npm - n8n - Versions diffs - 0.167.0 → 0.168.2 - Mend

n8n 0.167.0 → 0.168.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (258) hide show

package/dist/src/telemetry/index.d.ts CHANGED Viewed

@@ -10,5 +10,8 @@ export declare class Telemetry {
     trackWorkflowExecution(properties: IDataObject): Promise<void>;
     trackN8nStop(): Promise<void>;
     identify(traits?: IDataObject): Promise<void>;
-    track(eventName: string, properties?: IDataObject): Promise<void>;
+    track(eventName: string, properties?: {
+        [key: string]: unknown;
+        user_id?: string;
+    }): Promise<void>;
 }

package/dist/src/telemetry/index.js CHANGED Viewed

@@ -116,11 +116,13 @@ class Telemetry {
             }
         });
     }
-    async track(eventName, properties) {
+    async track(eventName, properties = {}) {
         return new Promise((resolve) => {
             if (this.client) {
+                const { user_id } = properties;
+                Object.assign(properties, { instance_id: this.instanceId });
                 this.client.track({
-                    userId: this.instanceId,
+                    userId: `${this.instanceId}${user_id ? `#${user_id}` : ''}`,
                     anonymousId: '000000000000',
                     event: eventName,
                     properties,

package/dist/src/telemetry/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/telemetry/index.ts"],"names":[],"mappings":";;;~~AAEA~~,gEAAiE;AACjE,+CAAwD;AACxD,uCAAwC;AACxC,sCAAsC;AA+BtC,MAAa,SAAS;IAmBrB,YAAY,UAAkB,EAAE,UAAkB;QAV1C,0BAAqB,GAAsB;YAClD,MAAM,EAAE,EAAE;YACV,eAAe,EAAE;gBAChB,kBAAkB,EAAE,SAAS;gBAC7B,oBAAoB,EAAE,SAAS;gBAC/B,gBAAgB,EAAE,SAAS;gBAC3B,kBAAkB,EAAE,SAAS;aAC7B;SACD,CAAC;QAGD,IAAI,CAAC,UAAU,GAAG,UAAU,CAAC;QAC7B,IAAI,CAAC,UAAU,GAAG,UAAU,CAAC;QAE7B,MAAM,OAAO,GAAG,MAAM,CAAC,GAAG,CAAC,qBAAqB,CAAY,CAAC;QAC7D,MAAM,QAAQ,GAAG,MAAM,CAAC,GAAG,CAAC,YAAY,CAAY,CAAC;QACrD,IAAI,OAAO,EAAE;YACZ,MAAM,IAAI,GAAG,MAAM,CAAC,GAAG,CAAC,4BAA4B,CAAW,CAAC;YAChE,MAAM,CAAC,GAAG,EAAE,GAAG,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YAEnC,IAAI,CAAC,GAAG,IAAI,CAAC,GAAG,EAAE;gBACjB,MAAM,MAAM,GAAG,kBAAS,EAAE,CAAC;gBAC3B,0BAAW,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;gBACzB,MAAM,CAAC,IAAI,CAAC,uCAAuC,CAAC,CAAC;gBACrD,OAAO;aACP;YAED,IAAI,CAAC,MAAM,GAAG,IAAI,eAAe,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE,QAAQ,EAAE,CAAC,CAAC;YAE1D,IAAI,CAAC,sBAAsB,GAAG,WAAW,CAAC,KAAK,IAAI,EAAE;gBACpD,KAAK,IAAI,CAAC,KAAK,EAAE,CAAC;YACnB,CAAC,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;SACvB;IACF,CAAC;IAEO,KAAK,CAAC,KAAK;QAClB,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE;YACjB,OAAO,OAAO,CAAC,OAAO,EAAE,CAAC;SACzB;QAED,MAAM,WAAW,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC,CAAC,GAAG,CAAC,KAAK,EAAE,UAAU,EAAE,EAAE;YAC3F,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,0BAA0B,gCACpD,WAAW,EAAE,IAAI,CAAC,UAAU,EAC5B,WAAW,EAAE,UAAU,IACpB,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC,UAAU,CAAC,GAC7C,IAAI,CAAC,qBAAqB,CAAC,eAAe,EAC5C,CAAC;YAEH,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,kBAAkB,GAAG,CAAC,CAAC;YACrE,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,oBAAoB,GAAG,CAAC,CAAC;YACvE,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,gBAAgB,GAAG,CAAC,CAAC;YACnE,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,kBAAkB,GAAG,CAAC,CAAC;YAErE,OAAO,OAAO,CAAC;QAChB,CAAC,CAAC,CAAC;QAEH,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,OAAO,EAAE,EAAE,WAAW,EAAE,IAAI,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC;QACxE,OAAO,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;IACjC,CAAC;IAED,KAAK,CAAC,sBAAsB,CAAC,UAAuB;;QACnD,IAAI,IAAI,CAAC,MAAM,EAAE;YAChB,MAAM,UAAU,GAAG,UAAU,CAAC,WAAqB,CAAC;YACpD,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC,UAAU,CAAC,GAAG,MAAA,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAChF,UAAU,CACV,mCAAI;gBACJ,kBAAkB,EAAE,CAAC;gBACrB,oBAAoB,EAAE,CAAC;gBACvB,gBAAgB,EAAE,CAAC;gBACnB,kBAAkB,EAAE,CAAC;aACrB,CAAC;YAEF,IAAI,QAA4B,CAAC;YACjC,IAAI,YAAmC,CAAC;YAExC,IACC,UAAU,CAAC,OAAO,KAAK,KAAK;gBAC5B,UAAU,CAAC,eAAe;gBACzB,UAAU,CAAC,eAA0B,CAAC,UAAU,CAAC,gBAAgB,CAAC,EAClE;gBAED,KAAK,IAAI,CAAC,KAAK,CAAC,4BAA4B,EAAE,UAAU,CAAC,CAAC;gBAE1D,IAAI,UAAU,CAAC,SAAS,EAAE;oBACzB,YAAY,GAAG,oBAAoB,CAAC;oBACpC,QAAQ,GAAG,oBAAoB,CAAC;iBAChC;qBAAM;oBACN,YAAY,GAAG,kBAAkB,CAAC;oBAClC,QAAQ,GAAG,kBAAkB,CAAC;iBAC9B;aACD;iBAAM,IAAI,UAAU,CAAC,SAAS,EAAE;gBAChC,QAAQ,GAAG,sBAAsB,CAAC;gBAClC,YAAY,GAAG,sBAAsB,CAAC;aACtC;iBAAM;gBACN,QAAQ,GAAG,oBAAoB,CAAC;gBAChC,YAAY,GAAG,oBAAoB,CAAC;aACpC;YAED,IACC,CAAC,IAAI,CAAC,qBAAqB,CAAC,eAAe,CAAC,YAAY,CAAC;gBACzD,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,EAC5D;gBACD,IAAI,CAAC,qBAAqB,CAAC,eAAe,CAAC,YAAY,CAAC,GAAG,IAAI,IAAI,EAAE,CAAC;aACtE;YAED,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC;SAC1D;IACF,CAAC;IAED,KAAK,CAAC,YAAY;QACjB,aAAa,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;QAC3C,KAAK,IAAI,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC;QACzC,OAAO,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,EAAE;YACpC,IAAI,IAAI,CAAC,MAAM,EAAE;gBAChB,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;aAC3B;iBAAM;gBACN,OAAO,EAAE,CAAC;aACV;QACF,CAAC,CAAC,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,MAAoB;QAClC,OAAO,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,EAAE;YACpC,IAAI,IAAI,CAAC,MAAM,EAAE;gBAChB,IAAI,CAAC,MAAM,CAAC,QAAQ,CACnB;oBACC,MAAM,EAAE,IAAI,CAAC,UAAU;oBACvB,WAAW,EAAE,cAAc;oBAC3B,MAAM,kCACF,MAAM,KACT,UAAU,EAAE,IAAI,CAAC,UAAU,GAC3B;iBACD,EACD,OAAO,CACP,CAAC;aACF;iBAAM;gBACN,OAAO,EAAE,CAAC;aACV;QACF,CAAC,CAAC,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,KAAK,~~CAAC~~,SAAiB,EAAE~~,UAAwB~~;~~QACtD~~,OAAO,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,EAAE;YACpC,IAAI,IAAI,CAAC,MAAM,EAAE;gBAChB,IAAI,CAAC,MAAM,CAAC,KAAK,CAChB;oBACC,MAAM,EAAE,IAAI,CAAC,UAAU;~~oBACvB~~,WAAW,EAAE,cAAc;oBAC3B,KAAK,EAAE,SAAS;oBAChB,UAAU;iBACV,EACD,OAAO,CACP,CAAC;aACF;iBAAM;gBACN,OAAO,EAAE,CAAC;aACV;QACF,CAAC,CAAC,CAAC;IACJ,CAAC;CACD;~~AAvKD~~,~~8BAuKC~~"}
1	+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/telemetry/index.ts"],"names":[],"mappings":";;;AAGA,gEAAiE;AACjE,+CAAwD;AACxD,uCAAwC;AACxC,sCAAsC;AA+BtC,MAAa,SAAS;IAmBrB,YAAY,UAAkB,EAAE,UAAkB;QAV1C,0BAAqB,GAAsB;YAClD,MAAM,EAAE,EAAE;YACV,eAAe,EAAE;gBAChB,kBAAkB,EAAE,SAAS;gBAC7B,oBAAoB,EAAE,SAAS;gBAC/B,gBAAgB,EAAE,SAAS;gBAC3B,kBAAkB,EAAE,SAAS;aAC7B;SACD,CAAC;QAGD,IAAI,CAAC,UAAU,GAAG,UAAU,CAAC;QAC7B,IAAI,CAAC,UAAU,GAAG,UAAU,CAAC;QAE7B,MAAM,OAAO,GAAG,MAAM,CAAC,GAAG,CAAC,qBAAqB,CAAY,CAAC;QAC7D,MAAM,QAAQ,GAAG,MAAM,CAAC,GAAG,CAAC,YAAY,CAAY,CAAC;QACrD,IAAI,OAAO,EAAE;YACZ,MAAM,IAAI,GAAG,MAAM,CAAC,GAAG,CAAC,4BAA4B,CAAW,CAAC;YAChE,MAAM,CAAC,GAAG,EAAE,GAAG,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YAEnC,IAAI,CAAC,GAAG,IAAI,CAAC,GAAG,EAAE;gBACjB,MAAM,MAAM,GAAG,kBAAS,EAAE,CAAC;gBAC3B,0BAAW,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;gBACzB,MAAM,CAAC,IAAI,CAAC,uCAAuC,CAAC,CAAC;gBACrD,OAAO;aACP;YAED,IAAI,CAAC,MAAM,GAAG,IAAI,eAAe,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE,QAAQ,EAAE,CAAC,CAAC;YAE1D,IAAI,CAAC,sBAAsB,GAAG,WAAW,CAAC,KAAK,IAAI,EAAE;gBACpD,KAAK,IAAI,CAAC,KAAK,EAAE,CAAC;YACnB,CAAC,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;SACvB;IACF,CAAC;IAEO,KAAK,CAAC,KAAK;QAClB,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE;YACjB,OAAO,OAAO,CAAC,OAAO,EAAE,CAAC;SACzB;QAED,MAAM,WAAW,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC,CAAC,GAAG,CAAC,KAAK,EAAE,UAAU,EAAE,EAAE;YAC3F,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,0BAA0B,gCACpD,WAAW,EAAE,IAAI,CAAC,UAAU,EAC5B,WAAW,EAAE,UAAU,IACpB,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC,UAAU,CAAC,GAC7C,IAAI,CAAC,qBAAqB,CAAC,eAAe,EAC5C,CAAC;YAEH,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,kBAAkB,GAAG,CAAC,CAAC;YACrE,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,oBAAoB,GAAG,CAAC,CAAC;YACvE,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,gBAAgB,GAAG,CAAC,CAAC;YACnE,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,kBAAkB,GAAG,CAAC,CAAC;YAErE,OAAO,OAAO,CAAC;QAChB,CAAC,CAAC,CAAC;QAEH,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,OAAO,EAAE,EAAE,WAAW,EAAE,IAAI,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC;QACxE,OAAO,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;IACjC,CAAC;IAED,KAAK,CAAC,sBAAsB,CAAC,UAAuB;;QACnD,IAAI,IAAI,CAAC,MAAM,EAAE;YAChB,MAAM,UAAU,GAAG,UAAU,CAAC,WAAqB,CAAC;YACpD,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC,UAAU,CAAC,GAAG,MAAA,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAChF,UAAU,CACV,mCAAI;gBACJ,kBAAkB,EAAE,CAAC;gBACrB,oBAAoB,EAAE,CAAC;gBACvB,gBAAgB,EAAE,CAAC;gBACnB,kBAAkB,EAAE,CAAC;aACrB,CAAC;YAEF,IAAI,QAA4B,CAAC;YACjC,IAAI,YAAmC,CAAC;YAExC,IACC,UAAU,CAAC,OAAO,KAAK,KAAK;gBAC5B,UAAU,CAAC,eAAe;gBACzB,UAAU,CAAC,eAA0B,CAAC,UAAU,CAAC,gBAAgB,CAAC,EAClE;gBAED,KAAK,IAAI,CAAC,KAAK,CAAC,4BAA4B,EAAE,UAAU,CAAC,CAAC;gBAE1D,IAAI,UAAU,CAAC,SAAS,EAAE;oBACzB,YAAY,GAAG,oBAAoB,CAAC;oBACpC,QAAQ,GAAG,oBAAoB,CAAC;iBAChC;qBAAM;oBACN,YAAY,GAAG,kBAAkB,CAAC;oBAClC,QAAQ,GAAG,kBAAkB,CAAC;iBAC9B;aACD;iBAAM,IAAI,UAAU,CAAC,SAAS,EAAE;gBAChC,QAAQ,GAAG,sBAAsB,CAAC;gBAClC,YAAY,GAAG,sBAAsB,CAAC;aACtC;iBAAM;gBACN,QAAQ,GAAG,oBAAoB,CAAC;gBAChC,YAAY,GAAG,oBAAoB,CAAC;aACpC;YAED,IACC,CAAC,IAAI,CAAC,qBAAqB,CAAC,eAAe,CAAC,YAAY,CAAC;gBACzD,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,EAC5D;gBACD,IAAI,CAAC,qBAAqB,CAAC,eAAe,CAAC,YAAY,CAAC,GAAG,IAAI,IAAI,EAAE,CAAC;aACtE;YAED,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC;SAC1D;IACF,CAAC;IAED,KAAK,CAAC,YAAY;QACjB,aAAa,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;QAC3C,KAAK,IAAI,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC;QACzC,OAAO,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,EAAE;YACpC,IAAI,IAAI,CAAC,MAAM,EAAE;gBAChB,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;aAC3B;iBAAM;gBACN,OAAO,EAAE,CAAC;aACV;QACF,CAAC,CAAC,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,MAAoB;QAClC,OAAO,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,EAAE;YACpC,IAAI,IAAI,CAAC,MAAM,EAAE;gBAChB,IAAI,CAAC,MAAM,CAAC,QAAQ,CACnB;oBACC,MAAM,EAAE,IAAI,CAAC,UAAU;oBACvB,WAAW,EAAE,cAAc;oBAC3B,MAAM,kCACF,MAAM,KACT,UAAU,EAAE,IAAI,CAAC,UAAU,GAC3B;iBACD,EACD,OAAO,CACP,CAAC;aACF;iBAAM;gBACN,OAAO,EAAE,CAAC;aACV;QACF,CAAC,CAAC,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,KAAK,CACV,SAAiB,EACjB,aAA2D,EAAE;QAE7D,OAAO,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,EAAE;YACpC,IAAI,IAAI,CAAC,MAAM,EAAE;gBAChB,MAAM,EAAE,OAAO,EAAE,GAAG,UAAU,CAAC;gBAC/B,MAAM,CAAC,MAAM,CAAC,UAAU,EAAE,EAAE,WAAW,EAAE,IAAI,CAAC,UAAU,EAAE,CAAC,CAAC;gBAC5D,IAAI,CAAC,MAAM,CAAC,KAAK,CAChB;oBACC,MAAM,EAAE,GAAG,IAAI,CAAC,UAAU,GAAG,OAAO,CAAC,CAAC,CAAC,IAAI,OAAO,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE;oBAC3D,WAAW,EAAE,cAAc;oBAC3B,KAAK,EAAE,SAAS;oBAChB,UAAU;iBACV,EACD,OAAO,CACP,CAAC;aACF;iBAAM;gBACN,OAAO,EAAE,CAAC;aACV;QACF,CAAC,CAAC,CAAC;IACJ,CAAC;CACD;AA5KD,8BA4KC"}

package/dist/test/{CredentialsHelper.test.d.ts → integration/auth.endpoints.test.d.ts} RENAMED Viewed

File without changes

package/dist/test/integration/auth.endpoints.test.js ADDED Viewed

@@ -0,0 +1,99 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const bcryptjs_1 = require("bcryptjs");
+const validator_1 = require("validator");
+const uuid_1 = require("uuid");
+const config = require("../../config");
+const utils = require("./shared/utils");
+const constants_1 = require("./shared/constants");
+const src_1 = require("../../src");
+const random_1 = require("./shared/random");
+const testDb_1 = require("./shared/testDb");
+const testDb = require("./shared/testDb");
+let globalOwnerRole;
+let app;
+let testDbName = '';
+beforeAll(async () => {
+    app = utils.initTestServer({ endpointGroups: ['auth'], applyAuth: true });
+    const initResult = await testDb.init();
+    testDbName = initResult.testDbName;
+    await testDb.truncate(['User'], testDbName);
+    globalOwnerRole = await testDb_1.getGlobalOwnerRole();
+    utils.initTestLogger();
+    utils.initTestTelemetry();
+});
+beforeEach(async () => {
+    await testDb.createUser({
+        id: uuid_1.v4(),
+        email: TEST_USER.email,
+        firstName: TEST_USER.firstName,
+        lastName: TEST_USER.lastName,
+        password: bcryptjs_1.hashSync(TEST_USER.password, bcryptjs_1.genSaltSync(10)),
+        globalRole: globalOwnerRole,
+    });
+    config.set('userManagement.isInstanceOwnerSetUp', true);
+    await src_1.Db.collections.Settings.update({ key: 'userManagement.isInstanceOwnerSetUp' }, { value: JSON.stringify(true) });
+});
+afterEach(async () => {
+    await testDb.truncate(['User'], testDbName);
+});
+afterAll(async () => {
+    await testDb.terminate(testDbName);
+});
+test('POST /login should log user in', async () => {
+    const authlessAgent = utils.createAgent(app);
+    const response = await authlessAgent.post('/login').send({
+        email: TEST_USER.email,
+        password: TEST_USER.password,
+    });
+    expect(response.statusCode).toBe(200);
+    const { id, email, firstName, lastName, password, personalizationAnswers, globalRole, resetPasswordToken, } = response.body.data;
+    expect(validator_1.default.isUUID(id)).toBe(true);
+    expect(email).toBe(TEST_USER.email);
+    expect(firstName).toBe(TEST_USER.firstName);
+    expect(lastName).toBe(TEST_USER.lastName);
+    expect(password).toBeUndefined();
+    expect(personalizationAnswers).toBeNull();
+    expect(password).toBeUndefined();
+    expect(resetPasswordToken).toBeUndefined();
+    expect(globalRole).toBeDefined();
+    expect(globalRole.name).toBe('owner');
+    expect(globalRole.scope).toBe('global');
+    const authToken = utils.getAuthToken(response);
+    expect(authToken).toBeDefined();
+});
+test('GET /login should receive logged in user', async () => {
+    const owner = await src_1.Db.collections.User.findOneOrFail();
+    const authOwnerAgent = utils.createAgent(app, { auth: true, user: owner });
+    const response = await authOwnerAgent.get('/login');
+    expect(response.statusCode).toBe(200);
+    const { id, email, firstName, lastName, password, personalizationAnswers, globalRole, resetPasswordToken, } = response.body.data;
+    expect(validator_1.default.isUUID(id)).toBe(true);
+    expect(email).toBe(TEST_USER.email);
+    expect(firstName).toBe(TEST_USER.firstName);
+    expect(lastName).toBe(TEST_USER.lastName);
+    expect(password).toBeUndefined();
+    expect(personalizationAnswers).toBeNull();
+    expect(password).toBeUndefined();
+    expect(resetPasswordToken).toBeUndefined();
+    expect(globalRole).toBeDefined();
+    expect(globalRole.name).toBe('owner');
+    expect(globalRole.scope).toBe('global');
+    expect(response.headers['set-cookie']).toBeUndefined();
+});
+test('POST /logout should log user out', async () => {
+    const owner = await src_1.Db.collections.User.findOneOrFail();
+    const authOwnerAgent = utils.createAgent(app, { auth: true, user: owner });
+    const response = await authOwnerAgent.post('/logout');
+    expect(response.statusCode).toBe(200);
+    expect(response.body).toEqual(constants_1.LOGGED_OUT_RESPONSE_BODY);
+    const authToken = utils.getAuthToken(response);
+    expect(authToken).toBeUndefined();
+});
+const TEST_USER = {
+    email: random_1.randomEmail(),
+    password: random_1.randomValidPassword(),
+    firstName: random_1.randomName(),
+    lastName: random_1.randomName(),
+};
+//# sourceMappingURL=auth.endpoints.test.js.map

package/dist/test/integration/auth.endpoints.test.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"auth.endpoints.test.js","sourceRoot":"","sources":["../../../test/integration/auth.endpoints.test.ts"],"names":[],"mappings":";;AAAA,uCAAiD;AAEjD,yCAAkC;AAClC,+BAAkC;AAElC,uCAAwC;AACxC,wCAAwC;AACxC,kDAA8D;AAC9D,mCAA+B;AAE/B,4CAA+E;AAC/E,4CAAqD;AACrD,0CAA0C;AAE1C,IAAI,eAAqB,CAAC;AAE1B,IAAI,GAAwB,CAAC;AAC7B,IAAI,UAAU,GAAG,EAAE,CAAC;AAEpB,SAAS,CAAC,KAAK,IAAI,EAAE;IACpB,GAAG,GAAG,KAAK,CAAC,cAAc,CAAC,EAAE,cAAc,EAAE,CAAC,MAAM,CAAC,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAC1E,MAAM,UAAU,GAAG,MAAM,MAAM,CAAC,IAAI,EAAE,CAAC;IACvC,UAAU,GAAG,UAAU,CAAC,UAAU,CAAC;IAEnC,MAAM,MAAM,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,EAAE,UAAU,CAAC,CAAC;IAE5C,eAAe,GAAG,MAAM,2BAAkB,EAAE,CAAC;IAC7C,KAAK,CAAC,cAAc,EAAE,CAAC;IACvB,KAAK,CAAC,iBAAiB,EAAE,CAAC;AAC3B,CAAC,CAAC,CAAC;AAEH,UAAU,CAAC,KAAK,IAAI,EAAE;IACrB,MAAM,MAAM,CAAC,UAAU,CAAC;QACvB,EAAE,EAAE,SAAI,EAAE;QACV,KAAK,EAAE,SAAS,CAAC,KAAK;QACtB,SAAS,EAAE,SAAS,CAAC,SAAS;QAC9B,QAAQ,EAAE,SAAS,CAAC,QAAQ;QAC5B,QAAQ,EAAE,mBAAQ,CAAC,SAAS,CAAC,QAAQ,EAAE,sBAAW,CAAC,EAAE,CAAC,CAAC;QACvD,UAAU,EAAE,eAAe;KAC3B,CAAC,CAAC;IAEH,MAAM,CAAC,GAAG,CAAC,qCAAqC,EAAE,IAAI,CAAC,CAAC;IAExD,MAAM,QAAE,CAAC,WAAW,CAAC,QAAS,CAAC,MAAM,CACpC,EAAE,GAAG,EAAE,qCAAqC,EAAE,EAC9C,EAAE,KAAK,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,CAC/B,CAAC;AACH,CAAC,CAAC,CAAC;AAEH,SAAS,CAAC,KAAK,IAAI,EAAE;IACpB,MAAM,MAAM,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,EAAE,UAAU,CAAC,CAAC;AAC7C,CAAC,CAAC,CAAC;AAEH,QAAQ,CAAC,KAAK,IAAI,EAAE;IACnB,MAAM,MAAM,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;AACpC,CAAC,CAAC,CAAC;AAEH,IAAI,CAAC,gCAAgC,EAAE,KAAK,IAAI,EAAE;IACjD,MAAM,aAAa,GAAG,KAAK,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC;IAE7C,MAAM,QAAQ,GAAG,MAAM,aAAa,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC;QACxD,KAAK,EAAE,SAAS,CAAC,KAAK;QACtB,QAAQ,EAAE,SAAS,CAAC,QAAQ;KAC5B,CAAC,CAAC;IAEH,MAAM,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAEtC,MAAM,EACL,EAAE,EACF,KAAK,EACL,SAAS,EACT,QAAQ,EACR,QAAQ,EACR,sBAAsB,EACtB,UAAU,EACV,kBAAkB,GAClB,GAAG,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC;IAEvB,MAAM,CAAC,mBAAS,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACxC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;IACpC,MAAM,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC;IAC5C,MAAM,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;IAC1C,MAAM,CAAC,QAAQ,CAAC,CAAC,aAAa,EAAE,CAAC;IACjC,MAAM,CAAC,sBAAsB,CAAC,CAAC,QAAQ,EAAE,CAAC;IAC1C,MAAM,CAAC,QAAQ,CAAC,CAAC,aAAa,EAAE,CAAC;IACjC,MAAM,CAAC,kBAAkB,CAAC,CAAC,aAAa,EAAE,CAAC;IAC3C,MAAM,CAAC,UAAU,CAAC,CAAC,WAAW,EAAE,CAAC;IACjC,MAAM,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IACtC,MAAM,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IAExC,MAAM,SAAS,GAAG,KAAK,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC;IAC/C,MAAM,CAAC,SAAS,CAAC,CAAC,WAAW,EAAE,CAAC;AACjC,CAAC,CAAC,CAAC;AAEH,IAAI,CAAC,0CAA0C,EAAE,KAAK,IAAI,EAAE;IAC3D,MAAM,KAAK,GAAG,MAAM,QAAE,CAAC,WAAW,CAAC,IAAK,CAAC,aAAa,EAAE,CAAC;IACzD,MAAM,cAAc,GAAG,KAAK,CAAC,WAAW,CAAC,GAAG,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;IAE3E,MAAM,QAAQ,GAAG,MAAM,cAAc,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;IAEpD,MAAM,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAEtC,MAAM,EACL,EAAE,EACF,KAAK,EACL,SAAS,EACT,QAAQ,EACR,QAAQ,EACR,sBAAsB,EACtB,UAAU,EACV,kBAAkB,GAClB,GAAG,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC;IAEvB,MAAM,CAAC,mBAAS,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACxC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;IACpC,MAAM,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC;IAC5C,MAAM,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;IAC1C,MAAM,CAAC,QAAQ,CAAC,CAAC,aAAa,EAAE,CAAC;IACjC,MAAM,CAAC,sBAAsB,CAAC,CAAC,QAAQ,EAAE,CAAC;IAC1C,MAAM,CAAC,QAAQ,CAAC,CAAC,aAAa,EAAE,CAAC;IACjC,MAAM,CAAC,kBAAkB,CAAC,CAAC,aAAa,EAAE,CAAC;IAC3C,MAAM,CAAC,UAAU,CAAC,CAAC,WAAW,EAAE,CAAC;IACjC,MAAM,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IACtC,MAAM,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IAExC,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC,CAAC,aAAa,EAAE,CAAC;AACxD,CAAC,CAAC,CAAC;AAEH,IAAI,CAAC,kCAAkC,EAAE,KAAK,IAAI,EAAE;IACnD,MAAM,KAAK,GAAG,MAAM,QAAE,CAAC,WAAW,CAAC,IAAK,CAAC,aAAa,EAAE,CAAC;IACzD,MAAM,cAAc,GAAG,KAAK,CAAC,WAAW,CAAC,GAAG,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;IAE3E,MAAM,QAAQ,GAAG,MAAM,cAAc,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IAEtD,MAAM,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IACtC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,oCAAwB,CAAC,CAAC;IAExD,MAAM,SAAS,GAAG,KAAK,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC;IAC/C,MAAM,CAAC,SAAS,CAAC,CAAC,aAAa,EAAE,CAAC;AACnC,CAAC,CAAC,CAAC;AAEH,MAAM,SAAS,GAAG;IACjB,KAAK,EAAE,oBAAW,EAAE;IACpB,QAAQ,EAAE,4BAAmB,EAAE;IAC/B,SAAS,EAAE,mBAAU,EAAE;IACvB,QAAQ,EAAE,mBAAU,EAAE;CACtB,CAAC"}

package/dist/test/integration/auth.middleware.test.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export {};

package/dist/test/integration/auth.middleware.test.js ADDED Viewed

@@ -0,0 +1,46 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const request = require("supertest");
+const constants_1 = require("./shared/constants");
+const utils = require("./shared/utils");
+const testDb = require("./shared/testDb");
+let app;
+let testDbName = '';
+beforeAll(async () => {
+    app = utils.initTestServer({
+        applyAuth: true,
+        endpointGroups: ['me', 'auth', 'owner', 'users'],
+    });
+    const initResult = await testDb.init();
+    testDbName = initResult.testDbName;
+    utils.initTestLogger();
+    utils.initTestTelemetry();
+});
+afterAll(async () => {
+    await testDb.terminate(testDbName);
+});
+constants_1.ROUTES_REQUIRING_AUTHENTICATION.concat(constants_1.ROUTES_REQUIRING_AUTHORIZATION).forEach((route) => {
+    const [method, endpoint] = getMethodAndEndpoint(route);
+    test(`${route} should return 401 Unauthorized if no cookie`, async () => {
+        const response = await request(app)[method](endpoint).use(utils.prefix(constants_1.REST_PATH_SEGMENT));
+        expect(response.statusCode).toBe(401);
+    });
+});
+constants_1.ROUTES_REQUIRING_AUTHORIZATION.forEach(async (route) => {
+    const [method, endpoint] = getMethodAndEndpoint(route);
+    test(`${route} should return 403 Forbidden for member`, async () => {
+        const member = await testDb.createUser();
+        const authMemberAgent = utils.createAgent(app, { auth: true, user: member });
+        const response = await authMemberAgent[method](endpoint);
+        if (response.statusCode === 500) {
+            console.log(response);
+        }
+        expect(response.statusCode).toBe(403);
+    });
+});
+function getMethodAndEndpoint(route) {
+    return route.split(' ').map((segment, index) => {
+        return index % 2 === 0 ? segment.toLowerCase() : segment;
+    });
+}
+//# sourceMappingURL=auth.middleware.test.js.map

package/dist/test/integration/auth.middleware.test.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"auth.middleware.test.js","sourceRoot":"","sources":["../../../test/integration/auth.middleware.test.ts"],"names":[],"mappings":";;AACA,qCAAqC;AACrC,kDAI4B;AAE5B,wCAAwC;AACxC,0CAA0C;AAE1C,IAAI,GAAwB,CAAC;AAC7B,IAAI,UAAU,GAAG,EAAE,CAAC;AAEpB,SAAS,CAAC,KAAK,IAAI,EAAE;IACpB,GAAG,GAAG,KAAK,CAAC,cAAc,CAAC;QAC1B,SAAS,EAAE,IAAI;QACf,cAAc,EAAE,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,CAAC;KAChD,CAAC,CAAC;IACH,MAAM,UAAU,GAAG,MAAM,MAAM,CAAC,IAAI,EAAE,CAAC;IACvC,UAAU,GAAG,UAAU,CAAC,UAAU,CAAC;IACnC,KAAK,CAAC,cAAc,EAAE,CAAC;IACvB,KAAK,CAAC,iBAAiB,EAAE,CAAC;AAC3B,CAAC,CAAC,CAAC;AAEH,QAAQ,CAAC,KAAK,IAAI,EAAE;IACnB,MAAM,MAAM,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;AACpC,CAAC,CAAC,CAAC;AAEH,2CAA+B,CAAC,MAAM,CAAC,0CAA8B,CAAC,CAAC,OAAO,CAAC,CAAC,KAAK,EAAE,EAAE;IACxF,MAAM,CAAC,MAAM,EAAE,QAAQ,CAAC,GAAG,oBAAoB,CAAC,KAAK,CAAC,CAAC;IAEvD,IAAI,CAAC,GAAG,KAAK,8CAA8C,EAAE,KAAK,IAAI,EAAE;QACvE,MAAM,QAAQ,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,6BAAiB,CAAC,CAAC,CAAC;QAE3F,MAAM,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IACvC,CAAC,CAAC,CAAC;AACJ,CAAC,CAAC,CAAC;AAEH,0CAA8B,CAAC,OAAO,CAAC,KAAK,EAAE,KAAK,EAAE,EAAE;IACtD,MAAM,CAAC,MAAM,EAAE,QAAQ,CAAC,GAAG,oBAAoB,CAAC,KAAK,CAAC,CAAC;IAEvD,IAAI,CAAC,GAAG,KAAK,yCAAyC,EAAE,KAAK,IAAI,EAAE;QAClE,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,UAAU,EAAE,CAAC;QACzC,MAAM,eAAe,GAAG,KAAK,CAAC,WAAW,CAAC,GAAG,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,CAAC;QAC7E,MAAM,QAAQ,GAAG,MAAM,eAAe,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,CAAC;QACzD,IAAI,QAAQ,CAAC,UAAU,KAAK,GAAG,EAAE;YAChC,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;SACtB;QAED,MAAM,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IACvC,CAAC,CAAC,CAAC;AACJ,CAAC,CAAC,CAAC;AAEH,SAAS,oBAAoB,CAAC,KAAa;IAC1C,OAAO,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,OAAO,EAAE,KAAK,EAAE,EAAE;QAC9C,OAAO,KAAK,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC;IAC1D,CAAC,CAAC,CAAC;AACJ,CAAC"}

package/dist/test/integration/credentials.api.test.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export {};

package/dist/test/integration/credentials.api.test.js ADDED Viewed

@@ -0,0 +1,401 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const n8n_core_1 = require("n8n-core");
+const src_1 = require("../../src");
+const random_1 = require("./shared/random");
+const utils = require("./shared/utils");
+const testDb = require("./shared/testDb");
+let app;
+let testDbName = '';
+let saveCredential;
+beforeAll(async () => {
+    app = utils.initTestServer({
+        endpointGroups: ['credentials'],
+        applyAuth: true,
+    });
+    const initResult = await testDb.init();
+    testDbName = initResult.testDbName;
+    utils.initConfigFile();
+    const credentialOwnerRole = await testDb.getCredentialOwnerRole();
+    saveCredential = affixRoleToSaveCredential(credentialOwnerRole);
+    utils.initTestTelemetry();
+});
+beforeEach(async () => {
+    await testDb.createOwnerShell();
+});
+afterEach(async () => {
+    await testDb.truncate(['SharedCredentials'], testDbName);
+    await testDb.truncate(['User', 'Credentials'], testDbName);
+});
+afterAll(async () => {
+    await testDb.terminate(testDbName);
+});
+test('POST /credentials should create cred', async () => {
+    const owner = await src_1.Db.collections.User.findOneOrFail();
+    const authOwnerAgent = utils.createAgent(app, { auth: true, user: owner });
+    const payload = credentialPayload();
+    const response = await authOwnerAgent.post('/credentials').send(payload);
+    expect(response.statusCode).toBe(200);
+    const { id, name, type, nodesAccess, data: encryptedData } = response.body.data;
+    expect(name).toBe(payload.name);
+    expect(type).toBe(payload.type);
+    expect(nodesAccess[0].nodeType).toBe(payload.nodesAccess[0].nodeType);
+    expect(encryptedData).not.toBe(payload.data);
+    const credential = await src_1.Db.collections.Credentials.findOneOrFail(id);
+    expect(credential.name).toBe(payload.name);
+    expect(credential.type).toBe(payload.type);
+    expect(credential.nodesAccess[0].nodeType).toBe(payload.nodesAccess[0].nodeType);
+    expect(credential.data).not.toBe(payload.data);
+    const sharedCredential = await src_1.Db.collections.SharedCredentials.findOneOrFail({
+        relations: ['user', 'credentials'],
+        where: { credentials: credential },
+    });
+    expect(sharedCredential.user.id).toBe(owner.id);
+    expect(sharedCredential.credentials.name).toBe(payload.name);
+});
+test('POST /credentials should fail with invalid inputs', async () => {
+    const owner = await src_1.Db.collections.User.findOneOrFail();
+    const authOwnerAgent = utils.createAgent(app, { auth: true, user: owner });
+    for (const invalidPayload of INVALID_PAYLOADS) {
+        const response = await authOwnerAgent.post('/credentials').send(invalidPayload);
+        expect(response.statusCode).toBe(400);
+    }
+});
+test('POST /credentials should fail with missing encryption key', async () => {
+    const mock = jest.spyOn(n8n_core_1.UserSettings, 'getEncryptionKey');
+    mock.mockResolvedValue(undefined);
+    const owner = await src_1.Db.collections.User.findOneOrFail();
+    const authOwnerAgent = utils.createAgent(app, { auth: true, user: owner });
+    const response = await authOwnerAgent.post('/credentials').send(credentialPayload());
+    expect(response.statusCode).toBe(500);
+    mock.mockRestore();
+});
+test('POST /credentials should ignore ID in payload', async () => {
+    const owner = await src_1.Db.collections.User.findOneOrFail();
+    const authOwnerAgent = utils.createAgent(app, { auth: true, user: owner });
+    const firstResponse = await authOwnerAgent
+        .post('/credentials')
+        .send(Object.assign({ id: '8' }, credentialPayload()));
+    expect(firstResponse.body.data.id).not.toBe('8');
+    const secondResponse = await authOwnerAgent
+        .post('/credentials')
+        .send(Object.assign({ id: 8 }, credentialPayload()));
+    expect(secondResponse.body.data.id).not.toBe(8);
+});
+test('DELETE /credentials/:id should delete owned cred for owner', async () => {
+    const owner = await src_1.Db.collections.User.findOneOrFail();
+    const authOwnerAgent = utils.createAgent(app, { auth: true, user: owner });
+    const savedCredential = await saveCredential(credentialPayload(), { user: owner });
+    const response = await authOwnerAgent.delete(`/credentials/${savedCredential.id}`);
+    expect(response.statusCode).toBe(200);
+    expect(response.body).toEqual({ data: true });
+    const deletedCredential = await src_1.Db.collections.Credentials.findOne(savedCredential.id);
+    expect(deletedCredential).toBeUndefined();
+    const deletedSharedCredential = await src_1.Db.collections.SharedCredentials.findOne();
+    expect(deletedSharedCredential).toBeUndefined();
+});
+test('DELETE /credentials/:id should delete non-owned cred for owner', async () => {
+    const owner = await src_1.Db.collections.User.findOneOrFail();
+    const authOwnerAgent = utils.createAgent(app, { auth: true, user: owner });
+    const member = await testDb.createUser();
+    const savedCredential = await saveCredential(credentialPayload(), { user: member });
+    const response = await authOwnerAgent.delete(`/credentials/${savedCredential.id}`);
+    expect(response.statusCode).toBe(200);
+    expect(response.body).toEqual({ data: true });
+    const deletedCredential = await src_1.Db.collections.Credentials.findOne(savedCredential.id);
+    expect(deletedCredential).toBeUndefined();
+    const deletedSharedCredential = await src_1.Db.collections.SharedCredentials.findOne();
+    expect(deletedSharedCredential).toBeUndefined();
+});
+test('DELETE /credentials/:id should delete owned cred for member', async () => {
+    const member = await testDb.createUser();
+    const authMemberAgent = utils.createAgent(app, { auth: true, user: member });
+    const savedCredential = await saveCredential(credentialPayload(), { user: member });
+    const response = await authMemberAgent.delete(`/credentials/${savedCredential.id}`);
+    expect(response.statusCode).toBe(200);
+    expect(response.body).toEqual({ data: true });
+    const deletedCredential = await src_1.Db.collections.Credentials.findOne(savedCredential.id);
+    expect(deletedCredential).toBeUndefined();
+    const deletedSharedCredential = await src_1.Db.collections.SharedCredentials.findOne();
+    expect(deletedSharedCredential).toBeUndefined();
+});
+test('DELETE /credentials/:id should not delete non-owned cred for member', async () => {
+    const owner = await src_1.Db.collections.User.findOneOrFail();
+    const member = await testDb.createUser();
+    const authMemberAgent = utils.createAgent(app, { auth: true, user: member });
+    const savedCredential = await saveCredential(credentialPayload(), { user: owner });
+    const response = await authMemberAgent.delete(`/credentials/${savedCredential.id}`);
+    expect(response.statusCode).toBe(404);
+    const shellCredential = await src_1.Db.collections.Credentials.findOne(savedCredential.id);
+    expect(shellCredential).toBeDefined();
+    const deletedSharedCredential = await src_1.Db.collections.SharedCredentials.findOne();
+    expect(deletedSharedCredential).toBeDefined();
+});
+test('DELETE /credentials/:id should fail if cred not found', async () => {
+    const owner = await src_1.Db.collections.User.findOneOrFail();
+    const authOwnerAgent = utils.createAgent(app, { auth: true, user: owner });
+    const response = await authOwnerAgent.delete('/credentials/123');
+    expect(response.statusCode).toBe(404);
+});
+test('PATCH /credentials/:id should update owned cred for owner', async () => {
+    const owner = await src_1.Db.collections.User.findOneOrFail();
+    const authOwnerAgent = utils.createAgent(app, { auth: true, user: owner });
+    const savedCredential = await saveCredential(credentialPayload(), { user: owner });
+    const patchPayload = credentialPayload();
+    const response = await authOwnerAgent
+        .patch(`/credentials/${savedCredential.id}`)
+        .send(patchPayload);
+    expect(response.statusCode).toBe(200);
+    const { id, name, type, nodesAccess, data: encryptedData } = response.body.data;
+    expect(name).toBe(patchPayload.name);
+    expect(type).toBe(patchPayload.type);
+    expect(nodesAccess[0].nodeType).toBe(patchPayload.nodesAccess[0].nodeType);
+    expect(encryptedData).not.toBe(patchPayload.data);
+    const credential = await src_1.Db.collections.Credentials.findOneOrFail(id);
+    expect(credential.name).toBe(patchPayload.name);
+    expect(credential.type).toBe(patchPayload.type);
+    expect(credential.nodesAccess[0].nodeType).toBe(patchPayload.nodesAccess[0].nodeType);
+    expect(credential.data).not.toBe(patchPayload.data);
+    const sharedCredential = await src_1.Db.collections.SharedCredentials.findOneOrFail({
+        relations: ['credentials'],
+        where: { credentials: credential },
+    });
+    expect(sharedCredential.credentials.name).toBe(patchPayload.name);
+});
+test('PATCH /credentials/:id should update non-owned cred for owner', async () => {
+    const owner = await src_1.Db.collections.User.findOneOrFail();
+    const authOwnerAgent = utils.createAgent(app, { auth: true, user: owner });
+    const member = await testDb.createUser();
+    const savedCredential = await saveCredential(credentialPayload(), { user: member });
+    const patchPayload = credentialPayload();
+    const response = await authOwnerAgent
+        .patch(`/credentials/${savedCredential.id}`)
+        .send(patchPayload);
+    expect(response.statusCode).toBe(200);
+    const { id, name, type, nodesAccess, data: encryptedData } = response.body.data;
+    expect(name).toBe(patchPayload.name);
+    expect(type).toBe(patchPayload.type);
+    expect(nodesAccess[0].nodeType).toBe(patchPayload.nodesAccess[0].nodeType);
+    expect(encryptedData).not.toBe(patchPayload.data);
+    const credential = await src_1.Db.collections.Credentials.findOneOrFail(id);
+    expect(credential.name).toBe(patchPayload.name);
+    expect(credential.type).toBe(patchPayload.type);
+    expect(credential.nodesAccess[0].nodeType).toBe(patchPayload.nodesAccess[0].nodeType);
+    expect(credential.data).not.toBe(patchPayload.data);
+    const sharedCredential = await src_1.Db.collections.SharedCredentials.findOneOrFail({
+        relations: ['credentials'],
+        where: { credentials: credential },
+    });
+    expect(sharedCredential.credentials.name).toBe(patchPayload.name);
+});
+test('PATCH /credentials/:id should update owned cred for member', async () => {
+    const member = await testDb.createUser();
+    const authMemberAgent = utils.createAgent(app, { auth: true, user: member });
+    const savedCredential = await saveCredential(credentialPayload(), { user: member });
+    const patchPayload = credentialPayload();
+    const response = await authMemberAgent
+        .patch(`/credentials/${savedCredential.id}`)
+        .send(patchPayload);
+    expect(response.statusCode).toBe(200);
+    const { id, name, type, nodesAccess, data: encryptedData } = response.body.data;
+    expect(name).toBe(patchPayload.name);
+    expect(type).toBe(patchPayload.type);
+    expect(nodesAccess[0].nodeType).toBe(patchPayload.nodesAccess[0].nodeType);
+    expect(encryptedData).not.toBe(patchPayload.data);
+    const credential = await src_1.Db.collections.Credentials.findOneOrFail(id);
+    expect(credential.name).toBe(patchPayload.name);
+    expect(credential.type).toBe(patchPayload.type);
+    expect(credential.nodesAccess[0].nodeType).toBe(patchPayload.nodesAccess[0].nodeType);
+    expect(credential.data).not.toBe(patchPayload.data);
+    const sharedCredential = await src_1.Db.collections.SharedCredentials.findOneOrFail({
+        relations: ['credentials'],
+        where: { credentials: credential },
+    });
+    expect(sharedCredential.credentials.name).toBe(patchPayload.name);
+});
+test('PATCH /credentials/:id should not update non-owned cred for member', async () => {
+    const owner = await src_1.Db.collections.User.findOneOrFail();
+    const member = await testDb.createUser();
+    const authMemberAgent = utils.createAgent(app, { auth: true, user: member });
+    const savedCredential = await saveCredential(credentialPayload(), { user: owner });
+    const patchPayload = credentialPayload();
+    const response = await authMemberAgent
+        .patch(`/credentials/${savedCredential.id}`)
+        .send(patchPayload);
+    expect(response.statusCode).toBe(404);
+    const shellCredential = await src_1.Db.collections.Credentials.findOneOrFail(savedCredential.id);
+    expect(shellCredential.name).not.toBe(patchPayload.name);
+});
+test('PATCH /credentials/:id should fail with invalid inputs', async () => {
+    const owner = await src_1.Db.collections.User.findOneOrFail();
+    const authOwnerAgent = utils.createAgent(app, { auth: true, user: owner });
+    const savedCredential = await saveCredential(credentialPayload(), { user: owner });
+    for (const invalidPayload of INVALID_PAYLOADS) {
+        const response = await authOwnerAgent
+            .patch(`/credentials/${savedCredential.id}`)
+            .send(invalidPayload);
+        expect(response.statusCode).toBe(400);
+    }
+});
+test('PATCH /credentials/:id should fail if cred not found', async () => {
+    const owner = await src_1.Db.collections.User.findOneOrFail();
+    const authOwnerAgent = utils.createAgent(app, { auth: true, user: owner });
+    const response = await authOwnerAgent.patch('/credentials/123').send(credentialPayload());
+    expect(response.statusCode).toBe(404);
+});
+test('PATCH /credentials/:id should fail with missing encryption key', async () => {
+    const mock = jest.spyOn(n8n_core_1.UserSettings, 'getEncryptionKey');
+    mock.mockResolvedValue(undefined);
+    const owner = await src_1.Db.collections.User.findOneOrFail();
+    const authOwnerAgent = utils.createAgent(app, { auth: true, user: owner });
+    const response = await authOwnerAgent.post('/credentials').send(credentialPayload());
+    expect(response.statusCode).toBe(500);
+    mock.mockRestore();
+});
+test('GET /credentials should retrieve all creds for owner', async () => {
+    const owner = await src_1.Db.collections.User.findOneOrFail();
+    const authOwnerAgent = utils.createAgent(app, { auth: true, user: owner });
+    for (let i = 0; i < 3; i++) {
+        await saveCredential(credentialPayload(), { user: owner });
+    }
+    const member = await testDb.createUser();
+    await saveCredential(credentialPayload(), { user: member });
+    const response = await authOwnerAgent.get('/credentials');
+    expect(response.statusCode).toBe(200);
+    expect(response.body.data.length).toBe(4);
+    for (const credential of response.body.data) {
+        const { name, type, nodesAccess, data: encryptedData } = credential;
+        expect(typeof name).toBe('string');
+        expect(typeof type).toBe('string');
+        expect(typeof nodesAccess[0].nodeType).toBe('string');
+        expect(encryptedData).toBeUndefined();
+    }
+});
+test('GET /credentials should retrieve owned creds for member', async () => {
+    const member = await testDb.createUser();
+    const authMemberAgent = utils.createAgent(app, { auth: true, user: member });
+    for (let i = 0; i < 3; i++) {
+        await saveCredential(credentialPayload(), { user: member });
+    }
+    const response = await authMemberAgent.get('/credentials');
+    expect(response.statusCode).toBe(200);
+    expect(response.body.data.length).toBe(3);
+    for (const credential of response.body.data) {
+        const { name, type, nodesAccess, data: encryptedData } = credential;
+        expect(typeof name).toBe('string');
+        expect(typeof type).toBe('string');
+        expect(typeof nodesAccess[0].nodeType).toBe('string');
+        expect(encryptedData).toBeUndefined();
+    }
+});
+test('GET /credentials should not retrieve non-owned creds for member', async () => {
+    const owner = await src_1.Db.collections.User.findOneOrFail();
+    const member = await testDb.createUser();
+    const authMemberAgent = utils.createAgent(app, { auth: true, user: member });
+    for (let i = 0; i < 3; i++) {
+        await saveCredential(credentialPayload(), { user: owner });
+    }
+    const response = await authMemberAgent.get('/credentials');
+    expect(response.statusCode).toBe(200);
+    expect(response.body.data.length).toBe(0);
+});
+test('GET /credentials/:id should retrieve owned cred for owner', async () => {
+    const owner = await src_1.Db.collections.User.findOneOrFail();
+    const authOwnerAgent = utils.createAgent(app, { auth: true, user: owner });
+    const savedCredential = await saveCredential(credentialPayload(), { user: owner });
+    const firstResponse = await authOwnerAgent.get(`/credentials/${savedCredential.id}`);
+    expect(firstResponse.statusCode).toBe(200);
+    expect(typeof firstResponse.body.data.name).toBe('string');
+    expect(typeof firstResponse.body.data.type).toBe('string');
+    expect(typeof firstResponse.body.data.nodesAccess[0].nodeType).toBe('string');
+    expect(firstResponse.body.data.data).toBeUndefined();
+    const secondResponse = await authOwnerAgent
+        .get(`/credentials/${savedCredential.id}`)
+        .query({ includeData: true });
+    expect(secondResponse.statusCode).toBe(200);
+    expect(typeof secondResponse.body.data.name).toBe('string');
+    expect(typeof secondResponse.body.data.type).toBe('string');
+    expect(typeof secondResponse.body.data.nodesAccess[0].nodeType).toBe('string');
+    expect(secondResponse.body.data.data).toBeDefined();
+});
+test('GET /credentials/:id should retrieve owned cred for member', async () => {
+    const member = await testDb.createUser();
+    const authMemberAgent = utils.createAgent(app, { auth: true, user: member });
+    const savedCredential = await saveCredential(credentialPayload(), { user: member });
+    const firstResponse = await authMemberAgent.get(`/credentials/${savedCredential.id}`);
+    expect(firstResponse.statusCode).toBe(200);
+    expect(typeof firstResponse.body.data.name).toBe('string');
+    expect(typeof firstResponse.body.data.type).toBe('string');
+    expect(typeof firstResponse.body.data.nodesAccess[0].nodeType).toBe('string');
+    expect(firstResponse.body.data.data).toBeUndefined();
+    const secondResponse = await authMemberAgent
+        .get(`/credentials/${savedCredential.id}`)
+        .query({ includeData: true });
+    expect(secondResponse.statusCode).toBe(200);
+    expect(typeof secondResponse.body.data.name).toBe('string');
+    expect(typeof secondResponse.body.data.type).toBe('string');
+    expect(typeof secondResponse.body.data.nodesAccess[0].nodeType).toBe('string');
+    expect(secondResponse.body.data.data).toBeDefined();
+});
+test('GET /credentials/:id should not retrieve non-owned cred for member', async () => {
+    const owner = await src_1.Db.collections.User.findOneOrFail();
+    const member = await testDb.createUser();
+    const authMemberAgent = utils.createAgent(app, { auth: true, user: member });
+    const savedCredential = await saveCredential(credentialPayload(), { user: owner });
+    const response = await authMemberAgent.get(`/credentials/${savedCredential.id}`);
+    expect(response.statusCode).toBe(404);
+    expect(response.body.data).toBeUndefined();
+});
+test('GET /credentials/:id should fail with missing encryption key', async () => {
+    const owner = await src_1.Db.collections.User.findOneOrFail();
+    const authOwnerAgent = utils.createAgent(app, { auth: true, user: owner });
+    const savedCredential = await saveCredential(credentialPayload(), { user: owner });
+    const mock = jest.spyOn(n8n_core_1.UserSettings, 'getEncryptionKey');
+    mock.mockResolvedValue(undefined);
+    const response = await authOwnerAgent
+        .get(`/credentials/${savedCredential.id}`)
+        .query({ includeData: true });
+    expect(response.statusCode).toBe(500);
+    mock.mockRestore();
+});
+test('GET /credentials/:id should return 404 if cred not found', async () => {
+    const owner = await src_1.Db.collections.User.findOneOrFail();
+    const authMemberAgent = utils.createAgent(app, { auth: true, user: owner });
+    const response = await authMemberAgent.get('/credentials/789');
+    expect(response.statusCode).toBe(404);
+});
+const credentialPayload = () => ({
+    name: random_1.randomName(),
+    type: random_1.randomName(),
+    nodesAccess: [{ nodeType: random_1.randomName() }],
+    data: { accessToken: random_1.randomString(6, 16) },
+});
+const INVALID_PAYLOADS = [
+    {
+        type: random_1.randomName(),
+        nodesAccess: [{ nodeType: random_1.randomName() }],
+        data: { accessToken: random_1.randomString(6, 16) },
+    },
+    {
+        name: random_1.randomName(),
+        nodesAccess: [{ nodeType: random_1.randomName() }],
+        data: { accessToken: random_1.randomString(6, 16) },
+    },
+    {
+        name: random_1.randomName(),
+        type: random_1.randomName(),
+        data: { accessToken: random_1.randomString(6, 16) },
+    },
+    {
+        name: random_1.randomName(),
+        type: random_1.randomName(),
+        nodesAccess: [{ nodeType: random_1.randomName() }],
+    },
+    {},
+    [],
+    undefined,
+];
+function affixRoleToSaveCredential(role) {
+    return (credentialPayload, { user }) => testDb.saveCredential(credentialPayload, { user, role });
+}
+//# sourceMappingURL=credentials.api.test.js.map