budibase/packages/worker/src/api/routes/tests/auth.spec.js

const setup = require("./utilities")
const { Cookies } = require("@budibase/auth").constants

jest.mock("nodemailer")
const sendMailMock = setup.emailMock()

describe("/api/admin/auth", () => {
  let request = setup.getRequest()
  let config = setup.getConfig()
  let code

  beforeAll(async () => {
    await config.init()
  })

  afterAll(setup.afterAll)

  afterEach(() => {
    jest.clearAllMocks()
  })

  it("should be able to generate password reset email", async () => {
    // initially configure settings
    await config.saveSmtpConfig()
    await config.saveSettingsConfig()
    await config.createUser("test@test.com")
    const res = await request
      .post(`/api/admin/auth/reset`)
      .send({
        email: "test@test.com",
      })
      .expect("Content-Type", /json/)
      .expect(200)
    expect(res.body).toEqual({ message: "Please check your email for a reset link." })
    expect(sendMailMock).toHaveBeenCalled()
    const emailCall = sendMailMock.mock.calls[0][0]
    // after this URL there should be a code
    const parts = emailCall.html.split("http://localhost:10000/builder/auth/reset?code=")
    code = parts[1].split("\"")[0]
    expect(code).toBeDefined()
  })

  it("should allow resetting user password with code", async () => {
    const res = await request
      .post(`/api/admin/auth/reset/update`)
      .send({
        password: "newpassword",
        resetCode: code,
      })
      .expect("Content-Type", /json/)
      .expect(200)
    expect(res.body).toEqual({ message: "password reset successfully." })
  })

  describe("oidc", () => {
    const auth = require("@budibase/auth").auth

    // mock the oidc strategy implementation and return value
    strategyFactory = jest.fn()
    mockStrategyReturn = jest.fn()
    strategyFactory.mockReturnValue(mockStrategyReturn)
    auth.oidc.strategyFactory = strategyFactory

    const passportSpy = jest.spyOn(auth.passport, "authenticate")
    let oidcConf
    let chosenConfig
    let configId

    beforeEach(async () => {
      oidcConf = await config.saveOIDCConfig()
      chosenConfig = oidcConf.config.configs[0]
      configId = chosenConfig.uuid
    })

    afterEach(() => {
      expect(strategyFactory).toBeCalledWith(
        chosenConfig, 
        `http://127.0.0.1:4003/api/admin/auth/oidc/callback` // calculated url
      )
    })

    describe("/api/admin/auth/oidc/configs", () => {
      it("should load strategy and delegate to passport", async () => {
        await request.get(`/api/admin/auth/oidc/configs/${configId}`)

        expect(passportSpy).toBeCalledWith(mockStrategyReturn, {
          scope: ["profile", "email"],
        })
        expect(passportSpy.mock.calls.length).toBe(1);
      })
    })

    describe("/api/admin/auth/oidc/callback", () => {
      it("should load strategy and delegate to passport", async () => {
        await request.get(`/api/admin/auth/oidc/callback`)
                     .set(config.getOIDConfigCookie(configId))
      
        expect(passportSpy).toBeCalledWith(mockStrategyReturn, {
          successRedirect: "/", failureRedirect: "/error" 
        }, expect.anything())
        expect(passportSpy.mock.calls.length).toBe(1);
      })
    })

  })
})
Updating testing system across the board after playing around with it, having the worker tests run when top level test is ran, fixing environment in worker when testing, removing the use of redis (replacing with ioredis-mock) when in test. 2021-05-06 04:49:34 +12:00			`const setup = require("./utilities")`
Revert "Multi-tenancy/organisations" 2021-08-04 21:02:24 +12:00			`const { Cookies } = require("@budibase/auth").constants`
Updating testing system across the board after playing around with it, having the worker tests run when top level test is ran, fixing environment in worker when testing, removing the use of redis (replacing with ioredis-mock) when in test. 2021-05-06 04:49:34 +12:00
			`jest.mock("nodemailer")`
			`const sendMailMock = setup.emailMock()`

Revert "Multi-tenancy/organisations" 2021-08-04 21:02:24 +12:00			`describe("/api/admin/auth", () => {`
Updating testing system across the board after playing around with it, having the worker tests run when top level test is ran, fixing environment in worker when testing, removing the use of redis (replacing with ioredis-mock) when in test. 2021-05-06 04:49:34 +12:00			`let request = setup.getRequest()`
			`let config = setup.getConfig()`
			`let code`

			`beforeAll(async () => {`
			`await config.init()`
			`})`

			`afterAll(setup.afterAll)`

Unit test auth controller oidc functions 2021-07-12 04:54:18 +12:00			`afterEach(() => {`
			`jest.clearAllMocks()`
			`})`

Updating testing system across the board after playing around with it, having the worker tests run when top level test is ran, fixing environment in worker when testing, removing the use of redis (replacing with ioredis-mock) when in test. 2021-05-06 04:49:34 +12:00			`it("should be able to generate password reset email", async () => {`
			`// initially configure settings`
			`await config.saveSmtpConfig()`
			`await config.saveSettingsConfig()`
			`await config.createUser("test@test.com")`
			`const res = await request`
Revert "Multi-tenancy/organisations" 2021-08-04 21:02:24 +12:00			.post(`/api/admin/auth/reset`)
Updating testing system across the board after playing around with it, having the worker tests run when top level test is ran, fixing environment in worker when testing, removing the use of redis (replacing with ioredis-mock) when in test. 2021-05-06 04:49:34 +12:00			`.send({`
			`email: "test@test.com",`
			`})`
			`.expect("Content-Type", /json/)`
			`.expect(200)`
			`expect(res.body).toEqual({ message: "Please check your email for a reset link." })`
			`expect(sendMailMock).toHaveBeenCalled()`
			`const emailCall = sendMailMock.mock.calls[0][0]`
			`// after this URL there should be a code`
Revert "Multi-tenancy/organisations" 2021-08-04 21:02:24 +12:00			`const parts = emailCall.html.split("http://localhost:10000/builder/auth/reset?code=")`
			`code = parts[1].split("\"")[0]`
Updating testing system across the board after playing around with it, having the worker tests run when top level test is ran, fixing environment in worker when testing, removing the use of redis (replacing with ioredis-mock) when in test. 2021-05-06 04:49:34 +12:00			`expect(code).toBeDefined()`
			`})`

			`it("should allow resetting user password with code", async () => {`
			`const res = await request`
Revert "Multi-tenancy/organisations" 2021-08-04 21:02:24 +12:00			.post(`/api/admin/auth/reset/update`)
Updating testing system across the board after playing around with it, having the worker tests run when top level test is ran, fixing environment in worker when testing, removing the use of redis (replacing with ioredis-mock) when in test. 2021-05-06 04:49:34 +12:00			`.send({`
			`password: "newpassword",`
			`resetCode: code,`
			`})`
			`.expect("Content-Type", /json/)`
			`.expect(200)`
			`expect(res.body).toEqual({ message: "password reset successfully." })`
			`})`
Unit test auth controller oidc functions 2021-07-12 04:54:18 +12:00
			`describe("oidc", () => {`
			`const auth = require("@budibase/auth").auth`

			`// mock the oidc strategy implementation and return value`
			`strategyFactory = jest.fn()`
			`mockStrategyReturn = jest.fn()`
			`strategyFactory.mockReturnValue(mockStrategyReturn)`
			`auth.oidc.strategyFactory = strategyFactory`

			`const passportSpy = jest.spyOn(auth.passport, "authenticate")`
Refactor auth controller tests to reuse common behaviour 2021-07-13 21:28:15 +12:00			`let oidcConf`
Load oidc config by id 2021-07-14 04:07:48 +12:00			`let chosenConfig`
			`let configId`
Refactor auth controller tests to reuse common behaviour 2021-07-13 21:28:15 +12:00
			`beforeEach(async () => {`
			`oidcConf = await config.saveOIDCConfig()`
Load oidc config by id 2021-07-14 04:07:48 +12:00			`chosenConfig = oidcConf.config.configs[0]`
			`configId = chosenConfig.uuid`
Refactor auth controller tests to reuse common behaviour 2021-07-13 21:28:15 +12:00			`})`

			`afterEach(() => {`
			`expect(strategyFactory).toBeCalledWith(`
Load oidc config by id 2021-07-14 04:07:48 +12:00			`chosenConfig,`
Revert "Multi-tenancy/organisations" 2021-08-04 21:02:24 +12:00			`http://127.0.0.1:4003/api/admin/auth/oidc/callback` // calculated url
Refactor auth controller tests to reuse common behaviour 2021-07-13 21:28:15 +12:00			`)`
			`})`
Unit test auth controller oidc functions 2021-07-12 04:54:18 +12:00
Revert "Multi-tenancy/organisations" 2021-08-04 21:02:24 +12:00			`describe("/api/admin/auth/oidc/configs", () => {`
Refactor auth controller tests to reuse common behaviour 2021-07-13 21:28:15 +12:00			`it("should load strategy and delegate to passport", async () => {`
Revert "Multi-tenancy/organisations" 2021-08-04 21:02:24 +12:00			await request.get(`/api/admin/auth/oidc/configs/${configId}`)
Unit test auth controller oidc functions 2021-07-12 04:54:18 +12:00
			`expect(passportSpy).toBeCalledWith(mockStrategyReturn, {`
			`scope: ["profile", "email"],`
			`})`
			`expect(passportSpy.mock.calls.length).toBe(1);`
			`})`
			`})`

Revert "Multi-tenancy/organisations" 2021-08-04 21:02:24 +12:00			`describe("/api/admin/auth/oidc/callback", () => {`
Refactor auth controller tests to reuse common behaviour 2021-07-13 21:28:15 +12:00			`it("should load strategy and delegate to passport", async () => {`
Revert "Multi-tenancy/organisations" 2021-08-04 21:02:24 +12:00			await request.get(`/api/admin/auth/oidc/callback`)
Store OIDC config in cookie instead of URL 2021-07-16 03:20:31 +12:00			`.set(config.getOIDConfigCookie(configId))`
Unit test auth controller oidc functions 2021-07-12 04:54:18 +12:00
			`expect(passportSpy).toBeCalledWith(mockStrategyReturn, {`
			`successRedirect: "/", failureRedirect: "/error"`
			`}, expect.anything())`
			`expect(passportSpy.mock.calls.length).toBe(1);`
			`})`
			`})`

			`})`
Updating testing system across the board after playing around with it, having the worker tests run when top level test is ran, fixing environment in worker when testing, removing the use of redis (replacing with ioredis-mock) when in test. 2021-05-06 04:49:34 +12:00			`})`