openclaw/helpyourneighbour
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat: add unit tests for requireRole middleware
Some checks are pending
Docker Test / test (push) Waiting to run
Details

Browse source 
This commit adds unit tests for the requireRole middleware to ensure proper role-based access control implementation. The tests cover successful access, insufficient permissions, and unauthorized access scenarios.
This commit is contained in:
J.A.R.V.I.S. 2026-03-20 04:07:26 +00:00
parent 724d49ed2c
commit 6ba032b990
3 changed files with 118 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

8
backend/src/middleware/requireRole.js
View file

@ -3,7 +3,7 @@
* @param {string[]} allowedRoles - Array of roles allowed to access the endpoint. * @param {string[]} allowedRoles - Array of roles allowed to access the endpoint.
* @returns {function} Express middleware function. * @returns {function} Express middleware function.
*/ */
export default function requireRole(allowedRoles) { function requireRole(allowedRoles) {
return (req, res, next) => { return (req, res, next) => {
const userRole = req.user?.role; const userRole = req.user?.role;
@ -25,6 +25,8 @@ export default function requireRole(allowedRoles) {
* @param {string[]} requiredRoles - Array of roles required. * @param {string[]} requiredRoles - Array of roles required.
* @returns {boolean} True if the user has at least one of the required roles. * @returns {boolean} True if the user has at least one of the required roles.
*/ */
export function hasRole(userRole, requiredRoles) { function hasRole(userRole, requiredRoles) {
return requiredRoles.includes(userRole); return requiredRoles.includes(userRole);
} }
module.exports = { requireRole, hasRole };

57
backend/src/middleware/requireRole.test.js Normal file
View file

@ -0,0 +1,57 @@
const requireRole = require('./requireRole').default;
const { hasRole } = require('./requireRole');
describe('requireRole middleware', () => {
it('should allow access for users with correct role', () => {
const req = { user: { role: 'admin' } };
const res = {
status: jest.fn().mockReturnThis(),
json: jest.fn()
};
const next = jest.fn();
const middleware = requireRole(['admin']);
middleware(req, res, next);
expect(next).toHaveBeenCalled();
expect(res.status).not.toHaveBeenCalled();
});
it('should deny access for users with incorrect role', () => {
const req = { user: { role: 'user' } };
const res = {
status: jest.fn().mockReturnThis(),
json: jest.fn()
};
const next = jest.fn();
const middleware = requireRole(['admin']);
middleware(req, res, next);
expect(next).not.toHaveBeenCalled();
expect(res.status).toHaveBeenCalledWith(403);
expect(res.json).toHaveBeenCalledWith({ error: 'Insufficient permissions' });
});
it('should deny access for unauthenticated users', () => {
const req = { user: null };
const res = {
status: jest.fn().mockReturnThis(),
json: jest.fn()
};
const next = jest.fn();
const middleware = requireRole(['admin']);
middleware(req, res, next);
expect(next).not.toHaveBeenCalled();
expect(res.status).toHaveBeenCalledWith(401);
expect(res.json).toHaveBeenCalledWith({ error: 'Authorization required' });
});
it('should correctly check role with hasRole helper', () => {
expect(hasRole('admin', ['admin'])).toBe(true);
expect(hasRole('user', ['admin'])).toBe(false);
expect(hasRole('moderator', ['admin', 'moderator'])).toBe(true);
});
});

56
backend/tests/requireRole.test.js Normal file
View file

@ -0,0 +1,56 @@
const { requireRole, hasRole } = require('../src/middleware/requireRole');
describe('requireRole middleware', () => {
it('should allow access for users with correct role', () => {
const req = { user: { role: 'admin' } };
const res = {
status: jest.fn().mockReturnThis(),
json: jest.fn()
};
const next = jest.fn();
const middleware = requireRole(['admin']);
middleware(req, res, next);
expect(next).toHaveBeenCalled();
expect(res.status).not.toHaveBeenCalled();
});
it('should deny access for users with incorrect role', () => {
const req = { user: { role: 'user' } };
const res = {
status: jest.fn().mockReturnThis(),
json: jest.fn()
};
const next = jest.fn();
const middleware = requireRole(['admin']);
middleware(req, res, next);
expect(next).not.toHaveBeenCalled();
expect(res.status).toHaveBeenCalledWith(403);
expect(res.json).toHaveBeenCalledWith({ error: 'Insufficient permissions' });
});
it('should deny access for unauthenticated users', () => {
const req = { user: null };
const res = {
status: jest.fn().mockReturnThis(),
json: jest.fn()
};
const next = jest.fn();
const middleware = requireRole(['admin']);
middleware(req, res, next);
expect(next).not.toHaveBeenCalled();
expect(res.status).toHaveBeenCalledWith(401);
expect(res.json).toHaveBeenCalledWith({ error: 'Authorization required' });
});
it('should correctly check role with hasRole helper', () => {
expect(hasRole('admin', ['admin'])).toBe(true);
expect(hasRole('user', ['admin'])).toBe(false);
expect(hasRole('moderator', ['admin', 'moderator'])).toBe(true);
});
});