test: improve controller sign unit test coverage (#80)

Author: sinchang

app/controller/sign.js

@@ -73,7 +73,7 @@ class SignController extends Controller {
 
     await service.user.newAndSave(loginname, loginname, passhash, email, avatarUrl, false);
     // 发送激活邮件
-    // await mail.sendActiveMail(email, utility.md5(email + passhash + config.session_secret), loginname);
+    // await service.mail.sendActiveMail(email, utility.md5(email + passhash + config.session_secret), loginname);
     await ctx.render('sign/signup', {
       success: '欢迎加入 ' + config.name + '！我们已给您的注册邮箱发送了一封邮件，请点击里面的链接来激活您的帐号。',
     });
@@ -180,10 +180,10 @@ class SignController extends Controller {
 
   async updatePass() {
     const { ctx, service } = this;
-    const psw = validator.trim(ctx.body.psw) || '';
-    const repsw = validator.trim(ctx.body.repsw) || '';
-    const key = validator.trim(ctx.body.key) || '';
-    const name = validator.trim(ctx.body.name) || '';
+    const psw = validator.trim(ctx.request.body.psw) || '';
+    const repsw = validator.trim(ctx.request.body.repsw) || '';
+    const key = validator.trim(ctx.request.body.key) || '';
+    const name = validator.trim(ctx.request.body.name) || '';
 
     if (psw !== repsw) {
       await this.ctx.render('sign/reset', {

app/view/sign/reset.html

@@ -1,4 +1,4 @@
-<%- partial('../sign/sidebar') %>
+<%- include('./sidebar.html') %>
 
 <div id='content'>
   <div class='panel'>

test/app/controller/sign.test.js

@@ -1,10 +1,18 @@
 'use strict';
 
 const { app, assert } = require('egg-mock/bootstrap');
+const utility = require('utility');
 
 describe('test/app/controller/sign.test.js', () => {
   const loginname = 'loginname' + Date.now();
   const email = `${loginname}@email.com`;
+  const pass = 'pass';
+  let ctx,
+    key;
+
+  before(async () => {
+    ctx = app.mockContext();
+  });
 
   it('should GET /signup', async () => {
     await app.httpRequest()
@@ -18,6 +26,41 @@ describe('test/app/controller/sign.test.js', () => {
       .expect(403);
   });
 
+  it('should POST /signup ok', async () => {
+    app.mockCsrf();
+    const res = await app.httpRequest()
+      .post('/signup')
+      .send({
+        loginname,
+        email,
+        pass,
+        re_pass: pass,
+      });
+
+    assert(res.statusCode === 200);
+    assert(res.text.includes('欢迎加入 CNode技术社区！我们已给您的注册邮箱发送了一封邮件，请点击里面的链接来激活您的帐号'));
+  });
+
+  it('should GET /active_account', async () => {
+    let res = await app.httpRequest()
+      .get('/active_account');
+    assert(res.text.includes('用户不存在'));
+
+    res = await app.httpRequest()
+      .get(`/active_account?name=${loginname}`);
+    assert(res.text.includes('信息有误，帐号无法被激活。'));
+
+    const user = await ctx.service.user.getUserByLoginName(loginname);
+    const activeKey = utility.md5(email + user.pass + app.config.session_secret);
+    res = await app.httpRequest()
+      .get(`/active_account?name=${loginname}&key=${activeKey}`);
+    assert(res.text.includes('帐号已被激活，请登录'));
+
+    res = await app.httpRequest()
+      .get(`/active_account?name=${loginname}&key=${activeKey}`);
+    assert(res.text.includes('帐号已经是激活状态。'));
+  });
+
   it('should GET /signin', async () => {
     await app.httpRequest()
       .get('/signin')
@@ -31,22 +74,71 @@ describe('test/app/controller/sign.test.js', () => {
   });
 
   it('should GET /search_pass', async () => {
-    const res = await app.httpRequest()
-      .get('/search_pass');
-    assert(res.statusCode === 200);
+    await app.httpRequest()
+      .get('/search_pass').expect(200);
+  });
+
+  it('should POST /search_pass', async () => {
+    app.mockCsrf();
+    let res = await app
+      .httpRequest()
+      .post('/search_pass')
+      .send({ email: 'test' });
+
+    assert(res.text.includes('邮箱不合法'));
+
+    res = await app
+      .httpRequest()
+      .post('/search_pass')
+      .send({ email: '[email protected]' });
+
+    assert(res.text.includes('没有这个电子邮箱。'));
+
+    res = await app
+      .httpRequest()
+      .post('/search_pass')
+      .send({ email });
+
+    assert(res.text.includes('我们已给您填写的电子邮箱发送了一封邮件，请在24小时内点击里面的链接来重置密码。'));
   });
 
   it('should GET /reset_pass', async () => {
-    const res = await app.httpRequest()
+    let res = await app.httpRequest()
       .get('/reset_pass');
     assert(res.statusCode === 403);
     assert(res.text.includes('信息有误，密码无法重置。'));
+
+    const user = await ctx.service.user.getUserByLoginName(loginname);
+    key = user.retrieve_key;
+    res = await app.httpRequest()
+      .get(`/reset_pass?name=${loginname}&key=${key}`);
+    assert(res.statusCode === 200);
+
+    await ctx.model.User.findOneAndUpdate({ loginname }, { retrieve_time: '' }).exec();
+    res = await app.httpRequest()
+      .get(`/reset_pass?name=${loginname}&key=${key}`);
+    assert(res.text.includes('该链接已过期，请重新申请。'));
   });
 
-  it('should GET /active_account', async () => {
-    const res = await app.httpRequest()
-      .get('/active_account');
-    assert(res.text.includes('用户不存在'));
+  it('should POST /reset_pass', async () => {
+    app.mockCsrf();
+    let res = await app
+      .httpRequest()
+      .post('/reset_pass')
+      .send({ psw: 'hi', repsw: 'hihi', name: loginname, key: 'key' });
+    assert(res.text.includes('两次密码输入不一致。'));
+
+    res = await app
+      .httpRequest()
+      .post('/reset_pass')
+      .send({ psw: 'hihi', repsw: 'hihi', name: loginname, key: 'key' });
+    assert(res.text.includes('错误的激活链接'));
+
+    res = await app
+      .httpRequest()
+      .post('/reset_pass')
+      .send({ psw: 'hihi', repsw: 'hihi', name: loginname, key });
+    assert(res.text.includes('你的密码已重置。'));
   });
 
   it('should POST /signup', async () => {
@@ -68,8 +160,8 @@ describe('test/app/controller/sign.test.js', () => {
       .send({
         loginname: 'logi',
         email: '[email protected]',
-        pass: '123456',
-        re_pass: '123456',
+        pass,
+        re_pass: pass,
       });
 
     assert(res.statusCode === 422);
@@ -84,8 +176,8 @@ describe('test/app/controller/sign.test.js', () => {
       .send({
         loginname: 'login@name',
         email: '[email protected]',
-        pass: '123456',
-        re_pass: '123456',
+        pass,
+        re_pass: pass,
       });
 
     assert(res.statusCode === 422);
@@ -100,8 +192,8 @@ describe('test/app/controller/sign.test.js', () => {
       .send({
         loginname: 'loginname',
         email: 'invalid_email',
-        pass: '123456',
-        re_pass: '123456',
+        pass,
+        re_pass: pass,
       });
 
     assert(res.statusCode === 422);
@@ -116,30 +208,14 @@ describe('test/app/controller/sign.test.js', () => {
       .send({
         loginname: 'loginname',
         email: '[email protected]',
-        pass: '123456',
+        pass,
         re_pass: '1234567',
       });
 
     assert(res.statusCode === 422);
     assert(res.text.includes('两次密码输入不一致。'));
   });
 
-  it('should POST /signup ok', async () => {
-    app.mockCsrf();
-    const res = await app.httpRequest()
-      .post('/signup')
-      .type('form')
-      .send({
-        loginname,
-        email,
-        pass: '123456',
-        re_pass: '123456',
-      });
-
-    assert(res.statusCode === 200);
-    assert(res.text.includes('欢迎加入 CNode技术社区！我们已给您的注册邮箱发送了一封邮件，请点击里面的链接来激活您的帐号'));
-  });
-
   it('should POST /signup user or email in use', async () => {
     app.mockCsrf();
     const res = await app.httpRequest()
@@ -148,8 +224,8 @@ describe('test/app/controller/sign.test.js', () => {
       .send({
         loginname,
         email,
-        pass: '123456',
-        re_pass: '123456',
+        pass,
+        re_pass: pass,
       });
 
     assert(res.statusCode === 422);