RPJosh
/
authelia
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
authelia/test/suites/high-availability/scenarii/AccessControl.ts

118 lines
5.6 KiB
TypeScript
Raw Normal View History

Migrate some tests to mocha.
2019-02-09 22:20:37 +00:00
import LoginAndRegisterTotp from "../../../helpers/LoginAndRegisterTotp";
Migrate more Cucumber tests into Mocha.
2019-02-12 22:23:43 +00:00
import VerifySecretObserved from "../../../helpers/assertions/VerifySecretObserved";
Migrate some tests to mocha.
2019-02-09 22:20:37 +00:00
import WithDriver from "../../../helpers/context/WithDriver";
import FillLoginPageAndClick from "../../../helpers/FillLoginPageAndClick";
import ValidateTotp from "../../../helpers/ValidateTotp";
import Logout from "../../../helpers/Logout";
Add test behavior VisitPageAndWaitUrlIs.
2019-02-12 22:41:19 +00:00
import VisitPageAndWaitUrlIs from "../../../helpers/behaviors/VisitPageAndWaitUrlIs";
[BREAKING] Create a suite for kubernetes tests. Authelia client uses hash router instead of browser router in order to work with Kubernetes nginx-ingress-controller. This is also better for users having old browsers. This commit is breaking because it requires to change the configuration of the proxy to include the # in the URL of the login portal.
2019-03-03 22:51:52 +00:00
import VerifyBodyContains from "../../../helpers/assertions/VerifyBodyContains";
import VerifyIsSecondFactorStage from "../../../helpers/assertions/VerifyIsSecondFactorStage";
import VerifyUrlIs from "../../../helpers/assertions/VerifyUrlIs";
Migrate some tests to mocha.
2019-02-09 22:20:37 +00:00
async function ShouldHaveAccessTo(url: string) {
it('should have access to ' + url, async function() {
Add test behavior VisitPageAndWaitUrlIs.
2019-02-12 22:41:19 +00:00
await VisitPageAndWaitUrlIs(this.driver, url);
Migrate more Cucumber tests into Mocha.
2019-02-12 22:23:43 +00:00
await VerifySecretObserved(this.driver);
Migrate some tests to mocha.
2019-02-09 22:20:37 +00:00
})
}
async function ShouldNotHaveAccessTo(url: string) {
it('should not have access to ' + url, async function() {
[BREAKING] Create a suite for kubernetes tests. Authelia client uses hash router instead of browser router in order to work with Kubernetes nginx-ingress-controller. This is also better for users having old browsers. This commit is breaking because it requires to change the configuration of the proxy to include the # in the URL of the login portal.
2019-03-03 22:51:52 +00:00
await VisitPageAndWaitUrlIs(this.driver, url);
await VerifyBodyContains(this.driver, "403 Forbidden");
Migrate some tests to mocha.
2019-02-09 22:20:37 +00:00
})
}
// we verify that the user has only access to want he is granted to.
export default function() {
// We ensure that bob has access to what he is granted to
describe('Permissions of user john', function() {
after(async function() {
await Logout(this.driver);
})
WithDriver();
before(async function() {
Finish migrating integration tests to mocha.
2019-02-13 23:27:43 +00:00
const secret = await LoginAndRegisterTotp(this.driver, "john", "password", true);
[BREAKING] Create a suite for kubernetes tests. Authelia client uses hash router instead of browser router in order to work with Kubernetes nginx-ingress-controller. This is also better for users having old browsers. This commit is breaking because it requires to change the configuration of the proxy to include the # in the URL of the login portal.
2019-03-03 22:51:52 +00:00
await VisitPageAndWaitUrlIs(this.driver, 'https://login.example.com:8080/#/');
Migrate some tests to mocha.
2019-02-09 22:20:37 +00:00
await FillLoginPageAndClick(this.driver, 'john', 'password', false);
await ValidateTotp(this.driver, secret);
[BREAKING] Create a suite for kubernetes tests. Authelia client uses hash router instead of browser router in order to work with Kubernetes nginx-ingress-controller. This is also better for users having old browsers. This commit is breaking because it requires to change the configuration of the proxy to include the # in the URL of the login portal.
2019-03-03 22:51:52 +00:00
// Default URL in conf is home.
await VerifyUrlIs(this.driver, 'https://home.example.com:8080/');
Migrate some tests to mocha.
2019-02-09 22:20:37 +00:00
})
ShouldHaveAccessTo('https://public.example.com:8080/secret.html');
[BREAKING] Create a suite for kubernetes tests. Authelia client uses hash router instead of browser router in order to work with Kubernetes nginx-ingress-controller. This is also better for users having old browsers. This commit is breaking because it requires to change the configuration of the proxy to include the # in the URL of the login portal.
2019-03-03 22:51:52 +00:00
ShouldHaveAccessTo('https://secure.example.com:8080/secret.html');
Migrate some tests to mocha.
2019-02-09 22:20:37 +00:00
ShouldHaveAccessTo('https://dev.example.com:8080/groups/admin/secret.html');
ShouldHaveAccessTo('https://dev.example.com:8080/groups/dev/secret.html');
ShouldHaveAccessTo('https://dev.example.com:8080/users/john/secret.html');
ShouldHaveAccessTo('https://dev.example.com:8080/users/harry/secret.html');
ShouldHaveAccessTo('https://dev.example.com:8080/users/bob/secret.html');
ShouldHaveAccessTo('https://admin.example.com:8080/secret.html');
ShouldHaveAccessTo('https://mx1.mail.example.com:8080/secret.html');
[BREAKING] Create a suite for kubernetes tests. Authelia client uses hash router instead of browser router in order to work with Kubernetes nginx-ingress-controller. This is also better for users having old browsers. This commit is breaking because it requires to change the configuration of the proxy to include the # in the URL of the login portal.
2019-03-03 22:51:52 +00:00
ShouldHaveAccessTo('https://singlefactor.example.com:8080/secret.html');
Migrate some tests to mocha.
2019-02-09 22:20:37 +00:00
ShouldNotHaveAccessTo('https://mx2.mail.example.com:8080/secret.html');
})
// We ensure that bob has access to what he is granted to
describe('Permissions of user bob', function() {
after(async function() {
await Logout(this.driver);
})
WithDriver();
before(async function() {
Finish migrating integration tests to mocha.
2019-02-13 23:27:43 +00:00
const secret = await LoginAndRegisterTotp(this.driver, "bob", "password", true);
[BREAKING] Create a suite for kubernetes tests. Authelia client uses hash router instead of browser router in order to work with Kubernetes nginx-ingress-controller. This is also better for users having old browsers. This commit is breaking because it requires to change the configuration of the proxy to include the # in the URL of the login portal.
2019-03-03 22:51:52 +00:00
await VisitPageAndWaitUrlIs(this.driver, 'https://login.example.com:8080/#/');
Migrate some tests to mocha.
2019-02-09 22:20:37 +00:00
await FillLoginPageAndClick(this.driver, 'bob', 'password', false);
await ValidateTotp(this.driver, secret);
[BREAKING] Create a suite for kubernetes tests. Authelia client uses hash router instead of browser router in order to work with Kubernetes nginx-ingress-controller. This is also better for users having old browsers. This commit is breaking because it requires to change the configuration of the proxy to include the # in the URL of the login portal.
2019-03-03 22:51:52 +00:00
// Default URL in conf is home.
await VerifyUrlIs(this.driver, 'https://home.example.com:8080/');
Migrate some tests to mocha.
2019-02-09 22:20:37 +00:00
})
ShouldHaveAccessTo('https://public.example.com:8080/secret.html');
[BREAKING] Create a suite for kubernetes tests. Authelia client uses hash router instead of browser router in order to work with Kubernetes nginx-ingress-controller. This is also better for users having old browsers. This commit is breaking because it requires to change the configuration of the proxy to include the # in the URL of the login portal.
2019-03-03 22:51:52 +00:00
ShouldHaveAccessTo('https://secure.example.com:8080/secret.html');
Migrate some tests to mocha.
2019-02-09 22:20:37 +00:00
ShouldNotHaveAccessTo('https://dev.example.com:8080/groups/admin/secret.html');
ShouldHaveAccessTo('https://dev.example.com:8080/groups/dev/secret.html');
ShouldNotHaveAccessTo('https://dev.example.com:8080/users/john/secret.html');
ShouldNotHaveAccessTo('https://dev.example.com:8080/users/harry/secret.html');
ShouldHaveAccessTo('https://dev.example.com:8080/users/bob/secret.html');
ShouldNotHaveAccessTo('https://admin.example.com:8080/secret.html');
ShouldHaveAccessTo('https://mx1.mail.example.com:8080/secret.html');
[BREAKING] Create a suite for kubernetes tests. Authelia client uses hash router instead of browser router in order to work with Kubernetes nginx-ingress-controller. This is also better for users having old browsers. This commit is breaking because it requires to change the configuration of the proxy to include the # in the URL of the login portal.
2019-03-03 22:51:52 +00:00
ShouldHaveAccessTo('https://singlefactor.example.com:8080/secret.html');
Migrate some tests to mocha.
2019-02-09 22:20:37 +00:00
ShouldHaveAccessTo('https://mx2.mail.example.com:8080/secret.html');
})
// We ensure that harry has access to what he is granted to
describe('Permissions of user harry', function() {
after(async function() {
await Logout(this.driver);
})
WithDriver();
before(async function() {
Finish migrating integration tests to mocha.
2019-02-13 23:27:43 +00:00
const secret = await LoginAndRegisterTotp(this.driver, "harry", "password", true);
[BREAKING] Create a suite for kubernetes tests. Authelia client uses hash router instead of browser router in order to work with Kubernetes nginx-ingress-controller. This is also better for users having old browsers. This commit is breaking because it requires to change the configuration of the proxy to include the # in the URL of the login portal.
2019-03-03 22:51:52 +00:00
await VisitPageAndWaitUrlIs(this.driver, 'https://login.example.com:8080/#/');
Migrate some tests to mocha.
2019-02-09 22:20:37 +00:00
await FillLoginPageAndClick(this.driver, 'harry', 'password', false);
await ValidateTotp(this.driver, secret);
[BREAKING] Create a suite for kubernetes tests. Authelia client uses hash router instead of browser router in order to work with Kubernetes nginx-ingress-controller. This is also better for users having old browsers. This commit is breaking because it requires to change the configuration of the proxy to include the # in the URL of the login portal.
2019-03-03 22:51:52 +00:00
// Default URL in conf is home.
await VerifyUrlIs(this.driver, 'https://home.example.com:8080/');
Migrate some tests to mocha.
2019-02-09 22:20:37 +00:00
})
ShouldHaveAccessTo('https://public.example.com:8080/secret.html');
[BREAKING] Create a suite for kubernetes tests. Authelia client uses hash router instead of browser router in order to work with Kubernetes nginx-ingress-controller. This is also better for users having old browsers. This commit is breaking because it requires to change the configuration of the proxy to include the # in the URL of the login portal.
2019-03-03 22:51:52 +00:00
ShouldHaveAccessTo('https://secure.example.com:8080/secret.html');
Migrate some tests to mocha.
2019-02-09 22:20:37 +00:00
ShouldNotHaveAccessTo('https://dev.example.com:8080/groups/admin/secret.html');
ShouldNotHaveAccessTo('https://dev.example.com:8080/groups/dev/secret.html');
ShouldNotHaveAccessTo('https://dev.example.com:8080/users/john/secret.html');
ShouldHaveAccessTo('https://dev.example.com:8080/users/harry/secret.html');
ShouldNotHaveAccessTo('https://dev.example.com:8080/users/bob/secret.html');
ShouldNotHaveAccessTo('https://admin.example.com:8080/secret.html');
ShouldNotHaveAccessTo('https://mx1.mail.example.com:8080/secret.html');
[BREAKING] Create a suite for kubernetes tests. Authelia client uses hash router instead of browser router in order to work with Kubernetes nginx-ingress-controller. This is also better for users having old browsers. This commit is breaking because it requires to change the configuration of the proxy to include the # in the URL of the login portal.
2019-03-03 22:51:52 +00:00
ShouldHaveAccessTo('https://singlefactor.example.com:8080/secret.html');
Migrate some tests to mocha.
2019-02-09 22:20:37 +00:00
ShouldNotHaveAccessTo('https://mx2.mail.example.com:8080/secret.html');
})
}