mirror of
https://github.com/TriliumNext/Notes.git
synced 2025-11-04 15:11:31 +08:00
55 lines
1.6 KiB
TypeScript
55 lines
1.6 KiB
TypeScript
|
import { Application } from "express";
|
||
|
|
import { beforeAll, describe, expect, it } from "vitest";
|
||
|
|
import supertest from "supertest";
|
||
|
|
import { login } from "./utils.js";
|
||
|
|
import config from "../../src/services/config.js";
|
||
|
|
import type TestAgent from "supertest/lib/agent.js";
|
||
|
|
|
||
|
|
let app: Application;
|
||
|
|
|
||
|
|
const USER = "etapi";
|
||
|
|
|
||
|
|
const routes = [
|
||
|
|
"GET /etapi/notes?search=aaa",
|
||
|
|
"GET /etapi/notes/root",
|
||
|
|
"PATCH /etapi/notes/root",
|
||
|
|
"DELETE /etapi/notes/root",
|
||
|
|
"GET /etapi/branches/root",
|
||
|
|
"PATCH /etapi/branches/root",
|
||
|
|
"DELETE /etapi/branches/root",
|
||
|
|
"GET /etapi/attributes/000",
|
||
|
|
"PATCH /etapi/attributes/000",
|
||
|
|
"DELETE /etapi/attributes/000",
|
||
|
|
"GET /etapi/inbox/2022-02-22",
|
||
|
|
"GET /etapi/calendar/days/2022-02-22",
|
||
|
|
"GET /etapi/calendar/weeks/2022-02-22",
|
||
|
|
"GET /etapi/calendar/months/2022-02",
|
||
|
|
"GET /etapi/calendar/years/2022",
|
||
|
|
"POST /etapi/create-note",
|
||
|
|
"GET /etapi/app-info",
|
||
|
|
]
|
||
|
|
|
||
|
|
describe("no-token", () => {
|
||
|
|
beforeAll(async () => {
|
||
|
|
config.General.noAuthentication = false;
|
||
|
|
const buildApp = (await (import("../../src/app.js"))).default;
|
||
|
|
app = await buildApp();
|
||
|
|
});
|
||
|
|
|
||
|
|
for (const route of routes) {
|
||
|
|
const [ method, url ] = route.split(" ", 2);
|
||
|
|
|
||
|
|
it(`rejects access to ${method} ${url}`, () => {
|
||
|
|
(supertest(app)[method.toLowerCase()](url) as TestAgent)
|
||
|
|
.auth(USER, "fakeauth", { "type": "basic"})
|
||
|
|
.expect(401)
|
||
|
|
});
|
||
|
|
}
|
||
|
|
|
||
|
|
it("responds with 404 even without token", () => {
|
||
|
|
supertest(app)
|
||
|
|
.get("/etapi/zzzzzz")
|
||
|
|
.expect(404);
|
||
|
|
});
|
||
|
|
});
|