mirror of
https://github.com/n8n-io/n8n.git
synced 2024-11-10 14:44:05 -08:00
b895ba438a
refactor(core): Reduce boilterplate code in between tests also cleaned up some imports, and fixed the tests in node.js 20
52 lines
1.8 KiB
TypeScript
52 lines
1.8 KiB
TypeScript
import type { SuperAgentTest } from 'supertest';
|
|
import * as testDb from './shared/testDb';
|
|
import * as utils from './shared/utils/';
|
|
|
|
describe('Auth Middleware', () => {
|
|
const testServer = utils.setupTestServer({ endpointGroups: ['me', 'auth', 'owner', 'users'] });
|
|
|
|
/** Routes requiring a valid `n8n-auth` cookie for a user, either owner or member. */
|
|
const ROUTES_REQUIRING_AUTHENTICATION: Readonly<Array<[string, string]>> = [
|
|
['PATCH', '/me'],
|
|
['PATCH', '/me/password'],
|
|
['POST', '/me/survey'],
|
|
['POST', '/owner/setup'],
|
|
['GET', '/non-existent'],
|
|
];
|
|
|
|
/** Routes requiring a valid `n8n-auth` cookie for an owner. */
|
|
const ROUTES_REQUIRING_AUTHORIZATION: Readonly<Array<[string, string]>> = [
|
|
['POST', '/users'],
|
|
['DELETE', '/users/123'],
|
|
['POST', '/users/123/reinvite'],
|
|
['POST', '/owner/setup'],
|
|
];
|
|
|
|
describe('Routes requiring Authentication', () => {
|
|
ROUTES_REQUIRING_AUTHENTICATION.concat(ROUTES_REQUIRING_AUTHORIZATION).forEach(
|
|
([method, endpoint]) => {
|
|
test(`${method} ${endpoint} should return 401 Unauthorized if no cookie`, async () => {
|
|
const { statusCode } = await testServer.authlessAgent[method.toLowerCase()](endpoint);
|
|
expect(statusCode).toBe(401);
|
|
});
|
|
},
|
|
);
|
|
});
|
|
|
|
describe('Routes requiring Authorization', () => {
|
|
let authMemberAgent: SuperAgentTest;
|
|
beforeAll(async () => {
|
|
const globalMemberRole = await testDb.getGlobalMemberRole();
|
|
const member = await testDb.createUser({ globalRole: globalMemberRole });
|
|
authMemberAgent = testServer.authAgentFor(member);
|
|
});
|
|
|
|
ROUTES_REQUIRING_AUTHORIZATION.forEach(async ([method, endpoint]) => {
|
|
test(`${method} ${endpoint} should return 403 Forbidden for member`, async () => {
|
|
const { statusCode } = await authMemberAgent[method.toLowerCase()](endpoint);
|
|
expect(statusCode).toBe(403);
|
|
});
|
|
});
|
|
});
|
|
});
|