starred/pocket-id
1
0
Fork 0
mirror of https://github.com/pocket-id/pocket-id.git synced 2025-12-12 17:23:18 +03:00
Code Issues 121 Packages Projects Releases 16 Wiki Activity
Files
91b0d74c4369b4bc0e570d5e2598945f3622b4e2
pocket-id/tests/specs/apps-dashboard.spec.ts
Elias Schneider 0aab3f3c7a fix: authorization can't be revoked
2025-08-23 17:28:27 +02:00

81 lines
2.7 KiB
TypeScript
Raw Blame History

import test, { expect } from '@playwright/test';
import authUtil from 'utils/auth.util';
import { oidcClients } from '../data';
import { cleanupBackend } from '../utils/cleanup.util';
test.beforeEach(async () => await cleanupBackend());
test('Dashboard shows all clients in the correct order', async ({ page }) => {
const client1 = oidcClients.tailscale;
const client2 = oidcClients.nextcloud;
await page.goto('/settings/apps');
await expect(page.getByTestId('authorized-oidc-client-card')).toHaveCount(4);
// Should be first
const card1 = page.getByTestId('authorized-oidc-client-card').first();
await expect(card1.getByRole('heading')).toHaveText(client1.name);
const card2 = page.getByTestId('authorized-oidc-client-card').nth(1);
await expect(card2.getByRole('heading', { name: client2.name })).toBeVisible();
await expect(card2.getByText(new URL(client2.launchURL).hostname)).toBeVisible();
});
test.describe('Dashboard shows only clients where user has access', () => {
test("User can't see one client", async ({ page }) => {
await authUtil.changeUser(page, 'craig');
const notVisibleClient = oidcClients.immich;
await page.goto('/settings/apps');
const cards = page.getByTestId('authorized-oidc-client-card');
await expect(cards).toHaveCount(3);
const cardTexts = await cards.allTextContents();
expect(cardTexts.some((text) => text.includes(notVisibleClient.name))).toBe(false);
});
test('User can see all clients', async ({ page }) => {
await page.goto('/settings/apps');
const cards = page.getByTestId('authorized-oidc-client-card');
await expect(cards).toHaveCount(4);
});
});
test('Revoke authorized client', async ({ page }) => {
const client = oidcClients.tailscale;
await page.goto('/settings/apps');
const card = page.getByTestId('authorized-oidc-client-card').filter({ hasText: client.name });
card.getByRole('button', { name: 'Toggle menu' }).click();
await page.getByRole('menuitem', { name: 'Revoke' }).click();
await page.getByRole('button', { name: 'Revoke' }).click();
await expect(page.locator('[data-type="success"]')).toHaveText(
`The access to ${client.name} has been successfully revoked.`
);
// The ... ago text should be gone as there is no last access anymore
await expect(card).not.toContainText('ago');
});
test('Launch authorized client', async ({ page }) => {
const client = oidcClients.nextcloud;
await page.goto('/settings/apps');
const card1 = page.getByTestId('authorized-oidc-client-card').first();
await expect(card1.getByRole('button', { name: 'Launch' })).toBeDisabled();
const card2 = page.getByTestId('authorized-oidc-client-card').nth(1);
await expect(card2.getByRole('link', { name: 'Launch' })).toHaveAttribute(
'href',
client.launchURL
);
});
Reference in New Issue View Git Blame Copy Permalink