jjkiers/cloudron-box
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity

Allow subscopes

Browse Source 
We can now have scopes as apps:read, apps:write etc
This commit is contained in:
Girish Ramakrishnan
2018-06-14 16:37:38 -07:00
parent a9ec46c97e
commit 8795da5d20
2 changed files with 16 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
src/test/accesscontrol-test.js
View File

@@ -50,6 +50,8 @@ describe('access control', function () {
it('allows valid scopes', function () {
expect(accesscontrol.validateScope('apps')).to.be(null);
expect(accesscontrol.validateScope('apps,mail')).to.be(null);
expect(accesscontrol.validateScope('apps:read,mail')).to.be(null);
expect(accesscontrol.validateScope('apps,mail:write')).to.be(null);
});
it('disallows invalid scopes', function () {
@@ -64,11 +66,20 @@ describe('access control', function () {
expect(accesscontrol.hasScopes({ scope: 'apps' }, [ 'apps' ])).to.be(null);
expect(accesscontrol.hasScopes({ scope: 'apps,mail' }, [ 'mail' ])).to.be(null);
expect(accesscontrol.hasScopes({ scope: 'clients,*,apps,mail' }, [ 'mail' ])).to.be(null);
// subscope
expect(accesscontrol.hasScopes({ scope: 'apps' }, [ 'apps:read' ])).to.be(null);
expect(accesscontrol.hasScopes({ scope: 'apps:read' }, [ 'apps:read' ])).to.be(null);
expect(accesscontrol.hasScopes({ scope: 'apps,mail' }, [ 'apps:*' ])).to.be(null);
expect(accesscontrol.hasScopes({ scope: '*' }, [ 'apps:read' ])).to.be(null);
});
it('fails if it does not contain the scope', function () {
expect(accesscontrol.hasScopes({ scope: 'apps' }, [ 'mail' ])).to.be.an(Error);
expect(accesscontrol.hasScopes({ scope: 'apps,mail' }, [ 'clients' ])).to.be.an(Error);
// subscope
expect(accesscontrol.hasScopes({ scope: 'apps:write' }, [ 'apps:read' ])).to.be.an(Error);
});
});
});