ghost/test/api-acceptance/content/key_authentication_spec.js

const should = require('should');
const supertest = require('supertest');
const _ = require('lodash');
const testUtils = require('../../utils');
const localUtils = require('./utils');
const config = require('../../../core/server/config');

const ghost = testUtils.startGhost;

describe('Content API key authentication', function () {
    let request;

    before(function () {
        return ghost()
            .then(function () {
                request = supertest.agent(config.get('url'));
            })
            .then(function () {
                return testUtils.initFixtures('api_keys');
            });
    });

    it('Can not access without key', function () {
        return request.get(localUtils.API.getApiQuery('posts/'))
            .expect('Content-Type', /json/)
            .expect('Cache-Control', testUtils.cacheRules.private)
            .expect(403);
    });

    it('Can access with with valid key', function () {
        const key = localUtils.getValidKey();

        return request.get(localUtils.API.getApiQuery(`posts/?key=${key}`))
            .expect('Content-Type', /json/)
            .expect('Cache-Control', testUtils.cacheRules.private)
            .expect(200);
    });
});
Added acceptance suite for Content API key verification 2019-01-24 12:37:27 +00:00			`const should = require('should');`
			`const supertest = require('supertest');`
			`const _ = require('lodash');`
Switched to canary endpoints in acceptance tests (#11143) no issue - Switched acceptance tests to run against canary branch - Corrected actions specs - Corrected authentication spec - Moved test suites our of 'old' folder 2019-09-20 17:02:45 +02:00			`const testUtils = require('../../utils');`
Added acceptance suite for Content API key verification 2019-01-24 12:37:27 +00:00			`const localUtils = require('./utils');`
Move tests from core to root (#11700) - move all test files from core/test to test/ - updated all imports and other references - all code inside of core/ is then application code - tests are correctly at the root level - consistent with other repos/projects Co-authored-by: Kevin Ansfield <kevin@lookingsideways.co.uk> 2020-03-30 16:26:47 +01:00			`const config = require('../../../core/server/config');`
Added acceptance suite for Content API key verification 2019-01-24 12:37:27 +00:00
			`const ghost = testUtils.startGhost;`

Reduced & moved acceptance tests for content API refs #9178 - goal: only run main use cases regurlay - the rest should run once per day - reduced tests also 2019-02-04 15:49:59 +01:00			`describe('Content API key authentication', function () {`
Added acceptance suite for Content API key verification 2019-01-24 12:37:27 +00:00			`let request;`

			`before(function () {`
			`return ghost()`
Reduced & moved acceptance tests for content API refs #9178 - goal: only run main use cases regurlay - the rest should run once per day - reduced tests also 2019-02-04 15:49:59 +01:00			`.then(function () {`
Added acceptance suite for Content API key verification 2019-01-24 12:37:27 +00:00			`request = supertest.agent(config.get('url'));`
			`})`
			`.then(function () {`
			`return testUtils.initFixtures('api_keys');`
			`});`
			`});`

Reduced & moved acceptance tests for content API refs #9178 - goal: only run main use cases regurlay - the rest should run once per day - reduced tests also 2019-02-04 15:49:59 +01:00			`it('Can not access without key', function () {`
Added acceptance suite for Content API key verification 2019-01-24 12:37:27 +00:00			`return request.get(localUtils.API.getApiQuery('posts/'))`
			`.expect('Content-Type', /json/)`
			`.expect('Cache-Control', testUtils.cacheRules.private)`
			`.expect(403);`
			`});`

Reduced & moved acceptance tests for content API refs #9178 - goal: only run main use cases regurlay - the rest should run once per day - reduced tests also 2019-02-04 15:49:59 +01:00			`it('Can access with with valid key', function () {`
Added acceptance suite for Content API key verification 2019-01-24 12:37:27 +00:00			`const key = localUtils.getValidKey();`

			return request.get(localUtils.API.getApiQuery(`posts/?key=${key}`))
			`.expect('Content-Type', /json/)`
			`.expect('Cache-Control', testUtils.cacheRules.private)`
			`.expect(200);`
			`});`
			`});`