plum-e2e 2.4.2 → 2.4.4

package/backend/_scaffold/features/LoginPage.feature

@@ -1,4 +1,4 @@
-@suite-login
+@TS-001
 Feature: Demo Sauce Login
 
   # Background runs before every scenario in this file
@@ -6,14 +6,14 @@ Feature: Demo Sauce Login
     Given I am in Demo Sauce Login page
 
   # ── Basic Scenario ─────────────────────────────────────────────────────────
-  @test-1
+  @TC-001
   Scenario: User can log in with valid credentials
     When I enter "standard_user" in username field
     And I enter "secret_sauce" in password field
     And I click on the login button
     Then I should be navigated to the products page
 
-  @test-2
+  @TC-002
   Scenario: User cannot log in with invalid credentials
     When I enter "invalid_user" in username field
     And I enter "invalid_password" in password field
@@ -23,7 +23,7 @@ Feature: Demo Sauce Login
   # ── Scenario Outline ───────────────────────────────────────────────────────
   # Runs once per row in the Examples table.
   # Use <placeholder> in steps to reference column headers.
-  @test-3
+  @TC-003
   Scenario Outline: User login attempts with different credentials
     When I enter "<username>" in username field
     And I enter "<password>" in password field
@@ -39,7 +39,7 @@ Feature: Demo Sauce Login
   # ── Data Table ─────────────────────────────────────────────────────────────
   # Pass structured data directly into a step.
   # Access rows in your step definition via dataTable.hashes().
-  @test-4
+  @TC-004
   Scenario: User can log in using a data table
     When I fill in the login form:
       | field    | value         |

package/backend/middleware/jwtAuth.js

@@ -40,12 +40,24 @@ function jwtAuth(req, res, next) {
 	if (!auth || !auth.startsWith('Bearer ')) {
 		return res.status(401).json({ error: 'Unauthorized' });
 	}
+	let payload;
 	try {
-		req.user = verifyToken(auth.slice(7));
-		next();
+		payload = verifyToken(auth.slice(7));
 	} catch {
 		return res.status(401).json({ error: 'Invalid or expired token' });
 	}
+	// Confirm the user still exists — catches stale JWTs after a DB reset
+	prisma.user
+		.findUnique({ where: { id: payload.userId }, select: { id: true } })
+		.then((user) => {
+			if (!user) return res.status(401).json({ error: 'Session expired. Please log in again.' });
+			req.user = payload;
+			next();
+		})
+		.catch(() => {
+			req.user = payload;
+			next();
+		});
 }
 
 module.exports = { jwtAuth };

package/backend/routes/node.routes.js

@@ -25,6 +25,8 @@ const path = require('path');
 const { authGuard } = require('../middleware/auth');
 const { TRIGGER_REMOTE } = require('../constants/triggers');
 
+const BACKEND_DIR = path.resolve(__dirname, '..');
+
 // In-memory job store for active remote executions.
 // Jobs are purged after 10 minutes post-completion.
 const jobs = {};
@@ -84,7 +86,7 @@ router.post('/execute', authGuard, (req, res) => {
 	};
 	if (workers > 1) env.PARALLEL = String(workers);
 
-	const proc = spawn('npm', ['run', 'test'], { env, shell: true });
+	const proc = spawn('npm', ['run', 'test'], { env, shell: true, cwd: BACKEND_DIR });
 	proc.stdout.on('data', (d) => {
 		jobs[jobId].logs += d.toString();
 	});

package/backend/services/testCaseService.js

@@ -15,8 +15,24 @@
  * along with Plum. If not, see https://www.gnu.org/licenses/.
  */
 
+const fs = require('fs');
+const path = require('path');
 const prisma = require('./prisma');
 
+const FEATURES_DIR = path.join(__dirname, '../tests/features');
+
+function isTaggedInFeatures(displayId) {
+	try {
+		const tag = `@${displayId}`;
+		return fs
+			.readdirSync(FEATURES_DIR)
+			.filter((f) => f.endsWith('.feature'))
+			.some((f) => fs.readFileSync(path.join(FEATURES_DIR, f), 'utf8').includes(tag));
+	} catch {
+		return false;
+	}
+}
+
 const caseSelect = {
 	id: true,
 	displayId: true,
@@ -75,7 +91,8 @@ async function create({ suiteId, title, description, priority, createdById }) {
 			title,
 			description: description ?? '',
 			priority: priority ?? 'Medium',
-			createdById
+			createdById,
+			isAutomated: isTaggedInFeatures(displayId)
 		},
 		select: caseSelect
 	});

package/bin/plum.js

@@ -318,9 +318,9 @@ async function serverStart() {
 		}
 	}
 
-	clack.log.info(pc.dim('Streaming logs (Ctrl+C to detach — server keeps running):'));
-	execSync('docker compose logs -f', { cwd: plumRoot, stdio: 'inherit' });
-	clack.outro(pc.dim('Detached from logs. Run "docker compose down" to stop.'));
+	clack.log.info(`UI:  ${pc.cyan(`http://localhost:${cfg.frontendPort}`)}`);
+	clack.log.info(`API: ${pc.cyan(`http://localhost:${cfg.backendPort}`)}`);
+	clack.outro(pc.green('Plum is running. Use "plum server stop" to shut down.'));
 }
 
 async function serverReconfig() {

package/frontend/src/routes/settings/+page.svelte

@@ -578,16 +578,33 @@
 		2
 	);
 
-	$: navItems = [
-		{ id: 'project', label: 'Project' },
-		{ id: 'runners', label: 'Runners' },
-		{ id: 'repository', label: 'Repository' },
-		{ id: 'integrations', label: 'Integrations' },
-		{ id: 'mcp', label: 'MCP' },
-		{ id: 'account', label: 'Account' },
-		...($auth.user?.role === 'admin' ? [{ id: 'users', label: 'Users' }] : []),
-		{ id: 'backup', label: 'Backup' }
-	];
+	const ADMIN_SECTIONS = new Set([
+		'project',
+		'runners',
+		'repository',
+		'integrations',
+		'mcp',
+		'users',
+		'backup'
+	]);
+
+	$: if ($auth.user && $auth.user.role !== 'admin' && ADMIN_SECTIONS.has(section)) {
+		section = 'account';
+	}
+
+	$: navItems =
+		$auth.user?.role === 'admin'
+			? [
+					{ id: 'project', label: 'Project' },
+					{ id: 'runners', label: 'Runners' },
+					{ id: 'repository', label: 'Repository' },
+					{ id: 'integrations', label: 'Integrations' },
+					{ id: 'mcp', label: 'MCP' },
+					{ id: 'account', label: 'Account' },
+					{ id: 'users', label: 'Users' },
+					{ id: 'backup', label: 'Backup' }
+				]
+			: [{ id: 'account', label: 'Account' }];
 </script>
 
 <svelte:head><title>Settings — Plum</title></svelte:head>

package/package.json

@@ -1,6 +1,6 @@
 {
 	"name": "plum-e2e",
-	"version": "2.4.2",
+	"version": "2.4.4",
 	"repository": {
 		"type": "git",
 		"url": "https://github.com/silverlunah/plum.git"