Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

add tests for HTTP APIs and their routes #30

Open
wants to merge 14 commits into
base: main
Choose a base branch
from
Open

add tests for HTTP APIs and their routes #30

Changes from 1 commit
Commits
Show all changes
14 commits
Select commit Hold shift + click to select a range
124cbcc
test: add tests for HTTP APIs and their routes
akhileshthite Dec 18, 2023
fcf7ffd
refactor: improved reliability and simplification for admins.test.ts
akhileshthite Jan 3, 2024
f3b5a9e
chore: add a TODO for testing of APS's admin API interactions
akhileshthite Jan 8, 2024
1fa68c6
test: add tests for creation APIs
akhileshthite Jan 8, 2024
7d0b35c
test: add tests for followers APIs
akhileshthite Jan 8, 2024
2754fe4
test: add tests for inbox APIs
akhileshthite Jan 8, 2024
35d1fd1
test: add tests for outbox APIs
akhileshthite Jan 8, 2024
1f345bb
test: add tests for hooks APIs
akhileshthite Jan 8, 2024
7e34a68
test: add tests for blockallowlist APIs
akhileshthite Jan 8, 2024
f7831b0
Merge branch 'main' into api-tests
Jan 10, 2024
16de91f
Use same node version as mauve for tests
Jan 10, 2024
d8119ec
feat: validate admin list updates in admins.test.ts
akhileshthite Jan 12, 2024
c4a6593
test: ensure blocklist and allowlist routes correctly handle and retu…
akhileshthite Jan 22, 2024
3720549
Merge branch 'main' into api-tests
RangerMauve Feb 23, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
158 changes: 158 additions & 0 deletions src/server/api/admins.test.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,158 @@
import test from 'ava'
import fastify from 'fastify'
import sinon from 'sinon'
import { adminRoutes } from './admins'
import Store from '../store/index.js'
import ActivityPubSystem from '../apsystem.js'
import { ModerationChecker } from '../moderation.js'
import HookSystem from '../hooksystem'
import { APIConfig } from '.'
import { makeSigner } from '../../keypair.js'
import { generateKeypair } from 'http-signed-fetch'

const mockConfig: APIConfig = {
port: 3000,
host: 'localhost',
storage: 'path/to/storage',
publicURL: 'http://localhost:3000'
}

let server: any
let mockStore: any
let mockApsystem: any

test.beforeEach(async () => {
server = fastify()
mockStore = sinon.createStubInstance(Store)

mockStore.admins = {
list: sinon.stub(),
add: sinon.stub(),
remove: sinon.stub()
}
mockStore.admins.list.resolves(['[email protected]', '[email protected]'])
mockStore.admins.add.resolves()
mockStore.admins.remove.resolves()

mockApsystem = new ActivityPubSystem(mockConfig.publicURL, mockStore, new ModerationChecker(mockStore), new HookSystem(mockStore))
sinon.stub(mockApsystem, 'hasAdminPermissionForRequest').resolves(true)

await adminRoutes(mockConfig, mockStore, mockApsystem)(server)
})

const simulateSignedRequest = (method: string, path: string): { Signature: string, Date: string } => {
const keypair = generateKeypair()
const publicKeyId = 'https://example.com/#main-key'
RangerMauve marked this conversation as resolved.
Show resolved Hide resolved
const signer = makeSigner(keypair, publicKeyId)

const url = `${mockConfig.publicURL}${path}`

// Generate a signature header
const signatureHeader = signer.sign({
method,
url,
headers: {
host: 'localhost:3000',
RangerMauve marked this conversation as resolved.
Show resolved Hide resolved
date: new Date().toUTCString()
}
})

return {
Signature: signatureHeader,
Date: new Date().toUTCString()
}
}

test('GET /admins - success', async t => {
const signedHeaders = simulateSignedRequest('GET', '/admins')

mockApsystem.hasAdminPermissionForRequest.callsFake((request: any) => {
return 'Signature' in request.headers && 'Date' in request.headers
})

const response = await server.inject({
method: 'GET',
url: '/admins',
headers: signedHeaders
})

t.is(response.statusCode, 200)
t.is(response.body, '[email protected]\[email protected]')
})

test('GET /admins - unauthorized', async t => {
mockApsystem.hasAdminPermissionForRequest.resolves(false)

const response = await server.inject({
method: 'GET',
url: '/admins'
})

t.is(response.statusCode, 403)
})

test('POST /admins - success', async t => {
const signedHeaders = simulateSignedRequest('POST', '/admins')

const response = await server.inject({
method: 'POST',
url: '/admins',
payload: '[email protected]',
headers: {
'Content-Type': 'text/plain',
...signedHeaders
}
})

t.is(response.statusCode, 200)
RangerMauve marked this conversation as resolved.
Show resolved Hide resolved
})

test('POST /admins - unauthorized', async t => {
mockApsystem.hasAdminPermissionForRequest.resolves(false)

const response = await server.inject({
method: 'POST',
url: '/admins',
payload: '[email protected]',
headers: {
'Content-Type': 'text/plain'
}
})

t.is(response.statusCode, 403)
})

test('DELETE /admins - success', async t => {
const signedHeaders = simulateSignedRequest('DELETE', '/admins')

const response = await server.inject({
method: 'DELETE',
url: '/admins',
payload: '[email protected]',
headers: {
'Content-Type': 'text/plain',
...signedHeaders
}
})

t.is(response.statusCode, 200)
})

test('DELETE /admins - unauthorized', async t => {
mockApsystem.hasAdminPermissionForRequest.resolves(false)

const response = await server.inject({
method: 'DELETE',
url: '/admins',
payload: '[email protected]',
headers: {
'Content-Type': 'text/plain'
}
})

t.is(response.statusCode, 403)
})

test.afterEach(async () => {
await server.close()
})
Loading