UNPKG

@soldair/seneca-perm

Version:

test - Seneca permissions plugin

github.com/rjrodger/seneca-perm

rjrodger/seneca-perm

114 lines (86 loc) 2.8 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
/* Copyright (c) 2013-2014 Richard Rodger */ "use strict"; // mocha perm.test.js var seneca = require('seneca') var assert = require('chai').assert var gex = require('gex') var async = require('async') describe('perm acl', function() { var si = seneca() si.use( '../perm.js', { accessControls: [{ name: 'hard set to true', roles: ['email_admin'], entities: [{ zone: undefined, base: undefined, name: 'email' }], hard: true, control: 'required', actions: ['load', 'save_new', 'save_existing', 'list'] }, { name: 'hard set to false', roles: ['item_admin'], entities: [{ zone: undefined, base: undefined, name: 'list_item' }], hard: false, control: 'required', actions: ['load','save_new', 'save_existing', 'list'] }], allowedProperties: [{ entity: { zone: undefined, base: undefined, name: 'list_item' }, fields: ['name', 'number'] }] }) it('seneca ready', function(done) { si.ready(done) }) it('access denied - hard set to true - return permission denied', function(done) { var psi = si.delegate({perm$:{roles:['email_admin']}}) var psiList = si.delegate({perm$:{roles:['test_role']}}) var emailItem1 = psi.make('email',{id: 'item1', name: 'Item 1', number: 1, status: 'private'}) var emailItem2 = psiList.make('email') ;emailItem1.save$(function(err,emailItem1){ assert.isNull(err, err) assert.isNotNull(emailItem1.id) ;emailItem2.list$(function(err, publicList) { assert.isNull(err, err) assert.isNotNull(publicList) assert.equal(publicList.length,0) done() }) }) }) it('access denied - hard set to false - return allowed fields only', function(done) { var psi = si.delegate({perm$:{roles:['item_admin']}}) var psiList = si.delegate({ perm$:{roles:['test_role']}, showSoftDenied$: true }) var listItem1 = psi.make('list_item',{id: 'item1', name: 'Item 1', number: 1, status: 'private'}) var listItem2 = psiList.make('list_item') ;listItem1.save$(function(err,listItem1){ assert.isNull(err, err) assert.isNotNull(listItem1.id) ;listItem2.list$(function(err, publicList) { assert.isNull(err, err) assert.isNotNull(publicList) assert.equal(publicList[0].hasOwnProperty('name'), true) assert.equal(publicList[0].hasOwnProperty('number'), true) assert.equal(publicList[0].hasOwnProperty('id'), false) assert.equal(publicList[0].hasOwnProperty('status'), false) assert.equal(publicList.length, 1) done() }) }) }) })