fix sonar qube findings and add tests

nitschSB · nitschSB · commit 5e4206d3aa72 · 2025-01-16T16:25:07.000+01:00
diff --git a/src/users/db/dbusers.service.ts b/src/users/db/dbusers.service.ts
@@ -1,20 +1,19 @@
-import { HttpException, HttpStatus } from '@nestjs/common';
+import { HttpException, HttpStatus, Logger } from '@nestjs/common';
 import { CreateUserDto } from '../dto/user-create.dto';
 import { UserLoginResponseDto } from '../dto/user-login-response.dto';
 import { PrismaService } from '../../prisma/prisma.service';
 import { User } from '@prisma/client';
 import { UpdateUserDto } from '../dto/user-update.dto';
 import { AuthService } from '../../auth/auth.service';
 import { UserLoginRequestDto } from '../dto/user-login-request.dto';
-import { Logger } from '@nestjs/common';
 import { Users } from '../users.interface';
 
 export class DbUsersService implements Users {
   private readonly logger: Logger = new Logger(DbUsersService.name);
 
   constructor(
-    private prismaService: PrismaService,
-    private authService: AuthService
+    private readonly prismaService: PrismaService,
+    private readonly authService: AuthService
   ) {}
 
   async create(createUserDto: CreateUserDto): Promise<UserLoginResponseDto> {
diff --git a/src/users/ldap/ldapusers.service.spec.ts b/src/users/ldap/ldapusers.service.spec.ts
@@ -0,0 +1,176 @@
+import { Test, TestingModule } from '@nestjs/testing';
+import { LdapUsersService } from './ldapusers.service';
+import { AuthService } from '../../auth/auth.service';
+import { PrismaService } from '../../prisma/prisma.service';
+import { ConfigService } from '@nestjs/config';
+import { Role, User } from '@prisma/client';
+// eslint-disable-next-line @typescript-eslint/no-unused-vars
+import { Entry as LdapEntry, Client as LdapClient, SearchOptions, SearchResult } from 'ldapts';
+
+jest.mock('ldapts', () => {
+  const mockLdapClient = {
+    // eslint-disable-next-line @typescript-eslint/no-unused-vars
+    search: jest.fn((_searchDN, searchOptions: SearchOptions): Promise<SearchResult> => {
+      if (searchOptions.filter.toString().includes('exists@example.com')) {
+        return Promise.resolve({
+          searchEntries: [
+            {
+              dn: 'dn',
+              LDAP_ATTRIBUTE_MAIL: 'exists@example.com',
+              LDAP_ATTRIBUTE_FIRST_NAME: 'first',
+              LDAP_ATTRIBUTE_LAST_NAME: 'last',
+            },
+          ],
+          searchReferences: [],
+        });
+      } else {
+        return Promise.resolve({ searchEntries: [], searchReferences: [] });
+      }
+    }),
+    bind: jest.fn(),
+    unbind: jest.fn(),
+  };
+
+  return {
+    Client: jest.fn(() => mockLdapClient),
+  };
+});
+
+const user: User = {
+  id: '1',
+  email: 'test@example.com',
+  firstName: 'John',
+  lastName: 'Doe',
+  apiKey: 'generatedApiKey',
+  password: 'encryptedPassword',
+  isActive: true,
+  role: Role.editor,
+  updatedAt: new Date(),
+  createdAt: new Date(),
+};
+
+describe('LdapUsersService match from ldap', () => {
+  let service: LdapUsersService;
+  let prismaService: PrismaService;
+  let configService: ConfigService;
+  let authService: AuthService;
+
+  beforeEach(async () => {
+    const module: TestingModule = await Test.createTestingModule({
+      providers: [
+        {
+          provide: ConfigService,
+          useValue: {
+            get: jest.fn().mockReturnValue('true'),
+            getOrThrow: jest.fn((string) => (string === 'LDAP_USERS_SEARCH_FILTER' ? '(&(mail={{email}}))' : string)),
+          },
+        },
+        {
+          provide: PrismaService,
+          useValue: {
+            user: {
+              findMany: jest.fn().mockResolvedValueOnce([]),
+              findUnique: jest.fn(),
+              create: jest.fn(),
+              update: jest.fn(),
+            },
+          },
+        },
+        {
+          provide: AuthService,
+          useValue: {
+            generateApiKey: jest.fn(() => 'generatedApiKey'),
+            encryptPassword: jest.fn(() => 'encryptedPassword'),
+            signToken: jest.fn(() => 'token'),
+          },
+        },
+      ],
+    }).compile();
+    configService = module.get<ConfigService>(ConfigService);
+    prismaService = module.get<PrismaService>(PrismaService);
+    authService = module.get<AuthService>(AuthService);
+    service = new LdapUsersService(configService, prismaService, authService);
+  });
+
+  it('should be defined', () => {
+    expect(service).toBeDefined();
+  });
+
+  it('should create new user on login', async () => {
+    jest.spyOn(prismaService.user, 'findUnique').mockResolvedValue(undefined);
+    const prismaUserCreateMock = jest.spyOn(prismaService.user, 'create').mockResolvedValue(user);
+    await service.login({ email: 'exists@example.com', password: 'password' });
+    expect(prismaUserCreateMock).toBeCalled();
+  });
+
+  it('should login with user already in db', async () => {
+    jest.spyOn(prismaService.user, 'findUnique').mockResolvedValue(user);
+    const prismaUserCreateMock = jest.spyOn(prismaService.user, 'create');
+    await service.login({ email: 'exists@example.com', password: 'password' });
+    expect(prismaUserCreateMock).not.toBeCalled();
+  });
+});
+
+describe('LdapUsersService with no results from ldap', () => {
+  let service: LdapUsersService;
+  let prismaService: PrismaService;
+  let configService: ConfigService;
+  let authService: AuthService;
+
+  beforeEach(async () => {
+    const module: TestingModule = await Test.createTestingModule({
+      providers: [
+        {
+          provide: ConfigService,
+          useValue: {
+            get: jest.fn().mockReturnValue('true'),
+            getOrThrow: jest.fn().mockReturnValue('string'),
+          },
+        },
+        {
+          provide: PrismaService,
+          useValue: {
+            user: {
+              findMany: jest.fn().mockResolvedValueOnce([]),
+              create: jest.fn(),
+              update: jest.fn(),
+            },
+          },
+        },
+        {
+          provide: AuthService,
+          useValue: {
+            generateApiKey: jest.fn(() => 'generatedApiKey'),
+            encryptPassword: jest.fn(() => 'encryptedPassword'),
+          },
+        },
+      ],
+    }).compile();
+    configService = module.get<ConfigService>(ConfigService);
+    prismaService = module.get<PrismaService>(PrismaService);
+    authService = module.get<AuthService>(AuthService);
+    service = new LdapUsersService(configService, prismaService, authService);
+  });
+
+  it('should be defined', () => {
+    expect(service).toBeDefined();
+  });
+
+  it('should never change a password', async () => {
+    const prismaUserCreateMock = jest.spyOn(prismaService.user, 'create');
+    const prismaUserUpdateMock = jest.spyOn(prismaService.user, 'update');
+    const result = await service.changePassword(user, 'newPassword');
+    expect(prismaUserCreateMock).not.toBeCalled();
+    expect(prismaUserUpdateMock).not.toBeCalled();
+    expect(result).toBe(true);
+  });
+
+  it('should not login when ldap search results are empty', async () => {
+    expect.assertions(1);
+    try {
+      await service.login({ email: 'testÜ*()\\\0@example.com', password: 'password' });
+    } catch (e) {
+      expect(e.message).toBe('Invalid email or password.');
+    }
+  });
+});
diff --git a/src/users/ldap/ldapusers.service.ts b/src/users/ldap/ldapusers.service.ts
@@ -1,12 +1,11 @@
-import { HttpException, HttpStatus } from '@nestjs/common';
+import { HttpException, HttpStatus, Logger } from '@nestjs/common';
 import { CreateUserDto } from '../dto/user-create.dto';
 import { UserLoginResponseDto } from '../dto/user-login-response.dto';
 import { PrismaService } from '../../prisma/prisma.service';
 import { Role, User } from '@prisma/client';
 import { UpdateUserDto } from '../dto/user-update.dto';
 import { AuthService } from '../../auth/auth.service';
 import { UserLoginRequestDto } from '../dto/user-login-request.dto';
-import { Logger } from '@nestjs/common';
 import { Entry as LdapEntry, Client as LdapClient } from 'ldapts';
 import { Users } from '../users.interface';
 import { ConfigService } from '@nestjs/config';
@@ -29,9 +28,9 @@ export class LdapUsersService implements Users {
   private readonly ldapConfig: LDAPConfig;
 
   constructor(
-    private configService: ConfigService,
-    private prismaService: PrismaService,
-    private authService: AuthService
+    private readonly configService: ConfigService,
+    private readonly prismaService: PrismaService,
+    private readonly authService: AuthService
   ) {
     this.ldapConfig = {
       url: this.configService.getOrThrow<string>('LDAP_URL'),
diff --git a/src/users/users.factory.ts b/src/users/users.factory.ts
@@ -11,9 +11,9 @@ export class UsersFactoryService {
   private readonly logger: Logger = new Logger(UsersFactoryService.name);
 
   constructor(
-    private configService: ConfigService,
-    private prismaService: PrismaService,
-    private authService: AuthService
+    private readonly configService: ConfigService,
+    private readonly prismaService: PrismaService,
+    private readonly authService: AuthService
   ) {}
 
   getUsersService(): Users {
diff --git a/src/users/users.service.spec.ts b/src/users/users.service.spec.ts
diff --git a/src/users/users.service.ts b/src/users/users.service.ts
