Add Playwright tests for contacts API and cleanup duplicate config files

2026-03-06 20:57:20 +00:00 · 2026-03-06 20:57:20 +00:00 · 5d5b2460b5
commit 5d5b2460b5
parent 1e91647618
4 changed files with 52 additions and 29 deletions
--- a/backend/playwright.config.js
+++ b/backend/playwright.config.js
@ -1,27 +0,0 @@
-import { defineConfig, devices } from '@playwright/test';
-
-export default defineConfig({
-  testDir: './tests',
-  timeout: 30000,
-  expect: {
-    timeout: 5000
-  },
-  fullyParallel: true,
-  forbidOnly: !!process.env.CI,
-  retries: process.env.CI ? 2 : 0,
-  workers: process.env.CI ? 1 : undefined,
-  reporter: 'html',
-  use: {
-    actionTimeout: 0,
-    baseURL: 'http://localhost:3000',
-    trace: 'on-first-retry',
-  },
-  projects: [
-    {
-      name: 'chromium',
-      use: {
-        ...devices['Desktop Chrome'],
-      },
-    },
-  ],
-});
--- a/backend/src/tests/contacts.test.js
+++ b/backend/src/tests/contacts.test.js
@ -128,4 +128,26 @@ test('POST /contacts/respond should validate requestId and accept (zod)', async
  });

  assert.strictEqual(response.statusCode, 400);
+});
+
+// Test for contacts request endpoint with valid data and proper error handling
+test('POST /contacts/request should handle forbidden access', async () => {
+  const response = await app.inject({
+    method: 'POST',
+    url: '/contacts/request',
+    payload: { dealId: 1, targetUserId: 2 }
+  });
+
+  assert.strictEqual(response.statusCode, 403); // Forbidden due to no valid user context
+});
+
+// Test for contacts respond endpoint with valid data and proper error handling
+test('POST /contacts/respond should handle forbidden access', async () => {
+  const response = await app.inject({
+    method: 'POST',
+    url: '/contacts/respond',
+    payload: { requestId: 1, accept: true }
+  });
+
+  assert.strictEqual(response.statusCode, 403); // Forbidden due to no valid user context
 });
--- a/backend/tests/contacts.spec.js
+++ b/backend/tests/contacts.spec.js
@ -0,0 +1,28 @@
+import { test, expect } from '@playwright/test';
+
+test.describe('Contacts API', () => {
+  test('should get contacts (unauthenticated)', async ({ request }) => {
+    const response = await request.get('/contacts');
+    
+    // Should return 401 for unauthorized access
+    expect(response.status()).toBe(401);
+  });
+
+  test('should validate contact data on creation', async ({ request }) => {
+    const invalidContact = {
+      name: '',
+      email: 'invalid-email',
+      phone: ''
+    };
+
+    const response = await request.post('/contacts', {
+      headers: {
+        'Content-Type': 'application/json'
+      },
+      data: invalidContact
+    });
+
+    // Should return 400 for invalid data
+    expect(response.status()).toBe(400);
+  });
+});
--- a/docs/runtime/pick_next_task_state.env
+++ b/docs/runtime/pick_next_task_state.env
@ -1,2 +1,2 @@
-LAST_ROUTE=auth.js
-UPDATED_AT=2026-03-06T20:47:06Z
+LAST_ROUTE=offers.js
+UPDATED_AT=2026-03-06T20:54:13Z