mirror of
https://github.com/standardnotes/server
synced 2026-07-14 09:01:33 -04:00
252 lines
7.1 KiB
TypeScript
252 lines
7.1 KiB
TypeScript
import 'reflect-metadata'
|
|
|
|
import { TokenEncoderInterface, CrossServiceTokenData } from '@standardnotes/security'
|
|
import { ProjectorInterface } from '../../../Projection/ProjectorInterface'
|
|
import { Session } from '../../Session/Session'
|
|
import { User } from '../../User/User'
|
|
import { Role } from '../../Role/Role'
|
|
import { UserRepositoryInterface } from '../../User/UserRepositoryInterface'
|
|
|
|
import { CreateCrossServiceToken } from './CreateCrossServiceToken'
|
|
import { GetSetting } from '../GetSetting/GetSetting'
|
|
import { Result } from '@standardnotes/domain-core'
|
|
import { TransitionStatusRepositoryInterface } from '../../Transition/TransitionStatusRepositoryInterface'
|
|
|
|
describe('CreateCrossServiceToken', () => {
|
|
let userProjector: ProjectorInterface<User>
|
|
let sessionProjector: ProjectorInterface<Session>
|
|
let roleProjector: ProjectorInterface<Role>
|
|
let tokenEncoder: TokenEncoderInterface<CrossServiceTokenData>
|
|
let userRepository: UserRepositoryInterface
|
|
let getSettingUseCase: GetSetting
|
|
let transitionStatusRepository: TransitionStatusRepositoryInterface
|
|
const jwtTTL = 60
|
|
|
|
let session: Session
|
|
let user: User
|
|
let role: Role
|
|
|
|
const createUseCase = () =>
|
|
new CreateCrossServiceToken(
|
|
userProjector,
|
|
sessionProjector,
|
|
roleProjector,
|
|
tokenEncoder,
|
|
userRepository,
|
|
jwtTTL,
|
|
getSettingUseCase,
|
|
transitionStatusRepository,
|
|
)
|
|
|
|
beforeEach(() => {
|
|
session = {} as jest.Mocked<Session>
|
|
|
|
user = {
|
|
uuid: '00000000-0000-0000-0000-000000000000',
|
|
email: '[email protected]',
|
|
} as jest.Mocked<User>
|
|
user.roles = Promise.resolve([role])
|
|
|
|
userProjector = {} as jest.Mocked<ProjectorInterface<User>>
|
|
userProjector.projectSimple = jest
|
|
.fn()
|
|
.mockReturnValue({ uuid: '00000000-0000-0000-0000-000000000000', email: '[email protected]' })
|
|
|
|
roleProjector = {} as jest.Mocked<ProjectorInterface<Role>>
|
|
roleProjector.projectSimple = jest.fn().mockReturnValue({ name: 'role1', uuid: '1-3-4' })
|
|
|
|
sessionProjector = {} as jest.Mocked<ProjectorInterface<Session>>
|
|
sessionProjector.projectCustom = jest.fn().mockReturnValue({ foo: 'bar' })
|
|
sessionProjector.projectSimple = jest.fn().mockReturnValue({ test: 'test' })
|
|
|
|
tokenEncoder = {} as jest.Mocked<TokenEncoderInterface<CrossServiceTokenData>>
|
|
tokenEncoder.encodeExpirableToken = jest.fn().mockReturnValue('foobar')
|
|
|
|
userRepository = {} as jest.Mocked<UserRepositoryInterface>
|
|
userRepository.findOneByUuid = jest.fn().mockReturnValue(user)
|
|
|
|
getSettingUseCase = {} as jest.Mocked<GetSetting>
|
|
getSettingUseCase.execute = jest.fn().mockReturnValue(Result.ok({ setting: { value: '100' } }))
|
|
|
|
transitionStatusRepository = {} as jest.Mocked<TransitionStatusRepositoryInterface>
|
|
transitionStatusRepository.getStatus = jest.fn().mockReturnValue('TO-DO')
|
|
})
|
|
|
|
it('should create a cross service token for user', async () => {
|
|
await createUseCase().execute({
|
|
user,
|
|
session,
|
|
})
|
|
|
|
expect(tokenEncoder.encodeExpirableToken).toHaveBeenCalledWith(
|
|
{
|
|
roles: [
|
|
{
|
|
name: 'role1',
|
|
uuid: '1-3-4',
|
|
},
|
|
],
|
|
session: {
|
|
test: 'test',
|
|
},
|
|
user: {
|
|
email: '[email protected]',
|
|
uuid: '00000000-0000-0000-0000-000000000000',
|
|
},
|
|
ongoing_transition: false,
|
|
},
|
|
60,
|
|
)
|
|
})
|
|
|
|
it('should create a cross service token for user that has an ongoing transaction', async () => {
|
|
transitionStatusRepository.getStatus = jest.fn().mockReturnValue('STARTED')
|
|
|
|
await createUseCase().execute({
|
|
user,
|
|
session,
|
|
})
|
|
|
|
expect(tokenEncoder.encodeExpirableToken).toHaveBeenCalledWith(
|
|
{
|
|
roles: [
|
|
{
|
|
name: 'role1',
|
|
uuid: '1-3-4',
|
|
},
|
|
],
|
|
session: {
|
|
test: 'test',
|
|
},
|
|
user: {
|
|
email: '[email protected]',
|
|
uuid: '00000000-0000-0000-0000-000000000000',
|
|
},
|
|
ongoing_transition: true,
|
|
},
|
|
60,
|
|
)
|
|
})
|
|
|
|
it('should create a cross service token for user without a session', async () => {
|
|
await createUseCase().execute({
|
|
user,
|
|
})
|
|
|
|
expect(tokenEncoder.encodeExpirableToken).toHaveBeenCalledWith(
|
|
{
|
|
roles: [
|
|
{
|
|
name: 'role1',
|
|
uuid: '1-3-4',
|
|
},
|
|
],
|
|
user: {
|
|
email: '[email protected]',
|
|
uuid: '00000000-0000-0000-0000-000000000000',
|
|
},
|
|
ongoing_transition: false,
|
|
},
|
|
60,
|
|
)
|
|
})
|
|
|
|
it('should create a cross service token for user by user uuid', async () => {
|
|
await createUseCase().execute({
|
|
userUuid: '00000000-0000-0000-0000-000000000000',
|
|
})
|
|
|
|
expect(tokenEncoder.encodeExpirableToken).toHaveBeenCalledWith(
|
|
{
|
|
roles: [
|
|
{
|
|
name: 'role1',
|
|
uuid: '1-3-4',
|
|
},
|
|
],
|
|
user: {
|
|
email: '[email protected]',
|
|
uuid: '00000000-0000-0000-0000-000000000000',
|
|
},
|
|
ongoing_transition: false,
|
|
},
|
|
60,
|
|
)
|
|
})
|
|
|
|
it('should throw an error if user does not exist', async () => {
|
|
userRepository.findOneByUuid = jest.fn().mockReturnValue(null)
|
|
|
|
const result = await createUseCase().execute({
|
|
userUuid: '00000000-0000-0000-0000-000000000000',
|
|
})
|
|
|
|
expect(result.isFailed()).toBeTruthy()
|
|
})
|
|
|
|
it('should throw an error if user uuid is invalid', async () => {
|
|
const result = await createUseCase().execute({
|
|
userUuid: 'invalid',
|
|
})
|
|
|
|
expect(result.isFailed()).toBeTruthy()
|
|
})
|
|
|
|
describe('shared vault context', () => {
|
|
it('should add shared vault context if shared vault owner uuid is provided', async () => {
|
|
await createUseCase().execute({
|
|
user,
|
|
session,
|
|
sharedVaultOwnerContext: '00000000-0000-0000-0000-000000000000',
|
|
})
|
|
|
|
expect(tokenEncoder.encodeExpirableToken).toHaveBeenCalledWith(
|
|
{
|
|
roles: [
|
|
{
|
|
name: 'role1',
|
|
uuid: '1-3-4',
|
|
},
|
|
],
|
|
session: {
|
|
test: 'test',
|
|
},
|
|
shared_vault_owner_context: {
|
|
upload_bytes_limit: 100,
|
|
},
|
|
user: {
|
|
email: '[email protected]',
|
|
uuid: '00000000-0000-0000-0000-000000000000',
|
|
},
|
|
ongoing_transition: false,
|
|
},
|
|
60,
|
|
)
|
|
})
|
|
|
|
it('should throw an error if shared vault owner context is sensitive', async () => {
|
|
getSettingUseCase.execute = jest.fn().mockReturnValue(Result.ok({ sensitive: true }))
|
|
|
|
const result = await createUseCase().execute({
|
|
user,
|
|
session,
|
|
sharedVaultOwnerContext: '00000000-0000-0000-0000-000000000000',
|
|
})
|
|
|
|
expect(result.isFailed()).toBeTruthy()
|
|
})
|
|
|
|
it('should throw an error if it fails to retrieve shared vault owner setting', async () => {
|
|
getSettingUseCase.execute = jest.fn().mockReturnValue(Result.fail('Oops'))
|
|
|
|
const result = await createUseCase().execute({
|
|
user,
|
|
session,
|
|
sharedVaultOwnerContext: '00000000-0000-0000-0000-000000000000',
|
|
})
|
|
|
|
expect(result.isFailed()).toBeTruthy()
|
|
})
|
|
})
|
|
})
|