UNPKG

fakeblock

Version:

Field-level ACL library for Node.js and NoSql document stores

github.com/gethuman/fakeblock.js

gethuman/fakeblock.js

182 lines (163 loc) 8.34 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
/** * Author: Jeff Whelpley * Date: 2/17/14 * * Unit tests for fakeblock */ var taste = require('taste'); var Fakeblock = taste.target('fakeblock'); describe('UNIT tests for fakeblock', function () { describe('getValue()', function () { it('should return null if a key does not exist', function () { var acl = { one: 'two' }; var fakeblock = new Fakeblock({ acl: acl }); var actual = fakeblock.getValue('something.else'); taste.expect(actual).not.to.exist; }); it('should return a value if it exists', function () { var acl = { one: { two: ['three', 'four'] }}; var fakeblock = new Fakeblock({ acl: acl }); var expected = ['three', 'four']; var actual = fakeblock.getValue('one.two'); taste.expect(actual).to.exist; actual.should.deep.equal(expected); }); }); describe('canUserAccessMethod()', function () { it('should return false if role not there at all', function () { var acl = { one: { two: 'three' }}; var fakeblock = new Fakeblock({ acl: acl, userRole: 'user' }); var actual = fakeblock.canUserAccessMethod('find'); actual.should.be.false; }); it('should return false if the role is not in the list', function () { var acl = { find: { access: ['admin'] }}; var fakeblock = new Fakeblock({ acl: acl, userRole: 'user' }); var actual = fakeblock.canUserAccessMethod('find'); actual.should.be.false; }); it('should return true if the role is in the list', function () { var acl = { find: { access: ['user'] }}; var fakeblock = new Fakeblock({ acl: acl, userRole: 'user' }); var actual = fakeblock.canUserAccessMethod('find'); actual.should.be.true; }); }); describe('applyAcl()', function () { it('should throw an error if data is missing', function () { var fakeblock = new Fakeblock(); var fn = function () { fakeblock.applyAcl(); }; taste.expect(fn).to.throw(/Fakeblock missing required input/); }); it('should return the default fields if data does not exist', function () { var acl = { find: { select: { 'default': { user: ['one', 'two'] }}}}; var fakeblock = new Fakeblock({ acl: acl, name: 'test', userId: 123, userRole: 'user' }); var expected = ['one', 'two']; var actual = fakeblock.applyAcl(null, 'find', 'select'); taste.expect(actual).to.exist; actual.should.deep.equal(expected); }); it('should automatically add condition if isMine', function () { var acl = { find: { select: { onlyMine: { roles: ['user'], field: 'someField' }}}}; var userId = 123; var fakeblock = new Fakeblock({ acl: acl, name: 'test', userId: userId, userRole: 'user' }); var expected = { someField: userId }; var actual = fakeblock.applyAcl(null, 'find', 'select'); taste.expect(actual).to.exist; actual.should.deep.equal(expected); }); it('should throw error if onlyMine and no userId', function () { var acl = { find: { select: { onlyMine: { roles: ['user'], field: 'someField' }}}}; var fakeblock = new Fakeblock({ acl: acl, name: 'test', userRole: 'user' }); var fn = function () { fakeblock.applyAcl(null, 'find', 'select'); }; taste.expect(fn).to.throw(/onlyMine requires userId/); }); it('should throw error if block with user role restricted fields', function () { var acl = { find: { select: { restricted: { user: ['something'] }}}}; var fakeblock = new Fakeblock({ acl: acl, name: 'test', userId: 123, userRole: 'user' }); var data = { something: 'one', another: 'two' }; var fn = function () { fakeblock.applyAcl(data, 'find', 'select'); }; taste.expect(fn).to.throw(/Fakeblock blocked some data/); }); it('should throw error if block with allroles restricted fields', function () { var acl = { find: { select: { restricted: { allroles: ['something'] }}}}; var fakeblock = new Fakeblock({ acl: acl, name: 'test', userId: 123, userRole: 'user' }); var data = { something: 'one', another: 'two' }; var fn = function () { fakeblock.applyAcl(data, 'find', 'select'); }; taste.expect(fn).to.throw(/Fakeblock blocked some data/); }); it('should throw error if block with user role allowed fields', function () { var acl = { find: { select: { allowed: { user: ['another'] }}}}; var fakeblock = new Fakeblock({ acl: acl, name: 'test', userId: 123, userRole: 'user' }); var data = { something: 'one', another: 'two' }; var fn = function () { fakeblock.applyAcl(data, 'find', 'select'); }; taste.expect(fn).to.throw(/Fakeblock blocked some data/); }); it('should throw error if block with allroles role allowed fields', function () { var acl = { find: { select: { allowed: { allroles: ['another'] }}}}; var fakeblock = new Fakeblock({ acl: acl, name: 'test', userId: 123, userRole: 'user' }); var data = { something: 'one', another: 'two' }; var fn = function () { fakeblock.applyAcl(data, 'find', 'select'); }; taste.expect(fn).to.throw(/Fakeblock blocked some data/); }); }); describe('checkValues()', function () { it('should return data if no data passed in', function () { var acl = { create: { values: { restricted: { user: { type: ['question', 'answer'] }}}}}; var fakeblock = new Fakeblock({ acl: acl, name: 'test', userId: 123, userRole: 'user' }); var data = null; var fn = function () { fakeblock.checkValues(data, 'create'); }; taste.expect(fn).to.not.throw(Error); }); it('should not throw an error if no restricted violation', function () { var acl = { create: { values: { restricted: { user: { type: ['question', 'answer'] }}}}}; var fakeblock = new Fakeblock({ acl: acl, name: 'test', userId: 123, userRole: 'user' }); var data = { type: 'blah' }; var fn = function () { fakeblock.checkValues(data, 'create'); }; taste.expect(fn).to.not.throw(Error); }); it('should throw an error if a restricted violation', function () { var acl = { create: { values: { restricted: { user: { type: ['question', 'answer'] }}}}}; var fakeblock = new Fakeblock({ acl: acl, name: 'test', userId: 123, userRole: 'user' }); var data = { type: 'question' }; var fn = function () { fakeblock.checkValues(data, 'create'); }; taste.expect(fn).to.throw(/not valid for test create/); }); it('should throw an error if no allowed field', function () { var acl = { create: { values: { allowed: { user: { type: ['question', 'answer'] }}}}}; var fakeblock = new Fakeblock({ acl: acl, name: 'test', userId: 123, userRole: 'user' }); var data = { type: 'blah' }; var fn = function () { fakeblock.checkValues(data, 'create'); }; taste.expect(fn).to.throw(/Value blah not valid/); }); it('should not throw an error if allowed field', function () { var acl = { create: { values: { allowed: { user: { type: ['question', 'answer'] }}}}}; var fakeblock = new Fakeblock({ acl: acl, name: 'test', userId: 123, userRole: 'user' }); var data = { type: 'question' }; var fn = function () { fakeblock.checkValues(data, 'create'); }; taste.expect(fn).to.not.throw(Error); }); }); });