diff --git a/test/acceptance/auth/authorization.js b/test/acceptance/auth/authorization.js index aebe9fb8..37407531 100644 --- a/test/acceptance/auth/authorization.js +++ b/test/acceptance/auth/authorization.js @@ -353,496 +353,604 @@ describe('authorization', function() { testClient.drain(done); }); }); + describe.only('Named maps', function () { + describe('LIST Named maps', function () { - describe('Listing named maps', function() { + it('should fail while listing named maps with a regular apikey token', function (done) { + const apikeyToken = 'regular1'; - it('should fail while listing named maps with a regular apikey token', function (done) { - const apikeyToken = 'regular1'; + const testClient = new TestClient({}, apikeyToken); - const testClient = new TestClient({}, apikeyToken); + testClient.getNamedMapList({ response: { status: 403 } }, function (err, res, body) { + assert.ifError(err); - testClient.getNamedMapList({ response: { status: 403 } }, function (err, res, body) { - assert.ifError(err); + assert.equal(res.statusCode, 403); - assert.equal(res.statusCode, 403); + assert.equal(body.errors.length, 1); + assert.ok(body.errors[0].match(/Forbidden/), body.errors[0]); - assert.equal(body.errors.length, 1); - assert.ok(body.errors[0].match(/Forbidden/), body.errors[0]); + testClient.drain(done); + }); + }); - testClient.drain(done); + it('should fail while listing named maps with the default apikey token', function (done) { + const apikeyToken = 'default_public'; + + const testClient = new TestClient({}, apikeyToken); + + testClient.getNamedMapList({ response: { status: 403 } }, function (err, res, body) { + assert.ifError(err); + + assert.equal(res.statusCode, 403); + + assert.equal(body.errors.length, 1); + assert.ok(body.errors[0].match(/Forbidden/), body.errors[0]); + + testClient.drain(done); + }); + }); + + it('should fail while listing named maps with non-existent apikey token', function (done) { + const apikeyToken = 'wadus-wadus'; + + const testClient = new TestClient({}, apikeyToken); + + testClient.getNamedMapList({ response: { status: 401 } }, function (err, res, body) { + assert.ifError(err); + + assert.equal(res.statusCode, 401); + + assert.equal(body.errors.length, 1); + assert.ok(body.errors[0].match(/Unauthorized/), body.errors[0]); + + testClient.drain(done); + }); + }); + + it('should list named maps with master apikey token', function (done) { + const apikeyToken = 1234; + + const testClient = new TestClient({}, apikeyToken); + + testClient.getNamedMapList({}, function (err, res, body) { + assert.ifError(err); + + assert.equal(res.statusCode, 200); + assert.ok(Array.isArray(body.template_ids)); + + testClient.drain(done); + }); }); }); - it('should fail while listing named maps with the default apikey token', function (done) { - const apikeyToken = 'default_public'; - - const testClient = new TestClient({}, apikeyToken); - - testClient.getNamedMapList({ response: { status: 403 } }, function (err, res, body) { - assert.ifError(err); - - assert.equal(res.statusCode, 403); - - assert.equal(body.errors.length, 1); - assert.ok(body.errors[0].match(/Forbidden/), body.errors[0]); - - testClient.drain(done); - }); - }); - - it('should fail while listing named maps with non-existent apikey token', function (done) { - const apikeyToken = 'wadus-wadus'; - - const testClient = new TestClient({}, apikeyToken); - - testClient.getNamedMapList({ response: { status: 401 } }, function (err, res, body) { - assert.ifError(err); - - assert.equal(res.statusCode, 401); - - assert.equal(body.errors.length, 1); - assert.ok(body.errors[0].match(/Unauthorized/), body.errors[0]); - - testClient.drain(done); - }); - }); - - it('should list named maps with master apikey token', function (done) { - const apikeyToken = 1234; - - const testClient = new TestClient({}, apikeyToken); - - testClient.getNamedMapList({}, function (err, res, body) { - assert.ifError(err); - - assert.equal(res.statusCode, 200); - assert.ok(Array.isArray(body.template_ids)); - - testClient.drain(done); - }); - }); - }); - - describe('Create Named Map', function () { - const template = { - version: '0.0.1', - name: 'auth-api-template', - placeholders: { - buffersize: { - type: 'number', - default: 0 + describe('CREATE Named Map', function () { + const template = { + version: '0.0.1', + name: 'auth-api-template', + placeholders: { + buffersize: { + type: 'number', + default: 0 + } + }, + layergroup: { + version: '1.7.0', + layers: [{ + type: 'cartodb', + options: { + sql: 'select * from test_table_localhost_regular1', + cartocss: TestClient.CARTOCSS.POINTS, + cartocss_version: '2.3.0', + } + }] } - }, - layergroup: { - version: '1.7.0', - layers: [{ - type: 'cartodb', - options: { - sql: 'select * from test_table_localhost_regular1', - cartocss: TestClient.CARTOCSS.POINTS, - cartocss_version: '2.3.0', + }; + + it('should create and get a named map tile using the master apikey token', function (done) { + const apikeyToken = 1234; + + const testClient = new TestClient(template, apikeyToken); + + testClient.getTile(0, 0, 0, function (err, res, tile) { + assert.ifError(err); + + assert.equal(res.statusCode, 200); + assert.ok(tile instanceof mapnik.Image); + + testClient.drain(done); + }); + }); + + it('should fail creating a named map using a regular apikey token', function (done) { + const apikeyToken = 'regular1'; + + const testClient = new TestClient(template, apikeyToken); + + testClient.createTemplate({ response: { status: 403 } }, function (err, res, response) { + assert.ifError(err); + + assert.equal(res.statusCode, 403); + + assert.equal(response.errors.length, 1); + assert.ok(response.errors[0].match(/Forbidden/), response.errors[0]); + + testClient.drain(done); + }); + }); + + it('should fail creating a named map using the default apikey token', function (done) { + const apikeyToken = 'default_public'; + + const testClient = new TestClient(template, apikeyToken); + + testClient.createTemplate({ response: { status: 403 } }, function (err, res, response) { + assert.ifError(err); + + assert.equal(res.statusCode, 403); + + assert.equal(response.errors.length, 1); + assert.ok(response.errors[0].match(/Forbidden/), response.errors[0]); + + testClient.drain(done); + }); + }); + + it('should fail creating a named map using a non-existent apikey token', function (done) { + const apikeyToken = 'wadus-wadus'; + + const testClient = new TestClient(template, apikeyToken); + + testClient.createTemplate({ response: { status: 401 } }, function (err, res, response) { + assert.ifError(err); + + assert.equal(res.statusCode, 401); + + assert.equal(response.errors.length, 1); + assert.ok(response.errors[0].match(/Unauthorized/), response.errors[0]); + + testClient.drain(done); + }); + }); + }); + + describe('DELETE Named Map', function () { + const templateBase = { + version: '0.0.1', + name: 'auth-api-template', + placeholders: { + buffersize: { + type: 'number', + default: 0 } - }] - } - }; - - it('should create and get a named map tile using the master apikey token', function (done) { - const apikeyToken = 1234; - - const testClient = new TestClient(template, apikeyToken); - - testClient.getTile(0, 0, 0, function (err, res, tile) { - assert.ifError(err); - - assert.equal(res.statusCode, 200); - assert.ok(tile instanceof mapnik.Image); - - testClient.drain(done); - }); - }); - - it('should fail creating a named map using a regular apikey token', function (done) { - const apikeyToken = 'regular1'; - - const testClient = new TestClient(template, apikeyToken); - - testClient.createTemplate({ response: { status: 403 } }, function (err, res, response) { - assert.ifError(err); - - assert.equal(res.statusCode, 403); - - assert.equal(response.errors.length, 1); - assert.ok(response.errors[0].match(/Forbidden/), response.errors[0]); - - testClient.drain(done); - }); - }); - - it('should fail creating a named map using the default apikey token', function (done) { - const apikeyToken = 'default_public'; - - const testClient = new TestClient(template, apikeyToken); - - testClient.createTemplate({ response: { status: 403 } }, function (err, res, response) { - assert.ifError(err); - - assert.equal(res.statusCode, 403); - - assert.equal(response.errors.length, 1); - assert.ok(response.errors[0].match(/Forbidden/), response.errors[0]); - - testClient.drain(done); - }); - }); - - it('should fail creating a named map using a non-existent apikey token', function (done) { - const apikeyToken = 'wadus-wadus'; - - const testClient = new TestClient(template, apikeyToken); - - testClient.createTemplate({ response: { status: 401 } }, function (err, res, response) { - assert.ifError(err); - - assert.equal(res.statusCode, 401); - - assert.equal(response.errors.length, 1); - assert.ok(response.errors[0].match(/Unauthorized/), response.errors[0]); - - testClient.drain(done); - }); - }); - }); - - describe('Delete Named Map', function () { - const templateBase = { - version: '0.0.1', - name: 'auth-api-template', - placeholders: { - buffersize: { - type: 'number', - default: 0 + }, + layergroup: { + version: '1.7.0', + layers: [{ + type: 'cartodb', + options: { + sql: 'select * from test_table_localhost_regular1', + cartocss: TestClient.CARTOCSS.POINTS, + cartocss_version: '2.3.0', + } + }] } - }, - layergroup: { - version: '1.7.0', - layers: [{ - type: 'cartodb', - options: { - sql: 'select * from test_table_localhost_regular1', - cartocss: TestClient.CARTOCSS.POINTS, - cartocss_version: '2.3.0', - } - }] - } - }; + }; - it('should delete a named map using the master apikey token', function (done) { - const apikeyTokenCreate = 1234; - const apikeyTokenDelete = 1234; + it('should delete a named map using the master apikey token', function (done) { + const apikeyTokenCreate = 1234; + const apikeyTokenDelete = 1234; - const template = Object.assign({}, templateBase, { name: templateBase.name + '-delete-master'}); + const template = Object.assign({}, templateBase, { name: templateBase.name + '-delete-master' }); - const testClientCreate = new TestClient(template, apikeyTokenCreate); + const testClientCreate = new TestClient(template, apikeyTokenCreate); - testClientCreate.createTemplate({}, function (err, res, template) { - assert.ifError(err); + testClientCreate.createTemplate({}, function (err, res, template) { + assert.ifError(err); - const testClientDelete = new TestClient(template, apikeyTokenDelete); - testClientDelete.deleteTemplate( - { - templateId: template.template_id , - response: { status: 204 } - }, - function (err, res) { - assert.ifError(err); + const testClientDelete = new TestClient(template, apikeyTokenDelete); + testClientDelete.deleteTemplate( + { + templateId: template.template_id, + response: { status: 204 } + }, + function (err, res) { + assert.ifError(err); - assert.equal(res.statusCode, 204); + assert.equal(res.statusCode, 204); - testClientDelete.drain(done); - } - ); + testClientDelete.drain(done); + } + ); + }); + }); + + it('should fail deleting a named map using a regular apikey token', function (done) { + const apikeyTokenCreate = 1234; + const apikeyTokenDelete = 'regular1'; + + const template = Object.assign({}, templateBase, { name: templateBase.name + '-delete-regular' }); + + const testClientCreate = new TestClient(template, apikeyTokenCreate); + + testClientCreate.createTemplate({}, function (err, res, template) { + assert.ifError(err); + + const testClientDelete = new TestClient({}, apikeyTokenDelete); + testClientDelete.deleteTemplate( + { + templateId: template.template_id, + response: { status: 403 } + }, + function (err, res, response) { + assert.ifError(err); + + assert.equal(res.statusCode, 403); + + assert.equal(response.errors.length, 1); + assert.ok(response.errors[0].match(/Forbidden/), response.errors[0]); + + testClientDelete.drain(done); + } + ); + }); + }); + + it('should fail deleting a named map using the default apikey token', function (done) { + const apikeyTokenCreate = 1234; + const apikeyTokenDelete = 'default_public'; + + const template = Object.assign({}, templateBase, { name: templateBase.name + '-delete-default' }); + + const testClientCreate = new TestClient(template, apikeyTokenCreate); + + testClientCreate.createTemplate({}, function (err, res, template) { + assert.ifError(err); + + const testClientDelete = new TestClient(template, apikeyTokenDelete); + testClientDelete.deleteTemplate( + { + templateId: template.template_id, + response: { status: 403 } + }, + function (err, res, response) { + assert.ifError(err); + + assert.equal(res.statusCode, 403); + + assert.equal(response.errors.length, 1); + assert.ok(response.errors[0].match(/Forbidden/), response.errors[0]); + + testClientDelete.drain(done); + } + ); + }); + }); + + it('should fail deleting a named map using a non-existent apikey token', function (done) { + const apikeyTokenCreate = 1234; + const apikeyTokenDelete = 'wadus'; + + const template = Object.assign({}, templateBase, { name: templateBase.name + '-delete-wadus' }); + + const testClientCreate = new TestClient(template, apikeyTokenCreate); + + testClientCreate.createTemplate({}, function (err, res, template) { + assert.ifError(err); + + const testClientDelete = new TestClient(template, apikeyTokenDelete); + testClientDelete.deleteTemplate( + { + templateId: template.template_id, + response: { status: 401 } + }, + function (err, res, response) { + assert.ifError(err); + + assert.equal(res.statusCode, 401); + + assert.equal(response.errors.length, 1); + assert.ok(response.errors[0].match(/Unauthorized/), response.errors[0]); + + testClientDelete.drain(done); + } + ); + }); }); }); - it('should fail deleting a named map using a regular apikey token', function (done) { - const apikeyTokenCreate = 1234; - const apikeyTokenDelete = 'regular1'; - - const template = Object.assign({}, templateBase, { name: templateBase.name + '-delete-regular' }); - - const testClientCreate = new TestClient(template, apikeyTokenCreate); - - testClientCreate.createTemplate({}, function (err, res, template) { - assert.ifError(err); - - const testClientDelete = new TestClient({}, apikeyTokenDelete); - testClientDelete.deleteTemplate( - { - templateId: template.template_id, - response: { status: 403 } - }, - function (err, res, response) { - assert.ifError(err); - - assert.equal(res.statusCode, 403); - - assert.equal(response.errors.length, 1); - assert.ok(response.errors[0].match(/Forbidden/), response.errors[0]); - - testClientDelete.drain(done); + describe('GET Named Map', function () { + const templateBase = { + version: '0.0.1', + name: 'auth-api-template', + placeholders: { + buffersize: { + type: 'number', + default: 0 } - ); - }); - }); - - it('should fail deleting a named map using the default apikey token', function (done) { - const apikeyTokenCreate = 1234; - const apikeyTokenDelete = 'default_public'; - - const template = Object.assign({}, templateBase, { name: templateBase.name + '-delete-default' }); - - const testClientCreate = new TestClient(template, apikeyTokenCreate); - - testClientCreate.createTemplate({}, function (err, res, template) { - assert.ifError(err); - - const testClientDelete = new TestClient(template, apikeyTokenDelete); - testClientDelete.deleteTemplate( - { - templateId: template.template_id, - response: { status: 403 } - }, - function (err, res, response) { - assert.ifError(err); - - assert.equal(res.statusCode, 403); - - assert.equal(response.errors.length, 1); - assert.ok(response.errors[0].match(/Forbidden/), response.errors[0]); - - testClientDelete.drain(done); - } - ); - }); - }); - - it('should fail deleting a named map using a non-existent apikey token', function (done) { - const apikeyTokenCreate = 1234; - const apikeyTokenDelete = 'wadus'; - - const template = Object.assign({}, templateBase, { name: templateBase.name + '-delete-wadus' }); - - const testClientCreate = new TestClient(template, apikeyTokenCreate); - - testClientCreate.createTemplate({}, function (err, res, template) { - assert.ifError(err); - - const testClientDelete = new TestClient(template, apikeyTokenDelete); - testClientDelete.deleteTemplate( - { - templateId: template.template_id, - response: { status: 401 } - }, - function (err, res, response) { - assert.ifError(err); - - assert.equal(res.statusCode, 401); - - assert.equal(response.errors.length, 1); - assert.ok(response.errors[0].match(/Unauthorized/), response.errors[0]); - - testClientDelete.drain(done); - } - ); - }); - }); - }); - - describe.only('Update Named Map', function () { - const templateBase = { - version: '0.0.1', - name: 'auth-api-template', - placeholders: { - buffersize: { - type: 'number', - default: 0 + }, + layergroup: { + version: '1.7.0', + layers: [{ + type: 'cartodb', + options: { + sql: 'select * from test_table_localhost_regular1', + cartocss: TestClient.CARTOCSS.POINTS, + cartocss_version: '2.3.0', + } + }] } - }, - layergroup: { - version: '1.7.0', - layers: [{ - type: 'cartodb', - options: { - sql: 'select * from test_table_localhost_regular1', - cartocss: TestClient.CARTOCSS.POINTS, - cartocss_version: '2.3.0', - } - }] - } - }; + }; - it('should update a named map using the master apikey token', function (done) { - const apikeyTokenCreate = 1234; - const apikeyTokenUpdate = 1234; + it('should get a named map using the master apikey token', function (done) { + const apikeyTokenCreate = 1234; + const apikeyTokenGet = 1234; - const template = Object.assign({}, templateBase, { name: templateBase.name + '-update-master' }); - const templateUpdate = Object.assign({}, template, { zoom: 3 }); - const testClientCreate = new TestClient(template, apikeyTokenCreate); + const template = Object.assign({}, templateBase, { name: templateBase.name + '-get-master' }); - testClientCreate.createTemplate({}, function (err, res, template) { - assert.ifError(err); + const testClientCreate = new TestClient(template, apikeyTokenCreate); - const testClientDelete = new TestClient({}, apikeyTokenUpdate); - testClientDelete.updateTemplate( - { - templateId: template.template_id, - templateData: templateUpdate, - response: { status: 200 } - }, - function (err, res) { - assert.ifError(err); + testClientCreate.createTemplate({}, function (err, res, template) { + assert.ifError(err); - assert.equal(res.statusCode, 200); + const testClientDelete = new TestClient({}, apikeyTokenGet); + testClientDelete.getTemplate( + { + templateId: template.template_id, + response: { status: 200 } + }, + function (err, res) { + assert.ifError(err); - testClientDelete.drain(done); - } - ); + assert.equal(res.statusCode, 200); + + testClientDelete.drain(done); + } + ); + }); + }); + + it('should fail getting a named map using a regular apikey token', function (done) { + const apikeyTokenCreate = 1234; + const apikeyTokenGet = 'regular1'; + + const template = Object.assign({}, templateBase, { name: templateBase.name + '-get-regular' }); + + const testClientCreate = new TestClient(template, apikeyTokenCreate); + + testClientCreate.createTemplate({}, function (err, res, template) { + assert.ifError(err); + + const testClientGet = new TestClient({}, apikeyTokenGet); + testClientGet.getTemplate( + { + templateId: template.template_id, + response: { status: 403 } + }, + function (err, res, response) { + assert.ifError(err); + + assert.equal(res.statusCode, 403); + + assert.equal(response.errors.length, 1); + assert.ok(response.errors[0].match(/Forbidden/), response.errors[0]); + + testClientGet.drain(done); + } + ); + }); + }); + + it('should fail getting a named map using the default apikey token', function (done) { + const apikeyTokenCreate = 1234; + const apikeyTokenGet = 'default_public'; + + const template = Object.assign({}, templateBase, { name: templateBase.name + '-get-default' }); + + const testClientCreate = new TestClient(template, apikeyTokenCreate); + + testClientCreate.createTemplate({}, function (err, res, template) { + assert.ifError(err); + + const testClientGet = new TestClient(template, apikeyTokenGet); + testClientGet.getTemplate( + { + templateId: template.template_id, + response: { status: 403 } + }, + function (err, res, response) { + assert.ifError(err); + + assert.equal(res.statusCode, 403); + + assert.equal(response.errors.length, 1); + assert.ok(response.errors[0].match(/Forbidden/), response.errors[0]); + + testClientGet.drain(done); + } + ); + }); + }); + + it('should fail getting a named map using a non-existent apikey token', function (done) { + const apikeyTokenCreate = 1234; + const apikeyTokenGet = 'wadus'; + + const template = Object.assign({}, templateBase, { name: templateBase.name + '-get-wadus' }); + + const testClientCreate = new TestClient(template, apikeyTokenCreate); + + testClientCreate.createTemplate({}, function (err, res, template) { + assert.ifError(err); + + const testClientGet = new TestClient(template, apikeyTokenGet); + testClientGet.getTemplate( + { + templateId: template.template_id, + response: { status: 401 } + }, + function (err, res, response) { + assert.ifError(err); + + assert.equal(res.statusCode, 401); + + assert.equal(response.errors.length, 1); + assert.ok(response.errors[0].match(/Unauthorized/), response.errors[0]); + + testClientGet.drain(done); + } + ); + }); }); }); - it('should fail updating a named map using a regular apikey token', function (done) { - const apikeyTokenCreate = 1234; - const apikeyTokenUpdate = 'regular1'; - - const template = Object.assign({}, templateBase, { name: templateBase.name + '-update-regular' }); - const templateUpdate = Object.assign({}, template, { zoom: 3 }); - const testClientCreate = new TestClient(template, apikeyTokenCreate); - - testClientCreate.createTemplate({}, function (err, res, template) { - assert.ifError(err); - - const testClientDelete = new TestClient({}, apikeyTokenUpdate); - testClientDelete.updateTemplate( - { - templateId: template.template_id, - templateData: templateUpdate, - response: { status: 403 } - }, - function (err, res, response) { - assert.ifError(err); - - assert.equal(res.statusCode, 403); - - assert.equal(response.errors.length, 1); - assert.ok(response.errors[0].match(/Forbidden/), response.errors[0]); - - testClientDelete.drain(done); + describe('UPDATE Named Map', function () { + const templateBase = { + version: '0.0.1', + name: 'auth-api-template', + placeholders: { + buffersize: { + type: 'number', + default: 0 } - ); - }); - }); - - it('should fail updating a named map using the default apikey token', function (done) { - const apikeyTokenCreate = 1234; - const apikeyTokenUpdate = 'default_public'; - - const template = Object.assign({}, templateBase, { name: templateBase.name + '-update-default' }); - const templateUpdate = Object.assign({}, template, { zoom: 3 }); - const testClientCreate = new TestClient(template, apikeyTokenCreate); - - testClientCreate.createTemplate({}, function (err, res, template) { - assert.ifError(err); - - const testClientDelete = new TestClient({}, apikeyTokenUpdate); - testClientDelete.updateTemplate( - { - templateId: template.template_id, - templateData: templateUpdate, - response: { status: 403 } - }, - function (err, res, response) { - assert.ifError(err); - - assert.equal(res.statusCode, 403); - - assert.equal(response.errors.length, 1); - assert.ok(response.errors[0].match(/Forbidden/), response.errors[0]); - - testClientDelete.drain(done); - } - ); - }); - }); - - it('should fail updating a named map using a non-existent apikey token', function (done) { - const apikeyTokenCreate = 1234; - const apikeyTokenUpdate = 'wadus'; - - const template = Object.assign({}, templateBase, { name: templateBase.name + '-update-wadus' }); - const templateUpdate = Object.assign({}, template, { zoom: 3 }); - const testClientCreate = new TestClient(template, apikeyTokenCreate); - - testClientCreate.createTemplate({}, function (err, res, template) { - assert.ifError(err); - - const testClientDelete = new TestClient({}, apikeyTokenUpdate); - testClientDelete.updateTemplate( - { - templateId: template.template_id, - templateData: templateUpdate, - response: { status: 401 } - }, - function (err, res, response) { - assert.ifError(err); - - assert.equal(res.statusCode, 401); - - assert.equal(response.errors.length, 1); - assert.ok(response.errors[0].match(/Unauthorized/), response.errors[0]); - - testClientDelete.drain(done); - } - ); - }); - }); - - }); - - it.skip('should fail creating a named map using a regular apikey token and a private table', function (done) { - const apikeyToken = 'regular1'; - - const template = { - version: '0.0.1', - name: 'auth-api-template-private', - placeholders: { - buffersize: { - type: 'number', - default: 0 + }, + layergroup: { + version: '1.7.0', + layers: [{ + type: 'cartodb', + options: { + sql: 'select * from test_table_localhost_regular1', + cartocss: TestClient.CARTOCSS.POINTS, + cartocss_version: '2.3.0', + } + }] } - }, - layergroup: { - version: '1.7.0', - layers: [{ - type: 'cartodb', - options: { - sql: 'select * from populated_places_simple_reduced_private', - cartocss: TestClient.CARTOCSS.POINTS, - cartocss_version: '2.3.0', - } - }] - } - }; + }; - const testClient = new TestClient(template, apikeyToken); + it('should update a named map using the master apikey token', function (done) { + const apikeyTokenCreate = 1234; + const apikeyTokenUpdate = 1234; - testClient.getTile(0, 0, 0, { response: PERMISSION_DENIED_RESPONSE }, function (err, res, body) { - assert.ifError(err); + const template = Object.assign({}, templateBase, { name: templateBase.name + '-update-master' }); + const templateUpdate = Object.assign({}, template, { zoom: 3 }); + const testClientCreate = new TestClient(template, apikeyTokenCreate); - assert.ok(body.hasOwnProperty('errors')); - assert.equal(body.errors.length, 1); - assert.ok(body.errors[0].match(/permission denied/), body.errors[0]); + testClientCreate.createTemplate({}, function (err, res, template) { + assert.ifError(err); - testClient.drain(done); - }); + const testClientDelete = new TestClient({}, apikeyTokenUpdate); + testClientDelete.updateTemplate( + { + templateId: template.template_id, + templateData: templateUpdate, + response: { status: 200 } + }, + function (err, res) { + assert.ifError(err); + + assert.equal(res.statusCode, 200); + + testClientDelete.drain(done); + } + ); + }); + }); + + it('should fail updating a named map using a regular apikey token', function (done) { + const apikeyTokenCreate = 1234; + const apikeyTokenUpdate = 'regular1'; + + const template = Object.assign({}, templateBase, { name: templateBase.name + '-update-regular' }); + const templateUpdate = Object.assign({}, template, { zoom: 3 }); + const testClientCreate = new TestClient(template, apikeyTokenCreate); + + testClientCreate.createTemplate({}, function (err, res, template) { + assert.ifError(err); + + const testClientDelete = new TestClient({}, apikeyTokenUpdate); + testClientDelete.updateTemplate( + { + templateId: template.template_id, + templateData: templateUpdate, + response: { status: 403 } + }, + function (err, res, response) { + assert.ifError(err); + + assert.equal(res.statusCode, 403); + + assert.equal(response.errors.length, 1); + assert.ok(response.errors[0].match(/Forbidden/), response.errors[0]); + + testClientDelete.drain(done); + } + ); + }); + }); + + it('should fail updating a named map using the default apikey token', function (done) { + const apikeyTokenCreate = 1234; + const apikeyTokenUpdate = 'default_public'; + + const template = Object.assign({}, templateBase, { name: templateBase.name + '-update-default' }); + const templateUpdate = Object.assign({}, template, { zoom: 3 }); + const testClientCreate = new TestClient(template, apikeyTokenCreate); + + testClientCreate.createTemplate({}, function (err, res, template) { + assert.ifError(err); + + const testClientDelete = new TestClient({}, apikeyTokenUpdate); + testClientDelete.updateTemplate( + { + templateId: template.template_id, + templateData: templateUpdate, + response: { status: 403 } + }, + function (err, res, response) { + assert.ifError(err); + + assert.equal(res.statusCode, 403); + + assert.equal(response.errors.length, 1); + assert.ok(response.errors[0].match(/Forbidden/), response.errors[0]); + + testClientDelete.drain(done); + } + ); + }); + }); + + it('should fail updating a named map using a non-existent apikey token', function (done) { + const apikeyTokenCreate = 1234; + const apikeyTokenUpdate = 'wadus'; + + const template = Object.assign({}, templateBase, { name: templateBase.name + '-update-wadus' }); + const templateUpdate = Object.assign({}, template, { zoom: 3 }); + const testClientCreate = new TestClient(template, apikeyTokenCreate); + + testClientCreate.createTemplate({}, function (err, res, template) { + assert.ifError(err); + + const testClientDelete = new TestClient({}, apikeyTokenUpdate); + testClientDelete.updateTemplate( + { + templateId: template.template_id, + templateData: templateUpdate, + response: { status: 401 } + }, + function (err, res, response) { + assert.ifError(err); + + assert.equal(res.statusCode, 401); + + assert.equal(response.errors.length, 1); + assert.ok(response.errors[0].match(/Unauthorized/), response.errors[0]); + + testClientDelete.drain(done); + } + ); + }); + }); + + }); }); }); diff --git a/test/support/test-client.js b/test/support/test-client.js index 3e35b740..f7911cc1 100644 --- a/test/support/test-client.js +++ b/test/support/test-client.js @@ -1483,6 +1483,46 @@ TestClient.prototype.updateTemplate = function (params, callback) { break; } + return callback(err, res, body); + }); +}; + + +TestClient.prototype.getTemplate = function (params, callback) { + if (!this.apiKey) { + return callback(new Error('apiKey param is mandatory to create a new template')); + } + + const getTemplateRequest = { + url: `/api/v1/map/named/${params.templateId}?${qs.stringify({ api_key: this.apiKey })}`, + method: 'GET', + headers: { + host: 'localhost' + } + }; + + let getTemplateResponse = { + status: 200, + headers: { + 'Content-Type': 'application/json; charset=utf-8' + } + }; + + if (params.response) { + getTemplateResponse = Object.assign(getTemplateResponse, params.response); + } + + assert.response(this.server, getTemplateRequest, getTemplateResponse, (res, err) => { + let body; + switch (res.headers['content-type']) { + case 'application/json; charset=utf-8': + body = JSON.parse(res.body); + break; + default: + body = res.body; + break; + } + return callback(err, res, body); }); }; \ No newline at end of file