Elgato_dark/ToolJet
1
0
Fork 0
mirror of https://github.com/ToolJet/ToolJet synced 2026-04-25 15:37:37 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 6
ToolJet/server/test/controllers/oauth/oauth-git.e2e-spec.ts
Muhsin Shah C P 53d119680f
[chore] Node-module vulnerabilities (#8226) 
* started working on node upgrade to 18.18.2

* testing ci

* updated ci node version

* updated action code

* deleted all package-lock.json files

* deleted and ovverrided some packages

* deleted and fixed server & frontend vulnerabilities

* updated firestore version

* fix: ws type issue

* fix: upgraded lerna version

* regenerated package-lock.json files again

* regenerated marketplace lock file

* updated node version in other ci and docker files

* update: lock file plugin side

* updated the npm version in docker & ci files

* removed unused imports from events file

* removed dependency-review action

* updated some packages

* tried to go with current node-module of jest. had to upgrade

* fix: deprecated function usage - ts-jest

* fix: server directory lint issues

* fixed login page issue after router-dom upgrade

* updated import/no-unresolved rule to ignore import errors of  react-loading-skeleton, react-spring packages

* fix: cypress node version & package-lock issue

* regenerated cli package-lock.json

* fix: new webpack version might cause runtime issues (had issues with enterprise). lets use old version only

* fix: form-data docker issue

* removed comment
2023-12-21 11:55:35 +05:30

604 lines
21 KiB
TypeScript
Raw Blame History

import * as request from 'supertest';
import { INestApplication } from '@nestjs/common';
import { clearDB, createUser, createNestAppInstanceWithEnvMock, generateRedirectUrl } from '../../test.helper';
import got from 'got';
import { Organization } from 'src/entities/organization.entity';
import { Repository } from 'typeorm';
import { SSOConfigs } from 'src/entities/sso_config.entity';
jest.mock('got');
const mockedGot = jest.mocked(got);
describe('oauth controller', () => {
let app: INestApplication;
let ssoConfigsRepository: Repository<SSOConfigs>;
let orgRepository: Repository<Organization>;
const authResponseKeys = [
'id',
'email',
'first_name',
'last_name',
'current_organization_id',
'current_organization_slug',
].sort();
beforeEach(async () => {
await clearDB();
});
beforeAll(async () => {
({ app } = await createNestAppInstanceWithEnvMock());
ssoConfigsRepository = app.get('SSOConfigsRepository');
orgRepository = app.get('OrganizationRepository');
});
afterEach(() => {
jest.resetAllMocks();
jest.clearAllMocks();
});
describe('SSO Login', () => {
let current_organization: Organization;
beforeEach(async () => {
const { organization } = await createUser(app, {
email: 'anotherUser@tooljet.io',
ssoConfigs: [
{
sso: 'git',
enabled: true,
configs: { clientId: 'client-id' },
},
],
enableSignUp: true,
});
current_organization = organization;
});
describe('Multi-Workspace', () => {
describe('sign in via Git OAuth', () => {
let sso_configs;
const token = 'some-Token';
beforeEach(() => {
sso_configs = current_organization.ssoConfigs.find((conf) => conf.sso === 'git');
});
it('should return 401 if git sign in is disabled', async () => {
await ssoConfigsRepository.update(sso_configs.id, { enabled: false });
await request(app.getHttpServer())
.post('/api/oauth/sign-in/' + sso_configs.id)
.send({ token })
.expect(401);
});
it('should return 401 when the user does not exist and sign up is disabled', async () => {
await orgRepository.update(current_organization.id, { enableSignUp: false });
const gitAuthResponse = jest.fn();
gitAuthResponse.mockImplementation(() => {
return {
json: () => {
return {
access_token: 'some-access-token',
scope: 'scope',
token_type: 'bearer',
};
},
};
});
const gitGetUserResponse = jest.fn();
gitGetUserResponse.mockImplementation(() => {
return {
json: () => {
return {
name: 'SSO UserGit',
email: 'ssousergit@tooljet.io',
};
},
};
});
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitAuthResponse);
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitGetUserResponse);
await request(app.getHttpServer())
.post('/api/oauth/sign-in/' + sso_configs.id)
.send({ token })
.expect(401);
});
it('should return 401 when the user does not exist domain mismatch', async () => {
await orgRepository.update(current_organization.id, { domain: 'tooljet.io,tooljet.com' });
const gitAuthResponse = jest.fn();
gitAuthResponse.mockImplementation(() => {
return {
json: () => {
return {
access_token: 'some-access-token',
scope: 'scope',
token_type: 'bearer',
};
},
};
});
const gitGetUserResponse = jest.fn();
gitGetUserResponse.mockImplementation(() => {
return {
json: () => {
return {
name: 'SSO UserGit',
email: 'ssoUserGit@tooljett.io',
};
},
};
});
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitAuthResponse);
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitGetUserResponse);
await request(app.getHttpServer())
.post('/api/oauth/sign-in/' + sso_configs.id)
.send({ token })
.expect(401);
});
it('should return redirect url when the user does not exist and domain matches and sign up is enabled', async () => {
await orgRepository.update(current_organization.id, { domain: 'tooljet.io,tooljet.com' });
const gitAuthResponse = jest.fn();
gitAuthResponse.mockImplementation(() => {
return {
json: () => {
return {
access_token: 'some-access-token',
scope: 'scope',
token_type: 'bearer',
};
},
};
});
const gitGetUserResponse = jest.fn();
gitGetUserResponse.mockImplementation(() => {
return {
json: () => {
return {
name: 'SSO UserGit',
email: 'ssousergit@tooljet.io',
};
},
};
});
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitAuthResponse);
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitGetUserResponse);
const response = await request(app.getHttpServer())
.post('/api/oauth/sign-in/' + sso_configs.id)
.send({ token });
expect(response.statusCode).toBe(201);
const url = await generateRedirectUrl('ssousergit@tooljet.io', current_organization);
const { redirect_url } = response.body;
expect(redirect_url).toEqual(url);
});
it('should return redirect url when the user does not exist and domain includes spance matches and sign up is enabled', async () => {
await orgRepository.update(current_organization.id, {
domain: ' tooljet.io , tooljet.com, , , gmail.com',
});
const gitAuthResponse = jest.fn();
gitAuthResponse.mockImplementation(() => {
return {
json: () => {
return {
access_token: 'some-access-token',
scope: 'scope',
token_type: 'bearer',
};
},
};
});
const gitGetUserResponse = jest.fn();
gitGetUserResponse.mockImplementation(() => {
return {
json: () => {
return {
name: 'SSO UserGit',
email: 'ssousergit@tooljet.io',
};
},
};
});
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitAuthResponse);
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitGetUserResponse);
const response = await request(app.getHttpServer())
.post('/api/oauth/sign-in/' + sso_configs.id)
.send({ token });
expect(response.statusCode).toBe(201);
const url = await generateRedirectUrl('ssousergit@tooljet.io', current_organization);
const { redirect_url } = response.body;
expect(redirect_url).toEqual(url);
});
it('should return redirect url when the user does not exist and sign up is enabled', async () => {
const gitAuthResponse = jest.fn();
gitAuthResponse.mockImplementation(() => {
return {
json: () => {
return {
access_token: 'some-access-token',
scope: 'scope',
token_type: 'bearer',
};
},
};
});
const gitGetUserResponse = jest.fn();
gitGetUserResponse.mockImplementation(() => {
return {
json: () => {
return {
name: 'SSO UserGit',
email: 'ssousergit@tooljet.io',
};
},
};
});
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitAuthResponse);
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitGetUserResponse);
const response = await request(app.getHttpServer())
.post('/api/oauth/sign-in/' + sso_configs.id)
.send({ token });
expect(response.statusCode).toBe(201);
const url = await generateRedirectUrl('ssousergit@tooljet.io', current_organization);
const { redirect_url } = response.body;
expect(redirect_url).toEqual(url);
});
it('should return redirect url when the user does not exist and name not available and sign up is enabled', async () => {
const gitAuthResponse = jest.fn();
gitAuthResponse.mockImplementation(() => {
return {
json: () => {
return {
access_token: 'some-access-token',
scope: 'scope',
token_type: 'bearer',
};
},
};
});
const gitGetUserResponse = jest.fn();
gitGetUserResponse.mockImplementation(() => {
return {
json: () => {
return {
name: '',
email: 'ssousergit@tooljet.io',
};
},
};
});
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitAuthResponse);
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitGetUserResponse);
const response = await request(app.getHttpServer())
.post('/api/oauth/sign-in/' + sso_configs.id)
.send({ token });
expect(response.statusCode).toBe(201);
const url = await generateRedirectUrl('ssousergit@tooljet.io', current_organization);
const { redirect_url } = response.body;
expect(redirect_url).toEqual(url);
});
it('should return redirect url when the user does not exist and email id not available and sign up is enabled', async () => {
const gitAuthResponse = jest.fn();
gitAuthResponse.mockImplementation(() => {
return {
json: () => {
return {
access_token: 'some-access-token',
scope: 'scope',
token_type: 'bearer',
};
},
};
});
const gitGetUserResponse = jest.fn();
gitGetUserResponse.mockImplementation(() => {
return {
json: () => {
return {
name: '',
email: '',
};
},
};
});
const gitGetUserEmailResponse = jest.fn();
gitGetUserEmailResponse.mockImplementation(() => {
return {
json: () => {
return [
{
email: 'ssousergit@tooljet.io',
primary: true,
verified: true,
},
{
email: 'ssoUserGit2@tooljet.io',
primary: false,
verified: true,
},
];
},
};
});
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitAuthResponse);
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitGetUserResponse);
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitGetUserEmailResponse);
const response = await request(app.getHttpServer())
.post('/api/oauth/sign-in/' + sso_configs.id)
.send({ token });
expect(response.statusCode).toBe(201);
const url = await generateRedirectUrl('ssousergit@tooljet.io', current_organization);
const { redirect_url } = response.body;
expect(redirect_url).toEqual(url);
});
it('should return login info when the user exist', async () => {
await createUser(app, {
firstName: 'SSO',
lastName: 'userExist',
email: 'anotheruser1@tooljet.io',
groups: ['all_users'],
organization: current_organization,
status: 'active',
});
const gitAuthResponse = jest.fn();
gitAuthResponse.mockImplementation(() => {
return {
json: () => {
return {
access_token: 'some-access-token',
scope: 'scope',
token_type: 'bearer',
};
},
};
});
const gitGetUserResponse = jest.fn();
gitGetUserResponse.mockImplementation(() => {
return {
json: () => {
return {
name: 'SSO userExist',
email: 'anotheruser1@tooljet.io',
};
},
};
});
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitAuthResponse);
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitGetUserResponse);
const response = await request(app.getHttpServer())
.post('/api/oauth/sign-in/' + sso_configs.id)
.send({ token });
expect(response.statusCode).toBe(201);
expect(Object.keys(response.body).sort()).toEqual(authResponseKeys);
const { email, first_name, last_name, current_organization_id } = response.body;
expect(email).toEqual('anotheruser1@tooljet.io');
expect(first_name).toEqual('SSO');
expect(last_name).toEqual('userExist');
expect(current_organization_id).toBe(current_organization.id);
});
it('should return login info when the user exist with invited status', async () => {
const { orgUser } = await createUser(app, {
firstName: 'SSO',
lastName: 'userExist',
email: 'anotheruser1@tooljet.io',
groups: ['all_users'],
organization: current_organization,
status: 'invited',
});
const gitAuthResponse = jest.fn();
gitAuthResponse.mockImplementation(() => {
return {
json: () => {
return {
access_token: 'some-access-token',
scope: 'scope',
token_type: 'bearer',
};
},
};
});
const gitGetUserResponse = jest.fn();
gitGetUserResponse.mockImplementation(() => {
return {
json: () => {
return {
name: 'SSO userExist',
email: 'anotheruser1@tooljet.io',
};
},
};
});
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitAuthResponse);
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitGetUserResponse);
const response = await request(app.getHttpServer())
.post('/api/oauth/sign-in/' + sso_configs.id)
.send({ token });
expect(response.statusCode).toBe(201);
expect(Object.keys(response.body).sort()).toEqual(authResponseKeys);
const { email, first_name, last_name, current_organization_id } = response.body;
expect(email).toEqual('anotheruser1@tooljet.io');
expect(first_name).toEqual('SSO');
expect(last_name).toEqual('userExist');
expect(current_organization_id).toBe(current_organization.id);
await orgUser.reload();
expect(orgUser.status).toEqual('active');
});
it('should return login info when the user exist and hostname exist in configs', async () => {
await ssoConfigsRepository.update(sso_configs.id, {
configs: { clientId: 'some-client-id', hostName: 'https://github.host.com' },
});
const { orgUser } = await createUser(app, {
firstName: 'SSO',
lastName: 'userExist',
email: 'anotheruser1@tooljet.io',
groups: ['all_users'],
organization: current_organization,
});
const gitAuthResponse = jest.fn();
gitAuthResponse.mockImplementation(() => {
return {
json: () => {
return {
access_token: 'some-access-token',
scope: 'scope',
token_type: 'bearer',
};
},
};
});
const gitGetUserResponse = jest.fn();
gitGetUserResponse.mockImplementation(() => {
return {
json: () => {
return {
name: 'SSO userExist',
email: 'anotheruser1@tooljet.io',
};
},
};
});
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitAuthResponse);
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitGetUserResponse);
const response = await request(app.getHttpServer())
.post('/api/oauth/sign-in/' + sso_configs.id)
.send({ token });
expect(response.statusCode).toBe(201);
expect(gitAuthResponse).toBeCalledWith('https://github.host.com/login/oauth/access_token', expect.anything());
expect(gitGetUserResponse).toBeCalledWith('https://github.host.com/api/v3/user', expect.anything());
expect(Object.keys(response.body).sort()).toEqual(authResponseKeys);
const { email, first_name, last_name, current_organization_id } = response.body;
expect(email).toEqual('anotheruser1@tooljet.io');
expect(first_name).toEqual('SSO');
expect(last_name).toEqual('userExist');
expect(current_organization_id).toBe(current_organization.id);
await orgUser.reload();
expect(orgUser.status).toEqual('active');
});
it('should return redirect url when the user does not exist and email id not available and sign up is enabled, host name configured', async () => {
await ssoConfigsRepository.update(sso_configs.id, {
configs: { clientId: 'some-client-id', hostName: 'https://github.host.com' },
});
const gitAuthResponse = jest.fn();
gitAuthResponse.mockImplementation(() => {
return {
json: () => {
return {
access_token: 'some-access-token',
scope: 'scope',
token_type: 'bearer',
};
},
};
});
const gitGetUserResponse = jest.fn();
gitGetUserResponse.mockImplementation(() => {
return {
json: () => {
return {
name: '',
email: '',
};
},
};
});
const gitGetUserEmailResponse = jest.fn();
gitGetUserEmailResponse.mockImplementation(() => {
return {
json: () => {
return [
{
email: 'ssousergit@tooljet.io',
primary: true,
verified: true,
},
{
email: 'ssousergit2@tooljet.io',
primary: false,
verified: true,
},
];
},
};
});
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitAuthResponse);
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitGetUserResponse);
(mockedGot as unknown as jest.Mock).mockImplementationOnce(gitGetUserEmailResponse);
const response = await request(app.getHttpServer())
.post('/api/oauth/sign-in/' + sso_configs.id)
.send({ token });
expect(response.statusCode).toBe(201);
expect(gitAuthResponse).toBeCalledWith('https://github.host.com/login/oauth/access_token', expect.anything());
expect(gitGetUserResponse).toBeCalledWith('https://github.host.com/api/v3/user', expect.anything());
expect(gitGetUserEmailResponse).toBeCalledWith(
'https://github.host.com/api/v3/user/emails',
expect.anything()
);
expect(response.statusCode).toBe(201);
const url = await generateRedirectUrl('ssousergit@tooljet.io', current_organization);
const { redirect_url } = response.body;
expect(redirect_url).toEqual(url);
});
});
});
});
afterAll(async () => {
await app.close();
});
});
Reference in a new issue View git blame Copy permalink