Elgato_dark/console
1
0
Fork 0
mirror of https://github.com/graphql-hive/console synced 2026-05-24 09:38:26 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
console/integration-tests/tests/api/policy/policy-access.spec.ts
Laurin Quast ff60d049d6
feat(api): new permission system (#5674)
2024-11-05 10:36:10 +01:00

135 lines
4.2 KiB
TypeScript
Raw Blame History

import { ProjectType } from 'testkit/gql/graphql';
import { graphql } from '../../../testkit/gql';
import { execute } from '../../../testkit/graphql';
import { initSeed } from '../../../testkit/seed';
describe('Policy Access', () => {
describe('Project', () => {
const query = graphql(`
query ProjectSchemaPolicyAccess($selector: ProjectSelectorInput!) {
project(selector: $selector) {
schemaPolicy {
id
}
}
}
`);
test.concurrent(
'should successfully fetch Project.schemaPolicy if the user has access to SETTINGS',
async ({ expect }) => {
const { createOrg } = await initSeed().createOwner();
const { organization, createProject, inviteAndJoinMember } = await createOrg();
const { project } = await createProject(ProjectType.Single);
const adminRole = organization.memberRoles.find(r => r.name === 'Admin');
if (!adminRole) {
throw new Error('Admin role not found');
}
const { member, memberToken, assignMemberRole } = await inviteAndJoinMember();
await assignMemberRole({
roleId: adminRole.id,
userId: member.user.id,
});
const result = await execute({
document: query,
variables: {
selector: {
organizationSlug: organization.slug,
projectSlug: project.slug,
},
},
authToken: memberToken,
}).then(r => r.expectNoGraphQLErrors());
expect(result.project?.schemaPolicy?.id).not.toBeNull();
},
);
test.concurrent(
'should fail to fetch Project.schemaPolicy if the user lacks access to SETTINGS',
async ({ expect }) => {
const { createOrg } = await initSeed().createOwner();
const { organization, createProject, inviteAndJoinMember } = await createOrg();
const { project, target } = await createProject(ProjectType.Single);
const { memberToken } = await inviteAndJoinMember();
await execute({
document: query,
variables: {
selector: {
organizationSlug: organization.slug,
projectSlug: project.slug,
},
},
authToken: memberToken,
}).then(r => r.expectGraphQLErrors());
},
);
});
describe('Organization', () => {
const query = graphql(`
query OrganizationSchemaPolicyAccess($selector: OrganizationSelectorInput!) {
organization(selector: $selector) {
organization {
schemaPolicy {
id
}
}
}
}
`);
test.concurrent(
'should successfully fetch Organization.schemaPolicy if the user has access to SETTINGS',
async ({ expect }) => {
const { createOrg } = await initSeed().createOwner();
const { organization, inviteAndJoinMember } = await createOrg();
const adminRole = organization.memberRoles.find(r => r.name === 'Admin');
if (!adminRole) {
throw new Error('Admin role not found');
}
const { member, memberToken, assignMemberRole } = await inviteAndJoinMember();
await assignMemberRole({
roleId: adminRole.id,
userId: member.user.id,
});
const result = await execute({
document: query,
variables: {
selector: {
organizationSlug: organization.slug,
},
},
authToken: memberToken,
}).then(r => r.expectNoGraphQLErrors());
expect(result.organization?.organization.schemaPolicy?.id).not.toBeNull();
},
);
test.concurrent(
'should fail to fetch Organization.schemaPolicy if the user lacks access to SETTINGS',
async ({ expect }) => {
const { createOrg } = await initSeed().createOwner();
const { organization, inviteAndJoinMember } = await createOrg();
const { memberToken } = await inviteAndJoinMember();
await execute({
document: query,
variables: {
selector: {
organizationSlug: organization.slug,
},
},
authToken: memberToken,
}).then(r => r.expectGraphQLErrors());
},
);
});
});
Reference in a new issue View git blame Copy permalink