UNPKG

passbolt-styleguide

Version:

Passbolt styleguide contains common styling assets used by the different sites, plugin, etc.

www.passbolt.com

passbolt/passbolt_styleguide

195 lines (149 loc) 7.7 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
/** * Passbolt ~ Open source password manager for teams * Copyright (c) Passbolt SA (https://www.passbolt.com) * * Licensed under GNU Affero General Public License version 3 of the or any later version. * For full copyright and license information, please see the LICENSE.txt * Redistributions of files must retain the above copyright notice. * * @copyright Copyright (c) Passbolt SA (https://www.passbolt.com) * @license https://opensource.org/licenses/AGPL-3.0 AGPL License * @link https://www.passbolt.com Passbolt(tm) * @since 4.5.0 */ import { defaultLoggedInUser } from "../../context/Rbac/RbacContext.test.data"; import RbacEntity from "../../models/entity/rbac/rbacEntity"; import RbacsCollection from "../../models/entity/rbac/rbacsCollection"; import { defaultSettingsRbacsCollectionData, settingsRbacsCollectionData, } from "../../models/entity/rbac/rbacsCollection.test.data"; import RoleEntity from "../../models/entity/role/roleEntity"; import { defaultAdminUserDto } from "../../models/entity/user/userEntity.test.data"; import CanUse from "./canUseService"; import GetControlFunctionService from "./getControlFunctionService"; import { uiActions } from "./uiActionEnumeration"; import { actions } from "./actionEnumeration"; import { defaultRbacData } from "../../models/entity/rbac/rbacEntity.test.data"; import { controlFunctions } from "./controlFunctionEnumeration"; describe("CanUseService", () => { const user = defaultLoggedInUser(); let rbacs = new RbacsCollection(defaultSettingsRbacsCollectionData); describe("::canRoleUseAction", () => { it("should return true for admin user with admin control function for ui action", () => { expect.assertions(2); jest.spyOn(GetControlFunctionService, "getDefaultForAdminAndAction"); const result = CanUse.canRoleUseAction( defaultAdminUserDto(), new RbacsCollection(defaultSettingsRbacsCollectionData), uiActions.RESOURCES_EXPORT, ); expect(result).toBeTruthy(); expect(GetControlFunctionService.getDefaultForAdminAndAction).toHaveBeenCalledWith(uiActions.RESOURCES_EXPORT); }); it("should return true for a non-admin user with RBAC control function for ui action", () => { expect.assertions(3); jest.spyOn(rbacs, "findRbacByRoleAndActionName"); jest.spyOn(GetControlFunctionService, "getByRbac"); jest.spyOn(CanUse, "getByRbacOrDefault"); const result = CanUse.canRoleUseAction(user, rbacs, uiActions.RESOURCES_EXPORT); expect(result).toBe(true); expect(rbacs.findRbacByRoleAndActionName).toHaveBeenCalledWith( new RoleEntity(user.role), uiActions.RESOURCES_EXPORT, ); expect(CanUse.getByRbacOrDefault).toHaveBeenCalled(); }); it("should return true for desktop action with RBAC control function for ui action", () => { expect.assertions(3); global.window.chrome = { webview: true }; jest.spyOn(rbacs, "findRbacByActionName"); jest.spyOn(GetControlFunctionService, "getByRbac"); const result = CanUse.canRoleUseAction(user, rbacs, uiActions.RESOURCES_EXPORT); // Delete to avoid other test running in desktop app mode delete global.window.chrome; expect(result).toBe(true); expect(rbacs.findRbacByActionName).toHaveBeenCalledWith(uiActions.RESOURCES_EXPORT); expect(GetControlFunctionService.getByRbac).toHaveBeenCalled(); }); it("should fallback to admin default for desktop admin user when no RBAC exists", () => { expect.assertions(2); global.window.chrome = { webview: true }; const emptyRbacs = new RbacsCollection([]); jest.spyOn(GetControlFunctionService, "getDefaultForAdminAndAction"); const result = CanUse.canRoleUseAction(defaultAdminUserDto(), emptyRbacs, actions.GROUPS_ADD); delete global.window.chrome; expect(result).toBeTruthy(); expect(GetControlFunctionService.getDefaultForAdminAndAction).toHaveBeenCalledWith(actions.GROUPS_ADD); }); it("should fallback to user default for desktop non-admin user when no RBAC exists", () => { expect.assertions(2); global.window.chrome = { webview: true }; const emptyRbacs = new RbacsCollection([]); jest.spyOn(GetControlFunctionService, "getDefaultForUserAndAction"); const result = CanUse.canRoleUseAction(user, emptyRbacs, actions.GROUPS_ADD); delete global.window.chrome; expect(result).toBeFalsy(); expect(GetControlFunctionService.getDefaultForUserAndAction).toHaveBeenCalledWith(actions.GROUPS_ADD); }); it("should return false if rbac is Deny for ui action", () => { expect.assertions(1); rbacs = new RbacsCollection(settingsRbacsCollectionData()); jest .spyOn(rbacs, "findRbacByRoleAndActionName") .mockImplementationOnce(() => new RbacEntity(defaultRbacData({ control_function: controlFunctions.DENY }))); const result = CanUse.canRoleUseAction(user, rbacs, uiActions.RESOURCES_IMPORT); expect(result).toBeFalsy(); }); it("should return true for admin user with admin control function for action", () => { expect.assertions(1); jest.spyOn(GetControlFunctionService, "getDefaultForAdminAndAction"); const result = CanUse.canRoleUseAction( defaultAdminUserDto(), new RbacsCollection(defaultSettingsRbacsCollectionData), actions.GROUPS_ADD, ); expect(result).toBeTruthy(); }); it("should return true for a non-admin user with RBAC control function for action", () => { expect.assertions(3); rbacs = new RbacsCollection(defaultSettingsRbacsCollectionData); jest.spyOn(rbacs, "findRbacByRoleAndActionName"); jest.spyOn(GetControlFunctionService, "getByRbac"); jest.spyOn(CanUse, "getByRbacOrDefault"); const result = CanUse.canRoleUseAction(user, rbacs, actions.ACCOUNT_RECOVERY_RESPONSE_CREATE); expect(result).toBeTruthy(); expect(rbacs.findRbacByRoleAndActionName).toHaveBeenCalledWith( new RoleEntity(user.role), actions.ACCOUNT_RECOVERY_RESPONSE_CREATE, ); expect(CanUse.getByRbacOrDefault).toHaveBeenCalled(); }); it("should return false if rbac is Deny for action", () => { expect.assertions(1); rbacs = new RbacsCollection(settingsRbacsCollectionData()); jest .spyOn(rbacs, "findRbacByRoleAndActionName") .mockImplementationOnce(() => new RbacEntity(defaultRbacData({ control_function: controlFunctions.DENY }))); const result = CanUse.canRoleUseAction(user, rbacs, actions.GROUPS_ADD); expect(result).toBeFalsy(); }); }); describe("::getByRbacOrDefault", () => { it("should return the rbac function and execute it when rbac is defined", () => { expect.assertions(2); const rbac = new RbacEntity(defaultSettingsRbacsCollectionData[0]); jest.spyOn(GetControlFunctionService, "getByRbac"); const result = CanUse.getByRbacOrDefault(rbac, uiActions.RESOURCES_EXPORT, user); expect(result).toBeTruthy(); expect(GetControlFunctionService.getByRbac).toHaveBeenCalledWith(rbac); }); it("should return the fallback control function and execute it when rbac is not defined", () => { expect.assertions(2); jest.spyOn(GetControlFunctionService, "getDefaultForUserAndAction"); const result = CanUse.getByRbacOrDefault(null, uiActions.RESOURCES_EXPORT, user); expect(result).toBeTruthy(); expect(GetControlFunctionService.getDefaultForUserAndAction).toHaveBeenCalledWith(uiActions.RESOURCES_EXPORT); }); }); });