1 // Copyright (C) The Arvados Authors. All rights reserved.
3 // SPDX-License-Identifier: AGPL-3.0
5 describe('Login tests', function() {
12 // Only set up common users once. These aren't set up as aliases because
13 // aliases are cleaned up after every test. Also it doesn't make sense
14 // to set the same users on beforeEach() over and over again, so we
15 // separate a little from Cypress' 'Best Practices' here.
16 cy.getUser('admin', 'Admin', 'User', true, true)
17 .as('adminUser').then(function() {
18 adminUser = this.adminUser;
21 cy.getUser('active', 'Active', 'User', false, true)
22 .as('activeUser').then(function() {
23 activeUser = this.activeUser;
26 cy.getUser('inactive', 'Inactive', 'User', false, false)
27 .as('inactiveUser').then(function() {
28 inactiveUser = this.inactiveUser;
31 // Username/password match Login.Test section of arvados_config.yml
32 randomUser.username = 'randomuser1234';
33 randomUser.password = 'topsecret';
36 it('shows login page on first visit', function() {
38 cy.get('div#root').should('contain', 'Please log in')
39 cy.url().should('not.contain', '/projects/')
42 it('shows login page with no token', function() {
43 cy.visit('/token/?api_token=')
44 cy.get('div#root').should('contain', 'Please log in')
45 cy.url().should('not.contain', '/projects/')
48 it('shows inactive page to inactive user', function() {
49 cy.visit(`/token/?api_token=${inactiveUser.token}`)
50 cy.get('div#root').should('contain', 'Your account is inactive');
53 it('shows login page with invalid token', function() {
54 cy.visit('/token/?api_token=nope')
55 cy.get('div#root').should('contain', 'Please log in')
56 cy.url().should('not.contain', '/projects/')
59 it('logs in successfully with valid user token', function() {
60 cy.visit(`/token/?api_token=${activeUser.token}`);
61 cy.url().should('contain', '/projects/');
62 cy.get('div#root').should('contain', 'Arvados Workbench (zzzzz)');
63 cy.get('div#root').should('not.contain', 'Your account is inactive');
64 cy.get('button[aria-label="Account Management"]').click();
65 cy.get('ul[role=menu] > li[role=menuitem]').contains(
66 `${activeUser.user.first_name} ${activeUser.user.last_name}`);
69 it('logs out when token no longer valid', function() {
71 owningUser: activeUser,
72 projectName: `Test Project ${Math.floor(Math.random() * 999999)}`,
74 }).as('testProject1');
76 cy.visit(`/token/?api_token=${activeUser.token}`);
77 cy.url().should('contain', '/projects/');
78 cy.get('div#root').should('contain', 'Arvados Workbench (zzzzz)');
79 cy.get('div#root').should('not.contain', 'Your account is inactive');
82 // Invalidate own token.
83 const tokenUuid = activeUser.token.split('/')[1];
84 cy.doRequest('PUT', `/arvados/v1/api_client_authorizations/${tokenUuid}`, {
86 api_client_authorization: JSON.stringify({
87 api_token: `randomToken${Math.floor(Math.random() * 999999)}`
89 }, null, activeUser.token, true);
90 // Should log the user out.
92 cy.getAll('@testProject1').then(([testProject1]) => {
93 cy.get('main').contains(testProject1.name).click();
94 cy.get('div#root').should('contain', 'Please log in');
95 // Should retain last visited url when auth is invalidated
96 cy.url().should('contain', `/projects/${testProject1.uuid}`);
100 it('logs in successfully with valid admin token', function() {
101 cy.visit(`/token/?api_token=${adminUser.token}`);
102 cy.url().should('contain', '/projects/');
103 cy.get('div#root').should('contain', 'Arvados Workbench (zzzzz)');
104 cy.get('div#root').should('not.contain', 'Your account is inactive');
105 cy.get('button[aria-label="Admin Panel"]').click();
106 cy.get('ul[role=menu] > li[role=menuitem]')
107 .contains('Repositories')
108 .type('{esc}', {force: true});
109 cy.get('button[aria-label="Account Management"]').click();
110 cy.get('ul[role=menu] > li[role=menuitem]').contains(
111 `${adminUser.user.first_name} ${adminUser.user.last_name}`);
114 it('fails to authenticate using the login form with wrong password', function() {
116 cy.get('#username').type(randomUser.username);
117 cy.get('#password').type('wrong password');
118 cy.contains('button', 'Log in').click();
119 cy.get('p#password-helper-text').should('contain', 'authentication failed');
120 cy.url().should('not.contain', '/projects/');
123 it('successfully authenticates using the login form', function() {
125 cy.get('#username').type(randomUser.username);
126 cy.get('#password').type(randomUser.password);
127 cy.contains('button', 'Log in').click();
128 cy.url().should('contain', '/projects/');
129 cy.get('div#root').should('contain', 'Arvados Workbench (zzzzz)');
130 cy.get('div#root').should('contain', 'Your account is inactive');
131 cy.get('button[aria-label="Account Management"]').click();
132 cy.get('ul[role=menu] > li[role=menuitem]').contains(randomUser.username);