 01:52:20 +12:00			`'query' => $query,`
			`'variables' => $variables`
feat: added test for delete user 2021-03-19 09:14:18 +13:00			`];`

			`$user = $this->client->call(Client::METHOD_POST, '/graphql', [`
			`'content-type' => 'application/json',`
			`'x-appwrite-project' => $projectId,`
			`'x-appwrite-key' => $key`
			`], $graphQLPayload);`

Test updates 2022-04-09 01:52:20 +12:00			`$errorMessage = 'User (role: guest) missing scope (users.write)';`
			`$this->assertEquals($errorMessage, $user['body']['errors'][0]['message']);`
feat: added test for delete user 2021-03-19 09:14:18 +13:00			`$this->assertIsArray($user['body']['data']);`
			`$this->assertNull($user['body']['data']['users_deleteUser']);`

feat: updated tests 2021-03-19 09:17:25 +13:00			`/**`
			`* Delete the user with the reqiured scopes`
			`*/`
Test updates 2022-04-09 01:52:20 +12:00			`$key = $this->getNewKey(['users.write']);`
feat: added test for delete user 2021-03-19 09:14:18 +13:00			`$user = $this->client->call(Client::METHOD_POST, '/graphql', array_merge([`
			`'origin' => 'http://localhost',`
			`'content-type' => 'application/json',`
			`'x-appwrite-project' => $projectId,`
			`'x-appwrite-key' => $key`
			`]), $graphQLPayload);`

			`$this->assertNull($user['body']['errors']);`
			`$this->assertIsArray($user['body']['data']);`
Test updates 2022-04-09 01:52:20 +12:00			`$this->assertIsArray($user['body']['data']['usersDeleteUser']);`
			`$this->assertEquals([], $user['body']['data']['usersDeleteUser']);`
feat: added test for delete user 2021-03-19 09:14:18 +13:00
			`/**`
			`* Try to fetch the user and check that its empty`
			`*/`
			`$query = $this->getQuery(self::$GET_USER);`
Test updates 2022-04-09 01:52:20 +12:00			`$key = $this->getNewKey(['users.read']);`
feat: added test for delete user 2021-03-19 09:14:18 +13:00
			`$graphQLPayload = [`
Test updates 2022-04-09 01:52:20 +12:00			`'query' => $query,`
			`'variables' => $variables`
feat: added test for delete user 2021-03-19 09:14:18 +13:00			`];`

			`$user = $this->client->call(Client::METHOD_POST, '/graphql', [`
			`'content-type' => 'application/json',`
			`'x-appwrite-project' => $projectId,`
			`'x-appwrite-key' => $key`
			`], $graphQLPayload);`

Test updates 2022-04-09 01:52:20 +12:00			`$errorMessage = 'User not found';`
			`$this->assertEquals($errorMessage, $user['body']['errors'][0]['message']);`
feat: added test for delete user 2021-03-19 09:14:18 +13:00			`$this->assertIsArray($user['body']['data']);`
			`$this->assertNull($user['body']['data']['users_get']);`
feat: added tests for scope based auth 2021-03-17 02:34:11 +13:00			`}`


Test updates 2022-04-09 01:52:20 +12:00			`public function testScopeBasedAuth()`
			`{`
			`$key = $this->getNewKey(['locale.read']);`
feat: added tests for scope based auth 2021-03-17 02:34:11 +13:00			`$projectId = $this->getProject()['$id'];`
Test updates 2022-04-09 01:52:20 +12:00
feat: updated tests 2021-03-19 09:17:25 +13:00			`/**`
			`* Check that countries can be fetched`
			`*/`
feat: added tests for role based auth 2021-03-17 07:16:33 +13:00			`$query = $this->getQuery(self::$LIST_COUNTRIES);`
feat: added tests for scope based auth 2021-03-17 02:34:11 +13:00			`$variables = [];`
			`$graphQLPayload = [`
Test updates 2022-04-09 01:52:20 +12:00			`'query' => $query,`
			`'variables' => $variables`
feat: added tests for scope based auth 2021-03-17 02:34:11 +13:00			`];`
			`$countries = $this->client->call(Client::METHOD_POST, '/graphql', [`
			`'content-type' => 'application/json',`
			`'x-appwrite-project' => $projectId,`
			`'x-appwrite-key' => $key`
			`], $graphQLPayload);`

			`$this->assertNull($countries['body']['errors']);`
			`$this->assertIsArray($countries['body']['data']);`
Test updates 2022-04-09 01:52:20 +12:00			`$this->assertIsArray($countries['body']['data']['localeGetCountries']);`

			`$data = $countries['body']['data']['localeGetCountries'];`
feat: added tests for scope based auth 2021-03-17 02:34:11 +13:00			`$this->assertEquals(194, count($data['countries']));`
Test updates 2022-04-09 01:52:20 +12:00			`$this->assertEquals(194, $data['total']);`
feat: added tests for scope based auth 2021-03-17 02:34:11 +13:00
feat: added tests for role based auth 2021-03-17 07:16:33 +13:00
feat: updated tests 2021-03-19 09:17:25 +13:00			`/**`
			`* Create a key withouut any scopes`
			`*/`
Test updates 2022-04-09 01:52:20 +12:00			`$key = $this->getNewKey([]);`
feat: added tests for scope based auth 2021-03-17 02:34:11 +13:00			`$countries = $this->client->call(Client::METHOD_POST, '/graphql', [`
			`'content-type' => 'application/json',`
			`'x-appwrite-project' => $projectId,`
			`'x-appwrite-key' => $key`
			`], $graphQLPayload);`

Test updates 2022-04-09 01:52:20 +12:00			`$errorMessage = 'app.${projectId}@service.localhost (role: application) missing scope (locale.read)';`
feat: added tests for scope based auth 2021-03-17 02:34:11 +13:00			`$this->assertEquals($countries['headers']['status-code'], 401);`
			`$this->assertEquals($countries['body']['errors'][0]['message'], $errorMessage);`
			`$this->assertIsArray($countries['body']['data']);`
			`$this->assertNull($countries['body']['data']['locale_getCountries']);`
feat: added more tests 2021-03-13 09:17:29 +13:00			`}`
feat: added some tests and code cleanup 2021-03-13 07:00:41 +13:00
			`}`