strapi/tests/api/core/admin/admin-auth.test.api.js

'use strict';

// Helpers.
const { createAuthRequest } = require('api-tests/request');
const { createStrapiInstance, superAdmin } = require('api-tests/strapi');
const { createUtils } = require('api-tests/utils');

const internals = {
  role: null,
};

describe('Admin Auth End to End', () => {
  let rq;
  let strapi;
  let utils;

  beforeAll(async () => {
    strapi = await createStrapiInstance();
    rq = await createAuthRequest({ strapi });
    utils = createUtils(strapi);

    internals.role = await utils.createRole({
      name: 'auth_test_role',
      description: 'Only used for auth crud test (api)',
    });
  });

  afterAll(async () => {
    await utils.deleteRolesById([internals.role.id]);

    await strapi.destroy();
  });

  describe('Login', () => {
    test('Can connect successfully', async () => {
      const res = await rq({
        url: '/admin/login',
        method: 'POST',
        body: superAdmin.loginInfo,
      });

      expect(res.statusCode).toBe(200);
      expect(res.body.data).toMatchObject({
        token: expect.any(String),
        user: {
          firstname: expect.stringOrNull(),
          lastname: expect.stringOrNull(),
          username: expect.stringOrNull(),
          email: expect.any(String),
          isActive: expect.any(Boolean),
        },
      });
    });

    test('Fails on invalid password', async () => {
      const res = await rq({
        url: '/admin/login',
        method: 'POST',
        body: {
          ...superAdmin.loginInfo,
          password: 'wrongPassword',
        },
      });

      expect(res.statusCode).toBe(400);
      expect(res.body).toEqual({
        data: null,
        error: {
          status: 400,
          name: 'ApplicationError',
          message: 'Invalid credentials',
          details: {},
        },
      });
    });

    test('Fails on invalid email', async () => {
      const res = await rq({
        url: '/admin/login',
        method: 'POST',
        body: {
          email: 'non-existent-user@strapi.io',
          password: 'pcw123',
        },
      });

      expect(res.statusCode).toBe(400);
      expect(res.body).toEqual({
        data: null,
        error: {
          status: 400,
          name: 'ApplicationError',
          message: 'Invalid credentials',
          details: {},
        },
      });
    });

    test('Fails on missing credentials', async () => {
      const res = await rq({
        url: '/admin/login',
        method: 'POST',
        body: {
          email: 'non-existent-user@strapi.io',
        },
      });

      expect(res.statusCode).toBe(400);
      expect(res.body).toEqual({
        data: null,
        error: {
          status: 400,
          name: 'ApplicationError',
          message: 'Missing credentials',
          details: {},
        },
      });
    });
  });

  describe('Renew token', () => {
    test('Renew token', async () => {
      const authRes = await rq({
        url: '/admin/login',
        method: 'POST',
        body: superAdmin.loginInfo,
      });

      expect(authRes.statusCode).toBe(200);
      const { token } = authRes.body.data;

      const res = await rq({
        url: '/admin/renew-token',
        method: 'POST',
        body: {
          token,
        },
      });

      expect(res.statusCode).toBe(200);
      expect(res.body.data).toEqual({
        token: expect.any(String),
      });
    });

    test('Fails on invalid token', async () => {
      const res = await rq({
        url: '/admin/renew-token',
        method: 'POST',
        body: {
          token: 'invalid-token',
        },
      });

      expect(res.statusCode).toBe(400);
      expect(res.body).toEqual({
        data: null,
        error: {
          status: 400,
          name: 'ValidationError',
          message: 'Invalid token',
          details: {},
        },
      });
    });

    test('Fails on missing token', async () => {
      const res = await rq({
        url: '/admin/renew-token',
        method: 'POST',
        body: {},
      });

      expect(res.statusCode).toBe(400);
      expect(res.body).toEqual({
        data: null,
        error: {
          status: 400,
          message: 'token is a required field',
          name: 'ValidationError',
          details: {
            errors: [
              {
                message: 'token is a required field',
                name: 'ValidationError',
                path: ['token'],
              },
            ],
          },
        },
      });
    });
  });

  describe('GET /registration-info', () => {
    const registrationToken = 'foobar';
    let user;

    beforeAll(async () => {
      const userInfo = {
        email: 'test@strapi.io',
        firstname: 'test',
        lastname: 'strapi',
        roles: [internals.role.id],
        registrationToken,
        isActive: false,
      };

      user = await utils.createUser(userInfo);
    });

    afterAll(async () => {
      await utils.deleteUserById(user.id);
    });

    test('Returns registration info', async () => {
      const res = await rq({
        url: `/admin/registration-info?registrationToken=${registrationToken}`,
        method: 'GET',
        body: {},
      });

      expect(res.statusCode).toBe(200);
      expect(res.body).toEqual({
        data: {
          email: user.email,
          firstname: user.firstname,
          lastname: user.lastname,
        },
      });
    });

    test('Fails on missing registration token', async () => {
      const res = await rq({
        url: '/admin/registration-info',
        method: 'GET',
        body: {},
      });

      expect(res.statusCode).toBe(400);
      expect(res.body).toEqual({
        data: null,
        error: {
          status: 400,
          details: {
            errors: [
              {
                message: 'registrationToken is a required field',
                name: 'ValidationError',
                path: ['registrationToken'],
              },
            ],
          },
          message: 'registrationToken is a required field',
          name: 'ValidationError',
        },
      });
    });

    test('Fails on invalid registration token. Without too much info', async () => {
      const res = await rq({
        url: '/admin/registration-info?registrationToken=ABCD',
        method: 'GET',
        body: {},
      });

      expect(res.statusCode).toBe(400);
      expect(res.body).toEqual({
        data: null,
        error: {
          status: 400,
          name: 'ValidationError',
          message: 'Invalid registrationToken',
          details: {},
        },
      });
    });
  });

  describe('GET /register', () => {
    let user;

    beforeEach(async () => {
      const userInfo = {
        email: 'test@strapi.io',
        firstname: 'test',
        lastname: 'strapi',
        registrationToken: 'foobar',
      };

      user = await utils.createUser(userInfo);
    });

    afterEach(async () => {
      await utils.deleteUserById(user.id);
    });

    test('Fails on missing payload', async () => {
      const res = await rq({
        url: '/admin/register',
        method: 'POST',
        body: {
          userInfo: {},
        },
      });

      expect(res.statusCode).toBe(400);
      expect(res.body).toEqual({
        data: null,
        error: {
          status: 400,
          details: {
            errors: [
              {
                message: 'registrationToken is a required field',
                name: 'ValidationError',
                path: ['registrationToken'],
              },
              {
                message: 'userInfo.firstname is a required field',
                name: 'ValidationError',
                path: ['userInfo', 'firstname'],
              },
              {
                message: 'userInfo.password is a required field',
                name: 'ValidationError',
                path: ['userInfo', 'password'],
              },
            ],
          },
          message: '3 errors occurred',
          name: 'ValidationError',
        },
      });
    });

    test('Fails on invalid password', async () => {
      const res = await rq({
        url: '/admin/register',
        method: 'POST',
        body: {
          registrationToken: user.registrationToken,
          userInfo: {
            firstname: 'test',
            lastname: 'Strapi',
            password: '123',
          },
        },
      });

      expect(res.statusCode).toBe(400);
      expect(res.body).toEqual({
        data: null,
        error: {
          status: 400,
          details: {
            errors: [
              {
                message: 'userInfo.password must be at least 8 characters',
                name: 'ValidationError',
                path: ['userInfo', 'password'],
              },
              {
                message: 'userInfo.password must contain at least one lowercase character',
                name: 'ValidationError',
                path: ['userInfo', 'password'],
              },
              {
                message: 'userInfo.password must contain at least one uppercase character',
                name: 'ValidationError',
                path: ['userInfo', 'password'],
              },
            ],
          },
          message: '3 errors occurred',
          name: 'ValidationError',
        },
      });
    });

    test('Registers user correctly', async () => {
      const userRegistrationInfo = {
        firstname: 'test',
        lastname: 'Strapi',
        password: '1Test2azda3',
      };

      const res = await rq({
        url: '/admin/register',
        method: 'POST',
        body: {
          registrationToken: user.registrationToken,
          userInfo: userRegistrationInfo,
        },
      });

      expect(res.statusCode).toBe(200);
      expect(res.body.data).toMatchObject({
        token: expect.any(String),
        user: {
          email: user.email,
          firstname: 'test',
          lastname: 'Strapi',
        },
      });

      expect(res.body.data.user.password === userRegistrationInfo.password).toBe(false);
    });
  });

  describe('GET /register-admin', () => {
    test('Fails on missing payload', async () => {
      const res = await rq({
        url: '/admin/register-admin',
        method: 'POST',
        body: {},
      });

      expect(res.statusCode).toBe(400);
      expect(res.body).toEqual({
        data: null,
        error: {
          status: 400,
          details: {
            errors: [
              {
                message: 'email is a required field',
                name: 'ValidationError',
                path: ['email'],
              },
              {
                message: 'firstname is a required field',
                name: 'ValidationError',
                path: ['firstname'],
              },
              {
                message: 'password is a required field',
                name: 'ValidationError',
                path: ['password'],
              },
            ],
          },
          message: '3 errors occurred',
          name: 'ValidationError',
        },
      });
    });

    test('Fails on invalid password', async () => {
      const res = await rq({
        url: '/admin/register-admin',
        method: 'POST',
        body: {
          email: 'test@strapi.io',
          firstname: 'test',
          lastname: 'Strapi',
          password: '123',
        },
      });

      expect(res.statusCode).toBe(400);
      expect(res.body).toEqual({
        data: null,
        error: {
          status: 400,
          details: {
            errors: [
              {
                message: 'password must be at least 8 characters',
                name: 'ValidationError',
                path: ['password'],
              },
              {
                message: 'password must contain at least one lowercase character',
                name: 'ValidationError',
                path: ['password'],
              },
              {
                message: 'password must contain at least one uppercase character',
                name: 'ValidationError',
                path: ['password'],
              },
            ],
          },
          message: '3 errors occurred',
          name: 'ValidationError',
        },
      });
    });

    test('Fails if already a user', async () => {
      const userInfo = {
        email: 'test-admin@strapi.io',
        firstname: 'test',
        lastname: 'Strapi',
        password: '1Test2azda3',
      };

      const res = await rq({
        url: '/admin/register-admin',
        method: 'POST',
        body: userInfo,
      });

      expect(res.statusCode).toBe(400);
      expect(res.body).toEqual({
        data: null,
        error: {
          status: 400,
          name: 'ApplicationError',
          message: 'You cannot register a new super admin',
          details: {},
        },
      });
    });
  });

  describe('POST /forgot-password', () => {
    test('Always returns en empty response', async () => {
      global.strapi.admin.services.auth.forgotPassword = jest.fn(() => {});

      const res = await rq({
        url: '/admin/forgot-password',
        method: 'POST',
        body: {
          email: 'admin@strapi.io',
        },
      });

      expect(res.statusCode).toBe(204);
      expect(res.body).toStrictEqual({});

      const nonExistentRes = await rq({
        url: '/admin/forgot-password',
        method: 'POST',
        body: {
          email: 'email-do-not-exist@strapi.io',
        },
      });

      expect(nonExistentRes.statusCode).toBe(204);
      expect(nonExistentRes.body).toStrictEqual({});
    });
  });
});
add use strict Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-09 11:48:49 +02:00			`'use strict';`

Add tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-12 20:46:48 +02:00			`// Helpers.`
Move api tests to root of repo with same structure (#16242) 2023-04-05 10:32:20 +02:00			`const { createAuthRequest } = require('api-tests/request');`
			`const { createStrapiInstance, superAdmin } = require('api-tests/strapi');`
			`const { createUtils } = require('api-tests/utils');`
Add tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-12 20:46:48 +02:00
1st fix pass 2022-08-08 15:50:34 +02:00			`const internals = {`
Fix test Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-07-22 15:17:23 +02:00			`role: null,`
			`};`
Fix PR: Refactor user e2e tests, fix domain logic, add user::deleteOne route 2020-06-04 10:25:02 +02:00
Fix test Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-07-22 15:17:23 +02:00			`describe('Admin Auth End to End', () => {`
First impl (wip) Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-10 14:15:31 +01:00			`let rq;`
			`let strapi;`
			`let utils;`
Fix PR: Refactor user e2e tests, fix domain logic, add user::deleteOne route 2020-06-04 10:25:02 +02:00
Add tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-12 20:46:48 +02:00			`beforeAll(async () => {`
Cleanup Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-30 20:20:36 +01:00			`strapi = await createStrapiInstance();`
First impl (wip) Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-10 14:15:31 +01:00			`rq = await createAuthRequest({ strapi });`
			`utils = createUtils(strapi);`
Fix CE tests for travis (#7218) * Fix CE tests for travis Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> * Start app in CE too Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> * Cleanup Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-07-29 13:24:27 +02:00
Move RBAC into CE 2023-03-06 21:46:45 +01:00			`internals.role = await utils.createRole({`
			`name: 'auth_test_role',`
			`description: 'Only used for auth crud test (api)',`
			`});`
Use a global timeout instead of redefining it everytime 2021-03-26 20:15:38 +01:00			`});`
Fix PR: Refactor user e2e tests, fix domain logic, add user::deleteOne route 2020-06-04 10:25:02 +02:00
			`afterAll(async () => {`
Move RBAC into CE 2023-03-06 21:46:45 +01:00			`await utils.deleteRolesById([internals.role.id]);`
First impl (wip) Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-10 14:15:31 +01:00
			`await strapi.destroy();`
Use a global timeout instead of redefining it everytime 2021-03-26 20:15:38 +01:00			`});`
Add tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-12 20:46:48 +02:00
			`describe('Login', () => {`
Fix PR: Refactor user e2e tests, fix domain logic, add user::deleteOne route 2020-06-04 10:25:02 +02:00			`test('Can connect successfully', async () => {`
Add tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-12 20:46:48 +02:00			`const res = await rq({`
			`url: '/admin/login',`
			`method: 'POST',`
First impl (wip) Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-10 14:15:31 +01:00			`body: superAdmin.loginInfo,`
Add tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-12 20:46:48 +02:00			`});`

			`expect(res.statusCode).toBe(200);`
			`expect(res.body.data).toMatchObject({`
			`token: expect.any(String),`
			`user: {`
			`firstname: expect.stringOrNull(),`
			`lastname: expect.stringOrNull(),`
			`username: expect.stringOrNull(),`
			`email: expect.any(String),`
			`isActive: expect.any(Boolean),`
			`},`
			`});`
			`});`

			`test('Fails on invalid password', async () => {`
			`const res = await rq({`
			`url: '/admin/login',`
			`method: 'POST',`
			`body: {`
First impl (wip) Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-10 14:15:31 +01:00			`...superAdmin.loginInfo,`
Add tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-12 20:46:48 +02:00			`password: 'wrongPassword',`
			`},`
			`});`

			`expect(res.statusCode).toBe(400);`
			`expect(res.body).toEqual({`
refactor error handling 2021-10-20 17:30:05 +02:00			`data: null,`
			`error: {`
			`status: 400,`
			`name: 'ApplicationError',`
			`message: 'Invalid credentials',`
			`details: {},`
			`},`
Add tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-12 20:46:48 +02:00			`});`
			`});`

			`test('Fails on invalid email', async () => {`
			`const res = await rq({`
			`url: '/admin/login',`
			`method: 'POST',`
			`body: {`
			`email: 'non-existent-user@strapi.io',`
			`password: 'pcw123',`
			`},`
			`});`

			`expect(res.statusCode).toBe(400);`
			`expect(res.body).toEqual({`
refactor error handling 2021-10-20 17:30:05 +02:00			`data: null,`
			`error: {`
			`status: 400,`
			`name: 'ApplicationError',`
			`message: 'Invalid credentials',`
			`details: {},`
			`},`
Add tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-12 20:46:48 +02:00			`});`
			`});`

			`test('Fails on missing credentials', async () => {`
			`const res = await rq({`
			`url: '/admin/login',`
			`method: 'POST',`
			`body: {`
			`email: 'non-existent-user@strapi.io',`
			`},`
			`});`

			`expect(res.statusCode).toBe(400);`
			`expect(res.body).toEqual({`
refactor error handling 2021-10-20 17:30:05 +02:00			`data: null,`
			`error: {`
			`status: 400,`
			`name: 'ApplicationError',`
			`message: 'Missing credentials',`
			`details: {},`
			`},`
Add tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-12 20:46:48 +02:00			`});`
			`});`
			`});`

			`describe('Renew token', () => {`
			`test('Renew token', async () => {`
			`const authRes = await rq({`
			`url: '/admin/login',`
			`method: 'POST',`
First impl (wip) Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-10 14:15:31 +01:00			`body: superAdmin.loginInfo,`
Add tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-12 20:46:48 +02:00			`});`

			`expect(authRes.statusCode).toBe(200);`
			`const { token } = authRes.body.data;`

			`const res = await rq({`
			`url: '/admin/renew-token',`
			`method: 'POST',`
			`body: {`
			`token,`
			`},`
			`});`

			`expect(res.statusCode).toBe(200);`
			`expect(res.body.data).toEqual({`
			`token: expect.any(String),`
			`});`
			`});`

			`test('Fails on invalid token', async () => {`
			`const res = await rq({`
			`url: '/admin/renew-token',`
			`method: 'POST',`
			`body: {`
			`token: 'invalid-token',`
			`},`
			`});`

			`expect(res.statusCode).toBe(400);`
			`expect(res.body).toEqual({`
refactor error handling 2021-10-20 17:30:05 +02:00			`data: null,`
			`error: {`
			`status: 400,`
			`name: 'ValidationError',`
			`message: 'Invalid token',`
			`details: {},`
			`},`
Add tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-12 20:46:48 +02:00			`});`
			`});`

			`test('Fails on missing token', async () => {`
			`const res = await rq({`
			`url: '/admin/renew-token',`
			`method: 'POST',`
			`body: {},`
			`});`

			`expect(res.statusCode).toBe(400);`
			`expect(res.body).toEqual({`
refactor error handling 2021-10-20 17:30:05 +02:00			`data: null,`
			`error: {`
			`status: 400,`
			`message: 'token is a required field',`
			`name: 'ValidationError',`
			`details: {`
			`errors: [`
			`{`
			`message: 'token is a required field',`
			`name: 'ValidationError',`
			`path: ['token'],`
			`},`
			`],`
			`},`
			`},`
Add tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-12 20:46:48 +02:00			`});`
			`});`
			`});`
Add registration info route Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 16:07:37 +02:00
			`describe('GET /registration-info', () => {`
First impl (wip) Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-10 14:15:31 +01:00			`const registrationToken = 'foobar';`
			`let user;`

			`beforeAll(async () => {`
			`const userInfo = {`
Add registration info route Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 16:07:37 +02:00			`email: 'test@strapi.io',`
			`firstname: 'test',`
			`lastname: 'strapi',`
First impl (wip) Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-10 14:15:31 +01:00			`roles: [internals.role.id],`
			`registrationToken,`
			`isActive: false,`
Add registration info route Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 16:07:37 +02:00			`};`

First impl (wip) Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-10 14:15:31 +01:00			`user = await utils.createUser(userInfo);`
			`});`

			`afterAll(async () => {`
			`await utils.deleteUserById(user.id);`
			`});`
Add registration info route Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 16:07:37 +02:00
First impl (wip) Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-10 14:15:31 +01:00			`test('Returns registration info', async () => {`
Add registration info route Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 16:07:37 +02:00			`const res = await rq({`
First impl (wip) Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-10 14:15:31 +01:00			url: `/admin/registration-info?registrationToken=${registrationToken}`,
Add registration info route Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 16:07:37 +02:00			`method: 'GET',`
			`body: {},`
			`});`

			`expect(res.statusCode).toBe(200);`
			`expect(res.body).toEqual({`
			`data: {`
			`email: user.email,`
			`firstname: user.firstname,`
			`lastname: user.lastname,`
			`},`
			`});`
			`});`

			`test('Fails on missing registration token', async () => {`
			`const res = await rq({`
			`url: '/admin/registration-info',`
			`method: 'GET',`
			`body: {},`
			`});`

			`expect(res.statusCode).toBe(400);`
			`expect(res.body).toEqual({`
refactor error handling 2021-10-20 17:30:05 +02:00			`data: null,`
			`error: {`
			`status: 400,`
			`details: {`
			`errors: [`
			`{`
			`message: 'registrationToken is a required field',`
			`name: 'ValidationError',`
			`path: ['registrationToken'],`
			`},`
			`],`
			`},`
			`message: 'registrationToken is a required field',`
			`name: 'ValidationError',`
Add QueryError and remove useless code Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 20:08:03 +02:00			`},`
Add registration info route Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 16:07:37 +02:00			`});`
			`});`

			`test('Fails on invalid registration token. Without too much info', async () => {`
			`const res = await rq({`
			`url: '/admin/registration-info?registrationToken=ABCD',`
			`method: 'GET',`
			`body: {},`
			`});`

			`expect(res.statusCode).toBe(400);`
			`expect(res.body).toEqual({`
refactor error handling 2021-10-20 17:30:05 +02:00			`data: null,`
			`error: {`
			`status: 400,`
			`name: 'ValidationError',`
			`message: 'Invalid registrationToken',`
			`details: {},`
			`},`
Add registration info route Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 16:07:37 +02:00			`});`
			`});`
			`});`
Add register route Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 17:16:49 +02:00
			`describe('GET /register', () => {`
First impl (wip) Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-10 14:15:31 +01:00			`let user;`

			`beforeEach(async () => {`
			`const userInfo = {`
			`email: 'test@strapi.io',`
			`firstname: 'test',`
			`lastname: 'strapi',`
			`registrationToken: 'foobar',`
			`};`

			`user = await utils.createUser(userInfo);`
			`});`

			`afterEach(async () => {`
			`await utils.deleteUserById(user.id);`
			`});`

Add register route Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 17:16:49 +02:00			`test('Fails on missing payload', async () => {`
			`const res = await rq({`
			`url: '/admin/register',`
			`method: 'POST',`
			`body: {`
			`userInfo: {},`
			`},`
			`});`

			`expect(res.statusCode).toBe(400);`
			`expect(res.body).toEqual({`
refactor error handling 2021-10-20 17:30:05 +02:00			`data: null,`
			`error: {`
			`status: 400,`
			`details: {`
			`errors: [`
			`{`
			`message: 'registrationToken is a required field',`
			`name: 'ValidationError',`
			`path: ['registrationToken'],`
			`},`
			`{`
			`message: 'userInfo.firstname is a required field',`
			`name: 'ValidationError',`
			`path: ['userInfo', 'firstname'],`
			`},`
			`{`
			`message: 'userInfo.password is a required field',`
			`name: 'ValidationError',`
			`path: ['userInfo', 'password'],`
			`},`
			`],`
			`},`
tests: updated e2e tests 2021-11-16 11:29:57 +01:00			`message: '3 errors occurred',`
refactor error handling 2021-10-20 17:30:05 +02:00			`name: 'ValidationError',`
Add register route Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 17:16:49 +02:00			`},`
			`});`
			`});`

			`test('Fails on invalid password', async () => {`
			`const res = await rq({`
			`url: '/admin/register',`
			`method: 'POST',`
			`body: {`
First impl (wip) Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-10 14:15:31 +01:00			`registrationToken: user.registrationToken,`
Add register route Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 17:16:49 +02:00			`userInfo: {`
			`firstname: 'test',`
			`lastname: 'Strapi',`
			`password: '123',`
			`},`
			`},`
			`});`

			`expect(res.statusCode).toBe(400);`
			`expect(res.body).toEqual({`
refactor error handling 2021-10-20 17:30:05 +02:00			`data: null,`
			`error: {`
			`status: 400,`
			`details: {`
			`errors: [`
			`{`
			`message: 'userInfo.password must be at least 8 characters',`
			`name: 'ValidationError',`
			`path: ['userInfo', 'password'],`
			`},`
			`{`
			`message: 'userInfo.password must contain at least one lowercase character',`
			`name: 'ValidationError',`
			`path: ['userInfo', 'password'],`
			`},`
			`{`
			`message: 'userInfo.password must contain at least one uppercase character',`
			`name: 'ValidationError',`
			`path: ['userInfo', 'password'],`
			`},`
			`],`
			`},`
			`message: '3 errors occurred',`
			`name: 'ValidationError',`
Add register route Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 17:16:49 +02:00			`},`
			`});`
			`});`

			`test('Registers user correctly', async () => {`
First impl (wip) Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-10 14:15:31 +01:00			`const userRegistrationInfo = {`
Add register route Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 17:16:49 +02:00			`firstname: 'test',`
			`lastname: 'Strapi',`
			`password: '1Test2azda3',`
			`};`

			`const res = await rq({`
			`url: '/admin/register',`
			`method: 'POST',`
			`body: {`
First impl (wip) Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-10 14:15:31 +01:00			`registrationToken: user.registrationToken,`
			`userInfo: userRegistrationInfo,`
Add register route Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 17:16:49 +02:00			`},`
			`});`

			`expect(res.statusCode).toBe(200);`
Add QueryError and remove useless code Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 20:08:03 +02:00			`expect(res.body.data).toMatchObject({`
Add register route Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 17:16:49 +02:00			`token: expect.any(String),`
			`user: {`
			`email: user.email,`
Add QueryError and remove useless code Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 20:08:03 +02:00			`firstname: 'test',`
			`lastname: 'Strapi',`
Add register route Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 17:16:49 +02:00			`},`
			`});`

First impl (wip) Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-10 14:15:31 +01:00			`expect(res.body.data.user.password === userRegistrationInfo.password).toBe(false);`
Add register route Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 17:16:49 +02:00			`});`
			`});`
Add admin registeration API Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-22 11:15:06 +02:00
			`describe('GET /register-admin', () => {`
			`test('Fails on missing payload', async () => {`
			`const res = await rq({`
			`url: '/admin/register-admin',`
			`method: 'POST',`
			`body: {},`
			`});`

			`expect(res.statusCode).toBe(400);`
			`expect(res.body).toEqual({`
refactor error handling 2021-10-20 17:30:05 +02:00			`data: null,`
			`error: {`
			`status: 400,`
			`details: {`
			`errors: [`
			`{`
			`message: 'email is a required field',`
			`name: 'ValidationError',`
			`path: ['email'],`
			`},`
			`{`
			`message: 'firstname is a required field',`
			`name: 'ValidationError',`
			`path: ['firstname'],`
			`},`
			`{`
			`message: 'password is a required field',`
			`name: 'ValidationError',`
			`path: ['password'],`
			`},`
			`],`
			`},`
tests: updated e2e tests 2021-11-16 11:29:57 +01:00			`message: '3 errors occurred',`
refactor error handling 2021-10-20 17:30:05 +02:00			`name: 'ValidationError',`
Add admin registeration API Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-22 11:15:06 +02:00			`},`
			`});`
			`});`

			`test('Fails on invalid password', async () => {`
			`const res = await rq({`
			`url: '/admin/register-admin',`
			`method: 'POST',`
			`body: {`
			`email: 'test@strapi.io',`
			`firstname: 'test',`
			`lastname: 'Strapi',`
			`password: '123',`
			`},`
			`});`

			`expect(res.statusCode).toBe(400);`
			`expect(res.body).toEqual({`
refactor error handling 2021-10-20 17:30:05 +02:00			`data: null,`
			`error: {`
			`status: 400,`
			`details: {`
			`errors: [`
			`{`
			`message: 'password must be at least 8 characters',`
			`name: 'ValidationError',`
			`path: ['password'],`
			`},`
			`{`
			`message: 'password must contain at least one lowercase character',`
			`name: 'ValidationError',`
			`path: ['password'],`
			`},`
			`{`
			`message: 'password must contain at least one uppercase character',`
			`name: 'ValidationError',`
			`path: ['password'],`
			`},`
			`],`
			`},`
			`message: '3 errors occurred',`
			`name: 'ValidationError',`
Add admin registeration API Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-22 11:15:06 +02:00			`},`
			`});`
			`});`

			`test('Fails if already a user', async () => {`
			`const userInfo = {`
			`email: 'test-admin@strapi.io',`
			`firstname: 'test',`
			`lastname: 'Strapi',`
			`password: '1Test2azda3',`
			`};`

			`const res = await rq({`
			`url: '/admin/register-admin',`
			`method: 'POST',`
			`body: userInfo,`
			`});`

			`expect(res.statusCode).toBe(400);`
			`expect(res.body).toEqual({`
refactor error handling 2021-10-20 17:30:05 +02:00			`data: null,`
			`error: {`
			`status: 400,`
			`name: 'ApplicationError',`
			`message: 'You cannot register a new super admin',`
			`details: {},`
			`},`
Add admin registeration API Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-22 11:15:06 +02:00			`});`
			`});`
			`});`
Add tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-22 16:01:34 +02:00
			`describe('POST /forgot-password', () => {`
			`test('Always returns en empty response', async () => {`
Chore/tests cleanup (#9857) * Use new jest runner * Set loglevel to fatal * Update snapshots * Remove update option from cli Co-authored-by: Alexandre Bodin <bodin.alex@gmail.com> 2021-03-29 12:33:08 +02:00			`global.strapi.admin.services.auth.forgotPassword = jest.fn(() => {});`

Add tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-22 16:01:34 +02:00			`const res = await rq({`
			`url: '/admin/forgot-password',`
			`method: 'POST',`
			`body: {`
			`email: 'admin@strapi.io',`
			`},`
			`});`

			`expect(res.statusCode).toBe(204);`
First impl (wip) Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-10 14:15:31 +01:00			`expect(res.body).toStrictEqual({});`
Add tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-22 16:01:34 +02:00
			`const nonExistentRes = await rq({`
			`url: '/admin/forgot-password',`
			`method: 'POST',`
			`body: {`
			`email: 'email-do-not-exist@strapi.io',`
			`},`
			`});`

			`expect(nonExistentRes.statusCode).toBe(204);`
First impl (wip) Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-11-10 14:15:31 +01:00			`expect(nonExistentRes.body).toStrictEqual({});`
Add tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-22 16:01:34 +02:00			`});`
			`});`
Add tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-12 20:46:48 +02:00			`});`