npm - @tomei/sso - Versions diffs - 0.3.4 → 0.4.0 - Mend

@tomei/sso 0.3.4 → 0.4.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

package/__tests__/unit/components/login-user/login-user.spec.ts CHANGED Viewed

@@ -1,11 +1,16 @@
 import { IUserSession } from '../../../../src/interfaces/user-session.interface';
-import { LoginHistoryRepository, SessionService, SystemAccessRepository, SystemRepository } from '../../../../src';
+import {
+  LoginHistoryRepository,
+  SessionService,
+  SystemAccessRepository,
+  SystemRepository,
+} from '../../../../src';
 import { LoginUser } from '../../../../src/components/login-user/login-user';
 import { UserRepository } from '../../../../src/components/login-user/user.repository';
 import { PasswordHashService } from '../../../../src/components/password-hash/password-hash.service';
 import { MailService } from '../../../../src/mail/mail.service';
 describe('login-user', () => {
-  const user = {
+  let user = {
     id: 755,
     email: 'ezcash+florence@tomei.com.my',
     password:
@@ -54,13 +59,12 @@ describe('login-user', () => {
         updatedAt: new Date('2022-04-18T04:07:40.000Z'),
         systemPrivilege: {
           privilegeId: 'ckymxuh8t000137t011w89zgk',
-          systemId: 11,
-          code: 'Own',
+          systemId: 175,
+          code: 'Terminate Data',
           module: null,
-          description:
-            'Allows the user to only view consignments belonging to themselves',
-          createdAt: new Date('2022-01-20T12:16:26.000Z'),
-          updatedAt: new Date('2022-01-20T12:16:26.000Z'),
+          description: 'Allows the user to terminate a loan.',
+          createdAt: new Date(),
+          updatedAt: new Date(),
         },
       },
     ],
@@ -131,18 +135,294 @@ describe('login-user', () => {
     ],
   };
+  let ezcft = {
+    groupCode: 'EZCFT',
+    groupDescription: 'EZCASH FINANCE TEAM',
+    status: 'Active',
+    personInCharge: null,
+    fullPath: null,
+    parentGroupCode: 'EZCCS',
+    groupLevel: 2,
+    groupType: null,
+    allowInheritFromParentYN: 'Y',
+    createdById: '61',
+    createdAt: new Date(),
+    updatedById: '61',
+    updatedAt: new Date(),
+    departmentId: 110,
+    groupSystemPrivileges: [],
+    groupRolePrivileges: [
+      {
+        groupCode: 'EZCFT',
+        roleId: 'clcogtmco00013unyc4ngcnza',
+        privilegeId: 'clcogtntx00023unyg98a0ah0',
+        createdById: 74,
+        createdAt: new Date(),
+        systemId: 175,
+        systemPrivilege: {
+          privilegeId: 'clcogtntx00023unyg98a0ah0',
+          systemId: 175,
+          code: 'Terminate',
+          module: null,
+          description: 'Allows the user to terminate a loan.',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+      {
+        groupCode: 'EZCFT',
+        roleId: 'clcogtmco00013unyc4ngcnza',
+        privilegeId: 'clcogtnys00043wp21ejm068j',
+        createdById: 74,
+        createdAt: new Date(),
+        systemId: 175,
+        systemPrivilege: {
+          privilegeId: 'clcogtnys00043wp21ejm068j',
+          systemId: 175,
+          code: 'Download - Agreement',
+          module: null,
+          description: 'Allows the user to download the agreement.',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+      {
+        groupCode: 'EZCFT',
+        roleId: 'clcogtmco00013unyc4ngcnza',
+        privilegeId: 'clcogtoa100063wp2djq10roz',
+        createdById: 74,
+        createdAt: new Date(),
+        systemId: 175,
+        systemPrivilege: {
+          privilegeId: 'clcogtoa100063wp2djq10roz',
+          systemId: 175,
+          code: 'Disbursement - Confirmation',
+          module: null,
+          description:
+            'Allows the user to confirm the disbursement of the loan.',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+      {
+        groupCode: 'EZCFT',
+        roleId: 'clcogtmco00013unyc4ngcnza',
+        privilegeId: 'clcogtob000053uny52atenxa',
+        createdById: 74,
+        createdAt: new Date(),
+        systemId: 175,
+        systemPrivilege: {
+          privilegeId: 'clcogtob000053uny52atenxa',
+          systemId: 175,
+          code: 'Invoice Payment Received',
+          module: null,
+          description:
+            'Allows the user to confirm payment receipt of an invoice.',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+    ],
+  };
+  const ezccs = {
+    groupCode: 'EZCCS',
+    groupDescription: 'EZCASH COMPANY SIGNER',
+    status: 'Active',
+    personInCharge: null,
+    fullPath: null,
+    parentGroupCode: 'EZCAT',
+    groupLevel: 1,
+    groupType: null,
+    allowInheritFromParentYN: 'Y',
+    createdById: '61',
+    createdAt: new Date(),
+    updatedById: '61',
+    updatedAt: new Date(),
+    departmentId: 110,
+    groupSystemPrivileges: [],
+    groupRolePrivileges: [
+      {
+        groupCode: 'EZCCS',
+        roleId: 'cl34552or00002vlubgs11tc9',
+        privilegeId: 'cldu3gd7t000g3spe55jmax51',
+        createdById: 700,
+        createdAt: new Date(),
+        systemId: 42,
+        systemPrivilege: {
+          privilegeId: 'cldu3gd7t000g3spe55jmax51',
+          systemId: 42,
+          code: 'View Customer',
+          module: null,
+          description: 'Allow to view customer details',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+      {
+        groupCode: 'EZCCS',
+        roleId: 'clcogtm8000003unybenw69nl',
+        privilegeId: 'clcogtnsn00023wp21z5n28az',
+        createdById: 700,
+        createdAt: new Date(),
+        systemId: 175,
+        systemPrivilege: {
+          privilegeId: 'clcogtnsn00023wp21z5n28az',
+          systemId: 175,
+          code: 'Signer - Company',
+          module: null,
+          description:
+            'Allows the user to sign loan agreements on behalf of the company.',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+      {
+        groupCode: 'EZCCS',
+        roleId: 'clcogtm8000003unybenw69nl',
+        privilegeId: 'clcogtnys00043wp21ejm068j',
+        createdById: 700,
+        createdAt: new Date(),
+        systemId: 175,
+        systemPrivilege: {
+          privilegeId: 'clcogtnys00043wp21ejm068j',
+          systemId: 175,
+          code: 'Download - Agreement',
+          module: null,
+          description: 'Allows the user to download the agreement.',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+      {
+        groupCode: 'EZCCS',
+        roleId: 'clcogtm8000003unybenw69nl',
+        privilegeId: 'clcogtqb400074dn47ld564nt',
+        createdById: 700,
+        createdAt: new Date(),
+        systemId: 175,
+        systemPrivilege: {
+          privilegeId: 'clds7oql500003spe3hubafn6',
+          systemId: 175,
+          code: 'Loan - Retrieve List',
+          module: null,
+          description:
+            'Allows the user to retrieve the loan listing/search for all loans within the system.',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+    ],
+  };
+  const ezcat = {
+    groupCode: 'EZCAT',
+    groupDescription: 'EZC ATTESTATOR',
+    status: 'Active',
+    personInCharge: null,
+    fullPath: null,
+    parentGroupCode: null,
+    groupLevel: 0,
+    groupType: null,
+    allowInheritFromParentYN: 'Y',
+    createdById: '61',
+    createdAt: new Date(),
+    updatedById: '61',
+    updatedAt: new Date(),
+    departmentId: 110,
+    groupSystemPrivileges: [],
+    groupRolePrivileges: [
+      {
+        groupCode: 'EZCAT',
+        roleId: 'cl34552or00002vlubgs11tc9',
+        privilegeId: 'cldu3gd7t000g3spe55jmax51',
+        createdById: 700,
+        createdAt: new Date(),
+        systemId: 42,
+        systemPrivilege: {
+          privilegeId: 'cldu3gd7t000g3spe55jmax51',
+          systemId: 42,
+          code: 'View Customer',
+          module: null,
+          description: 'Allow to view customer details',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+      {
+        groupCode: 'EZCAT',
+        roleId: 'clcogtmyx00014dn4798pel3n',
+        privilegeId: 'clcogtnuf00033wp27vwb1vwl',
+        createdById: 74,
+        createdAt: new Date(),
+        systemId: 175,
+        systemPrivilege: {
+          privilegeId: 'clcogtnuf00033wp27vwb1vwl',
+          systemId: 175,
+          code: 'Signing Session - Schedule',
+          module: null,
+          description:
+            'Allows the user to schedule or reschedule the signing session.',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+      {
+        groupCode: 'EZCAT',
+        roleId: 'clcogtmyx00014dn4798pel3n',
+        privilegeId: 'clcogto8t00043unyd60c8j6r',
+        createdById: 74,
+        createdAt: new Date(),
+        systemId: 175,
+        systemPrivilege: {
+          privilegeId: 'clcogto8t00043unyd60c8j6r',
+          systemId: 175,
+          code: 'Signing Session - No Show',
+          module: null,
+          description:
+            'Allows the user to mark the signing session as "no show".',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+      {
+        groupCode: 'EZCAT',
+        roleId: 'clcogtmyx00014dn4798pel3n',
+        privilegeId: 'clcogtobc00073wp21lanh2qw',
+        createdById: 74,
+        createdAt: new Date(),
+        systemId: 175,
+        systemPrivilege: {
+          privilegeId: 'clcogtobc00073wp21lanh2qw',
+          systemId: 175,
+          code: 'Setup Session',
+          module: null,
+          description:
+            'Allows the users to set up the predefined slots for the live attestation sessions.',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+    ],
+  };
+  let userUserGroups = [
+    {
+      userId: 755,
+      groupCode: 'EZCFT',
+      systemId: 175,
+      createdAt: new Date(),
+      updatedAt: new Date(),
+      userGroup: ezcft,
+    },
+  ];
   jest.mock('crypto', () => {
     return {
       randomUUID: jest.fn().mockReturnValue('ckymxuh8t000137t011w89zgk'),
     };
   });
-  jest
-    .spyOn(UserRepository.prototype, 'findOne')
-    .mockImplementation(async () => {
-      return user;
-    });
   jest
     .spyOn(PasswordHashService.prototype, 'verify')
     .mockImplementation(async (password) => {
@@ -154,7 +434,7 @@ describe('login-user', () => {
     });
   jest
-    .spyOn(SystemRepository .prototype, 'findOne')
+    .spyOn(SystemRepository.prototype, 'findOne')
     .mockImplementation(async () => {
       return system;
     });
@@ -163,61 +443,201 @@ describe('login-user', () => {
     .spyOn(MailService.prototype, 'sendNewLoginAlertEmail')
     .mockImplementation(async () => {});
-  jest
-    .spyOn(LoginUser.prototype, 'getPrivileges')
-    .mockImplementation(async () => {
-      return session.systemLogins[0].privileges;
-    });
+  const getUserGroupFromDBMock = jest.spyOn(
+    LoginUser.prototype as any,
+    'getUserGroupFromDB',
+  );
-  jest
-    .spyOn(SystemAccessRepository.prototype, 'findOne')
-    .mockImplementation(async () => {
-      return systemAccess;
-    });
+  const getUserUserGroupFromDBMock = jest.spyOn(
+    LoginUser.prototype as any,
+    'getUserUserGroupFromDB',
+  );
-  jest
-  .spyOn(LoginHistoryRepository.prototype, 'findAll')
-  .mockImplementation(async () => {
-      const data = [];
-      return data;
-  })
-  it('should return login-user service when instansiated', async () => {
-    const loginUser = await LoginUser.init();
-    expect(loginUser).toBeDefined();
+  const userMock = jest.spyOn(UserRepository.prototype, 'findOne');
+  userMock.mockImplementation(async () => {
+    return user;
+  });
+  getUserGroupFromDBMock.mockImplementation(async (groupCode) => {
+    if (groupCode === 'EZCFT') {
+      return ezcft;
+    } else if (groupCode === 'EZCCS') {
+      return ezccs;
+    } else if (groupCode === 'EZCAT') {
+      return ezcat;
+    }
   });
-  it('should able to do login process when no session is already available', async () => {
-    const loginUser = await LoginUser.init('755');
-    const result = await loginUser.login(
-      'EZC',
-      'ezcash+florence@tomei.com.my',
-      'Abcd@1234',
-      '1.1.1.1',
-    );
-    expect(result).toEqual('ckymxuh8t000137t011w89zgk');
+  getUserUserGroupFromDBMock.mockImplementation(async () => {
+    return userUserGroups;
   });
-  it('should able to do login process when session is already available', async () => {
+  describe('login', () => {
     jest
-      .spyOn(SessionService.prototype, 'retrieveUserSession')
-      .mockImplementationOnce(async (userId: string) => {
-        if (userId === '755') {
-          return session;
-        } else {
-          return {
-            systemLogins: [],
-          };
-        }
+      .spyOn(SystemAccessRepository.prototype, 'findOne')
+      .mockImplementation(async () => {
+        return systemAccess;
       });
-    const loginUser = await LoginUser.init('755');
-    const result = await loginUser.login(
-      'EZC',
-      'ezcash+florence@tomei.com.my',
-      'Abcd@1234',
-      '1.1.1.1',
-    );
-    expect(result).toEqual('ckymxuh8t000137t011w89zgk');
+    jest
+      .spyOn(LoginHistoryRepository.prototype, 'findAll')
+      .mockImplementation(async () => {
+        const data = [];
+        return data;
+      });
+    it('should return login-user service when instansiated', async () => {
+      const loginUser = await LoginUser.init();
+      expect(loginUser).toBeDefined();
+    });
+    it('should able to do login process when no session is already available', async () => {
+      const loginUser = await LoginUser.init('755');
+      const result = await loginUser.login(
+        'EZC',
+        'ezcash+florence@tomei.com.my',
+        'Abcd@1234',
+        '1.1.1.1',
+      );
+      expect(result).toEqual('ckymxuh8t000137t011w89zgk');
+    });
+    it('should able to do login process when session is already available', async () => {
+      jest
+        .spyOn(SessionService.prototype, 'retrieveUserSession')
+        .mockImplementationOnce(async (userId: string) => {
+          if (userId === '755') {
+            return session;
+          } else {
+            return {
+              systemLogins: [],
+            };
+          }
+        });
+      const loginUser = await LoginUser.init('755');
+      const result = await loginUser.login(
+        'EZC',
+        'ezcash+florence@tomei.com.my',
+        'Abcd@1234',
+        '1.1.1.1',
+      );
+      expect(result).toEqual('ckymxuh8t000137t011w89zgk');
+    });
+  });
+  describe('getPrivileges', () => {
+    it('should be able to login when user only have one user group with level 1 or higher', async () => {
+      const loginUser = await LoginUser.init('755');
+      const result = await loginUser['getPrivileges']('EZC');
+      expect(getUserGroupFromDBMock).toBeCalledTimes(2);
+      expect(result).toEqual([
+        'View Customer',
+        'Signer - Company',
+        'Download - Agreement',
+        'Loan - Retrieve List',
+        'Signing Session - Schedule',
+        'Signing Session - No Show',
+        'Setup Session',
+        'Terminate',
+        'Disbursement - Confirmation',
+        'Invoice Payment Received',
+        "Terminate Data",
+      ]);
+    });
+    it('should be able to login when user only have multiple user user group', async () => {
+      const tempUserUserGroups = userUserGroups;
+      userUserGroups.push(userUserGroups[0]);
+      const loginUser = await LoginUser.init('755');
+      const result = await loginUser['getPrivileges']('EZC');
+      expect(getUserUserGroupFromDBMock).toBeCalledTimes(1);
+      expect(getUserGroupFromDBMock).toBeCalledTimes(4);
+      expect(result).toEqual([
+        'View Customer',
+        'Signer - Company',
+        'Download - Agreement',
+        'Loan - Retrieve List',
+        'Signing Session - Schedule',
+        'Signing Session - No Show',
+        'Setup Session',
+        'Terminate',
+        'Disbursement - Confirmation',
+        'Invoice Payment Received',
+        "Terminate Data",
+      ]);
+      userUserGroups = tempUserUserGroups;
+    });
+    it('should be able to login when user only have user privilege', async () => {
+      const tempUserUserGroup = userUserGroups;
+      userUserGroups = [];
+      const loginUser = await LoginUser.init('755');
+      const result = await loginUser['getPrivileges']('EZC');
+      expect(getUserGroupFromDBMock).toBeCalledTimes(0);
+      expect(result).toEqual(['Terminate Data']);
+      userUserGroups = tempUserUserGroup;
+    });
+    it('should be able to login when user only have one user group with no parent', async () => {
+      const tempEzcft = ezcft;
+      ezcft.groupLevel = 0;
+      const tempUser = user;
+      user.userSystemPrivileges = [];
+      const loginUser = await LoginUser.init('755');
+      const result = await loginUser['getPrivileges']('EZC');
+      expect(getUserGroupFromDBMock).toBeCalledTimes(0);
+      expect(result).toEqual([
+        'Terminate',
+        'Download - Agreement',
+        'Disbursement - Confirmation',
+        'Invoice Payment Received',
+      ]);
+      ezcft = tempEzcft;
+      user = tempUser;
+    });
+    it('should be able to login when user only have one user group that cannot inherit privilege', async () => {
+      const tempEzcft = ezcft;
+      ezcft.groupLevel = 1;
+      ezcft.allowInheritFromParentYN = 'N';
+      const tempUser = user;
+      user.userSystemPrivileges = [];
+      const loginUser = await LoginUser.init('755');
+      const result = await loginUser['getPrivileges']('EZC');
+      expect(getUserGroupFromDBMock).toBeCalledTimes(0);
+      expect(result).toEqual([
+        'Terminate',
+        'Download - Agreement',
+        'Disbursement - Confirmation',
+        'Invoice Payment Received',
+      ]);
+      ezcft = tempEzcft;
+      user = tempUser;
+    });
+    it('should be able to login when user dont have user privilage or user usergroup', async () => {
+      const tempUser = user;
+      user.userSystemPrivileges = [];
+      const tempUserUserGroup = userUserGroups;
+      userUserGroups = [];
+      const loginUser = await LoginUser.init('755');
+      const result = await loginUser['getPrivileges']('EZC');
+      expect(getUserGroupFromDBMock).toBeCalledTimes(0);
+      expect(result).toEqual([]);
+      userUserGroups = tempUserUserGroup;
+      user = tempUser;
+    });
   });
 });