jprdonnelly/docs
1
0
Fork 0
mirror of synced 2025-12-21 19:06:49 -05:00
Code Issues Projects Releases Wiki Activity
Files
0976f74b1ac1da7ad5f685cfaa340712e65362df
docs/tests/rendering/events.js
Kevin Heis c450d8d555 Send CSRF tokens over XHR (#15778) 
* Send CSRF tokens over XHR

* Update events.js

* Update browser.js
2020-09-28 09:44:14 -07:00

238 lines
5.9 KiB
JavaScript
Raw Blame History

const request = require('supertest')
const Airtable = require('airtable')
const app = require('../../server')
jest.mock('airtable')
Airtable.mockImplementation(function () {
this.base = () => () => ({
create: () => [{ getId: () => 'TESTID' }],
update: () => true
})
})
describe('POST /events', () => {
jest.setTimeout(60 * 1000)
let csrfToken = ''
let agent
beforeEach(async () => {
process.env.AIRTABLE_API_KEY = '$AIRTABLE_API_KEY$'
process.env.AIRTABLE_BASE_KEY = '$AIRTABLE_BASE_KEY$'
agent = request.agent(app)
const csrfRes = await agent.get('/csrf')
csrfToken = csrfRes.body.token
})
afterEach(() => {
delete process.env.AIRTABLE_API_KEY
delete process.env.AIRTABLE_BASE_KEY
csrfToken = ''
})
describe('HELPFULNESS', () => {
const example = {
type: 'HELPFULNESS',
url: 'https://example.com',
vote: 'Yes',
email: 'test@example.com',
comment: 'This is the best page ever',
category: 'Other'
}
it('should accept a valid object', () =>
agent
.post('/events')
.send(example)
.set('Accept', 'application/json')
.set('csrf-token', csrfToken)
.expect(201)
)
it('should reject extra properties', () =>
agent
.post('/events')
.send({ ...example, toothpaste: false })
.set('Accept', 'application/json')
.set('csrf-token', csrfToken)
.expect(400)
)
it('should not accept if type is missing', () =>
agent
.post('/events')
.send({ ...example, type: undefined })
.set('Accept', 'application/json')
.set('csrf-token', csrfToken)
.expect(400)
)
it('should not accept if url is missing', () =>
agent
.post('/events')
.send({ ...example, url: undefined })
.set('Accept', 'application/json')
.set('csrf-token', csrfToken)
.expect(400)
)
it('should not accept if url is misformatted', () =>
agent
.post('/events')
.send({ ...example, url: 'examplecom' })
.set('Accept', 'application/json')
.set('csrf-token', csrfToken)
.expect(400)
)
it('should not accept if vote is missing', () =>
agent
.post('/events')
.send({ ...example, vote: undefined })
.set('Accept', 'application/json')
.set('csrf-token', csrfToken)
.expect(400)
)
it('should not accept if vote is not boolean', () =>
agent
.post('/events')
.send({ ...example, vote: 'true' })
.set('Accept', 'application/json')
.set('csrf-token', csrfToken)
.expect(400)
)
it('should not accept if email is misformatted', () =>
agent
.post('/events')
.send({ ...example, email: 'testexample.com' })
.set('Accept', 'application/json')
.set('csrf-token', csrfToken)
.expect(400)
)
it('should not accept if comment is not string', () =>
agent
.post('/events')
.send({ ...example, comment: [] })
.set('Accept', 'application/json')
.set('csrf-token', csrfToken)
.expect(400)
)
it('should not accept if category is not an option', () =>
agent
.post('/events')
.send({ ...example, category: 'Fabulous' })
.set('Accept', 'application/json')
.set('csrf-token', csrfToken)
.expect(400)
)
})
describe('EXPERIMENT', () => {
const example = {
type: 'EXPERIMENT',
user: 'ef17cf45-ba3c-4de0-9140-84eb85f0797d',
test: 'my-example-test',
group: 'control',
success: 'yes'
}
it('should accept a valid object', () =>
agent
.post('/events')
.send(example)
.set('Accept', 'application/json')
.set('csrf-token', csrfToken)
.expect(201)
)
it('should reject extra fields', () =>
agent
.post('/events')
.send({ ...example, toothpaste: false })
.set('Accept', 'application/json')
.set('csrf-token', csrfToken)
.expect(400)
)
it('should require a long unique user-id', () =>
agent
.post('/events')
.send({ ...example, 'user-id': 'short' })
.set('Accept', 'application/json')
.set('csrf-token', csrfToken)
.expect(400)
)
it('should require a test', () =>
agent
.post('/events')
.send({ ...example, test: undefined })
.set('Accept', 'application/json')
.set('csrf-token', csrfToken)
.expect(400)
)
it('should require a valid group', () =>
agent
.post('/events')
.send({ ...example, group: 'revolution' })
.set('Accept', 'application/json')
.set('csrf-token', csrfToken)
.expect(400)
)
it('should default the success field', () =>
agent
.post('/events')
.send({ ...example, success: undefined })
.set('Accept', 'application/json')
.set('csrf-token', csrfToken)
.expect(201)
)
})
})
describe('PUT /events/:id', () => {
jest.setTimeout(60 * 1000)
let csrfToken = ''
let agent
beforeEach(async () => {
process.env.AIRTABLE_API_KEY = '$AIRTABLE_API_KEY$'
process.env.AIRTABLE_BASE_KEY = '$AIRTABLE_BASE_KEY$'
agent = request.agent(app)
const csrfRes = await agent.get('/csrf')
csrfToken = csrfRes.body.token
})
afterEach(() => {
delete process.env.AIRTABLE_API_KEY
delete process.env.AIRTABLE_BASE_KEY
csrfToken = ''
})
const example = {
type: 'HELPFULNESS',
url: 'https://example.com',
vote: 'Yes',
email: 'test@example.com',
comment: 'This is the best page ever',
category: 'Other'
}
it('should update an existing HELPFULNESS event', () =>
agent
.put('/events/TESTID')
.send(example)
.set('Accept', 'application/json')
.set('csrf-token', csrfToken)
.expect(200)
)
})
Reference in New Issue View Git Blame Copy Permalink