mirror of
https://github.com/ToolJet/ToolJet
synced 2026-04-21 21:47:17 +00:00
145 lines
5.2 KiB
TypeScript
145 lines
5.2 KiB
TypeScript
import * as request from 'supertest';
|
|
import { INestApplication } from '@nestjs/common';
|
|
import { clearDB, createUser, createNestAppInstance, authenticateUser } from '../test.helper';
|
|
import { getManager } from 'typeorm';
|
|
import { User } from 'src/entities/user.entity';
|
|
const path = require('path');
|
|
|
|
describe('users controller', () => {
|
|
let app: INestApplication;
|
|
|
|
beforeEach(async () => {
|
|
await clearDB();
|
|
});
|
|
|
|
beforeAll(async () => {
|
|
app = await createNestAppInstance();
|
|
});
|
|
|
|
afterEach(() => {
|
|
jest.resetAllMocks();
|
|
jest.clearAllMocks();
|
|
});
|
|
|
|
describe('GET /api/users/all', () => {
|
|
it('only superadmins can able to access all users', async () => {
|
|
const adminUserData = await createUser(app, { email: 'admin@tooljet.io', userType: 'instance' });
|
|
const developerUserData = await createUser(app, { email: 'developer@tooljet.io', userType: 'workspace' });
|
|
|
|
let loggedUser = await authenticateUser(app, adminUserData.user.email);
|
|
adminUserData['tokenCookie'] = loggedUser.tokenCookie;
|
|
|
|
const adminRequestResponse = await request(app.getHttpServer())
|
|
.get('/api/users/all')
|
|
.set('tj-workspace-id', adminUserData.user.defaultOrganizationId)
|
|
.set('Cookie', adminUserData['tokenCookie'])
|
|
.send();
|
|
|
|
expect(adminRequestResponse.statusCode).toBe(200);
|
|
|
|
loggedUser = await authenticateUser(app, developerUserData.user.email);
|
|
developerUserData['tokenCookie'] = loggedUser.tokenCookie;
|
|
const developerRequestResponse = await request(app.getHttpServer())
|
|
.get('/api/users/all')
|
|
.set('tj-workspace-id', developerUserData.user.defaultOrganizationId)
|
|
.set('Cookie', developerUserData['tokenCookie'])
|
|
.send();
|
|
|
|
expect(developerRequestResponse.statusCode).toBe(403);
|
|
});
|
|
});
|
|
|
|
describe('PATCH /api/users/change_password', () => {
|
|
it('should allow users to update their password', async () => {
|
|
const userData = await createUser(app, { email: 'admin@tooljet.io' });
|
|
const { user } = userData;
|
|
|
|
const oldPassword = user.password;
|
|
|
|
const loggedUser = await authenticateUser(app);
|
|
userData['tokenCookie'] = loggedUser.tokenCookie;
|
|
|
|
const response = await request(app.getHttpServer())
|
|
.patch('/api/users/change_password')
|
|
.set('tj-workspace-id', user.defaultOrganizationId)
|
|
.set('Cookie', userData['tokenCookie'])
|
|
.send({ currentPassword: 'password', newPassword: 'new password' });
|
|
|
|
expect(response.statusCode).toBe(200);
|
|
const updatedUser = await getManager().findOneOrFail(User, { where: { email: user.email } });
|
|
expect(updatedUser.password).not.toEqual(oldPassword);
|
|
});
|
|
|
|
it('should not allow users to update their password if entered current password is wrong', async () => {
|
|
const userData = await createUser(app, { email: 'admin@tooljet.io' });
|
|
const { user } = userData;
|
|
|
|
const oldPassword = user.password;
|
|
|
|
const loggedUser = await authenticateUser(app);
|
|
userData['tokenCookie'] = loggedUser.tokenCookie;
|
|
|
|
const response = await request(app.getHttpServer())
|
|
.patch('/api/users/change_password')
|
|
.set('tj-workspace-id', user.defaultOrganizationId)
|
|
.set('Cookie', userData['tokenCookie'])
|
|
.send({
|
|
currentPassword: 'wrong password',
|
|
newPassword: 'new password',
|
|
});
|
|
|
|
expect(response.statusCode).toBe(403);
|
|
|
|
const updatedUser = await getManager().findOneOrFail(User, { where: { email: user.email } });
|
|
expect(updatedUser.password).toEqual(oldPassword);
|
|
});
|
|
});
|
|
|
|
describe('PATCH /api/users/update', () => {
|
|
it('should allow users to update their firstName, lastName and password', async () => {
|
|
const userData = await createUser(app, { email: 'admin@tooljet.io' });
|
|
const { user } = userData;
|
|
|
|
const [firstName, lastName] = ['Daenerys', 'Targaryen'];
|
|
|
|
const loggedUser = await authenticateUser(app);
|
|
userData['tokenCookie'] = loggedUser.tokenCookie;
|
|
|
|
const response = await request(app.getHttpServer())
|
|
.patch('/api/users/update')
|
|
.set('tj-workspace-id', user.defaultOrganizationId)
|
|
.set('Cookie', userData['tokenCookie'])
|
|
.send({ first_name: firstName, last_name: lastName });
|
|
|
|
expect(response.statusCode).toBe(200);
|
|
|
|
const updatedUser = await getManager().findOneOrFail(User, { where: { email: user.email } });
|
|
expect(updatedUser.firstName).toEqual(firstName);
|
|
expect(updatedUser.lastName).toEqual(lastName);
|
|
});
|
|
});
|
|
|
|
describe('POST /api/users/avatar', () => {
|
|
it('should allow users to add a avatar', async () => {
|
|
const userData = await createUser(app, { email: 'admin@tooljet.io' });
|
|
|
|
const { user } = userData;
|
|
const filePath = path.join(__dirname, '../__mocks__/avatar.png');
|
|
|
|
const loggedUser = await authenticateUser(app);
|
|
userData['tokenCookie'] = loggedUser.tokenCookie;
|
|
|
|
const response = await request(app.getHttpServer())
|
|
.post('/api/users/avatar')
|
|
.set('tj-workspace-id', user.defaultOrganizationId)
|
|
.set('Cookie', userData['tokenCookie'])
|
|
.attach('file', filePath);
|
|
|
|
expect(response.statusCode).toBe(201);
|
|
});
|
|
});
|
|
|
|
afterAll(async () => {
|
|
await app.close();
|
|
});
|
|
});
|