joe/kami-parse-server
Public Access
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
73b0f9a339b81f5d757725dc557955a7b670a3ec
kami-parse-server/spec/PublicAPI.spec.js
moonion d84566ac28 Ajax password reset (#5332) 
* adapted public api route for use with ajax

* Elegant error handling

* Fixed error return

* Public API error flow redone, tests

* Fixed code to pre-build form

* Public API change password return params

* Reverted errors in resetPassword

* Fixed querystring call

* Success test on ajax password reset

* Added few more routes to tests for coverage

* More tests and redone error return slightly

* Updated error text

* Console logs removal, renamed test, added {} to if

* Wrong error sent

* Revert changes

* Revert "Revert changes"

This reverts commit 68ee2c44bf2411ca8b56b039a4d490a7e2f99ae9.

* real revert of {}

* nits and test fix

* fix tests

* throw proper error
2019-03-14 16:06:18 -05:00

212 lines
5.7 KiB
JavaScript
Raw Blame History

const req = require('../lib/request');
const request = function(url, callback) {
return req({
url,
}).then(response => callback(null, response), err => callback(err, err));
};
describe('public API', () => {
it('should return missing username error on ajax request without username provided', async () => {
await reconfigureServer({
publicServerURL: 'http://localhost:8378/1',
});
try {
await req({
method: 'POST',
url: 'http://localhost:8378/1/apps/test/request_password_reset',
body: `new_password=user1&token=43634643&username=`,
headers: {
'Content-Type': 'application/x-www-form-urlencoded',
'X-Requested-With': 'XMLHttpRequest',
},
followRedirects: false,
});
} catch (error) {
expect(error.status).not.toBe(302);
expect(error.text).toEqual('{"code":200,"error":"Missing username"}');
}
});
it('should return missing token error on ajax request without token provided', async () => {
await reconfigureServer({
publicServerURL: 'http://localhost:8378/1',
});
try {
await req({
method: 'POST',
url: 'http://localhost:8378/1/apps/test/request_password_reset',
body: `new_password=user1&token=&username=Johnny`,
headers: {
'Content-Type': 'application/x-www-form-urlencoded',
'X-Requested-With': 'XMLHttpRequest',
},
followRedirects: false,
});
} catch (error) {
expect(error.status).not.toBe(302);
expect(error.text).toEqual('{"code":-1,"error":"Missing token"}');
}
});
it('should return missing password error on ajax request without password provided', async () => {
await reconfigureServer({
publicServerURL: 'http://localhost:8378/1',
});
try {
await req({
method: 'POST',
url: 'http://localhost:8378/1/apps/test/request_password_reset',
body: `new_password=&token=132414&username=Johnny`,
headers: {
'Content-Type': 'application/x-www-form-urlencoded',
'X-Requested-With': 'XMLHttpRequest',
},
followRedirects: false,
});
} catch (error) {
expect(error.status).not.toBe(302);
expect(error.text).toEqual('{"code":201,"error":"Missing password"}');
}
});
it('should get invalid_link.html', done => {
request(
'http://localhost:8378/1/apps/invalid_link.html',
(err, httpResponse) => {
expect(httpResponse.status).toBe(200);
done();
}
);
});
it('should get choose_password', done => {
reconfigureServer({
appName: 'unused',
publicServerURL: 'http://localhost:8378/1',
}).then(() => {
request(
'http://localhost:8378/1/apps/choose_password?id=test',
(err, httpResponse) => {
expect(httpResponse.status).toBe(200);
done();
}
);
});
});
it('should get verify_email_success.html', done => {
request(
'http://localhost:8378/1/apps/verify_email_success.html',
(err, httpResponse) => {
expect(httpResponse.status).toBe(200);
done();
}
);
});
it('should get password_reset_success.html', done => {
request(
'http://localhost:8378/1/apps/password_reset_success.html',
(err, httpResponse) => {
expect(httpResponse.status).toBe(200);
done();
}
);
});
});
describe('public API without publicServerURL', () => {
beforeEach(done => {
reconfigureServer({ appName: 'unused' }).then(done, fail);
});
it('should get 404 on verify_email', done => {
request(
'http://localhost:8378/1/apps/test/verify_email',
(err, httpResponse) => {
expect(httpResponse.status).toBe(404);
done();
}
);
});
it('should get 404 choose_password', done => {
request(
'http://localhost:8378/1/apps/choose_password?id=test',
(err, httpResponse) => {
expect(httpResponse.status).toBe(404);
done();
}
);
});
it('should get 404 on request_password_reset', done => {
request(
'http://localhost:8378/1/apps/test/request_password_reset',
(err, httpResponse) => {
expect(httpResponse.status).toBe(404);
done();
}
);
});
});
describe('public API supplied with invalid application id', () => {
beforeEach(done => {
reconfigureServer({ appName: 'unused' }).then(done, fail);
});
it('should get 403 on verify_email', done => {
request(
'http://localhost:8378/1/apps/invalid/verify_email',
(err, httpResponse) => {
expect(httpResponse.status).toBe(403);
done();
}
);
});
it('should get 403 choose_password', done => {
request(
'http://localhost:8378/1/apps/choose_password?id=invalid',
(err, httpResponse) => {
expect(httpResponse.status).toBe(403);
done();
}
);
});
it('should get 403 on get of request_password_reset', done => {
request(
'http://localhost:8378/1/apps/invalid/request_password_reset',
(err, httpResponse) => {
expect(httpResponse.status).toBe(403);
done();
}
);
});
it('should get 403 on post of request_password_reset', done => {
req({
url: 'http://localhost:8378/1/apps/invalid/request_password_reset',
method: 'POST',
}).then(done.fail, httpResponse => {
expect(httpResponse.status).toBe(403);
done();
});
});
it('should get 403 on resendVerificationEmail', done => {
request(
'http://localhost:8378/1/apps/invalid/resend_verification_email',
(err, httpResponse) => {
expect(httpResponse.status).toBe(403);
done();
}
);
});
});
Reference in New Issue View Git Blame Copy Permalink