mirror of
https://github.com/CommunitySolidServer/CommunitySolidServer.git
synced 2024-10-03 14:55:10 +00:00
b3f292d718
* feat: added resourceExists method to ResourceStore * Merge remote-tracking branch 'origin/main' into feat/add-resourceExists-method-to-ResourceStore * fix: adapted to review * fix: adapted to review
161 lines
6.2 KiB
TypeScript
161 lines
6.2 KiB
TypeScript
import { createReadStream } from 'fs';
|
|
import type { HttpHandler, Initializer, ResourceStore } from '../../src/';
|
|
import { LDP, BasicRepresentation, joinFilePath } from '../../src/';
|
|
import { AclHelper, ResourceHelper } from '../util/TestHelpers';
|
|
import { BASE, getTestFolder, removeFolder, instantiateFromConfig } from './Config';
|
|
|
|
const rootFilePath = getTestFolder('full-config-acl');
|
|
const stores: [string, any][] = [
|
|
[ 'in-memory storage', {
|
|
storeUrn: 'urn:solid-server:default:MemoryResourceStore',
|
|
teardown: jest.fn(),
|
|
}],
|
|
[ 'on-disk storage', {
|
|
storeUrn: 'urn:solid-server:default:FileResourceStore',
|
|
teardown: (): void => removeFolder(rootFilePath),
|
|
}],
|
|
];
|
|
|
|
describe.each(stores)('An LDP handler with auth using %s', (name, { storeUrn, teardown }): void => {
|
|
let handler: HttpHandler;
|
|
let aclHelper: AclHelper;
|
|
let resourceHelper: ResourceHelper;
|
|
|
|
beforeAll(async(): Promise<void> => {
|
|
const variables: Record<string, any> = {
|
|
'urn:solid-server:default:variable:baseUrl': BASE,
|
|
'urn:solid-server:default:variable:rootFilePath': rootFilePath,
|
|
};
|
|
const internalStore = await instantiateFromConfig(
|
|
storeUrn,
|
|
'ldp-with-auth.json',
|
|
variables,
|
|
) as ResourceStore;
|
|
variables['urn:solid-server:default:variable:store'] = internalStore;
|
|
|
|
// Create and initialize the HTTP handler and related components
|
|
let initializer: Initializer;
|
|
let store: ResourceStore;
|
|
const instances = await instantiateFromConfig(
|
|
'urn:solid-server:test:Instances',
|
|
'ldp-with-auth.json',
|
|
variables,
|
|
) as Record<string, any>;
|
|
({ handler, store, initializer } = instances);
|
|
// Set up the internal store
|
|
await initializer.handleSafe();
|
|
|
|
// Create test helpers for manipulating the components
|
|
aclHelper = new AclHelper(store, BASE);
|
|
resourceHelper = new ResourceHelper(handler, BASE);
|
|
|
|
// Write test resource
|
|
await store.setRepresentation({ path: `${BASE}/permanent.txt` },
|
|
new BasicRepresentation(createReadStream(joinFilePath(__dirname, '../assets/permanent.txt')), 'text/plain'));
|
|
});
|
|
|
|
afterAll(async(): Promise<void> => {
|
|
await teardown();
|
|
});
|
|
|
|
it('can add a file to the store, read it and delete it if allowed.', async(): Promise<void> => {
|
|
// Set acl
|
|
await aclHelper.setSimpleAcl({ read: true, write: true, append: true, control: false }, 'agent');
|
|
|
|
// Create file
|
|
const filePath = 'testfile2.txt';
|
|
const fileUrl = `${BASE}/${filePath}`;
|
|
let response = await resourceHelper.createResource(
|
|
'../assets/testfile2.txt', filePath, 'text/plain',
|
|
);
|
|
|
|
// Get file
|
|
response = await resourceHelper.getResource(fileUrl);
|
|
expect(response.statusCode).toBe(200);
|
|
expect(response._getBuffer().toString()).toContain('TESTFILE2');
|
|
expect(response.getHeaders().link).toContain(`<${LDP.Resource}>; rel="type"`);
|
|
expect(response.getHeaders().link).toContain(`<${fileUrl}.acl>; rel="acl"`);
|
|
expect(response.getHeaders()['wac-allow']).toBe('user="read write append",public="read write append"');
|
|
|
|
// DELETE file
|
|
await resourceHelper.deleteResource(fileUrl);
|
|
await resourceHelper.shouldNotExist(fileUrl);
|
|
});
|
|
|
|
it('can not add a file to the store if not allowed.', async(): Promise<void> => {
|
|
// Set acl
|
|
await aclHelper.setSimpleAcl({ read: true, write: true, append: true, control: false }, 'authenticated');
|
|
|
|
// Try to create file
|
|
const filePath = 'testfile2.txt';
|
|
const response = await resourceHelper.createResource(
|
|
'../assets/testfile2.txt', filePath, 'text/plain', true,
|
|
);
|
|
expect(response.statusCode).toBe(401);
|
|
});
|
|
|
|
it('can not add/delete, but only read files if allowed.', async(): Promise<void> => {
|
|
// Set acl
|
|
await aclHelper.setSimpleAcl({ read: true, write: false, append: false, control: false }, 'agent');
|
|
|
|
// Try to create file
|
|
const filePath = 'testfile2.txt';
|
|
let response = await resourceHelper.createResource(
|
|
'../assets/testfile2.txt', filePath, 'text/plain', true,
|
|
);
|
|
expect(response.statusCode).toBe(401);
|
|
|
|
// GET permanent file
|
|
response = await resourceHelper.getResource('http://test.com/permanent.txt');
|
|
expect(response._getBuffer().toString()).toContain('TEST');
|
|
expect(response.getHeaders().link).toContain(`<${LDP.Resource}>; rel="type"`);
|
|
expect(response.getHeaders().link).toContain(`<http://test.com/permanent.txt.acl>; rel="acl"`);
|
|
expect(response.getHeaders()['wac-allow']).toBe('user="read",public="read"');
|
|
|
|
// Try to delete permanent file
|
|
response = await resourceHelper.deleteResource('http://test.com/permanent.txt', true);
|
|
expect(response.statusCode).toBe(401);
|
|
});
|
|
|
|
it('can add files but not write to them if append is allowed.', async(): Promise<void> => {
|
|
// Set acl
|
|
await aclHelper.setSimpleAcl({ read: true, write: false, append: true, control: false }, 'agent');
|
|
|
|
// Add a file
|
|
const filePath = 'testfile2.txt';
|
|
let response = await resourceHelper.performRequestWithBody(
|
|
new URL(`${BASE}/`),
|
|
'POST',
|
|
{
|
|
'content-type': 'text/plain',
|
|
'transfer-encoding': 'chunked',
|
|
slug: filePath,
|
|
},
|
|
Buffer.from('data'),
|
|
);
|
|
expect(response.statusCode).toBe(201);
|
|
|
|
response = await resourceHelper.createResource(
|
|
'../assets/testfile2.txt', filePath, 'text/plain', true,
|
|
);
|
|
expect(response.statusCode).toBe(401);
|
|
});
|
|
|
|
it('can not access an acl file if no control rights are provided.', async(): Promise<void> => {
|
|
// Set acl
|
|
await aclHelper.setSimpleAcl({ read: true, write: true, append: true, control: false }, 'agent');
|
|
|
|
const response = await resourceHelper.performRequest(new URL('http://test.com/.acl'), 'GET', { accept: '*/*' });
|
|
expect(response.statusCode).toBe(401);
|
|
});
|
|
|
|
it('can only access an acl file if control rights are provided.', async(): Promise<void> => {
|
|
// Set acl
|
|
await aclHelper.setSimpleAcl({ read: false, write: false, append: false, control: true }, 'agent');
|
|
|
|
const response = await resourceHelper.performRequest(new URL('http://test.com/.acl'), 'GET', { accept: '*/*' });
|
|
expect(response.statusCode).toBe(200);
|
|
expect(response.getHeaders()['wac-allow']).toBe('user="control",public="control"');
|
|
});
|
|
});
|