server/src/services/api-key.service.spec.ts

import { BadRequestException } from '@nestjs/common';
import { Permission } from 'src/enum';
import { APIKeyService } from 'src/services/api-key.service';
import { keyStub } from 'test/fixtures/api-key.stub';
import { authStub } from 'test/fixtures/auth.stub';
import { newTestService, ServiceMocks } from 'test/utils';

describe(APIKeyService.name, () => {
  let sut: APIKeyService;
  let mocks: ServiceMocks;

  beforeEach(() => {
    ({ sut, mocks } = newTestService(APIKeyService));
  });

  describe('create', () => {
    it('should create a new key', async () => {
      mocks.apiKey.create.mockResolvedValue(keyStub.admin);
      await sut.create(authStub.admin, { name: 'Test Key', permissions: [Permission.ALL] });
      expect(mocks.apiKey.create).toHaveBeenCalledWith({
        key: 'cmFuZG9tLWJ5dGVz (hashed)',
        name: 'Test Key',
        permissions: [Permission.ALL],
        userId: authStub.admin.user.id,
      });
      expect(mocks.crypto.newPassword).toHaveBeenCalled();
      expect(mocks.crypto.hashSha256).toHaveBeenCalled();
    });

    it('should not require a name', async () => {
      mocks.apiKey.create.mockResolvedValue(keyStub.admin);

      await sut.create(authStub.admin, { permissions: [Permission.ALL] });

      expect(mocks.apiKey.create).toHaveBeenCalledWith({
        key: 'cmFuZG9tLWJ5dGVz (hashed)',
        name: 'API Key',
        permissions: [Permission.ALL],
        userId: authStub.admin.user.id,
      });
      expect(mocks.crypto.newPassword).toHaveBeenCalled();
      expect(mocks.crypto.hashSha256).toHaveBeenCalled();
    });

    it('should throw an error if the api key does not have sufficient permissions', async () => {
      await expect(
        sut.create({ ...authStub.admin, apiKey: keyStub.authKey }, { permissions: [Permission.ASSET_READ] }),
      ).rejects.toBeInstanceOf(BadRequestException);
    });
  });

  describe('update', () => {
    it('should throw an error if the key is not found', async () => {
      await expect(sut.update(authStub.admin, 'random-guid', { name: 'New Name' })).rejects.toBeInstanceOf(
        BadRequestException,
      );

      expect(mocks.apiKey.update).not.toHaveBeenCalledWith('random-guid');
    });

    it('should update a key', async () => {
      mocks.apiKey.getById.mockResolvedValue(keyStub.admin);
      mocks.apiKey.update.mockResolvedValue(keyStub.admin);

      await sut.update(authStub.admin, 'random-guid', { name: 'New Name' });

      expect(mocks.apiKey.update).toHaveBeenCalledWith(authStub.admin.user.id, 'random-guid', { name: 'New Name' });
    });
  });

  describe('delete', () => {
    it('should throw an error if the key is not found', async () => {
      await expect(sut.delete(authStub.admin, 'random-guid')).rejects.toBeInstanceOf(BadRequestException);

      expect(mocks.apiKey.delete).not.toHaveBeenCalledWith('random-guid');
    });

    it('should delete a key', async () => {
      mocks.apiKey.getById.mockResolvedValue(keyStub.admin);

      await sut.delete(authStub.admin, 'random-guid');

      expect(mocks.apiKey.delete).toHaveBeenCalledWith(authStub.admin.user.id, 'random-guid');
    });
  });

  describe('getById', () => {
    it('should throw an error if the key is not found', async () => {
      await expect(sut.getById(authStub.admin, 'random-guid')).rejects.toBeInstanceOf(BadRequestException);

      expect(mocks.apiKey.getById).toHaveBeenCalledWith(authStub.admin.user.id, 'random-guid');
    });

    it('should get a key by id', async () => {
      mocks.apiKey.getById.mockResolvedValue(keyStub.admin);

      await sut.getById(authStub.admin, 'random-guid');

      expect(mocks.apiKey.getById).toHaveBeenCalledWith(authStub.admin.user.id, 'random-guid');
    });
  });

  describe('getAll', () => {
    it('should return all the keys for a user', async () => {
      mocks.apiKey.getByUserId.mockResolvedValue([keyStub.admin]);

      await expect(sut.getAll(authStub.admin)).resolves.toHaveLength(1);

      expect(mocks.apiKey.getByUserId).toHaveBeenCalledWith(authStub.admin.user.id);
    });
  });
});
fix(server): auth strategies (#1459) * fix(server): auth strategies * chore: tests 2023-01-28 00:12:11 -05:00			`import { BadRequestException } from '@nestjs/common';`
feat(server): granular permissions for api keys (#11824) feat(server): api auth permissions 2024-08-16 09:48:43 -04:00			`import { Permission } from 'src/enum';`
chore(server): move services (#8133) move services 2024-03-21 00:07:30 +01:00			`import { APIKeyService } from 'src/services/api-key.service';`
chore(server): use absolute import paths (#8080) update server to use absolute import paths 2024-03-20 19:32:04 +01:00			`import { keyStub } from 'test/fixtures/api-key.stub';`
			`import { authStub } from 'test/fixtures/auth.stub';`
refactor: test mocks (#16008) 2025-02-10 18:47:42 -05:00			`import { newTestService, ServiceMocks } from 'test/utils';`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00
			`describe(APIKeyService.name, () => {`
			`let sut: APIKeyService;`
refactor: test mocks (#16008) 2025-02-10 18:47:42 -05:00			`let mocks: ServiceMocks;`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00
chore(server): eslint await-thenable (#7545) * await-thenable * fix library watchers * moar eslint * fix test * fix typo * try to remove check void return * fix checksVoidReturn * move to domain utils * remove eslint ignores * chore: cleanup types * chore: use logger * fix: e2e --------- Co-authored-by: Ben McCann <322311+benmccann@users.noreply.github.com> Co-authored-by: Jason Rasmussen <jrasm91@gmail.com> 2024-03-05 23:23:06 +01:00			`beforeEach(() => {`
refactor: test mocks (#16008) 2025-02-10 18:47:42 -05:00			`({ sut, mocks } = newTestService(APIKeyService));`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00			`});`

			`describe('create', () => {`
			`it('should create a new key', async () => {`
refactor: test mocks (#16008) 2025-02-10 18:47:42 -05:00			`mocks.apiKey.create.mockResolvedValue(keyStub.admin);`
feat(server): granular permissions for api keys (#11824) feat(server): api auth permissions 2024-08-16 09:48:43 -04:00			`await sut.create(authStub.admin, { name: 'Test Key', permissions: [Permission.ALL] });`
refactor: test mocks (#16008) 2025-02-10 18:47:42 -05:00			`expect(mocks.apiKey.create).toHaveBeenCalledWith({`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00			`key: 'cmFuZG9tLWJ5dGVz (hashed)',`
			`name: 'Test Key',`
feat(server): granular permissions for api keys (#11824) feat(server): api auth permissions 2024-08-16 09:48:43 -04:00			`permissions: [Permission.ALL],`
refactor(server): auth dto (#5593) * refactor: AuthUserDto => AuthDto * refactor: reorganize auth-dto * refactor: AuthUser() => Auth() 2023-12-09 23:34:12 -05:00			`userId: authStub.admin.user.id,`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00			`});`
refactor: test mocks (#16008) 2025-02-10 18:47:42 -05:00			`expect(mocks.crypto.newPassword).toHaveBeenCalled();`
			`expect(mocks.crypto.hashSha256).toHaveBeenCalled();`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00			`});`

			`it('should not require a name', async () => {`
refactor: test mocks (#16008) 2025-02-10 18:47:42 -05:00			`mocks.apiKey.create.mockResolvedValue(keyStub.admin);`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00
feat(server): granular permissions for api keys (#11824) feat(server): api auth permissions 2024-08-16 09:48:43 -04:00			`await sut.create(authStub.admin, { permissions: [Permission.ALL] });`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00
refactor: test mocks (#16008) 2025-02-10 18:47:42 -05:00			`expect(mocks.apiKey.create).toHaveBeenCalledWith({`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00			`key: 'cmFuZG9tLWJ5dGVz (hashed)',`
			`name: 'API Key',`
feat(server): granular permissions for api keys (#11824) feat(server): api auth permissions 2024-08-16 09:48:43 -04:00			`permissions: [Permission.ALL],`
refactor(server): auth dto (#5593) * refactor: AuthUserDto => AuthDto * refactor: reorganize auth-dto * refactor: AuthUser() => Auth() 2023-12-09 23:34:12 -05:00			`userId: authStub.admin.user.id,`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00			`});`
refactor: test mocks (#16008) 2025-02-10 18:47:42 -05:00			`expect(mocks.crypto.newPassword).toHaveBeenCalled();`
			`expect(mocks.crypto.hashSha256).toHaveBeenCalled();`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00			`});`
chore: finishing unit tests for a couple of services (#13292) 2024-10-08 23:08:49 +02:00
			`it('should throw an error if the api key does not have sufficient permissions', async () => {`
			`await expect(`
feat: migration api keys to use kysely (#15206) 2025-01-10 14:02:12 -05:00			`sut.create({ ...authStub.admin, apiKey: keyStub.authKey }, { permissions: [Permission.ASSET_READ] }),`
chore: finishing unit tests for a couple of services (#13292) 2024-10-08 23:08:49 +02:00			`).rejects.toBeInstanceOf(BadRequestException);`
			`});`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00			`});`

			`describe('update', () => {`
			`it('should throw an error if the key is not found', async () => {`
infra(server): fix Album TypeORM relations and change ids to uuids (#1582) * infra: make api-key primary key column a UUID * infra: move ManyToMany relations in album entity, make ownerId ManyToOne --------- Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2023-02-18 20:58:55 +00:00			`await expect(sut.update(authStub.admin, 'random-guid', { name: 'New Name' })).rejects.toBeInstanceOf(`
			`BadRequestException,`
			`);`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00
refactor: test mocks (#16008) 2025-02-10 18:47:42 -05:00			`expect(mocks.apiKey.update).not.toHaveBeenCalledWith('random-guid');`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00			`});`

			`it('should update a key', async () => {`
refactor: test mocks (#16008) 2025-02-10 18:47:42 -05:00			`mocks.apiKey.getById.mockResolvedValue(keyStub.admin);`
			`mocks.apiKey.update.mockResolvedValue(keyStub.admin);`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00
infra(server): fix Album TypeORM relations and change ids to uuids (#1582) * infra: make api-key primary key column a UUID * infra: move ManyToMany relations in album entity, make ownerId ManyToOne --------- Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2023-02-18 20:58:55 +00:00			`await sut.update(authStub.admin, 'random-guid', { name: 'New Name' });`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00
refactor: test mocks (#16008) 2025-02-10 18:47:42 -05:00			`expect(mocks.apiKey.update).toHaveBeenCalledWith(authStub.admin.user.id, 'random-guid', { name: 'New Name' });`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00			`});`
			`});`

			`describe('delete', () => {`
			`it('should throw an error if the key is not found', async () => {`
infra(server): fix Album TypeORM relations and change ids to uuids (#1582) * infra: make api-key primary key column a UUID * infra: move ManyToMany relations in album entity, make ownerId ManyToOne --------- Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2023-02-18 20:58:55 +00:00			`await expect(sut.delete(authStub.admin, 'random-guid')).rejects.toBeInstanceOf(BadRequestException);`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00
refactor: test mocks (#16008) 2025-02-10 18:47:42 -05:00			`expect(mocks.apiKey.delete).not.toHaveBeenCalledWith('random-guid');`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00			`});`

			`it('should delete a key', async () => {`
refactor: test mocks (#16008) 2025-02-10 18:47:42 -05:00			`mocks.apiKey.getById.mockResolvedValue(keyStub.admin);`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00
infra(server): fix Album TypeORM relations and change ids to uuids (#1582) * infra: make api-key primary key column a UUID * infra: move ManyToMany relations in album entity, make ownerId ManyToOne --------- Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2023-02-18 20:58:55 +00:00			`await sut.delete(authStub.admin, 'random-guid');`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00
refactor: test mocks (#16008) 2025-02-10 18:47:42 -05:00			`expect(mocks.apiKey.delete).toHaveBeenCalledWith(authStub.admin.user.id, 'random-guid');`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00			`});`
			`});`

			`describe('getById', () => {`
			`it('should throw an error if the key is not found', async () => {`
infra(server): fix Album TypeORM relations and change ids to uuids (#1582) * infra: make api-key primary key column a UUID * infra: move ManyToMany relations in album entity, make ownerId ManyToOne --------- Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2023-02-18 20:58:55 +00:00			`await expect(sut.getById(authStub.admin, 'random-guid')).rejects.toBeInstanceOf(BadRequestException);`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00
refactor: test mocks (#16008) 2025-02-10 18:47:42 -05:00			`expect(mocks.apiKey.getById).toHaveBeenCalledWith(authStub.admin.user.id, 'random-guid');`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00			`});`

			`it('should get a key by id', async () => {`
refactor: test mocks (#16008) 2025-02-10 18:47:42 -05:00			`mocks.apiKey.getById.mockResolvedValue(keyStub.admin);`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00
infra(server): fix Album TypeORM relations and change ids to uuids (#1582) * infra: make api-key primary key column a UUID * infra: move ManyToMany relations in album entity, make ownerId ManyToOne --------- Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2023-02-18 20:58:55 +00:00			`await sut.getById(authStub.admin, 'random-guid');`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00
refactor: test mocks (#16008) 2025-02-10 18:47:42 -05:00			`expect(mocks.apiKey.getById).toHaveBeenCalledWith(authStub.admin.user.id, 'random-guid');`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00			`});`
			`});`

			`describe('getAll', () => {`
			`it('should return all the keys for a user', async () => {`
refactor: test mocks (#16008) 2025-02-10 18:47:42 -05:00			`mocks.apiKey.getByUserId.mockResolvedValue([keyStub.admin]);`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00
			`await expect(sut.getAll(authStub.admin)).resolves.toHaveLength(1);`

refactor: test mocks (#16008) 2025-02-10 18:47:42 -05:00			`expect(mocks.apiKey.getByUserId).toHaveBeenCalledWith(authStub.admin.user.id);`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 09:40:15 -05:00			`});`
			`});`
			`});`