overleaf/services/web/test/acceptance/coffee/ProjectInviteTests.coffee

expect = require("chai").expect
Async = require("async")
User = require "./helpers/User"
request = require "./helpers/request"
settings = require "settings-sharelatex"
CollaboratorsEmailHandler = require "../../../app/js/Features/Collaborators/CollaboratorsEmailHandler"


createInvite = (projectId, sendingUser, email, callback=(err, invite)->) ->
	sendingUser.getCsrfToken (err) ->
		return callback(err) if err
		sendingUser.request.post {
			url: "/project/#{projectId}/invite",
			json:
				email: email
				privileges: 'readAndWrite'
		}, (err, response, body) ->
			return callback(err) if err
			callback(err, body.invite)

followInviteLink = (user, link, callback=(err, response, body)->) ->
	user.request.get {
		uri: link
		baseUrl: null
	}, callback

acceptInvite = (user, invite, callback=(err, response, body)->) ->
	user.request.post {
		uri: "/project/#{invite.projectId}/invite/#{invite._id}/accept"
		json:
			token: invite.token
	}, callback


describe "ProjectInviteTests", ->
	before (done) ->
		@timeout(20000)
		@sendingUser = new User()
		@user = new User()
		@site_admin = new User({email: "admin@example.com"})
		@email = 'smoketestuser@example.com'
		@projectName = 'sharing test'
		@projectId = null
		@fakeProject = null
		Async.series [
			(cb) => @user.login cb
			(cb) => @sendingUser.login cb
			(cb) => @sendingUser.createProject(@projectName, (err, projectId, project) =>
				throw err if err
				@projectId = projectId
				@fakeProject = {
					_id: projectId,
					name: @projectName,
					owner_ref: @sendingUser
				}
				cb()
			)
		], done

		after (done) ->
			Async.series [
				(cb) => @sendingUser.deleteProject(@projectId, cb)
			], done

	describe "user is logged in", ->

		beforeEach (done) ->
			@user.login (err) =>
				if err
					throw err
				done()

		describe 'user is not a member of the project', ->

			beforeEach (done) ->
				@invite = null
				@link = null
				createInvite @projectId, @sendingUser, @email, (err, invite) =>
					@invite = invite
					@link = CollaboratorsEmailHandler._buildInviteUrl(@fakeProject, @invite)
					done()

			it 'should not grant access if the user does not accept the invite', (done) ->
				Async.series(
					[
						# go to the invite page
						(cb) =>
							followInviteLink @user, @link, (err, response, body) =>
								expect(err).to.be.oneOf [null, undefined]
								expect(response.statusCode).to.equal 200
								expect(body).to.match new RegExp("<title>Project Invite - .*</title>")
								cb()

						# forbid access to the project page
						(cb) =>
							@user.openProject @invite.projectId, (err) =>
								expect(err).to.be.instanceof Error
								cb()

					], done
				)

			it 'should render the invalid-invite page if the token is invalid', (done) ->
				Async.series(
					[
						# go to the invite page with an invalid token
						(cb) =>
							link = @link.replace(@invite.token, 'not_a_real_token')
							followInviteLink @user, link, (err, response, body) =>
								expect(err).to.be.oneOf [null, undefined]
								expect(response.statusCode).to.equal 200
								expect(body).to.match new RegExp("<title>Invalid Invite - .*</title>")
								cb()

						# forbid access to the project page
						(cb) =>
							@user.openProject @invite.projectId, (err) =>
								expect(err).to.be.instanceof Error
								cb()

					], done
				)

			it 'should allow the user to accept the invite and access the project', (done) ->
				Async.series(
					[
						# go to the invite page
						(cb) =>
							followInviteLink @user, @link, (err, response, body) =>
								expect(err).to.be.oneOf [null, undefined]
								expect(response.statusCode).to.equal 200
								expect(body).to.match new RegExp("<title>Project Invite - .*</title>")
								cb()

						# accept the invite
						(cb) =>
							acceptInvite @user, @invite, (err, response, body) =>
								expect(err).to.be.oneOf [null, undefined]
								expect(response.statusCode).to.equal 302
								expect(response.headers.location).to.equal "/project/#{@invite.projectId}"
								cb()

						# access the project page
						(cb) =>
							@user.openProject @invite.projectId, (err) =>
								expect(err).to.be.oneOf [null, undefined]
								cb()

					], done
				)
start ProjectInvite acceptance test module 2016-07-28 09:53:22 -04:00			`expect = require("chai").expect`
			`Async = require("async")`
			`User = require "./helpers/User"`
			`request = require "./helpers/request"`
			`settings = require "settings-sharelatex"`
get invite and link for test 2016-07-28 11:00:18 -04:00			`CollaboratorsEmailHandler = require "../../../app/js/Features/Collaborators/CollaboratorsEmailHandler"`


Test acceptance of invite 2016-07-29 06:04:07 -04:00			`createInvite = (projectId, sendingUser, email, callback=(err, invite)->) ->`
Start testing the invite page 2016-07-29 04:52:55 -04:00			`sendingUser.getCsrfToken (err) ->`
get invite and link for test 2016-07-28 11:00:18 -04:00			`return callback(err) if err`
Start testing the invite page 2016-07-29 04:52:55 -04:00			`sendingUser.request.post {`
get invite and link for test 2016-07-28 11:00:18 -04:00			`url: "/project/#{projectId}/invite",`
			`json:`
			`email: email`
Test acceptance of invite 2016-07-29 06:04:07 -04:00			`privileges: 'readAndWrite'`
get invite and link for test 2016-07-28 11:00:18 -04:00			`}, (err, response, body) ->`
			`return callback(err) if err`
			`callback(err, body.invite)`
start ProjectInvite acceptance test module 2016-07-28 09:53:22 -04:00
Test acceptance of invite 2016-07-29 06:04:07 -04:00			`followInviteLink = (user, link, callback=(err, response, body)->) ->`
			`user.request.get {`
			`uri: link`
			`baseUrl: null`
			`}, callback`

			`acceptInvite = (user, invite, callback=(err, response, body)->) ->`
			`user.request.post {`
			`uri: "/project/#{invite.projectId}/invite/#{invite._id}/accept"`
			`json:`
			`token: invite.token`
			`}, callback`


start ProjectInvite acceptance test module 2016-07-28 09:53:22 -04:00			`describe "ProjectInviteTests", ->`
			`before (done) ->`
			`@timeout(20000)`
			`@sendingUser = new User()`
			`@user = new User()`
			`@site_admin = new User({email: "admin@example.com"})`
Start testing the invite page 2016-07-29 04:52:55 -04:00			`@email = 'smoketestuser@example.com'`
get invite and link for test 2016-07-28 11:00:18 -04:00			`@projectName = 'sharing test'`
start ProjectInvite acceptance test module 2016-07-28 09:53:22 -04:00			`@projectId = null`
get invite and link for test 2016-07-28 11:00:18 -04:00			`@fakeProject = null`
start ProjectInvite acceptance test module 2016-07-28 09:53:22 -04:00			`Async.series [`
			`(cb) => @user.login cb`
			`(cb) => @sendingUser.login cb`
get invite and link for test 2016-07-28 11:00:18 -04:00			`(cb) => @sendingUser.createProject(@projectName, (err, projectId, project) =>`
start ProjectInvite acceptance test module 2016-07-28 09:53:22 -04:00			`throw err if err`
			`@projectId = projectId`
get invite and link for test 2016-07-28 11:00:18 -04:00			`@fakeProject = {`
			`_id: projectId,`
			`name: @projectName,`
			`owner_ref: @sendingUser`
			`}`
start ProjectInvite acceptance test module 2016-07-28 09:53:22 -04:00			`cb()`
			`)`
			`], done`

get invite and link for test 2016-07-28 11:00:18 -04:00			`after (done) ->`
			`Async.series [`
			`(cb) => @sendingUser.deleteProject(@projectId, cb)`
			`], done`

start ProjectInvite acceptance test module 2016-07-28 09:53:22 -04:00			`describe "user is logged in", ->`

			`beforeEach (done) ->`
			`@user.login (err) =>`
			`if err`
			`throw err`
			`done()`

Start testing the invite page 2016-07-29 04:52:55 -04:00			`describe 'user is not a member of the project', ->`
start ProjectInvite acceptance test module 2016-07-28 09:53:22 -04:00
get invite and link for test 2016-07-28 11:00:18 -04:00			`beforeEach (done) ->`
			`@invite = null`
			`@link = null`
Test acceptance of invite 2016-07-29 06:04:07 -04:00			`createInvite @projectId, @sendingUser, @email, (err, invite) =>`
get invite and link for test 2016-07-28 11:00:18 -04:00			`@invite = invite`
			`@link = CollaboratorsEmailHandler._buildInviteUrl(@fakeProject, @invite)`
			`done()`
start ProjectInvite acceptance test module 2016-07-28 09:53:22 -04:00
Test when the user does not accept the invite 2016-07-29 06:08:24 -04:00			`it 'should not grant access if the user does not accept the invite', (done) ->`
			`Async.series(`
			`[`
			`# go to the invite page`
			`(cb) =>`
			`followInviteLink @user, @link, (err, response, body) =>`
			`expect(err).to.be.oneOf [null, undefined]`
			`expect(response.statusCode).to.equal 200`
			`expect(body).to.match new RegExp("<title>Project Invite - .*</title>")`
			`cb()`

Test the invalid-invite page 2016-07-29 06:54:08 -04:00			`# forbid access to the project page`
			`(cb) =>`
			`@user.openProject @invite.projectId, (err) =>`
			`expect(err).to.be.instanceof Error`
			`cb()`

			`], done`
			`)`

			`it 'should render the invalid-invite page if the token is invalid', (done) ->`
			`Async.series(`
			`[`
			`# go to the invite page with an invalid token`
			`(cb) =>`
			`link = @link.replace(@invite.token, 'not_a_real_token')`
			`followInviteLink @user, link, (err, response, body) =>`
			`expect(err).to.be.oneOf [null, undefined]`
			`expect(response.statusCode).to.equal 200`
			`expect(body).to.match new RegExp("<title>Invalid Invite - .*</title>")`
			`cb()`

			`# forbid access to the project page`
Test when the user does not accept the invite 2016-07-29 06:08:24 -04:00			`(cb) =>`
			`@user.openProject @invite.projectId, (err) =>`
			`expect(err).to.be.instanceof Error`
			`cb()`

			`], done`
			`)`

Test acceptance of invite 2016-07-29 06:04:07 -04:00			`it 'should allow the user to accept the invite and access the project', (done) ->`
start ProjectInvite acceptance test module 2016-07-28 09:53:22 -04:00			`Async.series(`
			`[`
Test acceptance of invite 2016-07-29 06:04:07 -04:00			`# go to the invite page`
start ProjectInvite acceptance test module 2016-07-28 09:53:22 -04:00			`(cb) =>`
Test acceptance of invite 2016-07-29 06:04:07 -04:00			`followInviteLink @user, @link, (err, response, body) =>`
Start testing the invite page 2016-07-29 04:52:55 -04:00			`expect(err).to.be.oneOf [null, undefined]`
			`expect(response.statusCode).to.equal 200`
			`expect(body).to.match new RegExp("<title>Project Invite - .*</title>")`
			`cb()`
start ProjectInvite acceptance test module 2016-07-28 09:53:22 -04:00
Test acceptance of invite 2016-07-29 06:04:07 -04:00			`# accept the invite`
			`(cb) =>`
			`acceptInvite @user, @invite, (err, response, body) =>`
			`expect(err).to.be.oneOf [null, undefined]`
			`expect(response.statusCode).to.equal 302`
			`expect(response.headers.location).to.equal "/project/#{@invite.projectId}"`
			`cb()`

			`# access the project page`
			`(cb) =>`
			`@user.openProject @invite.projectId, (err) =>`
			`expect(err).to.be.oneOf [null, undefined]`
			`cb()`

			`], done`
start ProjectInvite acceptance test module 2016-07-28 09:53:22 -04:00			`)`