// Copyright (C) 2019 Storj Labs, Inc. // See LICENSE for copying information. package console_test import ( "context" "testing" "time" "github.com/stretchr/testify/assert" "github.com/stretchr/testify/require" "storj.io/common/testcontext" "storj.io/common/testrand" "storj.io/storj/satellite" "storj.io/storj/satellite/console" "storj.io/storj/satellite/satellitedb/satellitedbtest" ) const ( lastName = "lastName" email = "email@mail.test" passValid = "123456" name = "name" newName = "newName" newLastName = "newLastName" newEmail = "newEmail@mail.test" newPass = "newPass1234567890123456789012345" position = "position" companyName = "companyName" employeeCount = "0" workingOn = "workingOn" isProfessional = true mfaSecretKey = "mfaSecretKey" ) func TestUserRepository(t *testing.T) { satellitedbtest.Run(t, func(ctx *testcontext.Context, t *testing.T, db satellite.DB) { repository := db.Console().Users() partnerID := testrand.UUID() // Test with and without partnerID user := &console.User{ ID: testrand.UUID(), FullName: name, ShortName: lastName, Email: email, PartnerID: partnerID, PasswordHash: []byte(passValid), CreatedAt: time.Now(), } testUsers(ctx, t, repository, user) user = &console.User{ ID: testrand.UUID(), FullName: name, ShortName: lastName, Email: email, PasswordHash: []byte(passValid), CreatedAt: time.Now(), } testUsers(ctx, t, repository, user) // test professional user user = &console.User{ ID: testrand.UUID(), FullName: name, ShortName: lastName, Email: email, PasswordHash: []byte(passValid), CreatedAt: time.Now(), IsProfessional: isProfessional, Position: position, CompanyName: companyName, EmployeeCount: employeeCount, WorkingOn: workingOn, } testUsers(ctx, t, repository, user) }) } func TestUserEmailCase(t *testing.T) { satellitedbtest.Run(t, func(ctx *testcontext.Context, t *testing.T, db satellite.DB) { for _, testCase := range []struct { email string }{ {email: "prettyandsimple@example.com"}, {email: "firstname.lastname@domain.com "}, {email: "email@subdomain.domain.com "}, {email: "firstname+lastname@domain.com "}, {email: "email@[123.123.123.123] "}, {email: "\"email\"@domain.com"}, {email: "_______@domain.com "}, } { newUser := &console.User{ ID: testrand.UUID(), FullName: newName, ShortName: newLastName, Email: testCase.email, Status: console.Active, PasswordHash: []byte(newPass), } createdUser, err := db.Console().Users().Insert(ctx, newUser) assert.NoError(t, err) assert.Equal(t, testCase.email, createdUser.Email) createdUser.Status = console.Active err = db.Console().Users().Update(ctx, createdUser) assert.NoError(t, err) retrievedUser, err := db.Console().Users().GetByEmail(ctx, testCase.email) assert.NoError(t, err) assert.Equal(t, testCase.email, retrievedUser.Email) } }) } func TestUserUpdatePaidTier(t *testing.T) { satellitedbtest.Run(t, func(ctx *testcontext.Context, t *testing.T, db satellite.DB) { email := "testemail@mail.test" fullName := "first name last name" shortName := "short name" password := "password" newUser := &console.User{ ID: testrand.UUID(), FullName: fullName, ShortName: shortName, Email: email, Status: console.Active, PasswordHash: []byte(password), } createdUser, err := db.Console().Users().Insert(ctx, newUser) require.NoError(t, err) require.Equal(t, email, createdUser.Email) require.Equal(t, fullName, createdUser.FullName) require.Equal(t, shortName, createdUser.ShortName) require.False(t, createdUser.PaidTier) err = db.Console().Users().UpdatePaidTier(ctx, createdUser.ID, true) require.NoError(t, err) retrievedUser, err := db.Console().Users().Get(ctx, createdUser.ID) require.NoError(t, err) require.Equal(t, email, retrievedUser.Email) require.Equal(t, fullName, retrievedUser.FullName) require.Equal(t, shortName, retrievedUser.ShortName) require.True(t, retrievedUser.PaidTier) err = db.Console().Users().UpdatePaidTier(ctx, createdUser.ID, false) require.NoError(t, err) retrievedUser, err = db.Console().Users().Get(ctx, createdUser.ID) require.NoError(t, err) require.False(t, retrievedUser.PaidTier) }) } func testUsers(ctx context.Context, t *testing.T, repository console.Users, user *console.User) { t.Run("User insertion success", func(t *testing.T) { insertedUser, err := repository.Insert(ctx, user) assert.NoError(t, err) insertedUser.Status = console.Active err = repository.Update(ctx, insertedUser) assert.NoError(t, err) }) t.Run("Get user success", func(t *testing.T) { userByEmail, err := repository.GetByEmail(ctx, email) assert.NoError(t, err) assert.Equal(t, name, userByEmail.FullName) assert.Equal(t, lastName, userByEmail.ShortName) assert.Equal(t, user.PartnerID, userByEmail.PartnerID) assert.False(t, user.PaidTier) assert.False(t, user.MFAEnabled) assert.Empty(t, user.MFASecretKey) assert.Empty(t, user.MFARecoveryCodes) if user.IsProfessional { assert.Equal(t, workingOn, userByEmail.WorkingOn) assert.Equal(t, position, userByEmail.Position) assert.Equal(t, companyName, userByEmail.CompanyName) assert.Equal(t, employeeCount, userByEmail.EmployeeCount) } else { assert.Equal(t, "", userByEmail.WorkingOn) assert.Equal(t, "", userByEmail.Position) assert.Equal(t, "", userByEmail.CompanyName) assert.Equal(t, "", userByEmail.EmployeeCount) } userByID, err := repository.Get(ctx, userByEmail.ID) assert.NoError(t, err) assert.Equal(t, name, userByID.FullName) assert.Equal(t, lastName, userByID.ShortName) assert.Equal(t, user.PartnerID, userByID.PartnerID) assert.False(t, user.MFAEnabled) assert.Empty(t, user.MFASecretKey) assert.Empty(t, user.MFARecoveryCodes) if user.IsProfessional { assert.Equal(t, workingOn, userByID.WorkingOn) assert.Equal(t, position, userByID.Position) assert.Equal(t, companyName, userByID.CompanyName) assert.Equal(t, employeeCount, userByID.EmployeeCount) } else { assert.Equal(t, "", userByID.WorkingOn) assert.Equal(t, "", userByID.Position) assert.Equal(t, "", userByID.CompanyName) assert.Equal(t, "", userByID.EmployeeCount) } assert.Equal(t, userByID.ID, userByEmail.ID) assert.Equal(t, userByID.FullName, userByEmail.FullName) assert.Equal(t, userByID.ShortName, userByEmail.ShortName) assert.Equal(t, userByID.Email, userByEmail.Email) assert.Equal(t, userByID.PasswordHash, userByEmail.PasswordHash) assert.Equal(t, userByID.PartnerID, userByEmail.PartnerID) assert.Equal(t, userByID.CreatedAt, userByEmail.CreatedAt) assert.Equal(t, userByID.IsProfessional, userByEmail.IsProfessional) assert.Equal(t, userByID.WorkingOn, userByEmail.WorkingOn) assert.Equal(t, userByID.Position, userByEmail.Position) assert.Equal(t, userByID.CompanyName, userByEmail.CompanyName) assert.Equal(t, userByID.EmployeeCount, userByEmail.EmployeeCount) }) t.Run("Update user success", func(t *testing.T) { oldUser, err := repository.GetByEmail(ctx, email) assert.NoError(t, err) newUserInfo := &console.User{ ID: oldUser.ID, FullName: newName, ShortName: newLastName, Email: newEmail, Status: console.Active, PaidTier: true, MFAEnabled: true, MFASecretKey: mfaSecretKey, MFARecoveryCodes: []string{"1", "2"}, PasswordHash: []byte(newPass), } err = repository.Update(ctx, newUserInfo) assert.NoError(t, err) newUser, err := repository.Get(ctx, oldUser.ID) assert.NoError(t, err) assert.Equal(t, oldUser.ID, newUser.ID) assert.Equal(t, newName, newUser.FullName) assert.Equal(t, newLastName, newUser.ShortName) assert.Equal(t, newEmail, newUser.Email) assert.Equal(t, []byte(newPass), newUser.PasswordHash) assert.True(t, newUser.PaidTier) assert.True(t, newUser.MFAEnabled) assert.Equal(t, mfaSecretKey, newUser.MFASecretKey) assert.Equal(t, newUserInfo.MFARecoveryCodes, newUser.MFARecoveryCodes) // PartnerID should not change assert.Equal(t, user.PartnerID, newUser.PartnerID) assert.Equal(t, oldUser.CreatedAt, newUser.CreatedAt) }) t.Run("Delete user success", func(t *testing.T) { oldUser, err := repository.GetByEmail(ctx, newEmail) assert.NoError(t, err) err = repository.Delete(ctx, oldUser.ID) assert.NoError(t, err) _, err = repository.Get(ctx, oldUser.ID) assert.Error(t, err) }) }