overleaf/services/web/test/acceptance/coffee/helpers/User.coffee

request = require("./request")
settings = require("settings-sharelatex")
{db, ObjectId} = require("../../../../app/js/infrastructure/mongojs")

count = 0

class User
	constructor: (options = {}) ->
		@email = "acceptance-test-#{count}@example.com"
		@password = "acceptance-test-#{count}-password"
		count++
		@jar = request.jar()
		@request = request.defaults({
			jar: @jar
		})

	login: (callback = (error) ->) ->
		@getCsrfToken (error) =>
			return callback(error) if error?
			@request.post {
				url: "/register" # Register will log in, but also ensure user exists
				json:
					email: @email
					password: @password
			}, (error, response, body) =>
				return callback(error) if error?
				db.users.findOne {email: @email}, (error, user) =>
					return callback(error) if error?
					@id = user?._id?.toString()
					@_id = user?._id?.toString()
					@first_name = user?.first_name
					@referal_id = user?.referal_id
					callback()

	logout: (callback = (error) ->) ->
		@getCsrfToken (error) =>
			return callback(error) if error?
			@request.get {
				url: "/logout"
				json:
					email: @email
					password: @password
			}, (error, response, body) =>
				return callback(error) if error?
				db.users.findOne {email: @email}, (error, user) =>
					return callback(error) if error?
					@id = user?._id?.toString()
					@_id = user?._id?.toString()
					callback()

	ensure_admin: (callback = (error) ->) ->
		db.users.update {_id: ObjectId(@id)}, { $set: { isAdmin: true }}, callback

	createProject: (name, callback = (error, project_id) ->) ->
		@request.post {
			url: "/project/new",
			json:
				projectName: name
		}, (error, response, body) ->
			return callback(error) if error?
			if !body?.project_id?
				console.error "SOMETHING WENT WRONG CREATING PROJECT", response.statusCode, response.headers["location"], body
			callback(null, body.project_id, body)

	deleteProject: (project_id, callback=(error)) ->
		@request.delete {
			url: "/project/#{project_id}"
		}, (error, response, body) ->
			return callback(error) if error?
			callback(null)

	openProject: (project_id, callback=(error)) ->
		@request.get {
			url: "/project/#{project_id}"
		}, (error, response, body) ->
			return callback(error) if error? or response.statusCode != 200
			callback(null)

	addUserToProject: (project_id, email, privileges, callback = (error, user) ->) ->
		@request.post {
			url: "/project/#{project_id}/users",
			json: {email, privileges}
		}, (error, response, body) ->
			return callback(error) if error?
			callback(null, body.user)

	makePublic: (project_id, level, callback = (error) ->) ->
		@request.post {
			url: "/project/#{project_id}/settings/admin",
			json:
				publicAccessLevel: level
		}, (error, response, body) ->
			return callback(error) if error?
			callback(null)

	getCsrfToken: (callback = (error) ->) ->
		@request.get {
			url: "/register"
		}, (err, response, body) =>
			return callback(error) if error?
			csrfMatches = body.match("window.csrfToken = \"(.*?)\";")
			if !csrfMatches?
				return callback(new Error("no csrf token found"))
			@request = @request.defaults({
				headers:
					"x-csrf-token": csrfMatches[1]
			})
			callback()

	changePassword: (callback = (error) ->) ->
		@getCsrfToken (error) =>
			return callback(error) if error?
			@request.post {
				url: "/user/password/update"
				json:
					currentPassword: @password
					newPassword1: @password
					newPassword2: @password
			}, (error, response, body) =>
				return callback(error) if error?
				db.users.findOne {email: @email}, (error, user) =>
					return callback(error) if error?
					callback()

	getUserSettingsPage: (callback = (error, statusCode) ->) ->
		@getCsrfToken (error) =>
			return callback(error) if error?
			@request.get {
				url: "/user/settings"
			}, (error, response, body) =>
				return callback(error) if error?
				callback(null, response.statusCode)


module.exports = User
Improve error reporting and show 404 when project ids are malformed 2016-03-18 11:59:03 -04:00			`request = require("./request")`
			`settings = require("settings-sharelatex")`
Allow admin access to projects 2016-03-21 13:03:31 -04:00			`{db, ObjectId} = require("../../../../app/js/infrastructure/mongojs")`
Improve error reporting and show 404 when project ids are malformed 2016-03-18 11:59:03 -04:00
			`count = 0`

			`class User`
			`constructor: (options = {}) ->`
			`@email = "acceptance-test-#{count}@example.com"`
			`@password = "acceptance-test-#{count}-password"`
			`count++`
			`@jar = request.jar()`
			`@request = request.defaults({`
			`jar: @jar`
			`})`
get invite and link for test 2016-07-28 11:00:18 -04:00
Improve error reporting and show 404 when project ids are malformed 2016-03-18 11:59:03 -04:00			`login: (callback = (error) ->) ->`
			`@getCsrfToken (error) =>`
			`return callback(error) if error?`
			`@request.post {`
			`url: "/register" # Register will log in, but also ensure user exists`
			`json:`
			`email: @email`
			`password: @password`
			`}, (error, response, body) =>`
			`return callback(error) if error?`
			`db.users.findOne {email: @email}, (error, user) =>`
			`return callback(error) if error?`
			`@id = user?._id?.toString()`
start acceptance tests for sessions 2016-07-05 05:24:24 -04:00			`@_id = user?._id?.toString()`
Start testing the invite page 2016-07-29 04:52:55 -04:00			`@first_name = user?.first_name`
			`@referal_id = user?.referal_id`
Improve error reporting and show 404 when project ids are malformed 2016-03-18 11:59:03 -04:00			`callback()`
start acceptance tests for sessions 2016-07-05 05:24:24 -04:00
			`logout: (callback = (error) ->) ->`
			`@getCsrfToken (error) =>`
			`return callback(error) if error?`
			`@request.get {`
Test session revocation on password change. 2016-07-05 09:55:08 -04:00			`url: "/logout"`
start acceptance tests for sessions 2016-07-05 05:24:24 -04:00			`json:`
			`email: @email`
			`password: @password`
			`}, (error, response, body) =>`
			`return callback(error) if error?`
			`db.users.findOne {email: @email}, (error, user) =>`
			`return callback(error) if error?`
			`@id = user?._id?.toString()`
			`@_id = user?._id?.toString()`
			`callback()`

Allow admin access to projects 2016-03-21 13:03:31 -04:00			`ensure_admin: (callback = (error) ->) ->`
			`db.users.update {_id: ObjectId(@id)}, { $set: { isAdmin: true }}, callback`
start acceptance tests for sessions 2016-07-05 05:24:24 -04:00
Improve error reporting and show 404 when project ids are malformed 2016-03-18 11:59:03 -04:00			`createProject: (name, callback = (error, project_id) ->) ->`
			`@request.post {`
			`url: "/project/new",`
			`json:`
			`projectName: name`
			`}, (error, response, body) ->`
			`return callback(error) if error?`
			`if !body?.project_id?`
			`console.error "SOMETHING WENT WRONG CREATING PROJECT", response.statusCode, response.headers["location"], body`
get invite and link for test 2016-07-28 11:00:18 -04:00			`callback(null, body.project_id, body)`

			`deleteProject: (project_id, callback=(error)) ->`
			`@request.delete {`
			`url: "/project/#{project_id}"`
			`}, (error, response, body) ->`
			`return callback(error) if error?`
			`callback(null)`

Test acceptance of invite 2016-07-29 06:04:07 -04:00			`openProject: (project_id, callback=(error)) ->`
			`@request.get {`
			`url: "/project/#{project_id}"`
			`}, (error, response, body) ->`
			`return callback(error) if error? or response.statusCode != 200`
			`callback(null)`

Improve error reporting and show 404 when project ids are malformed 2016-03-18 11:59:03 -04:00			`addUserToProject: (project_id, email, privileges, callback = (error, user) ->) ->`
			`@request.post {`
			`url: "/project/#{project_id}/users",`
			`json: {email, privileges}`
			`}, (error, response, body) ->`
			`return callback(error) if error?`
			`callback(null, body.user)`
get invite and link for test 2016-07-28 11:00:18 -04:00
Improve error reporting and show 404 when project ids are malformed 2016-03-18 11:59:03 -04:00			`makePublic: (project_id, level, callback = (error) ->) ->`
			`@request.post {`
			`url: "/project/#{project_id}/settings/admin",`
			`json:`
			`publicAccessLevel: level`
			`}, (error, response, body) ->`
			`return callback(error) if error?`
			`callback(null)`

			`getCsrfToken: (callback = (error) ->) ->`
			`@request.get {`
			`url: "/register"`
			`}, (err, response, body) =>`
			`return callback(error) if error?`
			`csrfMatches = body.match("window.csrfToken = \"(.*?)\";")`
			`if !csrfMatches?`
			`return callback(new Error("no csrf token found"))`
			`@request = @request.defaults({`
			`headers:`
			`"x-csrf-token": csrfMatches[1]`
			`})`
			`callback()`

Test session revocation on password change. 2016-07-05 09:55:08 -04:00			`changePassword: (callback = (error) ->) ->`
acceptance test for logging in two sessions. 2016-07-05 09:21:38 -04:00			`@getCsrfToken (error) =>`
			`return callback(error) if error?`
			`@request.post {`
Test session revocation on password change. 2016-07-05 09:55:08 -04:00			`url: "/user/password/update"`
acceptance test for logging in two sessions. 2016-07-05 09:21:38 -04:00			`json:`
Test session revocation on password change. 2016-07-05 09:55:08 -04:00			`currentPassword: @password`
			`newPassword1: @password`
			`newPassword2: @password`
acceptance test for logging in two sessions. 2016-07-05 09:21:38 -04:00			`}, (error, response, body) =>`
			`return callback(error) if error?`
			`db.users.findOne {email: @email}, (error, user) =>`
			`return callback(error) if error?`
			`callback()`

Add tests to check if users can access a restricted page. 2016-07-06 07:14:01 -04:00			`getUserSettingsPage: (callback = (error, statusCode) ->) ->`
			`@getCsrfToken (error) =>`
			`return callback(error) if error?`
			`@request.get {`
			`url: "/user/settings"`
			`}, (error, response, body) =>`
			`return callback(error) if error?`
			`callback(null, response.statusCode)`



acceptance test for logging in two sessions. 2016-07-05 09:21:38 -04:00			`module.exports = User`