@tomei/sso 0.3.4 → 0.6.0

package/__tests__/unit/components/login-user/login-user.spec.ts

@@ -1,11 +1,16 @@
 import { IUserSession } from '../../../../src/interfaces/user-session.interface';
-import { LoginHistoryRepository, SessionService, SystemAccessRepository, SystemRepository } from '../../../../src';
+import {
+  LoginHistoryRepository,
+  SessionService,
+  SystemAccessRepository,
+  SystemRepository,
+} from '../../../../src';
 import { LoginUser } from '../../../../src/components/login-user/login-user';
 import { UserRepository } from '../../../../src/components/login-user/user.repository';
 import { PasswordHashService } from '../../../../src/components/password-hash/password-hash.service';
-import { MailService } from '../../../../src/mail/mail.service';
+import { Mailer } from '@tomei/mailer';
 describe('login-user', () => {
-  const user = {
+  let user = {
     id: 755,
     email: 'ezcash+florence@tomei.com.my',
     password:
@@ -54,13 +59,12 @@ describe('login-user', () => {
         updatedAt: new Date('2022-04-18T04:07:40.000Z'),
         systemPrivilege: {
           privilegeId: 'ckymxuh8t000137t011w89zgk',
-          systemId: 11,
-          code: 'Own',
+          systemId: 175,
+          code: 'Terminate Data',
           module: null,
-          description:
-            'Allows the user to only view consignments belonging to themselves',
-          createdAt: new Date('2022-01-20T12:16:26.000Z'),
-          updatedAt: new Date('2022-01-20T12:16:26.000Z'),
+          description: 'Allows the user to terminate a loan.',
+          createdAt: new Date(),
+          updatedAt: new Date(),
         },
       },
     ],
@@ -131,18 +135,294 @@ describe('login-user', () => {
     ],
   };
 
+  let ezcft = {
+    groupCode: 'EZCFT',
+    groupDescription: 'EZCASH FINANCE TEAM',
+    status: 'Active',
+    personInCharge: null,
+    fullPath: null,
+    parentGroupCode: 'EZCCS',
+    groupLevel: 2,
+    groupType: null,
+    allowInheritFromParentYN: 'Y',
+    createdById: '61',
+    createdAt: new Date(),
+    updatedById: '61',
+    updatedAt: new Date(),
+    departmentId: 110,
+    groupSystemPrivileges: [],
+    groupRolePrivileges: [
+      {
+        groupCode: 'EZCFT',
+        roleId: 'clcogtmco00013unyc4ngcnza',
+        privilegeId: 'clcogtntx00023unyg98a0ah0',
+        createdById: 74,
+        createdAt: new Date(),
+        systemId: 175,
+        systemPrivilege: {
+          privilegeId: 'clcogtntx00023unyg98a0ah0',
+          systemId: 175,
+          code: 'Terminate',
+          module: null,
+          description: 'Allows the user to terminate a loan.',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+      {
+        groupCode: 'EZCFT',
+        roleId: 'clcogtmco00013unyc4ngcnza',
+        privilegeId: 'clcogtnys00043wp21ejm068j',
+        createdById: 74,
+        createdAt: new Date(),
+        systemId: 175,
+        systemPrivilege: {
+          privilegeId: 'clcogtnys00043wp21ejm068j',
+          systemId: 175,
+          code: 'Download - Agreement',
+          module: null,
+          description: 'Allows the user to download the agreement.',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+      {
+        groupCode: 'EZCFT',
+        roleId: 'clcogtmco00013unyc4ngcnza',
+        privilegeId: 'clcogtoa100063wp2djq10roz',
+        createdById: 74,
+        createdAt: new Date(),
+        systemId: 175,
+        systemPrivilege: {
+          privilegeId: 'clcogtoa100063wp2djq10roz',
+          systemId: 175,
+          code: 'Disbursement - Confirmation',
+          module: null,
+          description:
+            'Allows the user to confirm the disbursement of the loan.',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+      {
+        groupCode: 'EZCFT',
+        roleId: 'clcogtmco00013unyc4ngcnza',
+        privilegeId: 'clcogtob000053uny52atenxa',
+        createdById: 74,
+        createdAt: new Date(),
+        systemId: 175,
+        systemPrivilege: {
+          privilegeId: 'clcogtob000053uny52atenxa',
+          systemId: 175,
+          code: 'Invoice Payment Received',
+          module: null,
+          description:
+            'Allows the user to confirm payment receipt of an invoice.',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+    ],
+  };
+
+  const ezccs = {
+    groupCode: 'EZCCS',
+    groupDescription: 'EZCASH COMPANY SIGNER',
+    status: 'Active',
+    personInCharge: null,
+    fullPath: null,
+    parentGroupCode: 'EZCAT',
+    groupLevel: 1,
+    groupType: null,
+    allowInheritFromParentYN: 'Y',
+    createdById: '61',
+    createdAt: new Date(),
+    updatedById: '61',
+    updatedAt: new Date(),
+    departmentId: 110,
+    groupSystemPrivileges: [],
+    groupRolePrivileges: [
+      {
+        groupCode: 'EZCCS',
+        roleId: 'cl34552or00002vlubgs11tc9',
+        privilegeId: 'cldu3gd7t000g3spe55jmax51',
+        createdById: 700,
+        createdAt: new Date(),
+        systemId: 42,
+        systemPrivilege: {
+          privilegeId: 'cldu3gd7t000g3spe55jmax51',
+          systemId: 42,
+          code: 'View Customer',
+          module: null,
+          description: 'Allow to view customer details',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+      {
+        groupCode: 'EZCCS',
+        roleId: 'clcogtm8000003unybenw69nl',
+        privilegeId: 'clcogtnsn00023wp21z5n28az',
+        createdById: 700,
+        createdAt: new Date(),
+        systemId: 175,
+        systemPrivilege: {
+          privilegeId: 'clcogtnsn00023wp21z5n28az',
+          systemId: 175,
+          code: 'Signer - Company',
+          module: null,
+          description:
+            'Allows the user to sign loan agreements on behalf of the company.',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+      {
+        groupCode: 'EZCCS',
+        roleId: 'clcogtm8000003unybenw69nl',
+        privilegeId: 'clcogtnys00043wp21ejm068j',
+        createdById: 700,
+        createdAt: new Date(),
+        systemId: 175,
+        systemPrivilege: {
+          privilegeId: 'clcogtnys00043wp21ejm068j',
+          systemId: 175,
+          code: 'Download - Agreement',
+          module: null,
+          description: 'Allows the user to download the agreement.',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+      {
+        groupCode: 'EZCCS',
+        roleId: 'clcogtm8000003unybenw69nl',
+        privilegeId: 'clcogtqb400074dn47ld564nt',
+        createdById: 700,
+        createdAt: new Date(),
+        systemId: 175,
+        systemPrivilege: {
+          privilegeId: 'clds7oql500003spe3hubafn6',
+          systemId: 175,
+          code: 'Loan - Retrieve List',
+          module: null,
+          description:
+            'Allows the user to retrieve the loan listing/search for all loans within the system.',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+    ],
+  };
+
+  const ezcat = {
+    groupCode: 'EZCAT',
+    groupDescription: 'EZC ATTESTATOR',
+    status: 'Active',
+    personInCharge: null,
+    fullPath: null,
+    parentGroupCode: null,
+    groupLevel: 0,
+    groupType: null,
+    allowInheritFromParentYN: 'Y',
+    createdById: '61',
+    createdAt: new Date(),
+    updatedById: '61',
+    updatedAt: new Date(),
+    departmentId: 110,
+    groupSystemPrivileges: [],
+    groupRolePrivileges: [
+      {
+        groupCode: 'EZCAT',
+        roleId: 'cl34552or00002vlubgs11tc9',
+        privilegeId: 'cldu3gd7t000g3spe55jmax51',
+        createdById: 700,
+        createdAt: new Date(),
+        systemId: 42,
+        systemPrivilege: {
+          privilegeId: 'cldu3gd7t000g3spe55jmax51',
+          systemId: 42,
+          code: 'View Customer',
+          module: null,
+          description: 'Allow to view customer details',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+      {
+        groupCode: 'EZCAT',
+        roleId: 'clcogtmyx00014dn4798pel3n',
+        privilegeId: 'clcogtnuf00033wp27vwb1vwl',
+        createdById: 74,
+        createdAt: new Date(),
+        systemId: 175,
+        systemPrivilege: {
+          privilegeId: 'clcogtnuf00033wp27vwb1vwl',
+          systemId: 175,
+          code: 'Signing Session - Schedule',
+          module: null,
+          description:
+            'Allows the user to schedule or reschedule the signing session.',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+      {
+        groupCode: 'EZCAT',
+        roleId: 'clcogtmyx00014dn4798pel3n',
+        privilegeId: 'clcogto8t00043unyd60c8j6r',
+        createdById: 74,
+        createdAt: new Date(),
+        systemId: 175,
+        systemPrivilege: {
+          privilegeId: 'clcogto8t00043unyd60c8j6r',
+          systemId: 175,
+          code: 'Signing Session - No Show',
+          module: null,
+          description:
+            'Allows the user to mark the signing session as "no show".',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+      {
+        groupCode: 'EZCAT',
+        roleId: 'clcogtmyx00014dn4798pel3n',
+        privilegeId: 'clcogtobc00073wp21lanh2qw',
+        createdById: 74,
+        createdAt: new Date(),
+        systemId: 175,
+        systemPrivilege: {
+          privilegeId: 'clcogtobc00073wp21lanh2qw',
+          systemId: 175,
+          code: 'Setup Session',
+          module: null,
+          description:
+            'Allows the users to set up the predefined slots for the live attestation sessions.',
+          createdAt: new Date(),
+          updatedAt: new Date(),
+        },
+      },
+    ],
+  };
+
+  let userUserGroups = [
+    {
+      userId: 755,
+      groupCode: 'EZCFT',
+      systemId: 175,
+      createdAt: new Date(),
+      updatedAt: new Date(),
+      userGroup: ezcft,
+    },
+  ];
+
   jest.mock('crypto', () => {
     return {
       randomUUID: jest.fn().mockReturnValue('ckymxuh8t000137t011w89zgk'),
     };
   });
 
-  jest
-    .spyOn(UserRepository.prototype, 'findOne')
-    .mockImplementation(async () => {
-      return user;
-    });
-
   jest
     .spyOn(PasswordHashService.prototype, 'verify')
     .mockImplementation(async (password) => {
@@ -154,54 +434,80 @@ describe('login-user', () => {
     });
 
   jest
-    .spyOn(SystemRepository .prototype, 'findOne')
+    .spyOn(SystemRepository.prototype, 'findOne')
     .mockImplementation(async () => {
       return system;
     });
 
-  jest
-    .spyOn(MailService.prototype, 'sendNewLoginAlertEmail')
-    .mockImplementation(async () => {});
+  jest.spyOn(Mailer.prototype, 'sendMail').mockImplementation(async () => {});
 
-  jest
-    .spyOn(LoginUser.prototype, 'getPrivileges')
-    .mockImplementation(async () => {
-      return session.systemLogins[0].privileges;
-    });
+  const getUserGroupFromDBMock = jest.spyOn(
+    LoginUser.prototype as any,
+    'getUserGroupFromDB',
+  );
 
-  jest
-    .spyOn(SystemAccessRepository.prototype, 'findOne')
-    .mockImplementation(async () => {
-      return systemAccess;
-    });
+  const getUserUserGroupFromDBMock = jest.spyOn(
+    LoginUser.prototype as any,
+    'getUserUserGroupFromDB',
+  );
 
-  jest
-  .spyOn(LoginHistoryRepository.prototype, 'findAll')
-  .mockImplementation(async () => {
-      const data = [];
-      return data;
-  })
-
-  it('should return login-user service when instansiated', async () => {
-    const loginUser = await LoginUser.init();
-    expect(loginUser).toBeDefined();
+  const userMock = jest.spyOn(UserRepository.prototype, 'findOne');
+
+  const retriveUserSessionMock = jest.spyOn(
+    SessionService.prototype,
+    'retrieveUserSession',
+  );
+
+  userMock.mockImplementation(async () => {
+    return user;
+  });
+
+  getUserGroupFromDBMock.mockImplementation(async (groupCode) => {
+    if (groupCode === 'EZCFT') {
+      return ezcft;
+    } else if (groupCode === 'EZCCS') {
+      return ezccs;
+    } else if (groupCode === 'EZCAT') {
+      return ezcat;
+    }
   });
 
-  it('should able to do login process when no session is already available', async () => {
-    const loginUser = await LoginUser.init('755');
-    const result = await loginUser.login(
-      'EZC',
-      'ezcash+florence@tomei.com.my',
-      'Abcd@1234',
-      '1.1.1.1',
-    );
-    expect(result).toEqual('ckymxuh8t000137t011w89zgk');
+  getUserUserGroupFromDBMock.mockImplementation(async () => {
+    return userUserGroups;
   });
 
-  it('should able to do login process when session is already available', async () => {
+  describe('login', () => {
     jest
-      .spyOn(SessionService.prototype, 'retrieveUserSession')
-      .mockImplementationOnce(async (userId: string) => {
+      .spyOn(SystemAccessRepository.prototype, 'findOne')
+      .mockImplementation(async () => {
+        return systemAccess;
+      });
+
+    jest
+      .spyOn(LoginHistoryRepository.prototype, 'findAll')
+      .mockImplementation(async () => {
+        const data = [];
+        return data;
+      });
+
+    it('should return login-user service when instansiated', async () => {
+      const loginUser = await LoginUser.init();
+      expect(loginUser).toBeDefined();
+    });
+
+    it('should able to do login process when no session is already available', async () => {
+      const loginUser = await LoginUser.init('755');
+      const result = await loginUser.login(
+        'EZC',
+        'ezcash+florence@tomei.com.my',
+        'Abcd@1234',
+        '1.1.1.1',
+      );
+      expect(result).toEqual('ckymxuh8t000137t011w89zgk');
+    });
+
+    it('should able to do login process when session is already available', async () => {
+      retriveUserSessionMock.mockImplementationOnce(async (userId: string) => {
         if (userId === '755') {
           return session;
         } else {
@@ -211,13 +517,178 @@ describe('login-user', () => {
         }
       });
 
-    const loginUser = await LoginUser.init('755');
-    const result = await loginUser.login(
-      'EZC',
-      'ezcash+florence@tomei.com.my',
-      'Abcd@1234',
-      '1.1.1.1',
-    );
-    expect(result).toEqual('ckymxuh8t000137t011w89zgk');
+      const loginUser = await LoginUser.init('755');
+      const result = await loginUser.login(
+        'EZC',
+        'ezcash+florence@tomei.com.my',
+        'Abcd@1234',
+        '1.1.1.1',
+      );
+      expect(result).toEqual('ckymxuh8t000137t011w89zgk');
+    });
   });
+
+  describe('getPrivileges', () => {
+    it('should be able to login when user only have one user group with level 1 or higher', async () => {
+      const loginUser = await LoginUser.init('755');
+      const result = await loginUser['getPrivileges']('EZC');
+      expect(getUserGroupFromDBMock).toBeCalledTimes(2);
+      expect(result).toEqual([
+        'View Customer',
+        'Signer - Company',
+        'Download - Agreement',
+        'Loan - Retrieve List',
+        'Signing Session - Schedule',
+        'Signing Session - No Show',
+        'Setup Session',
+        'Terminate',
+        'Disbursement - Confirmation',
+        'Invoice Payment Received',
+        'Terminate Data',
+      ]);
+    });
+
+    it('should be able to login when user only have multiple user user group', async () => {
+      const tempUserUserGroups = userUserGroups;
+      userUserGroups.push(userUserGroups[0]);
+
+      const loginUser = await LoginUser.init('755');
+      const result = await loginUser['getPrivileges']('EZC');
+      expect(getUserUserGroupFromDBMock).toBeCalledTimes(1);
+      expect(getUserGroupFromDBMock).toBeCalledTimes(4);
+      expect(result).toEqual([
+        'View Customer',
+        'Signer - Company',
+        'Download - Agreement',
+        'Loan - Retrieve List',
+        'Signing Session - Schedule',
+        'Signing Session - No Show',
+        'Setup Session',
+        'Terminate',
+        'Disbursement - Confirmation',
+        'Invoice Payment Received',
+        'Terminate Data',
+      ]);
+
+      userUserGroups = tempUserUserGroups;
+    });
+
+    it('should be able to login when user only have user privilege', async () => {
+      const tempUserUserGroup = userUserGroups;
+      userUserGroups = [];
+
+      const loginUser = await LoginUser.init('755');
+      const result = await loginUser['getPrivileges']('EZC');
+      expect(getUserGroupFromDBMock).toBeCalledTimes(0);
+      expect(result).toEqual(['Terminate Data']);
+
+      userUserGroups = tempUserUserGroup;
+    });
+
+    it('should be able to login when user only have one user group with no parent', async () => {
+      const tempEzcft = ezcft;
+      ezcft.groupLevel = 0;
+      const tempUser = user;
+      user.userSystemPrivileges = [];
+
+      const loginUser = await LoginUser.init('755');
+      const result = await loginUser['getPrivileges']('EZC');
+      expect(getUserGroupFromDBMock).toBeCalledTimes(0);
+      expect(result).toEqual([
+        'Terminate',
+        'Download - Agreement',
+        'Disbursement - Confirmation',
+        'Invoice Payment Received',
+      ]);
+
+      ezcft = tempEzcft;
+      user = tempUser;
+    });
+
+    it('should be able to login when user only have one user group that cannot inherit privilege', async () => {
+      const tempEzcft = ezcft;
+      ezcft.groupLevel = 1;
+      ezcft.allowInheritFromParentYN = 'N';
+      const tempUser = user;
+      user.userSystemPrivileges = [];
+
+      const loginUser = await LoginUser.init('755');
+      const result = await loginUser['getPrivileges']('EZC');
+      expect(getUserGroupFromDBMock).toBeCalledTimes(0);
+      expect(result).toEqual([
+        'Terminate',
+        'Download - Agreement',
+        'Disbursement - Confirmation',
+        'Invoice Payment Received',
+      ]);
+
+      ezcft = tempEzcft;
+      user = tempUser;
+    });
+
+    it('should be able to login when user dont have user privilage or user usergroup', async () => {
+      const tempUser = user;
+      user.userSystemPrivileges = [];
+      const tempUserUserGroup = userUserGroups;
+      userUserGroups = [];
+
+      const loginUser = await LoginUser.init('755');
+      const result = await loginUser['getPrivileges']('EZC');
+      expect(getUserGroupFromDBMock).toBeCalledTimes(0);
+      expect(result).toEqual([]);
+
+      userUserGroups = tempUserUserGroup;
+      user = tempUser;
+    });
+  });
+
+  describe('checkPrivileges', () => {
+    let isCorrect = true;
+    retriveUserSessionMock.mockImplementation(async (userId: string) => {
+      if (userId && userId == '755' && isCorrect === true) {
+        return session;
+      } else {
+        return {
+          systemLogins: [],
+        };
+      }
+    });
+
+    afterEach(() => {
+      isCorrect = true;
+    });
+
+    afterAll(() => {
+      jest.restoreAllMocks();
+    });
+
+    it('should return false if user session not found', async () => {
+      isCorrect = false;
+      const loginUser = await LoginUser.init('755');
+      const result = await loginUser.checkPrivileges('EZC', 'Terminate');
+      expect(result).toEqual(false);
+    });
+
+    it('should return false if system login not found', async () => {
+      isCorrect = false;
+      const loginUser = await LoginUser.init('755');
+      const result = await loginUser.checkPrivileges('EZC', 'Terminate');
+      expect(result).toEqual(false);
+    });
+
+    it('should return false if privilege not found', async () => {
+      isCorrect = false;
+      const loginUser = await LoginUser.init('755');
+      const result = await loginUser.checkPrivileges('EZC', 'Not Terminate');
+      expect(result).toEqual(false);
+    });
+
+    it('should return true if privilege found', async () => {
+      const loginUser = await LoginUser.init('755');
+      const result = await loginUser.checkPrivileges('EZC', 'Terminate');
+      expect(result).toEqual(true);
+    });
+  });
+
+
 });