Files
cloudron-box/src/test/accesscontrol-test.js

75 lines
3.1 KiB
JavaScript
Raw Normal View History

2018-06-14 20:17:54 -07:00
/* jslint node:true */
/* global it:false */
/* global describe:false */
/* global before:false */
/* global after:false */
'use strict';
var accesscontrol = require('../accesscontrol.js'),
expect = require('expect.js');
describe('access control', function () {
describe('canonicalScope', function () {
it('only * scope', function () {
expect(accesscontrol.canonicalScope('*')).to.be('apps,clients,cloudron,domains,mail,profile,settings,users');
});
it('* in the middle', function () {
expect(accesscontrol.canonicalScope('foo,bar,*')).to.be('foo,bar,apps,clients,cloudron,domains,mail,profile,settings,users');
});
});
2018-06-14 16:28:09 -07:00
describe('intersectScope', function () { // args: allowed, wanted
it('both are same', function () {
expect(accesscontrol.intersectScope('apps,clients', 'clients,apps')).to.be('apps,clients');
});
it('some are different', function () {
expect(accesscontrol.intersectScope('apps', 'clients,apps')).to.be('apps');
expect(accesscontrol.intersectScope('clients,domains,mail', 'mail')).to.be('mail');
});
it('* in allowed', function () {
expect(accesscontrol.intersectScope('*', 'clients,apps')).to.be('clients,apps');
expect(accesscontrol.intersectScope('foo,*,bar', 'mail')).to.be('mail');
});
it('* in wanted', function () {
expect(accesscontrol.intersectScope('clients,apps', '*')).to.be('clients,apps');
expect(accesscontrol.intersectScope('mail', 'bar,*,foo')).to.be('mail');
expect(accesscontrol.intersectScope('*', '*')).to.be('apps,clients,cloudron,domains,mail,profile,settings,users');
});
it('everything is different', function () {
expect(accesscontrol.intersectScope('cloudron,domains', 'clients,apps')).to.be('');
});
2018-06-14 16:32:24 -07:00
});
describe('validateScope', function () {
it('allows valid scopes', function () {
expect(accesscontrol.validateScope('apps')).to.be(null);
expect(accesscontrol.validateScope('apps,mail')).to.be(null);
});
it('disallows invalid scopes', function () {
expect(accesscontrol.validateScope('apps, mail')).to.be.an(Error);
expect(accesscontrol.validateScope('random')).to.be.an(Error);
expect(accesscontrol.validateScope('')).to.be.an(Error);
});
});
2018-06-14 16:32:24 -07:00
describe('hasScopes', function () {
it('succeeds if it contains the scope', function () {
expect(accesscontrol.hasScopes({ scope: 'apps' }, [ 'apps' ])).to.be(null);
expect(accesscontrol.hasScopes({ scope: 'apps,mail' }, [ 'mail' ])).to.be(null);
expect(accesscontrol.hasScopes({ scope: 'clients,*,apps,mail' }, [ 'mail' ])).to.be(null);
});
2018-06-14 16:28:09 -07:00
2018-06-14 16:32:24 -07:00
it('fails if it does not contain the scope', function () {
expect(accesscontrol.hasScopes({ scope: 'apps' }, [ 'mail' ])).to.be.an(Error);
expect(accesscontrol.hasScopes({ scope: 'apps,mail' }, [ 'clients' ])).to.be.an(Error);
});
2018-06-14 16:28:09 -07:00
});
2018-06-14 20:17:54 -07:00
});