backend-manager 5.9.7 → 5.9.9

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (216) hide show
  1. package/package.json +5 -3
  2. package/src/cli/commands/setup-tests/bem-config.js +3 -2
  3. package/src/cli/commands/setup-tests/helpers.js +5 -0
  4. package/src/cli/commands/setup-tests/project-id-consistency.js +2 -1
  5. package/src/test/fixtures/firebase-project/.temp/test-mode.json +1 -1
  6. package/src/test/fixtures/firebase-project/database-debug.log +8 -8
  7. package/src/test/fixtures/firebase-project/firestore-debug.log +57 -55
  8. package/src/test/fixtures/firebase-project/pubsub-debug.log +3 -3
  9. package/templates/_.env +42 -0
  10. package/templates/_.gitignore +60 -0
  11. package/templates/backend-manager-config.json +249 -0
  12. package/templates/database.rules.json +83 -0
  13. package/templates/firebase.json +66 -0
  14. package/templates/firestore.indexes.json +4 -0
  15. package/templates/firestore.rules +112 -0
  16. package/templates/public/404.html +26 -0
  17. package/templates/public/index.html +24 -0
  18. package/templates/remoteconfig.template.json +1 -0
  19. package/templates/storage-lifecycle-config-1-day.json +9 -0
  20. package/templates/storage-lifecycle-config-30-days.json +9 -0
  21. package/templates/storage.rules +8 -0
  22. package/test/_init/accounts-validation.js +58 -0
  23. package/test/_legacy/ai/index.js +231 -0
  24. package/test/_legacy/ai/test.jpg +0 -0
  25. package/test/_legacy/ai/test.pdf +0 -0
  26. package/test/_legacy/index.js +31 -0
  27. package/test/_legacy/payment-resolver/chargebee/orders/refunded.json +0 -0
  28. package/test/_legacy/payment-resolver/chargebee/orders/unpaid.json +98 -0
  29. package/test/_legacy/payment-resolver/chargebee/subscriptions/active.json +578 -0
  30. package/test/_legacy/payment-resolver/chargebee/subscriptions/trial-in-trial.json +38 -0
  31. package/test/_legacy/payment-resolver/chargebee/subscriptions/trial-skipped-to-active.json +135 -0
  32. package/test/_legacy/payment-resolver/chargebee/subscriptions/trial-to-active-to-cancelled.json +42 -0
  33. package/test/_legacy/payment-resolver/chargebee/subscriptions/trial-to-active.json +44 -0
  34. package/test/_legacy/payment-resolver/chargebee/subscriptions/trial-to-cancelled.json +39 -0
  35. package/test/_legacy/payment-resolver/chargebee/subscriptions/trial-to-refund.json +143 -0
  36. package/test/_legacy/payment-resolver/chargebee/subscriptions/trial-to-suspended.json +48 -0
  37. package/test/_legacy/payment-resolver/coinbase/orders/regular.json +204 -0
  38. package/test/_legacy/payment-resolver/coinbase/subscriptions/cancelled.json +204 -0
  39. package/test/_legacy/payment-resolver/coinbase/subscriptions/paid-2.json +125 -0
  40. package/test/_legacy/payment-resolver/index.js +1558 -0
  41. package/test/_legacy/payment-resolver/paypal/orders/refunded.json +0 -0
  42. package/test/_legacy/payment-resolver/paypal/orders/regular.json +120 -0
  43. package/test/_legacy/payment-resolver/paypal/subscriptions/active-refund-previous-stmnt.json +323 -0
  44. package/test/_legacy/payment-resolver/paypal/subscriptions/active.json +192 -0
  45. package/test/_legacy/payment-resolver/paypal/subscriptions/trial-in-trial.json +125 -0
  46. package/test/_legacy/payment-resolver/paypal/subscriptions/trial-payment-not-complete.json +76 -0
  47. package/test/_legacy/payment-resolver/paypal/subscriptions/trial-payment-overdue-2.json +114 -0
  48. package/test/_legacy/payment-resolver/paypal/subscriptions/trial-payment-overdue.json +114 -0
  49. package/test/_legacy/payment-resolver/paypal/subscriptions/trial-to-active-to-cancelled.json +111 -0
  50. package/test/_legacy/payment-resolver/paypal/subscriptions/trial-to-active.json +132 -0
  51. package/test/_legacy/payment-resolver/paypal/subscriptions/trial-to-cancelled.json +107 -0
  52. package/test/_legacy/payment-resolver/paypal/subscriptions/trial-to-expired.json +91 -0
  53. package/test/_legacy/payment-resolver/paypal/subscriptions/trial-to-refund.json +147 -0
  54. package/test/_legacy/payment-resolver/paypal/subscriptions/trial-to-suspended.json +120 -0
  55. package/test/_legacy/payment-resolver/stripe/orders/refunded.json +0 -0
  56. package/test/_legacy/payment-resolver/stripe/orders/regular.json +91 -0
  57. package/test/_legacy/payment-resolver/stripe/subscriptions/active.json +421 -0
  58. package/test/_legacy/payment-resolver/stripe/subscriptions/trial-in-trial.json +349 -0
  59. package/test/_legacy/payment-resolver/stripe/subscriptions/trial-to-active-failed-authorization.json +430 -0
  60. package/test/_legacy/payment-resolver/stripe/subscriptions/trial-to-active.json +319 -0
  61. package/test/_legacy/payment-resolver/stripe/subscriptions/trial-to-cancelled.json +319 -0
  62. package/test/_legacy/payment-resolver/stripe/subscriptions/trial-to-refund.json +414 -0
  63. package/test/_legacy/payment-resolver/stripe/subscriptions/trial-to-suspended.json +319 -0
  64. package/test/_legacy/payment-resolver/stripe/subscriptions/unsure.json +339 -0
  65. package/test/_legacy/test-new +1178 -0
  66. package/test/_legacy/test.md +89 -0
  67. package/test/_legacy/usage.js +175 -0
  68. package/test/_legacy/user.js +31 -0
  69. package/test/ai/tools-live.js +170 -0
  70. package/test/boot/emulator-boots.js +37 -0
  71. package/test/content/blog-generate.js +160 -0
  72. package/test/email/campaign-send.js +45 -0
  73. package/test/email/consent-lifecycle.js +257 -0
  74. package/test/email/feedback-and-plain-send.js +52 -0
  75. package/test/email/fixtures/clean.json +30 -0
  76. package/test/email/fixtures/editorial.json +30 -0
  77. package/test/email/fixtures/field-report.json +53 -0
  78. package/test/email/marketing-lifecycle.js +132 -0
  79. package/test/email/newsletter-generate.js +819 -0
  80. package/test/email/newsletter-templates.js +491 -0
  81. package/test/email/templates.js +207 -0
  82. package/test/email/transactional-send.js +34 -0
  83. package/test/email/transactional.js +560 -0
  84. package/test/email/validation.js +710 -0
  85. package/test/events/auth-delete-race.js +201 -0
  86. package/test/events/payments/journey-payments-cancel-endpoint.js +100 -0
  87. package/test/events/payments/journey-payments-cancel.js +182 -0
  88. package/test/events/payments/journey-payments-discount.js +89 -0
  89. package/test/events/payments/journey-payments-failure.js +146 -0
  90. package/test/events/payments/journey-payments-legacy-product.js +149 -0
  91. package/test/events/payments/journey-payments-one-time-failure.js +111 -0
  92. package/test/events/payments/journey-payments-one-time.js +136 -0
  93. package/test/events/payments/journey-payments-plan-change.js +144 -0
  94. package/test/events/payments/journey-payments-refund-webhook.js +180 -0
  95. package/test/events/payments/journey-payments-suspend.js +181 -0
  96. package/test/events/payments/journey-payments-trial-cancel.js +130 -0
  97. package/test/events/payments/journey-payments-trial.js +171 -0
  98. package/test/events/payments/journey-payments-uid-resolution.js +132 -0
  99. package/test/events/payments/journey-payments-upgrade.js +135 -0
  100. package/test/fixtures/chargebee/invoice-one-time.json +27 -0
  101. package/test/fixtures/chargebee/subscription-active.json +44 -0
  102. package/test/fixtures/chargebee/subscription-cancelled.json +42 -0
  103. package/test/fixtures/chargebee/subscription-in-trial.json +41 -0
  104. package/test/fixtures/chargebee/subscription-legacy-plan.json +41 -0
  105. package/test/fixtures/chargebee/subscription-non-renewing.json +41 -0
  106. package/test/fixtures/chargebee/subscription-paused.json +42 -0
  107. package/test/fixtures/chargebee/webhook-payment-failed.json +51 -0
  108. package/test/fixtures/chargebee/webhook-subscription-created.json +47 -0
  109. package/test/fixtures/paypal/order-approved.json +62 -0
  110. package/test/fixtures/paypal/order-completed.json +110 -0
  111. package/test/fixtures/paypal/subscription-active.json +76 -0
  112. package/test/fixtures/paypal/subscription-cancelled.json +50 -0
  113. package/test/fixtures/paypal/subscription-suspended.json +65 -0
  114. package/test/fixtures/stripe/checkout-session-completed.json +130 -0
  115. package/test/fixtures/stripe/invoice-payment-failed.json +148 -0
  116. package/test/fixtures/stripe/invoice-subscription-payment-failed.json +28 -0
  117. package/test/fixtures/stripe/subscription-active.json +161 -0
  118. package/test/fixtures/stripe/subscription-canceled.json +161 -0
  119. package/test/fixtures/stripe/subscription-trialing.json +161 -0
  120. package/test/functions/admin/database-read.js +134 -0
  121. package/test/functions/admin/database-write.js +159 -0
  122. package/test/functions/admin/edit-post.js +366 -0
  123. package/test/functions/admin/firestore-query.js +207 -0
  124. package/test/functions/admin/firestore-read.js +129 -0
  125. package/test/functions/admin/firestore-write.js +105 -0
  126. package/test/functions/admin/get-stats.js +115 -0
  127. package/test/functions/admin/send-email.js +119 -0
  128. package/test/functions/admin/send-notification.js +208 -0
  129. package/test/functions/admin/write-repo-content.js +223 -0
  130. package/test/functions/general/add-marketing-contact.js +335 -0
  131. package/test/functions/general/fetch-post.js +54 -0
  132. package/test/functions/general/generate-uuid.js +114 -0
  133. package/test/functions/test/authenticate.js +64 -0
  134. package/test/functions/user/create-custom-token.js +73 -0
  135. package/test/functions/user/delete.js +135 -0
  136. package/test/functions/user/get-active-sessions.js +111 -0
  137. package/test/functions/user/get-subscription-info.js +99 -0
  138. package/test/functions/user/regenerate-api-keys.js +156 -0
  139. package/test/functions/user/resolve.js +52 -0
  140. package/test/functions/user/sign-out-all-sessions.js +94 -0
  141. package/test/functions/user/sign-up.js +252 -0
  142. package/test/functions/user/submit-feedback.js +104 -0
  143. package/test/functions/user/validate-settings.js +82 -0
  144. package/test/helpers/ai-request-payload.js +300 -0
  145. package/test/helpers/ai-test-provider.js +202 -0
  146. package/test/helpers/ai-tools-format.js +383 -0
  147. package/test/helpers/content/blog-auto-publisher.js +484 -0
  148. package/test/helpers/content/feed-parser.js +528 -0
  149. package/test/helpers/content/ghostii-blocks.js +134 -0
  150. package/test/helpers/content/ghostii-feed-integration.js +404 -0
  151. package/test/helpers/content/ghostii-write-article.js +243 -0
  152. package/test/helpers/environment.js +230 -0
  153. package/test/helpers/infer-contact.js +113 -0
  154. package/test/helpers/merge-line-files.js +271 -0
  155. package/test/helpers/payment/chargebee/parse-webhook.js +413 -0
  156. package/test/helpers/payment/chargebee/to-unified-one-time.js +147 -0
  157. package/test/helpers/payment/chargebee/to-unified-subscription.js +648 -0
  158. package/test/helpers/payment/paypal/parse-webhook.js +539 -0
  159. package/test/helpers/payment/paypal/to-unified-one-time.js +382 -0
  160. package/test/helpers/payment/paypal/to-unified-subscription.js +820 -0
  161. package/test/helpers/payment/stripe/parse-webhook.js +447 -0
  162. package/test/helpers/payment/stripe/to-unified-one-time.js +306 -0
  163. package/test/helpers/payment/stripe/to-unified-subscription.js +708 -0
  164. package/test/helpers/sanitize.js +222 -0
  165. package/test/helpers/slugify.js +394 -0
  166. package/test/helpers/storage.js +194 -0
  167. package/test/helpers/user.js +755 -0
  168. package/test/helpers/webhook-forward.js +418 -0
  169. package/test/mcp/discovery.js +53 -0
  170. package/test/mcp/oauth.js +161 -0
  171. package/test/mcp/protocol.js +268 -0
  172. package/test/mcp/roles.js +188 -0
  173. package/test/mcp/utils.js +245 -0
  174. package/test/routes/admin/create-post.js +364 -0
  175. package/test/routes/admin/database.js +131 -0
  176. package/test/routes/admin/deduplicate-image-alts.js +190 -0
  177. package/test/routes/admin/email.js +114 -0
  178. package/test/routes/admin/firestore-query.js +204 -0
  179. package/test/routes/admin/firestore.js +127 -0
  180. package/test/routes/admin/infer-contact.js +218 -0
  181. package/test/routes/admin/notification.js +198 -0
  182. package/test/routes/admin/post-resize-image.js +184 -0
  183. package/test/routes/admin/post.js +368 -0
  184. package/test/routes/admin/repo-content.js +223 -0
  185. package/test/routes/admin/stats.js +112 -0
  186. package/test/routes/content/post.js +54 -0
  187. package/test/routes/general/uuid.js +115 -0
  188. package/test/routes/marketing/campaign.js +125 -0
  189. package/test/routes/marketing/contact.js +370 -0
  190. package/test/routes/marketing/email-preferences.js +292 -0
  191. package/test/routes/marketing/push-send.js +32 -0
  192. package/test/routes/marketing/webhook-forward.js +61 -0
  193. package/test/routes/marketing/webhook.js +639 -0
  194. package/test/routes/payments/cancel.js +163 -0
  195. package/test/routes/payments/discount.js +80 -0
  196. package/test/routes/payments/dispute-alert.js +320 -0
  197. package/test/routes/payments/intent.js +336 -0
  198. package/test/routes/payments/portal.js +92 -0
  199. package/test/routes/payments/refund.js +179 -0
  200. package/test/routes/payments/trial-eligibility.js +71 -0
  201. package/test/routes/payments/webhook.js +107 -0
  202. package/test/routes/test/authenticate.js +59 -0
  203. package/test/routes/test/schema.js +554 -0
  204. package/test/routes/test/usage.js +342 -0
  205. package/test/routes/user/api-keys.js +156 -0
  206. package/test/routes/user/delete.js +136 -0
  207. package/test/routes/user/feedback.js +104 -0
  208. package/test/routes/user/sessions.js +199 -0
  209. package/test/routes/user/settings-validate.js +82 -0
  210. package/test/routes/user/signup.js +542 -0
  211. package/test/routes/user/subscription.js +99 -0
  212. package/test/routes/user/token.js +73 -0
  213. package/test/routes/user/user.js +157 -0
  214. package/test/rules/notifications.js +410 -0
  215. package/test/rules/payments-carts.js +371 -0
  216. package/test/rules/user.js +396 -0
@@ -0,0 +1,208 @@
1
+ const { TEST_DATA } = require('../../../src/test/test-accounts.js');
2
+
3
+ /**
4
+ * Test: admin:send-notification
5
+ * Tests the admin send notification (FCM) command
6
+ * Requires admin authentication
7
+ *
8
+ * To test with a real FCM token, set the TEST_FCM_TOKEN environment variable:
9
+ * TEST_FCM_TOKEN=your-fcm-token npx bm test admin/send-notification
10
+ *
11
+ * You can get your FCM token from browser dev tools (Application > Service Workers)
12
+ * or from console.log in your app's notification subscription code.
13
+ */
14
+ module.exports = {
15
+ description: 'Admin send notification (FCM)',
16
+ type: 'group',
17
+ tests: [
18
+ // Test 1: Admin can call send-notification with no subscribers
19
+ // (In emulator, notifications collection is likely empty)
20
+ {
21
+ name: 'admin-succeeds-empty-collection',
22
+ auth: 'admin',
23
+ timeout: 30000,
24
+
25
+ async run({ http, assert }) {
26
+ const response = await http.command('admin:send-notification', {
27
+ notification: {
28
+ title: 'BEM Test Notification',
29
+ body: 'Testing from BEM test suite',
30
+ clickAction: 'https://example.com/test',
31
+ },
32
+ });
33
+
34
+ assert.isSuccess(response, 'Send notification should succeed for admin');
35
+ assert.hasProperty(response, 'data.sent', 'Response should have sent count');
36
+ assert.hasProperty(response, 'data.deleted', 'Response should have deleted count');
37
+ },
38
+ },
39
+
40
+ // Test 4: Notification with owner filter
41
+ {
42
+ name: 'with-owner-filter',
43
+ auth: 'admin',
44
+ timeout: 30000,
45
+
46
+ async run({ http, assert }) {
47
+ const response = await http.command('admin:send-notification', {
48
+ notification: {
49
+ title: 'Filtered Notification',
50
+ body: 'Testing owner filter',
51
+ },
52
+ filters: {
53
+ owner: TEST_DATA.filterUid,
54
+ limit: 10,
55
+ },
56
+ });
57
+
58
+ assert.isSuccess(response, 'Send notification with filters should succeed');
59
+ assert.hasProperty(response, 'data.sent', 'Response should have sent count');
60
+ },
61
+ },
62
+
63
+ // Test 5: Notification with tags filter
64
+ {
65
+ name: 'with-tags-filter',
66
+ auth: 'admin',
67
+ timeout: 30000,
68
+
69
+ async run({ http, assert }) {
70
+ const response = await http.command('admin:send-notification', {
71
+ notification: {
72
+ title: 'Tagged Notification',
73
+ body: 'Testing tags filter',
74
+ },
75
+ filters: {
76
+ tags: ['test-tag', 'another-tag'],
77
+ },
78
+ });
79
+
80
+ assert.isSuccess(response, 'Send notification with tags filter should succeed');
81
+ },
82
+ },
83
+
84
+ // Test 6: Notification with limit filter
85
+ {
86
+ name: 'with-limit-filter',
87
+ auth: 'admin',
88
+ timeout: 30000,
89
+
90
+ async run({ http, assert }) {
91
+ const response = await http.command('admin:send-notification', {
92
+ notification: {
93
+ title: 'Limited Notification',
94
+ body: 'Testing limit filter',
95
+ },
96
+ filters: {
97
+ limit: 5,
98
+ },
99
+ });
100
+
101
+ assert.isSuccess(response, 'Send notification with limit should succeed');
102
+ assert.hasProperty(response, 'data.sent', 'Response should have sent count');
103
+ },
104
+ },
105
+
106
+ // Test 7: Default notification values applied
107
+ {
108
+ name: 'default-values-applied',
109
+ auth: 'admin',
110
+ timeout: 30000,
111
+
112
+ async run({ http, assert }) {
113
+ // Send with minimal payload to test defaults
114
+ const response = await http.command('admin:send-notification', {
115
+ notification: {},
116
+ filters: {
117
+ limit: 1,
118
+ },
119
+ });
120
+
121
+ assert.isSuccess(response, 'Send notification with defaults should succeed');
122
+ },
123
+ },
124
+
125
+ // Test 8: Send to real FCM token (requires TEST_FCM_TOKEN env var)
126
+ // Skip if no token configured
127
+ {
128
+ name: 'send-to-real-token',
129
+ auth: 'admin',
130
+ timeout: 30000,
131
+ skip: !process.env.TEST_FCM_TOKEN ? 'TEST_FCM_TOKEN env var not set' : false,
132
+
133
+ async run({ http, assert, config }) {
134
+ const response = await http.command('admin:send-notification', {
135
+ notification: {
136
+ title: 'BEM Test Notification',
137
+ body: `Test sent at ${new Date().toISOString()}`,
138
+ clickAction: `https://${config.domain}/?test-notification=true`,
139
+ },
140
+ filters: {
141
+ token: process.env.TEST_FCM_TOKEN,
142
+ },
143
+ });
144
+
145
+ assert.isSuccess(response, 'Send notification to real token should succeed');
146
+ assert.hasProperty(response, 'data.sent', 'Response should have sent count');
147
+ },
148
+ },
149
+
150
+ // Test 9: Send to fake token (API succeeds, FCM fails silently)
151
+ {
152
+ name: 'fake-token-api-succeeds',
153
+ auth: 'admin',
154
+ timeout: 30000,
155
+
156
+ async run({ http, assert }) {
157
+ const response = await http.command('admin:send-notification', {
158
+ notification: {
159
+ title: 'Fake Token Test',
160
+ body: 'Testing with invalid token',
161
+ },
162
+ filters: {
163
+ token: 'fake-invalid-token-for-testing',
164
+ },
165
+ });
166
+
167
+ // The API should succeed even if FCM fails
168
+ // (FCM errors are logged but don't fail the request)
169
+ assert.isSuccess(response, 'Send notification to fake token should succeed API-wise');
170
+ },
171
+ },
172
+
173
+ // --- Auth rejection tests (at end per convention) ---
174
+ {
175
+ name: 'unauthenticated-rejected',
176
+ auth: 'none',
177
+ timeout: 15000,
178
+
179
+ async run({ http, assert }) {
180
+ const response = await http.command('admin:send-notification', {
181
+ notification: {
182
+ title: 'Test Notification',
183
+ body: 'This is a test',
184
+ },
185
+ });
186
+
187
+ assert.isError(response, 401, 'Send notification should fail without authentication');
188
+ },
189
+ },
190
+
191
+ {
192
+ name: 'non-admin-rejected',
193
+ auth: 'basic',
194
+ timeout: 15000,
195
+
196
+ async run({ http, assert }) {
197
+ const response = await http.command('admin:send-notification', {
198
+ notification: {
199
+ title: 'Test Notification',
200
+ body: 'This is a test',
201
+ },
202
+ });
203
+
204
+ assert.isError(response, 403, 'Send notification should fail for non-admin user');
205
+ },
206
+ },
207
+ ],
208
+ };
@@ -0,0 +1,223 @@
1
+ /**
2
+ * Test: admin:write-repo-content
3
+ * Tests the admin write repo content command
4
+ * Writes arbitrary content to a GitHub repository
5
+ * Requires admin/blogger role, GitHub API key, and repo_website config
6
+ *
7
+ * IMPORTANT: These tests require GH_TOKEN and github.repo_website to be configured.
8
+ * If GitHub is not configured, the tests will fail.
9
+ *
10
+ * This is a suite because we need to clean up created files and cancel workflows after tests.
11
+ */
12
+ const { Octokit } = require('@octokit/rest');
13
+
14
+ // Test file paths that will be created and need cleanup
15
+ const TEST_FILES = [
16
+ '_test/bem-write-test.txt',
17
+ '_test/type-test.txt',
18
+ ];
19
+
20
+ module.exports = {
21
+ description: 'Admin write content to GitHub repo',
22
+ type: 'suite',
23
+ timeout: 120000,
24
+ skip: !process.env.TEST_EXTENDED_MODE ? 'TEST_EXTENDED_MODE env var not set (skipping GitHub write tests)' : false,
25
+
26
+ tests: [
27
+ // Test 1: Missing path returns 400 error
28
+ {
29
+ name: 'missing-path-rejected',
30
+ auth: 'admin',
31
+ timeout: 15000,
32
+
33
+ async run({ http, assert }) {
34
+ const response = await http.command('admin:write-repo-content', {
35
+ content: 'Test content',
36
+ });
37
+
38
+ assert.isError(response, 400, 'Missing path should return 400');
39
+ },
40
+ },
41
+
42
+ // Test 4: Missing content returns 400 error
43
+ {
44
+ name: 'missing-content-rejected',
45
+ auth: 'admin',
46
+ timeout: 15000,
47
+
48
+ async run({ http, assert }) {
49
+ const response = await http.command('admin:write-repo-content', {
50
+ path: '_test/bem-test-file.txt',
51
+ });
52
+
53
+ assert.isError(response, 400, 'Missing content should return 400');
54
+ },
55
+ },
56
+
57
+ // Test 5: Admin can write content
58
+ {
59
+ name: 'admin-can-write-content',
60
+ auth: 'admin',
61
+ timeout: 60000,
62
+
63
+ async run({ http, assert, state }) {
64
+ const uniqueContent = `BEM Test - ${new Date().toISOString()}`;
65
+ const response = await http.command('admin:write-repo-content', {
66
+ path: '_test/bem-write-test.txt',
67
+ content: uniqueContent,
68
+ });
69
+
70
+ assert.isSuccess(response, 'Admin should be able to write content');
71
+ assert.hasProperty(response, 'data.path', 'Response should contain path');
72
+ assert.equal(response.data.path, '_test/bem-write-test.txt', 'Path should match');
73
+
74
+ // Store for cleanup
75
+ state.filesCreated = state.filesCreated || [];
76
+ state.filesCreated.push('_test/bem-write-test.txt');
77
+ },
78
+ },
79
+
80
+ // Test 6: Content type defaults to text
81
+ {
82
+ name: 'content-type-default',
83
+ auth: 'admin',
84
+ timeout: 30000,
85
+
86
+ async run({ http, assert, state }) {
87
+ const response = await http.command('admin:write-repo-content', {
88
+ path: '_test/type-test.txt',
89
+ content: 'Test content with default type',
90
+ });
91
+
92
+ assert.isSuccess(response, 'Write with default type should succeed');
93
+ assert.hasProperty(response, 'data.type', 'Response should contain type');
94
+ assert.equal(response.data.type, 'text', 'Default type should be text');
95
+
96
+ // Store for cleanup
97
+ state.filesCreated = state.filesCreated || [];
98
+ state.filesCreated.push('_test/type-test.txt');
99
+ },
100
+ },
101
+
102
+ // Test 7: Non-existent repo returns 404
103
+ {
104
+ name: 'nonexistent-repo-returns-404',
105
+ auth: 'admin',
106
+ timeout: 30000,
107
+
108
+ async run({ http, assert }) {
109
+ const response = await http.command('admin:write-repo-content', {
110
+ path: '_test/custom-repo-test.txt',
111
+ content: 'Test content',
112
+ githubUser: 'nonexistent-user-12345',
113
+ githubRepo: 'nonexistent-repo-12345',
114
+ });
115
+
116
+ assert.isError(response, 404, 'Non-existent repo should return 404');
117
+ },
118
+ },
119
+
120
+ // --- Auth rejection tests (at end per convention) ---
121
+ {
122
+ name: 'unauthenticated-rejected',
123
+ auth: 'none',
124
+ timeout: 15000,
125
+
126
+ async run({ http, assert }) {
127
+ const response = await http.command('admin:write-repo-content', {
128
+ path: '_test/bem-test-file.txt',
129
+ content: 'Test content',
130
+ });
131
+
132
+ assert.isError(response, 401, 'Write repo content should fail without authentication');
133
+ },
134
+ },
135
+
136
+ {
137
+ name: 'non-admin-rejected',
138
+ auth: 'basic',
139
+ timeout: 15000,
140
+
141
+ async run({ http, assert }) {
142
+ const response = await http.command('admin:write-repo-content', {
143
+ path: '_test/bem-test-file.txt',
144
+ content: 'Test content',
145
+ });
146
+
147
+ assert.isError(response, 403, 'Write repo content should fail for non-admin user');
148
+ },
149
+ },
150
+
151
+ // Cleanup - delete test files and cancel workflows
152
+ {
153
+ name: 'cleanup',
154
+ auth: 'admin',
155
+ timeout: 60000,
156
+
157
+ async run({ state, config }) {
158
+ if (!process.env.GH_TOKEN || !config.github?.repo_website) {
159
+ return;
160
+ }
161
+
162
+ const octokit = new Octokit({ auth: process.env.GH_TOKEN });
163
+
164
+ // Parse owner/repo from githubRepoWebsite (e.g., 'https://github.com/owner/repo')
165
+ const repoMatch = config.github?.repo_website.match(/github\.com\/([^/]+)\/([^/]+)/);
166
+ if (!repoMatch) {
167
+ return;
168
+ }
169
+ const owner = repoMatch[1];
170
+ const repo = repoMatch[2];
171
+
172
+ // Delete test files
173
+ const filesToDelete = state.filesCreated || TEST_FILES;
174
+ for (const filePath of filesToDelete) {
175
+ try {
176
+ const { data: fileData } = await octokit.rest.repos.getContent({
177
+ owner,
178
+ repo,
179
+ path: filePath,
180
+ });
181
+
182
+ await octokit.rest.repos.deleteFile({
183
+ owner,
184
+ repo,
185
+ path: filePath,
186
+ message: `🧹 BEM test cleanup: ${filePath}`,
187
+ sha: fileData.sha,
188
+ });
189
+ } catch (e) {
190
+ // File might not exist, ignore
191
+ }
192
+ }
193
+
194
+ // Cancel running workflows triggered by our test commits
195
+ try {
196
+ const { data: runs } = await octokit.rest.actions.listWorkflowRunsForRepo({
197
+ owner,
198
+ repo,
199
+ status: 'in_progress',
200
+ per_page: 10,
201
+ });
202
+
203
+ for (const run of runs.workflow_runs) {
204
+ if (run.head_commit?.message?.includes('admin:write-repo-content')
205
+ || run.head_commit?.message?.includes('BEM test cleanup')) {
206
+ try {
207
+ await octokit.rest.actions.cancelWorkflowRun({
208
+ owner,
209
+ repo,
210
+ run_id: run.id,
211
+ });
212
+ } catch (e) {
213
+ // May already be completed, ignore
214
+ }
215
+ }
216
+ }
217
+ } catch (e) {
218
+ // Workflow cancellation failed, not critical
219
+ }
220
+ },
221
+ },
222
+ ],
223
+ };