apitech
/
Rocket.Chat
mirror of https://github.com/RocketChat/Rocket.Chat
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

[NEW] REST endpoints to create roles and assign roles to users (#11855)

Browse Source
pull/11957/head^2
André Ferreira 7 years ago committed by Diego Sampaio
parent afab29e21c
commit 02ff65c788
5 changed files with 162 additions and 2 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats Download Patch File Download Diff File
  1. 44
      packages/rocketchat-api/server/v1/roles.js
  2. 12
      packages/rocketchat-authorization/server/models/Roles.js
  3. 7
      tests/data/api-data.js
  4. 5
      tests/data/role.js
  5. 96
      tests/end-to-end/api/13-roles.js

44
packages/rocketchat-api/server/v1/roles.js
Unescape View File

@ -5,3 +5,47 @@ RocketChat.API.v1.addRoute('roles.list', { authRequired: true }, {
return RocketChat.API.v1.success({ roles });
},
});
RocketChat.API.v1.addRoute('roles.create', { authRequired: true }, {
post() {
check(this.bodyParams, {
name: String,
scope: Match.Maybe(String),
description: Match.Maybe(String),
});
const roleData = {
name: this.bodyParams.name,
scope: this.bodyParams.scope,
description: this.bodyParams.description,
};
Meteor.runAsUser(this.userId, () => {
Meteor.call('authorization:saveRole', roleData);
});
return RocketChat.API.v1.success({
role: RocketChat.models.Roles.findOneByIdOrName(roleData.name, { fields: RocketChat.API.v1.defaultFieldsToExclude }),
});
},
});
RocketChat.API.v1.addRoute('roles.addUserToRole', { authRequired: true }, {
post() {
check(this.bodyParams, {
roleName: String,
username: String,
roomId: Match.Maybe(String),
});
const user = this.getUserFromParams();
Meteor.runAsUser(this.userId, () => {
Meteor.call('authorization:addUserToRole', this.bodyParams.roleName, user.username, this.bodyParams.roomId);
});
return RocketChat.API.v1.success({
role: RocketChat.models.Roles.findOneByIdOrName(this.bodyParams.roleName, { fields: RocketChat.API.v1.defaultFieldsToExclude }),
});
},
});

12
packages/rocketchat-authorization/server/models/Roles.js
Unescape View File

@ -63,6 +63,18 @@ class ModelRoles extends RocketChat.models._Base {
}
return true;
}
findOneByIdOrName(_idOrName, options) {
const query = {
$or: [{
_id: _idOrName,
}, {
name: _idOrName,
}],
};
return this.findOne(query, options);
}
}
RocketChat.models.Roles = new ModelRoles('roles');

7
tests/data/api-data.js
Unescape View File

@ -1,4 +1,5 @@
import { publicChannelName, privateChannelName } from '../data/channel.js';
import { roleNameUsers, roleNameSubscriptions, roleScopeUsers, roleScopeSubscriptions, roleDescription } from '../data/role.js';
import { username, email, adminUsername, adminPassword } from '../data/user.js';
import supertest from 'supertest';
export const request = supertest('http://localhost:3000');
@ -9,6 +10,12 @@ export const apiEmail = `api${ email }`;
export const apiPublicChannelName = `api${ publicChannelName }`;
export const apiPrivateChannelName = `api${ privateChannelName }`;
export const apiRoleNameUsers = `api${ roleNameUsers }`;
export const apiRoleNameSubscriptions = `api${ roleNameSubscriptions }`;
export const apiRoleScopeUsers = `${ roleScopeUsers }`;
export const apiRoleScopeSubscriptions = `${ roleScopeSubscriptions }`;
export const apiRoleDescription = `api${ roleDescription }`;
export const targetUser = {};
export const channel = {};
export const group = {};

5
tests/data/role.js
Unescape View File

@ -0,0 +1,5 @@
export const roleNameUsers = `role-name-test-users-${ Date.now() }`;
export const roleNameSubscriptions = `role-name-test-subscriptions-${ Date.now() }`;
export const roleScopeUsers = 'Users';
export const roleScopeSubscriptions = 'Subscriptions';
export const roleDescription = `role-description-test-${ Date.now() }`;

96
tests/end-to-end/api/13-roles.js
Unescape View File

@ -1,14 +1,26 @@
/* eslint-env mocha */
/* globals expect */
import { getCredentials, api, request, credentials } from '../../data/api-data.js';
import {
getCredentials,
api,
request,
credentials,
group,
login,
apiRoleNameUsers,
apiRoleNameSubscriptions,
apiRoleScopeUsers,
apiRoleDescription,
apiRoleScopeSubscriptions,
} from '../../data/api-data.js';
describe('[Roles]', function() {
this.retries(0);
before((done) => getCredentials(done));
describe('GET [/roles]', () => {
describe('GET [/roles.list]', () => {
it('should return all roles', (done) => {
request.get(api('roles.list'))
.set(credentials)
@ -20,4 +32,84 @@ describe('[Roles]', function() {
.end(done);
});
});
describe('POST [/roles.create]', () => {
it('should create a new role with Users scope', (done) => {
request.post(api('roles.create'))
.set(credentials)
.send({
name: apiRoleNameUsers,
description: apiRoleDescription,
})
.expect('Content-Type', 'application/json')
.expect(200)
.expect((res) => {
expect(res.body).to.have.property('success', true);
expect(res.body).to.have.nested.property('role._id', apiRoleNameUsers);
expect(res.body).to.have.nested.property('role.name', apiRoleNameUsers);
expect(res.body).to.have.nested.property('role.scope', apiRoleScopeUsers);
expect(res.body).to.have.nested.property('role.description', apiRoleDescription);
})
.end(done);
});
it('should create a new role with Subscriptions scope', (done) => {
request.post(api('roles.create'))
.set(credentials)
.send({
name: apiRoleNameSubscriptions,
scope: apiRoleScopeSubscriptions,
description: apiRoleDescription,
})
.expect('Content-Type', 'application/json')
.expect(200)
.expect((res) => {
expect(res.body).to.have.property('success', true);
expect(res.body).to.have.nested.property('role._id', apiRoleNameSubscriptions);
expect(res.body).to.have.nested.property('role.name', apiRoleNameSubscriptions);
expect(res.body).to.have.nested.property('role.scope', apiRoleScopeSubscriptions);
expect(res.body).to.have.nested.property('role.description', apiRoleDescription);
})
.end(done);
});
});
describe('POST [/roles.addUserToRole]', () => {
it('should assign a role with User scope to an user', (done) => {
request.post(api('roles.addUserToRole'))
.set(credentials)
.send({
roleName: apiRoleNameUsers,
username: login.user,
})
.expect('Content-Type', 'application/json')
.expect(200)
.expect((res) => {
expect(res.body).to.have.property('success', true);
expect(res.body).to.have.nested.property('role._id', apiRoleNameUsers);
expect(res.body).to.have.nested.property('role.name', apiRoleNameUsers);
expect(res.body).to.have.nested.property('role.scope', apiRoleScopeUsers);
})
.end(done);
});
it('should assign a role with Subscriptions scope to an user', (done) => {
request.post(api('roles.addUserToRole'))
.set(credentials)
.send({
roleName: apiRoleNameSubscriptions,
username: login.user,
roomId: group._id,
})
.expect('Content-Type', 'application/json')
.expect(200)
.expect((res) => {
expect(res.body).to.have.property('success', true);
expect(res.body).to.have.nested.property('role._id', apiRoleNameSubscriptions);
expect(res.body).to.have.nested.property('role.name', apiRoleNameSubscriptions);
expect(res.body).to.have.nested.property('role.scope', apiRoleScopeSubscriptions);
})
.end(done);
});
});
});

Write Preview
Loading…
Cancel
Save