IT4Change/Ocelot-Social
3
0
Fork 0
mirror of https://github.com/IT4Change/Ocelot-Social.git synced 2025-12-13 07:45:56 +00:00
Code Issues Packages Projects Releases Wiki Activity

Backend test for query "publicKey" to asure that "privatKey" is generated

Browse Source 
Minor approofments.
This commit is contained in:
Wolfgang Huß 2019-04-12 14:30:04 +02:00
parent 95a0567e69
commit b007015eeb
1 changed files with 41 additions and 18 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

47
backend/src/resolvers/user_management.spec.js
View File

@ -312,19 +312,17 @@ describe('change password', () => {
}) })
describe('do not expose private RSA key', () => { describe('do not expose private RSA key', () => {
let headers
let client let client
const queryUserPrivateKey = gql`
const queryUser = () => {
return gql`
query($queriedUserSlug: String) { query($queriedUserSlug: String) {
User(slug: $queriedUserSlug) { User(slug: $queriedUserSlug) {
id id
privateKey privateKey
} }
}` }`
}
const action = async () => { const actionGenUserWithKeys = async () => {
// Generate user with "privateKey" via 'CreateUser' mutation instead of using the factories "factory.create('User', {...})", see above. // Generate user with "privateKey" via 'CreateUser' mutation instead of using the factories "factory.create('User', {...})", see above.
const variables = { const variables = {
id: 'bcb2d923-f3af-479e-9f00-61b12e864667', id: 'bcb2d923-f3af-479e-9f00-61b12e864667',
@ -346,22 +344,47 @@ describe('do not expose private RSA key', () => {
it('throws "Not Authorised!"', async () => { it('throws "Not Authorised!"', async () => {
client = new GraphQLClient(host) client = new GraphQLClient(host)
await action() await actionGenUserWithKeys()
await expect( await expect(
client.request(queryUser(), { queriedUserSlug: 'apfel-strudel' }) client.request(queryUserPrivateKey, { queriedUserSlug: 'apfel-strudel' })
).rejects.toThrow('Not Authorised') ).rejects.toThrow('Not Authorised')
}) })
}) })
// authenticate
beforeEach(async () => {
headers = await login({ email: 'test@example.org', password: '1234' })
client = new GraphQLClient(host, { headers })
})
describe('authenticated query of "privateKey"', () => { describe('authenticated query of "privateKey"', () => {
it('throws "Not Authorised!"', async () => { it('throws "Not Authorised!"', async () => {
const headers = await login({ email: 'test@example.org', password: '1234' }) await actionGenUserWithKeys()
client = new GraphQLClient(host, { headers })
await action()
await expect( await expect(
client.request(queryUser(), { queriedUserSlug: 'apfel-strudel' }) client.request(queryUserPrivateKey, { queriedUserSlug: 'apfel-strudel' })
).rejects.toThrow('Not Authorised') ).rejects.toThrow('Not Authorised')
}) })
}) })
describe('authenticated query of "publicKey". To asure generation of "privateKey" is garanteed', () => {
it('throws "Not Authorised!"', async () => {
const queryUserPuplicKey = gql`
query($queriedUserSlug: String) {
User(slug: $queriedUserSlug) {
id
publicKey
}
}`
await actionGenUserWithKeys()
await expect(
await client.request(queryUserPuplicKey, { queriedUserSlug: 'apfel-strudel' })
).toEqual(expect.objectContaining({
User: [{
id: 'bcb2d923-f3af-479e-9f00-61b12e864667',
publicKey: expect.any(String)
}]
}))
})
})
}) })