Write public-key integration tests

2016-06-01 12:28:37 +02:00
parent 5d4e162c01
commit a27e833a8d
2 changed files with 271 additions and 30 deletions
--- a/test/integration/public-key-test.js
+++ b/test/integration/public-key-test.js
@@ -0,0 +1,213 @@
+'use strict';
+
+require('co-mocha')(require('mocha')); // monkey patch mocha for generators
+
+const log = require('npmlog');
+const openpgp = require('openpgp');
+const nodemailer = require('nodemailer');
+const Email = require('../../src/email/email');
+const Mongo = require('../../src/dao/mongo');
+const UserId = require('../../src/service/user-id');
+const PublicKey = require('../../src/service/public-key');
+const expect = require('chai').expect;
+const sinon = require('sinon');
+
+describe('Public Key Integration Tests', function() {
+  this.timeout(20000);
+
+  let publicKey, email, mongo, userId,
+    sendEmailStub, publicKeyArmored, emailParams;
+
+  const DB_TYPE_PUB_KEY = 'publickey';
+  const DB_TYPE_USER_ID = 'userid';
+  const primaryEmail = 'safewithme.testuser@gmail.com';
+  const origin = { host:'localhost', protocol:'http' };
+
+  before(function *() {
+    publicKeyArmored = require('fs').readFileSync(__dirname + '/../key1.asc', 'utf8');
+    let credentials;
+    try {
+      credentials = require('../../credentials.json');
+    } catch(e) {
+      log.info('mongo-test', 'No credentials.json found ... using environment vars.');
+    }
+    mongo = new Mongo({
+      uri: process.env.MONGO_URI || credentials.mongo.uri,
+      user: process.env.MONGO_USER || credentials.mongo.user,
+      password: process.env.MONGO_PASS || credentials.mongo.pass
+    });
+    yield mongo.connect();
+  });
+
+  beforeEach(function *() {
+    yield mongo.clear(DB_TYPE_PUB_KEY);
+    yield mongo.clear(DB_TYPE_USER_ID);
+    emailParams = null;
+    sendEmailStub = sinon.stub().returns(Promise.resolve({ response:'250' }));
+    sendEmailStub.withArgs(sinon.match(recipient => {
+      return recipient.to.address === primaryEmail;
+    }), sinon.match(params => {
+      emailParams = params;
+      return !!params.nonce;
+    }));
+    sinon.stub(nodemailer, 'createTransport').returns({
+      templateSender: () => { return sendEmailStub; }
+    });
+    email = new Email(nodemailer);
+    email.init({
+      host: 'localhost',
+      auth: { user:'user', pass:'pass' },
+      sender: { name:'Foo Bar', email:'foo@bar.com' }
+    });
+    userId = new UserId(mongo);
+    publicKey = new PublicKey(openpgp, mongo, email, userId);
+  });
+
+  afterEach(() => {
+    nodemailer.createTransport.restore();
+  });
+
+  after(function *() {
+    yield mongo.clear(DB_TYPE_PUB_KEY);
+    yield mongo.clear(DB_TYPE_USER_ID);
+    yield mongo.disconnect();
+  });
+
+  describe('put', () => {
+    it('should persist key and send verification email', function *() {
+      yield publicKey.put({ publicKeyArmored, primaryEmail, origin });
+      expect(emailParams.nonce).to.exist;
+    });
+
+    it('should work twice if not yet verified', function *() {
+      yield publicKey.put({ publicKeyArmored, primaryEmail, origin });
+      expect(emailParams.nonce).to.exist;
+      emailParams = null;
+      yield publicKey.put({ publicKeyArmored, primaryEmail, origin });
+      expect(emailParams.nonce).to.exist;
+    });
+
+    it('should throw 304 if key already exists', function *() {
+      yield publicKey.put({ publicKeyArmored, primaryEmail, origin });
+      yield userId.verify(emailParams);
+      try {
+        yield publicKey.put({ publicKeyArmored, primaryEmail, origin });
+        expect(false).to.be.true;
+      } catch(e) {
+        expect(e.status).to.equal(304);
+      }
+    });
+  });
+
+  describe('get', () => {
+    beforeEach(function *() {
+      yield publicKey.put({ publicKeyArmored, primaryEmail, origin });
+    });
+
+    it('should return verified key by key id', function *() {
+      yield userId.verify(emailParams);
+      let key = yield publicKey.get({ keyid:emailParams.keyid });
+      expect(key.publicKeyArmored).to.equal(publicKeyArmored);
+    });
+
+    it('should return verified key by email address', function *() {
+      yield userId.verify(emailParams);
+      let key = yield publicKey.get({ email:primaryEmail });
+      expect(key.publicKeyArmored).to.equal(publicKeyArmored);
+    });
+
+    it('should throw 404 for unverified key', function *() {
+      try {
+        yield publicKey.get({ keyid:emailParams.keyid });
+        expect(false).to.be.true;
+      } catch(e) {
+        expect(e.status).to.equal(404);
+      }
+    });
+  });
+
+  describe('requestRemove', () => {
+    let keyid;
+
+    beforeEach(function *() {
+      yield publicKey.put({ publicKeyArmored, primaryEmail, origin });
+      keyid = emailParams.keyid;
+    });
+
+    it('should work for verified key', function *() {
+      yield userId.verify(emailParams);
+      emailParams = null;
+      yield publicKey.requestRemove({ keyid, origin });
+      expect(emailParams.nonce).to.exist;
+    });
+
+    it('should work for unverified key', function *() {
+      emailParams = null;
+      yield publicKey.requestRemove({ keyid, origin });
+      expect(emailParams.nonce).to.exist;
+    });
+
+    it('should work by email address', function *() {
+      emailParams = null;
+      yield publicKey.requestRemove({ email:primaryEmail, origin });
+      expect(emailParams.nonce).to.exist;
+    });
+
+    it('should throw 404 for no key', function *() {
+      yield publicKey.remove({ keyid });
+      try {
+        yield publicKey.requestRemove({ keyid, origin });
+        expect(false).to.be.true;
+      } catch(e) {
+        expect(e.status).to.equal(404);
+      }
+    });
+  });
+
+  describe('verifyRemove', () => {
+    let keyid;
+
+    beforeEach(function *() {
+      yield publicKey.put({ publicKeyArmored, primaryEmail, origin });
+      keyid = emailParams.keyid;
+      emailParams = null;
+      yield publicKey.requestRemove({ keyid, origin });
+    });
+
+    it('should remove key', function *() {
+      yield publicKey.verifyRemove(emailParams);
+      let uid = yield mongo.get({ keyid }, DB_TYPE_USER_ID);
+      expect(uid).to.not.exist;
+      let key = yield mongo.get({ _id:keyid }, DB_TYPE_PUB_KEY);
+      expect(key).to.not.exist;
+    });
+
+    it('should throw 404 for no key', function *() {
+      yield publicKey.remove({ keyid });
+      try {
+        yield publicKey.verifyRemove(emailParams);
+        expect(false).to.be.true;
+      } catch(e) {
+        expect(e.status).to.equal(404);
+      }
+    });
+  });
+
+  describe('remove', () => {
+    let keyid;
+
+    beforeEach(function *() {
+      yield publicKey.put({ publicKeyArmored, primaryEmail, origin });
+      keyid = emailParams.keyid;
+    });
+
+    it('should remove key', function *() {
+      yield publicKey.remove({ keyid });
+      let uid = yield mongo.get({ keyid }, DB_TYPE_USER_ID);
+      expect(uid).to.not.exist;
+      let key = yield mongo.get({ _id:keyid }, DB_TYPE_PUB_KEY);
+      expect(key).to.not.exist;
+    });
+  });
+
+});