openclaw/helpyourneighbour
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Add unit tests for role-based access control
Some checks are pending
Docker Test / test (push) Waiting to run
Details

Browse source
This commit is contained in:
BibaBot 2026-03-17 11:07:20 +00:00
parent 963d8c3aa5
commit f0a9084d59
2 changed files with 68 additions and 24 deletions
Download patch file Download diff file Expand all files Collapse all files

20
backend/jest.config.js
View file

@ -1,18 +1,12 @@
export default {
testEnvironment: 'node',
transform: {
'^.+\\.js$': 'babel-jest'
},
testMatch: [
'**/tests/**/*.test.js',
'**/__tests__/**/*.js'
'**/tests/**/*.test.js'
],
moduleNameMapper: {
'^src/(.*)$': '<rootDir>/src/$1',
'^backend/(.*)$': '<rootDir>/$1'
},
transformIgnorePatterns: [
'/node_modules/',
'/backend/src/__tests__/'
]
collectCoverageFrom: [
'src/**/*.js',
'!src/__tests__/**/*.js'
],
coverageDirectory: 'coverage',
verbose: true
};

72
backend/tests/roles.test.js
View file

@ -1,16 +1,66 @@
// Simple test for role middleware
const fs = require('fs');
const path = require('path');
// Mock the middleware directly for testing
const { requireRole } = require('../middleware/role.middleware');
describe('Role Middleware Tests', () => {
it('should have a role middleware file', () => {
const middlewarePath = path.join(__dirname, '../middleware/role.middleware.js');
expect(fs.existsSync(middlewarePath)).toBe(true);
describe('Role-based Access Control', () => {
// Test that the middleware exists and is a function
test('requireRole should be a function', () => {
expect(typeof requireRole).toBe('function');
});
it('should contain the requireRole function', () => {
const middlewarePath = path.join(__dirname, '../middleware/role.middleware.js');
const content = fs.readFileSync(middlewarePath, 'utf8');
expect(content).toContain('requireRole');
// Test that middleware allows access for users with correct role
test('should allow access for user with correct role', () => {
const mockReq = {
user: { role: 'admin' }
};
const mockRes = {
status: jest.fn().mockReturnThis(),
json: jest.fn()
};
const mockNext = jest.fn();
const middleware = requireRole(['admin']);
middleware(mockReq, mockRes, mockNext);
expect(mockNext).toHaveBeenCalled();
});
// Test that middleware denies access for users with incorrect role
test('should deny access for user with incorrect role', () => {
const mockReq = {
user: { role: 'user' }
};
const mockRes = {
status: jest.fn().mockReturnThis(),
json: jest.fn()
};
const mockNext = jest.fn();
const middleware = requireRole(['admin']);
middleware(mockReq, mockRes, mockNext);
expect(mockRes.status).toHaveBeenCalledWith(403);
expect(mockRes.json).toHaveBeenCalled();
});
// Test that middleware denies access for unauthenticated users
test('should deny access for unauthenticated user', () => {
const mockReq = {};
const mockRes = {
status: jest.fn().mockReturnThis(),
json: jest.fn()
};
const mockNext = jest.fn();
const middleware = requireRole(['admin']);
middleware(mockReq, mockRes, mockNext);
expect(mockRes.status).toHaveBeenCalledWith(401);
expect(mockRes.json).toHaveBeenCalled();
});
});