accounts-frontend/tests-e2e/cypress/integration/invalid-refreshToken.test.ts

311 lines
8.9 KiB
TypeScript
Raw Normal View History

// account1 - authenticated
// account2 - invalid refreshToken
import { account1, account2 } from '../fixtures/accounts.json';
const multiAccount = createState();
const multiAccountWithBadTokens = createState();
const singleAccount = createState();
singleAccount.accounts.available = singleAccount.accounts.available.filter(
account => account.id === singleAccount.accounts.active,
);
2019-06-30 16:55:43 +05:30
describe("when user's token and refreshToken are invalid", () => {
before(() =>
// ensure we always have one account with correct token
cy.visit('/').then(() =>
fetch('/api/authentication/login', {
method: 'POST',
headers: {
'Content-Type': 'application/x-www-form-urlencoded; charset=UTF-8',
},
body: `login=${account1.login}&password=${account1.password}`,
})
.then(resp => resp.json())
.then(resp => {
const account = multiAccount.accounts.available.find(
2019-12-07 16:58:52 +05:30
item => item.username === account1.username,
);
2019-12-07 16:58:52 +05:30
if (!account) {
throw new Error('Can not find an account');
}
account.token = resp.access_token;
}),
),
);
beforeEach(() =>
localStorage.setItem('redux-storage', JSON.stringify(multiAccount)),
);
it('should ask for password', () => {
cy.visit('/');
cy.url().should('include', '/password');
cy.get('[name="password"]').type(`${account2.password}{enter}`);
cy.location('pathname', { timeout: 15000 }).should('eq', '/');
cy.contains('account preferences');
});
it('should not allow to return to profile using toolbar', () => {
cy.visit('/');
cy.url().should('include', '/password');
cy.get('[data-e2e-toolbar] a')
.contains('Ely.by')
.click();
// TODO: currently we can not skip redirect to /, but we will in future
cy.location('pathname', { timeout: 15000 }).should('eq', '/');
cy.url({ timeout: 15000 }).should('include', '/password');
});
it('should allow select account', () => {
// TODO: need a way to get valid token for one of the accounts
cy.visit('/');
cy.get('[data-e2e-go-back]').click();
cy.url().should('include', '/choose-account');
cy.get('[data-e2e-content]')
.contains(account2.email)
.should('not.exist');
cy.get('[data-e2e-content]')
.contains(account1.username)
.click();
cy.location('pathname', { timeout: 15000 }).should('eq', '/');
cy.contains('account preferences');
});
it('it should redirect to login, when one account and clicking back', () => {
cy.url().should(() =>
localStorage.setItem('redux-storage', JSON.stringify(singleAccount)),
);
cy.visit('/');
cy.url().should('include', '/password');
cy.get('[data-e2e-go-back]').click();
cy.url().should('include', '/login');
cy.get('[data-e2e-toolbar]').contains('Join');
});
it('should allow logout', () => {
cy.visit('/');
cy.get('@fetch', { timeout: 15000 }).should(
'be.calledWith',
`/api/v1/accounts/${account2.id}`,
);
cy.get('[data-e2e-toolbar]')
.contains(account2.username)
.click();
cy.get('[data-e2e-toolbar]')
.contains('Log out')
.click();
cy.get('@fetch', { timeout: 15000 }).should(
'be.calledWith',
'/api/authentication/logout',
);
cy.get('[data-e2e-toolbar]')
.contains(account2.email)
.should('not.exist');
cy.get('[data-e2e-toolbar]')
.contains(account2.username)
.should('not.exist');
});
it('should allow enter new login from choose account', () => {
cy.visit('/');
cy.get('@fetch', { timeout: 15000 }).should(
'be.calledWith',
`/api/v1/accounts/${account2.id}`,
);
cy.url().should('include', '/password');
cy.get('[data-e2e-go-back]').click();
cy.get('[name=password]').should('not.exist'); // wait till panel transition end
cy.url().should('include', '/choose-account');
cy.contains('Log into another').click();
cy.url().should('include', '/login');
cy.get('[name=login]').type(`${account1.login}{enter}`);
cy.url().should('include', '/password');
cy.get('[name=password]').type(account1.password);
cy.get('[name=rememberMe]').should('be.checked');
cy.get('[type=submit]').click();
cy.location('pathname', { timeout: 15000 }).should('eq', '/');
});
it('should allow logout from all accounts while choosing an account', () => {
cy.visit('/');
cy.get('[data-e2e-go-back]').click();
cy.url().should('include', '/choose-account');
cy.contains('Log out from all accounts').click();
cy.url().should('include', '/login');
cy.get('[data-e2e-toolbar]').contains('a', 'Join');
});
it('should ask for password if selected account with bad token', () => {
cy.url().should(() =>
localStorage.setItem(
'redux-storage',
JSON.stringify(multiAccountWithBadTokens),
),
);
cy.visit('/');
cy.get('[data-e2e-go-back]').click();
cy.url().should('include', '/choose-account');
cy.get('[data-e2e-content]')
.contains(account1.username)
.click();
cy.url().should('include', '/password');
// TODO: remove wait and fix logic so that
// it won't show 'Please enter Email or username' error
cy.wait(1000);
cy.get('[name="password"]').type(`${account1.password}{enter}`);
cy.location('pathname', { timeout: 15000 }).should('eq', '/');
cy.contains('account preferences');
});
/**
* This is a regression test for the edge case, when user tries to register new
* account during a passowrd request to get new refreshToken for the current
* active account
*
* Expected result:
* It should show register page, when user clicks 'Register new account'
*
* Actual result:
* User was redirected from register page back to password page due to recursive
* atempt to get new refreshToken
*
* @see https://trello.com/c/iINbZ2l2
*/
it('should allow enter register page during password request for other account with invalid token', () => {
cy.visit('/');
cy.url().should('contain', '/password');
cy.get('[data-e2e-go-back]').click();
cy.get('[name=password]').should('not.exist'); // wait till panel transition end
cy.contains('[type=submit]', 'Log into another account').click();
cy.contains('a', 'Create new account').click();
cy.url().should('contain', '/register');
});
/**
* This is a regression test for the edge case, when user tries to register new
* account via direct sign up page link
*
* Expected result:
* It should show register page
*
* Actual result:
* User was redirected from register page back to password page due to recursive
* atempt to get new refreshToken
*
* @see https://trello.com/c/iINbZ2l2
*/
it('should allow enter register page, when current account has invalid token', () => {
cy.visit('/register');
cy.url().should('contain', '/register');
});
it('should allow oauth', () => {
cy.visit(
'/oauth2/v1/ely?client_id=ely&redirect_uri=http%3A%2F%2Fely.by%2Fauthorization%2Foauth&response_type=code&scope=account_info%2Caccount_email',
);
cy.url().should('contain', '/password');
cy.get('[name=password]').type(`${account2.password}{enter}`);
cy.url({ timeout: 15000 }).should('contain', '/oauth/choose-account');
cy.get('[data-e2e-content]')
.contains(account2.username)
.click();
cy.url().should('contain', '//ely.by');
});
});
function createState() {
return {
accounts: {
available: [
{
id: 7,
username: 'SleepWalker',
email: 'danilenkos@auroraglobal.com',
token:
'eyJhbGciOiJIUzI1NiJ9.eyJlbHktc2NvcGVzIjoiYWNjb3VudHNfd2ViX3VzZXIiLCJpYXQiOjE1MTgzNzM4MDksImV4cCI6MTUxODM3NzQwOSwic3ViIjoiZWx5fDciLCJqdGkiOjM1NDh9.Fv4AbJ0iDbrH3bhbgF0ViJLfYYiwH78deR4fMlMhKrQ',
refreshToken:
'3gh6ZZ3R9jGeFdp0TmlY7sd0zBxH6Zfq48M86eUAv952RcAKx32RAnjlKkgd6i-MV-RKbjtADIdoRwMUWOYQjEYtwwXPjcQJ',
},
{
id: 102,
username: 'test',
email: 'admin@udf.su',
token:
'eyJhbGciOiJIUzI1NiJ9.eyJlbHktc2NvcGVzIjoiYWNjb3VudHNfd2ViX3VzZXIiLCJpYXQiOjE1MTgzNzM4NjUsImV4cCI6MTUxODM3NzQ2NSwic3ViIjoiZWx5fDEwMiIsImp0aSI6MzU0OX0.eJEgvXT3leGqBe3tYNGZb0E4WEvWfrLPjcD7eNjyQYO',
refreshToken:
'Al75SIx-LFOCP7kaqZBVqMVmSljJw9_bdFQGyuM64c6ShP7YsXbkCD8vPOundAwUDfRZqsIbOHUROmAHPB0VBfjLfw96yqxx',
},
],
active: 102,
},
user: {
id: 102,
uuid: 'e49cafdc-6e0c-442d-b608-dacdb864ee34',
username: 'test',
token: '',
email: 'admin@udf.su',
maskedEmail: '',
avatar: '',
lang: 'en',
isActive: true,
isOtpEnabled: true,
shouldAcceptRules: false,
passwordChangedAt: 1478961317,
hasMojangUsernameCollision: true,
isGuest: false,
registeredAt: 1478961317,
elyProfileLink: 'http://ely.by/u102',
},
};
}