mirror of
https://github.com/ether/etherpad-lite.git
synced 2025-04-24 01:16:15 -04:00
fb56809e55
* Added oauth provider. * Fixed provider. * Added auth flow. * Fixed auth flow and added scaffolding vite config. * Added working oauth2. * Fixed dockerfile. * Adapted run.sh script * Moved api tests to oauth2. * Updated security schemes. * Removed api key from existance. * Fixed installation * Added missing issuer in config. * Fixed dev dependencies. * Updated lock file.
101 lines
3.1 KiB
TypeScript
101 lines
3.1 KiB
TypeScript
'use strict';
|
|
|
|
/*
|
|
* This file is copied & modified from <basedir>/src/tests/backend/specs/api/pad.js
|
|
*
|
|
* TODO: maybe unify those two files and merge in a single one.
|
|
*/
|
|
|
|
import {generateJWTToken, generateJWTTokenUser} from "../../common";
|
|
|
|
const assert = require('assert').strict;
|
|
const common = require('../../common');
|
|
const fs = require('fs');
|
|
const fsp = fs.promises;
|
|
|
|
let agent:any;
|
|
let apiVersion = 1;
|
|
const testPadId = makeid();
|
|
|
|
const endPoint = (point:string, version?:number) => `/api/${version || apiVersion}/${point}`;
|
|
|
|
describe(__filename, function () {
|
|
before(async function () { agent = await common.init(); });
|
|
|
|
describe('Sanity checks', function () {
|
|
it('can connect', async function () {
|
|
await agent.get('/api/')
|
|
.set("Authorization", await generateJWTToken())
|
|
.expect(200)
|
|
.expect('Content-Type', /json/);
|
|
});
|
|
|
|
it('finds the version tag', async function () {
|
|
const res = await agent.get('/api/')
|
|
.set("Authorization", await generateJWTToken())
|
|
.expect(200);
|
|
apiVersion = res.body.currentVersion;
|
|
assert(apiVersion);
|
|
});
|
|
|
|
it('errors with invalid OAuth token', async function () {
|
|
// This is broken because Etherpad doesn't handle HTTP codes properly see #2343
|
|
await agent.get(`/api/${apiVersion}/createPad?padID=test`)
|
|
.set("Authorization", (await generateJWTToken()).substring(0,10))
|
|
.expect(401);
|
|
});
|
|
|
|
it('errors with unprivileged OAuth token', async function () {
|
|
// This is broken because Etherpad doesn't handle HTTP codes properly see #2343
|
|
await agent.get(`/api/${apiVersion}/createPad?padID=test`)
|
|
.set("Authorization", (await generateJWTTokenUser()).substring(0,10))
|
|
.expect(401);
|
|
});
|
|
});
|
|
|
|
describe('Tests', function () {
|
|
it('creates a new Pad', async function () {
|
|
const res = await agent.get(`${endPoint('createPad')}?padID=${testPadId}`)
|
|
.set("Authorization", await generateJWTToken())
|
|
.expect(200)
|
|
.expect('Content-Type', /json/);
|
|
assert.equal(res.body.code, 0);
|
|
});
|
|
|
|
it('Sets the HTML of a Pad attempting to weird utf8 encoded content', async function () {
|
|
const res = await agent.post(endPoint('setHTML'))
|
|
.set("Authorization", await generateJWTToken())
|
|
.send({
|
|
padID: testPadId,
|
|
html: await fsp.readFile('tests/backend/specs/api/emojis.html', 'utf8'),
|
|
})
|
|
.expect(200)
|
|
.expect('Content-Type', /json/);
|
|
assert.equal(res.body.code, 0);
|
|
});
|
|
|
|
it('get the HTML of Pad with emojis', async function () {
|
|
const res = await agent.get(`${endPoint('getHTML')}?padID=${testPadId}`)
|
|
.set("Authorization", await generateJWTToken())
|
|
.expect(200)
|
|
.expect('Content-Type', /json/);
|
|
assert.match(res.body.data.html, /🇼/);
|
|
});
|
|
});
|
|
});
|
|
|
|
/*
|
|
|
|
End of test
|
|
|
|
*/
|
|
|
|
function makeid() {
|
|
let text = '';
|
|
const possible = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789';
|
|
|
|
for (let i = 0; i < 10; i++) {
|
|
text += possible.charAt(Math.floor(Math.random() * possible.length));
|
|
}
|
|
return text;
|
|
}
|