首頁 探索 說明
登入
zyy
/
knowledge
1
0
複刻 0
Files 問題管理 0 合併請求 0 Wiki
目錄樹: edb5a47858
分支列表 標籤列表
knowledge
/
tests
/
test-user-admin.ts

test-user-admin.ts 2.4 KB
文件歷史 原始文件

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364 
  1. import { eq } from 'drizzle-orm';
    2. 

  2. import { db } from '../src/db';
    3. 

  3. import { groups, roles, userGroups, userRoles, users } from '../src/db/schema/auth';
    4. 

  4. import { hashPassword, verifyPassword } from '../src/lib/auth/password';
    5. 

  5. 

  6. async function runTest() {
    7. 

  7.   console.log('👤 Testing user administration data flow...');
    8. 

  8. 

  9.   const email = `admin-flow-${Date.now()}@ekb.com`;
    10. 

  10.   const [createdUser] = await db.insert(users).values({
    11. 

  11.     email,
    12. 

  12.     name: 'Admin Flow User',
    13. 

  13.     passwordHash: await hashPassword('initial-password'),
    14. 

  14.   }).returning();
    15. 

  15. 

  16.   try {
    17. 

  17.     const [viewerRole] = await db.select().from(roles).where(eq(roles.name, 'viewer')).limit(1);
    18. 

  18.     const [engGroup] = await db.select().from(groups).where(eq(groups.name, 'Engineering Department')).limit(1);
    19. 

  19. 

  20.     if (!viewerRole || !engGroup) {
    21. 

  21.       throw new Error('Required seed role/group missing. Run npx tsx src/db/seed.ts first.');
    22. 

  22.     }
    23. 

  23. 

  24.     await db.insert(userRoles).values({
    25. 

  25.       userId: createdUser.id,
    26. 

  26.       roleId: viewerRole.id,
    27. 

  27.     }).onConflictDoNothing();
    28. 

  28. 

  29.     await db.insert(userGroups).values({
    30. 

  30.       userId: createdUser.id,
    31. 

  31.       groupId: engGroup.id,
    32. 

  32.     }).onConflictDoNothing();
    33. 

  33. 

  34.     const newPasswordHash = await hashPassword('reset-password');
    35. 

  35.     await db.update(users)
    36. 

  36.       .set({ passwordHash: newPasswordHash, updatedAt: new Date() })
    37. 

  37.       .where(eq(users.id, createdUser.id));
    38. 

  38. 

  39.     const [updatedUser] = await db.select().from(users).where(eq(users.id, createdUser.id)).limit(1);
    40. 

  40.     const [assignedRole] = await db.select().from(userRoles).where(eq(userRoles.userId, createdUser.id)).limit(1);
    41. 

  41.     const [assignedGroup] = await db.select().from(userGroups).where(eq(userGroups.userId, createdUser.id)).limit(1);
    42. 

  42. 

  43.     if (!updatedUser || !assignedRole || !assignedGroup) {
    44. 

  44.       throw new Error('User admin write flow did not persist expected rows.');
    45. 

  45.     }
    46. 

  46. 

  47.     const resetPasswordWorks = await verifyPassword('reset-password', updatedUser.passwordHash);
    48. 

  48.     const oldPasswordWorks = await verifyPassword('initial-password', updatedUser.passwordHash);
    49. 

  49. 

  50.     if (!resetPasswordWorks || oldPasswordWorks) {
    51. 

  51.       throw new Error('Password reset verification failed.');
    52. 

  52.     }
    53. 

  53.   } finally {
    54. 

  54.     await db.delete(users).where(eq(users.id, createdUser.id));
    55. 

  55.   }
    56. 

  56. 

  57.   console.log('✅ User administration data flow passed.');
    58. 

  58.   process.exit(0);
    59. 

  59. }
    60. 

  60. 

  61. runTest().catch((error) => {
    62. 

  62.   console.error('❌ Test failed with error:', error);
    63. 

  63.   process.exit(1);
    64. 

  64. });
    65.