helpyourneighbour/backend/tests/roles.test.js

const request = require('supertest');
const app = require('../app');
const { requireRole } = require('../middleware/role.middleware');

describe('Role Middleware', () => {
  // Mock a user with a specific role for testing
  const mockUserWithRole = (role) => {
    return {
      role: role,
      id: 'test-user-id'
    };
  };

  // Test that the middleware allows access to users with correct roles
  test('should allow access to users with correct roles', () => {
    const mockReq = {
      user: mockUserWithRole('admin')
    };
    const mockRes = {
      status: jest.fn().mockReturnThis(),
      json: jest.fn()
    };
    const mockNext = jest.fn();

    const middleware = requireRole(['admin']);
    middleware(mockReq, mockRes, mockNext);

    expect(mockNext).toHaveBeenCalled();
  });

  // Test that the middleware denies access to users with incorrect roles
  test('should deny access to users with incorrect roles', () => {
    const mockReq = {
      user: mockUserWithRole('user')
    };
    const mockRes = {
      status: jest.fn().mockReturnThis(),
      json: jest.fn()
    };
    const mockNext = jest.fn();

    const middleware = requireRole(['admin']);
    middleware(mockReq, mockRes, mockNext);

    expect(mockRes.status).toHaveBeenCalledWith(403);
    expect(mockRes.json).toHaveBeenCalledWith({ error: 'Forbidden' });
  });

  // Test that the middleware denies access to users without roles
  test('should deny access to users without roles', () => {
    const mockReq = {
      user: null
    };
    const mockRes = {
      status: jest.fn().mockReturnThis(),
      json: jest.fn()
    };
    const mockNext = jest.fn();

    const middleware = requireRole(['admin']);
    middleware(mockReq, mockRes, mockNext);

    expect(mockRes.status).toHaveBeenCalledWith(401);
    expect(mockRes.json).toHaveBeenCalledWith({ error: 'Unauthorized' });
  });

  // Test that the middleware allows access to users with one of multiple required roles
  test('should allow access to users with one of multiple required roles', () => {
    const mockReq = {
      user: mockUserWithRole('moderator')
    };
    const mockRes = {
      status: jest.fn().mockReturnThis(),
      json: jest.fn()
    };
    const mockNext = jest.fn();

    const middleware = requireRole(['admin', 'moderator']);
    middleware(mockReq, mockRes, mockNext);

    expect(mockNext).toHaveBeenCalled();
  });
});
feat: Add role-based access control tests and update server 2026-03-16 21:07:16 +00:00			`const request = require('supertest');`
Add unit tests for role middleware 2026-03-17 07:07:36 +00:00			`const app = require('../app');`
feat: add unit tests for role middleware This commit adds comprehensive unit tests for the requireRole middleware to ensure proper role-based access control. 2026-03-17 08:06:50 +00:00			`const { requireRole } = require('../middleware/role.middleware');`
Add unit tests for role middleware 2026-03-17 07:07:36 +00:00
			`describe('Role Middleware', () => {`
			`// Mock a user with a specific role for testing`
			`const mockUserWithRole = (role) => {`
			`return {`
			`role: role,`
			`id: 'test-user-id'`
			`};`
			`};`

			`// Test that the middleware allows access to users with correct roles`
			`test('should allow access to users with correct roles', () => {`
feat: add unit tests for role middleware This commit adds comprehensive unit tests for the requireRole middleware to ensure proper role-based access control. 2026-03-17 08:06:50 +00:00			`const mockReq = {`
Add unit tests for role middleware 2026-03-17 07:07:36 +00:00			`user: mockUserWithRole('admin')`
			`};`
feat: add unit tests for role middleware This commit adds comprehensive unit tests for the requireRole middleware to ensure proper role-based access control. 2026-03-17 08:06:50 +00:00			`const mockRes = {`
Add unit tests for role middleware 2026-03-17 07:07:36 +00:00			`status: jest.fn().mockReturnThis(),`
			`json: jest.fn()`
			`};`
feat: add unit tests for role middleware This commit adds comprehensive unit tests for the requireRole middleware to ensure proper role-based access control. 2026-03-17 08:06:50 +00:00			`const mockNext = jest.fn();`
Add unit tests for role middleware 2026-03-17 07:07:36 +00:00
feat: add unit tests for role middleware This commit adds comprehensive unit tests for the requireRole middleware to ensure proper role-based access control. 2026-03-17 08:06:50 +00:00			`const middleware = requireRole(['admin']);`
			`middleware(mockReq, mockRes, mockNext);`
Add unit tests for role middleware 2026-03-17 07:07:36 +00:00
feat: add unit tests for role middleware This commit adds comprehensive unit tests for the requireRole middleware to ensure proper role-based access control. 2026-03-17 08:06:50 +00:00			`expect(mockNext).toHaveBeenCalled();`
Add unit tests for role middleware 2026-03-17 07:07:36 +00:00			`});`

			`// Test that the middleware denies access to users with incorrect roles`
			`test('should deny access to users with incorrect roles', () => {`
feat: add unit tests for role middleware This commit adds comprehensive unit tests for the requireRole middleware to ensure proper role-based access control. 2026-03-17 08:06:50 +00:00			`const mockReq = {`
Add unit tests for role middleware 2026-03-17 07:07:36 +00:00			`user: mockUserWithRole('user')`
			`};`
feat: add unit tests for role middleware This commit adds comprehensive unit tests for the requireRole middleware to ensure proper role-based access control. 2026-03-17 08:06:50 +00:00			`const mockRes = {`
Add unit tests for role middleware 2026-03-17 07:07:36 +00:00			`status: jest.fn().mockReturnThis(),`
			`json: jest.fn()`
			`};`
feat: add unit tests for role middleware This commit adds comprehensive unit tests for the requireRole middleware to ensure proper role-based access control. 2026-03-17 08:06:50 +00:00			`const mockNext = jest.fn();`
Add unit tests for role middleware 2026-03-17 07:07:36 +00:00
feat: add unit tests for role middleware This commit adds comprehensive unit tests for the requireRole middleware to ensure proper role-based access control. 2026-03-17 08:06:50 +00:00			`const middleware = requireRole(['admin']);`
			`middleware(mockReq, mockRes, mockNext);`
Add unit tests for role middleware 2026-03-17 07:07:36 +00:00
feat: add unit tests for role middleware This commit adds comprehensive unit tests for the requireRole middleware to ensure proper role-based access control. 2026-03-17 08:06:50 +00:00			`expect(mockRes.status).toHaveBeenCalledWith(403);`
			`expect(mockRes.json).toHaveBeenCalledWith({ error: 'Forbidden' });`
feat: Add role-based access control tests and update server 2026-03-16 21:07:16 +00:00			`});`

Add unit tests for role middleware 2026-03-17 07:07:36 +00:00			`// Test that the middleware denies access to users without roles`
			`test('should deny access to users without roles', () => {`
feat: add unit tests for role middleware This commit adds comprehensive unit tests for the requireRole middleware to ensure proper role-based access control. 2026-03-17 08:06:50 +00:00			`const mockReq = {`
Add unit tests for role middleware 2026-03-17 07:07:36 +00:00			`user: null`
			`};`
feat: add unit tests for role middleware This commit adds comprehensive unit tests for the requireRole middleware to ensure proper role-based access control. 2026-03-17 08:06:50 +00:00			`const mockRes = {`
Add unit tests for role middleware 2026-03-17 07:07:36 +00:00			`status: jest.fn().mockReturnThis(),`
			`json: jest.fn()`
			`};`
feat: add unit tests for role middleware This commit adds comprehensive unit tests for the requireRole middleware to ensure proper role-based access control. 2026-03-17 08:06:50 +00:00			`const mockNext = jest.fn();`
Add unit tests for role middleware 2026-03-17 07:07:36 +00:00
feat: add unit tests for role middleware This commit adds comprehensive unit tests for the requireRole middleware to ensure proper role-based access control. 2026-03-17 08:06:50 +00:00			`const middleware = requireRole(['admin']);`
			`middleware(mockReq, mockRes, mockNext);`
Add unit tests for role middleware 2026-03-17 07:07:36 +00:00
feat: add unit tests for role middleware This commit adds comprehensive unit tests for the requireRole middleware to ensure proper role-based access control. 2026-03-17 08:06:50 +00:00			`expect(mockRes.status).toHaveBeenCalledWith(401);`
			`expect(mockRes.json).toHaveBeenCalledWith({ error: 'Unauthorized' });`
feat: Add role-based access control tests and middleware integration 2026-03-17 04:07:27 +00:00			`});`

Add unit tests for role middleware 2026-03-17 07:07:36 +00:00			`// Test that the middleware allows access to users with one of multiple required roles`
			`test('should allow access to users with one of multiple required roles', () => {`
feat: add unit tests for role middleware This commit adds comprehensive unit tests for the requireRole middleware to ensure proper role-based access control. 2026-03-17 08:06:50 +00:00			`const mockReq = {`
Add unit tests for role middleware 2026-03-17 07:07:36 +00:00			`user: mockUserWithRole('moderator')`
			`};`
feat: add unit tests for role middleware This commit adds comprehensive unit tests for the requireRole middleware to ensure proper role-based access control. 2026-03-17 08:06:50 +00:00			`const mockRes = {`
Add unit tests for role middleware 2026-03-17 07:07:36 +00:00			`status: jest.fn().mockReturnThis(),`
			`json: jest.fn()`
			`};`
feat: add unit tests for role middleware This commit adds comprehensive unit tests for the requireRole middleware to ensure proper role-based access control. 2026-03-17 08:06:50 +00:00			`const mockNext = jest.fn();`
Add unit tests for role middleware 2026-03-17 07:07:36 +00:00
feat: add unit tests for role middleware This commit adds comprehensive unit tests for the requireRole middleware to ensure proper role-based access control. 2026-03-17 08:06:50 +00:00			`const middleware = requireRole(['admin', 'moderator']);`
			`middleware(mockReq, mockRes, mockNext);`
Add unit tests for role middleware 2026-03-17 07:07:36 +00:00
feat: add unit tests for role middleware This commit adds comprehensive unit tests for the requireRole middleware to ensure proper role-based access control. 2026-03-17 08:06:50 +00:00			`expect(mockNext).toHaveBeenCalled();`
feat: Add role-based access control tests and update server 2026-03-16 21:07:16 +00:00			`});`
			`});`