2023-10-09 10:25:03 -04:00
|
|
|
import { SharedLinkType } from '@app/infra/entities';
|
2023-10-29 09:35:38 +08:00
|
|
|
import { BadRequestException, ForbiddenException, UnauthorizedException } from '@nestjs/common';
|
2023-06-20 21:08:43 -04:00
|
|
|
import {
|
2023-09-04 15:45:59 -04:00
|
|
|
IAccessRepositoryMock,
|
2023-06-20 21:08:43 -04:00
|
|
|
albumStub,
|
2023-07-31 21:28:07 -04:00
|
|
|
assetStub,
|
2023-06-20 21:08:43 -04:00
|
|
|
authStub,
|
|
|
|
|
newAccessRepositoryMock,
|
|
|
|
|
newCryptoRepositoryMock,
|
|
|
|
|
newSharedLinkRepositoryMock,
|
|
|
|
|
sharedLinkResponseStub,
|
|
|
|
|
sharedLinkStub,
|
|
|
|
|
} from '@test';
|
|
|
|
|
import { when } from 'jest-when';
|
|
|
|
|
import _ from 'lodash';
|
2023-10-09 10:25:03 -04:00
|
|
|
import { AssetIdErrorReason } from '../asset';
|
|
|
|
|
import { ICryptoRepository, ISharedLinkRepository } from '../repositories';
|
2023-06-16 15:54:17 -04:00
|
|
|
import { SharedLinkService } from './shared-link.service';
|
2023-06-01 22:09:57 -04:00
|
|
|
|
|
|
|
|
describe(SharedLinkService.name, () => {
|
|
|
|
|
let sut: SharedLinkService;
|
2023-06-28 09:56:24 -04:00
|
|
|
let accessMock: IAccessRepositoryMock;
|
2023-06-20 21:08:43 -04:00
|
|
|
let cryptoMock: jest.Mocked<ICryptoRepository>;
|
2023-06-01 22:09:57 -04:00
|
|
|
let shareMock: jest.Mocked<ISharedLinkRepository>;
|
|
|
|
|
|
|
|
|
|
beforeEach(async () => {
|
2023-06-20 21:08:43 -04:00
|
|
|
accessMock = newAccessRepositoryMock();
|
|
|
|
|
cryptoMock = newCryptoRepositoryMock();
|
2023-06-01 22:09:57 -04:00
|
|
|
shareMock = newSharedLinkRepositoryMock();
|
|
|
|
|
|
2023-06-20 21:08:43 -04:00
|
|
|
sut = new SharedLinkService(accessMock, cryptoMock, shareMock);
|
2023-06-01 22:09:57 -04:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should work', () => {
|
|
|
|
|
expect(sut).toBeDefined();
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
describe('getAll', () => {
|
|
|
|
|
it('should return all shared links for a user', async () => {
|
|
|
|
|
shareMock.getAll.mockResolvedValue([sharedLinkStub.expired, sharedLinkStub.valid]);
|
|
|
|
|
await expect(sut.getAll(authStub.user1)).resolves.toEqual([
|
|
|
|
|
sharedLinkResponseStub.expired,
|
|
|
|
|
sharedLinkResponseStub.valid,
|
|
|
|
|
]);
|
|
|
|
|
expect(shareMock.getAll).toHaveBeenCalledWith(authStub.user1.id);
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
describe('getMine', () => {
|
|
|
|
|
it('should only work for a public user', async () => {
|
2023-10-29 09:35:38 +08:00
|
|
|
await expect(sut.getMine(authStub.admin, {})).rejects.toBeInstanceOf(ForbiddenException);
|
2023-06-01 22:09:57 -04:00
|
|
|
expect(shareMock.get).not.toHaveBeenCalled();
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should return the shared link for the public user', async () => {
|
|
|
|
|
const authDto = authStub.adminSharedLink;
|
|
|
|
|
shareMock.get.mockResolvedValue(sharedLinkStub.valid);
|
2023-10-29 09:35:38 +08:00
|
|
|
await expect(sut.getMine(authDto, {})).resolves.toEqual(sharedLinkResponseStub.valid);
|
2023-06-01 22:09:57 -04:00
|
|
|
expect(shareMock.get).toHaveBeenCalledWith(authDto.id, authDto.sharedLinkId);
|
|
|
|
|
});
|
|
|
|
|
|
2023-10-14 03:46:30 +02:00
|
|
|
it('should not return metadata', async () => {
|
2023-06-01 22:09:57 -04:00
|
|
|
const authDto = authStub.adminSharedLinkNoExif;
|
|
|
|
|
shareMock.get.mockResolvedValue(sharedLinkStub.readonlyNoExif);
|
2023-10-29 09:35:38 +08:00
|
|
|
await expect(sut.getMine(authDto, {})).resolves.toEqual(sharedLinkResponseStub.readonlyNoMetadata);
|
|
|
|
|
expect(shareMock.get).toHaveBeenCalledWith(authDto.id, authDto.sharedLinkId);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should throw an error for an password protected shared link', async () => {
|
|
|
|
|
const authDto = authStub.adminSharedLink;
|
|
|
|
|
shareMock.get.mockResolvedValue(sharedLinkStub.passwordRequired);
|
|
|
|
|
await expect(sut.getMine(authDto, {})).rejects.toBeInstanceOf(UnauthorizedException);
|
2023-06-01 22:09:57 -04:00
|
|
|
expect(shareMock.get).toHaveBeenCalledWith(authDto.id, authDto.sharedLinkId);
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
describe('get', () => {
|
|
|
|
|
it('should throw an error for an invalid shared link', async () => {
|
|
|
|
|
shareMock.get.mockResolvedValue(null);
|
|
|
|
|
await expect(sut.get(authStub.user1, 'missing-id')).rejects.toBeInstanceOf(BadRequestException);
|
|
|
|
|
expect(shareMock.get).toHaveBeenCalledWith(authStub.user1.id, 'missing-id');
|
|
|
|
|
expect(shareMock.update).not.toHaveBeenCalled();
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should get a shared link by id', async () => {
|
|
|
|
|
shareMock.get.mockResolvedValue(sharedLinkStub.valid);
|
|
|
|
|
await expect(sut.get(authStub.user1, sharedLinkStub.valid.id)).resolves.toEqual(sharedLinkResponseStub.valid);
|
|
|
|
|
expect(shareMock.get).toHaveBeenCalledWith(authStub.user1.id, sharedLinkStub.valid.id);
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
|
2023-06-20 21:08:43 -04:00
|
|
|
describe('create', () => {
|
|
|
|
|
it('should not allow an album shared link without an albumId', async () => {
|
|
|
|
|
await expect(sut.create(authStub.admin, { type: SharedLinkType.ALBUM, assetIds: [] })).rejects.toBeInstanceOf(
|
|
|
|
|
BadRequestException,
|
|
|
|
|
);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should not allow non-owners to create album shared links', async () => {
|
|
|
|
|
await expect(
|
|
|
|
|
sut.create(authStub.admin, { type: SharedLinkType.ALBUM, assetIds: [], albumId: 'album-1' }),
|
|
|
|
|
).rejects.toBeInstanceOf(BadRequestException);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should not allow individual shared links with no assets', async () => {
|
|
|
|
|
await expect(
|
|
|
|
|
sut.create(authStub.admin, { type: SharedLinkType.INDIVIDUAL, assetIds: [] }),
|
|
|
|
|
).rejects.toBeInstanceOf(BadRequestException);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should require asset ownership to make an individual shared link', async () => {
|
2023-06-28 09:56:24 -04:00
|
|
|
accessMock.asset.hasOwnerAccess.mockResolvedValue(false);
|
2023-06-20 21:08:43 -04:00
|
|
|
await expect(
|
|
|
|
|
sut.create(authStub.admin, { type: SharedLinkType.INDIVIDUAL, assetIds: ['asset-1'] }),
|
|
|
|
|
).rejects.toBeInstanceOf(BadRequestException);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should create an album shared link', async () => {
|
2023-11-25 17:56:23 -05:00
|
|
|
accessMock.album.checkOwnerAccess.mockResolvedValue(new Set([albumStub.oneAsset.id]));
|
2023-06-20 21:08:43 -04:00
|
|
|
shareMock.create.mockResolvedValue(sharedLinkStub.valid);
|
|
|
|
|
|
|
|
|
|
await sut.create(authStub.admin, { type: SharedLinkType.ALBUM, albumId: albumStub.oneAsset.id });
|
|
|
|
|
|
2023-11-25 17:56:23 -05:00
|
|
|
expect(accessMock.album.checkOwnerAccess).toHaveBeenCalledWith(
|
|
|
|
|
authStub.admin.id,
|
|
|
|
|
new Set([albumStub.oneAsset.id]),
|
|
|
|
|
);
|
2023-06-20 21:08:43 -04:00
|
|
|
expect(shareMock.create).toHaveBeenCalledWith({
|
|
|
|
|
type: SharedLinkType.ALBUM,
|
|
|
|
|
userId: authStub.admin.id,
|
|
|
|
|
albumId: albumStub.oneAsset.id,
|
|
|
|
|
allowDownload: true,
|
|
|
|
|
allowUpload: true,
|
|
|
|
|
assets: [],
|
|
|
|
|
description: null,
|
|
|
|
|
expiresAt: null,
|
|
|
|
|
showExif: true,
|
|
|
|
|
key: Buffer.from('random-bytes', 'utf8'),
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should create an individual shared link', async () => {
|
2023-06-28 09:56:24 -04:00
|
|
|
accessMock.asset.hasOwnerAccess.mockResolvedValue(true);
|
2023-06-20 21:08:43 -04:00
|
|
|
shareMock.create.mockResolvedValue(sharedLinkStub.individual);
|
|
|
|
|
|
|
|
|
|
await sut.create(authStub.admin, {
|
|
|
|
|
type: SharedLinkType.INDIVIDUAL,
|
2023-07-31 21:28:07 -04:00
|
|
|
assetIds: [assetStub.image.id],
|
2023-10-14 03:46:30 +02:00
|
|
|
showMetadata: true,
|
2023-06-20 21:08:43 -04:00
|
|
|
allowDownload: true,
|
|
|
|
|
allowUpload: true,
|
|
|
|
|
});
|
|
|
|
|
|
2023-07-31 21:28:07 -04:00
|
|
|
expect(accessMock.asset.hasOwnerAccess).toHaveBeenCalledWith(authStub.admin.id, assetStub.image.id);
|
2023-06-20 21:08:43 -04:00
|
|
|
expect(shareMock.create).toHaveBeenCalledWith({
|
|
|
|
|
type: SharedLinkType.INDIVIDUAL,
|
|
|
|
|
userId: authStub.admin.id,
|
|
|
|
|
albumId: null,
|
|
|
|
|
allowDownload: true,
|
|
|
|
|
allowUpload: true,
|
2023-07-31 21:28:07 -04:00
|
|
|
assets: [{ id: assetStub.image.id }],
|
2023-06-20 21:08:43 -04:00
|
|
|
description: null,
|
|
|
|
|
expiresAt: null,
|
|
|
|
|
showExif: true,
|
|
|
|
|
key: Buffer.from('random-bytes', 'utf8'),
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
|
2023-06-01 22:09:57 -04:00
|
|
|
describe('update', () => {
|
|
|
|
|
it('should throw an error for an invalid shared link', async () => {
|
|
|
|
|
shareMock.get.mockResolvedValue(null);
|
|
|
|
|
await expect(sut.update(authStub.user1, 'missing-id', {})).rejects.toBeInstanceOf(BadRequestException);
|
|
|
|
|
expect(shareMock.get).toHaveBeenCalledWith(authStub.user1.id, 'missing-id');
|
|
|
|
|
expect(shareMock.update).not.toHaveBeenCalled();
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should update a shared link', async () => {
|
|
|
|
|
shareMock.get.mockResolvedValue(sharedLinkStub.valid);
|
|
|
|
|
shareMock.update.mockResolvedValue(sharedLinkStub.valid);
|
|
|
|
|
await sut.update(authStub.user1, sharedLinkStub.valid.id, { allowDownload: false });
|
|
|
|
|
expect(shareMock.get).toHaveBeenCalledWith(authStub.user1.id, sharedLinkStub.valid.id);
|
|
|
|
|
expect(shareMock.update).toHaveBeenCalledWith({
|
|
|
|
|
id: sharedLinkStub.valid.id,
|
|
|
|
|
userId: authStub.user1.id,
|
|
|
|
|
allowDownload: false,
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
describe('remove', () => {
|
|
|
|
|
it('should throw an error for an invalid shared link', async () => {
|
|
|
|
|
shareMock.get.mockResolvedValue(null);
|
|
|
|
|
await expect(sut.remove(authStub.user1, 'missing-id')).rejects.toBeInstanceOf(BadRequestException);
|
|
|
|
|
expect(shareMock.get).toHaveBeenCalledWith(authStub.user1.id, 'missing-id');
|
|
|
|
|
expect(shareMock.update).not.toHaveBeenCalled();
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should remove a key', async () => {
|
|
|
|
|
shareMock.get.mockResolvedValue(sharedLinkStub.valid);
|
|
|
|
|
await sut.remove(authStub.user1, sharedLinkStub.valid.id);
|
|
|
|
|
expect(shareMock.get).toHaveBeenCalledWith(authStub.user1.id, sharedLinkStub.valid.id);
|
|
|
|
|
expect(shareMock.remove).toHaveBeenCalledWith(sharedLinkStub.valid);
|
|
|
|
|
});
|
|
|
|
|
});
|
2023-06-20 21:08:43 -04:00
|
|
|
|
|
|
|
|
describe('addAssets', () => {
|
|
|
|
|
it('should not work on album shared links', async () => {
|
|
|
|
|
shareMock.get.mockResolvedValue(sharedLinkStub.valid);
|
|
|
|
|
await expect(sut.addAssets(authStub.admin, 'link-1', { assetIds: ['asset-1'] })).rejects.toBeInstanceOf(
|
|
|
|
|
BadRequestException,
|
|
|
|
|
);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should add assets to a shared link', async () => {
|
|
|
|
|
shareMock.get.mockResolvedValue(_.cloneDeep(sharedLinkStub.individual));
|
|
|
|
|
shareMock.create.mockResolvedValue(sharedLinkStub.individual);
|
|
|
|
|
|
2023-06-28 09:56:24 -04:00
|
|
|
when(accessMock.asset.hasOwnerAccess).calledWith(authStub.admin.id, 'asset-2').mockResolvedValue(false);
|
|
|
|
|
when(accessMock.asset.hasOwnerAccess).calledWith(authStub.admin.id, 'asset-3').mockResolvedValue(true);
|
2023-06-20 21:08:43 -04:00
|
|
|
|
|
|
|
|
await expect(
|
2023-07-31 21:28:07 -04:00
|
|
|
sut.addAssets(authStub.admin, 'link-1', { assetIds: [assetStub.image.id, 'asset-2', 'asset-3'] }),
|
2023-06-20 21:08:43 -04:00
|
|
|
).resolves.toEqual([
|
2023-07-31 21:28:07 -04:00
|
|
|
{ assetId: assetStub.image.id, success: false, error: AssetIdErrorReason.DUPLICATE },
|
2023-06-20 21:08:43 -04:00
|
|
|
{ assetId: 'asset-2', success: false, error: AssetIdErrorReason.NO_PERMISSION },
|
|
|
|
|
{ assetId: 'asset-3', success: true },
|
|
|
|
|
]);
|
|
|
|
|
|
2023-06-28 09:56:24 -04:00
|
|
|
expect(accessMock.asset.hasOwnerAccess).toHaveBeenCalledTimes(2);
|
2023-06-20 21:08:43 -04:00
|
|
|
expect(shareMock.update).toHaveBeenCalledWith({
|
|
|
|
|
...sharedLinkStub.individual,
|
2023-07-31 21:28:07 -04:00
|
|
|
assets: [assetStub.image, { id: 'asset-3' }],
|
2023-06-20 21:08:43 -04:00
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
describe('removeAssets', () => {
|
|
|
|
|
it('should not work on album shared links', async () => {
|
|
|
|
|
shareMock.get.mockResolvedValue(sharedLinkStub.valid);
|
|
|
|
|
await expect(sut.removeAssets(authStub.admin, 'link-1', { assetIds: ['asset-1'] })).rejects.toBeInstanceOf(
|
|
|
|
|
BadRequestException,
|
|
|
|
|
);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should remove assets from a shared link', async () => {
|
|
|
|
|
shareMock.get.mockResolvedValue(_.cloneDeep(sharedLinkStub.individual));
|
|
|
|
|
shareMock.create.mockResolvedValue(sharedLinkStub.individual);
|
|
|
|
|
|
|
|
|
|
await expect(
|
2023-07-31 21:28:07 -04:00
|
|
|
sut.removeAssets(authStub.admin, 'link-1', { assetIds: [assetStub.image.id, 'asset-2'] }),
|
2023-06-20 21:08:43 -04:00
|
|
|
).resolves.toEqual([
|
2023-07-31 21:28:07 -04:00
|
|
|
{ assetId: assetStub.image.id, success: true },
|
2023-06-20 21:08:43 -04:00
|
|
|
{ assetId: 'asset-2', success: false, error: AssetIdErrorReason.NOT_FOUND },
|
|
|
|
|
]);
|
|
|
|
|
|
|
|
|
|
expect(shareMock.update).toHaveBeenCalledWith({ ...sharedLinkStub.individual, assets: [] });
|
|
|
|
|
});
|
|
|
|
|
});
|
2023-06-01 22:09:57 -04:00
|
|
|
});
|
