require('../../support/test_helper'); const assert = require('../../support/assert'); const TestClient = require('../../support/test-client'); describe('authorization', function() { it('should create a layergroup with regular apikey token', function(done) { const apikeyToken = 'regular1'; const mapConfig = { version: '1.7.0', layers: [ { options: { sql: 'select * FROM test_table_localhost_regular1', cartocss: TestClient.CARTOCSS.POINTS, cartocss_version: '2.3.0' } } ] }; const testClient = new TestClient(mapConfig, apikeyToken); testClient.getLayergroup(function (err, layergroupResult) { assert.ifError(err); assert.ok(layergroupResult.layergroupid); testClient.drain(done); }); }); it('should fail creating a layergroup with default apikey token', function (done) { const apikeyToken = 'default_public'; const mapConfig = { version: '1.7.0', layers: [ { options: { sql: 'select * FROM test_table_localhost_regular1', cartocss: TestClient.CARTOCSS.POINTS, cartocss_version: '2.3.0' } } ] }; const testClient = new TestClient(mapConfig, apikeyToken); testClient.getLayergroup({ response: { status: 403 } }, function (err, layergroupResult) { assert.ifError(err); assert.ok(layergroupResult.hasOwnProperty('errors')); assert.equal(layergroupResult.errors.length, 1); assert.ok(layergroupResult.errors[0].match(/permission denied/), layergroupResult.errors[0]); testClient.drain(done); }); }); it('should create a layergroup with default apikey token', function (done) { const apikeyToken = 'default_public'; const mapConfig = { version: '1.7.0', layers: [ { options: { sql: 'select * FROM test_table', cartocss: TestClient.CARTOCSS.POINTS, cartocss_version: '2.3.0' } } ] }; const testClient = new TestClient(mapConfig, apikeyToken); testClient.getLayergroup(function (err, layergroupResult) { assert.ifError(err); assert.ok(layergroupResult.layergroupid); testClient.drain(done); }); }); it('should fail if apikey does not grant access to table', function (done) { const mapConfig = { version: '1.7.0', layers: [ { options: { sql: 'select * FROM test_table_localhost_regular1', cartocss: TestClient.CARTOCSS.POINTS, cartocss_version: '2.3.0' } } ] }; const testClient = new TestClient(mapConfig); //no apikey provided, using default testClient.getLayergroup({ response: { status: 403 } }, function (err, layergroupResult) { //TODO 401 assert.ifError(err); assert.ok(layergroupResult.hasOwnProperty('errors')); assert.equal(layergroupResult.errors.length, 1); assert.ok(layergroupResult.errors[0].match(/permission denied/), layergroupResult.errors[0]); testClient.drain(done); }); }); it('should forbide access to API if API key does not grant access', function (done) { const apikeyToken = 'regular2'; const mapConfig = { version: '1.7.0', layers: [ { options: { sql: 'select * FROM test_table_localhost_regular1', cartocss: TestClient.CARTOCSS.POINTS, cartocss_version: '2.3.0' } } ] }; const testClient = new TestClient(mapConfig, apikeyToken); testClient.getLayergroup({ response: { status: 403 } }, function (err, layergroupResult) { assert.ifError(err); assert.ok(layergroupResult.hasOwnProperty('errors')); assert.equal(layergroupResult.errors.length, 1); assert.ok(layergroupResult.errors[0].match(/Forbidden/), layergroupResult.errors[0]); testClient.drain(done); }); }); it('should create a layergroup with a source analysis using a default apikey token', function (done) { const apikeyToken = 'default_public'; const mapConfig = { version: '1.7.0', layers: [ { type: 'cartodb', options: { source: { id: 'HEAD' }, cartocss: TestClient.CARTOCSS.POINTS, cartocss_version: '2.3.0' } } ], analyses: [ { id: 'HEAD', type: 'source', params: { query: 'select * from populated_places_simple_reduced' } } ] }; const testClient = new TestClient(mapConfig, apikeyToken); testClient.getLayergroup(function (err, layergroupResult) { assert.ifError(err); assert.ok(layergroupResult.layergroupid); testClient.drain(done); }); }); it('should create a layergroup with a source analysis using a regular apikey token', function (done) { const apikeyToken = 'regular1'; const mapConfig = { version: '1.7.0', layers: [ { type: 'cartodb', options: { source: { id: 'HEAD' }, cartocss: TestClient.CARTOCSS.POINTS, cartocss_version: '2.3.0' } } ], analyses: [ { id: 'HEAD', type: 'source', params: { query: 'select * from test_table_localhost_regular1' } } ] }; const testClient = new TestClient(mapConfig, apikeyToken); testClient.getLayergroup(function (err, layergroupResult) { assert.ifError(err); assert.ok(layergroupResult.layergroupid); testClient.drain(done); }); }); it('should create a layergroup with a buffer analysis using a regular apikey token', function (done) { const apikeyToken = 'regular1'; const mapConfig = { version: '1.7.0', layers: [ { type: 'cartodb', options: { source: { id: 'HEAD1' }, cartocss: TestClient.CARTOCSS.POINTS, cartocss_version: '2.3.0' } } ], analyses: [ { id: "HEAD1", type: "buffer", params: { source: { id: 'HEAD2', type: 'source', params: { query: 'select * from test_table_localhost_regular1' } }, radius: 50000 } } ] }; const testClient = new TestClient(mapConfig, apikeyToken); testClient.getLayergroup(function (err, layergroupResult) { assert.ifError(err); assert.ok(layergroupResult.layergroupid); testClient.drain(done); }); }); });