| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334 |
- /* tslint:disable:no-non-null-assertion */
- import { ErrorCode } from '@vendure/common/lib/generated-shop-types';
- import { pick } from '@vendure/common/lib/pick';
- import { mergeConfig, NativeAuthenticationStrategy } from '@vendure/core';
- import { createErrorResultGuard, createTestEnvironment, ErrorResultGuard } from '@vendure/testing';
- import gql from 'graphql-tag';
- import path from 'path';
- import { initialData } from '../../../e2e-common/e2e-initial-data';
- import { testConfig, TEST_SETUP_TIMEOUT_MS } from '../../../e2e-common/test-config';
- import { TestAuthenticationStrategy, VALID_AUTH_TOKEN } from './fixtures/test-authentication-strategies';
- import { CURRENT_USER_FRAGMENT } from './graphql/fragments';
- import {
- Authenticate,
- CreateCustomer,
- CurrentUser,
- CurrentUserFragment,
- CustomerFragment,
- DeleteCustomer,
- GetCustomerHistory,
- GetCustomers,
- GetCustomerUserAuth,
- HistoryEntryType,
- Me,
- } from './graphql/generated-e2e-admin-types';
- import { Register } from './graphql/generated-e2e-shop-types';
- import { CREATE_CUSTOMER, DELETE_CUSTOMER, GET_CUSTOMER_HISTORY, ME } from './graphql/shared-definitions';
- import { REGISTER_ACCOUNT } from './graphql/shop-definitions';
- import { assertThrowsWithMessage } from './utils/assert-throws-with-message';
- describe('AuthenticationStrategy', () => {
- const { server, adminClient, shopClient } = createTestEnvironment(
- mergeConfig(testConfig, {
- authOptions: {
- shopAuthenticationStrategy: [
- new NativeAuthenticationStrategy(),
- new TestAuthenticationStrategy(),
- ],
- },
- }),
- );
- beforeAll(async () => {
- await server.init({
- initialData,
- productsCsvPath: path.join(__dirname, 'fixtures/e2e-products-minimal.csv'),
- customerCount: 1,
- });
- await adminClient.asSuperAdmin();
- }, TEST_SETUP_TIMEOUT_MS);
- afterAll(async () => {
- await server.destroy();
- });
- const currentUserGuard: ErrorResultGuard<CurrentUserFragment> = createErrorResultGuard(
- input => input.identifier != null,
- );
- const customerGuard: ErrorResultGuard<CustomerFragment> = createErrorResultGuard(
- input => input.emailAddress != null,
- );
- describe('external auth', () => {
- const userData = {
- email: 'test@email.com',
- firstName: 'Cixin',
- lastName: 'Liu',
- };
- let newCustomerId: string;
- it('fails with a bad token', async () => {
- const { authenticate } = await shopClient.query(AUTHENTICATE, {
- input: {
- test_strategy: {
- token: 'bad-token',
- },
- },
- });
- expect(authenticate.message).toBe('The provided credentials are invalid');
- expect(authenticate.errorCode).toBe(ErrorCode.INVALID_CREDENTIALS_ERROR);
- expect(authenticate.authenticationError).toBe('');
- });
- it('fails with an expried token', async () => {
- const { authenticate } = await shopClient.query(AUTHENTICATE, {
- input: {
- test_strategy: {
- token: 'expired-token',
- },
- },
- });
- expect(authenticate.message).toBe('The provided credentials are invalid');
- expect(authenticate.errorCode).toBe(ErrorCode.INVALID_CREDENTIALS_ERROR);
- expect(authenticate.authenticationError).toBe('Expired token');
- });
- it('creates a new Customer with valid token', async () => {
- const { customers: before } = await adminClient.query<GetCustomers.Query>(GET_CUSTOMERS);
- expect(before.totalItems).toBe(1);
- const { authenticate } = await shopClient.query<Authenticate.Mutation>(AUTHENTICATE, {
- input: {
- test_strategy: {
- token: VALID_AUTH_TOKEN,
- userData,
- },
- },
- });
- currentUserGuard.assertSuccess(authenticate);
- expect(authenticate.identifier).toEqual(userData.email);
- const { customers: after } = await adminClient.query<GetCustomers.Query>(GET_CUSTOMERS);
- expect(after.totalItems).toBe(2);
- expect(after.items.map(i => i.emailAddress)).toEqual([
- 'hayden.zieme12@hotmail.com',
- userData.email,
- ]);
- newCustomerId = after.items[1].id;
- });
- it('creates customer history entry', async () => {
- const { customer } = await adminClient.query<
- GetCustomerHistory.Query,
- GetCustomerHistory.Variables
- >(GET_CUSTOMER_HISTORY, {
- id: newCustomerId,
- });
- expect(
- customer?.history.items.sort((a, b) => (a.id > b.id ? 1 : -1)).map(pick(['type', 'data'])),
- ).toEqual([
- {
- type: HistoryEntryType.CUSTOMER_REGISTERED,
- data: {
- strategy: 'test_strategy',
- },
- },
- {
- type: HistoryEntryType.CUSTOMER_VERIFIED,
- data: {
- strategy: 'test_strategy',
- },
- },
- ]);
- });
- it('user authenticationMethod populated', async () => {
- const { customer } = await adminClient.query<
- GetCustomerUserAuth.Query,
- GetCustomerUserAuth.Variables
- >(GET_CUSTOMER_USER_AUTH, {
- id: newCustomerId,
- });
- expect(customer?.user?.authenticationMethods.length).toBe(1);
- expect(customer?.user?.authenticationMethods[0].strategy).toBe('test_strategy');
- });
- it('creates authenticated session', async () => {
- const { me } = await shopClient.query<Me.Query>(ME);
- expect(me?.identifier).toBe(userData.email);
- });
- it('log out', async () => {
- await shopClient.asAnonymousUser();
- });
- it('logging in again re-uses created User & Customer', async () => {
- const { authenticate } = await shopClient.query<Authenticate.Mutation>(AUTHENTICATE, {
- input: {
- test_strategy: {
- token: VALID_AUTH_TOKEN,
- userData,
- },
- },
- });
- currentUserGuard.assertSuccess(authenticate);
- expect(authenticate.identifier).toEqual(userData.email);
- const { customers: after } = await adminClient.query<GetCustomers.Query>(GET_CUSTOMERS);
- expect(after.totalItems).toBe(2);
- expect(after.items.map(i => i.emailAddress)).toEqual([
- 'hayden.zieme12@hotmail.com',
- userData.email,
- ]);
- });
- it('registerCustomerAccount with external email', async () => {
- const successErrorGuard: ErrorResultGuard<{ success: boolean }> = createErrorResultGuard(
- input => input.success != null,
- );
- const { registerCustomerAccount } = await shopClient.query<Register.Mutation, Register.Variables>(
- REGISTER_ACCOUNT,
- {
- input: {
- emailAddress: userData.email,
- },
- },
- );
- successErrorGuard.assertSuccess(registerCustomerAccount);
- expect(registerCustomerAccount.success).toBe(true);
- const { customer } = await adminClient.query<
- GetCustomerUserAuth.Query,
- GetCustomerUserAuth.Variables
- >(GET_CUSTOMER_USER_AUTH, {
- id: newCustomerId,
- });
- expect(customer?.user?.authenticationMethods.length).toBe(2);
- expect(customer?.user?.authenticationMethods[1].strategy).toBe('native');
- const { customer: customer2 } = await adminClient.query<
- GetCustomerHistory.Query,
- GetCustomerHistory.Variables
- >(GET_CUSTOMER_HISTORY, {
- id: newCustomerId,
- options: {
- skip: 2,
- },
- });
- expect(customer2?.history.items.map(pick(['type', 'data']))).toEqual([
- {
- type: HistoryEntryType.CUSTOMER_REGISTERED,
- data: {
- strategy: 'native',
- },
- },
- ]);
- });
- });
- describe('native auth', () => {
- const testEmailAddress = 'test-person@testdomain.com';
- // https://github.com/vendure-ecommerce/vendure/issues/486#issuecomment-704991768
- it('allows login for an email address which is shared by a previously-deleted Customer', async () => {
- const { createCustomer: result1 } = await adminClient.query<
- CreateCustomer.Mutation,
- CreateCustomer.Variables
- >(CREATE_CUSTOMER, {
- input: {
- firstName: 'Test',
- lastName: 'Person',
- emailAddress: testEmailAddress,
- },
- password: 'password1',
- });
- customerGuard.assertSuccess(result1);
- await adminClient.query<DeleteCustomer.Mutation, DeleteCustomer.Variables>(DELETE_CUSTOMER, {
- id: result1.id,
- });
- const { createCustomer: result2 } = await adminClient.query<
- CreateCustomer.Mutation,
- CreateCustomer.Variables
- >(CREATE_CUSTOMER, {
- input: {
- firstName: 'Test',
- lastName: 'Person',
- emailAddress: testEmailAddress,
- },
- password: 'password2',
- });
- customerGuard.assertSuccess(result2);
- const { authenticate } = await shopClient.query(AUTHENTICATE, {
- input: {
- native: {
- username: testEmailAddress,
- password: 'password2',
- },
- },
- });
- currentUserGuard.assertSuccess(authenticate);
- expect(pick(authenticate, ['id', 'identifier'])).toEqual({
- id: result2.user!.id,
- identifier: result2.emailAddress,
- });
- });
- });
- });
- const AUTHENTICATE = gql`
- mutation Authenticate($input: AuthenticationInput!) {
- authenticate(input: $input) {
- ...CurrentUser
- ... on InvalidCredentialsError {
- authenticationError
- errorCode
- message
- }
- }
- }
- ${CURRENT_USER_FRAGMENT}
- `;
- const GET_CUSTOMERS = gql`
- query GetCustomers {
- customers {
- totalItems
- items {
- id
- emailAddress
- }
- }
- }
- `;
- const GET_CUSTOMER_USER_AUTH = gql`
- query GetCustomerUserAuth($id: ID!) {
- customer(id: $id) {
- id
- user {
- id
- verified
- authenticationMethods {
- id
- strategy
- }
- }
- }
- }
- `;
|
