Merge branch 'development' of https://github.com/ruiqi7/peer-prep into deployment/docker

ruiqi7 · ruiqi7 · commit 236e03a39684 · 2024-10-01T13:49:49.000+08:00
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -4,12 +4,17 @@ on:
   push:
     branches:
       - "*"
-  pull_request:
-    branches:
-      - "*"
 
 env:
   NODE_VERSION: 20
+  FIREBASE_PROJECT_ID: ${{ secrets.FIREBASE_PROJECT_ID }}
+  FIREBASE_PRIVATE_KEY: ${{ secrets.FIREBASE_PRIVATE_KEY }}
+  FIREBASE_CLIENT_EMAIL: ${{ secrets.FIREBASE_CLIENT_EMAIL }}
+  FIREBASE_STORAGE_BUCKET: ${{ secrets.FIREBASE_STORAGE_BUCKET }}
+  JWT_SECRET: ${{ secrets.JWT_SECRET }}
+
+permissions:
+  contents: read
 
 jobs:
   ci:
@@ -30,6 +35,16 @@ jobs:
       - name: Linting
         working-directory: ${{ matrix.service }}
         run: npm run lint
-      # - name: Tests
-      #   working-directory: ${{ matrix.service }}
-      #   run: npm test
+      - name: Set .env variables
+        working-directory: ${{ matrix.service }}
+        run: |
+          touch .env
+          echo "FIREBASE_PROJECT_ID=${{ env.FIREBASE_PROJECT_ID }}" >> .env
+          echo "FIREBASE_PRIVATE_KEY=${{ env.FIREBASE_PRIVATE_KEY }}" >> .env
+          echo "FIREBASE_CLIENT_EMAIL=${{ env.FIREBASE_CLIENT_EMAIL }}" >> .env
+          echo "FIREBASE_CLIENT_EMAIL=${{ env.FIREBASE_CLIENT_EMAIL }}" >> .env
+          echo "FIREBASE_STORAGE_BUCKET=${{ env.FIREBASE_STORAGE_BUCKET }}" >> .env
+          echo "JWT_SECRET=${{ env.JWT_SECRET }}" >> .env
+      - name: Tests
+        working-directory: ${{ matrix.service }}
+        run: npm test
diff --git a/backend/user-service/controller/user-controller.ts b/backend/user-service/controller/user-controller.ts
@@ -73,7 +73,7 @@ export async function createUser(
         lastName,
         username,
         email,
-        hashedPassword,
+        hashedPassword
       );
       return res.status(201).json({
         message: `Created new user ${username} successfully`,
@@ -85,8 +85,7 @@ export async function createUser(
           "At least one of first name, last name, username, email and password are missing",
       });
     }
-  } catch (err) {
-    console.error(err);
+  } catch {
     return res
       .status(500)
       .json({ message: "Unknown error when creating new user!" });
@@ -108,8 +107,7 @@ export async function getUser(req: Request, res: Response): Promise<Response> {
         .status(200)
         .json({ message: `Found user`, data: formatUserResponse(user) });
     }
-  } catch (err) {
-    console.error(err);
+  } catch {
     return res
       .status(500)
       .json({ message: "Unknown error when getting user!" });
@@ -126,8 +124,7 @@ export async function getAllUsers(
     return res
       .status(200)
       .json({ message: `Found users`, data: users.map(formatUserResponse) });
-  } catch (err) {
-    console.error(err);
+  } catch {
     return res
       .status(500)
       .json({ message: "Unknown error when getting all users!" });
@@ -226,8 +223,7 @@ export async function updateUser(
           "No field to update. Update one of the following fields: username, email, password, profilePictureUrl, firstName, lastName, biography",
       });
     }
-  } catch (err) {
-    console.error(err);
+  } catch {
     return res
       .status(500)
       .json({ message: "Unknown error when updating user!" });
@@ -263,8 +259,7 @@ export async function updateUserPrivilege(
     } else {
       return res.status(400).json({ message: "isAdmin is missing!" });
     }
-  } catch (err) {
-    console.error(err);
+  } catch {
     return res
       .status(500)
       .json({ message: "Unknown error when updating user privilege!" });
@@ -289,8 +284,7 @@ export async function deleteUser(
     return res
       .status(200)
       .json({ message: `Deleted user ${userId} successfully` });
-  } catch (err) {
-    console.error(err);
+  } catch {
     return res
       .status(500)
       .json({ message: "Unknown error when deleting user!" });
diff --git a/backend/user-service/package.json b/backend/user-service/package.json
@@ -9,7 +9,7 @@
     "start": "tsx server.ts",
     "dev": "tsx watch server.ts",
     "lint": "eslint .",
-    "test": "export NODE_ENV=test && jest",
+    "test": "set NODE_ENV=test && jest",
     "test:watch": "export NODE_ENV=test && jest --watch"
   },
   "keywords": [],
diff --git a/backend/user-service/tests/authRoutes.spec.ts b/backend/user-service/tests/authRoutes.spec.ts
@@ -10,27 +10,158 @@ const AUTH_BASE_URL = "/api/auth";
 
 faker.seed(0);
 
-const insertUser = async () => {
-  const username = faker.internet.userName();
-  const firstName = faker.person.firstName();
-  const lastName = faker.person.lastName();
-  const email = faker.internet.email();
-  const password = "strongPassword@123";
-  const hashedPassword = bcrypt.hashSync(password, bcrypt.genSaltSync(10));
+const username = faker.internet.userName();
+const firstName = faker.person.firstName();
+const lastName = faker.person.lastName();
+const email = faker.internet.email();
+const password = "strongPassword@123";
+const hashedPassword = bcrypt.hashSync(password, bcrypt.genSaltSync(10));
+
+const insertAdminUser = async () => {
+  await new UserModel({
+    username,
+    firstName,
+    lastName,
+    email,
+    password: hashedPassword,
+    isAdmin: true,
+  }).save();
+
+  return { email, password };
+};
+
+const insertNonAdminUser = async () => {
   await new UserModel({
     username,
     firstName,
     lastName,
     email,
     password: hashedPassword,
   }).save();
+
   return { email, password };
 };
 
 describe("Auth routes", () => {
   it("Login", async () => {
-    const credentials = await insertUser();
+    const credentials = await insertNonAdminUser();
+
     const res = await request.post(`${AUTH_BASE_URL}/login`).send(credentials);
+
     expect(res.status).toBe(200);
   });
+
+  it("Login with invalid password", async () => {
+    const { email } = await insertNonAdminUser();
+
+    const res = await request
+      .post(`${AUTH_BASE_URL}/login`)
+      .send({ email, password: "blahblah" });
+
+    expect(res.status).toBe(401);
+  });
+
+  it("Login with invalid email", async () => {
+    const { password } = await insertNonAdminUser();
+
+    const res = await request
+      .post(`${AUTH_BASE_URL}/login`)
+      .send({ email: "blahblah", password });
+
+    expect(res.status).toBe(401);
+  });
+
+  it("Login with missing email and/or password", async () => {
+    const res = await request.post(`${AUTH_BASE_URL}/login`).send({});
+
+    expect(res.status).toBe(400);
+  });
+
+  it("Catch server error when login", async () => {
+    const loginSpy = jest.spyOn(UserModel, "findOne").mockImplementation(() => {
+      throw new Error();
+    });
+
+    const res = await request
+      .post(`${AUTH_BASE_URL}/login`)
+      .send({ email, password });
+
+    expect(res.status).toBe(500);
+
+    loginSpy.mockRestore();
+  });
+
+  it("Verify token with missing token", async () => {
+    const res = await request.get(`${AUTH_BASE_URL}/verify-token`);
+
+    expect(res.status).toBe(401);
+  });
+
+  it("Verify token but users not found", async () => {
+    // TODO
+  });
+
+  it("Verify token", async () => {
+    const { email, password } = await insertNonAdminUser();
+
+    const loginRes = await request
+      .post(`${AUTH_BASE_URL}/login`)
+      .send({ email, password });
+
+    const token = loginRes.body.data.accessToken;
+
+    const res = await request
+      .get(`${AUTH_BASE_URL}/verify-token`)
+      .set("Authorization", `Bearer ${token}`);
+
+    expect(res.status).toBe(200);
+    expect(res.body.data.email).toBe(email);
+    expect(res.body.data.isAdmin).toBe(false);
+  });
+
+  it("Verify invalid token", async () => {
+    const res = await request
+      .get(`${AUTH_BASE_URL}/verify-token`)
+      .set("Authorization", `Bearer blahblah`);
+
+    expect(res.status).toBe(401);
+  });
+
+  it("Verify admin token", async () => {
+    const { email, password } = await insertAdminUser();
+
+    const loginRes = await request
+      .post(`${AUTH_BASE_URL}/login`)
+      .send({ email, password });
+
+    const token = loginRes.body.data.accessToken;
+
+    const res = await request
+      .get(`${AUTH_BASE_URL}/verify-admin-token`)
+      .set("Authorization", `Bearer ${token}`);
+
+    expect(res.status).toBe(200);
+    expect(res.body.data.email).toBe(email);
+    expect(res.body.data.isAdmin).toBe(true);
+  });
+
+  it("Verify admin token with non-admin user", async () => {
+    const { email, password } = await insertNonAdminUser();
+
+    const loginRes = await request
+      .post(`${AUTH_BASE_URL}/login`)
+      .send({ email, password });
+
+    const token = loginRes.body.data.accessToken;
+
+    const res = await request
+      .get(`${AUTH_BASE_URL}/verify-admin-token`)
+      .set("Authorization", `Bearer ${token}`);
+
+    expect(res.status).toBe(403);
+  });
+
+  it("Verify if user is owner or admin", async () => {
+    // TODO
+  });
 });
diff --git a/backend/user-service/tests/userRoutes.spec.ts b/backend/user-service/tests/userRoutes.spec.ts
