Scaffold API to seed using admin JWT

Author: Strift

.cursor/rules/cypress.mdc

@@ -0,0 +1,6 @@
+---
+globs: cypress/**.*
+alwaysApply: false
+---
+
+- The playground is already running, you don't need to start it

.cursor/rules/general.mdc

@@ -0,0 +1,7 @@
+---
+description:
+globs:
+alwaysApply: true
+---
+
+- This project uses `ni` as package manager; use `nlx` to execute packages

cypress/e2e/new-roles.cy.js

@@ -0,0 +1,191 @@
+const ADMIN_CREDENTIALS = {
+  email: '[email protected]',
+  password: 'password',
+}
+
+const _USER_WITHOUT_ACCESS = {
+  username: 'user_without_access',
+  email: '[email protected]',
+  password: 'strapiPassword',
+}
+
+describe('wip test refactor', () => {
+  // JWT token for admin panel operations (creating users, roles, permissions)
+  let adminToken
+
+  // Long-lived API token for content management and plugin endpoints
+  let apiToken
+
+  // Generate unique identifiers for this test run
+  const timestamp = Date.now()
+  const uniqueEmail = `test.user.${timestamp}@example.com`
+  const uniqueRoleName = `Content Manager ${timestamp}`
+
+  before(() => {
+    // Login as admin to get JWT token for admin panel operations
+    cy.request({
+      method: 'POST',
+      url: 'http://localhost:1337/admin/login',
+      body: {
+        email: ADMIN_CREDENTIALS.email,
+        password: ADMIN_CREDENTIALS.password,
+      },
+    })
+      .then(response => {
+        expect(response.status).to.eq(200)
+        adminToken = response.body.data.token
+
+        // Get the API token created during bootstrap for content/plugin operations
+        return cy.request({
+          method: 'GET',
+          url: 'http://localhost:1337/admin/api-tokens',
+          headers: {
+            Authorization: `Bearer ${adminToken}`,
+          },
+        })
+      })
+      .then(response => {
+        expect(response.status).to.eq(200)
+        console.log(
+          'API Tokens response:',
+          JSON.stringify(response.body, null, 2),
+        )
+        const cypressToken = response.body.data.find(
+          token => token.name === 'cypress-test-token',
+        )
+        expect(cypressToken).to.exist
+        apiToken = cypressToken.accessKey
+        console.log('API Token set to:', apiToken)
+      })
+  })
+
+  it('should be able to create a new admin user with admin token', () => {
+    // Create a new admin user using the admin JWT token
+    cy.request({
+      method: 'POST',
+      url: 'http://localhost:1337/admin/users',
+      headers: {
+        Authorization: `Bearer ${adminToken}`,
+      },
+      body: {
+        firstname: 'Test',
+        lastname: 'User',
+        email: uniqueEmail,
+        roles: [2], // Editor role
+      },
+    }).then(response => {
+      expect(response.status).to.eq(201)
+      expect(response.body.data).to.have.property('id')
+      expect(response.body.data.email).to.eq(uniqueEmail)
+      expect(response.body.data.firstname).to.eq('Test')
+      expect(response.body.data.lastname).to.eq('User')
+      expect(response.body.data.roles).to.have.length(1)
+      expect(response.body.data.roles[0].code).to.eq('strapi-editor')
+
+      // Store the created user ID for cleanup
+      Cypress.env('createdUserId', response.body.data.id)
+    })
+  })
+
+  it('should be able to create a custom admin role with admin token', () => {
+    // Create a new custom admin role using the admin JWT token
+    cy.request({
+      method: 'POST',
+      url: 'http://localhost:1337/admin/roles',
+      headers: {
+        Authorization: `Bearer ${adminToken}`,
+      },
+      body: {
+        name: uniqueRoleName,
+        description: 'Can manage content but not system settings',
+      },
+    }).then(response => {
+      expect(response.status).to.eq(201)
+      expect(response.body.data).to.have.property('id')
+      expect(response.body.data.name).to.eq(uniqueRoleName)
+      expect(response.body.data.description).to.eq(
+        'Can manage content but not system settings',
+      )
+
+      // Store the created role ID for cleanup
+      Cypress.env('createdRoleId', response.body.data.id)
+    })
+  })
+
+  it('should be able to list all admin users', () => {
+    // List all admin users using the admin JWT token
+    cy.request({
+      method: 'GET',
+      url: 'http://localhost:1337/admin/users',
+      headers: {
+        Authorization: `Bearer ${adminToken}`,
+      },
+    }).then(response => {
+      expect(response.status).to.eq(200)
+      expect(response.body.data).to.have.property('results')
+      expect(response.body.data.results).to.be.an('array')
+      expect(response.body.data.results.length).to.be.greaterThan(0)
+
+      // Should include our original admin user
+      const adminUser = response.body.data.results.find(
+        user => user.email === '[email protected]',
+      )
+      expect(adminUser).to.exist
+      expect(adminUser.roles[0].code).to.eq('strapi-super-admin')
+    })
+  })
+
+  it('should be able to list all admin roles', () => {
+    // List all admin roles using the admin JWT token
+    cy.request({
+      method: 'GET',
+      url: 'http://localhost:1337/admin/roles',
+      headers: {
+        Authorization: `Bearer ${adminToken}`,
+      },
+    }).then(response => {
+      expect(response.status).to.eq(200)
+      expect(response.body.data).to.be.an('array')
+      expect(response.body.data.length).to.be.greaterThan(2) // At least Super Admin, Editor, Author
+
+      // Should include the default roles
+      const roleNames = response.body.data.map(role => role.name)
+      expect(roleNames).to.include('Super Admin')
+      expect(roleNames).to.include('Editor')
+      expect(roleNames).to.include('Author')
+    })
+  })
+
+  // Cleanup tests - run after the main tests
+  after(() => {
+    // Clean up created user if it exists
+    cy.window().then(win => {
+      // Check if the alias exists before trying to get it
+      if (Cypress.env('createdUserId')) {
+        cy.request({
+          method: 'DELETE',
+          url: `http://localhost:1337/admin/users/${Cypress.env('createdUserId')}`,
+          headers: {
+            Authorization: `Bearer ${adminToken}`,
+          },
+          failOnStatusCode: false, // Don't fail if user doesn't exist
+        })
+      }
+    })
+
+    // Clean up created role if it exists
+    cy.window().then(win => {
+      // Check if the alias exists before trying to get it
+      if (Cypress.env('createdRoleId')) {
+        cy.request({
+          method: 'DELETE',
+          url: `http://localhost:1337/admin/roles/${Cypress.env('createdRoleId')}`,
+          headers: {
+            Authorization: `Bearer ${adminToken}`,
+          },
+          failOnStatusCode: false, // Don't fail if role doesn't exist
+        })
+      }
+    })
+  })
+})

playground/config/admin.js

@@ -1,4 +1,5 @@
 module.exports = ({ env }) => ({
+  autoOpen: false,
   auth: {
     secret: env('ADMIN_JWT_SECRET', '1eb9a218d26dc77bd39c11b0ab64b291'),
   },

playground/src/index.js

@@ -1,20 +1,67 @@
-'use strict';
-
 module.exports = {
-  /**
-   * An asynchronous register function that runs before
-   * your application is initialized.
-   *
-   * This gives you an opportunity to extend code.
-   */
-  register(/*{ strapi }*/) {},
+  async bootstrap({ strapi }) {
+    console.log('🚀 Bootstrap function called!');
+    // Only run seeding in development/test environments
+    if (process.env.NODE_ENV !== 'production') {
+      try {
+        console.log('🌱 Starting bootstrap seeding...');
+
+        // Check if admin user exists
+        const adminUser = await strapi.query('admin::user').findOne({
+          where: { email: '[email protected]' }
+        });
+
+        if (!adminUser) {
+          // Create admin user using Strapi's admin service
+          const adminUserService = strapi.service('admin::user');
+          const superAdminRole = await strapi.query('admin::role').findOne({
+            where: { code: 'strapi-super-admin' }
+          });
+
+          await adminUserService.create({
+            firstname: 'Admin',
+            lastname: 'User',
+            email: '[email protected]',
+            password: 'password',
+            isActive: true,
+            roles: [superAdminRole.id],
+          });
+          console.log('✅ Admin user created');
+        } else {
+          console.log('✅ Admin user already exists');
+          // Update the password if it's not hashed (for existing users)
+          if (adminUser.password === 'password') {
+            const adminUserService = strapi.service('admin::user');
+            await adminUserService.updateById(adminUser.id, {
+              password: 'password'
+            });
+            console.log('✅ Admin user password updated with proper hash');
+          }
+        }
+
+        // Check if test API token exists
+        const existingToken = await strapi.query('admin::api-token').findOne({
+          where: { name: 'cypress-test-token' }
+        });
+
+        if (!existingToken) {
+          // Create API token for Cypress tests
+          const tokenService = strapi.service('admin::api-token');
+          const token = await tokenService.create({
+            name: 'cypress-test-token',
+            description: 'API token for Cypress tests',
+            type: 'full-access',
+          });
+          console.log('✅ Cypress test token created:', token.accessKey);
+        } else {
+          console.log('✅ Cypress test token already exists');
+        }
 
-  /**
-   * An asynchronous bootstrap function that runs before
-   * your application gets started.
-   *
-   * This gives you an opportunity to set up your data model,
-   * run jobs, or perform some special logic.
-   */
-  bootstrap(/*{ strapi }*/) {},
+        console.log('🌱 Bootstrap seeding completed successfully');
+      } catch (error) {
+        console.error('❌ Bootstrap seeding failed:', error.message);
+        console.error('Error details:', error);
+      }
+    }
+  },
 };