36c6106cad
* fix not using babel * wip * added tests, moved to map, polifill-like to convert between object and map * basic structure setup * working, found new bug * change buttons * fix login issue * remove logging code * address CR comments * remove custom function in favor of airbnb shim * fix linting * fix PM requested changes * [MM-25323] fix basic auth cancelling * fix crash when multiple request were made * address UX comments, added external link for user convenience
99 lines
3.4 KiB
JavaScript
99 lines
3.4 KiB
JavaScript
// Copyright (c) 2016-present Mattermost, Inc. All Rights Reserved.
|
|
// See LICENSE.txt for license information.
|
|
'use strict';
|
|
|
|
import assert from 'assert';
|
|
import 'airbnb-js-shims/target/es2015';
|
|
|
|
import TrustedOriginsStore from '../../../src/main/trustedOrigins.js';
|
|
import {BASIC_AUTH_PERMISSION} from '../../../src/common/permissions.js';
|
|
|
|
function mockTOS(fileName, returnvalue) {
|
|
const tos = new TrustedOriginsStore(fileName);
|
|
tos.readFromFile = () => {
|
|
return returnvalue;
|
|
};
|
|
return tos;
|
|
}
|
|
|
|
describe('Trusted Origins', () => {
|
|
describe('validate load', () => {
|
|
it('should be empty if there is no file', () => {
|
|
const tos = mockTOS('emptyfile', null);
|
|
tos.load();
|
|
assert.deepEqual(tos.data.size, 0);
|
|
});
|
|
|
|
it('should throw an error if data isn\'t an object', () => {
|
|
const tos = mockTOS('notobject', 'this is not my object!');
|
|
|
|
assert.throws(tos.load, SyntaxError);
|
|
});
|
|
|
|
it('should throw an error if data isn\'t in the expected format', () => {
|
|
const tos = mockTOS('badobject', '{"https://mattermost.com": "this is not my object!"}');
|
|
assert.throws(tos.load, /^Error: Provided TrustedOrigins file does not validate, using defaults instead\.$/);
|
|
});
|
|
|
|
it('should drop keys that aren\'t urls', () => {
|
|
const tos = mockTOS('badobject2', `{"this is not an uri": {"${BASIC_AUTH_PERMISSION}": true}}`);
|
|
tos.load();
|
|
assert.equal(typeof tos.data['this is not an uri'], 'undefined');
|
|
});
|
|
|
|
it('should contain valid data if everything goes right', () => {
|
|
const value = {
|
|
'https://mattermost.com': {
|
|
[BASIC_AUTH_PERMISSION]: true,
|
|
}};
|
|
const tos = mockTOS('okfile', JSON.stringify(value));
|
|
tos.load();
|
|
assert.deepEqual(Object.fromEntries(tos.data.entries()), value);
|
|
});
|
|
});
|
|
describe('validate testing permissions', () => {
|
|
const value = {
|
|
'https://mattermost.com': {
|
|
[BASIC_AUTH_PERMISSION]: true,
|
|
},
|
|
'https://notmattermost.com': {
|
|
[BASIC_AUTH_PERMISSION]: false,
|
|
},
|
|
};
|
|
const tos = mockTOS('permission_test', JSON.stringify(value));
|
|
tos.load();
|
|
it('tos should contain 2 elements', () => {
|
|
assert.equal(tos.data.size, 2);
|
|
});
|
|
it('should say ok if the permission is set', () => {
|
|
assert.equal(tos.checkPermission('https://mattermost.com', BASIC_AUTH_PERMISSION), true);
|
|
});
|
|
it('should say ko if the permission is set to false', () => {
|
|
assert.equal(tos.checkPermission('https://notmattermost.com', BASIC_AUTH_PERMISSION), false);
|
|
});
|
|
it('should say ko if the uri is not set', () => {
|
|
assert.equal(tos.checkPermission('https://undefined.com', BASIC_AUTH_PERMISSION), null);
|
|
});
|
|
it('should say null if the permission is unknown', () => {
|
|
assert.equal(tos.checkPermission('https://mattermost.com'), null);
|
|
});
|
|
});
|
|
|
|
describe('validate deleting permissions', () => {
|
|
const value = {
|
|
'https://mattermost.com': {
|
|
[BASIC_AUTH_PERMISSION]: true,
|
|
},
|
|
'https://notmattermost.com': {
|
|
[BASIC_AUTH_PERMISSION]: false,
|
|
},
|
|
};
|
|
const tos = mockTOS('permission_test', JSON.stringify(value));
|
|
tos.load();
|
|
it('deleting revokes access', () => {
|
|
assert.equal(tos.checkPermission('https://mattermost.com', BASIC_AUTH_PERMISSION), true);
|
|
tos.delete('https://mattermost.com');
|
|
assert.equal(tos.checkPermission('https://mattermost.com', BASIC_AUTH_PERMISSION), null);
|
|
});
|
|
});
|
|
}); |