strapi/packages/strapi-admin/tests/admin-authenticated-user.test.e2e.js

'use strict';

// Helpers.
const { createStrapiInstance } = require('../../../test/helpers/strapi');
const { createAuthRequest, createRequest } = require('../../../test/helpers/request');

describe('Authenticated User', () => {
  let rq;
  let strapi;

  beforeAll(async () => {
    strapi = await createStrapiInstance();
    rq = await createAuthRequest({ strapi });
  }, 60000);

  afterAll(async () => {
    await strapi.destroy();
  });

  describe('GET /users/me', () => {
    test('Returns sanitized user info', async () => {
      const res = await rq({
        url: '/admin/users/me',
        method: 'GET',
        body: {},
      });

      expect(res.statusCode).toBe(200);
      expect(res.body.data).toMatchObject({
        id: expect.anything(),
        firstname: expect.stringOrNull(),
        lastname: expect.stringOrNull(),
        username: expect.stringOrNull(),
        email: expect.any(String),
        isActive: expect.any(Boolean),
      });
    });

    test('Returns forbidden on unauthenticated query', async () => {
      const req = createRequest({ strapi });
      const res = await req({
        url: '/admin/users/me',
        method: 'GET',
        body: {},
      });

      expect(res.statusCode).toBe(403);
    });
  });

  describe('PUT /users/me', () => {
    test('Returns forbidden on unauthenticated query', async () => {
      const req = createRequest({ strapi });
      const res = await req({
        url: '/admin/users/me',
        method: 'PUT',
        body: {},
      });

      expect(res.statusCode).toBe(403);
    });

    test('Fails when trying to edit roles', async () => {
      const res = await rq({
        url: '/admin/users/me',
        method: 'PUT',
        body: {
          roles: [1],
        },
      });

      expect(res.statusCode).toBe(400);
      expect(res.body).toMatchObject({
        statusCode: 400,
        error: 'Bad Request',
        message: 'ValidationError',
      });
    });

    test('Fails when trying to edit isActive', async () => {
      const res = await rq({
        url: '/admin/users/me',
        method: 'PUT',
        body: {
          isActive: 12,
        },
      });

      expect(res.statusCode).toBe(400);
      expect(res.body).toMatchObject({
        statusCode: 400,
        error: 'Bad Request',
        message: 'ValidationError',
      });
    });

    test('Fails when trying to set invalid inputs', async () => {
      const res = await rq({
        url: '/admin/users/me',
        method: 'PUT',
        body: {
          isActive: 12,
        },
      });

      expect(res.statusCode).toBe(400);
      expect(res.body).toMatchObject({
        statusCode: 400,
        error: 'Bad Request',
        message: 'ValidationError',
      });
    });

    test('Allows edition of names', async () => {
      const input = {
        firstname: 'newFirstName',
        lastname: 'newLastaName',
      };

      const res = await rq({
        url: '/admin/users/me',
        method: 'PUT',
        body: input,
      });

      expect(res.statusCode).toBe(200);
      expect(res.body.data).toMatchObject({
        id: expect.anything(),
        email: expect.any(String),
        firstname: input.firstname,
        lastname: input.lastname,
        username: expect.stringOrNull(),
        isActive: expect.any(Boolean),
        roles: expect.arrayContaining([]),
      });
    });
  });
});
add use strict Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-09 11:48:49 +02:00			`'use strict';`

Remove email update of admin during test that break next tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 20:39:39 +02:00			`// Helpers.`
First impl (wip) Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-10 14:15:31 +01:00			`const { createStrapiInstance } = require('../../../test/helpers/strapi');`
Remove email update of admin during test that break next tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 20:39:39 +02:00			`const { createAuthRequest, createRequest } = require('../../../test/helpers/request');`

			`describe('Authenticated User', () => {`
First impl (wip) Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-10 14:15:31 +01:00			`let rq;`
			`let strapi;`
Remove email update of admin during test that break next tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 20:39:39 +02:00
First impl (wip) Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-10 14:15:31 +01:00			`beforeAll(async () => {`
Cleanup Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-30 20:20:36 +01:00			`strapi = await createStrapiInstance();`
First impl (wip) Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-10 14:15:31 +01:00			`rq = await createAuthRequest({ strapi });`
Remove email update of admin during test that break next tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 20:39:39 +02:00			`}, 60000);`

First impl (wip) Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-10 14:15:31 +01:00			`afterAll(async () => {`
			`await strapi.destroy();`
			`});`

Remove email update of admin during test that break next tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 20:39:39 +02:00			`describe('GET /users/me', () => {`
			`test('Returns sanitized user info', async () => {`
			`const res = await rq({`
			`url: '/admin/users/me',`
			`method: 'GET',`
			`body: {},`
			`});`

			`expect(res.statusCode).toBe(200);`
			`expect(res.body.data).toMatchObject({`
			`id: expect.anything(),`
			`firstname: expect.stringOrNull(),`
			`lastname: expect.stringOrNull(),`
			`username: expect.stringOrNull(),`
			`email: expect.any(String),`
			`isActive: expect.any(Boolean),`
			`});`
			`});`

			`test('Returns forbidden on unauthenticated query', async () => {`
Cleanup Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-30 20:20:36 +01:00			`const req = createRequest({ strapi });`
Remove email update of admin during test that break next tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 20:39:39 +02:00			`const res = await req({`
			`url: '/admin/users/me',`
			`method: 'GET',`
			`body: {},`
			`});`

			`expect(res.statusCode).toBe(403);`
			`});`
			`});`

			`describe('PUT /users/me', () => {`
			`test('Returns forbidden on unauthenticated query', async () => {`
Cleanup Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-30 20:20:36 +01:00			`const req = createRequest({ strapi });`
Remove email update of admin during test that break next tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 20:39:39 +02:00			`const res = await req({`
			`url: '/admin/users/me',`
			`method: 'PUT',`
			`body: {},`
			`});`

			`expect(res.statusCode).toBe(403);`
			`});`

			`test('Fails when trying to edit roles', async () => {`
			`const res = await rq({`
			`url: '/admin/users/me',`
			`method: 'PUT',`
			`body: {`
			`roles: [1],`
			`},`
			`});`

			`expect(res.statusCode).toBe(400);`
			`expect(res.body).toMatchObject({`
			`statusCode: 400,`
			`error: 'Bad Request',`
			`message: 'ValidationError',`
			`});`
			`});`

			`test('Fails when trying to edit isActive', async () => {`
			`const res = await rq({`
			`url: '/admin/users/me',`
			`method: 'PUT',`
			`body: {`
			`isActive: 12,`
			`},`
			`});`

			`expect(res.statusCode).toBe(400);`
			`expect(res.body).toMatchObject({`
			`statusCode: 400,`
			`error: 'Bad Request',`
			`message: 'ValidationError',`
			`});`
			`});`

			`test('Fails when trying to set invalid inputs', async () => {`
			`const res = await rq({`
			`url: '/admin/users/me',`
			`method: 'PUT',`
			`body: {`
			`isActive: 12,`
			`},`
			`});`

			`expect(res.statusCode).toBe(400);`
			`expect(res.body).toMatchObject({`
			`statusCode: 400,`
			`error: 'Bad Request',`
			`message: 'ValidationError',`
			`});`
			`});`

			`test('Allows edition of names', async () => {`
			`const input = {`
			`firstname: 'newFirstName',`
			`lastname: 'newLastaName',`
			`};`

			`const res = await rq({`
			`url: '/admin/users/me',`
			`method: 'PUT',`
			`body: input,`
			`});`

			`expect(res.statusCode).toBe(200);`
			`expect(res.body.data).toMatchObject({`
			`id: expect.anything(),`
			`email: expect.any(String),`
			`firstname: input.firstname,`
			`lastname: input.lastname,`
			`username: expect.stringOrNull(),`
			`isActive: expect.any(Boolean),`
			`roles: expect.arrayContaining([]),`
			`});`
			`});`
			`});`
			`});`