open-vault/ui/tests/acceptance/auth-test.js

import { module, test } from 'qunit';
import { setupApplicationTest } from 'ember-qunit';
import sinon from 'sinon';
import { click, currentURL, visit, settled } from '@ember/test-helpers';
import { supportedAuthBackends } from 'vault/helpers/supported-auth-backends';
import authForm from '../pages/components/auth-form';
import { create } from 'ember-cli-page-object';
import apiStub from 'vault/tests/helpers/noop-all-api-requests';
import authPage from 'vault/tests/pages/auth';
import logout from 'vault/tests/pages/logout';

import consoleClass from 'vault/tests/pages/components/console/ui-panel';
const consoleComponent = create(consoleClass);
const component = create(authForm);

module('Acceptance | auth', function(hooks) {
  setupApplicationTest(hooks);

  hooks.beforeEach(function() {
    this.clock = sinon.useFakeTimers({
      now: Date.now(),
      shouldAdvanceTime: true,
    });
    this.server = apiStub({ usePassthrough: true });
    return logout.visit();
  });

  hooks.afterEach(function() {
    this.clock.restore();
    this.server.shutdown();
    return logout.visit();
  });

  test('auth query params', async function(assert) {
    let backends = supportedAuthBackends();
    await visit('/vault/auth');
    assert.equal(currentURL(), '/vault/auth?with=token');
    for (let backend of backends.reverse()) {
      await click(`[data-test-auth-method-link="${backend.type}"]`);
      assert.equal(
        currentURL(),
        `/vault/auth?with=${backend.type}`,
        `has the correct URL for ${backend.type}`
      );
    }
  });

  test('it clears token when changing selected auth method', async function(assert) {
    await visit('/vault/auth');
    assert.equal(currentURL(), '/vault/auth?with=token');
    await component
      .token('token')
      .tabs.filterBy('name', 'GitHub')[0]
      .link();
    await component.tabs.filterBy('name', 'Token')[0].link();
    assert.equal(component.tokenValue, '', 'it clears the token value when toggling methods');
  });

  test('it sends the right attributes when authenticating', async function(assert) {
    let backends = supportedAuthBackends();
    await visit('/vault/auth');
    for (let backend of backends.reverse()) {
      await click(`[data-test-auth-method-link="${backend.type}"]`);
      if (backend.type === 'github') {
        await component.token('token');
      }
      await component.login();
      let lastRequest = this.server.passthroughRequests[this.server.passthroughRequests.length - 1];
      let body = JSON.parse(lastRequest.requestBody);
      if (backend.type === 'token') {
        assert.ok(
          Object.keys(lastRequest.requestHeaders).includes('X-Vault-Token'),
          'token uses vault token header'
        );
      } else if (backend.type === 'github') {
        assert.ok(Object.keys(body).includes('token'), 'GitHub includes token');
      } else {
        assert.ok(Object.keys(body).includes('password'), `${backend.type} includes password`);
      }
    }
  });

  test('it shows the token warning beacon on the menu', async function(assert) {
    let authService = this.owner.lookup('service:auth');
    await authPage.login();
    await consoleComponent.runCommands([
      'write -field=client_token auth/token/create policies=default ttl=1h',
    ]);
    let token = consoleComponent.lastTextOutput;
    await logout.visit();
    await authPage.login(token);
    this.clock.tick(authService.IDLE_TIMEOUT);
    authService.shouldRenew();
    await settled();
    assert.dom('[data-test-allow-expiration="true"]').exists('shows expiration beacon');

    await visit('/vault/access');
    assert.dom('[data-test-allow-expiration="true"]').doesNotExist('hides beacon when the api is used again');
  });
});
Ember update (#5386) Ember update - update ember-cli, ember-data, and ember to 3.4 series 2018-09-25 16:28:26 +00:00			`import { module, test } from 'qunit';`
			`import { setupApplicationTest } from 'ember-qunit';`
UI - new token renew banner (#5662) * move warning banner out of token-expire-warning and into user menu * check renewal status every 5s, and resume auto-renew if a user becomes active again * use a link in the token-expire-warning * add test for new expiration functionality * fix license test * use features helper in license test * fix import * use yarn 1.12.1 * remove mirage * skip some tests for now * use eslintignore * logout after auth tests * use new alert-banner for auth info warning * add data-test selector back * move identity back to a button, and style button.link * make the warning message the right color * fix shamir test * review feedback 2018-11-05 16:56:59 +00:00			`import sinon from 'sinon';`
			`import { click, currentURL, visit, settled } from '@ember/test-helpers';`
Moving UI assets to OSS 2018-04-03 14:16:57 +00:00			`import { supportedAuthBackends } from 'vault/helpers/supported-auth-backends';`
Ui ie11 button form attr (#4378) * move submit buttons in auth-form into a form tag because IE11 is sad * add acceptance test for auth-method clearing * update ember-cli-page-object * actually remove the form attr on the auth-form component * remove form attribute on init form * remove form attribute from shamir-flow component * stringify not strigify 2018-04-17 22:04:34 +00:00			`import authForm from '../pages/components/auth-form';`
			`import { create } from 'ember-cli-page-object';`
UI - Login fix (#4403) * fix login * add tests for login submission 2018-04-20 20:39:45 +00:00			`import apiStub from 'vault/tests/helpers/noop-all-api-requests';`
UI - new token renew banner (#5662) * move warning banner out of token-expire-warning and into user menu * check renewal status every 5s, and resume auto-renew if a user becomes active again * use a link in the token-expire-warning * add test for new expiration functionality * fix license test * use features helper in license test * fix import * use yarn 1.12.1 * remove mirage * skip some tests for now * use eslintignore * logout after auth tests * use new alert-banner for auth info warning * add data-test selector back * move identity back to a button, and style button.link * make the warning message the right color * fix shamir test * review feedback 2018-11-05 16:56:59 +00:00			`import authPage from 'vault/tests/pages/auth';`
Ember update (#5386) Ember update - update ember-cli, ember-data, and ember to 3.4 series 2018-09-25 16:28:26 +00:00			`import logout from 'vault/tests/pages/logout';`
Ui ie11 button form attr (#4378) * move submit buttons in auth-form into a form tag because IE11 is sad * add acceptance test for auth-method clearing * update ember-cli-page-object * actually remove the form attr on the auth-form component * remove form attribute on init form * remove form attribute from shamir-flow component * stringify not strigify 2018-04-17 22:04:34 +00:00
UI - new token renew banner (#5662) * move warning banner out of token-expire-warning and into user menu * check renewal status every 5s, and resume auto-renew if a user becomes active again * use a link in the token-expire-warning * add test for new expiration functionality * fix license test * use features helper in license test * fix import * use yarn 1.12.1 * remove mirage * skip some tests for now * use eslintignore * logout after auth tests * use new alert-banner for auth info warning * add data-test selector back * move identity back to a button, and style button.link * make the warning message the right color * fix shamir test * review feedback 2018-11-05 16:56:59 +00:00			`import consoleClass from 'vault/tests/pages/components/console/ui-panel';`
			`const consoleComponent = create(consoleClass);`
Ui ie11 button form attr (#4378) * move submit buttons in auth-form into a form tag because IE11 is sad * add acceptance test for auth-method clearing * update ember-cli-page-object * actually remove the form attr on the auth-form component * remove form attribute on init form * remove form attribute from shamir-flow component * stringify not strigify 2018-04-17 22:04:34 +00:00			`const component = create(authForm);`
Moving UI assets to OSS 2018-04-03 14:16:57 +00:00
Ember update (#5386) Ember update - update ember-cli, ember-data, and ember to 3.4 series 2018-09-25 16:28:26 +00:00			`module('Acceptance \| auth', function(hooks) {`
			`setupApplicationTest(hooks);`

			`hooks.beforeEach(function() {`
UI - new token renew banner (#5662) * move warning banner out of token-expire-warning and into user menu * check renewal status every 5s, and resume auto-renew if a user becomes active again * use a link in the token-expire-warning * add test for new expiration functionality * fix license test * use features helper in license test * fix import * use yarn 1.12.1 * remove mirage * skip some tests for now * use eslintignore * logout after auth tests * use new alert-banner for auth info warning * add data-test selector back * move identity back to a button, and style button.link * make the warning message the right color * fix shamir test * review feedback 2018-11-05 16:56:59 +00:00			`this.clock = sinon.useFakeTimers({`
			`now: Date.now(),`
			`shouldAdvanceTime: true,`
			`});`
UI - Login fix (#4403) * fix login * add tests for login submission 2018-04-20 20:39:45 +00:00			`this.server = apiStub({ usePassthrough: true });`
Ember update (#5386) Ember update - update ember-cli, ember-data, and ember to 3.4 series 2018-09-25 16:28:26 +00:00			`return logout.visit();`
			`});`

			`hooks.afterEach(function() {`
UI - new token renew banner (#5662) * move warning banner out of token-expire-warning and into user menu * check renewal status every 5s, and resume auto-renew if a user becomes active again * use a link in the token-expire-warning * add test for new expiration functionality * fix license test * use features helper in license test * fix import * use yarn 1.12.1 * remove mirage * skip some tests for now * use eslintignore * logout after auth tests * use new alert-banner for auth info warning * add data-test selector back * move identity back to a button, and style button.link * make the warning message the right color * fix shamir test * review feedback 2018-11-05 16:56:59 +00:00			`this.clock.restore();`
UI - Login fix (#4403) * fix login * add tests for login submission 2018-04-20 20:39:45 +00:00			`this.server.shutdown();`
UI - new token renew banner (#5662) * move warning banner out of token-expire-warning and into user menu * check renewal status every 5s, and resume auto-renew if a user becomes active again * use a link in the token-expire-warning * add test for new expiration functionality * fix license test * use features helper in license test * fix import * use yarn 1.12.1 * remove mirage * skip some tests for now * use eslintignore * logout after auth tests * use new alert-banner for auth info warning * add data-test selector back * move identity back to a button, and style button.link * make the warning message the right color * fix shamir test * review feedback 2018-11-05 16:56:59 +00:00			`return logout.visit();`
Ember update (#5386) Ember update - update ember-cli, ember-data, and ember to 3.4 series 2018-09-25 16:28:26 +00:00			`});`
Moving UI assets to OSS 2018-04-03 14:16:57 +00:00
Ember update (#5386) Ember update - update ember-cli, ember-data, and ember to 3.4 series 2018-09-25 16:28:26 +00:00			`test('auth query params', async function(assert) {`
			`let backends = supportedAuthBackends();`
			`await visit('/vault/auth');`
UI - unauthed login methods (#4854) * fetch auth methods when going to the auth route and pass them to the auth form component * add boolean editType for form-fields * look in the data hash in the serializer * remove renderInPlace for info-tooltips as it does something goofy with widths * add new fields for auth methods * fix console refresh command on routes that use lazyPaginatedQuery * add wrapped_token param that logs you in via the token backend and show other backends if your list contains supported ones * handle casing when looking up supported backends * change listingVisibility to match the new API * move wrapped_token up to the vault route level so it works from the app root 2018-07-05 18:28:12 +00:00			`assert.equal(currentURL(), '/vault/auth?with=token');`
Ember update (#5386) Ember update - update ember-cli, ember-data, and ember to 3.4 series 2018-09-25 16:28:26 +00:00			`for (let backend of backends.reverse()) {`
			await click(`[data-test-auth-method-link="${backend.type}"]`);
Moving UI assets to OSS 2018-04-03 14:16:57 +00:00			`assert.equal(`
			`currentURL(),`
			`/vault/auth?with=${backend.type}`,
			`has the correct URL for ${backend.type}`
			`);`
Ember update (#5386) Ember update - update ember-cli, ember-data, and ember to 3.4 series 2018-09-25 16:28:26 +00:00			`}`
Moving UI assets to OSS 2018-04-03 14:16:57 +00:00			`});`
Ui ie11 button form attr (#4378) * move submit buttons in auth-form into a form tag because IE11 is sad * add acceptance test for auth-method clearing * update ember-cli-page-object * actually remove the form attr on the auth-form component * remove form attribute on init form * remove form attribute from shamir-flow component * stringify not strigify 2018-04-17 22:04:34 +00:00
Ember update (#5386) Ember update - update ember-cli, ember-data, and ember to 3.4 series 2018-09-25 16:28:26 +00:00			`test('it clears token when changing selected auth method', async function(assert) {`
			`await visit('/vault/auth');`
UI - unauthed login methods (#4854) * fetch auth methods when going to the auth route and pass them to the auth form component * add boolean editType for form-fields * look in the data hash in the serializer * remove renderInPlace for info-tooltips as it does something goofy with widths * add new fields for auth methods * fix console refresh command on routes that use lazyPaginatedQuery * add wrapped_token param that logs you in via the token backend and show other backends if your list contains supported ones * handle casing when looking up supported backends * change listingVisibility to match the new API * move wrapped_token up to the vault route level so it works from the app root 2018-07-05 18:28:12 +00:00			`assert.equal(currentURL(), '/vault/auth?with=token');`
Ember update (#5386) Ember update - update ember-cli, ember-data, and ember to 3.4 series 2018-09-25 16:28:26 +00:00			`await component`
			`.token('token')`
			`.tabs.filterBy('name', 'GitHub')[0]`
			`.link();`
			`await component.tabs.filterBy('name', 'Token')[0].link();`
Ui ie11 button form attr (#4378) * move submit buttons in auth-form into a form tag because IE11 is sad * add acceptance test for auth-method clearing * update ember-cli-page-object * actually remove the form attr on the auth-form component * remove form attribute on init form * remove form attribute from shamir-flow component * stringify not strigify 2018-04-17 22:04:34 +00:00			`assert.equal(component.tokenValue, '', 'it clears the token value when toggling methods');`
			`});`
UI - Login fix (#4403) * fix login * add tests for login submission 2018-04-20 20:39:45 +00:00
Ember update (#5386) Ember update - update ember-cli, ember-data, and ember to 3.4 series 2018-09-25 16:28:26 +00:00			`test('it sends the right attributes when authenticating', async function(assert) {`
			`let backends = supportedAuthBackends();`
			`await visit('/vault/auth');`
			`for (let backend of backends.reverse()) {`
			await click(`[data-test-auth-method-link="${backend.type}"]`);
			`if (backend.type === 'github') {`
			`await component.token('token');`
			`}`
			`await component.login();`
UI - Login fix (#4403) * fix login * add tests for login submission 2018-04-20 20:39:45 +00:00			`let lastRequest = this.server.passthroughRequests[this.server.passthroughRequests.length - 1];`
			`let body = JSON.parse(lastRequest.requestBody);`
			`if (backend.type === 'token') {`
			`assert.ok(`
			`Object.keys(lastRequest.requestHeaders).includes('X-Vault-Token'),`
			`'token uses vault token header'`
			`);`
UI unauthed auth methods fix (#5113) * lowercase auth method type so that hardcoded and unauthed methods both use the same key * don't rely on top level data for capabilities serializer 2018-08-16 13:16:24 +00:00			`} else if (backend.type === 'github') {`
UI - Login fix (#4403) * fix login * add tests for login submission 2018-04-20 20:39:45 +00:00			`assert.ok(Object.keys(body).includes('token'), 'GitHub includes token');`
			`} else {`
			assert.ok(Object.keys(body).includes('password'), `${backend.type} includes password`);
			`}`
Ember update (#5386) Ember update - update ember-cli, ember-data, and ember to 3.4 series 2018-09-25 16:28:26 +00:00			`}`
UI - Login fix (#4403) * fix login * add tests for login submission 2018-04-20 20:39:45 +00:00			`});`
UI - new token renew banner (#5662) * move warning banner out of token-expire-warning and into user menu * check renewal status every 5s, and resume auto-renew if a user becomes active again * use a link in the token-expire-warning * add test for new expiration functionality * fix license test * use features helper in license test * fix import * use yarn 1.12.1 * remove mirage * skip some tests for now * use eslintignore * logout after auth tests * use new alert-banner for auth info warning * add data-test selector back * move identity back to a button, and style button.link * make the warning message the right color * fix shamir test * review feedback 2018-11-05 16:56:59 +00:00
			`test('it shows the token warning beacon on the menu', async function(assert) {`
			`let authService = this.owner.lookup('service:auth');`
			`await authPage.login();`
			`await consoleComponent.runCommands([`
			`'write -field=client_token auth/token/create policies=default ttl=1h',`
			`]);`
			`let token = consoleComponent.lastTextOutput;`
			`await logout.visit();`
			`await authPage.login(token);`
			`this.clock.tick(authService.IDLE_TIMEOUT);`
			`authService.shouldRenew();`
			`await settled();`
			`assert.dom('[data-test-allow-expiration="true"]').exists('shows expiration beacon');`

			`await visit('/vault/access');`
			`assert.dom('[data-test-allow-expiration="true"]').doesNotExist('hides beacon when the api is used again');`
			`});`
UI - Login fix (#4403) * fix login * add tests for login submission 2018-04-20 20:39:45 +00:00			`});`