-
Notifications
You must be signed in to change notification settings - Fork 72
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
1 parent
5364b7e
commit 73d0c3e
Showing
1 changed file
with
265 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,265 @@ | ||
| 'use strict' | ||
|
|
||
| /* eslint-env mocha */ | ||
| /* eslint no-unused-expressions:0 */ | ||
|
|
||
| import request from 'supertest' | ||
| import should from 'should' | ||
| import {promisify} from 'util' | ||
|
|
||
| import * as constants from '../constants' | ||
| import * as server from '../../src/server' | ||
| import * as testUtils from '../utils' | ||
| import {AppModelAPI} from '../../src/model/apps' | ||
|
|
||
| const {SERVER_PORTS, BASE_URL} = constants | ||
|
|
||
| describe('API Integration Tests', () => { | ||
| describe('Apps REST Api Testing', () => { | ||
| const testAppDoc = { | ||
| name: 'Test app', | ||
| description: 'An app for testing the app framework', | ||
| icon: 'data:image/png;base64, <base64>', | ||
| type: 'link|embedded', | ||
| category: 'Operations', | ||
| access_roles: ['test-app-user'], | ||
| url: 'http://test-app.org/app', | ||
| showInPortal: true, | ||
| showInSideBar: true | ||
| } | ||
| let rootCookie = '', | ||
| nonRootCookie = '' | ||
|
|
||
| before(async () => { | ||
| await promisify(server.start)({apiPort: SERVER_PORTS.apiPort}) | ||
| await testUtils.setupTestUsers() | ||
| }) | ||
|
|
||
| after(async () => { | ||
| await testUtils.cleanupTestUsers() | ||
| await promisify(server.stop)() | ||
| }) | ||
|
|
||
| beforeEach(async () => { | ||
| rootCookie = await testUtils.authenticate( | ||
| request, | ||
| BASE_URL, | ||
| testUtils.rootUser | ||
| ) | ||
| nonRootCookie = await testUtils.authenticate( | ||
| request, | ||
| BASE_URL, | ||
| testUtils.nonRootUser | ||
| ) | ||
| }) | ||
|
|
||
| afterEach(async () => { | ||
| await AppModelAPI.deleteMany({}) | ||
| }) | ||
|
|
||
| describe('*addApp', () => { | ||
| it('should only allow an admin user to add an app', async () => { | ||
| const res = await request(BASE_URL) | ||
| .post('/apps') | ||
| .set('Cookie', nonRootCookie) | ||
| .send(testAppDoc) | ||
| .expect(403) | ||
|
|
||
| res.body.error.should.equal( | ||
| 'User [email protected] is not an admin, API access to add an app denied.' | ||
| ) | ||
| }) | ||
|
|
||
| it('should fail when app is invalid', async () => { | ||
| await request(BASE_URL) | ||
| .post('/apps') | ||
| .set('Cookie', rootCookie) | ||
| .send({}) | ||
| .expect(400) | ||
| }) | ||
|
|
||
| it('should create an app', async () => { | ||
| const res = await request(BASE_URL) | ||
| .post('/apps') | ||
| .set('Cookie', rootCookie) | ||
| .send(testAppDoc) | ||
| .expect(201) | ||
|
|
||
| res.body.name.should.equal(testAppDoc.name) | ||
| }) | ||
| }) | ||
|
|
||
| describe('*getApps', () => { | ||
| let appId | ||
|
|
||
| beforeEach(async () => { | ||
| const res = await request(BASE_URL) | ||
| .post('/apps') | ||
| .set('Cookie', rootCookie) | ||
| .send(testAppDoc) | ||
| .expect(201) | ||
|
|
||
| appId = res.body._id | ||
| }) | ||
|
|
||
| it('should get apps', async () => { | ||
| const res = await request(BASE_URL) | ||
| .get('/apps') | ||
| .set('Cookie', rootCookie) | ||
| .expect(200) | ||
|
|
||
| res.body[0].name.should.equal(testAppDoc.name) | ||
| }) | ||
|
|
||
| it('should get app', async () => { | ||
| const res = await request(BASE_URL) | ||
| .get(`/apps/${appId}`) | ||
| .set('Cookie', rootCookie) | ||
| .expect(200) | ||
|
|
||
| res.body.name.should.equal(testAppDoc.name) | ||
| }) | ||
|
|
||
| it('should fail when app id is invalid', async () => { | ||
| const res = await request(BASE_URL) | ||
| .put(`/apps/testapp`) | ||
| .set('Cookie', rootCookie) | ||
| .expect(400) | ||
|
|
||
| res.body.error.should.equal( | ||
| 'App id "testapp" is invalid. ObjectId should contain 24 characters' | ||
| ) | ||
| }) | ||
|
|
||
| it('should fail when app does not exist', async () => { | ||
| const res = await request(BASE_URL) | ||
| .get('/apps/507f1f77bcf86cd799439011') | ||
| .set('Cookie', nonRootCookie) | ||
| .expect(404) | ||
|
|
||
| res.body.error.should.equal( | ||
| 'App with id 507f1f77bcf86cd799439011 does not exist' | ||
| ) | ||
| }) | ||
| }) | ||
|
|
||
| describe('*updateApp', () => { | ||
| const update = { | ||
| description: 'Test app' | ||
| } | ||
|
|
||
| let appId | ||
|
|
||
| beforeEach(async () => { | ||
| const res = await request(BASE_URL) | ||
| .post('/apps') | ||
| .set('Cookie', rootCookie) | ||
| .send(testAppDoc) | ||
| .expect(201) | ||
|
|
||
| appId = res.body._id | ||
| }) | ||
|
|
||
| it('should only allow an admin user to update an app', async () => { | ||
| const res = await request(BASE_URL) | ||
| .put('/apps/507f1f77bcf86cd799439011') | ||
| .set('Cookie', nonRootCookie) | ||
| .send(update) | ||
| .expect(403) | ||
|
|
||
| res.body.error.should.equal( | ||
| 'User [email protected] is not an admin, API access to update an app denied.' | ||
| ) | ||
| }) | ||
|
|
||
| it('should fail to update when app id is invalid', async () => { | ||
| const res = await request(BASE_URL) | ||
| .put(`/apps/testapp`) | ||
| .set('Cookie', rootCookie) | ||
| .expect(400) | ||
|
|
||
| res.body.error.should.equal( | ||
| 'App id "testapp" is invalid. ObjectId should contain 24 characters' | ||
| ) | ||
| }) | ||
|
|
||
| it('should fail to update when app does not exist', async () => { | ||
| const res = await request(BASE_URL) | ||
| .put(`/apps/507f1f77bcf86cd799439011`) | ||
| .set('Cookie', rootCookie) | ||
| .send(update) | ||
| .expect(404) | ||
|
|
||
| res.body.error.should.equal( | ||
| 'App with id 507f1f77bcf86cd799439011 does not exist' | ||
| ) | ||
| }) | ||
|
|
||
| it('should update app', async () => { | ||
| const res = await request(BASE_URL) | ||
| .put(`/apps/${appId}`) | ||
| .set('Cookie', rootCookie) | ||
| .send(update) | ||
| .expect(200) | ||
|
|
||
| res.body.description.should.equal(update.description) | ||
| }) | ||
| }) | ||
|
|
||
| describe('*deleteApp', () => { | ||
| let appId | ||
|
|
||
| beforeEach(async () => { | ||
| const res = await request(BASE_URL) | ||
| .post('/apps') | ||
| .set('Cookie', rootCookie) | ||
| .send(testAppDoc) | ||
| .expect(201) | ||
|
|
||
| appId = res.body._id | ||
| }) | ||
|
|
||
| it('should only allow an admin user to delete an app', async () => { | ||
| const res = await request(BASE_URL) | ||
| .delete('/apps/507f1f77bcf86cd799439011') | ||
| .set('Cookie', nonRootCookie) | ||
| .expect(403) | ||
|
|
||
| res.body.error.should.equal( | ||
| 'User [email protected] is not an admin, API access to delete an app denied.' | ||
| ) | ||
| }) | ||
|
|
||
| it('should fail to delete when app id is invalid', async () => { | ||
| const res = await request(BASE_URL) | ||
| .delete(`/apps/testapp`) | ||
| .set('Cookie', rootCookie) | ||
| .expect(400) | ||
|
|
||
| res.body.error.should.equal( | ||
| 'App id "testapp" is invalid. ObjectId should contain 24 characters' | ||
| ) | ||
| }) | ||
|
|
||
| it('should fail to delete when app does not exist', async () => { | ||
| const res = await request(BASE_URL) | ||
| .delete('/apps/507f1f77bcf86cd799439011') | ||
| .set('Cookie', rootCookie) | ||
| .expect(404) | ||
|
|
||
| res.body.error.should.equal( | ||
| 'App with id 507f1f77bcf86cd799439011 does not exist' | ||
| ) | ||
| }) | ||
|
|
||
| it('should delete app', async () => { | ||
| const res = await request(BASE_URL) | ||
| .delete(`/apps/${appId}`) | ||
| .set('Cookie', rootCookie) | ||
| .expect(200) | ||
|
|
||
| res.body.success.should.equal(true) | ||
| }) | ||
| }) | ||
| }) | ||
| }) |