2019-06-15 04:01:01 +12:00
|
|
|
const statusCodes = require("../utilities/statusCodes");
|
2019-06-26 09:48:22 +12:00
|
|
|
const util = require("util");
|
|
|
|
|
const fs = require("fs");
|
|
|
|
|
const readFile = util.promisify(fs.readFile);
|
2019-06-15 04:01:01 +12:00
|
|
|
|
|
|
|
|
module.exports = (app) => {
|
|
|
|
|
|
|
|
|
|
it("should return unauthorized if username is incorrect", async () => {
|
|
|
|
|
await app.post("/_master/api/authenticate", {
|
|
|
|
|
username: "unknownuser",
|
|
|
|
|
password: app.masterAuth.password
|
|
|
|
|
})
|
|
|
|
|
.expect(statusCodes.UNAUTHORIZED);
|
|
|
|
|
})
|
|
|
|
|
|
|
|
|
|
it("should return unauthorized if password is incorrect", async () => {
|
|
|
|
|
await app.post("/_master/api/authenticate", {
|
|
|
|
|
username: app.masterAuth.username,
|
|
|
|
|
password: "incorrect_password"
|
|
|
|
|
})
|
|
|
|
|
.expect(statusCodes.UNAUTHORIZED);
|
|
|
|
|
})
|
|
|
|
|
|
|
|
|
|
it("should not get cookie when unauthorized", async () => {
|
|
|
|
|
const response = await app.post("/_master/api/authenticate", {
|
|
|
|
|
username: app.masterAuth.username,
|
|
|
|
|
password: "incorrect_password"
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
expect(response.header['set-cookie']).toBeUndefined();
|
|
|
|
|
|
|
|
|
|
});
|
|
|
|
|
|
2019-06-15 10:03:01 +12:00
|
|
|
let ownerCookie;
|
|
|
|
|
it("should return ok correct username and password supplied", async () => {
|
|
|
|
|
|
2019-06-15 04:01:01 +12:00
|
|
|
const response = await app.post("/_master/api/authenticate", {
|
|
|
|
|
username: app.masterAuth.username,
|
|
|
|
|
password: app.masterAuth.password
|
2019-06-15 10:03:01 +12:00
|
|
|
})
|
|
|
|
|
.expect(statusCodes.OK);
|
|
|
|
|
|
|
|
|
|
ownerCookie = response.header['set-cookie'];
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
const testUserName = "test_user";
|
2019-06-26 09:48:22 +12:00
|
|
|
let testPassword = "test_user_password";
|
2019-06-15 10:03:01 +12:00
|
|
|
it("should be able to create new user with authenticated cookie", async () => {
|
|
|
|
|
|
2019-06-15 04:01:01 +12:00
|
|
|
await app.post("/_master/api/createUser", {
|
|
|
|
|
user: {
|
2019-06-15 10:03:01 +12:00
|
|
|
name: testUserName,
|
2019-06-15 04:01:01 +12:00
|
|
|
accessLevels:["owner"],
|
|
|
|
|
enabled:true
|
|
|
|
|
|
|
|
|
|
},
|
2019-06-15 10:03:01 +12:00
|
|
|
password: testPassword
|
2019-06-15 04:01:01 +12:00
|
|
|
})
|
2019-06-15 10:03:01 +12:00
|
|
|
.set("cookie", ownerCookie)
|
2019-06-15 04:01:01 +12:00
|
|
|
.expect(statusCodes.OK);
|
|
|
|
|
|
2019-06-15 10:03:01 +12:00
|
|
|
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
let newUserCookie;
|
|
|
|
|
it("should be able to authenticate with new user", async () => {
|
|
|
|
|
|
2019-06-15 04:01:01 +12:00
|
|
|
const responseNewUser = await app.post("/_master/api/authenticate", {
|
2019-06-15 10:03:01 +12:00
|
|
|
username: testUserName,
|
|
|
|
|
password: testPassword
|
|
|
|
|
})
|
|
|
|
|
.expect(statusCodes.OK);
|
2019-06-15 04:01:01 +12:00
|
|
|
|
2019-06-15 10:03:01 +12:00
|
|
|
newUserCookie = responseNewUser.header['set-cookie'];
|
2019-06-15 04:01:01 +12:00
|
|
|
|
|
|
|
|
expect(newUserCookie).toBeDefined();
|
2019-06-15 10:03:01 +12:00
|
|
|
expect(newUserCookie).not.toEqual(ownerCookie);
|
|
|
|
|
|
|
|
|
|
app.get("/_master/api/users/")
|
|
|
|
|
.set("cookie", newUserCookie)
|
|
|
|
|
.expect(statusCodes.OK);
|
2019-06-15 04:01:01 +12:00
|
|
|
});
|
2019-06-15 10:03:01 +12:00
|
|
|
|
2019-06-20 09:05:53 +12:00
|
|
|
it("should not be able to perform requests when user is disabled", async () => {
|
|
|
|
|
|
|
|
|
|
await app.post("/_master/api/disableUser", {
|
|
|
|
|
username: testUserName
|
|
|
|
|
})
|
|
|
|
|
.set("cookie", ownerCookie)
|
|
|
|
|
.expect(statusCodes.OK);
|
|
|
|
|
|
|
|
|
|
await app.get("/_master/api/users/")
|
|
|
|
|
.set("cookie", newUserCookie)
|
2019-06-22 01:00:24 +12:00
|
|
|
.expect(statusCodes.UNAUTHORIZED);
|
2019-06-20 09:05:53 +12:00
|
|
|
|
|
|
|
|
await app.post("/_master/api/authenticate", {
|
|
|
|
|
username: testUserName,
|
|
|
|
|
password: testPassword
|
|
|
|
|
})
|
|
|
|
|
.expect(statusCodes.UNAUTHORIZED);
|
|
|
|
|
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it("should not be able to re-authenticate when user is disabled", async () => {
|
|
|
|
|
await app.post("/_master/api/authenticate", {
|
|
|
|
|
username: testUserName,
|
|
|
|
|
password: testPassword
|
|
|
|
|
})
|
|
|
|
|
.expect(statusCodes.UNAUTHORIZED);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it("should be able with re-authenticate when user is enabled again", async () => {
|
2019-06-21 19:42:37 +12:00
|
|
|
|
|
|
|
|
await app.post("/_master/api/enableUser", {
|
|
|
|
|
username: testUserName
|
|
|
|
|
})
|
|
|
|
|
.set("cookie", ownerCookie)
|
|
|
|
|
.expect(statusCodes.OK);
|
|
|
|
|
|
2019-06-20 09:05:53 +12:00
|
|
|
await app.post("/_master/api/authenticate", {
|
|
|
|
|
username: testUserName,
|
|
|
|
|
password: testPassword
|
|
|
|
|
})
|
|
|
|
|
.expect(statusCodes.OK);
|
|
|
|
|
});
|
2019-06-26 09:48:22 +12:00
|
|
|
|
|
|
|
|
it("should be able to reset password with temporary access", async () => {
|
|
|
|
|
// need to sort out behaviour sources for this...
|
|
|
|
|
await app.post("/_master/api/createTemporaryAccess", {
|
|
|
|
|
username: testUserName
|
|
|
|
|
})
|
|
|
|
|
.expect(statusCodes.OK);
|
|
|
|
|
|
|
|
|
|
testPassword = "test_user_new_password";
|
|
|
|
|
|
|
|
|
|
const tempCode = await readFile(`tempaccess${testUserName}`, "utf8");
|
|
|
|
|
|
|
|
|
|
await app.post("/_master/api/setPasswordFromTemporaryCode", {
|
|
|
|
|
username: testUserName,
|
|
|
|
|
tempCode,
|
|
|
|
|
newPassword:testPassword
|
|
|
|
|
})
|
|
|
|
|
.expect(statusCodes.OK);
|
|
|
|
|
|
|
|
|
|
await app.post("/_master/api/authenticate", {
|
|
|
|
|
username: testUserName,
|
|
|
|
|
password: testPassword
|
|
|
|
|
})
|
|
|
|
|
.expect(statusCodes.OK);
|
|
|
|
|
|
|
|
|
|
});
|
2019-06-15 04:01:01 +12:00
|
|
|
};
|
