6d8216c54e
* feat: API endpoints for email signin * fix: After testing * Initial signin flow working * move shared middleware * feat: Add guest signin toggle, obey on endpoints * feat: Basic email signin when enabled * Improve guest signin email Disable double signin with JWT * fix: Simple rate limiting * create placeholder users in db * fix: Give invited users default avatar add invited users to people settings * test * add transaction * tmp: test CI * derp * md5 * urgh * again * test: pass * test * fix: Remove usage of data values * guest signin page * Visually separator 'Invited' from other people tabs * fix: Edge case attempting SSO signin for guest email account * fix: Correctly set email auth method to cookie * Improve rate limit error display * lint: cleanup / comments * Improve invalid token error display * style tweaks * pass guest value to subdomain * Restore copy link option * feat: Allow invite revoke from people management * fix: Incorrect users email schema does not allow for user deletion * lint * fix: avatarUrl for deleted user failure * change default to off for guest invites * fix: Changing security settings wipes subdomain * fix: user delete permissioning * test: Add user.invite specs
75 lines
2.0 KiB
JavaScript
75 lines
2.0 KiB
JavaScript
/* eslint-disable flowtype/require-valid-file-annotation */
|
|
import TestServer from 'fetch-test-server';
|
|
import app from '../app';
|
|
import { flushdb, seed } from '../test/support';
|
|
import { buildEvent } from '../test/factories';
|
|
|
|
const server = new TestServer(app.callback());
|
|
|
|
beforeEach(flushdb);
|
|
afterAll(server.close);
|
|
|
|
describe('#events.list', async () => {
|
|
it('should only return activity events', async () => {
|
|
const { user, admin, document, collection } = await seed();
|
|
|
|
// private event
|
|
await buildEvent({
|
|
name: 'users.promote',
|
|
teamId: user.teamId,
|
|
actorId: admin.id,
|
|
userId: user.id,
|
|
});
|
|
|
|
// event viewable in activity stream
|
|
const event = await buildEvent({
|
|
name: 'documents.publish',
|
|
collectionId: collection.id,
|
|
documentId: document.id,
|
|
teamId: user.teamId,
|
|
actorId: admin.id,
|
|
});
|
|
const res = await server.post('/api/events.list', {
|
|
body: { token: user.getJwtToken() },
|
|
});
|
|
const body = await res.json();
|
|
|
|
expect(res.status).toEqual(200);
|
|
expect(body.data.length).toEqual(1);
|
|
expect(body.data[0].id).toEqual(event.id);
|
|
});
|
|
|
|
it('should return events with deleted actors', async () => {
|
|
const { user, admin, document, collection } = await seed();
|
|
|
|
// event viewable in activity stream
|
|
const event = await buildEvent({
|
|
name: 'documents.publish',
|
|
collectionId: collection.id,
|
|
documentId: document.id,
|
|
teamId: user.teamId,
|
|
actorId: user.id,
|
|
});
|
|
|
|
await user.destroy();
|
|
|
|
const res = await server.post('/api/events.list', {
|
|
body: { token: admin.getJwtToken() },
|
|
});
|
|
|
|
const body = await res.json();
|
|
|
|
expect(res.status).toEqual(200);
|
|
expect(body.data.length).toEqual(1);
|
|
expect(body.data[0].id).toEqual(event.id);
|
|
});
|
|
|
|
it('should require authentication', async () => {
|
|
const res = await server.post('/api/events.list');
|
|
const body = await res.json();
|
|
|
|
expect(res.status).toEqual(401);
|
|
expect(body).toMatchSnapshot();
|
|
});
|
|
});
|