Nemcio/NodeBB
1
0
Fork 0
mirror of https://github.com/NodeBB/NodeBB.git synced 2025-12-16 05:20:24 +01:00
Code Issues Packages Projects Releases Wiki Activity

test: privilege masking tests

Browse Source
This commit is contained in:
Julian Lam
2025-12-03 13:53:12 -05:00
parent f0a7a442db
commit 934e6be911
1 changed files with 95 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

95
test/activitypub/privileges.js
View File

@@ -203,4 +203,99 @@ describe('Privilege logic for remote users/content (ActivityPub)', () => {
});
});
});
});
describe('Privilege masking', () => {
before(async () => {
// Grant default fediverse privileges
await install.giveWorldPrivileges();
});
describe('control', () => {
let cid;
let uid;
before(async () => {
// Set up a standard mock group
({ id: cid } = helpers.mocks.group());
// Unprivileged user for testing
uid = await user.create({ username: utils.generateUUID().slice(0, 10) });
});
it('should properly assert the remote category', async () => {
const assertion = await activitypub.actors.assertGroup([cid]);
const exists = await categories.exists(cid);
assert(assertion);
assert(exists);
});
it('should not set up a privilege mask for that category', async () => {
const exists = await db.exists(`cid:${cid}:privilegeMask`);
assert(!exists);
});
it('should pass the privileges .can() check if requested', async () => {
const set = await privileges.categories.get(cid, uid);
console.log(set);
const can = await privileges.categories.can('topics:create', cid, uid);
assert(can);
});
it('should return true in the privilege set when requested', async () => {
const set = await privileges.categories.get(cid, uid);
assert(set);
assert(set['topics:create']);
});
});
describe('postingRestrictedToMods', () => {
let cid;
let uid;
before(async () => {
// Set up a mock group with `postingRestrictedToMods` bit set
({ id: cid } = helpers.mocks.group({
postingRestrictedToMods: true,
}));
// Unprivileged user for testing
uid = await user.create({ username: utils.generateUUID().slice(0, 10) });
});
it('should properly assert the remote category', async () => {
const assertion = await activitypub.actors.assertGroup([cid]);
const exists = await categories.exists(cid);
assert(assertion);
assert(exists);
});
it('should set up a privilege mask for that category', async () => {
const exists = await db.exists(`cid:${cid}:privilegeMask`);
assert(exists);
});
it('should contain a single mask', async () => {
const members = await db.getSetMembers(`cid:${cid}:privilegeMask`);
assert(members);
assert.strictEqual(members.length, 1);
assert.strictEqual(members[0], 'topics:create');
});
it('should fail the privileges .can() check if requested', async () => {
const can = await privileges.categories.can('topics:create', cid, uid);
assert(!can);
});
it('should return false in the privilege set when requested', async () => {
const set = await privileges.categories.get(cid, uid);
assert(set);
assert(!set['topics:create']);
});
});
});