2018-10-12 04:07:55 -05:00
|
|
|
import path from 'path';
|
2020-08-11 00:21:51 -05:00
|
|
|
import request from 'supertest';
|
2018-10-12 04:07:55 -05:00
|
|
|
|
2020-08-13 16:27:00 -05:00
|
|
|
import { mockServer } from '@verdaccio/mock';
|
|
|
|
import { API_ERROR, HTTP_STATUS, SUPPORT_ERRORS } from '@verdaccio/dev-commons';
|
|
|
|
import { setup, logger } from '@verdaccio/logger';
|
2020-03-03 17:59:19 -05:00
|
|
|
|
2020-09-16 23:48:16 -05:00
|
|
|
import {
|
|
|
|
generateRamdonStorage,
|
|
|
|
getNewToken,
|
|
|
|
getProfile,
|
|
|
|
postProfile,
|
|
|
|
configExample,
|
|
|
|
DOMAIN_SERVERS,
|
|
|
|
} from '@verdaccio/mock';
|
2018-10-12 04:07:55 -05:00
|
|
|
|
2020-08-11 00:21:51 -05:00
|
|
|
import endPointAPI from '../../src';
|
|
|
|
|
2018-10-12 04:07:55 -05:00
|
|
|
setup([]);
|
|
|
|
|
|
|
|
describe('endpoint user profile', () => {
|
|
|
|
let app;
|
|
|
|
let mockRegistry;
|
2019-07-27 00:20:30 -05:00
|
|
|
jest.setTimeout(20000);
|
2018-10-12 04:07:55 -05:00
|
|
|
|
2020-03-03 17:59:19 -05:00
|
|
|
beforeAll(async (done) => {
|
|
|
|
const store = generateRamdonStorage();
|
2018-10-12 04:07:55 -05:00
|
|
|
const mockServerPort = 55544;
|
2020-08-13 16:27:00 -05:00
|
|
|
const configForTest = configExample(
|
|
|
|
{
|
|
|
|
storage: store,
|
|
|
|
uplinks: {
|
|
|
|
remote: {
|
|
|
|
url: `http://${DOMAIN_SERVERS}:${mockServerPort}`,
|
|
|
|
},
|
|
|
|
},
|
2020-11-08 09:20:02 -05:00
|
|
|
config_path: store,
|
2020-03-03 17:59:19 -05:00
|
|
|
},
|
2020-08-13 16:27:00 -05:00
|
|
|
'profile.yaml',
|
|
|
|
__dirname
|
|
|
|
);
|
2020-03-03 17:59:19 -05:00
|
|
|
|
|
|
|
app = await endPointAPI(configForTest);
|
|
|
|
const binPath = require.resolve('verdaccio/bin/verdaccio');
|
|
|
|
const storePath = path.join(__dirname, '/mock/store');
|
|
|
|
mockRegistry = await mockServer(mockServerPort, { storePath, silence: true }).init(binPath);
|
|
|
|
done();
|
2018-10-12 04:07:55 -05:00
|
|
|
});
|
|
|
|
|
2020-08-13 16:27:00 -05:00
|
|
|
afterAll(function (done) {
|
2020-03-03 17:59:19 -05:00
|
|
|
const [registry, pid] = mockRegistry;
|
|
|
|
registry.stop();
|
|
|
|
logger.info(`registry ${pid} has been stopped`);
|
|
|
|
|
2018-10-12 04:07:55 -05:00
|
|
|
done();
|
|
|
|
});
|
|
|
|
|
|
|
|
test('should fetch a profile of logged user', async (done) => {
|
|
|
|
const credentials = { name: 'JotaJWT', password: 'secretPass' };
|
|
|
|
const token = await getNewToken(request(app), credentials);
|
|
|
|
const [err1, res1] = await getProfile(request(app), token);
|
|
|
|
expect(err1).toBeNull();
|
|
|
|
expect(res1.body.name).toBe(credentials.name);
|
|
|
|
done();
|
|
|
|
});
|
|
|
|
|
|
|
|
describe('change password', () => {
|
|
|
|
test('should change password successfully', async (done) => {
|
|
|
|
const credentials = { name: 'userTest2000', password: 'secretPass000' };
|
|
|
|
const body = {
|
|
|
|
password: {
|
|
|
|
new: '12345678',
|
2020-03-03 17:59:19 -05:00
|
|
|
old: credentials.password,
|
2020-08-13 16:27:00 -05:00
|
|
|
},
|
2018-10-12 04:07:55 -05:00
|
|
|
};
|
|
|
|
const token = await getNewToken(request(app), credentials);
|
|
|
|
const [err1, res1] = await postProfile(request(app), body, token);
|
|
|
|
|
|
|
|
expect(err1).toBeNull();
|
|
|
|
expect(res1.body.name).toBe(credentials.name);
|
|
|
|
done();
|
|
|
|
});
|
|
|
|
|
|
|
|
test('should change password is too short', async (done) => {
|
|
|
|
const credentials = { name: 'userTest2001', password: 'secretPass001' };
|
|
|
|
const body = {
|
|
|
|
password: {
|
|
|
|
new: 'p1',
|
2020-03-03 17:59:19 -05:00
|
|
|
old: credentials.password,
|
2020-08-13 16:27:00 -05:00
|
|
|
},
|
2018-10-12 04:07:55 -05:00
|
|
|
};
|
|
|
|
const token = await getNewToken(request(app), credentials);
|
|
|
|
const [, resp] = await postProfile(request(app), body, token, HTTP_STATUS.UNAUTHORIZED);
|
|
|
|
|
|
|
|
expect(resp.error).not.toBeNull();
|
2019-12-23 03:29:27 -05:00
|
|
|
/* eslint new-cap: 0 */
|
2018-10-12 04:07:55 -05:00
|
|
|
expect(resp.error.text).toMatch(API_ERROR.PASSWORD_SHORT());
|
|
|
|
done();
|
|
|
|
});
|
|
|
|
});
|
|
|
|
|
|
|
|
describe('change tfa', () => {
|
|
|
|
test('should report TFA is disabled', async (done) => {
|
|
|
|
const credentials = { name: 'userTest2002', password: 'secretPass002' };
|
|
|
|
const body = {
|
2020-08-13 16:27:00 -05:00
|
|
|
tfa: {},
|
2018-10-12 04:07:55 -05:00
|
|
|
};
|
|
|
|
const token = await getNewToken(request(app), credentials);
|
2020-09-16 23:48:16 -05:00
|
|
|
const [, resp] = await postProfile(
|
|
|
|
request(app),
|
|
|
|
body,
|
|
|
|
token,
|
|
|
|
HTTP_STATUS.SERVICE_UNAVAILABLE
|
|
|
|
);
|
2018-10-12 04:07:55 -05:00
|
|
|
|
|
|
|
expect(resp.error).not.toBeNull();
|
|
|
|
expect(resp.error.text).toMatch(SUPPORT_ERRORS.TFA_DISABLED);
|
|
|
|
done();
|
|
|
|
});
|
|
|
|
});
|
|
|
|
|
|
|
|
describe('error handling', () => {
|
|
|
|
test('should forbid to fetch a profile with invalid token', async (done) => {
|
|
|
|
const [, resp] = await getProfile(request(app), `fakeToken`, HTTP_STATUS.UNAUTHORIZED);
|
|
|
|
|
|
|
|
expect(resp.error).not.toBeNull();
|
|
|
|
expect(resp.error.text).toMatch(API_ERROR.MUST_BE_LOGGED);
|
|
|
|
done();
|
|
|
|
});
|
|
|
|
|
|
|
|
test('should forbid to update a profile with invalid token', async (done) => {
|
|
|
|
const [, resp] = await postProfile(request(app), {}, `fakeToken`, HTTP_STATUS.UNAUTHORIZED);
|
|
|
|
|
|
|
|
expect(resp.error).not.toBeNull();
|
|
|
|
expect(resp.error.text).toMatch(API_ERROR.MUST_BE_LOGGED);
|
|
|
|
done();
|
|
|
|
});
|
|
|
|
});
|
|
|
|
});
|