juice-shop
158 строк · 5.5 Кб
1/*2* Copyright (c) 2014-2024 Bjoern Kimminich & the OWASP Juice Shop contributors.3* SPDX-License-Identifier: MIT4*/5import { HttpClientTestingModule, HttpTestingController } from '@angular/common/http/testing'7import { fakeAsync, inject, TestBed, tick } from '@angular/core/testing'8import { UserService } from './user.service'10describe('UserService', () => {12beforeEach(() => {13TestBed.configureTestingModule({14imports: [HttpClientTestingModule],15providers: [UserService]16})17})18it('should be created', inject([UserService], (service: UserService) => {20expect(service).toBeTruthy()21}))22it('should get all users directly from the rest api', inject([UserService, HttpTestingController],24fakeAsync((service: UserService, httpMock: HttpTestingController) => {25let res: any26service.find().subscribe((data) => (res = data))27const req = httpMock.expectOne('http://localhost:3000/rest/user/authentication-details/')29req.flush({ data: 'apiResponse' })30tick()31expect(req.request.method).toBe('GET')33expect(req.request.params.toString()).toBeFalsy()34expect(res).toBe('apiResponse')35httpMock.verify()36})37))38it('should get single users directly from the rest api', inject([UserService, HttpTestingController],40fakeAsync((service: UserService, httpMock: HttpTestingController) => {41let res: any42service.get(1).subscribe((data) => (res = data))43const req = httpMock.expectOne('http://localhost:3000/api/Users/1')45req.flush({ data: 'apiResponse' })46tick()47expect(req.request.method).toBe('GET')49expect(res).toBe('apiResponse')50httpMock.verify()51})52))53it('should create user directly via the rest api', inject([UserService, HttpTestingController],55fakeAsync((service: UserService, httpMock: HttpTestingController) => {56let res: any57service.save(null).subscribe((data) => (res = data))58const req = httpMock.expectOne('http://localhost:3000/api/Users/')60req.flush({ data: 'apiResponse' })61tick()62expect(req.request.method).toBe('POST')64expect(req.request.body).toBeNull()65expect(res).toBe('apiResponse')66httpMock.verify()67})68))69it('should login user directly via the rest api', inject([UserService, HttpTestingController],71fakeAsync((service: UserService, httpMock: HttpTestingController) => {72let res: any73service.login(null).subscribe((data) => (res = data))74const req = httpMock.expectOne('http://localhost:3000/rest/user/login')76req.flush({ authentication: 'apiResponse' })77tick()78expect(req.request.method).toBe('POST')80expect(req.request.body).toBeNull()81expect(res).toBe('apiResponse')82httpMock.verify()83})84))85it('should change user password directly via the rest api', inject([UserService, HttpTestingController],87fakeAsync((service: UserService, httpMock: HttpTestingController) => {88let res: any89service.changePassword({ current: 'foo', new: 'bar', repeat: 'bar' }).subscribe((data) => (res = data))90const req = httpMock.expectOne('http://localhost:3000/rest/user/change-password?current=foo&new=bar&repeat=bar')92req.flush({ user: 'apiResponse' })93tick()94expect(req.request.method).toBe('GET')96expect(res).toBe('apiResponse')97httpMock.verify()98})99))100it('should return the logged-in users identity directly from the rest api', inject([UserService, HttpTestingController],102fakeAsync((service: UserService, httpMock: HttpTestingController) => {103let res: any104service.whoAmI().subscribe((data) => (res = data))105const req = httpMock.expectOne('http://localhost:3000/rest/user/whoami')107req.flush({ user: 'apiResponse' })108tick()109expect(req.request.method).toBe('GET')111expect(res).toBe('apiResponse')112httpMock.verify()113})114))115it('should reset the password directly from the rest api', inject([UserService, HttpTestingController],117fakeAsync((service: UserService, httpMock: HttpTestingController) => {118let res: any119const mockObject = { req: 'apiRequest' }120service.resetPassword(mockObject).subscribe((data) => (res = data))121const req = httpMock.expectOne('http://localhost:3000/rest/user/reset-password')123req.flush({ user: 'apiResponse' })124tick()125expect(req.request.method).toBe('POST')127expect(req.request.body).toEqual(mockObject)128expect(res).toBe('apiResponse')129httpMock.verify()130})131))132it('should get users deluxe status directly from the rest api', inject([UserService, HttpTestingController],134fakeAsync((service: UserService, httpMock: HttpTestingController) => {135let res136service.deluxeStatus().subscribe((data) => (res = data))137const req = httpMock.expectOne('http://localhost:3000/rest/deluxe-membership')138req.flush({ data: 'apiResponse' })139tick()140expect(req.request.method).toBe('GET')141expect(res).toBe('apiResponse')142httpMock.verify()143})144))145it('should upgrade users deluxe status directly from the rest api', inject([UserService, HttpTestingController],147fakeAsync((service: UserService, httpMock: HttpTestingController) => {148let res149service.upgradeToDeluxe('wallet', null).subscribe((data) => (res = data))150const req = httpMock.expectOne('http://localhost:3000/rest/deluxe-membership')151req.flush({ data: 'apiResponse' })152tick()153expect(req.request.method).toBe('POST')154expect(res).toBe('apiResponse')155httpMock.verify()156})157))158})159