npm - @lobb-js/lobb-ext-auth - Versions diffs - 0.11.3 → 0.13.0 - Mend

@lobb-js/lobb-ext-auth 0.11.3 → 0.13.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (43) hide show

package/extensions/auth/tests/socialBlog.test.ts DELETED Viewed

@@ -1,253 +0,0 @@
-import { Lobb } from "@lobb-js/core";
-import { afterAll, beforeAll, describe, it, expect } from "bun:test";
-import {
-  createArticles,
-  removeArticles,
-} from "./utils/addSocialBlogArticles.ts";
-import { socialBlogConfig } from "./configs/social_blog.ts";
-describe("Social Blog auth", () => {
-  let lobb: Lobb;
-  let baseUrl: string;
-  let articlesIds: string[];
-  let newUserId: string;
-  beforeAll(async () => {
-    lobb = await Lobb.init(socialBlogConfig);
-    baseUrl = `http://127.0.0.1:${lobb.webServer.port}`;
-    articlesIds = await createArticles(lobb);
-  });
-  afterAll(async () => {
-    await removeArticles(lobb);
-    await lobb.close();
-  });
-  it("should return only public status articles for public users", async () => {
-    const response = await fetch(
-      `${baseUrl}/api/collections/articles?sort=id`,
-      {
-        method: "GET",
-      },
-    );
-    const result = await response.json();
-    const titles = result.data.map((article: any) => article.title);
-    expect(
-      titles,
-    ).toEqual([
-        "The Future of AI: Trends Shaping Tomorrow's Technology",
-        "Mental Health in the Digital Age: Navigating the New Challenges",
-        "The Role of 5G in Revolutionizing Smart Cities",
-    ]);
-    expect(response.status).toEqual(200);
-  });
-  it("returns only public articles or the private and public articles that the user owns", async () => {
-    // login with the doe user
-    const headers = new Headers();
-    const loginResponse = await fetch(
-      `${baseUrl}/api/collections/auth_sessions`,
-      {
-        method: "POST",
-        headers: {
-          "Content-Type": "application/json",
-        },
-        body: JSON.stringify({
-          data: {
-            email: "doe@gmail.com",
-            password: "123456",
-          },
-        }),
-      },
-    );
-    const loginData = await loginResponse.json();
-    headers.append(
-      "Authorization",
-      `Bearer ${loginData.data.access_token.token}`,
-    );
-    // get articles with the doe user
-    const response = await fetch(
-      `${baseUrl}/api/collections/articles?sort=id`,
-      {
-        method: "GET",
-        headers: headers,
-      },
-    );
-    const result = await response.json();
-    const titles = result.data.map((article: any) => article.title);
-    expect(
-      titles,
-    ).toEqual([
-        "The Future of AI: Trends Shaping Tomorrow's Technology",
-        "Mental Health in the Digital Age: Navigating the New Challenges",
-        "Sustainable Fashion: How the Industry is Going Green",
-        "The Role of 5G in Revolutionizing Smart Cities",
-        "Digital Marketing in 2024: Emerging Strategies for Success",
-        "The Future of Renewable Energy: Innovations Driving a Clean Energy Revolution",
-    ]);
-    expect(response.status).toEqual(200);
-  });
-  it("should prevent public users from creating users with a role other than the author role", async () => {
-    // get articles with the doe user
-    const response = await fetch(
-      `${baseUrl}/api/collections/auth_users`,
-      {
-        method: "POST",
-        body: JSON.stringify({
-          data: {
-            email: "new_user@gmail.com",
-            password: "123456",
-            role: "admin",
-          },
-        }),
-      },
-    );
-    const result = await response.json();
-    expect(response.status).toEqual(403);
-    expect(
-      result,
-    ).toEqual({
-        status: 403,
-        code: "FORBIDDEN",
-        message: "You do not have permission to perform this action.",
-    });
-  });
-  it("should allow public users to create users with the author role", async () => {
-    // get articles with the doe user
-    const response = await fetch(
-      `${baseUrl}/api/collections/auth_users`,
-      {
-        method: "POST",
-        body: JSON.stringify({
-          data: {
-            email: "new_user@gmail.com",
-            password: "123456",
-            role: "author",
-          },
-        }),
-      },
-    );
-    const result = await response.json();
-    expect(response.status).toEqual(201);
-    expect(
-      result.data,
-    ).toMatchObject({
-        email: "new_user@gmail.com",
-    });
-  });
-  it("should fill the author_id of the article automatically with the logged in user_id", async () => {
-    const headers = new Headers();
-    const loginResponse = await fetch(
-      `${baseUrl}/api/collections/auth_sessions`,
-      {
-        method: "POST",
-        body: JSON.stringify({
-          data: {
-            email: "new_user@gmail.com",
-            password: "123456",
-          },
-        }),
-      },
-    );
-    const loginData = await loginResponse.json();
-    newUserId = loginData.data.user.id;
-    headers.append(
-      "Authorization",
-      `Bearer ${loginData.data.access_token.token}`,
-    );
-    // create an article
-    const response = await fetch(
-      `${baseUrl}/api/collections/articles`,
-      {
-        headers: headers,
-        method: "POST",
-        body: JSON.stringify({
-          data: {
-            title: "new article created by the new user",
-            body: "test the new body",
-          },
-        }),
-      },
-    );
-    const result = await response.json();
-    expect(response.status).toEqual(201);
-    expect(
-      result.data,
-    ).toMatchObject({
-        author_id: newUserId,
-        title: "new article created by the new user",
-        body: "test the new body",
-        description: null,
-        image: null,
-        status: "private",
-    });
-  });
-  it("should hide the password of the users from the returned responses of findOne operations", async () => {
-    // create an article
-    const response = await fetch(
-      `${baseUrl}/api/collections/auth_users/` + newUserId,
-      {
-        method: "Get",
-      },
-    );
-    const result = await response.json();
-    expect(response.status).toEqual(200);
-    expect(
-      Object.keys(result.data).includes("password"),
-    ).toEqual(false);
-  });
-  it("should hide the password of the users from the returned responses of findAll operations", async () => {
-    const response = await fetch(
-      `${baseUrl}/api/collections/auth_users`,
-      {
-        method: "Get",
-      },
-    );
-    const result = await response.json();
-    expect(
-      Object.keys(result.data).includes("password"),
-    ).toEqual(false);
-    expect(response.status).toEqual(200);
-  });
-  it("should prevent public users from getting admin role users", async () => {
-    const response = await fetch(
-      `${baseUrl}/api/collections/auth_users`,
-      {
-        method: "Get",
-      },
-    );
-    const result = await response.json();
-    const adminUsers = result.data.filter((user: any) => user.role === "admin");
-    expect(
-      adminUsers.length,
-    ).toEqual(0);
-    expect(response.status).toEqual(200);
-  });
-});

package/extensions/auth/tests/utils/addArticles.ts DELETED Viewed

@@ -1,22 +0,0 @@
-import type { Lobb } from "@lobb-js/core";
-import { articles } from "../utils/data/articles.ts";
-export async function createArticles(lobb: Lobb) {
-  const createdArticles: any[] = [];
-  for (let index = 0; index < articles.length; index++) {
-    const article = articles[index];
-    const createdArticle = (await lobb.collectionService.createOne({
-      collectionName: "articles",
-      data: article,
-    })).data;
-    createdArticles.push(createdArticle);
-  }
-  return createdArticles.map((article) => article.id);
-}
-export async function removeArticles(lobb: Lobb) {
-  await lobb.collectionService.deleteMany({
-    collectionName: "articles",
-  });
-}

package/extensions/auth/tests/utils/addSocialBlogArticles.ts DELETED Viewed

@@ -1,52 +0,0 @@
-import type { Lobb } from "@lobb-js/core";
-import { articles } from "./data/socialBlogArticles.ts";
-export async function createArticles(lobb: Lobb) {
-  // clean collections
-  await removeArticles(lobb);
-  // create the owner user
-  const user = (await lobb.collectionService.createOne({
-    collectionName: "auth_users",
-    data: {
-      email: "john@gmail.com",
-      password: "123456",
-      role: "author",
-    },
-  })).data;
-  const user2 = (await lobb.collectionService.createOne({
-    collectionName: "auth_users",
-    data: {
-      email: "doe@gmail.com",
-      password: "123456",
-      role: "author",
-    },
-  })).data;
-  // create the articles
-  const createdArticles: any[] = [];
-  for (let index = 0; index < articles.length; index++) {
-    const article: any = articles[index];
-    article["author_id"] = index > (articles.length / 2) ? user2.id : user.id;
-    const createdArticle = (await lobb.collectionService.createOne({
-      collectionName: "articles",
-      data: article,
-    })).data;
-    createdArticles.push(createdArticle);
-  }
-  return createdArticles.map((article) => article.id);
-}
-export async function removeArticles(lobb: Lobb) {
-  await lobb.collectionService.deleteMany({
-    collectionName: "articles",
-    filter: {},
-    force: true,
-  });
-  await lobb.collectionService.deleteMany({
-    collectionName: "auth_users",
-    filter: {},
-    force: true,
-  });
-}

package/extensions/auth/tests/utils/data/articles.ts DELETED Viewed

@@ -1,65 +0,0 @@
-export const articles = [
-  {
-    title: "The Future of AI: Trends Shaping Tomorrow's Technology",
-    body:
-      "Explore how artificial intelligence is evolving, from machine learning innovations to ethical challenges in AI governance. This article delves into the transformative potential AI holds for industries like healthcare, finance, and automation.",
-    number_of_likes: 454,
-    published: null,
-  },
-  {
-    title: "Climate Change and Its Impact on Global Food Security",
-    body:
-      "This article examines the effect of climate change on agriculture and global food production. It covers rising temperatures, changing weather patterns, and their implications for food supply chains, emphasizing the need for sustainable farming practices Wow.",
-    number_of_likes: 1212,
-  },
-  {
-    title: "The Rise of Remote Work: Is the Office Dead?",
-    body:
-      "A comprehensive analysis of How remote work has redefined the modern workplace post-pandemic. It discusses benefits and challenges for both employers and employees, and whether traditional office spaces will continue to exist in the future.",
-    number_of_likes: 9848,
-    published: true,
-  },
-  {
-    title: "Blockchain Beyond Cryptocurrency: Practical Applications in 2024",
-    body:
-      "Blockchain technology extends far beyond Bitcoin and digital currencies. This article explains its real-world uses in supply chain management, healthcare, and secure voting systems, highlighting successful implementations and ongoing experiments.",
-    number_of_likes: 10,
-  },
-  {
-    title: "Mental Health in the Digital Age: Navigating the New Challenges",
-    body:
-      "With increasing screen time and social media usage, mental health issues have taken new forms. This article addresses the growing concerns around digital addiction, online anxiety, and the role of tech companies in promoting well-being wow.",
-    number_of_likes: 5,
-  },
-  {
-    title: "Understanding Quantum Computing: The Next Tech Revolution",
-    body:
-      "Quantum computing promises to solve problems too complex for classical computers. This article breaks down the fundamentals of quantum technology, its current state, and its future potential across industries like pharmaceuticals, logistics, and cybersecurity.",
-    number_of_likes: 156,
-  },
-  {
-    title: "Sustainable Fashion: How the Industry is Going Green",
-    body:
-      "With environmental consciousness on the rise, the fashion industry is pivoting toward sustainability. This article looks at eco-friendly materials, ethical manufacturing processes, and how major brands are embracing the green movement wow.",
-    number_of_likes: 89,
-  },
-  {
-    title: "The Role of 5G in Revolutionizing Smart Cities",
-    body:
-      "As 5G networks roll out globally, smart cities are becoming a reality. This wow article covers how 5G technology wow will enable real-time data sharing, improve urban infrastructure, wow and enhance public services through IoT devices and smart sensors.",
-    number_of_likes: 15,
-  },
-  {
-    title: "Digital Marketing in 2024: Emerging Strategies for Success",
-    body:
-      "The landscape of digital marketing is rapidly changing with the rise of AI, personalized experiences, and social commerce. This article outlines the most promising strategies to stay ahead in 2024, from leveraging data analytics to mastering content creation wow.",
-    number_of_likes: 87,
-  },
-  {
-    title:
-      "The Future of Renewable Energy: Innovations Driving a Clean Energy Revolution",
-    body:
-      "As the world shifts toward green energy, this article highlights wow the latest innovations in solar, wind, and hydropower technologies. It also discusses policy trends, wow global investment in renewables, wow and the challenges in achieving net-zero emissions by 2050 wow.",
-    number_of_likes: 48,
-  },
-];

package/extensions/auth/tests/utils/data/socialBlogArticles.ts DELETED Viewed

@@ -1,56 +0,0 @@
-export const articles = [
-  {
-    title: "The Future of AI: Trends Shaping Tomorrow's Technology",
-    body:
-      "Explore how artificial intelligence is evolving, from machine learning innovations to ethical challenges in AI governance. This article delves into the transformative potential AI holds for industries like healthcare, finance, and automation.",
-    status: "public",
-  },
-  {
-    title: "Climate Change and Its Impact on Global Food Security",
-    body:
-      "This article examines the effect of climate change on agriculture and global food production. It covers rising temperatures, changing weather patterns, and their implications for food supply chains, emphasizing the need for sustainable farming practices Wow.",
-  },
-  {
-    title: "The Rise of Remote Work: Is the Office Dead?",
-    body:
-      "A comprehensive analysis of How remote work has redefined the modern workplace post-pandemic. It discusses benefits and challenges for both employers and employees, and whether traditional office spaces will continue to exist in the future.",
-  },
-  {
-    title: "Blockchain Beyond Cryptocurrency: Practical Applications in 2024",
-    body:
-      "Blockchain technology extends far beyond Bitcoin and digital currencies. This article explains its real-world uses in supply chain management, healthcare, and secure voting systems, highlighting successful implementations and ongoing experiments.",
-  },
-  {
-    title: "Mental Health in the Digital Age: Navigating the New Challenges",
-    body:
-      "With increasing screen time and social media usage, mental health issues have taken new forms. This article addresses the growing concerns around digital addiction, online anxiety, and the role of tech companies in promoting well-being wow.",
-    status: "public",
-  },
-  {
-    title: "Understanding Quantum Computing: The Next Tech Revolution",
-    body:
-      "Quantum computing promises to solve problems too complex for classical computers. This article breaks down the fundamentals of quantum technology, its current state, and its future potential across industries like pharmaceuticals, logistics, and cybersecurity.",
-  },
-  {
-    title: "Sustainable Fashion: How the Industry is Going Green",
-    body:
-      "With environmental consciousness on the rise, the fashion industry is pivoting toward sustainability. This article looks at eco-friendly materials, ethical manufacturing processes, and how major brands are embracing the green movement wow.",
-  },
-  {
-    title: "The Role of 5G in Revolutionizing Smart Cities",
-    body:
-      "As 5G networks roll out globally, smart cities are becoming a reality. This wow article covers how 5G technology wow will enable real-time data sharing, improve urban infrastructure, wow and enhance public services through IoT devices and smart sensors.",
-    status: "public",
-  },
-  {
-    title: "Digital Marketing in 2024: Emerging Strategies for Success",
-    body:
-      "The landscape of digital marketing is rapidly changing with the rise of AI, personalized experiences, and social commerce. This article outlines the most promising strategies to stay ahead in 2024, from leveraging data analytics to mastering content creation wow.",
-  },
-  {
-    title:
-      "The Future of Renewable Energy: Innovations Driving a Clean Energy Revolution",
-    body:
-      "As the world shifts toward green energy, this article highlights wow the latest innovations in solar, wind, and hydropower technologies. It also discusses policy trends, wow global investment in renewables, wow and the challenges in achieving net-zero emissions by 2050 wow.",
-  },
-];

package/extensions/auth/tests/workflows/shareIntersection.test.ts DELETED Viewed

@@ -1,158 +0,0 @@
-import { describe, it, expect } from "bun:test";
-import { isShareSubsetOfCreator } from "../../workflows/shareIntersection.ts";
-describe("isShareSubsetOfCreator", () => {
-  describe("creator: true (admin)", () => {
-    it("allows any share, including true", () => {
-      expect(isShareSubsetOfCreator(true, true)).toBe(true);
-      expect(isShareSubsetOfCreator({ articles: { read: true } }, true)).toBe(true);
-      expect(
-        isShareSubsetOfCreator(
-          { auth_users: { read: true, update: true } },
-          true,
-        ),
-      ).toBe(true);
-    });
-  });
-  describe("share: true (unconditional)", () => {
-    it("requires creator: true — anything else is broader", () => {
-      expect(isShareSubsetOfCreator(true, { articles: { read: true } })).toBe(false);
-      expect(isShareSubsetOfCreator(true, undefined)).toBe(false);
-      expect(isShareSubsetOfCreator(true, {})).toBe(false);
-    });
-  });
-  describe("empty / missing share", () => {
-    it("an empty share is trivially a subset", () => {
-      expect(isShareSubsetOfCreator(undefined, undefined)).toBe(true);
-      expect(isShareSubsetOfCreator({}, undefined)).toBe(true);
-      expect(isShareSubsetOfCreator({}, { articles: { read: true } })).toBe(true);
-    });
-  });
-  describe("missing creator collection", () => {
-    it("rejects when share names a collection the creator has no perm for", () => {
-      expect(
-        isShareSubsetOfCreator(
-          { auth_users: { read: true } },
-          { articles: { read: true } },
-        ),
-      ).toBe(false);
-    });
-  });
-  describe("creator: true on collection", () => {
-    it("allows any action grant on that collection", () => {
-      expect(
-        isShareSubsetOfCreator(
-          { articles: { read: true, create: true } },
-          { articles: true },
-        ),
-      ).toBe(true);
-      expect(
-        isShareSubsetOfCreator(
-          { articles: { read: { filter: { id: 1 } } } },
-          { articles: true },
-        ),
-      ).toBe(true);
-    });
-  });
-  describe("share: true on a collection where creator is conditional", () => {
-    it("rejects — share unconditional > creator conditional", () => {
-      expect(
-        isShareSubsetOfCreator(
-          { articles: true },
-          { articles: { read: true } },
-        ),
-      ).toBe(false);
-    });
-  });
-  describe("share: true on an action where creator is conditional", () => {
-    it("rejects — unconditional action > conditional action", () => {
-      expect(
-        isShareSubsetOfCreator(
-          { articles: { read: true } },
-          { articles: { read: { filter: { user_id: 1 } } } },
-        ),
-      ).toBe(false);
-    });
-    it("accepts when creator is also true on that action", () => {
-      expect(
-        isShareSubsetOfCreator(
-          { articles: { read: true } },
-          { articles: { read: true } },
-        ),
-      ).toBe(true);
-    });
-  });
-  describe("missing creator action", () => {
-    it("rejects when share has an action the creator doesn't", () => {
-      expect(
-        isShareSubsetOfCreator(
-          { articles: { create: true } },
-          { articles: { read: true } },
-        ),
-      ).toBe(false);
-    });
-  });
-  describe("fields allowlist subsetting", () => {
-    it("accepts when share's fields are a subset of creator's", () => {
-      expect(
-        isShareSubsetOfCreator(
-          { articles: { create: { fields: { title: true } } } },
-          { articles: { create: { fields: { title: true, body: true } } } },
-        ),
-      ).toBe(true);
-    });
-    it("rejects when share's fields include one the creator doesn't allow", () => {
-      expect(
-        isShareSubsetOfCreator(
-          {
-            articles: {
-              create: { fields: { title: true, published: true } },
-            },
-          },
-          { articles: { create: { fields: { title: true, body: true } } } },
-        ),
-      ).toBe(false);
-    });
-    it("rejects share that omits fields restriction when creator has one", () => {
-      // No fields key = no restriction = broader than the creator.
-      expect(
-        isShareSubsetOfCreator(
-          { articles: { create: {} } },
-          { articles: { create: { fields: { title: true } } } },
-        ),
-      ).toBe(false);
-    });
-    it("allows omitting fields when creator has no fields restriction either", () => {
-      expect(
-        isShareSubsetOfCreator(
-          { articles: { create: {} } },
-          { articles: { create: {} as any } },
-        ),
-      ).toBe(true);
-    });
-  });
-  describe("filter subsetting (intentionally not enforced)", () => {
-    it("accepts any share filter when creator has a conditional read", () => {
-      // Documented limitation — we don't try to prove filter subsets.
-      expect(
-        isShareSubsetOfCreator(
-          { articles: { read: { filter: { id: 42 } } } },
-          { articles: { read: { filter: { user_id: 1 } } } },
-        ),
-      ).toBe(true);
-    });
-  });
-});