mirror of
https://github.com/hashicorp/vault.git
synced 2025-08-10 16:47:01 +02:00
31051ef1e4
* change entity_id to camel casing, remove "backends" key from stored auth data * fix tokenExpirationEpoch returning NaN, use authSuccess in auth service tests * camel case mfa_requirement references * refactor auth service * implement api service for token method * implement api service in standard auth methods * add lookupSelf request to persistAuthData method in auht service instead of calling in components * implement api service in oidc-jwt component * implement api service in okta component * implement api service in saml component * use api service for wrapped_token query param * remaining test updates, enterprise tests and stabilize auth helpers * upate renew() to use new persistAuthData method, add a test * revert as this will be addressed upstream * rename supported-login-methods to auth-form-helpers and delete old supported-auth-backends helper, update tests * cleanup normalize after testing mfa validation for each auth method * update type declarations, set displayName in each method component * stabilize redirect tests by waiting for login before asserting url * stabilize tests * modernize typescript syntax, move error const to util * use mirage instead of vault server to resolve test race conditions * fix file import
151 lines
5.2 KiB
JavaScript
151 lines
5.2 KiB
JavaScript
/**
|
|
* Copyright (c) HashiCorp, Inc.
|
|
* SPDX-License-Identifier: BUSL-1.1
|
|
*/
|
|
|
|
import { module, test } from 'qunit';
|
|
import { setupRenderingTest } from 'ember-qunit';
|
|
import { setupEngine } from 'ember-engines/test-support';
|
|
import { setupMirage } from 'ember-cli-mirage/test-support';
|
|
import { render, click } from '@ember/test-helpers';
|
|
import hbs from 'htmlbars-inline-precompile';
|
|
import { allowAllCapabilitiesStub } from 'vault/tests/helpers/stubs';
|
|
import sinon from 'sinon';
|
|
|
|
module('Integration | Component | ldap | AccountsCheckedOut', function (hooks) {
|
|
setupRenderingTest(hooks);
|
|
setupEngine(hooks, 'ldap');
|
|
setupMirage(hooks);
|
|
|
|
hooks.beforeEach(function () {
|
|
this.server.post('/sys/capabilities-self', allowAllCapabilitiesStub());
|
|
|
|
this.store = this.owner.lookup('service:store');
|
|
this.authStub = sinon.stub(this.owner.lookup('service:auth'), 'authData');
|
|
|
|
this.store.pushPayload('ldap/library', {
|
|
modelName: 'ldap/library',
|
|
backend: 'ldap-test',
|
|
...this.server.create('ldap-library', { name: 'test-library' }),
|
|
});
|
|
this.library = this.store.peekRecord('ldap/library', 'test-library');
|
|
this.statuses = [
|
|
{
|
|
account: 'foo.bar',
|
|
available: false,
|
|
library: 'test-library',
|
|
borrower_client_token: '123',
|
|
borrower_entity_id: '456',
|
|
},
|
|
{ account: 'bar.baz', available: false, library: 'test-library' },
|
|
{ account: 'checked.in', available: true, library: 'test-library' },
|
|
];
|
|
this.onCheckInSuccess = () => true;
|
|
this.renderComponent = () => {
|
|
return render(
|
|
hbs`
|
|
<AccountsCheckedOut
|
|
@libraries={{array this.library}}
|
|
@statuses={{this.statuses}}
|
|
@showLibraryColumn={{this.showLibraryColumn}}
|
|
@onCheckInSuccess={{this.onCheckInSuccess}} />
|
|
`,
|
|
{
|
|
owner: this.engine,
|
|
}
|
|
);
|
|
};
|
|
});
|
|
|
|
hooks.afterEach(function () {
|
|
this.authStub.restore();
|
|
});
|
|
|
|
test('it should render empty state when no accounts are checked out', async function (assert) {
|
|
this.statuses = [
|
|
{ account: 'foo', available: true, library: 'test-library' },
|
|
{ account: 'bar', available: true, library: 'test-library' },
|
|
];
|
|
|
|
await this.renderComponent();
|
|
|
|
assert
|
|
.dom('[data-test-empty-state-title]')
|
|
.hasText('No accounts checked out yet', 'Empty state title renders');
|
|
assert
|
|
.dom('[data-test-empty-state-message]')
|
|
.hasText('There is no account that is currently in use.', 'Empty state message renders');
|
|
});
|
|
|
|
test('it should filter accounts for root user', async function (assert) {
|
|
this.authStub.value({ entityId: '' });
|
|
|
|
await this.renderComponent();
|
|
|
|
assert.dom('[data-test-checked-out-account]').exists({ count: 1 }, 'Correct number of accounts render');
|
|
assert
|
|
.dom('[data-test-checked-out-account="bar.baz"]')
|
|
.hasText('bar.baz', 'Account renders that was checked out by root user');
|
|
});
|
|
|
|
test('it should filter accounts for non root user', async function (assert) {
|
|
this.authStub.value({ entityId: '456' });
|
|
|
|
await this.renderComponent();
|
|
|
|
assert.dom('[data-test-checked-out-account]').exists({ count: 1 }, 'Correct number of accounts render');
|
|
assert
|
|
.dom('[data-test-checked-out-account="foo.bar"]')
|
|
.hasText('foo.bar', 'Account renders that was checked out by non root user');
|
|
});
|
|
|
|
test('it should display all accounts when check-in enforcement is disabled on library', async function (assert) {
|
|
this.library.disable_check_in_enforcement = 'Disabled';
|
|
|
|
await this.renderComponent();
|
|
|
|
assert.dom('[data-test-checked-out-account]').exists({ count: 2 }, 'Correct number of accounts render');
|
|
assert
|
|
.dom('[data-test-checked-out-account="checked.in"]')
|
|
.doesNotExist('checked.in', 'Checked in accounts do not render');
|
|
});
|
|
|
|
test('it should display details in table', async function (assert) {
|
|
this.authStub.value({ entityId: '456' });
|
|
|
|
await this.renderComponent();
|
|
|
|
assert.dom('[data-test-checked-out-account="foo.bar"]').hasText('foo.bar', 'Account renders');
|
|
assert.dom('[data-test-checked-out-library="foo.bar"]').doesNotExist('Library column is hidden');
|
|
assert
|
|
.dom('[data-test-checked-out-account-action="foo.bar"]')
|
|
.includesText('Check-in', 'Check-in action renders');
|
|
|
|
this.showLibraryColumn = true;
|
|
await this.renderComponent();
|
|
|
|
assert.dom('[data-test-checked-out-library="foo.bar"]').hasText('test-library', 'Library column renders');
|
|
});
|
|
|
|
test('it should check in account', async function (assert) {
|
|
assert.expect(2);
|
|
|
|
this.library.disable_check_in_enforcement = 'Disabled';
|
|
this.onCheckInSuccess = () => assert.ok(true, 'Callback is fired on check-in success');
|
|
|
|
this.server.post('/ldap-test/library/test-library/check-in', (schema, req) => {
|
|
const json = JSON.parse(req.requestBody);
|
|
assert.deepEqual(
|
|
json.service_account_names,
|
|
['foo.bar'],
|
|
'Check-in request made with correct account names'
|
|
);
|
|
});
|
|
|
|
await this.renderComponent();
|
|
|
|
await click('[data-test-checked-out-account-action="foo.bar"]');
|
|
await click('[data-test-check-in-confirm]');
|
|
});
|
|
});
|