mirror of
https://github.com/CommunitySolidServer/CommunitySolidServer.git
synced 2024-10-03 14:55:10 +00:00
c46d01d3d7
This was only used for the WAC-Allow header and greatly simplifies how we use permissions.
72 lines
2.9 KiB
TypeScript
72 lines
2.9 KiB
TypeScript
import type { PermissionReader, PermissionReaderInput } from '../../../src/authorization/PermissionReader';
|
|
import type { PermissionSet } from '../../../src/authorization/permissions/Permissions';
|
|
import { AccessMode } from '../../../src/authorization/permissions/Permissions';
|
|
import { UnionPermissionReader } from '../../../src/authorization/UnionPermissionReader';
|
|
import { IdentifierMap, IdentifierSetMultiMap } from '../../../src/util/map/IdentifierMap';
|
|
import { compareMaps } from '../../util/Util';
|
|
|
|
describe('A UnionPermissionReader', (): void => {
|
|
const identifier = { path: 'http://example.com/foo' };
|
|
const input: PermissionReaderInput = { credentials: {},
|
|
requestedModes: new IdentifierSetMultiMap<AccessMode>([[ identifier, AccessMode.read ]]) };
|
|
let readers: jest.Mocked<PermissionReader>[];
|
|
let unionReader: UnionPermissionReader;
|
|
|
|
beforeEach(async(): Promise<void> => {
|
|
readers = [
|
|
{
|
|
canHandle: jest.fn(),
|
|
handle: jest.fn().mockResolvedValue(new IdentifierMap()),
|
|
} as any,
|
|
{
|
|
canHandle: jest.fn(),
|
|
handle: jest.fn().mockResolvedValue(new IdentifierMap()),
|
|
} as any,
|
|
];
|
|
|
|
unionReader = new UnionPermissionReader(readers);
|
|
});
|
|
|
|
it('only uses the results of readers that can handle the input.', async(): Promise<void> => {
|
|
readers[0].canHandle.mockRejectedValue(new Error('bad request'));
|
|
readers[0].handle.mockResolvedValue(
|
|
new IdentifierMap([[ identifier, { read: true }]]),
|
|
);
|
|
readers[1].handle.mockResolvedValue(
|
|
new IdentifierMap([[ identifier, { write: true }]]),
|
|
);
|
|
compareMaps(await unionReader.handle(input),
|
|
new IdentifierMap([[ identifier, { write: true }]]));
|
|
});
|
|
|
|
it('combines results.', async(): Promise<void> => {
|
|
const identifier2 = { path: 'http://example.com/foo2' };
|
|
const identifier3 = { path: 'http://example.com/foo3' };
|
|
readers[0].handle.mockResolvedValue(new IdentifierMap([
|
|
[ identifier, { read: true }],
|
|
[ identifier2, { write: true }],
|
|
[ identifier3, { append: false }],
|
|
]));
|
|
readers[1].handle.mockResolvedValue(new IdentifierMap<PermissionSet>([
|
|
[ identifier, { write: true }],
|
|
]));
|
|
compareMaps(await unionReader.handle(input), new IdentifierMap([
|
|
[ identifier, { read: true, write: true }],
|
|
[ identifier2, { write: true }],
|
|
[ identifier3, { append: false }],
|
|
]));
|
|
});
|
|
|
|
it('merges same fields using false > true > undefined.', async(): Promise<void> => {
|
|
readers[0].handle.mockResolvedValue(new IdentifierMap(
|
|
[[ identifier, { read: true, write: false, append: undefined, create: true, delete: undefined }]],
|
|
));
|
|
readers[1].handle.mockResolvedValue(new IdentifierMap(
|
|
[[ identifier, { read: false, write: true, append: true, create: true, delete: undefined }]],
|
|
));
|
|
compareMaps(await unionReader.handle(input), new IdentifierMap(
|
|
[[ identifier, { read: false, write: false, append: true, create: true }]],
|
|
));
|
|
});
|
|
});
|