mno-enterprise-core 2.0.0

data/lib/mno_enterprise/testing_support/organizations_shared_helpers.rb

@@ -0,0 +1,175 @@
+module MnoEnterprise::TestingSupport::OrganizationsSharedHelpers
+
+  def partial_hash_for_credit_card(cc)
+    {
+        'credit_card' => {
+            'id' => cc.id,
+            'title' => cc.title,
+            'first_name' => cc.first_name,
+            'last_name' => cc.last_name,
+            'number' => cc.masked_number,
+            'month' => cc.month,
+            'year' => cc.year,
+            'country' => cc.country,
+            'verification_value' => 'CVV',
+            'billing_address' => cc.billing_address,
+            'billing_city' => cc.billing_city,
+            'billing_postcode' => cc.billing_postcode,
+            'billing_country' => cc.billing_country
+        }
+    }
+  end
+
+  def partial_hash_for_members(organization, admin = false)
+    list = []
+    organization.users.each do |user|
+      u = {
+          'id' => user.id,
+          'entity' => 'User',
+          'name' => user.name,
+          'surname' => user.surname,
+          'email' => user.email,
+          'role' => user.role(organization)
+      }
+      u.merge!('uid' => user.uid) if admin
+      list.push(u)
+    end
+
+
+    organization.org_invites.each do |invite|
+      list.push({
+                    'id' => invite.id,
+                    'entity' => 'OrgInvite',
+                    'email' => invite.user_email,
+                    'role' => invite.user_role
+                })
+    end
+
+    return list
+  end
+
+  def partial_hash_for_organization(organization, admin = false)
+    ret = {
+        'id' => organization.id,
+        'name' => organization.name,
+        'soa_enabled' => organization.soa_enabled
+    }
+
+    if admin
+      ret.merge!({
+                     'uid' => organization.uid
+                 })
+    end
+
+    ret
+  end
+
+  def partial_hash_for_current_user(organization, user)
+    {
+        'id' => user.id,
+        'name' => user.name,
+        'surname' => user.surname,
+        'email' => user.email,
+        'role' => user.role(organization)
+    }
+  end
+
+  def partial_hash_for_billing(organization)
+    {
+        'billing' => {
+            'current' => organization.current_billing,
+            'credit' => organization.current_credit
+        }
+    }
+  end
+
+  def partial_hash_for_invoices(organization)
+    hash = {'invoices' => []}
+    organization.invoices.order("ended_at DESC").each do |invoice|
+      hash['invoices'].push({
+                                'period' => invoice.period_label,
+                                'amount' => invoice.total_due,
+                                'paid' => invoice.paid?,
+                                'link' => mnoe_enterprise.invoice_path(invoice.slug),
+                            })
+    end
+
+    return hash
+  end
+
+  def hash_for_organizations(organizations, admin = false)
+    {
+        'organizations' => organizations.map { |o| partial_hash_for_organization(o, admin) }
+    }
+  end
+
+  def hash_for_reduced_organization(organization)
+    {
+        'organization' => partial_hash_for_organization(organization)
+    }
+  end
+
+  def hash_for_organization(organization, user, admin = false)
+    hash = {
+        'organization' => partial_hash_for_organization(organization),
+        'current_user' => partial_hash_for_current_user(organization, user)
+    }
+    hash['organization'].merge!(
+        'members' => partial_hash_for_members(organization)
+    )
+
+    if user.role(organization) == 'Super Admin'
+      hash.merge!(partial_hash_for_billing(organization))
+      hash.merge!(partial_hash_for_invoices(organization))
+
+      if (cc = organization.credit_card)
+        hash.merge!(partial_hash_for_credit_card(cc))
+      end
+
+      if (situations = organization.arrears_situations)
+        hash.merge!(partial_hash_for_arrears_situations(situations))
+      end
+    end
+
+    return hash
+  end
+
+  def admin_hash_for_organization(organization)
+    hash = {}
+    hash['organization'] = partial_hash_for_organization(organization, true)
+    hash['organization'].merge!('members' => partial_hash_for_members(organization, true))
+    hash['organization'].merge!('credit_card' => {'presence' => false})
+    hash['organization'].merge!(admin_partial_hash_for_invoices(organization))
+    hash['organization'].merge!(admin_partial_hash_for_active_apps(organization))
+    hash
+  end
+
+  def admin_partial_hash_for_invoices(organization)
+    hash = {'invoices' => []}
+    organization.invoices.order("ended_at DESC").each do |invoice|
+      hash['invoices'].push({
+                                'started_at' => invoice.started_at,
+                                'ended_at' => invoice.ended_at,
+                                'amount' => AccountingjsSerializer.serialize(invoice.total_due),
+                                'paid' => invoice.paid?
+                            })
+    end
+    hash
+  end
+
+  def admin_partial_hash_for_active_apps(organization)
+    hash = {'active_apps' => []}
+    organization.app_instances.select { |app| app.status == "running" }.each do |active_apps|
+      hash['active_apps'].push({
+                                   'id' => active_apps.id,
+                                   'name' => active_apps.name,
+                                   'stack' => active_apps.stack,
+                                   'uid' => active_apps.uid,
+                                   'app_name' => active_apps.app.name,
+                                   'app_logo' => active_apps.app.logo
+                               })
+    end
+    hash
+  end
+
+end

data/lib/mno_enterprise/testing_support/user_action_shared.rb

@@ -0,0 +1,47 @@
+module MnoEnterprise
+  
+  # Expect user to be defined
+  shared_examples "a navigatable protected user action" do
+    context "with guest user" do
+      before { sign_out(user) }
+      before { subject }
+      it { expect(response).to redirect_to(new_user_session_path) }
+    end
+    
+    context 'with signed in and unconfirmed user' do
+      before { allow_any_instance_of(MnoEnterprise::User).to receive(:confirmed?).and_return(false) }
+      before { sign_in user }
+      before { subject }
+      it { expect(response).to redirect_to(user_confirmation_lounge_path) }
+    end
+    
+    context 'with signed in and confirmed user' do
+      before { sign_in user }
+      before { subject }
+      it { expect(response.code).to match(/(200|302)/) }
+    end
+  end
+  
+  shared_examples "a user protected resource" do
+    context "with guest user" do
+      before { sign_out(user) }
+      before { subject }
+      it { expect(response).to redirect_to(new_user_session_path) }
+    end
+    
+    context 'with authorized user' do
+      before { allow(ability).to receive(:can?).with(any_args).and_return(true) }
+      before { sign_in user }
+      before { subject }
+      it { expect(response.code).to match(/20\d|302/) }
+    end
+    
+    context 'with unauthorized user' do
+      before { allow(ability).to receive(:can?).with(any_args).and_return(false) }
+      before { sign_in user }
+      before { subject }
+      it { expect(response.code).to match(/(302|401)/) }
+    end
+  end
+  
+end

data/lib/mno_enterprise/version.rb

@@ -0,0 +1,3 @@
+module MnoEnterprise
+  VERSION = '2.0.0'
+end

data/lib/tasks/mno_enterprise_tasks.rake

@@ -0,0 +1,22 @@
+# desc "Explaining what the task does"
+# task :mno_enterprise do
+#   # Task goes here
+# end
+
+# /*\ WARNING /*\
+# Make sure you never screw with that tasks. Ever.
+# Otherwise, deletion of all database data may occur.
+#
+# This task is used by the Ansible automation scripts
+# to automatically setup/seed the database or migrate it
+#
+namespace :db do
+  desc 'Migrate the database or set it up'
+  task :migrate_or_setup => :environment do
+    if ActiveRecord::Migrator.current_version > 0
+      Rake::Task['db:migrate'].invoke
+    else
+      Rake::Task['db:setup'].invoke
+    end
+  end
+end

data/spec/controllers/mno_enterprise/angular_csrf_spec.rb

@@ -0,0 +1,42 @@
+require 'rails_helper'
+
+module MnoEnterprise
+  describe ApplicationController, type: :controller do
+    # Enable CSRF protection for this test
+    before { ActionController::Base.allow_forgery_protection = true }
+
+    # Anonymous controller
+    controller do
+      include MnoEnterprise::Concerns::Controllers::AngularCSRF
+      protect_from_forgery with: :exception
+
+      def index
+        render text: 'Hello World'
+      end
+    end
+
+    describe 'Angular CSRF' do
+      it 'provides the CSRF token to Angular in a cookie' do
+        get :index
+        expect(response.cookies['XSRF-TOKEN']).to be_instance_of(String)
+      end
+
+      it 'accepts the CSRF token to be provide via the headers' do
+        get :index
+        request.headers['X-XSRF-TOKEN'] = response.cookies['XSRF-TOKEN']
+
+        post :index
+        expect(response.status).to eq(200)
+      end
+
+      it 'cleans up the cookie on InvalidAuthenticityRequest' do
+        post :index
+        expect(response.status).to eq(422)
+        expect(response.cookies['XSRF-TOKEN']).to be_instance_of(String)
+      end
+    end
+
+    # Disable CSRF protection for all other tests
+    after { ActionController::Base.allow_forgery_protection = false }
+  end
+end

data/spec/lib/her_extension/her_orm_adapter.rb

@@ -0,0 +1,7 @@
+require 'rails_helper'
+
+module MnoEnterprise
+  RSpec.describe Her::Model do
+    pending "add specs for Her ORM Adapater: #{__FILE__}"
+  end
+end

data/spec/lib/her_extension/model/relation_spec.rb

@@ -0,0 +1,7 @@
+require 'rails_helper'
+
+module MnoEnterprise
+  RSpec.describe Her::Model::Relation do
+    pending "add specs for Her::Model::Relation monkey patch: #{__FILE__}"
+  end
+end

data/spec/lib/mandrill_client_spec.rb

@@ -0,0 +1,64 @@
+require "rails_helper"
+
+describe MandrillClient do
+  subject { MandrillClient }
+  
+  describe 'email' do
+    let(:template) { :some_template }
+    let(:from) {{ name: "John", email: 'j@e.com' }}
+    let(:to) {{ name: "John", email: 'j@e.com' }}
+    let(:vars) {{ some: 'var' }}
+    
+    it 'sends the right template with the right parameters' do
+      expect(subject).to receive(:send_template).with(template,[],{
+        from_name: from[:name],
+        from_email: from[:email],
+        to: [{email: to[:email], type: :to, name: to[:name]}],
+        global_merge_vars: [{name: vars.keys.first.to_s, content: vars.values.first}]
+      })
+      subject.deliver(template,from,to,vars)
+    end
+  end
+  
+  describe "send_template" do
+    let!(:orig_delivery_method) { Rails.configuration.action_mailer.delivery_method }
+    before { MandrillClient.instance_variable_set("@client",nil) }
+    before { Rails.configuration.action_mailer.delivery_method = :foo_method }
+    after { Rails.configuration.action_mailer.delivery_method = orig_delivery_method }
+    
+    it 'delegates the method to a mandrill client' do
+      messages = double('messages')
+      mandrill = double('mandrill', messages: messages)
+      expect(Mandrill::API).to receive(:new).and_return(mandrill)
+      
+      args = ['template_name', [], { foo: 'bar' }]
+      expect(messages).to receive(:send_template).with(*args)
+      MandrillClient.send_template(*args)
+    end
+    
+    describe 'with nil delivery method' do
+      before { Rails.configuration.action_mailer.delivery_method = nil }
+      
+      it 'delegates the method to a mandrill client' do
+        messages = double('messages')
+        mandrill = double('mandrill', messages: messages)
+        expect(Mandrill::API).to receive(:new).and_return(mandrill)
+      
+        args = ['template_name', [], { foo: 'bar' }]
+        expect(messages).to receive(:send_template).with(*args)
+        MandrillClient.send_template(*args)
+      end
+    end
+    
+    describe 'with :test delivery method' do
+      before { Rails.configuration.action_mailer.delivery_method = :test }
+      
+      it 'does not send any email' do
+        # test no expectation failure
+        allow(Mandrill::API).to receive(:new).and_return(double('mandrill'))
+        MandrillClient.send_template('1',[],{})
+      end
+    end
+    
+  end
+end

data/spec/mno_enterprise_spec.rb

@@ -0,0 +1,79 @@
+require 'rails_helper'
+
+describe MnoEnterprise do
+
+  describe 'configure' do
+    it 'yields self' do
+      MnoEnterprise.configure { |config| expect(config).to eq(MnoEnterprise) }
+    end
+  end
+
+  describe 'mnoe_api_v1' do
+    let(:private_host) { nil }
+    subject { MnoEnterprise.mnoe_api_v1.base_uri }
+    before { MnoEnterprise.configure { |c| c.mno_api_private_host = private_host } }
+
+    describe 'without private host' do
+      it { expect(subject).to eq('https://api-enterprise.maestrano.com/v1') }
+    end
+
+    describe 'with private host' do
+      let(:private_host) { 'https://api-hub.account.local' }
+      it { expect(subject).to eq("#{private_host}/v1") }
+    end
+  end
+
+  describe 'jwt' do
+    before { MnoEnterprise.configure { |c| c.tenant_id = "12345789"; c.tenant_key = "abcdefg"} }
+    let(:secret) { "#{MnoEnterprise.tenant_id}:#{MnoEnterprise.tenant_key}" }
+    let(:token) { MnoEnterprise.jwt({ user_id: 'someid' }) }
+    subject { HashWithIndifferentAccess.new(JWT.decode(token, secret).first) }
+
+    it 'generates a valid json web token' do
+      expect { subject }.to_not raise_error
+    end
+
+    it 'includes the payload' do
+      expect(subject[:user_id]).to eq('someid')
+    end
+
+    it 'includes an issuer property' do
+      expect(subject[:iss]).to eq(MnoEnterprise.tenant_id)
+    end
+
+    it 'includes an issue_at property' do
+      expect(subject[:iat]).to be > 10.seconds.ago.to_i
+    end
+
+    it 'includes a JWT ID property' do
+      expect(subject[:jit]).to eq(Digest::MD5.hexdigest("#{secret}:#{subject[:iat]}"))
+    end
+  end
+
+  context 'router' do
+
+    describe 'launch_url' do
+      let(:id) { "cld-1d45e6" }
+      let(:url) { "#{MnoEnterprise.mno_api_host}#{MnoEnterprise.mno_api_root_path}/launch/#{id}" }
+      it { expect(MnoEnterprise.router.launch_url(id)).to eq(url) }
+    end
+
+    describe 'authorize_oauth_url' do
+      let(:id) { "cld-1d45e6" }
+      let(:url) { "#{MnoEnterprise.mno_api_host}#{MnoEnterprise.mno_api_root_path}/oauth/#{id}/authorize" }
+      it { expect(MnoEnterprise.router.authorize_oauth_url(id)).to eq(url) }
+    end
+
+    describe 'disconnect_oauth_url' do
+      let(:id) { "cld-1d45e6" }
+      let(:url) { "#{MnoEnterprise.mno_api_host}#{MnoEnterprise.mno_api_root_path}/oauth/#{id}/disconnect" }
+      it { expect(MnoEnterprise.router.disconnect_oauth_url(id)).to eq(url) }
+    end
+
+    describe 'sync_oauth_url' do
+      let(:id) { "cld-1d45e6" }
+      let(:url) { "#{MnoEnterprise.mno_api_host}#{MnoEnterprise.mno_api_root_path}/oauth/#{id}/sync" }
+      it { expect(MnoEnterprise.router.sync_oauth_url(id)).to eq(url) }
+    end
+  end
+end