Ghost/core/test/unit/models/api-key_spec.js

const models = require('../../../server/models');
const should = require('should');
const testUtils = require('../../utils');

describe('Unit: models/api_key', function () {
    before(models.init);
    before(testUtils.teardown);
    before(testUtils.setup('roles'));

    describe('Add', function () {
        it('sets default secret', function () {
            // roles[5] = 'Admin Integration'
            const role_id = testUtils.DataGenerator.forKnex.roles[5].id;
            const attrs = {
                type: 'admin',
                role_id
            };

            return models.ApiKey.add(attrs).then((api_key) => {
                return models.ApiKey.findOne({id: api_key.id}, {withRelated: ['role']})
                    .then((api_key) => {
                        api_key.get('type').should.eql('admin');
                        api_key.related('role').get('id').should.eql(role_id);

                        // defaults
                        api_key.get('secret').length.should.eql(128);
                    });
            });
        });

        it('sets hardcoded role for key type', function () {
            // roles[5] = 'Admin Integration'
            const role_id = testUtils.DataGenerator.forKnex.roles[5].id;

            const adminKey = {
                type: 'admin'
            };
            const adminCheck = models.ApiKey.add(adminKey).then((api_key) => {
                return models.ApiKey.findOne({id: api_key.id}, {withRelated: ['role']})
                    .then((api_key) => {
                        api_key.get('type').should.eql('admin');

                        // defaults
                        should.exist(api_key.related('role').id);
                        api_key.related('role').get('id').should.eql(role_id);
                    });
            });

            const contentKey = {
                type: 'content',
                role_id: testUtils.DataGenerator.forKnex.roles[0].id
            };
            const contentCheck = models.ApiKey.add(contentKey).then((api_key) => {
                return models.ApiKey.findOne({id: api_key.id}, {withRelated: ['role']})
                    .then((api_key) => {
                        api_key.get('type').should.eql('content');

                        // defaults
                        should.not.exist(api_key.related('role').id);
                    });
            });

            return Promise.all([adminCheck, contentCheck]);
        });
    });
});
Set up schema and models for API Key authentication (#9904) refs https://github.com/TryGhost/Ghost/issues/9865 - schema migrations - adds `integrations` and `api_keys` tables - inserts `integration` and `api_key` permissions and Administrator role relationships - inserts `Admin Integration` role and permissions - adds `Integration` model - adds `ApiKey` model - creates default secret if not given - hardcodes associated role based on key type - `admin` = `Admin API Client` - `content` = no role - updates `Role` model to use `bookshelf-relations` for auto cleanup of permission relationships on destroy 2018-10-02 19:46:38 +03:00			`const models = require('../../../server/models');`
			`const should = require('should');`
			`const testUtils = require('../../utils');`

			`describe('Unit: models/api_key', function () {`
			`before(models.init);`
			`before(testUtils.teardown);`
			`before(testUtils.setup('roles'));`

			`describe('Add', function () {`
			`it('sets default secret', function () {`
			`// roles[5] = 'Admin Integration'`
			`const role_id = testUtils.DataGenerator.forKnex.roles[5].id;`
			`const attrs = {`
			`type: 'admin',`
			`role_id`
			`};`

			`return models.ApiKey.add(attrs).then((api_key) => {`
			`return models.ApiKey.findOne({id: api_key.id}, {withRelated: ['role']})`
			`.then((api_key) => {`
			`api_key.get('type').should.eql('admin');`
			`api_key.related('role').get('id').should.eql(role_id);`

			`// defaults`
			`api_key.get('secret').length.should.eql(128);`
			`});`
			`});`
			`});`

			`it('sets hardcoded role for key type', function () {`
			`// roles[5] = 'Admin Integration'`
			`const role_id = testUtils.DataGenerator.forKnex.roles[5].id;`

			`const adminKey = {`
			`type: 'admin'`
			`};`
			`const adminCheck = models.ApiKey.add(adminKey).then((api_key) => {`
			`return models.ApiKey.findOne({id: api_key.id}, {withRelated: ['role']})`
			`.then((api_key) => {`
			`api_key.get('type').should.eql('admin');`

			`// defaults`
			`should.exist(api_key.related('role').id);`
			`api_key.related('role').get('id').should.eql(role_id);`
			`});`
			`});`

			`const contentKey = {`
			`type: 'content',`
			`role_id: testUtils.DataGenerator.forKnex.roles[0].id`
			`};`
			`const contentCheck = models.ApiKey.add(contentKey).then((api_key) => {`
			`return models.ApiKey.findOne({id: api_key.id}, {withRelated: ['role']})`
			`.then((api_key) => {`
			`api_key.get('type').should.eql('content');`

			`// defaults`
			`should.not.exist(api_key.related('role').id);`
			`});`
			`});`

			`return Promise.all([adminCheck, contentCheck]);`
			`});`
			`});`
			`});`