ocelot-Social-Community/Ocelot-Social
1
0
Fork 0
mirror of https://github.com/Ocelot-Social-Community/Ocelot-Social.git synced 2025-12-13 07:46:06 +00:00
Code Issues Packages Projects Releases Wiki Activity

test specs clear

Browse Source
This commit is contained in:
ogerly 2020-08-03 15:13:55 +02:00
parent d2a43cecd7
commit 388331f5ae
1 changed files with 499 additions and 561 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

718
backend/src/schema/resolvers/users.spec.js
View File

@ -18,7 +18,7 @@ let variables
const driver = getDriver() const driver = getDriver()
const neode = getNeode() const neode = getNeode()
const deleteUserMutation = gql` const deleteUserMutation = gql `
mutation($id: ID!, $resource: [Deletable]) { mutation($id: ID!, $resource: [Deletable]) {
DeleteUser(id: $id, resource: $resource) { DeleteUser(id: $id, resource: $resource) {
id id
@ -61,103 +61,32 @@ beforeAll(() => {
mutate = createTestClient(server).mutate mutate = createTestClient(server).mutate
}) })
beforeEach(async () => { beforeEach(async() => {
await cleanDatabase() await cleanDatabase()
}) })
describe('Delete a User as another user', () => {
beforeEach(async () => {
variables = { id: ' u343', resource: [] }
user = await Factory.build('user', {
name: 'My name should be deleted',
about: 'along with my about',
id: 'u343',
})
})
beforeEach(async () => {
anotherUser = await Factory.build(
'user',
{
role: 'user',
},
{
email: 'user@example.org',
password: '1234',
},
)
authenticatedUser = await anotherUser.toJson()
})
it("an ordinary user has no authorization to delete another user's account", async () => {
const { errors } = await mutate({ mutation: deleteUserMutation, variables })
expect(errors[0]).toHaveProperty('message', 'Not Authorised!')
})
})
describe('Delete a User as moderator', () => {
beforeEach(async () => {
variables = { id: ' u343', resource: [] }
user = await Factory.build('user', {
name: 'My name should be deleted',
about: 'along with my about',
id: 'u343',
})
})
beforeEach(async () => {
moderator = await Factory.build(
'user',
{
role: 'moderator',
},
{
email: 'moderator@example.org',
password: '1234',
},
)
authenticatedUser = await moderator.toJson()
})
it('moderator is not allowed to delete other user accounts', async () => {
const { errors } = await mutate({ mutation: deleteUserMutation, variables })
expect(errors[0]).toHaveProperty('message', 'Not Authorised!')
})
})
describe('User', () => { describe('User', () => {
describe('query by email address', () => { describe('query by email address', () => {
beforeEach(async () => { beforeEach(async() => {
await Factory.build('user', { name: 'Johnny' }, { email: 'any-email-address@example.org' }) await Factory.build('user', { name: 'Johnny' }, { email: 'any-email-address@example.org' })
}) })
const userQuery = gql` const userQuery = gql `query($email: String) { User(email: $email) { name } }`
query($email: String) {
User(email: $email) {
name
}
}
`
const variables = { email: 'any-email-address@example.org' } const variables = { email: 'any-email-address@example.org' }
it('is forbidden', async () => { it('is forbidden', async() => {
await expect(query({ query: userQuery, variables })).resolves.toMatchObject({ await expect(query({ query: userQuery, variables })).resolves.toMatchObject({
errors: [{ message: 'Not Authorised!' }], errors: [{ message: 'Not Authorised!' }],
}) })
}) })
describe('as admin', () => { describe('as admin', () => {
beforeEach(async () => { beforeEach(async() => {
const admin = await Factory.build( const admin = await Factory.build(
'user', 'user', {
{
role: 'admin', role: 'admin',
}, }, {
{
email: 'admin@example.org', email: 'admin@example.org',
password: '1234', password: '1234',
}, },
@ -165,14 +94,14 @@ describe('User', () => {
authenticatedUser = await admin.toJson() authenticatedUser = await admin.toJson()
}) })
it('is permitted', async () => { it('is permitted', async() => {
await expect(query({ query: userQuery, variables })).resolves.toMatchObject({ await expect(query({ query: userQuery, variables })).resolves.toMatchObject({
data: { User: [{ name: 'Johnny' }] }, data: { User: [{ name: 'Johnny' }] },
errors: undefined, errors: undefined,
}) })
}) })
it('non-existing email address, issue #2294', async () => { it('non-existing email address, issue #2294', async() => {
// see: https://github.com/Human-Connection/Human-Connection/issues/2294 // see: https://github.com/Human-Connection/Human-Connection/issues/2294
await expect( await expect(
query({ query({
@ -190,302 +119,19 @@ describe('User', () => {
}) })
}) })
describe('Delete a User as admin', () => {
beforeEach(async () => {
variables = { id: ' u343', resource: [] }
user = await Factory.build('user', {
name: 'My name should be deleted',
about: 'along with my about',
id: 'u343',
})
})
describe('authenticated as Admin', () => {
beforeEach(async () => {
admin = await Factory.build(
'user',
{
role: 'admin',
},
{
email: 'admin@example.org',
password: '1234',
},
)
authenticatedUser = await admin.toJson()
})
describe('deleting a user account', () => {
beforeEach(() => {
variables = { ...variables, id: 'u343' }
})
describe('given posts and comments', () => {
beforeEach(async () => {
await Factory.build('category', {
id: 'cat9',
name: 'Democracy & Politics',
icon: 'university',
})
await Factory.build(
'post',
{
id: 'p139',
content: 'Post by user u343',
},
{
author: user,
categoryIds,
},
)
await Factory.build(
'comment',
{
id: 'c155',
content: 'Comment by user u343',
},
{
author: user,
},
)
await Factory.build(
'comment',
{
id: 'c156',
content: "A comment by someone else on user u343's post",
},
{
postId: 'p139',
},
)
})
it("deletes account, but doesn't delete posts or comments by default", async () => {
const expectedResponse = {
data: {
DeleteUser: {
id: 'u343',
name: 'UNAVAILABLE',
about: 'UNAVAILABLE',
deleted: true,
contributions: [
{
id: 'p139',
content: 'Post by user u343',
contentExcerpt: 'Post by user u343',
deleted: false,
comments: [
{
id: 'c156',
content: "A comment by someone else on user u343's post",
contentExcerpt: "A comment by someone else on user u343's post",
deleted: false,
},
],
},
],
comments: [
{
id: 'c155',
content: 'Comment by user u343',
contentExcerpt: 'Comment by user u343',
deleted: false,
},
],
},
},
errors: undefined,
}
await expect(mutate({ mutation: deleteUserMutation, variables })).resolves.toMatchObject(
expectedResponse,
)
})
describe('deletion of all post requested', () => {
beforeEach(() => {
variables = { ...variables, resource: ['Post'] }
})
it('on request', async () => {
const expectedResponse = {
data: {
DeleteUser: {
id: 'u343',
name: 'UNAVAILABLE',
about: 'UNAVAILABLE',
deleted: true,
contributions: [
{
id: 'p139',
content: 'UNAVAILABLE',
contentExcerpt: 'UNAVAILABLE',
deleted: true,
comments: [
{
id: 'c156',
content: 'UNAVAILABLE',
contentExcerpt: 'UNAVAILABLE',
deleted: true,
},
],
},
],
comments: [
{
id: 'c155',
content: 'Comment by user u343',
contentExcerpt: 'Comment by user u343',
deleted: false,
},
],
},
},
errors: undefined,
}
await expect(
mutate({ mutation: deleteUserMutation, variables }),
).resolves.toMatchObject(expectedResponse)
})
it('deletes user avatar and post hero images', async () => {
await expect(neode.all('Image')).resolves.toHaveLength(22)
await mutate({ mutation: deleteUserMutation, variables })
await expect(neode.all('Image')).resolves.toHaveLength(20)
})
})
describe('deletion of all comments requested', () => {
beforeEach(() => {
variables = { ...variables, resource: ['Comment'] }
})
it('marks comments as deleted', async () => {
const expectedResponse = {
data: {
DeleteUser: {
id: 'u343',
name: 'UNAVAILABLE',
about: 'UNAVAILABLE',
deleted: true,
contributions: [
{
id: 'p139',
content: 'Post by user u343',
contentExcerpt: 'Post by user u343',
deleted: false,
comments: [
{
id: 'c156',
content: "A comment by someone else on user u343's post",
contentExcerpt: "A comment by someone else on user u343's post",
deleted: false,
},
],
},
],
comments: [
{
id: 'c155',
content: 'UNAVAILABLE',
contentExcerpt: 'UNAVAILABLE',
deleted: true,
},
],
},
},
errors: undefined,
}
await expect(
mutate({ mutation: deleteUserMutation, variables }),
).resolves.toMatchObject(expectedResponse)
})
})
describe('deletion of all posts and comments requested', () => {
beforeEach(() => {
variables = { ...variables, resource: ['Comment', 'Post'] }
})
it('marks posts and comments as deleted', async () => {
const expectedResponse = {
data: {
DeleteUser: {
id: 'u343',
name: 'UNAVAILABLE',
about: 'UNAVAILABLE',
deleted: true,
contributions: [
{
id: 'p139',
content: 'UNAVAILABLE',
contentExcerpt: 'UNAVAILABLE',
deleted: true,
comments: [
{
id: 'c156',
content: 'UNAVAILABLE',
contentExcerpt: 'UNAVAILABLE',
deleted: true,
},
],
},
],
comments: [
{
id: 'c155',
content: 'UNAVAILABLE',
contentExcerpt: 'UNAVAILABLE',
deleted: true,
},
],
},
},
errors: undefined,
}
await expect(
mutate({ mutation: deleteUserMutation, variables }),
).resolves.toMatchObject(expectedResponse)
})
})
})
describe('connected `EmailAddress` nodes', () => {
it('will be removed completely', async () => {
await expect(neode.all('EmailAddress')).resolves.toHaveLength(2)
await mutate({ mutation: deleteUserMutation, variables })
await expect(neode.all('EmailAddress')).resolves.toHaveLength(1)
})
})
describe('connected `SocialMedia` nodes', () => {
beforeEach(async () => {
const socialMedia = await Factory.build('socialMedia')
await socialMedia.relateTo(user, 'ownedBy')
})
it('will be removed completely', async () => {
await expect(neode.all('SocialMedia')).resolves.toHaveLength(1)
await mutate({ mutation: deleteUserMutation, variables })
await expect(neode.all('SocialMedia')).resolves.toHaveLength(0)
})
})
})
})
})
describe('UpdateUser', () => { describe('UpdateUser', () => {
let variables let variables
beforeEach(async () => { beforeEach(async() => {
variables = { variables = {
id: 'u47', id: 'u47',
name: 'John Doughnut', name: 'John Doughnut',
} }
}) })
const updateUserMutation = gql` const updateUserMutation = gql `
mutation( mutation(
$id: ID! $id: ID!
$name: String $name: String
@ -505,32 +151,27 @@ describe('UpdateUser', () => {
locationName locationName
} }
} }
` `
beforeEach(async() => {
beforeEach(async () => {
user = await Factory.build( user = await Factory.build(
'user', 'user', {
{
id: 'u47', id: 'u47',
name: 'John Doe', name: 'John Doe',
termsAndConditionsAgreedVersion: null, termsAndConditionsAgreedVersion: null,
termsAndConditionsAgreedAt: null, termsAndConditionsAgreedAt: null,
allowEmbedIframes: false, allowEmbedIframes: false,
}, }, {
{
email: 'user@example.org', email: 'user@example.org',
}, },
) )
}) })
describe('as another user', () => { describe('as another user', () => {
beforeEach(async () => { beforeEach(async() => {
const someoneElse = await Factory.build( const someoneElse = await Factory.build(
'user', 'user', {
{
name: 'James Doe', name: 'James Doe',
}, }, {
{
email: 'someone-else@example.org', email: 'someone-else@example.org',
}, },
) )
@ -538,18 +179,18 @@ describe('UpdateUser', () => {
authenticatedUser = await someoneElse.toJson() authenticatedUser = await someoneElse.toJson()
}) })
it('is not allowed to change other user accounts', async () => { it('is not allowed to change other user accounts', async() => {
const { errors } = await mutate({ mutation: updateUserMutation, variables }) const { errors } = await mutate({ mutation: updateUserMutation, variables })
expect(errors[0]).toHaveProperty('message', 'Not Authorised!') expect(errors[0]).toHaveProperty('message', 'Not Authorised!')
}) })
}) })
describe('as the same user', () => { describe('as the same user', () => {
beforeEach(async () => { beforeEach(async() => {
authenticatedUser = await user.toJson() authenticatedUser = await user.toJson()
}) })
it('updates the name', async () => { it('updates the name', async() => {
const expected = { const expected = {
data: { data: {
UpdateUser: { UpdateUser: {
@ -565,10 +206,10 @@ describe('UpdateUser', () => {
}) })
describe('given a new agreed version of terms and conditions', () => { describe('given a new agreed version of terms and conditions', () => {
beforeEach(async () => { beforeEach(async() => {
variables = { ...variables, termsAndConditionsAgreedVersion: '0.0.2' } variables = {...variables, termsAndConditionsAgreedVersion: '0.0.2' }
}) })
it('update termsAndConditionsAgreedVersion', async () => { it('update termsAndConditionsAgreedVersion', async() => {
const expected = { const expected = {
data: { data: {
UpdateUser: expect.objectContaining({ UpdateUser: expect.objectContaining({
@ -586,10 +227,10 @@ describe('UpdateUser', () => {
}) })
describe('given any attribute other than termsAndConditionsAgreedVersion', () => { describe('given any attribute other than termsAndConditionsAgreedVersion', () => {
beforeEach(async () => { beforeEach(async() => {
variables = { ...variables, name: 'any name' } variables = {...variables, name: 'any name' }
}) })
it('update termsAndConditionsAgreedVersion', async () => { it('update termsAndConditionsAgreedVersion', async() => {
const expected = { const expected = {
data: { data: {
UpdateUser: expect.objectContaining({ UpdateUser: expect.objectContaining({
@ -606,7 +247,7 @@ describe('UpdateUser', () => {
}) })
}) })
it('rejects if version of terms and conditions has wrong format', async () => { it('rejects if version of terms and conditions has wrong format', async() => {
variables = { variables = {
...variables, ...variables,
termsAndConditionsAgreedVersion: 'invalid version format', termsAndConditionsAgreedVersion: 'invalid version format',
@ -615,8 +256,8 @@ describe('UpdateUser', () => {
expect(errors[0]).toHaveProperty('message', 'Invalid version format!') expect(errors[0]).toHaveProperty('message', 'Invalid version format!')
}) })
it('supports updating location', async () => { it('supports updating location', async() => {
variables = { ...variables, locationName: 'Hamburg, New Jersey, United States of America' } variables = {...variables, locationName: 'Hamburg, New Jersey, United States of America' }
await expect(mutate({ mutation: updateUserMutation, variables })).resolves.toMatchObject({ await expect(mutate({ mutation: updateUserMutation, variables })).resolves.toMatchObject({
data: { UpdateUser: { locationName: 'Hamburg, New Jersey, United States of America' } }, data: { UpdateUser: { locationName: 'Hamburg, New Jersey, United States of America' } },
errors: undefined, errors: undefined,
@ -624,3 +265,300 @@ describe('UpdateUser', () => {
}) })
}) })
}) })
describe('Delete a user', () => {
beforeEach(async() => {
variables = { id: ' u343', resource: [] }
user = await Factory.build('user', {
name: 'My name should be deleted',
about: 'along with my about',
id: 'u343',
})
})
describe('as another user', () => {
beforeEach(async() => {
anotherUser = await Factory.build(
'user', {
role: 'user',
}, {
email: 'user@example.org',
password: '1234',
},
)
authenticatedUser = await anotherUser.toJson()
})
it("an ordinary user has no authorization to delete another user's account", async() => {
const { errors } = await mutate({ mutation: deleteUserMutation, variables })
expect(errors[0]).toHaveProperty('message', 'Not Authorised!')
})
})
describe('as moderator', () => {
beforeEach(async() => {
moderator = await Factory.build(
'user', {
role: 'moderator',
}, {
email: 'moderator@example.org',
password: '1234',
},
)
authenticatedUser = await moderator.toJson()
})
it('moderator is not allowed to delete other user accounts', async() => {
const { errors } = await mutate({ mutation: deleteUserMutation, variables })
expect(errors[0]).toHaveProperty('message', 'Not Authorised!')
})
})
describe('as admin', () => {
describe('authenticated as Admin', () => {
beforeEach(async() => {
admin = await Factory.build(
'user', {
role: 'admin',
}, {
email: 'admin@example.org',
password: '1234',
},
)
authenticatedUser = await admin.toJson()
})
describe('deleting a user account', () => {
beforeEach(() => {
variables = {...variables, id: 'u343' }
})
describe('given posts and comments', () => {
beforeEach(async() => {
await Factory.build('category', {
id: 'cat9',
name: 'Democracy & Politics',
icon: 'university',
})
await Factory.build(
'post', {
id: 'p139',
content: 'Post by user u343',
}, {
author: user,
categoryIds,
},
)
await Factory.build(
'comment', {
id: 'c155',
content: 'Comment by user u343',
}, {
author: user,
},
)
await Factory.build(
'comment', {
id: 'c156',
content: "A comment by someone else on user u343's post",
}, {
postId: 'p139',
},
)
})
it("deletes account, but doesn't delete posts or comments by default", async() => {
const expectedResponse = {
data: {
DeleteUser: {
id: 'u343',
name: 'UNAVAILABLE',
about: 'UNAVAILABLE',
deleted: true,
contributions: [{
id: 'p139',
content: 'Post by user u343',
contentExcerpt: 'Post by user u343',
deleted: false,
comments: [{
id: 'c156',
content: "A comment by someone else on user u343's post",
contentExcerpt: "A comment by someone else on user u343's post",
deleted: false,
}, ],
}, ],
comments: [{
id: 'c155',
content: 'Comment by user u343',
contentExcerpt: 'Comment by user u343',
deleted: false,
}, ],
},
},
errors: undefined,
}
await expect(mutate({ mutation: deleteUserMutation, variables })).resolves.toMatchObject(
expectedResponse,
)
})
describe('deletion of all post requested', () => {
beforeEach(() => {
variables = {...variables, resource: ['Post'] }
})
it('on request', async() => {
const expectedResponse = {
data: {
DeleteUser: {
id: 'u343',
name: 'UNAVAILABLE',
about: 'UNAVAILABLE',
deleted: true,
contributions: [{
id: 'p139',
content: 'UNAVAILABLE',
contentExcerpt: 'UNAVAILABLE',
deleted: true,
comments: [{
id: 'c156',
content: 'UNAVAILABLE',
contentExcerpt: 'UNAVAILABLE',
deleted: true,
}, ],
}, ],
comments: [{
id: 'c155',
content: 'Comment by user u343',
contentExcerpt: 'Comment by user u343',
deleted: false,
}, ],
},
},
errors: undefined,
}
await expect(
mutate({ mutation: deleteUserMutation, variables }),
).resolves.toMatchObject(expectedResponse)
})
it('deletes user avatar and post hero images', async() => {
await expect(neode.all('Image')).resolves.toHaveLength(22)
await mutate({ mutation: deleteUserMutation, variables })
await expect(neode.all('Image')).resolves.toHaveLength(20)
})
})
describe('deletion of all comments requested', () => {
beforeEach(() => {
variables = {...variables, resource: ['Comment'] }
})
it('marks comments as deleted', async() => {
const expectedResponse = {
data: {
DeleteUser: {
id: 'u343',
name: 'UNAVAILABLE',
about: 'UNAVAILABLE',
deleted: true,
contributions: [{
id: 'p139',
content: 'Post by user u343',
contentExcerpt: 'Post by user u343',
deleted: false,
comments: [{
id: 'c156',
content: "A comment by someone else on user u343's post",
contentExcerpt: "A comment by someone else on user u343's post",
deleted: false,
}, ],
}, ],
comments: [{
id: 'c155',
content: 'UNAVAILABLE',
contentExcerpt: 'UNAVAILABLE',
deleted: true,
}, ],
},
},
errors: undefined,
}
await expect(
mutate({ mutation: deleteUserMutation, variables }),
).resolves.toMatchObject(expectedResponse)
})
})
describe('deletion of all posts and comments requested', () => {
beforeEach(() => {
variables = {...variables, resource: ['Comment', 'Post'] }
})
it('marks posts and comments as deleted', async() => {
const expectedResponse = {
data: {
DeleteUser: {
id: 'u343',
name: 'UNAVAILABLE',
about: 'UNAVAILABLE',
deleted: true,
contributions: [{
id: 'p139',
content: 'UNAVAILABLE',
contentExcerpt: 'UNAVAILABLE',
deleted: true,
comments: [{
id: 'c156',
content: 'UNAVAILABLE',
contentExcerpt: 'UNAVAILABLE',
deleted: true,
}, ],
}, ],
comments: [{
id: 'c155',
content: 'UNAVAILABLE',
contentExcerpt: 'UNAVAILABLE',
deleted: true,
}, ],
},
},
errors: undefined,
}
await expect(
mutate({ mutation: deleteUserMutation, variables }),
).resolves.toMatchObject(expectedResponse)
})
})
})
describe('connected `EmailAddress` nodes', () => {
it('will be removed completely', async() => {
await expect(neode.all('EmailAddress')).resolves.toHaveLength(2)
await mutate({ mutation: deleteUserMutation, variables })
await expect(neode.all('EmailAddress')).resolves.toHaveLength(1)
})
})
describe('connected `SocialMedia` nodes', () => {
beforeEach(async() => {
const socialMedia = await Factory.build('socialMedia')
await socialMedia.relateTo(user, 'ownedBy')
})
it('will be removed completely', async() => {
await expect(neode.all('SocialMedia')).resolves.toHaveLength(1)
await mutate({ mutation: deleteUserMutation, variables })
await expect(neode.all('SocialMedia')).resolves.toHaveLength(0)
})
})
})
})
})
})