@vibecheckai/cli 3.9.1 → 4.0.0

package/mcp-server/tests/tier-gating.test.js

@@ -1,297 +0,0 @@
-/**
- * MCP Tier Gating Tests
- * 
- * Verifies that:
- * - FREE tier can run: scan, ctx, verify, report, status, doctor
- * - FREE tier CANNOT run: prove, fix, ship, gate, badge
- * - Option-level gates work (e.g., scan --autofix requires PRO)
- * - Error responses use proper ErrorEnvelope format
- */
-
-import { describe, it, expect, beforeEach, vi } from 'vitest';
-import {
-  FREE_TOOLS,
-  PRO_TOOLS,
-  OPTION_GATES,
-  getMcpToolAccess,
-  checkOptionAccess,
-  canAccessTool,
-  isPro,
-  getFirewallMode,
-  ERROR_CODES,
-  notEntitledError,
-  optionNotEntitledError,
-} from '../tier-auth.js';
-
-// Mock fetch for API calls
-global.fetch = vi.fn();
-
-describe('Tier System - Basic Access', () => {
-  beforeEach(() => {
-    vi.resetAllMocks();
-    // Reset any cached tier state
-    delete process.env.VIBECHECK_DEV_PRO;
-  });
-
-  describe('FREE tier access', () => {
-    it('FREE can access vibecheck.scan', () => {
-      expect(canAccessTool('free', 'vibecheck.scan')).toBe(true);
-    });
-
-    it('FREE can access vibecheck.ctx', () => {
-      expect(canAccessTool('free', 'vibecheck.ctx')).toBe(true);
-    });
-
-    it('FREE can access vibecheck.verify', () => {
-      expect(canAccessTool('free', 'vibecheck.verify')).toBe(true);
-    });
-
-    it('FREE can access vibecheck.report', () => {
-      expect(canAccessTool('free', 'vibecheck.report')).toBe(true);
-    });
-
-    it('FREE can access vibecheck.status', () => {
-      expect(canAccessTool('free', 'vibecheck.status')).toBe(true);
-    });
-
-    it('FREE can access vibecheck.doctor', () => {
-      expect(canAccessTool('free', 'vibecheck.doctor')).toBe(true);
-    });
-
-    it('FREE can access vibecheck.firewall (observe mode)', () => {
-      expect(canAccessTool('free', 'vibecheck.firewall')).toBe(true);
-    });
-
-    it('FREE can access authority.list', () => {
-      expect(canAccessTool('free', 'authority.list')).toBe(true);
-    });
-
-    it('FREE can access authority.classify', () => {
-      expect(canAccessTool('free', 'authority.classify')).toBe(true);
-    });
-
-    it('FREE can access vibecheck_conductor_status', () => {
-      expect(canAccessTool('free', 'vibecheck_conductor_status')).toBe(true);
-    });
-  });
-
-  describe('FREE tier denied access', () => {
-    it('FREE CANNOT access vibecheck.prove', () => {
-      expect(canAccessTool('free', 'vibecheck.prove')).toBe(false);
-    });
-
-    it('FREE CANNOT access vibecheck.fix', () => {
-      expect(canAccessTool('free', 'vibecheck.fix')).toBe(false);
-    });
-
-    it('FREE CANNOT access vibecheck.ship', () => {
-      expect(canAccessTool('free', 'vibecheck.ship')).toBe(false);
-    });
-
-    it('FREE CANNOT access vibecheck.gate', () => {
-      expect(canAccessTool('free', 'vibecheck.gate')).toBe(false);
-    });
-
-    it('FREE CANNOT access vibecheck.badge', () => {
-      expect(canAccessTool('free', 'vibecheck.badge')).toBe(false);
-    });
-
-    it('FREE CANNOT access vibecheck.reality', () => {
-      expect(canAccessTool('free', 'vibecheck.reality')).toBe(false);
-    });
-
-    it('FREE CANNOT access vibecheck.share', () => {
-      expect(canAccessTool('free', 'vibecheck.share')).toBe(false);
-    });
-
-    it('FREE CANNOT access authority.approve', () => {
-      expect(canAccessTool('free', 'authority.approve')).toBe(false);
-    });
-
-    it('FREE CANNOT access vibecheck_conductor_register', () => {
-      expect(canAccessTool('free', 'vibecheck_conductor_register')).toBe(false);
-    });
-
-    it('FREE CANNOT access vibecheck_agent_firewall_intercept', () => {
-      expect(canAccessTool('free', 'vibecheck_agent_firewall_intercept')).toBe(false);
-    });
-  });
-
-  describe('PRO tier access', () => {
-    it('PRO can access all FREE tools', () => {
-      for (const tool of FREE_TOOLS) {
-        expect(canAccessTool('pro', tool)).toBe(true);
-      }
-    });
-
-    it('PRO can access all PRO tools', () => {
-      for (const tool of PRO_TOOLS) {
-        expect(canAccessTool('pro', tool)).toBe(true);
-      }
-    });
-  });
-});
-
-describe('Option-Level Gates', () => {
-  describe('vibecheck.scan options', () => {
-    it('FREE can use scan without autofix', () => {
-      const result = checkOptionAccess('free', 'vibecheck.scan', {});
-      expect(result.allowed).toBe(true);
-    });
-
-    it('FREE CANNOT use scan --autofix', () => {
-      const result = checkOptionAccess('free', 'vibecheck.scan', { autofix: true });
-      expect(result.allowed).toBe(false);
-      expect(result.blockedOption).toBe('autofix');
-    });
-
-    it('FREE CANNOT use scan --fix', () => {
-      const result = checkOptionAccess('free', 'vibecheck.scan', { fix: true });
-      expect(result.allowed).toBe(false);
-      expect(result.blockedOption).toBe('fix');
-    });
-
-    it('PRO can use scan --autofix', () => {
-      const result = checkOptionAccess('pro', 'vibecheck.scan', { autofix: true });
-      expect(result.allowed).toBe(true);
-    });
-  });
-
-  describe('vibecheck.firewall options', () => {
-    it('FREE can use firewall observe mode', () => {
-      const result = checkOptionAccess('free', 'vibecheck.firewall', { mode: 'observe' });
-      expect(result.allowed).toBe(true);
-    });
-
-    it('FREE CANNOT use firewall enforce mode', () => {
-      const result = checkOptionAccess('free', 'vibecheck.firewall', { mode: 'enforce' });
-      expect(result.allowed).toBe(false);
-    });
-
-    it('PRO can use firewall enforce mode', () => {
-      const result = checkOptionAccess('pro', 'vibecheck.firewall', { mode: 'enforce' });
-      expect(result.allowed).toBe(true);
-    });
-  });
-});
-
-describe('ErrorEnvelope Format', () => {
-  it('notEntitledError returns proper ErrorEnvelope', () => {
-    const error = notEntitledError('vibecheck.prove', 'free', 'pro');
-    
-    expect(error.code).toBe('NOT_ENTITLED');
-    expect(error.message).toBe('Requires PRO');
-    expect(error.userAction).toBe('Open billing');
-    expect(error.retryable).toBe(false);
-    expect(error.tier).toBe('free');
-    expect(error.required).toBe('pro');
-    expect(error.tool).toBe('vibecheck.prove');
-    expect(error.upgradeUrl).toBe('https://vibecheckai.dev/pricing');
-    expect(error.nextSteps).toBeInstanceOf(Array);
-  });
-
-  it('optionNotEntitledError returns proper ErrorEnvelope', () => {
-    const error = optionNotEntitledError('vibecheck.scan', 'autofix', 'free', 'pro');
-    
-    expect(error.code).toBe('OPTION_NOT_ENTITLED');
-    expect(error.message).toContain('--autofix');
-    expect(error.userAction).toBe('Open billing');
-    expect(error.retryable).toBe(false);
-    expect(error.option).toBe('autofix');
-  });
-});
-
-describe('getMcpToolAccess', () => {
-  beforeEach(() => {
-    vi.resetAllMocks();
-    delete process.env.VIBECHECK_DEV_PRO;
-  });
-
-  it('returns hasAccess=true for FREE tool without API key', async () => {
-    const result = await getMcpToolAccess('vibecheck.scan', null, {});
-    
-    expect(result.hasAccess).toBe(true);
-    expect(result.tier).toBe('free');
-    expect(result.firewallMode).toBe('observe');
-  });
-
-  it('returns hasAccess=false for PRO tool without API key', async () => {
-    const result = await getMcpToolAccess('vibecheck.prove', null, {});
-    
-    expect(result.hasAccess).toBe(false);
-    expect(result.error).toBeDefined();
-    expect(result.error.code).toBe('NOT_ENTITLED');
-  });
-
-  it('returns hasAccess=false for FREE tool with PRO option', async () => {
-    const result = await getMcpToolAccess('vibecheck.scan', null, { autofix: true });
-    
-    expect(result.hasAccess).toBe(false);
-    expect(result.error.code).toBe('OPTION_NOT_ENTITLED');
-  });
-});
-
-describe('Firewall Mode', () => {
-  it('FREE tier gets observe mode', () => {
-    expect(getFirewallMode('free')).toBe('observe');
-  });
-
-  it('PRO tier gets enforce mode', () => {
-    expect(getFirewallMode('pro')).toBe('enforce');
-  });
-});
-
-describe('Developer Mode Bypass', () => {
-  it('VIBECHECK_DEV_PRO=1 grants PRO access', () => {
-    process.env.VIBECHECK_DEV_PRO = '1';
-    
-    expect(isPro('free')).toBe(true);
-    expect(canAccessTool('free', 'vibecheck.prove')).toBe(true);
-    expect(getFirewallMode('free')).toBe('enforce');
-    
-    delete process.env.VIBECHECK_DEV_PRO;
-  });
-});
-
-describe('Tool Lists Completeness', () => {
-  it('FREE_TOOLS includes all expected tools', () => {
-    const expectedFreeTools = [
-      'vibecheck.scan',
-      'vibecheck.ctx',
-      'vibecheck.verify',
-      'vibecheck.report',
-      'vibecheck.status',
-      'vibecheck.doctor',
-      'vibecheck.firewall',
-      'authority.list',
-      'authority.classify',
-      'vibecheck_conductor_status',
-    ];
-    
-    for (const tool of expectedFreeTools) {
-      expect(FREE_TOOLS).toContain(tool);
-    }
-  });
-
-  it('PRO_TOOLS includes all expected tools', () => {
-    const expectedProTools = [
-      'vibecheck.ship',
-      'vibecheck.fix',
-      'vibecheck.prove',
-      'vibecheck.gate',
-      'vibecheck.badge',
-      'vibecheck.reality',
-      'vibecheck.share',
-      'authority.approve',
-    ];
-    
-    for (const tool of expectedProTools) {
-      expect(PRO_TOOLS).toContain(tool);
-    }
-  });
-
-  it('No tool is in both FREE and PRO lists', () => {
-    const overlap = FREE_TOOLS.filter(t => PRO_TOOLS.includes(t));
-    expect(overlap).toHaveLength(0);
-  });
-});