mirror of
https://github.com/outline/outline.git
synced 2026-06-13 03:14:59 +03:00
Tom Moor
091346dfe8
* wip * Remove obsolete snapshots * simplify * chore(test): Convert mocks to TypeScript and tighten fetch mock types Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com> * Remove unneccessary patches * Migrate to msw instead of custom fetch mock * Address PR review comments - Split chained vi.useFakeTimers().setSystemTime() into separate calls. - Switch test setup to dynamic imports so EventEmitter.defaultMaxListeners assignment runs before module init (static imports were hoisted above it). - Drop redundant NODE_ENV guard in monkeyPatchSequelizeErrorsForJest; its sole caller already gates on env.isTest. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com> --------- Co-authored-by: Claude Opus 4.7 <noreply@anthropic.com>
291 lines
8.4 KiB
TypeScript
291 lines
8.4 KiB
TypeScript
import { faker } from "@faker-js/faker";
|
|
import { randomUUID } from "node:crypto";
|
|
import { buildUser, buildTeam, buildUserPasskey } from "@server/test/factories";
|
|
import { getTestServer, setSelfHosted } from "@server/test/support";
|
|
|
|
const mockTeamInSessionId = randomUUID();
|
|
|
|
vi.mock("@server/utils/authentication", () => ({
|
|
getSessionsInCookie() {
|
|
return { [mockTeamInSessionId]: {} };
|
|
},
|
|
}));
|
|
|
|
const server = getTestServer();
|
|
|
|
describe("#auth.info", () => {
|
|
it("should return current authentication", async () => {
|
|
const team = await buildTeam();
|
|
const team2 = await buildTeam();
|
|
const team3 = await buildTeam({
|
|
id: mockTeamInSessionId,
|
|
});
|
|
|
|
const user = await buildUser({ teamId: team.id });
|
|
await buildUser();
|
|
await buildUser({
|
|
teamId: team2.id,
|
|
email: user.email,
|
|
});
|
|
const res = await server.post("/api/auth.info", {
|
|
body: {
|
|
token: user.getJwtToken(),
|
|
},
|
|
});
|
|
const body = await res.json();
|
|
expect(res.status).toEqual(200);
|
|
|
|
const availableTeamIds = body.data.availableTeams.map(
|
|
(t: { id: string }) => t.id
|
|
);
|
|
|
|
expect(availableTeamIds.length).toEqual(3);
|
|
expect(availableTeamIds).toContain(team.id);
|
|
expect(availableTeamIds).toContain(team2.id);
|
|
expect(availableTeamIds).toContain(team3.id);
|
|
expect(body.data.user.name).toBe(user.name);
|
|
expect(body.data.team.name).toBe(team.name);
|
|
expect(body.data.team.allowedDomains).toEqual([]);
|
|
});
|
|
|
|
it("should require the team to not be deleted", async () => {
|
|
const team = await buildTeam();
|
|
const user = await buildUser({ teamId: team.id });
|
|
await team.destroy();
|
|
const res = await server.post("/api/auth.info", {
|
|
body: {
|
|
token: user.getJwtToken(),
|
|
},
|
|
});
|
|
expect(res.status).toEqual(401);
|
|
});
|
|
|
|
it("should require authentication", async () => {
|
|
const res = await server.post("/api/auth.info");
|
|
expect(res.status).toEqual(401);
|
|
});
|
|
});
|
|
|
|
describe("#auth.delete", () => {
|
|
it("should make the access token unusable", async () => {
|
|
const user = await buildUser();
|
|
const res = await server.post("/api/auth.delete", {
|
|
body: {
|
|
token: user.getJwtToken(),
|
|
},
|
|
});
|
|
expect(res.status).toEqual(200);
|
|
|
|
const res2 = await server.post("/api/auth.info", {
|
|
body: {
|
|
token: user.getJwtToken(),
|
|
},
|
|
});
|
|
expect(res2.status).toEqual(401);
|
|
});
|
|
|
|
it("should require authentication", async () => {
|
|
const res = await server.post("/api/auth.delete");
|
|
expect(res.status).toEqual(401);
|
|
});
|
|
});
|
|
|
|
describe("#auth.config", () => {
|
|
it("should return available SSO providers", async () => {
|
|
const res = await server.post("/api/auth.config");
|
|
const body = await res.json();
|
|
expect(res.status).toEqual(200);
|
|
expect(body.data.providers.length).toBe(3);
|
|
expect(body.data.providers[0].name).toBe("Slack");
|
|
expect(body.data.providers[1].name).toBe("OpenID Connect");
|
|
expect(body.data.providers[2].name).toBe("Google");
|
|
});
|
|
|
|
it("should return available providers for team subdomain", async () => {
|
|
const subdomain = faker.internet.domainWord();
|
|
await buildTeam({
|
|
guestSignin: false,
|
|
subdomain,
|
|
authenticationProviders: [
|
|
{
|
|
name: "slack",
|
|
providerId: randomUUID(),
|
|
},
|
|
],
|
|
});
|
|
const res = await server.post("/api/auth.config", {
|
|
headers: {
|
|
host: `${subdomain}.outline.dev`,
|
|
},
|
|
});
|
|
const body = await res.json();
|
|
expect(res.status).toEqual(200);
|
|
expect(body.data.providers.length).toBe(1);
|
|
expect(body.data.providers[0].name).toBe("Slack");
|
|
});
|
|
|
|
it("should return available providers for team custom domain", async () => {
|
|
const domain = faker.internet.domainName();
|
|
await buildTeam({
|
|
guestSignin: false,
|
|
domain,
|
|
authenticationProviders: [
|
|
{
|
|
name: "slack",
|
|
providerId: randomUUID(),
|
|
},
|
|
],
|
|
});
|
|
const res = await server.post("/api/auth.config", {
|
|
headers: {
|
|
host: domain,
|
|
},
|
|
});
|
|
const body = await res.json();
|
|
expect(res.status).toEqual(200);
|
|
expect(body.data.providers.length).toBe(1);
|
|
expect(body.data.providers[0].name).toBe("Slack");
|
|
});
|
|
|
|
it("should return email provider for team when guest signin enabled", async () => {
|
|
const subdomain = faker.internet.domainWord();
|
|
await buildTeam({
|
|
guestSignin: true,
|
|
subdomain,
|
|
authenticationProviders: [
|
|
{
|
|
name: "slack",
|
|
providerId: randomUUID(),
|
|
},
|
|
],
|
|
});
|
|
const res = await server.post("/api/auth.config", {
|
|
headers: {
|
|
host: `${subdomain}.outline.dev`,
|
|
},
|
|
});
|
|
const body = await res.json();
|
|
expect(res.status).toEqual(200);
|
|
expect(body.data.providers.length).toBe(2);
|
|
expect(body.data.providers[0].name).toBe("Slack");
|
|
expect(body.data.providers[1].name).toBe("Email");
|
|
});
|
|
|
|
it("should not return provider when disabled", async () => {
|
|
const subdomain = faker.internet.domainWord();
|
|
await buildTeam({
|
|
guestSignin: false,
|
|
subdomain,
|
|
authenticationProviders: [
|
|
{
|
|
name: "slack",
|
|
providerId: randomUUID(),
|
|
enabled: false,
|
|
},
|
|
],
|
|
});
|
|
const res = await server.post("/api/auth.config", {
|
|
headers: {
|
|
host: `${subdomain}.outline.dev`,
|
|
},
|
|
});
|
|
const body = await res.json();
|
|
expect(res.status).toEqual(200);
|
|
expect(body.data.providers.length).toBe(0);
|
|
});
|
|
|
|
it("should not return passkeys provider when passkeysEnabled but no passkeys exist", async () => {
|
|
const subdomain = faker.internet.domainWord();
|
|
await buildTeam({
|
|
guestSignin: false,
|
|
passkeysEnabled: true,
|
|
subdomain,
|
|
authenticationProviders: [
|
|
{
|
|
name: "slack",
|
|
providerId: randomUUID(),
|
|
},
|
|
],
|
|
});
|
|
const res = await server.post("/api/auth.config", {
|
|
headers: {
|
|
host: `${subdomain}.outline.dev`,
|
|
},
|
|
});
|
|
const body = await res.json();
|
|
expect(res.status).toEqual(200);
|
|
expect(body.data.providers.length).toBe(1);
|
|
expect(body.data.providers[0].name).toBe("Slack");
|
|
});
|
|
|
|
it("should return passkeys provider when passkeysEnabled and passkeys exist", async () => {
|
|
const subdomain = faker.internet.domainWord();
|
|
const team = await buildTeam({
|
|
guestSignin: false,
|
|
passkeysEnabled: true,
|
|
subdomain,
|
|
authenticationProviders: [
|
|
{
|
|
name: "slack",
|
|
providerId: randomUUID(),
|
|
},
|
|
],
|
|
});
|
|
const user = await buildUser({ teamId: team.id });
|
|
await buildUserPasskey({ userId: user.id });
|
|
const res = await server.post("/api/auth.config", {
|
|
headers: {
|
|
host: `${subdomain}.outline.dev`,
|
|
},
|
|
});
|
|
const body = await res.json();
|
|
expect(res.status).toEqual(200);
|
|
expect(body.data.providers.length).toBe(2);
|
|
expect(body.data.providers[0].name).toBe("Slack");
|
|
expect(body.data.providers[1].name).toBe("Passkeys");
|
|
});
|
|
|
|
describe.skip("self hosted", () => {
|
|
beforeEach(setSelfHosted);
|
|
|
|
it("should return all configured providers but respect email setting", async () => {
|
|
await buildTeam({
|
|
guestSignin: false,
|
|
authenticationProviders: [
|
|
{
|
|
name: "slack",
|
|
providerId: randomUUID(),
|
|
},
|
|
],
|
|
});
|
|
const res = await server.post("/api/auth.config");
|
|
const body = await res.json();
|
|
expect(res.status).toEqual(200);
|
|
expect(body.data.providers.length).toBe(3);
|
|
expect(body.data.providers[0].name).toBe("Google");
|
|
expect(body.data.providers[1].name).toBe("OpenID Connect");
|
|
expect(body.data.providers[2].name).toBe("Slack");
|
|
});
|
|
|
|
it("should return email provider for team when guest signin enabled", async () => {
|
|
await buildTeam({
|
|
guestSignin: true,
|
|
authenticationProviders: [
|
|
{
|
|
name: "slack",
|
|
providerId: randomUUID(),
|
|
},
|
|
],
|
|
});
|
|
const res = await server.post("/api/auth.config");
|
|
const body = await res.json();
|
|
expect(res.status).toEqual(200);
|
|
expect(body.data.providers.length).toBe(4);
|
|
expect(body.data.providers[0].name).toBe("Slack");
|
|
expect(body.data.providers[1].name).toBe("OpenID Connect");
|
|
expect(body.data.providers[2].name).toBe("Google");
|
|
expect(body.data.providers[3].name).toBe("Email");
|
|
});
|
|
});
|
|
});
|