mirror/ditto
mirror/ditto
1
0
Fork 0
mirror of https://gitlab.com/soapbox-pub/ditto.git synced 2025-12-06 11:29:46 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
ditto/packages/mastoapi/middleware/userMiddleware.test.ts
Alex Gleason d4fc10fe3e
Add userMiddleware tests
2025-02-21 21:09:22 -06:00

99 lines
2.7 KiB
TypeScript
Raw Blame History

import { DittoConf } from '@ditto/conf';
import { DummyDB } from '@ditto/db';
import { DittoApp, type DittoMiddleware } from '@ditto/router';
import { type NostrSigner, NSecSigner } from '@nostrify/nostrify';
import { MockRelay } from '@nostrify/nostrify/test';
import { assertEquals } from '@std/assert';
import { generateSecretKey, nip19 } from 'nostr-tools';
import { userMiddleware } from './userMiddleware.ts';
import { ReadOnlySigner } from '../signers/ReadOnlySigner.ts';
import type { User } from './User.ts';
Deno.test('no user 401', async () => {
const { app } = testApp();
const response = await app.use(userMiddleware()).request('/');
assertEquals(response.status, 401);
});
Deno.test('unsupported signer 400', async () => {
const { app, relay } = testApp();
const signer = new ReadOnlySigner('0461fcbecc4c3374439932d6b8f11269ccdb7cc973ad7a50ae362db135a474dd');
const response = await app
.use(setUser({ signer, relay }))
.use(userMiddleware({ enc: 'nip44' }))
.use((c, next) => {
c.var.user.signer.nip44.encrypt; // test that the type is set
return next();
})
.request('/');
assertEquals(response.status, 400);
});
Deno.test('with user 200', async () => {
const { app, user } = testApp();
const response = await app
.use(setUser(user))
.use(userMiddleware())
.get('/', (c) => c.text('ok'))
.request('/');
assertEquals(response.status, 200);
});
Deno.test('user and role 403', async () => {
const { app, user } = testApp();
const response = await app
.use(setUser(user))
.use(userMiddleware({ role: 'admin' }))
.request('/');
assertEquals(response.status, 403);
});
Deno.test('admin role 200', async () => {
const { conf, app, user, relay } = testApp();
const event = await conf.signer.signEvent({
kind: 30382,
tags: [
['d', await user.signer.getPublicKey()],
['n', 'admin'],
],
content: '',
created_at: Math.floor(Date.now() / 1000),
});
await relay.event(event);
const response = await app
.use(setUser(user))
.use(userMiddleware({ role: 'admin' }))
.get('/', (c) => c.text('ok'))
.request('/');
assertEquals(response.status, 200);
});
function testApp() {
const relay = new MockRelay();
const signer = new NSecSigner(generateSecretKey());
const conf = new DittoConf(new Map([['DITTO_NSEC', nip19.nsecEncode(generateSecretKey())]]));
const db = new DummyDB();
const app = new DittoApp({ conf, relay, db });
const user = { signer, relay };
return { app, relay, conf, db, user };
}
function setUser<S extends NostrSigner>(user: User<S>): DittoMiddleware<{ user: User<S> }> {
return async (c, next) => {
c.set('user', user);
await next();
};
}
Reference in a new issue View git blame Copy permalink