coop-cloud-chaos-patchs/outline
Archived
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

test

Browse Source
This commit is contained in:
Tom Moor
2020-08-31 20:23:51 -07:00
parent 8550116c6b
commit dd0d51dd9d
2 changed files with 54 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
server/api/shares.js
View File

@ -171,9 +171,12 @@ router.post("shares.revoke", auth(), async (ctx) => {
const share = await Share.findByPk(id); const share = await Share.findByPk(id);
authorize(user, "revoke", share); authorize(user, "revoke", share);
await share.revoke(user.id);
const document = await Document.findByPk(share.documentId); const document = await Document.findByPk(share.documentId);
if (!document) {
throw new NotFoundError();
}
await share.revoke(user.id);
await Event.create({ await Event.create({
name: "shares.revoke", name: "shares.revoke",

49
server/api/shares.test.js
View File

@ -70,6 +70,25 @@ describe("#shares.list", () => {
expect(body.data.length).toEqual(0); expect(body.data.length).toEqual(0);
}); });
it("should not return shares to deleted documents", async () => {
const { user, document } = await seed();
await buildShare({
documentId: document.id,
teamId: user.teamId,
userId: user.id,
});
await document.delete(user.id);
const res = await server.post("/api/shares.list", {
body: { token: user.getJwtToken() },
});
const body = await res.json();
expect(res.status).toEqual(200);
expect(body.data.length).toEqual(0);
});
it("admins should return shares created by all users", async () => { it("admins should return shares created by all users", async () => {
const { user, admin, document } = await seed(); const { user, admin, document } = await seed();
const share = await buildShare({ const share = await buildShare({
@ -268,6 +287,20 @@ describe("#shares.info", () => {
expect(res.status).toEqual(404); expect(res.status).toEqual(404);
}); });
it("should not find revoked share", async () => {
const { user, admin, document } = await seed();
const share = await buildShare({
documentId: document.id,
teamId: admin.teamId,
userId: admin.id,
});
await share.revoke();
const res = await server.post("/api/shares.info", {
body: { token: user.getJwtToken(), documentId: document.id },
});
expect(res.status).toEqual(404);
});
it("should require authentication", async () => { it("should require authentication", async () => {
const { user, document } = await seed(); const { user, document } = await seed();
const share = await buildShare({ const share = await buildShare({
@ -382,6 +415,22 @@ describe("#shares.revoke", () => {
expect(res.status).toEqual(200); expect(res.status).toEqual(200);
}); });
it("should 404 if shares document is deleted", async () => {
const { user, document } = await seed();
const share = await buildShare({
documentId: document.id,
teamId: user.teamId,
userId: user.id,
});
await document.delete(user.id);
const res = await server.post("/api/shares.revoke", {
body: { token: user.getJwtToken(), id: share.id },
});
expect(res.status).toEqual(404);
});
it("should allow admin to revoke a share", async () => { it("should allow admin to revoke a share", async () => {
const { user, admin, document } = await seed(); const { user, admin, document } = await seed();
const share = await buildShare({ const share = await buildShare({