emailengine-app 2.61.0 → 2.61.2

package/test/oauth2-apps-test.js

@@ -1,301 +0,0 @@
-'use strict';
-
-require('dotenv').config({ quiet: true });
-
-const test = require('node:test');
-const assert = require('node:assert').strict;
-
-const { formatExtraScopes } = require('../lib/oauth2-apps');
-const { Account } = require('../lib/account');
-
-test('formatExtraScopes', async t => {
-    t.after(async () => {
-        // force close because we loaded ../lib/oauth2-apps that spawns the db connection and queues
-        setTimeout(() => process.exit(), 5000).unref();
-    });
-
-    await t.test('should filter out Gmail scopes using short form', async () => {
-        const defaultScopes = [
-            'https://www.googleapis.com/auth/gmail.modify',
-            'https://www.googleapis.com/auth/gmail.send',
-            'https://www.googleapis.com/auth/gmail.labels'
-        ];
-
-        const result = formatExtraScopes([], null, defaultScopes, ['gmail.modify'], null);
-
-        assert.deepStrictEqual(result, ['https://www.googleapis.com/auth/gmail.send', 'https://www.googleapis.com/auth/gmail.labels']);
-    });
-
-    await t.test('should filter out Gmail scopes using full URL', async () => {
-        const defaultScopes = [
-            'https://www.googleapis.com/auth/gmail.modify',
-            'https://www.googleapis.com/auth/gmail.send',
-            'https://www.googleapis.com/auth/gmail.labels'
-        ];
-
-        const result = formatExtraScopes([], null, defaultScopes, ['https://www.googleapis.com/auth/gmail.modify'], null);
-
-        assert.deepStrictEqual(result, ['https://www.googleapis.com/auth/gmail.send', 'https://www.googleapis.com/auth/gmail.labels']);
-    });
-
-    await t.test('should filter multiple Gmail scopes', async () => {
-        const defaultScopes = [
-            'https://www.googleapis.com/auth/gmail.modify',
-            'https://www.googleapis.com/auth/gmail.readonly',
-            'https://www.googleapis.com/auth/gmail.send',
-            'https://www.googleapis.com/auth/gmail.labels'
-        ];
-
-        const result = formatExtraScopes([], null, defaultScopes, ['gmail.modify', 'gmail.readonly', 'gmail.labels'], null);
-
-        assert.deepStrictEqual(result, ['https://www.googleapis.com/auth/gmail.send']);
-    });
-
-    await t.test('should add extra Gmail scopes', async () => {
-        const defaultScopes = ['https://www.googleapis.com/auth/gmail.modify'];
-
-        const result = formatExtraScopes(['https://www.googleapis.com/auth/gmail.send'], null, defaultScopes, [], null);
-
-        assert.deepStrictEqual(result, ['https://www.googleapis.com/auth/gmail.send', 'https://www.googleapis.com/auth/gmail.modify']);
-    });
-
-    await t.test('should add extra scopes and filter out unwanted ones', async () => {
-        const defaultScopes = ['https://www.googleapis.com/auth/gmail.modify', 'https://www.googleapis.com/auth/gmail.labels'];
-
-        const result = formatExtraScopes(['https://www.googleapis.com/auth/gmail.send'], null, defaultScopes, ['gmail.modify'], null);
-
-        assert.deepStrictEqual(result, ['https://www.googleapis.com/auth/gmail.send', 'https://www.googleapis.com/auth/gmail.labels']);
-    });
-
-    await t.test('should handle send-only configuration', async () => {
-        const defaultScopes = ['https://www.googleapis.com/auth/gmail.modify'];
-
-        const result = formatExtraScopes(['https://www.googleapis.com/auth/gmail.send'], null, defaultScopes, ['gmail.modify'], null);
-
-        assert.deepStrictEqual(result, ['https://www.googleapis.com/auth/gmail.send']);
-    });
-
-    await t.test('should filter out Outlook scopes using short form', async () => {
-        const defaultScopes = [
-            'https://outlook.office.com/IMAP.AccessAsUser.All',
-            'https://outlook.office.com/SMTP.Send',
-            'https://outlook.office.com/User.Read'
-        ];
-
-        const result = formatExtraScopes([], null, defaultScopes, ['IMAP.AccessAsUser.All'], null);
-
-        assert.deepStrictEqual(result, ['https://outlook.office.com/SMTP.Send', 'https://outlook.office.com/User.Read']);
-    });
-
-    await t.test('should filter out Microsoft Graph scopes', async () => {
-        const defaultScopes = ['https://graph.microsoft.com/Mail.ReadWrite', 'https://graph.microsoft.com/Mail.Send', 'https://graph.microsoft.com/User.Read'];
-
-        const result = formatExtraScopes([], null, defaultScopes, ['Mail.ReadWrite'], null);
-
-        assert.deepStrictEqual(result, ['https://graph.microsoft.com/Mail.Send', 'https://graph.microsoft.com/User.Read']);
-    });
-
-    await t.test('should filter out full URL Outlook scopes', async () => {
-        const defaultScopes = ['https://outlook.office.com/IMAP.AccessAsUser.All', 'https://outlook.office.com/SMTP.Send'];
-
-        const result = formatExtraScopes([], null, defaultScopes, ['https://outlook.office.com/IMAP.AccessAsUser.All'], null);
-
-        assert.deepStrictEqual(result, ['https://outlook.office.com/SMTP.Send']);
-    });
-
-    await t.test('should return default scopes when no extras or skips', async () => {
-        const defaultScopes = ['scope1', 'scope2'];
-
-        const result = formatExtraScopes(null, null, defaultScopes, [], null);
-
-        assert.deepStrictEqual(result, ['scope1', 'scope2']);
-    });
-
-    await t.test('should handle empty skipScopes array', async () => {
-        const defaultScopes = ['scope1', 'scope2'];
-
-        const result = formatExtraScopes(['scope3'], null, defaultScopes, [], null);
-
-        assert.deepStrictEqual(result, ['scope3', 'scope1', 'scope2']);
-    });
-
-    await t.test('should not duplicate scopes already in defaults', async () => {
-        const defaultScopes = ['scope1', 'scope2'];
-
-        const result = formatExtraScopes(['scope1', 'scope3'], null, defaultScopes, [], null);
-
-        assert.deepStrictEqual(result, ['scope3', 'scope1', 'scope2']);
-    });
-
-    await t.test('should handle scopePrefix correctly', async () => {
-        const defaultScopes = ['prefix/scope1', 'prefix/scope2'];
-
-        const result = formatExtraScopes(['scope1', 'scope3'], null, defaultScopes, [], 'prefix');
-
-        assert.deepStrictEqual(result, ['scope3', 'prefix/scope1', 'prefix/scope2']);
-    });
-});
-
-test('checkAccountScopes - Outlook', async t => {
-    let account;
-
-    t.beforeEach(() => {
-        // Create a mock account instance with minimal required properties
-        account = new Account({
-            redis: {},
-            account: 'test-account',
-            secret: 'test-secret',
-            logger: {
-                warn: () => {},
-                error: () => {},
-                info: () => {},
-                debug: () => {}
-            }
-        });
-    });
-
-    await t.test('should detect send-only Outlook account (global cloud)', async () => {
-        const scopes = ['https://graph.microsoft.com/Mail.Send', 'offline_access'];
-        const result = account.checkAccountScopes('outlook', scopes);
-
-        assert.deepStrictEqual(result, { hasSendScope: true, hasReadScope: false });
-    });
-
-    await t.test('should detect full-access Outlook account (global cloud)', async () => {
-        const scopes = ['https://graph.microsoft.com/Mail.ReadWrite', 'https://graph.microsoft.com/Mail.Send', 'offline_access'];
-        const result = account.checkAccountScopes('outlook', scopes);
-
-        assert.deepStrictEqual(result, { hasSendScope: true, hasReadScope: true });
-    });
-
-    await t.test('should detect send-only Outlook account (GCC-High cloud)', async () => {
-        const scopes = ['https://graph.microsoft.us/Mail.Send', 'offline_access'];
-        const result = account.checkAccountScopes('outlook', scopes);
-
-        assert.deepStrictEqual(result, { hasSendScope: true, hasReadScope: false });
-    });
-
-    await t.test('should detect full-access Outlook account (GCC-High cloud)', async () => {
-        const scopes = ['https://graph.microsoft.us/Mail.ReadWrite', 'https://graph.microsoft.us/Mail.Send', 'offline_access'];
-        const result = account.checkAccountScopes('outlook', scopes);
-
-        assert.deepStrictEqual(result, { hasSendScope: true, hasReadScope: true });
-    });
-
-    await t.test('should detect send-only Outlook account (DoD cloud)', async () => {
-        const scopes = ['https://dod-graph.microsoft.us/Mail.Send', 'offline_access'];
-        const result = account.checkAccountScopes('outlook', scopes);
-
-        assert.deepStrictEqual(result, { hasSendScope: true, hasReadScope: false });
-    });
-
-    await t.test('should detect full-access Outlook account (DoD cloud)', async () => {
-        const scopes = ['https://dod-graph.microsoft.us/Mail.ReadWrite', 'https://dod-graph.microsoft.us/Mail.Send', 'offline_access'];
-        const result = account.checkAccountScopes('outlook', scopes);
-
-        assert.deepStrictEqual(result, { hasSendScope: true, hasReadScope: true });
-    });
-
-    await t.test('should detect send-only Outlook account (China cloud)', async () => {
-        const scopes = ['https://microsoftgraph.chinacloudapi.cn/Mail.Send', 'offline_access'];
-        const result = account.checkAccountScopes('outlook', scopes);
-
-        assert.deepStrictEqual(result, { hasSendScope: true, hasReadScope: false });
-    });
-
-    await t.test('should detect full-access Outlook account (China cloud)', async () => {
-        const scopes = ['https://microsoftgraph.chinacloudapi.cn/Mail.ReadWrite', 'https://microsoftgraph.chinacloudapi.cn/Mail.Send', 'offline_access'];
-        const result = account.checkAccountScopes('outlook', scopes);
-
-        assert.deepStrictEqual(result, { hasSendScope: true, hasReadScope: true });
-    });
-
-    await t.test('should detect read-only Outlook account with Mail.Read', async () => {
-        const scopes = ['https://graph.microsoft.com/Mail.Read', 'offline_access'];
-        const result = account.checkAccountScopes('outlook', scopes);
-
-        assert.deepStrictEqual(result, { hasSendScope: false, hasReadScope: true });
-    });
-
-    await t.test('should handle scopes with trailing slashes', async () => {
-        const scopes = ['https://graph.microsoft.com/Mail.Send/', 'offline_access'];
-        const result = account.checkAccountScopes('outlook', scopes);
-
-        assert.deepStrictEqual(result, { hasSendScope: true, hasReadScope: false });
-    });
-
-    await t.test('should handle scopes with query parameters', async () => {
-        const scopes = ['https://graph.microsoft.com/Mail.Send?foo=bar', 'offline_access'];
-        const result = account.checkAccountScopes('outlook', scopes);
-
-        assert.deepStrictEqual(result, { hasSendScope: true, hasReadScope: false });
-    });
-
-    await t.test('should handle scopes with fragments', async () => {
-        const scopes = ['https://graph.microsoft.com/Mail.Send#section', 'offline_access'];
-        const result = account.checkAccountScopes('outlook', scopes);
-
-        assert.deepStrictEqual(result, { hasSendScope: true, hasReadScope: false });
-    });
-
-    await t.test('should handle plain scope names', async () => {
-        const scopes = ['offline_access', 'openid', 'profile'];
-        const result = account.checkAccountScopes('outlook', scopes);
-
-        assert.deepStrictEqual(result, { hasSendScope: false, hasReadScope: false });
-    });
-
-    await t.test('should handle invalid protocol (http instead of https)', async () => {
-        const scopes = ['http://graph.microsoft.com/Mail.Send', 'offline_access'];
-        const result = account.checkAccountScopes('outlook', scopes);
-
-        assert.deepStrictEqual(result, { hasSendScope: false, hasReadScope: false });
-    });
-
-    await t.test('should handle non-Microsoft Graph domains', async () => {
-        const scopes = ['https://evil.com/Mail.Send', 'offline_access'];
-        const result = account.checkAccountScopes('outlook', scopes);
-
-        assert.deepStrictEqual(result, { hasSendScope: false, hasReadScope: false });
-    });
-
-    await t.test('should handle malformed URLs', async () => {
-        const scopes = ['not-a-url', 'offline_access'];
-        const result = account.checkAccountScopes('outlook', scopes);
-
-        assert.deepStrictEqual(result, { hasSendScope: false, hasReadScope: false });
-    });
-
-    await t.test('should handle empty scopes array', async () => {
-        const scopes = [];
-        const result = account.checkAccountScopes('outlook', scopes);
-
-        assert.deepStrictEqual(result, { hasSendScope: false, hasReadScope: false });
-    });
-
-    await t.test('should handle null scopes', async () => {
-        const result = account.checkAccountScopes('outlook', null);
-
-        assert.deepStrictEqual(result, { hasSendScope: false, hasReadScope: false });
-    });
-
-    await t.test('should handle undefined scopes', async () => {
-        const result = account.checkAccountScopes('outlook', undefined);
-
-        assert.deepStrictEqual(result, { hasSendScope: false, hasReadScope: false });
-    });
-
-    await t.test('should handle mixed cloud scopes', async () => {
-        const scopes = ['https://graph.microsoft.com/Mail.Send', 'https://graph.microsoft.us/Mail.ReadWrite', 'offline_access'];
-        const result = account.checkAccountScopes('outlook', scopes);
-
-        assert.deepStrictEqual(result, { hasSendScope: true, hasReadScope: true });
-    });
-
-    await t.test('should handle User.Read scope (not mail-related)', async () => {
-        const scopes = ['https://graph.microsoft.com/User.Read', 'offline_access'];
-        const result = account.checkAccountScopes('outlook', scopes);
-
-        assert.deepStrictEqual(result, { hasSendScope: false, hasReadScope: false });
-    });
-});

package/test/sendonly-test.js

@@ -1,160 +0,0 @@
-'use strict';
-
-require('dotenv').config({ quiet: true });
-
-const config = require('@zone-eu/wild-config');
-const testConfig = require('./test-config');
-const supertest = require('supertest');
-const test = require('node:test');
-const assert = require('node:assert').strict;
-const webhooksServer = require('./webhooks-server');
-
-const accessToken = '2aa97ad0456d6624a55d30780aa2ff61bfb7edc6fa00935b40814b271e718660';
-const server = supertest.agent(`http://127.0.0.1:${config.api.port}`).auth(accessToken, { type: 'bearer' });
-
-const gmailSendOnlyAccountId = 'gmail-sendonly-test';
-
-// Helper function for polling with timeout
-async function waitForCondition(checkFn, options = {}) {
-    const { interval = testConfig.POLL_INTERVAL, timeout = testConfig.DEFAULT_TIMEOUT, message = 'Condition not met within timeout' } = options;
-
-    const startTime = Date.now();
-
-    while (Date.now() - startTime < timeout) {
-        const result = await checkFn();
-        if (result) {
-            return result;
-        }
-        await new Promise(r => setTimeout(r, interval));
-    }
-
-    throw new Error(`Timeout: ${message}`);
-}
-
-test('Gmail send-only account - isolated send test', async t => {
-    let oauth2PubsubId;
-    let oauth2SendOnlyAppId;
-
-    t.before(async () => {
-        await webhooksServer.init();
-    });
-
-    t.after(async () => {
-        await webhooksServer.quit();
-    });
-
-    await t.test('Create Gmail API OAuth2 service project', { timeout: 30000 }, async () => {
-        let gmailServiceData = {
-            name: 'Gmail API Pub/Sub',
-            provider: 'gmailService',
-            baseScopes: 'pubsub',
-            googleProjectId: process.env.GMAIL_API_PROJECT_ID,
-            serviceClient: process.env.GMAIL_API_SERVICE_CLIENT,
-            serviceClientEmail: process.env.GMAIL_API_SERVICE_EMAIL,
-            serviceKey: process.env.GMAIL_API_SERVICE_KEY
-        };
-
-        const response = await server.post(`/v1/oauth2`).send(gmailServiceData).expect(200);
-
-        oauth2PubsubId = response.body.id;
-        assert.ok(oauth2PubsubId);
-    });
-
-    await t.test('Create Gmail send-only OAuth2 client project', { timeout: 30000 }, async () => {
-        let gmailSendOnlyClientData = {
-            name: 'Gmail API Send-Only Client',
-            provider: 'gmail',
-            baseScopes: 'api',
-            googleProjectId: process.env.GMAIL_SENDONLY_PROJECT_ID,
-            clientId: process.env.GMAIL_SENDONLY_CLIENT_ID,
-            clientSecret: process.env.GMAIL_SENDONLY_CLIENT_SECRET,
-            extraScopes: ['gmail.send'],
-            skipScopes: ['gmail.modify'],
-            redirectUrl: 'http://127.0.0.1:3000/oauth'
-        };
-
-        const response = await server.post(`/v1/oauth2`).send(gmailSendOnlyClientData).expect(200);
-
-        oauth2SendOnlyAppId = response.body.id;
-        assert.ok(oauth2SendOnlyAppId);
-    });
-
-    await t.test('Register Gmail send-only account', { timeout: 30000 }, async () => {
-        const response = await server
-            .post(`/v1/account`)
-            .send({
-                account: gmailSendOnlyAccountId,
-                name: 'Gmail Send-Only Test User',
-                email: process.env.GMAIL_SENDONLY_ACCOUNT_EMAIL,
-                oauth2: {
-                    provider: oauth2SendOnlyAppId,
-                    auth: {
-                        user: process.env.GMAIL_SENDONLY_ACCOUNT_EMAIL
-                    },
-                    refreshToken: process.env.GMAIL_SENDONLY_ACCOUNT_REFRESH
-                }
-            })
-            .expect(200);
-
-        assert.strictEqual(response.body.state, 'new');
-    });
-
-    await t.test('Wait until Gmail send-only account is connected', { timeout: 180000 }, async () => {
-        await waitForCondition(
-            async () => {
-                const response = await server.get(`/v1/account/${gmailSendOnlyAccountId}`).expect(200);
-                switch (response.body.state) {
-                    case 'authenticationError':
-                    case 'connectError':
-                        throw new Error('Invalid account state ' + response.body.state);
-                    case 'connected':
-                        return true;
-                }
-                return false;
-            },
-            { timeout: testConfig.GMAIL_TIMEOUT, message: `Gmail send-only account connection timeout` }
-        );
-
-        // Verify account type is 'sending'
-        const response = await server.get(`/v1/account/${gmailSendOnlyAccountId}`).expect(200);
-        assert.strictEqual(response.body.sendOnly, true, 'Account should be detected as send-only');
-    });
-
-    await t.test('Submit email from send-only account (no receive check)', { timeout: 60000 }, async () => {
-        let messageId = `<sendonly-isolated-test-${Date.now()}@example.com>`;
-
-        const response = await server
-            .post(`/v1/account/${gmailSendOnlyAccountId}/submit`)
-            .send({
-                to: [
-                    {
-                        name: 'Test Recipient',
-                        address: process.env.GMAIL_API_ACCOUNT_EMAIL_2 || 'test@example.com'
-                    }
-                ],
-                subject: 'Isolated send-only test',
-                text: 'This is a test message from send-only account - isolated test',
-                html: '<p>This is a test message from <strong>send-only</strong> account - isolated test</p>',
-                messageId
-            })
-            .expect(200);
-
-        assert.ok(response.body.messageId, 'Should have messageId in response');
-        assert.ok(response.body.queueId, 'Should have queueId in response');
-
-        // Wait for messageSent webhook only - don't check for receive
-        const messageSentWebhook = await waitForCondition(
-            async () => {
-                let webhooks = webhooksServer.webhooks.get(gmailSendOnlyAccountId);
-                return webhooks?.find(wh => wh.event === 'messageSent' && wh.data.originalMessageId === messageId);
-            },
-            { timeout: 30000, message: 'Gmail send-only message sent webhook timeout' }
-        );
-
-        assert.ok(messageSentWebhook, 'Should receive messageSent webhook');
-    });
-
-    await t.test('Cleanup - delete send-only account', { timeout: 10000 }, async () => {
-        await server.delete(`/v1/account/${gmailSendOnlyAccountId}`).expect(200);
-    });
-});

package/test/test-config.js

@@ -1,34 +0,0 @@
-'use strict';
-
-/**
- * Test configuration for EmailEngine test suite
- * Timeout values are configured to handle Gmail API operations
- * which may take longer due to network latency and API processing
- */
-
-module.exports = {
-    // Default timeout for standard operations
-    DEFAULT_TIMEOUT: 30000, // 30 seconds
-
-    // Timeout for Gmail API operations
-    GMAIL_TIMEOUT: 90000, // 90 seconds
-
-    // Timeout for waiting for account connections
-    CONNECTION_TIMEOUT: 60000, // 60 seconds
-
-    // Timeout for webhook notifications
-    WEBHOOK_TIMEOUT: 30000, // 30 seconds
-
-    // Polling interval for checking conditions
-    POLL_INTERVAL: 1000, // 1 second
-
-    // Environment-specific overrides
-    ...(process.env.CI
-        ? {
-              // Increase timeouts in CI environment
-              GMAIL_TIMEOUT: 120000, // 2 minutes in CI
-              CONNECTION_TIMEOUT: 90000, // 90 seconds in CI
-              WEBHOOK_TIMEOUT: 60000 // 60 seconds in CI
-          }
-        : {})
-};

package/test/webhooks-server.js

@@ -1,39 +0,0 @@
-'use strict';
-
-const config = require('@zone-eu/wild-config');
-const Hapi = require('@hapi/hapi');
-
-const webhooks = new Map();
-
-const server = Hapi.server({
-    port: config.webhooksServer.port,
-    host: '0.0.0.0'
-});
-
-server.route({
-    method: 'POST',
-    path: '/webhooks',
-    handler: async (request, h) => {
-        let account = request.payload.account || '';
-        if (!webhooks.has(account)) {
-            webhooks.set(account, []);
-        }
-        console.log('WEBHOOK', JSON.stringify(request.payload));
-        webhooks.get(account).push(request.payload);
-        return h.response('OK').code(200);
-    }
-});
-
-const init = async () => {
-    await server.start();
-    console.log('Webhooks Server running on %s', server.info.uri);
-};
-
-module.exports = {
-    init,
-    webhooks,
-    async quit() {
-        await server.stop({ timeout: 5 * 1000 });
-        console.log('Webhooks Server closed');
-    }
-};