UNPKG

@hoodie/account-server

Version:

Account JSON API backed by PouchDB

github.com/hoodiehq/hoodie-account-server

hoodiehq/hoodie-account-server

111 lines (92 loc) 3.54 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
var _ = require('lodash') var nock = require('nock') var test = require('tap').test var couchdbErrorTests = require('../../utils/couchdb-error-tests') var getServer = require('../../utils/get-server') var routeOptions = { method: 'GET', url: '/session/account/profile', headers: { accept: 'application/vnd.api+json', authorization: 'Session cGF0LWRvZTpCQkZFMzg4MDqp7ppCNngda1JMi7XcyhtaUxf2nA', 'content-type': 'application/vnd.api+json' } } var mockCouchdDGetUserDoc = nock('http://localhost:5984') .get('/_users/org.couchdb.user%3Apat-doe') .query(true) function mockCouchDbUserDocFound (docChange) { return mockCouchdDGetUserDoc .reply(200, _.merge({ _id: 'org.couchdb.user:pat-doe', _rev: '1-234', password_scheme: 'pbkdf2', iterations: 10, type: 'user', name: 'pat-doe', roles: ['id:userid123', 'mycustomrole'], derived_key: '4b5c9721ab77dd2faf06a36785fd0a30f0bf0d27', salt: 'salt123' }, docChange)) } test('GET /session/account/profile', function (group) { group.beforeEach(getServer) // For now all tests within here are skipped anyway couchdbErrorTests(group, mockCouchdDGetUserDoc, routeOptions) group.test('Session does exist', function (t) { var couch = mockCouchDbUserDocFound({ profile: { fullName: 'Pat Doe', email: 'pat@example.com' } }) var profileFixture = require('../../fixtures/profile.json') this.server.inject(routeOptions, function (response) { t.is(couch.pendingMocks()[0], undefined, 'all mocks satisfied') delete response.result.meta t.is(response.statusCode, 200, 'returns 200 status') t.deepEqual(response.result, profileFixture, 'returns profile in right format') t.end() }) }) group.test('Session does not exist', function (t) { var couch = mockCouchdDGetUserDoc .reply(404, {error: 'not_found', reason: 'missing'}) this.server.inject(routeOptions, function (response) { t.is(couch.pendingMocks()[0], undefined, 'all mocks satisfied') t.is(response.statusCode, 401, 'returns 401 status') t.is(response.result.errors.length, 1, 'returns one error') t.is(response.result.errors[0].title, 'Unauthorized', 'returns "Unauthorized" error') t.is(response.result.errors[0].detail, 'Session invalid', 'returns "Session invalid" error') t.end() }) }) group.test('User Is admin', function (t) { var requestOptions = _.defaultsDeep({ headers: { // calculateSessionId('admin', '1081b31861bd1e91611341da16c11c16a12c13718d1f712e', 'secret', 1209600) authorization: 'Session YWRtaW46MTI3NTAwOh08V1EljPqAPAnv8mtxWNF87zdW' } }, routeOptions) this.server.inject(requestOptions, function (response) { delete response.result.meta t.is(response.statusCode, 404, 'returns 404 status') t.deepEqual(response.result.errors[0].detail, 'Admins have no profiles', 'returns "Admins have no profiles" error') t.end() }) }) group.end() }) test('GET /session/account/profile?include=foobar', function (t) { getServer(function (error, server) { t.error(error) var options = _.defaultsDeep({ url: '/session/account/profile?include=foobar' }, routeOptions) this.server.inject(options, function (response) { t.is(response.statusCode, 400, 'returns 400 status') t.deepEqual(response.result.errors[0].detail, '?include not allowed', 'returns error message') t.end() }) }) })