CCM-12327: wip - update api tests

Author: harrim91

lambdas/backend-client/src/schemas/template-schema.ts

@@ -134,12 +134,14 @@ export const $CreateUpdateTemplate = schemaFor<
   ])
 );
 
+const $LockNumber = z.number().min(0);
+
 const $TemplateDtoFields = z
   .object({
     campaignId: z.string().optional(),
     clientId: z.string().optional(),
     createdAt: z.string(),
-    lockNumber: z.number().default(1),
+    lockNumber: $LockNumber.default(0),
     id: z.string().trim().min(1),
     templateStatus: z.enum(TEMPLATE_STATUS_LIST),
     updatedAt: z.string(),

package-lock.json

@@ -100,6 +100,7 @@ export const TemplateFactory = {
       version: 1,
       createdAt: new Date().toISOString(),
       updatedAt: new Date().toISOString(),
+      lockNumber: 0,
       ...template,
     };
   },

tests/test-team/helpers/factories/template-factory.ts

@@ -62,6 +62,7 @@ export type Template = TypeSpecificProperties & {
   createdAt: string;
   id: string;
   name: string;
+  lockNumber: number;
   owner: string;
   templateStatus: string;
   templateType: string;

tests/test-team/helpers/types.ts

@@ -29,8 +29,12 @@ export class SimulateFailedVirusScan implements IUseCase<Template> {
           owner: `CLIENT#${this.#config.clientId}`,
           id: this.#config.templateId,
         },
-        UpdateExpression: `SET ${this.#config.filePath} = :virusScanStatus, templateStatus = :virusScanStatusFailedTemplateStatus`,
+        UpdateExpression: `ADD #lockNumber :lockNumberIncrement, SET ${this.#config.filePath} = :virusScanStatus, templateStatus = :virusScanStatusFailedTemplateStatus`,
+        ExpressionAttributeNames: {
+          '#lockNumber': 'lockNumber',
+        },
         ExpressionAttributeValues: {
+          ':lockNumberIncrement': 1,
           ':virusScanStatus': 'FAILED',
           ':virusScanStatusFailedTemplateStatus': 'VIRUS_SCAN_FAILED',
         },

tests/test-team/helpers/use-cases/simulate-failed-virus-scan.ts

@@ -29,14 +29,19 @@ export class SimulatePassedValidation implements IUseCase<Template> {
           id: this.#config.templateId,
         },
         UpdateExpression: [
+          'ADD #lockNumber :lockNumberIncrement',
           'SET files.pdfTemplate.virusScanStatus = :virusScanStatus',
           'templateStatus = :readyForSubmissionStatus',
           'files.proofs = :proofs',
           ...(this.#config.hasTestData
             ? ['files.testDataCsv.virusScanStatus = :virusScanStatus']
             : []),
         ].join(', '),
+        ExpressionAttributeNames: {
+          '#lockNumber': 'lockNumber',
+        },
         ExpressionAttributeValues: {
+          ':lockNumberIncrement': 1,
           ':virusScanStatus': 'PASSED',
           ':readyForSubmissionStatus': 'PROOF_AVAILABLE',
           ':proofs': {

tests/test-team/helpers/use-cases/simulate-passed-validation.ts

@@ -145,6 +145,7 @@ test.describe('POST /v1/template', () => {
           templateStatus: 'NOT_YET_SUBMITTED',
           templateType: template.templateType,
           updatedAt: expect.stringMatching(isoDateRegExp),
+          lockNumber: 0,
         },
       });
 
@@ -353,6 +354,7 @@ test.describe('POST /v1/template', () => {
           templateStatus: 'NOT_YET_SUBMITTED',
           templateType: template.templateType,
           updatedAt: expect.stringMatching(isoDateRegExp),
+          lockNumber: 0,
         },
       });
 
@@ -562,6 +564,7 @@ test.describe('POST /v1/template', () => {
           templateStatus: 'NOT_YET_SUBMITTED',
           templateType: template.templateType,
           updatedAt: expect.stringMatching(isoDateRegExp),
+          lockNumber: 0,
         },
       });
 

tests/test-team/template-mgmt-api-tests/create-template.api.spec.ts

@@ -789,3 +789,9 @@ test.describe('DELETE /v1/template/:templateId', () => {
     });
   });
 });
+
+/**
+ * TODO: CCM-12327
+ * - tests for missing / invalid lock number header
+ * - add in these headers to valid tests
+ */

tests/test-team/template-mgmt-api-tests/delete-template.api.spec.ts

@@ -27,7 +27,12 @@ test.describe('POST /v1/template/:templateId/proof', () => {
 
   test('returns 401 if no auth token', async ({ request }) => {
     const response = await request.post(
-      `${process.env.API_BASE_URL}/v1/template/some-template/proof`
+      `${process.env.API_BASE_URL}/v1/template/some-template/proof`,
+      {
+        headers: {
+          'X-Lock-Number': '0',
+        },
+      }
     );
 
     const result = await response.json();
@@ -45,6 +50,7 @@ test.describe('POST /v1/template/:templateId/proof', () => {
       {
         headers: {
           Authorization: await userProofingEnabled.getAccessToken(),
+          'X-Lock-Number': '0',
         },
       }
     );
@@ -60,22 +66,21 @@ test.describe('POST /v1/template/:templateId/proof', () => {
   test('returns 404 if template exists but is owned by a different client', async ({
     request,
   }) => {
-    const userProofingEnabledtemplateId = randomUUID();
+    const template = TemplateFactory.uploadLetterTemplate(
+      randomUUID(),
+      userProofingEnabled,
+      'userProofingEnabledtemplate',
+      'PENDING_PROOF_REQUEST'
+    );
 
-    await templateStorageHelper.seedTemplateData([
-      TemplateFactory.uploadLetterTemplate(
-        userProofingEnabledtemplateId,
-        userProofingEnabled,
-        'userProofingEnabledtemplate',
-        'PENDING_PROOF_REQUEST'
-      ),
-    ]);
+    await templateStorageHelper.seedTemplateData([template]);
 
     const updateResponse = await request.post(
-      `${process.env.API_BASE_URL}/v1/template/${userProofingEnabledtemplateId}/proof`,
+      `${process.env.API_BASE_URL}/v1/template/${template.id}/proof`,
       {
         headers: {
           Authorization: await differentClientUser.getAccessToken(),
+          'X-Lock-Number': String(template.lockNumber),
         },
       }
     );
@@ -126,6 +131,7 @@ test.describe('POST /v1/template/:templateId/proof', () => {
       {
         headers: {
           Authorization: await userProofingEnabled.getAccessToken(),
+          'X-Lock-Number': String(template.lockNumber),
         },
       }
     );
@@ -141,6 +147,7 @@ test.describe('POST /v1/template/:templateId/proof', () => {
         name: template.name,
         templateStatus: 'WAITING_FOR_PROOF',
         templateType: template.templateType,
+        lockNumber: template.lockNumber + 1,
       }),
     });
 
@@ -176,6 +183,7 @@ test.describe('POST /v1/template/:templateId/proof', () => {
       {
         headers: {
           Authorization: await userProofingEnabled.getAccessToken(),
+          'X-Lock-Number': String(template.lockNumber),
         },
       }
     );
@@ -209,6 +217,7 @@ test.describe('POST /v1/template/:templateId/proof', () => {
       {
         headers: {
           Authorization: await userProofingEnabled.getAccessToken(),
+          'X-Lock-Number': String(template.lockNumber),
         },
       }
     );
@@ -257,6 +266,7 @@ test.describe('POST /v1/template/:templateId/proof', () => {
       {
         headers: {
           Authorization: await userProofingEnabled.getAccessToken(),
+          'X-Lock-Number': String(template.lockNumber),
         },
       }
     );
@@ -277,4 +287,101 @@ test.describe('POST /v1/template/:templateId/proof', () => {
 
     expect(result.data.updatedAt).toBeDateRoughlyBetween([start, new Date()]);
   });
+
+  test('returns 400 if the lock number header is not set', async ({
+    request,
+  }) => {
+    const template = {
+      ...TemplateFactory.uploadLetterTemplate(
+        randomUUID(),
+        userProofingEnabled,
+        'userProofingEnabledtemplate',
+        'PENDING_PROOF_REQUEST'
+      ),
+      files: {
+        pdfTemplate: {
+          virusScanStatus: 'PASSED',
+          currentVersion: randomUUID(),
+          fileName: 'template.pdf',
+        },
+        testDataCsv: {
+          virusScanStatus: 'PASSED',
+          currentVersion: randomUUID(),
+          fileName: 'data.csv',
+        },
+      },
+      personalisationParameters: ['nhsNumber'],
+      campaignId: userProofingEnabled.campaignIds?.[0],
+    };
+
+    await templateStorageHelper.seedTemplateData([template]);
+
+    const response = await request.post(
+      `${process.env.API_BASE_URL}/v1/template/${template.id}/proof`,
+      {
+        headers: {
+          Authorization: await userProofingEnabled.getAccessToken(),
+        },
+      }
+    );
+
+    const result = await response.json();
+    const debug = JSON.stringify(result, null, 2);
+
+    expect(response.status(), debug).toBe(400);
+
+    expect(result).toEqual({
+      statusCode: 400,
+      technicalMessage: 'Invalid lock number',
+    });
+  });
+
+  test('returns 400 if the lock number header does not match the current one', async ({
+    request,
+  }) => {
+    const template = {
+      ...TemplateFactory.uploadLetterTemplate(
+        randomUUID(),
+        userProofingEnabled,
+        'userProofingEnabledtemplate',
+        'PENDING_PROOF_REQUEST'
+      ),
+      files: {
+        pdfTemplate: {
+          virusScanStatus: 'PASSED',
+          currentVersion: randomUUID(),
+          fileName: 'template.pdf',
+        },
+        testDataCsv: {
+          virusScanStatus: 'PASSED',
+          currentVersion: randomUUID(),
+          fileName: 'data.csv',
+        },
+      },
+      personalisationParameters: ['nhsNumber'],
+      campaignId: userProofingEnabled.campaignIds?.[0],
+    };
+
+    await templateStorageHelper.seedTemplateData([template]);
+
+    const response = await request.post(
+      `${process.env.API_BASE_URL}/v1/template/${template.id}/proof`,
+      {
+        headers: {
+          Authorization: await userProofingEnabled.getAccessToken(),
+          'X-Lock-Number': String(template.lockNumber + 1),
+        },
+      }
+    );
+
+    const result = await response.json();
+    const debug = JSON.stringify(result, null, 2);
+
+    expect(response.status(), debug).toBe(400);
+
+    expect(result).toEqual({
+      statusCode: 400,
+      technicalMessage: 'Invalid lock number',
+    });
+  });
 });