| Server IP : 79.136.114.73 / Your IP : 3.147.78.141 Web Server : Apache/2.4.7 (Ubuntu) PHP/5.5.9-1ubuntu4.29 OpenSSL/1.0.1f System : Linux b8009 3.13.0-170-generic #220-Ubuntu SMP Thu May 9 12:40:49 UTC 2019 x86_64 User : www-data ( 33) PHP Version : 5.5.9-1ubuntu4.29 Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority, MySQL : ON | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON Directory : /usr/local/lib/node_modules/npm/node_modules/libnpmaccess/test/ |
Upload File : |
'use strict'
const t = require('tap')
const tnock = require('./fixtures/tnock.js')
const access = require('../index.js')
const REG = 'http://localhost:1337'
const OPTS = {
registry: REG
}
t.test('access public', t => {
tnock(t, REG).post(
'/-/package/%40foo%2Fbar/access', { access: 'public' }
).reply(200)
return access.public('@foo/bar', OPTS).then(ret => {
t.deepEqual(ret, true, 'request succeeded')
})
})
t.test('access public - failure', t => {
tnock(t, REG).post(
'/-/package/%40foo%2Fbar/access', { access: 'public' }
).reply(418)
return access.public('@foo/bar', OPTS)
.catch(err => {
t.equals(err.statusCode, 418, 'fails with code from registry')
})
})
t.test('access restricted', t => {
tnock(t, REG).post(
'/-/package/%40foo%2Fbar/access', { access: 'restricted' }
).reply(200)
return access.restricted('@foo/bar', OPTS).then(ret => {
t.deepEqual(ret, true, 'request succeeded')
})
})
t.test('access restricted - failure', t => {
tnock(t, REG).post(
'/-/package/%40foo%2Fbar/access', { access: 'restricted' }
).reply(418)
return access.restricted('@foo/bar', OPTS)
.catch(err => {
t.equals(err.statusCode, 418, 'fails with code from registry')
})
})
t.test('access 2fa-required', t => {
tnock(t, REG).post('/-/package/%40foo%2Fbar/access', {
publish_requires_tfa: true
}).reply(200, { ok: true })
return access.tfaRequired('@foo/bar', OPTS).then(ret => {
t.deepEqual(ret, true, 'request succeeded')
})
})
t.test('access 2fa-not-required', t => {
tnock(t, REG).post('/-/package/%40foo%2Fbar/access', {
publish_requires_tfa: false
}).reply(200, { ok: true })
return access.tfaNotRequired('@foo/bar', OPTS).then(ret => {
t.deepEqual(ret, true, 'request succeeded')
})
})
t.test('access grant basic read-write', t => {
tnock(t, REG).put('/-/team/myorg/myteam/package', {
package: '@foo/bar',
permissions: 'read-write'
}).reply(201)
return access.grant(
'@foo/bar', 'myorg:myteam', 'read-write', OPTS
).then(ret => {
t.deepEqual(ret, true, 'request succeeded')
})
})
t.test('access grant basic read-only', t => {
tnock(t, REG).put('/-/team/myorg/myteam/package', {
package: '@foo/bar',
permissions: 'read-only'
}).reply(201)
return access.grant(
'@foo/bar', 'myorg:myteam', 'read-only', OPTS
).then(ret => {
t.deepEqual(ret, true, 'request succeeded')
})
})
t.test('access grant bad perm', t => {
return access.grant(
'@foo/bar', 'myorg:myteam', 'unknown', OPTS
).then(ret => {
throw new Error('should not have succeeded')
}, err => {
t.match(
err.message,
/must be.*read-write.*read-only/,
'only read-write and read-only are accepted'
)
})
})
t.test('access grant no entity', t => {
return access.grant(
'@foo/bar', undefined, 'read-write', OPTS
).then(ret => {
throw new Error('should not have succeeded')
}, err => {
t.match(
err.message,
/Expected string/,
'passing undefined entity gives useful error'
)
})
})
t.test('access grant basic unscoped', t => {
tnock(t, REG).put('/-/team/myorg/myteam/package', {
package: 'bar',
permissions: 'read-write'
}).reply(201)
return access.grant(
'bar', 'myorg:myteam', 'read-write', OPTS
).then(ret => {
t.deepEqual(ret, true, 'request succeeded')
})
})
t.test('access grant no opts passed', t => {
// NOTE: mocking real url, because no opts variable means `registry` value
// will be defauled to real registry url
tnock(t, 'https://registry.npmjs.org')
.put('/-/team/myorg/myteam/package', {
package: 'bar',
permissions: 'read-write'
})
.reply(201)
return access.grant('bar', 'myorg:myteam', 'read-write')
.then(ret => {
t.equals(ret, true, 'request succeeded')
})
})
t.test('access revoke basic', t => {
tnock(t, REG).delete('/-/team/myorg/myteam/package', {
package: '@foo/bar'
}).reply(200)
return access.revoke('@foo/bar', 'myorg:myteam', OPTS).then(ret => {
t.deepEqual(ret, true, 'request succeeded')
})
})
t.test('access revoke basic unscoped', t => {
tnock(t, REG).delete('/-/team/myorg/myteam/package', {
package: 'bar'
}).reply(200, { accessChanged: true })
return access.revoke('bar', 'myorg:myteam', OPTS).then(ret => {
t.deepEqual(ret, true, 'request succeeded')
})
})
t.test('access revoke no opts passed', t => {
// NOTE: mocking real url, because no opts variable means `registry` value
// will be defauled to real registry url
tnock(t, 'https://registry.npmjs.org')
.delete('/-/team/myorg/myteam/package', {
package: 'bar'
})
.reply(201)
return access.revoke('bar', 'myorg:myteam')
.then(ret => {
t.equals(ret, true, 'request succeeded')
})
})
t.test('ls-packages on team', t => {
const serverPackages = {
'@foo/bar': 'write',
'@foo/util': 'read',
'@foo/other': 'shrödinger'
}
const clientPackages = {
'@foo/bar': 'read-write',
'@foo/util': 'read-only',
'@foo/other': 'shrödinger'
}
tnock(t, REG).get(
'/-/team/myorg/myteam/package?format=cli'
).reply(200, serverPackages)
return access.lsPackages('myorg:myteam', OPTS).then(data => {
t.deepEqual(data, clientPackages, 'got client package info')
})
})
t.test('ls-packages on org', t => {
const serverPackages = {
'@foo/bar': 'write',
'@foo/util': 'read',
'@foo/other': 'shrödinger'
}
const clientPackages = {
'@foo/bar': 'read-write',
'@foo/util': 'read-only',
'@foo/other': 'shrödinger'
}
tnock(t, REG).get(
'/-/org/myorg/package?format=cli'
).reply(200, serverPackages)
return access.lsPackages('myorg', OPTS).then(data => {
t.deepEqual(data, clientPackages, 'got client package info')
})
})
t.test('ls-packages on user', t => {
const serverPackages = {
'@foo/bar': 'write',
'@foo/util': 'read',
'@foo/other': 'shrödinger'
}
const clientPackages = {
'@foo/bar': 'read-write',
'@foo/util': 'read-only',
'@foo/other': 'shrödinger'
}
const srv = tnock(t, REG)
srv.get('/-/org/myuser/package?format=cli').reply(404, { error: 'not found' })
srv.get('/-/user/myuser/package?format=cli').reply(200, serverPackages)
return access.lsPackages('myuser', OPTS).then(data => {
t.deepEqual(data, clientPackages, 'got client package info')
})
})
t.test('ls-packages error on team', t => {
tnock(t, REG).get('/-/team/myorg/myteam/package?format=cli').reply(404)
return access.lsPackages('myorg:myteam', OPTS).then(
() => { throw new Error('should not have succeeded') },
err => t.equal(err.code, 'E404', 'spit out 404 directly if team provided')
)
})
t.test('ls-packages error on user', t => {
const srv = tnock(t, REG)
srv.get('/-/org/myuser/package?format=cli').reply(404, { error: 'not found' })
srv.get('/-/user/myuser/package?format=cli').reply(404, { error: 'not found' })
return access.lsPackages('myuser', OPTS).then(
() => { throw new Error('should not have succeeded') },
err => t.equal(err.code, 'E404', 'spit out 404 if both reqs fail')
)
})
t.test('ls-packages bad response', t => {
tnock(t, REG).get(
'/-/team/myorg/myteam/package?format=cli'
).reply(200, JSON.stringify(null))
return access.lsPackages('myorg:myteam', OPTS).then(data => {
t.deepEqual(data, null, 'succeeds with null')
})
})
t.test('ls-packages stream', t => {
const serverPackages = {
'@foo/bar': 'write',
'@foo/util': 'read',
'@foo/other': 'shrödinger'
}
const clientPackages = [
['@foo/bar', 'read-write'],
['@foo/util', 'read-only'],
['@foo/other', 'shrödinger']
]
tnock(t, REG).get(
'/-/team/myorg/myteam/package?format=cli'
).reply(200, serverPackages)
return access.lsPackages.stream('myorg:myteam', OPTS)
.collect()
.then(data => {
t.deepEqual(data, clientPackages, 'got streamed client package info')
})
})
t.test('ls-packages stream no opts', t => {
const serverPackages = {
'@foo/bar': 'write',
'@foo/util': 'read',
'@foo/other': 'shrödinger'
}
const clientPackages = [
['@foo/bar', 'read-write'],
['@foo/util', 'read-only'],
['@foo/other', 'shrödinger']
]
// NOTE: mocking real url, because no opts variable means `registry` value
// will be defauled to real registry url
tnock(t, 'https://registry.npmjs.org')
.get('/-/team/myorg/myteam/package?format=cli')
.reply(200, serverPackages)
return access.lsPackages.stream('myorg:myteam')
.collect()
.then(data => {
t.deepEqual(data, clientPackages, 'got streamed client package info')
})
})
t.test('ls-collaborators', t => {
const serverCollaborators = {
'myorg:myteam': 'write',
'myorg:anotherteam': 'read',
'myorg:thirdteam': 'special-case'
}
const clientCollaborators = {
'myorg:myteam': 'read-write',
'myorg:anotherteam': 'read-only',
'myorg:thirdteam': 'special-case'
}
tnock(t, REG).get(
'/-/package/%40foo%2Fbar/collaborators?format=cli'
).reply(200, serverCollaborators)
return access.lsCollaborators('@foo/bar', OPTS).then(data => {
t.deepEqual(data, clientCollaborators, 'got collaborators')
})
})
t.test('ls-collaborators stream', t => {
const serverCollaborators = {
'myorg:myteam': 'write',
'myorg:anotherteam': 'read',
'myorg:thirdteam': 'special-case'
}
const clientCollaborators = [
['myorg:myteam', 'read-write'],
['myorg:anotherteam', 'read-only'],
['myorg:thirdteam', 'special-case']
]
tnock(t, REG).get(
'/-/package/%40foo%2Fbar/collaborators?format=cli'
).reply(200, serverCollaborators)
return access.lsCollaborators.stream('@foo/bar', OPTS)
.collect()
.then(data => {
t.deepEqual(data, clientCollaborators, 'got collaborators')
})
})
t.test('ls-collaborators w/scope', t => {
const serverCollaborators = {
'myorg:myteam': 'write',
'myorg:anotherteam': 'read',
'myorg:thirdteam': 'special-case'
}
const clientCollaborators = {
'myorg:myteam': 'read-write',
'myorg:anotherteam': 'read-only',
'myorg:thirdteam': 'special-case'
}
tnock(t, REG).get(
'/-/package/%40foo%2Fbar/collaborators?format=cli&user=zkat'
).reply(200, serverCollaborators)
return access.lsCollaborators('@foo/bar', 'zkat', OPTS).then(data => {
t.deepEqual(data, clientCollaborators, 'got collaborators')
})
})
t.test('ls-collaborators w/o scope', t => {
const serverCollaborators = {
'myorg:myteam': 'write',
'myorg:anotherteam': 'read',
'myorg:thirdteam': 'special-case'
}
const clientCollaborators = {
'myorg:myteam': 'read-write',
'myorg:anotherteam': 'read-only',
'myorg:thirdteam': 'special-case'
}
tnock(t, REG).get(
'/-/package/bar/collaborators?format=cli&user=zkat'
).reply(200, serverCollaborators)
return access.lsCollaborators('bar', 'zkat', OPTS).then(data => {
t.deepEqual(data, clientCollaborators, 'got collaborators')
})
})
t.test('ls-collaborators bad response', t => {
tnock(t, REG).get(
'/-/package/%40foo%2Fbar/collaborators?format=cli'
).reply(200, JSON.stringify(null))
return access.lsCollaborators('@foo/bar', null, OPTS).then(data => {
t.deepEqual(data, null, 'succeeds with null')
})
})
t.test('error on non-registry specs', t => {
const resolve = () => { throw new Error('should not succeed') }
const reject = err => t.match(
err.message, /spec.*must be a registry spec/, 'registry spec required'
)
return Promise.all([
access.public('githubusername/reponame').then(resolve, reject),
access.restricted('foo/bar').then(resolve, reject),
access.grant('foo/bar', 'myorg', 'myteam', 'read-only').then(resolve, reject),
access.revoke('foo/bar', 'myorg', 'myteam').then(resolve, reject),
access.lsCollaborators('foo/bar').then(resolve, reject),
access.tfaRequired('foo/bar').then(resolve, reject),
access.tfaNotRequired('foo/bar').then(resolve, reject)
])
})
t.test('edit', t => {
t.equal(typeof access.edit, 'function', 'access.edit exists')
t.throws(() => {
access.edit()
}, /Not implemented/, 'directly throws NIY message')
t.done()
})