n8n/packages/cli/test/integration/saml/saml.api.test.ts

import type { SuperAgentTest } from 'supertest';
import config from '@/config';
import type { User } from '@db/entities/User';
import { setSamlLoginEnabled } from '@/sso/saml/samlHelpers';
import { setCurrentAuthenticationMethod } from '@/sso/ssoHelpers';
import { randomEmail, randomName, randomValidPassword } from '../shared/random';
import * as testDb from '../shared/testDb';
import * as utils from '../shared/utils';

let owner: User;
let authOwnerAgent: SuperAgentTest;

function enableSaml(enable: boolean) {
	setSamlLoginEnabled(enable);
	setCurrentAuthenticationMethod(enable ? 'saml' : 'email');
	config.set('enterprise.features.saml', enable);
}

beforeAll(async () => {
	const app = await utils.initTestServer({ endpointGroups: ['me'] });
	owner = await testDb.createOwner();
	authOwnerAgent = utils.createAuthAgent(app)(owner);
});

// beforeEach(async () => {
// 	await testDb.truncate(['User']);
// });

afterAll(async () => {
	await testDb.terminate();
});

describe('Instance owner', () => {
	describe('PATCH /me', () => {
		test('should succeed with valid inputs', async () => {
			enableSaml(false);
			await authOwnerAgent
				.patch('/me')
				.send({
					email: randomEmail(),
					firstName: randomName(),
					lastName: randomName(),
					password: randomValidPassword(),
				})
				.expect(200);
		});

		test('should throw BadRequestError if email is changed when SAML is enabled', async () => {
			enableSaml(true);
			await authOwnerAgent
				.patch('/me')
				.send({
					email: randomEmail(),
					firstName: randomName(),
					lastName: randomName(),
				})
				.expect(400, { code: 400, message: 'SAML user may not change their email' });
		});
	});

	describe('PATCH /password', () => {
		test('should throw BadRequestError if password is changed when SAML is enabled', async () => {
			enableSaml(true);
			await authOwnerAgent
				.patch('/me/password')
				.send({
					password: randomValidPassword(),
				})
				.expect(400, {
					code: 400,
					message: 'With SAML enabled, users need to use their SAML provider to change passwords',
				});
		});
	});
});
ci: Refactor cli tests to speed up CI (no-changelog) (#5718) * ci: Refactor cli tests to speed up CI (no-changelog) * upgrade jest to address memory leaks 2023-03-17 09:24:05 -07:00			`import type { SuperAgentTest } from 'supertest';`
feat(core): Limit user changes when saml is enabled (#5577) * consolidate SSO settings * update saml settings * fix type error * limit user changes when saml is enabled * add test 2023-03-03 01:05:30 -08:00			`import config from '@/config';`
ci: Refactor cli tests to speed up CI (no-changelog) (#5718) * ci: Refactor cli tests to speed up CI (no-changelog) * upgrade jest to address memory leaks 2023-03-17 09:24:05 -07:00			`import type { User } from '@db/entities/User';`
			`import { setSamlLoginEnabled } from '@/sso/saml/samlHelpers';`
			`import { setCurrentAuthenticationMethod } from '@/sso/ssoHelpers';`
feat(core): Limit user changes when saml is enabled (#5577) * consolidate SSO settings * update saml settings * fix type error * limit user changes when saml is enabled * add test 2023-03-03 01:05:30 -08:00			`import { randomEmail, randomName, randomValidPassword } from '../shared/random';`
			`import * as testDb from '../shared/testDb';`
			`import * as utils from '../shared/utils';`

ci: Refactor cli tests to speed up CI (no-changelog) (#5718) * ci: Refactor cli tests to speed up CI (no-changelog) * upgrade jest to address memory leaks 2023-03-17 09:24:05 -07:00			`let owner: User;`
			`let authOwnerAgent: SuperAgentTest;`
feat(core): Limit user changes when saml is enabled (#5577) * consolidate SSO settings * update saml settings * fix type error * limit user changes when saml is enabled * add test 2023-03-03 01:05:30 -08:00
			`function enableSaml(enable: boolean) {`
			`setSamlLoginEnabled(enable);`
			`setCurrentAuthenticationMethod(enable ? 'saml' : 'email');`
			`config.set('enterprise.features.saml', enable);`
			`}`

			`beforeAll(async () => {`
ci: Refactor cli tests to speed up CI (no-changelog) (#5718) * ci: Refactor cli tests to speed up CI (no-changelog) * upgrade jest to address memory leaks 2023-03-17 09:24:05 -07:00			`const app = await utils.initTestServer({ endpointGroups: ['me'] });`
			`owner = await testDb.createOwner();`
			`authOwnerAgent = utils.createAuthAgent(app)(owner);`
feat(core): Limit user changes when saml is enabled (#5577) * consolidate SSO settings * update saml settings * fix type error * limit user changes when saml is enabled * add test 2023-03-03 01:05:30 -08:00			`});`

ci: Refactor cli tests to speed up CI (no-changelog) (#5718) * ci: Refactor cli tests to speed up CI (no-changelog) * upgrade jest to address memory leaks 2023-03-17 09:24:05 -07:00			`// beforeEach(async () => {`
			`// await testDb.truncate(['User']);`
			`// });`
feat(core): Limit user changes when saml is enabled (#5577) * consolidate SSO settings * update saml settings * fix type error * limit user changes when saml is enabled * add test 2023-03-03 01:05:30 -08:00
			`afterAll(async () => {`
			`await testDb.terminate();`
			`});`

test(core): Use instance owner instead of owner shell for SAML tests (no-changelog) (#5706) Use instance owner instead of owner shell 2023-03-16 07:34:28 -07:00			`describe('Instance owner', () => {`
ci: Refactor cli tests to speed up CI (no-changelog) (#5718) * ci: Refactor cli tests to speed up CI (no-changelog) * upgrade jest to address memory leaks 2023-03-17 09:24:05 -07:00			`describe('PATCH /me', () => {`
			`test('should succeed with valid inputs', async () => {`
			`enableSaml(false);`
			`await authOwnerAgent`
			`.patch('/me')`
			`.send({`
			`email: randomEmail(),`
			`firstName: randomName(),`
			`lastName: randomName(),`
			`password: randomValidPassword(),`
			`})`
			`.expect(200);`
feat(core): Limit user changes when saml is enabled (#5577) * consolidate SSO settings * update saml settings * fix type error * limit user changes when saml is enabled * add test 2023-03-03 01:05:30 -08:00			`});`

ci: Refactor cli tests to speed up CI (no-changelog) (#5718) * ci: Refactor cli tests to speed up CI (no-changelog) * upgrade jest to address memory leaks 2023-03-17 09:24:05 -07:00			`test('should throw BadRequestError if email is changed when SAML is enabled', async () => {`
			`enableSaml(true);`
			`await authOwnerAgent`
			`.patch('/me')`
			`.send({`
			`email: randomEmail(),`
			`firstName: randomName(),`
			`lastName: randomName(),`
			`})`
			`.expect(400, { code: 400, message: 'SAML user may not change their email' });`
feat(core): Limit user changes when saml is enabled (#5577) * consolidate SSO settings * update saml settings * fix type error * limit user changes when saml is enabled * add test 2023-03-03 01:05:30 -08:00			`});`
			`});`

ci: Refactor cli tests to speed up CI (no-changelog) (#5718) * ci: Refactor cli tests to speed up CI (no-changelog) * upgrade jest to address memory leaks 2023-03-17 09:24:05 -07:00			`describe('PATCH /password', () => {`
			`test('should throw BadRequestError if password is changed when SAML is enabled', async () => {`
			`enableSaml(true);`
			`await authOwnerAgent`
			`.patch('/me/password')`
			`.send({`
			`password: randomValidPassword(),`
			`})`
			`.expect(400, {`
			`code: 400,`
			`message: 'With SAML enabled, users need to use their SAML provider to change passwords',`
			`});`
feat(core): Limit user changes when saml is enabled (#5577) * consolidate SSO settings * update saml settings * fix type error * limit user changes when saml is enabled * add test 2023-03-03 01:05:30 -08:00			`});`
			`});`
			`});`