overleaf/services/web/test/unit/src/User/ThirdPartyIdentityManagerTests.js

const sinon = require('sinon')
const chai = require('chai')
const { expect } = chai
const SandboxedModule = require('sandboxed-module')
const modulePath =
  '../../../../app/src/Features/User/ThirdPartyIdentityManager.js'

describe('ThirdPartyIdentityManager', function() {
  beforeEach(function() {
    this.userId = 'a1b2c3'
    this.user = {
      _id: this.userId,
      email: 'example@overleaf.com'
    }
    this.externalUserId = 'id789'
    this.externalData = {}
    this.ThirdPartyIdentityManager = SandboxedModule.require(modulePath, {
      globals: {
        console: console
      },
      requires: {
        '../../../../app/src/Features/Email/EmailHandler': (this.EmailHandler = {
          sendEmail: sinon.stub().yields()
        }),
        Errors: (this.Errors = {
          ThirdPartyIdentityExistsError: sinon.stub(),
          ThirdPartyUserNotFoundError: sinon.stub()
        }),
        'logger-sharelatex': (this.logger = {
          error: sinon.stub()
        }),
        '../../../../app/src/models/User': {
          User: (this.User = {
            findOneAndUpdate: sinon.stub().yields(undefined, this.user),
            findOne: sinon.stub()
          })
        },
        'settings-sharelatex': {
          oauthProviders: {
            google: {
              name: 'Google'
            },
            orcid: {
              name: 'Orcid'
            }
          }
        }
      }
    })
  })
  describe('link', function() {
    it('should send email alert', async function() {
      await this.ThirdPartyIdentityManager.promises.link(
        this.userId,
        'google',
        this.externalUserId,
        this.externalData
      )
      const emailCall = this.EmailHandler.sendEmail.getCall(0)
      expect(emailCall.args[0]).to.equal('securityAlert')
      expect(emailCall.args[1].actionDescribed).to.contain(
        'a Google account was linked'
      )
    })
    describe('errors', function() {
      const anError = new Error('oops')
      describe('EmailHandler', function() {
        beforeEach(function() {
          this.EmailHandler.sendEmail.yields(anError)
        })
        it('should log but not return the error', function(done) {
          this.ThirdPartyIdentityManager.link(
            this.userId,
            'google',
            this.externalUserId,
            this.externalData,
            error => {
              expect(error).to.not.exist
              const loggerCall = this.logger.error.getCall(0)
              expect(loggerCall.args[0]).to.deep.equal({
                error: anError,
                userId: this.userId
              })
              expect(loggerCall.args[1]).to.contain(
                'could not send security alert email when Google linked'
              )
              done()
            }
          )
        })
      })
    })
  })
  describe('unlink', function() {
    it('should send email alert', async function() {
      await this.ThirdPartyIdentityManager.promises.unlink(this.userId, 'orcid')
      const emailCall = this.EmailHandler.sendEmail.getCall(0)
      expect(emailCall.args[0]).to.equal('securityAlert')
      expect(emailCall.args[1].actionDescribed).to.contain(
        'an Orcid account is no longer linked'
      )
    })
    describe('errors', function() {
      const anError = new Error('oops')
      describe('EmailHandler', function() {
        beforeEach(function() {
          this.EmailHandler.sendEmail.yields(anError)
        })
        it('should log but not return the error', function(done) {
          this.ThirdPartyIdentityManager.unlink(
            this.userId,
            'google',
            error => {
              expect(error).to.not.exist
              const loggerCall = this.logger.error.getCall(0)
              expect(loggerCall.args[0]).to.deep.equal({
                error: anError,
                userId: this.userId
              })
              expect(loggerCall.args[1]).to.contain(
                'could not send security alert email when Google no longer linked'
              )
              done()
            }
          )
        })
      })
    })
  })
})
Merge pull request #2983 from overleaf/jel-security-emails Add security email template and switch institution SSO alerts to use it GitOrigin-RevId: c6f07655165e352527a9efbcfffc5bd2f635405c 2020-07-21 10:28:52 -04:00			`const sinon = require('sinon')`
			`const chai = require('chai')`
			`const { expect } = chai`
			`const SandboxedModule = require('sandboxed-module')`
			`const modulePath =`
			`'../../../../app/src/Features/User/ThirdPartyIdentityManager.js'`

			`describe('ThirdPartyIdentityManager', function() {`
			`beforeEach(function() {`
			`this.userId = 'a1b2c3'`
			`this.user = {`
			`_id: this.userId,`
			`email: 'example@overleaf.com'`
			`}`
			`this.externalUserId = 'id789'`
			`this.externalData = {}`
			`this.ThirdPartyIdentityManager = SandboxedModule.require(modulePath, {`
			`globals: {`
			`console: console`
			`},`
			`requires: {`
			`'../../../../app/src/Features/Email/EmailHandler': (this.EmailHandler = {`
			`sendEmail: sinon.stub().yields()`
			`}),`
			`Errors: (this.Errors = {`
			`ThirdPartyIdentityExistsError: sinon.stub(),`
			`ThirdPartyUserNotFoundError: sinon.stub()`
			`}),`
Merge pull request #3227 from overleaf/jel-security-email-alerts Move security alert handling to private function GitOrigin-RevId: a59b6b0802986b2caa9e9715d80225eb11b163a9 2020-09-29 10:05:12 -04:00			`'logger-sharelatex': (this.logger = {`
			`error: sinon.stub()`
			`}),`
Merge pull request #2983 from overleaf/jel-security-emails Add security email template and switch institution SSO alerts to use it GitOrigin-RevId: c6f07655165e352527a9efbcfffc5bd2f635405c 2020-07-21 10:28:52 -04:00			`'../../../../app/src/models/User': {`
			`User: (this.User = {`
			`findOneAndUpdate: sinon.stub().yields(undefined, this.user),`
			`findOne: sinon.stub()`
			`})`
			`},`
			`'settings-sharelatex': {`
			`oauthProviders: {`
			`google: {`
			`name: 'Google'`
			`},`
			`orcid: {`
			`name: 'Orcid'`
			`}`
			`}`
			`}`
			`}`
			`})`
			`})`
			`describe('link', function() {`
			`it('should send email alert', async function() {`
			`await this.ThirdPartyIdentityManager.promises.link(`
			`this.userId,`
			`'google',`
			`this.externalUserId,`
			`this.externalData`
			`)`
			`const emailCall = this.EmailHandler.sendEmail.getCall(0)`
			`expect(emailCall.args[0]).to.equal('securityAlert')`
			`expect(emailCall.args[1].actionDescribed).to.contain(`
			`'a Google account was linked'`
			`)`
			`})`
Merge pull request #3227 from overleaf/jel-security-email-alerts Move security alert handling to private function GitOrigin-RevId: a59b6b0802986b2caa9e9715d80225eb11b163a9 2020-09-29 10:05:12 -04:00			`describe('errors', function() {`
			`const anError = new Error('oops')`
			`describe('EmailHandler', function() {`
			`beforeEach(function() {`
			`this.EmailHandler.sendEmail.yields(anError)`
			`})`
			`it('should log but not return the error', function(done) {`
			`this.ThirdPartyIdentityManager.link(`
			`this.userId,`
			`'google',`
			`this.externalUserId,`
			`this.externalData,`
			`error => {`
			`expect(error).to.not.exist`
			`const loggerCall = this.logger.error.getCall(0)`
			`expect(loggerCall.args[0]).to.deep.equal({`
			`error: anError,`
			`userId: this.userId`
			`})`
			`expect(loggerCall.args[1]).to.contain(`
			`'could not send security alert email when Google linked'`
			`)`
			`done()`
			`}`
			`)`
			`})`
			`})`
			`})`
Merge pull request #2983 from overleaf/jel-security-emails Add security email template and switch institution SSO alerts to use it GitOrigin-RevId: c6f07655165e352527a9efbcfffc5bd2f635405c 2020-07-21 10:28:52 -04:00			`})`
			`describe('unlink', function() {`
			`it('should send email alert', async function() {`
			`await this.ThirdPartyIdentityManager.promises.unlink(this.userId, 'orcid')`
			`const emailCall = this.EmailHandler.sendEmail.getCall(0)`
			`expect(emailCall.args[0]).to.equal('securityAlert')`
			`expect(emailCall.args[1].actionDescribed).to.contain(`
			`'an Orcid account is no longer linked'`
			`)`
			`})`
Merge pull request #3227 from overleaf/jel-security-email-alerts Move security alert handling to private function GitOrigin-RevId: a59b6b0802986b2caa9e9715d80225eb11b163a9 2020-09-29 10:05:12 -04:00			`describe('errors', function() {`
			`const anError = new Error('oops')`
			`describe('EmailHandler', function() {`
			`beforeEach(function() {`
			`this.EmailHandler.sendEmail.yields(anError)`
			`})`
			`it('should log but not return the error', function(done) {`
			`this.ThirdPartyIdentityManager.unlink(`
			`this.userId,`
			`'google',`
			`error => {`
			`expect(error).to.not.exist`
			`const loggerCall = this.logger.error.getCall(0)`
			`expect(loggerCall.args[0]).to.deep.equal({`
			`error: anError,`
			`userId: this.userId`
			`})`
			`expect(loggerCall.args[1]).to.contain(`
			`'could not send security alert email when Google no longer linked'`
			`)`
			`done()`
			`}`
			`)`
			`})`
			`})`
			`})`
Merge pull request #2983 from overleaf/jel-security-emails Add security email template and switch institution SSO alerts to use it GitOrigin-RevId: c6f07655165e352527a9efbcfffc5bd2f635405c 2020-07-21 10:28:52 -04:00			`})`
			`})`