mirror of
https://github.com/TryGhost/Ghost.git
synced 2025-02-24 23:48:13 -05:00
fb7bf6d01e
refs https://github.com/TryGhost/Product/issues/3832 --- <!-- Leave the line below if you'd like GitHub Copilot to generate a summary from your commit --> <!-- copilot:summary --> ### <samp>🤖 Generated by Copilot at 7eda74c</samp> This pull request improves the validation, customization, and feedback of various form components and modals in the admin-x-settings app. It also adds new components for user detail modal sections and modifies the user type to allow null values for social accounts. Additionally, it adds `dirty` props to some integration modals and a `data-testid` attribute to the exit settings button. It also deletes an unused file.
119 lines
5.1 KiB
TypeScript
119 lines
5.1 KiB
TypeScript
import {expect, test} from '@playwright/test';
|
|
import {globalDataRequests, mockApi, responseFixtures} from '../../../utils/acceptance';
|
|
|
|
test.describe('User passwords', async () => {
|
|
test('Supports changing password', async ({page}) => {
|
|
const {lastApiRequests} = await mockApi({page, requests: {
|
|
...globalDataRequests,
|
|
browseUsers: {method: 'GET', path: '/users/?limit=100&include=roles', response: responseFixtures.users},
|
|
updatePassword: {method: 'PUT', path: '/users/password/', response: {}}
|
|
}});
|
|
|
|
await page.goto('/');
|
|
|
|
const section = page.getByTestId('users');
|
|
const activeTab = section.locator('[role=tabpanel]:not(.hidden)');
|
|
|
|
await section.getByRole('tab', {name: 'Administrators'}).click();
|
|
|
|
const listItem = activeTab.getByTestId('user-list-item').last();
|
|
await listItem.hover();
|
|
await listItem.getByRole('button', {name: 'Edit'}).click();
|
|
|
|
const modal = page.getByTestId('user-detail-modal');
|
|
|
|
await modal.getByRole('button', {name: 'Change password'}).click();
|
|
|
|
// Validation failures
|
|
|
|
await modal.getByRole('button', {name: 'Change password'}).click();
|
|
|
|
await expect(modal).toContainText('Password must be at least 10 characters long.');
|
|
|
|
await modal.getByLabel('New password').fill('1234567890');
|
|
await modal.getByRole('button', {name: 'Change password'}).click();
|
|
await expect(modal).not.toContainText('Sorry, you cannot use an insecure password.');
|
|
|
|
await modal.getByLabel('New password').fill('newpasshere');
|
|
await modal.getByLabel('Verify password').fill('notthesame');
|
|
await modal.getByRole('button', {name: 'Change password'}).click();
|
|
await expect(modal).toContainText('Your new passwords do not match');
|
|
|
|
// Successful update
|
|
|
|
await modal.getByLabel('New password').fill('newpasshere');
|
|
await modal.getByLabel('Verify password').fill('newpasshere');
|
|
|
|
await modal.getByRole('button', {name: 'Change password'}).click();
|
|
|
|
await expect(modal.getByRole('button', {name: 'Updated'})).toBeVisible();
|
|
|
|
expect(lastApiRequests.updatePassword?.body).toMatchObject({
|
|
password: [{
|
|
newPassword: 'newpasshere',
|
|
ne2Password: 'newpasshere',
|
|
oldPassword: '',
|
|
user_id: responseFixtures.users.users.find(user => user.email === 'administrator@test.com')!.id
|
|
}]
|
|
});
|
|
});
|
|
|
|
test('Requires current password when changing your own password', async ({page}) => {
|
|
const {lastApiRequests} = await mockApi({page, requests: {
|
|
...globalDataRequests,
|
|
browseUsers: {method: 'GET', path: '/users/?limit=100&include=roles', response: responseFixtures.users},
|
|
updatePassword: {method: 'PUT', path: '/users/password/', response: {}}
|
|
}});
|
|
|
|
await page.goto('/');
|
|
|
|
const section = page.getByTestId('users');
|
|
|
|
const listItem = section.getByTestId('owner-user').last();
|
|
await listItem.hover();
|
|
await listItem.getByRole('button', {name: 'View profile'}).click();
|
|
|
|
const modal = page.getByTestId('user-detail-modal');
|
|
|
|
await modal.getByRole('button', {name: 'Change password'}).click();
|
|
|
|
// Validation failures
|
|
|
|
await modal.getByRole('button', {name: 'Change password'}).click();
|
|
await expect(modal).toContainText('Your current password is required to set a new one');
|
|
|
|
await modal.getByLabel('Old password').fill('oldpass');
|
|
await modal.getByRole('button', {name: 'Change password'}).click();
|
|
await expect(modal).toContainText('Password must be at least 10 characters long.');
|
|
|
|
await modal.getByLabel('Old password').fill('oldpass');
|
|
await modal.getByLabel('New password').fill('1234567890');
|
|
await modal.getByRole('button', {name: 'Change password'}).click();
|
|
await expect(modal).not.toContainText('Sorry, you cannot use an insecure password.');
|
|
|
|
await modal.getByLabel('Old password').fill('oldpass');
|
|
await modal.getByLabel('New password').fill('newpasshere');
|
|
await modal.getByLabel('Verify password').fill('notthesame');
|
|
await modal.getByRole('button', {name: 'Change password'}).click();
|
|
await expect(modal).toContainText('Your new passwords do not match');
|
|
|
|
// Successful update
|
|
|
|
await modal.getByLabel('Old password').fill('oldpasshere');
|
|
await modal.getByLabel('New password').fill('newpasshere');
|
|
await modal.getByLabel('Verify password').fill('newpasshere');
|
|
|
|
await modal.getByRole('button', {name: 'Change password'}).click();
|
|
|
|
await expect(modal.getByRole('button', {name: 'Updated'})).toBeVisible();
|
|
|
|
expect(lastApiRequests.updatePassword?.body).toMatchObject({
|
|
password: [{
|
|
newPassword: 'newpasshere',
|
|
ne2Password: 'newpasshere',
|
|
oldPassword: 'oldpasshere',
|
|
user_id: responseFixtures.users.users.find(user => user.email === 'owner@test.com')!.id
|
|
}]
|
|
});
|
|
});
|
|
});
|