saleor-dashboard/src/auth/AuthProvider.test.ts

import setupApi from "@test/api";
import { act, renderHook } from "@testing-library/react-hooks";
import ApolloClient from "apollo-client";

import { useAuthProvider } from "./hooks/useAuthProvider";
import { getTokens, setAuthToken } from "./utils";

const apolloClient = setupApi();

function renderAuthProvider(apolloClient: ApolloClient<any>) {
  const intl = {
    formatMessage: ({ defaultMessage }) => defaultMessage
  };
  const notify = jest.fn();

  const { result } = renderHook(() =>
    useAuthProvider({ apolloClient, intl: intl as any, notify })
  );

  return result;
}

const adminCredentials = {
  email: "admin@example.com",
  password: "admin",
  token: null
};

const nonStaffUserCredentials = {
  email: "client@example.com",
  password: "password"
};

beforeEach(() => {
  localStorage.clear();
  sessionStorage.clear();
});

describe("User", () => {
  it("will be logged in if has valid credentials", async done => {
    const hook = renderAuthProvider(apolloClient);

    await act(() =>
      hook.current.login(adminCredentials.email, adminCredentials.password)
    );
    expect(hook.current.user.email).toBe(adminCredentials.email);
    adminCredentials.token = getTokens().auth;

    done();
  });

  it("will not be logged in if doesn't have valid credentials", async done => {
    const hook = renderAuthProvider(apolloClient);

    await act(() =>
      hook.current.login(adminCredentials.email, "NotAValidPassword123!")
    );
    expect(hook.current.user).toBe(null);

    done();
  });

  it("will not be logged in if is non-staff", async done => {
    const hook = renderAuthProvider(apolloClient);

    await act(() =>
      hook.current.login(
        nonStaffUserCredentials.email,
        nonStaffUserCredentials.password
      )
    );
    expect(hook.current.user).toBe(undefined);

    done();
  });

  it("will be logged if has valid token", async done => {
    setAuthToken(adminCredentials.token, false);
    const hook = renderAuthProvider(apolloClient);

    await act(() => hook.current.autologinPromise.current);
    expect(hook.current.user.email).toBe(adminCredentials.email);

    done();
  });

  it("will not be logged if has invalid token", async done => {
    setAuthToken("NotAToken", false);
    const hook = renderAuthProvider(apolloClient);

    await act(() => hook.current.autologinPromise.current);
    expect(hook.current.user).toBe(undefined);

    done();
  });
});
Add tests to auth 2020-07-21 13:55:50 +00:00			`import setupApi from "@test/api";`
			`import { act, renderHook } from "@testing-library/react-hooks";`
			`import ApolloClient from "apollo-client";`

Implement Oauth2 flow with OpenID 2021-01-26 22:04:54 +00:00			`import { useAuthProvider } from "./hooks/useAuthProvider";`
Do not match requests by url and headers 2020-07-29 13:10:39 +00:00			`import { getTokens, setAuthToken } from "./utils";`
Add tests to auth 2020-07-21 13:55:50 +00:00
			`const apolloClient = setupApi();`

			`function renderAuthProvider(apolloClient: ApolloClient<any>) {`
			`const intl = {`
			`formatMessage: ({ defaultMessage }) => defaultMessage`
			`};`
			`const notify = jest.fn();`

			`const { result } = renderHook(() =>`
Implement Oauth2 flow with OpenID 2021-01-26 22:04:54 +00:00			`useAuthProvider({ apolloClient, intl: intl as any, notify })`
Add tests to auth 2020-07-21 13:55:50 +00:00			`);`

			`return result;`
			`}`

Saleor 2067 - Guard against non-staff users logging in (#947) * Guard against non-staff users logging in * Scope channel permissions * Update changelog * Update tests 2021-01-18 11:19:04 +00:00			`const adminCredentials = {`
Add tests to auth 2020-07-21 13:55:50 +00:00			`email: "admin@example.com",`
			`password: "admin",`
Do not match requests by url and headers 2020-07-29 13:10:39 +00:00			`token: null`
Add tests to auth 2020-07-21 13:55:50 +00:00			`};`

Saleor 2067 - Guard against non-staff users logging in (#947) * Guard against non-staff users logging in * Scope channel permissions * Update changelog * Update tests 2021-01-18 11:19:04 +00:00			`const nonStaffUserCredentials = {`
			`email: "client@example.com",`
			`password: "password"`
			`};`

Add tests to auth 2020-07-21 13:55:50 +00:00			`beforeEach(() => {`
			`localStorage.clear();`
Handle token refreshing 2020-07-23 13:37:39 +00:00			`sessionStorage.clear();`
Add tests to auth 2020-07-21 13:55:50 +00:00			`});`

			`describe("User", () => {`
			`it("will be logged in if has valid credentials", async done => {`
			`const hook = renderAuthProvider(apolloClient);`

			`await act(() =>`
Saleor 2067 - Guard against non-staff users logging in (#947) * Guard against non-staff users logging in * Scope channel permissions * Update changelog * Update tests 2021-01-18 11:19:04 +00:00			`hook.current.login(adminCredentials.email, adminCredentials.password)`
Add tests to auth 2020-07-21 13:55:50 +00:00			`);`
Implement Oauth2 flow with OpenID 2021-01-26 22:04:54 +00:00			`expect(hook.current.user.email).toBe(adminCredentials.email);`
Saleor 2067 - Guard against non-staff users logging in (#947) * Guard against non-staff users logging in * Scope channel permissions * Update changelog * Update tests 2021-01-18 11:19:04 +00:00			`adminCredentials.token = getTokens().auth;`
Add tests to auth 2020-07-21 13:55:50 +00:00
			`done();`
			`});`

			`it("will not be logged in if doesn't have valid credentials", async done => {`
			`const hook = renderAuthProvider(apolloClient);`

			`await act(() =>`
Saleor 2067 - Guard against non-staff users logging in (#947) * Guard against non-staff users logging in * Scope channel permissions * Update changelog * Update tests 2021-01-18 11:19:04 +00:00			`hook.current.login(adminCredentials.email, "NotAValidPassword123!")`
Add tests to auth 2020-07-21 13:55:50 +00:00			`);`
Implement Oauth2 flow with OpenID 2021-01-26 22:04:54 +00:00			`expect(hook.current.user).toBe(null);`
Add tests to auth 2020-07-21 13:55:50 +00:00
			`done();`
			`});`

Saleor 2067 - Guard against non-staff users logging in (#947) * Guard against non-staff users logging in * Scope channel permissions * Update changelog * Update tests 2021-01-18 11:19:04 +00:00			`it("will not be logged in if is non-staff", async done => {`
			`const hook = renderAuthProvider(apolloClient);`

			`await act(() =>`
			`hook.current.login(`
			`nonStaffUserCredentials.email,`
			`nonStaffUserCredentials.password`
			`)`
			`);`
Implement Oauth2 flow with OpenID 2021-01-26 22:04:54 +00:00			`expect(hook.current.user).toBe(undefined);`
Saleor 2067 - Guard against non-staff users logging in (#947) * Guard against non-staff users logging in * Scope channel permissions * Update changelog * Update tests 2021-01-18 11:19:04 +00:00
			`done();`
			`});`

Add tests to auth 2020-07-21 13:55:50 +00:00			`it("will be logged if has valid token", async done => {`
Saleor 2067 - Guard against non-staff users logging in (#947) * Guard against non-staff users logging in * Scope channel permissions * Update changelog * Update tests 2021-01-18 11:19:04 +00:00			`setAuthToken(adminCredentials.token, false);`
Add tests to auth 2020-07-21 13:55:50 +00:00			`const hook = renderAuthProvider(apolloClient);`

			`await act(() => hook.current.autologinPromise.current);`
Implement Oauth2 flow with OpenID 2021-01-26 22:04:54 +00:00			`expect(hook.current.user.email).toBe(adminCredentials.email);`
Add tests to auth 2020-07-21 13:55:50 +00:00
			`done();`
			`});`

			`it("will not be logged if has invalid token", async done => {`
Apply suggestions from code review Co-authored-by: Krzysztof Wolski <krzysztof.k.wolski@gmail.com> 2020-07-22 13:29:21 +00:00			`setAuthToken("NotAToken", false);`
Add tests to auth 2020-07-21 13:55:50 +00:00			`const hook = renderAuthProvider(apolloClient);`

			`await act(() => hook.current.autologinPromise.current);`
Implement Oauth2 flow with OpenID 2021-01-26 22:04:54 +00:00			`expect(hook.current.user).toBe(undefined);`
Add tests to auth 2020-07-21 13:55:50 +00:00
			`done();`
			`});`
			`});`