X-Git-Url: https://git.arvados.org/arvados-workbench2.git/blobdiff_plain/580cf2a7f5a26954eeb6ded91a28838b0a150925..9ee35a64c605f116aec71f78c65b54730d6e1076:/cypress/integration/login.spec.js diff --git a/cypress/integration/login.spec.js b/cypress/integration/login.spec.js index 30fce0a6..25c8cd4b 100644 --- a/cypress/integration/login.spec.js +++ b/cypress/integration/login.spec.js @@ -6,6 +6,7 @@ describe('Login tests', function() { let activeUser; let inactiveUser; let adminUser; + let randomUser = {}; before(function() { // Only set up common users once. These aren't set up as aliases because @@ -27,6 +28,16 @@ describe('Login tests', function() { inactiveUser = this.inactiveUser; } ); + randomUser.username = `randomuser${Math.floor(Math.random() * Math.floor(999999))}`; + randomUser.password = { + crypt: 'zpAReoZzPnwmQ', + clear: 'topsecret', + }; + cy.exec(`useradd ${randomUser.username} -p ${randomUser.password.crypt}`); + }) + + after(function() { + cy.exec(`userdel ${randomUser.username}`); }) beforeEach(function() { @@ -60,15 +71,36 @@ describe('Login tests', function() { it('logs in successfully with valid user token', function() { cy.visit(`/token/?api_token=${activeUser.token}`); cy.url().should('contain', '/projects/'); + cy.get('div#root').should('contain', 'Arvados Workbench (zzzzz)'); cy.get('div#root').should('not.contain', 'Your account is inactive'); cy.get('button[title="Account Management"]').click(); cy.get('ul[role=menu] > li[role=menuitem]').contains( `${activeUser.user.first_name} ${activeUser.user.last_name}`); }) + it('logs out when token no longer valid', function() { + // Log in + cy.visit(`/token/?api_token=${activeUser.token}`); + cy.url().should('contain', '/projects/'); + cy.get('div#root').should('contain', 'Arvados Workbench (zzzzz)'); + cy.get('div#root').should('not.contain', 'Your account is inactive'); + // Invalidate own token. + const tokenUuid = activeUser.token.split('/')[1]; + cy.doRequest('PUT', `/arvados/v1/api_client_authorizations/${tokenUuid}`, { + id: tokenUuid, + api_client_authorization: JSON.stringify({ + api_token: `randomToken${Math.floor(Math.random() * Math.floor(999999))}` + }) + }, null, activeUser.token, true); + // Should log the user out. + cy.visit('/'); + cy.get('div#root').should('contain', 'Please log in'); + }) + it('logs in successfully with valid admin token', function() { cy.visit(`/token/?api_token=${adminUser.token}`); cy.url().should('contain', '/projects/'); + cy.get('div#root').should('contain', 'Arvados Workbench (zzzzz)'); cy.get('div#root').should('not.contain', 'Your account is inactive'); cy.get('button[title="Admin Panel"]').click(); cy.get('ul[role=menu] > li[role=menuitem]') @@ -78,4 +110,25 @@ describe('Login tests', function() { cy.get('ul[role=menu] > li[role=menuitem]').contains( `${adminUser.user.first_name} ${adminUser.user.last_name}`); }) + + it('fails to authenticate using the login form with wrong password', function() { + cy.visit('/'); + cy.get('#username').type(randomUser.username); + cy.get('#password').type('wrong password'); + cy.get("button span:contains('Log in')").click(); + cy.get('p#password-helper-text').should('contain', 'PAM: Authentication failure'); + cy.url().should('not.contain', '/projects/'); + }) + + it('successfully authenticates using the login form', function() { + cy.visit('/'); + cy.get('#username').type(randomUser.username); + cy.get('#password').type(randomUser.password.clear); + cy.get("button span:contains('Log in')").click(); + cy.url().should('contain', '/projects/'); + cy.get('div#root').should('contain', 'Arvados Workbench (zzzzz)'); + cy.get('div#root').should('contain', 'Your account is inactive'); + cy.get('button[title="Account Management"]').click(); + cy.get('ul[role=menu] > li[role=menuitem]').contains(randomUser.username); + }) }) \ No newline at end of file