test/ unit tests for create Impersonation Requests (#2440)

* added unit fixtures and tests for services, controller and middleware

* fixed small comments and lint fixes

* fixed tests according to route logic changes

* removed unecessary any type from the file

* fixed test descriptions

* removed any type from variables

* chore: fixed variable declerations in tests

* fixed unit tests by adding stubs

* chore: fixed req and res type in middleware tests

* removed uneccessary beforeEach from services

* fixed forbidden error response in tests

---------

Co-authored-by: Amit Prakash <[email protected]>

Author: Suvidh-kaushik

test/fixtures/impersonation-requests/impersonationRequests.ts

@@ -0,0 +1,67 @@
+import { REQUEST_STATE } from "../../../constants/requests";
+
+export const impersonationRequestsBodyData = [
+  {
+    status: REQUEST_STATE.PENDING,
+    isImpersonationFinished: false,
+    createdBy: "superuser-1",
+    createdFor: "suvidh-kaushik",
+    userId: "userId123",
+    reason: "User assistance required for account debugging.",
+    impersonatedUserId: "userId345",
+  },
+  {
+    status: REQUEST_STATE.PENDING,
+    isImpersonationFinished: false,
+    createdBy: "superuser-2",
+    createdFor: "suvidh-kaushik-2",
+    userId: "userId124",
+    reason: "User assistance required for account debugging.",
+    impersonatedUserId: "userId445",
+  },
+  {
+    status: REQUEST_STATE.PENDING,
+    isImpersonationFinished: false,
+    createdBy: "admin222",
+    createdFor: "user321",
+    userId: "admin222",
+    reason: "Investigating bug in user workflow.",
+    impersonatedUserId: "user321",
+  },
+  {
+    status: REQUEST_STATE.PENDING,
+    isImpersonationFinished: false,
+    createdBy: "adminUsername",
+    createdFor: "user322",
+    userId: "admin2223",
+    reason: "Verifying permissions for support case.",
+    impersonatedUserId: "user322",
+  },
+  {
+    status: REQUEST_STATE.PENDING,
+    isImpersonationFinished: false,
+    createdBy: "adminUsername",
+    createdFor: "user321",
+    userId: "admin222",
+    reason: "Testing impersonation feature for QA.",
+    impersonatedUserId: "user321",
+  },
+  {
+    status: REQUEST_STATE.APPROVED,
+    isImpersonationFinished: false,
+    createdBy: "approverUser",
+    createdFor: "approvedUser",
+    userId: "approverId",
+    reason: "Approved for troubleshooting session.",
+    impersonatedUserId: "approvedUserId",
+  },
+  {
+    status: REQUEST_STATE.REJECTED,
+    isImpersonationFinished: false,
+    createdBy: "reviewerUser",
+    createdFor: "rejectedUser",
+    userId: "reviewerId",
+    reason: "Request rejected due to insufficient details.",
+    impersonatedUserId: "rejectedUserId",
+  }
+];

test/unit/middlewares/impersonationRequests.test.ts

@@ -0,0 +1,78 @@
+import chai from "chai";
+import sinon from "sinon";
+import {
+  createImpersonationRequestValidator
+} from "../../../middlewares/validators/impersonationRequests";
+import {
+  CreateImpersonationRequest,
+  CreateImpersonationRequestBody,
+  ImpersonationRequestResponse,
+} from "../../../types/impersonationRequest";
+import { Request, Response } from "express";
+
+const { expect } = chai;
+
+describe("Impersonation Request Validators", function () {
+  let req: Partial<Request>;
+  let res: Partial<Response> & {
+    boom: { badRequest: sinon.SinonSpy };
+  };
+  let nextSpy: sinon.SinonSpy;
+  const requestBody: CreateImpersonationRequestBody = {
+    impersonatedUserId: "randomId",
+    reason: "Testing purpose",
+  };
+
+  beforeEach(function () {
+    res = {
+      boom: {
+        badRequest: sinon.spy(),
+      },
+    };
+    nextSpy = sinon.spy();
+  });
+
+  afterEach(() => {
+    sinon.restore();
+  });
+
+  describe("createImpersonationRequestValidator", function () {
+    it("should validate for a valid create impersonation request", async function () {
+      req = {
+        body: requestBody,
+      };
+      await createImpersonationRequestValidator(
+        req as CreateImpersonationRequest,
+        res as ImpersonationRequestResponse,
+        nextSpy
+      );
+      expect(nextSpy.calledOnce).to.be.true;
+    });
+
+    it("should not validate for an invalid impersonation request on missing impersonatedUserId", async function () {
+      req = {
+        body: { ...requestBody, impersonatedUserId: "" },
+      };
+      await createImpersonationRequestValidator(
+        req as CreateImpersonationRequest,
+        res as ImpersonationRequestResponse,
+        nextSpy
+      );
+      expect(res.boom.badRequest.calledOnce).to.be.true;
+      expect(nextSpy.called).to.be.false;
+    });
+
+    it("should not validate for an invalid impersonation request on missing reason", async function () {
+      req = {
+        body: { ...requestBody, reason: "" },
+      };
+      await createImpersonationRequestValidator(
+        req as CreateImpersonationRequest,
+        res as ImpersonationRequestResponse,
+        nextSpy
+      );
+      expect(res.boom.badRequest.calledOnce).to.be.true;
+      expect(nextSpy.called).to.be.false;
+    });
+  });
+});

test/unit/models/impersonationRequests.test.ts

@@ -0,0 +1,80 @@
+import { expect } from "chai";
+import cleanDb from "../../utils/cleanDb";
+import * as impersonationModel from "../../../models/impersonationRequests";
+import { impersonationRequestsBodyData } from "../../fixtures/impersonation-requests/impersonationRequests";
+import { REQUEST_STATE, ERROR_WHILE_CREATING_REQUEST, REQUEST_ALREADY_PENDING, IMPERSONATION_NOT_COMPLETED } from "../../../constants/requests";
+import addUser from "../../utils/addUser";
+import userDataFixture from "../../fixtures/user/user";
+import sinon from "sinon";
+import { CreateImpersonationRequestModelDto } from "../../../types/impersonationRequest";
+
+
+describe("models/impersonationRequests", () => {
+  let impersonationRequest;
+  let mockRequestBody = impersonationRequestsBodyData[0];
+  let testUserId:string;
+  const userData = userDataFixture();
+
+  beforeEach(async () => {
+    await cleanDb();
+    testUserId = await addUser(userData[16]);
+  });
+
+  afterEach(async () => {
+    sinon.restore();
+    await cleanDb();
+  });
+
+ describe("createImpersonationRequest", () => {
+    it("should create a new impersonation request", async () => {
+      impersonationRequest = await impersonationModel.createImpersonationRequest(mockRequestBody);
+      expect(impersonationRequest).to.have.property("id");
+      expect(impersonationRequest).to.include({
+        createdBy: mockRequestBody.createdBy,
+        impersonatedUserId: mockRequestBody.impersonatedUserId,
+        createdFor: mockRequestBody.createdFor,
+        status: REQUEST_STATE.PENDING,
+      });
+    });
+
+    it("should throw an error if there is an existing PENDING impersonation request", async () => {
+       await impersonationModel.createImpersonationRequest(mockRequestBody);
+      try {
+        await impersonationModel.createImpersonationRequest(mockRequestBody);
+      } catch (error) {
+        expect(error.message).to.include("You are not allowed for this Operation at the moment");
+      }
+    });
+
+    it("should allow different super users to create requests for same user", async () => {
+      const request1 = await impersonationModel.createImpersonationRequest({ ...impersonationRequestsBodyData[0],createdBy: "user1" });
+      const request2 = await impersonationModel.createImpersonationRequest({ ...impersonationRequestsBodyData[0],createdBy: "user2", userId:"122" });
+      expect(request1).to.have.property("id");
+      expect(request1.createdBy).to.equal("user1");
+      expect(request1.impersonatedUserId).to.equal(impersonationRequestsBodyData[0].impersonatedUserId);
+      expect(request2).to.have.property("id");
+      expect(request2.createdBy).to.equal("user2");
+      expect(request2.impersonatedUserId).to.equal(impersonationRequestsBodyData[0].impersonatedUserId);
+    });
+
+    it("should fail if required fields are missing", async () => {
+      try {
+        await impersonationModel.createImpersonationRequest({
+          ...impersonationRequestsBodyData[0],
+          impersonatedUserId: ""
+        });
+      } catch (error) {
+        expect(error.message).to.include(ERROR_WHILE_CREATING_REQUEST);
+      }
+    });
+
+    it("should throw forbidden error if an APPROVED request with isImpersonationFinished as false is present", async ()=>{
+      try {
+        await impersonationModel.createImpersonationRequest({...impersonationRequestsBodyData[0],status:REQUEST_STATE.APPROVED});
+        await impersonationModel.createImpersonationRequest(impersonationRequestsBodyData[0]);
+      } catch (error) {
+        expect(error.message).to.include("You are not allowed for this Operation at the moment");
+      }
+    })
+  });
+});

test/unit/services/impersonationRequests.test.ts

@@ -0,0 +1,80 @@
+import { expect } from "chai";
+import sinon from "sinon";
+import * as impersonationService from "../../../services/impersonationRequests";
+import * as impersonationModel from "../../../models/impersonationRequests";
+import * as logService from "../../../services/logService";
+import {TASK_REQUEST_MESSAGES } from "../../../constants/requests";
+import userDataFixture from "../../fixtures/user/user";
+import cleanDb from "../../utils/cleanDb";
+import { impersonationRequestsBodyData } from "../../fixtures/impersonation-requests/impersonationRequests";
+import { CreateImpersonationRequestModelDto } from "../../../types/impersonationRequest";
+import { Timestamp } from "firebase-admin/firestore";
+const userQuery = require("../../../models/users");
+
+describe("Tests Impersonation Requests Service", () => {
+  let mockRequestBody: CreateImpersonationRequestModelDto = impersonationRequestsBodyData[0];
+  const userData = userDataFixture();
+
+  afterEach(async () => {
+    sinon.restore();
+  });
+
+  describe("createImpersonationRequestService", () => {
+    
+    it("should return NotFound error with USER_NOT_FOUND if userId does not exist", async () => {
+      sinon.stub(userQuery, "fetchUser").returns({ userExists: false });
+      try {
+        await impersonationService.createImpersonationRequestService({
+          userId: "randomIs",
+          createdBy: "randomName",
+          impersonatedUserId: "randomImpersonatedId",
+          reason: "He asked",
+        });
+      } catch (err) {
+        expect(err.name).to.equal("NotFoundError");
+        expect(err.message).to.equal(TASK_REQUEST_MESSAGES.USER_NOT_FOUND);
+      }
+    });
+
+    it("should successfully create a new impersonation Request", async () => {
+      sinon.stub(impersonationModel, "createImpersonationRequest").returns(Promise.resolve({
+        id: "123",
+        ...mockRequestBody,
+        impersonatedUserId: userData[20].id,
+        createdAt: Timestamp.now(),
+        updatedAt: Timestamp.now()
+      }));
+      
+       sinon.stub(userQuery, "fetchUser").returns({ userExists: true, user:userData[20] });
+
+       sinon.stub(logService, "addLog").resolves();
+
+      const response = await impersonationService.createImpersonationRequestService({
+        userId: mockRequestBody.userId,
+        createdBy: mockRequestBody.createdBy,
+        impersonatedUserId: userData[20].id,
+        reason: mockRequestBody.reason,
+      });
+
+      expect(response).to.not.be.null;
+      expect(response.createdBy).to.equal(mockRequestBody.createdBy);
+      expect(response.id).to.not.be.null;
+      expect(response.userId).to.equal(mockRequestBody.userId);
+      expect(response.impersonatedUserId).to.equal(userData[20].id);
+    });
+
+    it("should throw error when createImpersonationRequestService fails", async () => {
+      sinon.stub(userQuery, "fetchUser").throws(new Error("error"));
+      try {
+        await impersonationService.createImpersonationRequestService({
+          userId: mockRequestBody.userId,
+          createdBy: mockRequestBody.createdBy,
+          impersonatedUserId: "112",
+          reason: mockRequestBody.reason,
+        });
+      } catch (error) {
+        expect(error.message).to.equal("error");
+      }
+    });
+  });
+});