fix sonar qube findings and add tests

Author: nitschSB

src/users/db/dbusers.service.ts

@@ -1,20 +1,19 @@
-import { HttpException, HttpStatus } from '@nestjs/common';
+import { HttpException, HttpStatus, Logger } from '@nestjs/common';
 import { CreateUserDto } from '../dto/user-create.dto';
 import { UserLoginResponseDto } from '../dto/user-login-response.dto';
 import { PrismaService } from '../../prisma/prisma.service';
 import { User } from '@prisma/client';
 import { UpdateUserDto } from '../dto/user-update.dto';
 import { AuthService } from '../../auth/auth.service';
 import { UserLoginRequestDto } from '../dto/user-login-request.dto';
-import { Logger } from '@nestjs/common';
 import { Users } from '../users.interface';
 
 export class DbUsersService implements Users {
   private readonly logger: Logger = new Logger(DbUsersService.name);
 
   constructor(
-    private prismaService: PrismaService,
-    private authService: AuthService
+    private readonly prismaService: PrismaService,
+    private readonly authService: AuthService
   ) {}
 
   async create(createUserDto: CreateUserDto): Promise<UserLoginResponseDto> {

src/users/ldap/ldapusers.service.spec.ts

@@ -0,0 +1,176 @@
+import { Test, TestingModule } from '@nestjs/testing';
+import { LdapUsersService } from './ldapusers.service';
+import { AuthService } from '../../auth/auth.service';
+import { PrismaService } from '../../prisma/prisma.service';
+import { ConfigService } from '@nestjs/config';
+import { Role, User } from '@prisma/client';
+// eslint-disable-next-line @typescript-eslint/no-unused-vars
+import { Entry as LdapEntry, Client as LdapClient, SearchOptions, SearchResult } from 'ldapts';
+
+jest.mock('ldapts', () => {
+  const mockLdapClient = {
+    // eslint-disable-next-line @typescript-eslint/no-unused-vars
+    search: jest.fn((_searchDN, searchOptions: SearchOptions): Promise<SearchResult> => {
+      if (searchOptions.filter.toString().includes('[email protected]')) {
+        return Promise.resolve({
+          searchEntries: [
+            {
+              dn: 'dn',
+              LDAP_ATTRIBUTE_MAIL: '[email protected]',
+              LDAP_ATTRIBUTE_FIRST_NAME: 'first',
+              LDAP_ATTRIBUTE_LAST_NAME: 'last',
+            },
+          ],
+          searchReferences: [],
+        });
+      } else {
+        return Promise.resolve({ searchEntries: [], searchReferences: [] });
+      }
+    }),
+    bind: jest.fn(),
+    unbind: jest.fn(),
+  };
+
+  return {
+    Client: jest.fn(() => mockLdapClient),
+  };
+});
+
+const user: User = {
+  id: '1',
+  email: '[email protected]',
+  firstName: 'John',
+  lastName: 'Doe',
+  apiKey: 'generatedApiKey',
+  password: 'encryptedPassword',
+  isActive: true,
+  role: Role.editor,
+  updatedAt: new Date(),
+  createdAt: new Date(),
+};
+
+describe('LdapUsersService match from ldap', () => {
+  let service: LdapUsersService;
+  let prismaService: PrismaService;
+  let configService: ConfigService;
+  let authService: AuthService;
+
+  beforeEach(async () => {
+    const module: TestingModule = await Test.createTestingModule({
+      providers: [
+        {
+          provide: ConfigService,
+          useValue: {
+            get: jest.fn().mockReturnValue('true'),
+            getOrThrow: jest.fn((string) => (string === 'LDAP_USERS_SEARCH_FILTER' ? '(&(mail={{email}}))' : string)),
+          },
+        },
+        {
+          provide: PrismaService,
+          useValue: {
+            user: {
+              findMany: jest.fn().mockResolvedValueOnce([]),
+              findUnique: jest.fn(),
+              create: jest.fn(),
+              update: jest.fn(),
+            },
+          },
+        },
+        {
+          provide: AuthService,
+          useValue: {
+            generateApiKey: jest.fn(() => 'generatedApiKey'),
+            encryptPassword: jest.fn(() => 'encryptedPassword'),
+            signToken: jest.fn(() => 'token'),
+          },
+        },
+      ],
+    }).compile();
+    configService = module.get<ConfigService>(ConfigService);
+    prismaService = module.get<PrismaService>(PrismaService);
+    authService = module.get<AuthService>(AuthService);
+    service = new LdapUsersService(configService, prismaService, authService);
+  });
+
+  it('should be defined', () => {
+    expect(service).toBeDefined();
+  });
+
+  it('should create new user on login', async () => {
+    jest.spyOn(prismaService.user, 'findUnique').mockResolvedValue(undefined);
+    const prismaUserCreateMock = jest.spyOn(prismaService.user, 'create').mockResolvedValue(user);
+    await service.login({ email: '[email protected]', password: 'password' });
+    expect(prismaUserCreateMock).toBeCalled();
+  });
+
+  it('should login with user already in db', async () => {
+    jest.spyOn(prismaService.user, 'findUnique').mockResolvedValue(user);
+    const prismaUserCreateMock = jest.spyOn(prismaService.user, 'create');
+    await service.login({ email: '[email protected]', password: 'password' });
+    expect(prismaUserCreateMock).not.toBeCalled();
+  });
+});
+
+describe('LdapUsersService with no results from ldap', () => {
+  let service: LdapUsersService;
+  let prismaService: PrismaService;
+  let configService: ConfigService;
+  let authService: AuthService;
+
+  beforeEach(async () => {
+    const module: TestingModule = await Test.createTestingModule({
+      providers: [
+        {
+          provide: ConfigService,
+          useValue: {
+            get: jest.fn().mockReturnValue('true'),
+            getOrThrow: jest.fn().mockReturnValue('string'),
+          },
+        },
+        {
+          provide: PrismaService,
+          useValue: {
+            user: {
+              findMany: jest.fn().mockResolvedValueOnce([]),
+              create: jest.fn(),
+              update: jest.fn(),
+            },
+          },
+        },
+        {
+          provide: AuthService,
+          useValue: {
+            generateApiKey: jest.fn(() => 'generatedApiKey'),
+            encryptPassword: jest.fn(() => 'encryptedPassword'),
+          },
+        },
+      ],
+    }).compile();
+    configService = module.get<ConfigService>(ConfigService);
+    prismaService = module.get<PrismaService>(PrismaService);
+    authService = module.get<AuthService>(AuthService);
+    service = new LdapUsersService(configService, prismaService, authService);
+  });
+
+  it('should be defined', () => {
+    expect(service).toBeDefined();
+  });
+
+  it('should never change a password', async () => {
+    const prismaUserCreateMock = jest.spyOn(prismaService.user, 'create');
+    const prismaUserUpdateMock = jest.spyOn(prismaService.user, 'update');
+    const result = await service.changePassword(user, 'newPassword');
+    expect(prismaUserCreateMock).not.toBeCalled();
+    expect(prismaUserUpdateMock).not.toBeCalled();
+    expect(result).toBe(true);
+  });
+
+  it('should not login when ldap search results are empty', async () => {
+    expect.assertions(1);
+    try {
+      await service.login({ email: 'testÜ*()\\\[email protected]', password: 'password' });
+    } catch (e) {
+      expect(e.message).toBe('Invalid email or password.');
+    }
+  });
+});

src/users/ldap/ldapusers.service.ts

@@ -1,12 +1,11 @@
-import { HttpException, HttpStatus } from '@nestjs/common';
+import { HttpException, HttpStatus, Logger } from '@nestjs/common';
 import { CreateUserDto } from '../dto/user-create.dto';
 import { UserLoginResponseDto } from '../dto/user-login-response.dto';
 import { PrismaService } from '../../prisma/prisma.service';
 import { Role, User } from '@prisma/client';
 import { UpdateUserDto } from '../dto/user-update.dto';
 import { AuthService } from '../../auth/auth.service';
 import { UserLoginRequestDto } from '../dto/user-login-request.dto';
-import { Logger } from '@nestjs/common';
 import { Entry as LdapEntry, Client as LdapClient } from 'ldapts';
 import { Users } from '../users.interface';
 import { ConfigService } from '@nestjs/config';

src/users/users.factory.ts

@@ -11,9 +11,9 @@ export class UsersFactoryService {
   private readonly logger: Logger = new Logger(UsersFactoryService.name);
 
   constructor(
-    private configService: ConfigService,
-    private prismaService: PrismaService,
-    private authService: AuthService
+    private readonly configService: ConfigService,
+    private readonly prismaService: PrismaService,
+    private readonly authService: AuthService
   ) {}
 
   getUsersService(): Users {

src/users/users.service.spec.ts

@@ -4,10 +4,27 @@ import { AuthService } from '../auth/auth.service';
 import { PrismaService } from '../prisma/prisma.service';
 import { ConfigService } from '@nestjs/config';
 import { UsersFactoryService } from './users.factory';
-import { Role } from '@prisma/client';
+import { Role, User } from '@prisma/client';
 import { UserLoginResponseDto } from './dto/user-login-response.dto';
+import { AssignRoleDto } from './dto/assign-role.dto';
+import { randomUUID } from 'crypto';
+import { UserDto } from './dto/user.dto';
+import { UpdateUserDto } from './dto/user-update.dto';
 
-describe('UsersService', () => {
+const user: User = {
+  id: '1',
+  email: '[email protected]',
+  firstName: 'John',
+  lastName: 'Doe',
+  apiKey: 'generatedApiKey',
+  password: 'encryptedPassword',
+  isActive: true,
+  role: Role.editor,
+  updatedAt: new Date(),
+  createdAt: new Date(),
+};
+
+describe('UsersService with DbUserService implementation', () => {
   let service: UsersService;
   let prismaService: PrismaService;
 
@@ -28,6 +45,9 @@ describe('UsersService', () => {
             user: {
               findMany: jest.fn().mockResolvedValueOnce([]),
               create: jest.fn(),
+              update: jest.fn(),
+              delete: jest.fn(),
+              findUnique: jest.fn().mockResolvedValueOnce(user),
             },
           },
         },
@@ -36,6 +56,8 @@ describe('UsersService', () => {
           useValue: {
             generateApiKey: jest.fn(() => 'generatedApiKey'),
             encryptPassword: jest.fn(() => 'encryptedPassword'),
+            compare: jest.fn(() => true),
+            signToken: jest.fn(() => 'token'),
           },
         },
       ],
@@ -49,6 +71,19 @@ describe('UsersService', () => {
     expect(service).toBeDefined();
   });
 
+  it('should generate new api key', async () => {
+    // Arrange
+    const prismaUserUpdateMock = jest.spyOn(prismaService.user, 'update');
+    prismaUserUpdateMock.mockResolvedValueOnce(user);
+
+    // Act
+    const result = await service.generateNewApiKey(user);
+
+    // Assert
+    expect(prismaUserUpdateMock).toHaveBeenCalled();
+    expect(typeof result).toBe('string');
+  });
+
   it('should create a new user', async () => {
     // Arrange
     const createUserDto = {
@@ -59,18 +94,7 @@ describe('UsersService', () => {
     };
 
     const prismaUserCreateMock = jest.spyOn(prismaService.user, 'create');
-    prismaUserCreateMock.mockResolvedValueOnce({
-      id: '1',
-      email: '[email protected]',
-      firstName: 'John',
-      lastName: 'Doe',
-      apiKey: 'generatedApiKey',
-      password: 'encryptedPassword',
-      isActive: true,
-      role: Role.editor,
-      updatedAt: new Date(),
-      createdAt: new Date(),
-    });
+    prismaUserCreateMock.mockResolvedValueOnce(user);
 
     // Act
     const result = await service.create(createUserDto);
@@ -87,4 +111,81 @@ describe('UsersService', () => {
     });
     expect(result).toEqual(expect.any(UserLoginResponseDto));
   });
+
+  it('should update a user', async () => {
+    // Arrange
+    const updateUserDto: UpdateUserDto = {
+      email: '[email protected]',
+      firstName: 'John',
+      lastName: 'Doe',
+    };
+
+    const prismaUserUpdateMock = jest.spyOn(prismaService.user, 'update');
+    prismaUserUpdateMock.mockResolvedValueOnce(user);
+
+    // Act
+    const result = await service.update(user.id, updateUserDto);
+
+    // Assert
+    expect(prismaUserUpdateMock).toHaveBeenCalled();
+    expect(result).toEqual(expect.any(UserLoginResponseDto));
+  });
+
+  it('should change password', async () => {
+    // Arrange
+    const prismaUserUpdateMock = jest.spyOn(prismaService.user, 'update');
+    prismaUserUpdateMock.mockResolvedValueOnce(user);
+
+    // Act
+    const result = await service.changePassword(user, 'newPassword');
+
+    // Assert
+    expect(result).toEqual(true);
+  });
+
+  it('should login existing user', async () => {
+    // Act
+    const result = await service.login({ email: '[email protected]', password: 'doesntmatter' });
+
+    // Assert
+    expect(result).toEqual(expect.any(UserLoginResponseDto));
+  });
+
+  it('should delete existing user', async () => {
+    // Arrange
+    const prismaUserDeleteMock = jest.spyOn(prismaService.user, 'delete');
+    prismaUserDeleteMock.mockResolvedValueOnce(user);
+
+    // Act
+    await service.delete(user.id);
+
+    // Assert
+    expect(prismaUserDeleteMock).toHaveBeenCalled();
+  });
+
+  it('should get existing user', async () => {
+    // Act
+    const result = await service.get(user.id);
+
+    // Assert
+    expect(result).toBeInstanceOf(UserDto);
+  });
+
+  it('should assign role to user', async () => {
+    // Arrange
+    const assignRoleDto: AssignRoleDto = {
+      id: randomUUID(),
+      role: Role.editor,
+    };
+
+    const prismaUserCreateMock = jest.spyOn(prismaService.user, 'update');
+    prismaUserCreateMock.mockResolvedValueOnce(user);
+
+    // Act
+    const result = await service.assignRole(assignRoleDto);
+
+    // Assert
+    expect(prismaUserCreateMock).toHaveBeenCalled();
+    expect(result).toBeInstanceOf(UserDto);
+  });
 });