test: add test to ensure v1 endpoints use oauth apps to authenticate users

d-gubert · d-gubert · commit e61f20927acf · 2025-12-16T16:39:14.000-03:00
diff --git a/apps/meteor/tests/end-to-end/api/oauth-server.ts b/apps/meteor/tests/end-to-end/api/oauth-server.ts
@@ -142,4 +142,37 @@ describe('[OAuth Server]', () => {
 				});
 		});
 	});
+
+	describe('[oauth credentials]', () => {
+		let accessToken: string;
+
+		before(() => {
+			accessToken = refreshedAccessToken;
+		});
+
+		it('should be able to use oauth credentials to access v1 endpoints (/v1/me)', async () => {
+			await request
+				.get(api('me'))
+				.auth(accessToken, { type: 'bearer' })
+				.expect('Content-Type', 'application/json')
+				.expect(200)
+				.expect((res: Response) => {
+					expect(res.body).to.have.property('success', true);
+					expect(res.body).to.have.property('_id', 'rocketchat.internal.admin.test');
+				});
+		});
+
+		it('should be able to use oauth credentials to access v1 endpoints (/v1/users.info)', async () => {
+			await request
+				.get(api('users.info'))
+				.query({ username: 'rocketchat.internal.admin.test' })
+				.auth(accessToken, { type: 'bearer' })
+				.expect('Content-Type', 'application/json')
+				.expect(200)
+				.expect((res: Response) => {
+					expect(res.body).to.have.property('success', true);
+					expect(res.body).to.have.nested.property('user._id', 'rocketchat.internal.admin.test');
+				});
+		});
+	});
 });
