src/test/groups-test.js

/* jslint node:true */
/* global it:false */
/* global describe:false */
/* global before:false */
/* global after:false */

'use strict';

var async = require('async'),
    constants = require('../constants.js'),
    database = require('../database.js'),
    DatabaseError = require('../databaseerror.js'),
    expect = require('expect.js'),
    groups = require('../groups.js'),
    GroupError = groups.GroupError,
    hat = require('hat'),
    mailboxdb = require('../mailboxdb.js'),
    userdb = require('../userdb.js');

var GROUP0_NAME = 'administrators',
    group0Object;

var GROUP1_NAME = 'externs',
    group1Object;

var USER_0 = {
    id: 'uuid213',
    username: 'uuid213',
    password: 'secret',
    email: 'safe@me.com',
    admin: false,
    salt: 'morton',
    createdAt: 'sometime back',
    modifiedAt: 'now',
    resetToken: hat(256),
    displayName: '',
    showTutorial: false
};

function setup(done) {
    // ensure data/config/mount paths
    database.initialize(function (error) {
        expect(error).to.be(null);

        database._clear(done);
    });
}

function cleanup(done) {
    database._clear(done);
}

describe('Groups', function () {
    before(setup);
    after(cleanup);

    it('cannot create group - too small', function (done) {
        groups.create('a', function (error) {
            expect(error.reason).to.be(GroupError.BAD_FIELD);
            done();
        });
    });

    it('cannot create group - too big', function (done) {
        groups.create(new Array(256).join('a'), function (error) {
            expect(error.reason).to.be(GroupError.BAD_FIELD);
            done();
        });
    });

    it('cannot create group - bad name', function (done) {
        groups.create('bad:name', function (error) {
            expect(error.reason).to.be(GroupError.BAD_FIELD);
            done();
        });
    });

    it('cannot create group - reserved', function (done) {
        groups.create('users', function (error) {
            expect(error.reason).to.be(GroupError.BAD_FIELD);
            done();
        });
    });

    it('cannot create group - invalid', function (done) {
        groups.create('cloudron-admin', function (error) {
            expect(error.reason).to.be(GroupError.BAD_FIELD);
            done();
        });
    });

    it('can create valid group', function (done) {
        groups.create(GROUP0_NAME, function (error, result) {
            expect(error).to.be(null);
            group0Object = result;
            done();
        });
    });

    it('did create mailbox', function (done) {
        mailboxdb.getGroup(GROUP0_NAME.toLowerCase(), function (error, mailbox) {
            expect(error).to.be(null);
            expect(mailbox.ownerType).to.be(mailboxdb.TYPE_GROUP);
            done();
        });
    });

    it('cannot add existing group', function (done) {
        groups.create(GROUP0_NAME, function (error) {
            expect(error.reason).to.be(GroupError.ALREADY_EXISTS);
            done();
        });
    });

    it('cannot get invalid group', function (done) {
        groups.get('sometrandom', function (error) {
            expect(error.reason).to.be(GroupError.NOT_FOUND);
            done();
        });
    });

    it('can get valid group', function (done) {
        groups.get(group0Object.id, function (error, group) {
            expect(error).to.be(null);
            expect(group.name).to.equal(GROUP0_NAME);
            done();
        });
    });

    it('cannot delete invalid group', function (done) {
        groups.remove('random', function (error) {
            expect(error.reason).to.be(GroupError.NOT_FOUND);
            done();
        });
    });

    it('can delete valid group', function (done) {
        groups.remove(group0Object.id, function (error) {
            expect(error).to.be(null);
            done();
        });
    });

    it('did delete mailbox', function (done) {
        mailboxdb.getGroup(GROUP0_NAME.toLowerCase(), function (error) {
            expect(error.reason).to.be(DatabaseError.NOT_FOUND);
            done();
        });
    });
});

describe('Group membership', function () {
    before(function (done) {
        async.series([
            setup,
            function (next) {
                groups.create(GROUP0_NAME, function (error, result) {
                    if (error) return next(error);
                    group0Object = result;
                    next();
                });
            },
            userdb.add.bind(null, USER_0.id, USER_0)
        ], done);
    });
    after(cleanup);

    it('cannot add non-existent user', function (done) {
        groups.addMember(group0Object.id, 'randomuser', function (error) {
            expect(error.reason).to.be(GroupError.NOT_FOUND);
            done();
        });
    });

    it('cannot add non-existent group', function (done) {
        groups.addMember('randomgroup', USER_0.id, function (error) {
            expect(error.reason).to.be(GroupError.NOT_FOUND);
            done();
        });
    });

    it('isMember returns false', function (done) {
        groups.isMember(group0Object.id, USER_0.id, function (error, member) {
            expect(error).to.be(null);
            expect(member).to.be(false);
            done();
        });
    });

    it('can add member', function (done) {
        groups.addMember(group0Object.id, USER_0.id, function (error) {
            expect(error).to.be(null);
            done();
        });
    });

    it('isMember returns true', function (done) {
        groups.isMember(group0Object.id, USER_0.id, function (error, member) {
            expect(error).to.be(null);
            expect(member).to.be(true);
            done();
        });
    });

    it('can get members', function (done) {
        groups.getMembers(group0Object.id, function (error, result) {
            expect(error).to.be(null);
            expect(result.length).to.be(1);
            expect(result[0]).to.be(USER_0.id);
            done();
        });
    });

    it('can get list members', function (done) {
        mailboxdb.getGroup(GROUP0_NAME.toLowerCase(), function (error, result) {
            expect(error).to.be(null);
            expect(result.name).to.be(GROUP0_NAME.toLowerCase());
            expect(result.ownerType).to.be(mailboxdb.TYPE_GROUP);
            expect(result.ownerId).to.be(group0Object.id);
            expect(result.members).to.eql([ USER_0.username ]);
            done();
        });
    });

    it('cannot get members of non-existent group', function (done) {
        groups.getMembers('randomgroup', function (error, result) {
            expect(result.length).to.be(0); // currently, we cannot differentiate invalid groups and empty groups
            done();
        });
    });

    it('cannot remove non-existent user', function (done) {
        groups.removeMember(group0Object.id, 'randomuser', function (error) {
            expect(error.reason).to.be(GroupError.NOT_FOUND);
            done();
        });
    });

    it('cannot remove non-existent group', function (done) {
        groups.removeMember('randomgroup', USER_0.id, function (error) {
            expect(error.reason).to.be(GroupError.NOT_FOUND);
            done();
        });
    });

    it('can set groups', function (done) {
        groups.setMembers(group0Object.id, [ USER_0.id ], function (error) {
            expect(error).to.be(null);
            done();
        });
    });

    it('can remove member', function (done) {
        groups.removeMember(group0Object.id, USER_0.id, function (error) {
            expect(error).to.be(null);
            done();
        });
    });

    it('has no members', function (done) {
        groups.getMembers(group0Object.id, function (error, result) {
            expect(error).to.be(null);
            expect(result.length).to.be(0);
            done();
        });
    });

    it('can remove group with no members', function (done) {
        groups.remove(group0Object.id, function (error) {
            expect(error).to.be(null);
            done();
        });
    });

    it('can remove group with member', function (done) {
        groups.create(GROUP0_NAME, function (error, result) {
            expect(error).to.eql(null);
            group0Object = result;

            groups.addMember(group0Object.id, USER_0.id, function (error) {
                expect(error).to.be(null);

                groups.remove(group0Object.id, function (error) {
                    expect(error).to.eql(null);
                    done();
                });
            });
        });
    });
});

describe('Set user groups', function () {
    before(function (done) {
        async.series([
            setup,
            function (next) {
                groups.create(GROUP0_NAME, function (error, result) {
                    if (error) return next(error);
                    group0Object = result;
                    next();
                });
            },
            function (next) {
                groups.create(GROUP1_NAME, function (error, result) {
                    if (error) return next(error);
                    group1Object = result;
                    next();
                });
            },
            userdb.add.bind(null, USER_0.id, USER_0)
        ], done);
    });
    after(cleanup);

    it('can set user to single group', function (done) {
        groups.setGroups(USER_0.id, [ group0Object.id ], function (error) {
            expect(error).to.be(null);

            groups.getGroups(USER_0.id, function (error, groupIds) {
                expect(error).to.be(null);
                expect(groupIds.length).to.be(1);
                expect(groupIds[0]).to.be(group0Object.id);
                done();
            });
        });
    });

    it('can set user to multiple groups', function (done) {
        groups.setGroups(USER_0.id, [ group0Object.id, group1Object.id ], function (error) {
            expect(error).to.be(null);

            groups.getGroups(USER_0.id, function (error, groupIds) {
                expect(error).to.be(null);
                expect(groupIds.length).to.be(2);
                expect(groupIds.sort()).to.eql([ group0Object.id, group1Object.id ].sort());
                done();
            });
        });
    });
});

describe('Admin group', function () {
    before(function (done) {
        async.series([
            setup,
            userdb.add.bind(null, USER_0.id, USER_0)
        ], done);
    });
    after(cleanup);

    it('cannot delete admin group ever', function (done) {
        groups.remove(constants.ADMIN_GROUP_ID, function (error) {
            expect(error.reason).to.equal(GroupError.NOT_ALLOWED);

            done();
        });
    });
});
initial tests for adding group 2016-02-07 20:34:05 -08:00			`/* jslint node:true */`
			`/* global it:false */`
			`/* global describe:false */`
			`/* global before:false */`
			`/* global after:false */`

			`'use strict';`

group members: add/remove/get 2016-02-08 09:41:21 -08:00			`var async = require('async'),`
make ADMIN_GROUP_ID a constant 2016-09-20 15:07:11 -07:00			`constants = require('../constants.js'),`
group members: add/remove/get 2016-02-08 09:41:21 -08:00			`database = require('../database.js'),`
Add test to check mailbox gets add/removed with group API 2016-09-27 15:49:06 -07:00			`DatabaseError = require('../databaseerror.js'),`
initial tests for adding group 2016-02-07 20:34:05 -08:00			`expect = require('expect.js'),`
			`groups = require('../groups.js'),`
group members: add/remove/get 2016-02-08 09:41:21 -08:00			`GroupError = groups.GroupError,`
			`hat = require('hat'),`
Add test to check mailbox gets add/removed with group API 2016-09-27 15:49:06 -07:00			`mailboxdb = require('../mailboxdb.js'),`
group members: add/remove/get 2016-02-08 09:41:21 -08:00			`userdb = require('../userdb.js');`
initial tests for adding group 2016-02-07 20:34:05 -08:00
rename vars 2016-02-09 16:18:56 -08:00			`var GROUP0_NAME = 'administrators',`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`group0Object;`
more group tests 2016-02-07 20:48:06 -08:00
Add route to set the users groups 2016-02-09 15:47:02 -08:00			`var GROUP1_NAME = 'externs',`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`group1Object;`
Add route to set the users groups 2016-02-09 15:47:02 -08:00
			`var USER_0 = {`
			`id: 'uuid213',`
			`username: 'uuid213',`
			`password: 'secret',`
			`email: 'safe@me.com',`
			`admin: false,`
			`salt: 'morton',`
			`createdAt: 'sometime back',`
			`modifiedAt: 'now',`
			`resetToken: hat(256),`
Fixup all the unit tests 2016-05-06 15:16:22 +02:00			`displayName: '',`
			`showTutorial: false`
Add route to set the users groups 2016-02-09 15:47:02 -08:00			`};`

initial tests for adding group 2016-02-07 20:34:05 -08:00			`function setup(done) {`
			`// ensure data/config/mount paths`
			`database.initialize(function (error) {`
			`expect(error).to.be(null);`

more group tests 2016-02-07 20:48:06 -08:00			`database._clear(done);`
initial tests for adding group 2016-02-07 20:34:05 -08:00			`});`
			`}`

			`function cleanup(done) {`
			`database._clear(done);`
			`}`

			`describe('Groups', function () {`
			`before(setup);`
			`after(cleanup);`

			`it('cannot create group - too small', function (done) {`
			`groups.create('a', function (error) {`
merge bad fields and pass error.message correctly in REST responses 2016-06-02 00:06:54 -07:00			`expect(error.reason).to.be(GroupError.BAD_FIELD);`
initial tests for adding group 2016-02-07 20:34:05 -08:00			`done();`
			`});`
			`});`

			`it('cannot create group - too big', function (done) {`
do not allow removing the admin group 2016-02-13 12:24:51 +01:00			`groups.create(new Array(256).join('a'), function (error) {`
merge bad fields and pass error.message correctly in REST responses 2016-06-02 00:06:54 -07:00			`expect(error.reason).to.be(GroupError.BAD_FIELD);`
initial tests for adding group 2016-02-07 20:34:05 -08:00			`done();`
			`});`
			`});`

restrict group names 2016-02-08 09:41:21 -08:00			`it('cannot create group - bad name', function (done) {`
			`groups.create('bad:name', function (error) {`
merge bad fields and pass error.message correctly in REST responses 2016-06-02 00:06:54 -07:00			`expect(error.reason).to.be(GroupError.BAD_FIELD);`
restrict group names 2016-02-08 09:41:21 -08:00			`done();`
			`});`
			`});`

Add route to set the users groups 2016-02-09 15:47:02 -08:00			`it('cannot create group - reserved', function (done) {`
			`groups.create('users', function (error) {`
merge bad fields and pass error.message correctly in REST responses 2016-06-02 00:06:54 -07:00			`expect(error.reason).to.be(GroupError.BAD_FIELD);`
Add route to set the users groups 2016-02-09 15:47:02 -08:00			`done();`
			`});`
			`});`

Fix group name validation to not allow hyphen Fixes #70 2016-09-30 12:25:42 -07:00			`it('cannot create group - invalid', function (done) {`
			`groups.create('cloudron-admin', function (error) {`
			`expect(error.reason).to.be(GroupError.BAD_FIELD);`
			`done();`
			`});`
			`});`

initial tests for adding group 2016-02-07 20:34:05 -08:00			`it('can create valid group', function (done) {`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`groups.create(GROUP0_NAME, function (error, result) {`
more group tests 2016-02-07 20:48:06 -08:00			`expect(error).to.be(null);`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`group0Object = result;`
more group tests 2016-02-07 20:48:06 -08:00			`done();`
			`});`
			`});`

Add test to check mailbox gets add/removed with group API 2016-09-27 15:49:06 -07:00			`it('did create mailbox', function (done) {`
			`mailboxdb.getGroup(GROUP0_NAME.toLowerCase(), function (error, mailbox) {`
			`expect(error).to.be(null);`
			`expect(mailbox.ownerType).to.be(mailboxdb.TYPE_GROUP);`
			`done();`
			`});`
			`});`

group members: add/remove/get 2016-02-08 09:41:21 -08:00			`it('cannot add existing group', function (done) {`
rename vars 2016-02-09 16:18:56 -08:00			`groups.create(GROUP0_NAME, function (error) {`
group members: add/remove/get 2016-02-08 09:41:21 -08:00			`expect(error.reason).to.be(GroupError.ALREADY_EXISTS);`
			`done();`
			`});`
			`});`

more group tests 2016-02-07 20:48:06 -08:00			`it('cannot get invalid group', function (done) {`
			`groups.get('sometrandom', function (error) {`
			`expect(error.reason).to.be(GroupError.NOT_FOUND);`
			`done();`
			`});`
			`});`

			`it('can get valid group', function (done) {`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`groups.get(group0Object.id, function (error, group) {`
more group tests 2016-02-07 20:48:06 -08:00			`expect(error).to.be(null);`
rename vars 2016-02-09 16:18:56 -08:00			`expect(group.name).to.equal(GROUP0_NAME);`
more group tests 2016-02-07 20:48:06 -08:00			`done();`
			`});`
			`});`

			`it('cannot delete invalid group', function (done) {`
			`groups.remove('random', function (error) {`
			`expect(error.reason).to.be(GroupError.NOT_FOUND);`
			`done();`
			`});`
			`});`

			`it('can delete valid group', function (done) {`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`groups.remove(group0Object.id, function (error) {`
initial tests for adding group 2016-02-07 20:34:05 -08:00			`expect(error).to.be(null);`
			`done();`
			`});`
			`});`
Add test to check mailbox gets add/removed with group API 2016-09-27 15:49:06 -07:00
			`it('did delete mailbox', function (done) {`
			`mailboxdb.getGroup(GROUP0_NAME.toLowerCase(), function (error) {`
			`expect(error.reason).to.be(DatabaseError.NOT_FOUND);`
			`done();`
			`});`
			`});`
initial tests for adding group 2016-02-07 20:34:05 -08:00			`});`
group members: add/remove/get 2016-02-08 09:41:21 -08:00
			`describe('Group membership', function () {`
			`before(function (done) {`
			`async.series([`
			`setup,`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`function (next) {`
			`groups.create(GROUP0_NAME, function (error, result) {`
			`if (error) return next(error);`
			`group0Object = result;`
			`next();`
			`});`
			`},`
group members: add/remove/get 2016-02-08 09:41:21 -08:00			`userdb.add.bind(null, USER_0.id, USER_0)`
			`], done);`
			`});`
			`after(cleanup);`

			`it('cannot add non-existent user', function (done) {`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`groups.addMember(group0Object.id, 'randomuser', function (error) {`
group members: add/remove/get 2016-02-08 09:41:21 -08:00			`expect(error.reason).to.be(GroupError.NOT_FOUND);`
			`done();`
			`});`
			`});`

			`it('cannot add non-existent group', function (done) {`
			`groups.addMember('randomgroup', USER_0.id, function (error) {`
			`expect(error.reason).to.be(GroupError.NOT_FOUND);`
			`done();`
			`});`
			`});`

add groups.isMember 2016-02-08 10:53:01 -08:00			`it('isMember returns false', function (done) {`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`groups.isMember(group0Object.id, USER_0.id, function (error, member) {`
add groups.isMember 2016-02-08 10:53:01 -08:00			`expect(error).to.be(null);`
			`expect(member).to.be(false);`
			`done();`
			`});`
			`});`

group members: add/remove/get 2016-02-08 09:41:21 -08:00			`it('can add member', function (done) {`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`groups.addMember(group0Object.id, USER_0.id, function (error) {`
group members: add/remove/get 2016-02-08 09:41:21 -08:00			`expect(error).to.be(null);`
			`done();`
			`});`
			`});`

add groups.isMember 2016-02-08 10:53:01 -08:00			`it('isMember returns true', function (done) {`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`groups.isMember(group0Object.id, USER_0.id, function (error, member) {`
add groups.isMember 2016-02-08 10:53:01 -08:00			`expect(error).to.be(null);`
			`expect(member).to.be(true);`
			`done();`
			`});`
			`});`

group members: add/remove/get 2016-02-08 09:41:21 -08:00			`it('can get members', function (done) {`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`groups.getMembers(group0Object.id, function (error, result) {`
group members: add/remove/get 2016-02-08 09:41:21 -08:00			`expect(error).to.be(null);`
			`expect(result.length).to.be(1);`
			`expect(result[0]).to.be(USER_0.id);`
			`done();`
			`});`
			`});`

add mailboxdb.getGroup tests 2016-09-27 16:34:28 -07:00			`it('can get list members', function (done) {`
			`mailboxdb.getGroup(GROUP0_NAME.toLowerCase(), function (error, result) {`
			`expect(error).to.be(null);`
			`expect(result.name).to.be(GROUP0_NAME.toLowerCase());`
			`expect(result.ownerType).to.be(mailboxdb.TYPE_GROUP);`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`expect(result.ownerId).to.be(group0Object.id);`
add mailboxdb.getGroup tests 2016-09-27 16:34:28 -07:00			`expect(result.members).to.eql([ USER_0.username ]);`
			`done();`
			`});`
			`});`

group members: add/remove/get 2016-02-08 09:41:21 -08:00			`it('cannot get members of non-existent group', function (done) {`
			`groups.getMembers('randomgroup', function (error, result) {`
			`expect(result.length).to.be(0); // currently, we cannot differentiate invalid groups and empty groups`
			`done();`
			`});`
			`});`

			`it('cannot remove non-existent user', function (done) {`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`groups.removeMember(group0Object.id, 'randomuser', function (error) {`
group members: add/remove/get 2016-02-08 09:41:21 -08:00			`expect(error.reason).to.be(GroupError.NOT_FOUND);`
			`done();`
			`});`
			`});`

			`it('cannot remove non-existent group', function (done) {`
			`groups.removeMember('randomgroup', USER_0.id, function (error) {`
			`expect(error.reason).to.be(GroupError.NOT_FOUND);`
			`done();`
			`});`
			`});`

test setting group members 2016-09-29 15:15:25 -07:00			`it('can set groups', function (done) {`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`groups.setMembers(group0Object.id, [ USER_0.id ], function (error) {`
test setting group members 2016-09-29 15:15:25 -07:00			`expect(error).to.be(null);`
			`done();`
			`});`
			`});`

group members: add/remove/get 2016-02-08 09:41:21 -08:00			`it('can remove member', function (done) {`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`groups.removeMember(group0Object.id, USER_0.id, function (error) {`
group members: add/remove/get 2016-02-08 09:41:21 -08:00			`expect(error).to.be(null);`
			`done();`
			`});`
			`});`

			`it('has no members', function (done) {`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`groups.getMembers(group0Object.id, function (error, result) {`
group members: add/remove/get 2016-02-08 09:41:21 -08:00			`expect(error).to.be(null);`
			`expect(result.length).to.be(0);`
			`done();`
			`});`
			`});`

			`it('can remove group with no members', function (done) {`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`groups.remove(group0Object.id, function (error) {`
group members: add/remove/get 2016-02-08 09:41:21 -08:00			`expect(error).to.be(null);`
			`done();`
			`});`
			`});`
Allow non-empty groups to be deleted 2016-02-13 11:55:30 +01:00
			`it('can remove group with member', function (done) {`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`groups.create(GROUP0_NAME, function (error, result) {`
Allow non-empty groups to be deleted 2016-02-13 11:55:30 +01:00			`expect(error).to.eql(null);`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`group0Object = result;`
Allow non-empty groups to be deleted 2016-02-13 11:55:30 +01:00
use unique ids for groups 2016-09-30 09:18:41 -07:00			`groups.addMember(group0Object.id, USER_0.id, function (error) {`
Allow non-empty groups to be deleted 2016-02-13 11:55:30 +01:00			`expect(error).to.be(null);`

use unique ids for groups 2016-09-30 09:18:41 -07:00			`groups.remove(group0Object.id, function (error) {`
Allow non-empty groups to be deleted 2016-02-13 11:55:30 +01:00			`expect(error).to.eql(null);`
			`done();`
			`});`
			`});`
			`});`
			`});`
group members: add/remove/get 2016-02-08 09:41:21 -08:00			`});`
Add route to set the users groups 2016-02-09 15:47:02 -08:00
			`describe('Set user groups', function () {`
			`before(function (done) {`
			`async.series([`
			`setup,`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`function (next) {`
			`groups.create(GROUP0_NAME, function (error, result) {`
			`if (error) return next(error);`
			`group0Object = result;`
			`next();`
			`});`
			`},`
			`function (next) {`
			`groups.create(GROUP1_NAME, function (error, result) {`
			`if (error) return next(error);`
			`group1Object = result;`
			`next();`
			`});`
			`},`
Add route to set the users groups 2016-02-09 15:47:02 -08:00			`userdb.add.bind(null, USER_0.id, USER_0)`
			`], done);`
			`});`
			`after(cleanup);`

			`it('can set user to single group', function (done) {`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`groups.setGroups(USER_0.id, [ group0Object.id ], function (error) {`
Add route to set the users groups 2016-02-09 15:47:02 -08:00			`expect(error).to.be(null);`

			`groups.getGroups(USER_0.id, function (error, groupIds) {`
			`expect(error).to.be(null);`
			`expect(groupIds.length).to.be(1);`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`expect(groupIds[0]).to.be(group0Object.id);`
Add route to set the users groups 2016-02-09 15:47:02 -08:00			`done();`
			`});`
			`});`
			`});`

			`it('can set user to multiple groups', function (done) {`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`groups.setGroups(USER_0.id, [ group0Object.id, group1Object.id ], function (error) {`
Add route to set the users groups 2016-02-09 15:47:02 -08:00			`expect(error).to.be(null);`

			`groups.getGroups(USER_0.id, function (error, groupIds) {`
			`expect(error).to.be(null);`
			`expect(groupIds.length).to.be(2);`
use unique ids for groups 2016-09-30 09:18:41 -07:00			`expect(groupIds.sort()).to.eql([ group0Object.id, group1Object.id ].sort());`
Add route to set the users groups 2016-02-09 15:47:02 -08:00			`done();`
			`});`
			`});`
			`});`
			`});`
do not allow removing the admin group 2016-02-13 12:24:51 +01:00
			`describe('Admin group', function () {`
			`before(function (done) {`
			`async.series([`
			`setup,`
			`userdb.add.bind(null, USER_0.id, USER_0)`
			`], done);`
			`});`
			`after(cleanup);`

			`it('cannot delete admin group ever', function (done) {`
make ADMIN_GROUP_ID a constant 2016-09-20 15:07:11 -07:00			`groups.remove(constants.ADMIN_GROUP_ID, function (error) {`
do not allow removing the admin group 2016-02-13 12:24:51 +01:00			`expect(error.reason).to.equal(GroupError.NOT_ALLOWED);`

			`done();`
			`});`
			`});`
			`});`