Sign upLogin

huridocs/uwazi

View on GitHub
Star
app/api/auth2fa/specs/routes.spec.js

Summary

Maintainability
A
0 mins
Test Coverage
/** @format */

import 'api/utils/jasmineHelpers';
import instrumentRoutes from 'api/utils/instrumentRoutes';
import * as usersUtils from 'api/auth2fa/usersUtils';

import auth2faRoutes from '../routes';

describe('Auth2fa Routes', () => {
  let routes;
  let req;
  let user;
  const success = { success: true };
  const incorrectUser = new Error('Incorrect user passed');

  beforeEach(() => {
    routes = instrumentRoutes(auth2faRoutes);
    jest.spyOn(usersUtils, 'setSecret').mockImplementation(() => {});
    jest.spyOn(usersUtils, 'enable2fa').mockImplementation(() => {});
    jest.spyOn(usersUtils, 'reset2fa').mockImplementation(() => {});
  });

  const validateAuthorizationAndValidation = (path, roles) => {
    expect(routes._post(path, req)).toNeedAuthorization(roles);
    expect(routes.post.validation(path)).toMatchSnapshot();
  };

  const setSecretMock = passedUser => {
    const respose = { otpauth: 'otpauthURL', secret: 'secretKey' };
    return passedUser === user ? Promise.resolve(respose) : Promise.reject(incorrectUser);
  };

  const enable2faMock = (passedUser, passedToken) => {
    const enabled = passedUser === user && passedToken === 'correctToken';
    return enabled ? Promise.resolve(success) : Promise.reject(incorrectUser);
  };

  const reset2faMock = passedUser =>
    passedUser._id === 'userId' ? Promise.resolve(success) : Promise.reject(incorrectUser);

  const expectResponseToMatch = async (util, url, mock) => {
    usersUtils[util].mockImplementation(mock);
    const response = await routes.post(url, req);
    expect(response).toMatchSnapshot();
  };

  const expectNextWithError = async (util, url) => {
    const expectedError = new Error('Error passed by usersUtils');
    usersUtils[util].mockImplementation(() => Promise.reject(expectedError));

    const next = jest.fn();
    try {
      await routes.post(url, req, {}, next);
      fail('Should call next');
    } catch (err) {
      expect(next).toHaveBeenCalledWith(expectedError);
    }
  };

  const validateRoute = async (util, url, mock, roles) => {
    validateAuthorizationAndValidation(url, roles);
    await expectResponseToMatch(util, url, mock);
    expectNextWithError(util, url);
  };

  describe('auth2fa-secret', () => {
    beforeEach(() => {
      user = { username: 'admin' };
      req = { body: {}, user };
    });

    it('should conform the route with auth, validation, respond correctly and call next on error', async () => {
      await validateRoute('setSecret', '/api/auth2fa-secret', setSecretMock, ['admin', 'editor']);
    });
  });

  describe('auth2fa-enable', () => {
    beforeEach(() => {
      user = { username: 'admin' };
      req = { body: { token: 'correctToken' }, user };
    });

    it('should conform the route with auth, validation, respond correctly and call next on error', async () => {
      await validateRoute('enable2fa', '/api/auth2fa-enable', enable2faMock, ['admin', 'editor']);
    });
  });

  describe('auth2fa-reset', () => {
    beforeEach(() => {
      req = { body: { _id: 'userId' } };
    });

    it('should conform the route with auth, validation, respond correctly and call next on error', async () => {
      await validateRoute('reset2fa', '/api/auth2fa-reset', reset2faMock, ['admin']);
    });
  });
});