yuuza/outline
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

More extensive specs around documents.info endpoint now that it doesn't require auth

Browse Source
This commit is contained in:
Tom Moor
2018-05-26 13:29:42 -07:00
parent 8c62b6e07a
commit 67e3431fe3
1 changed files with 17 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
server/api/documents.test.js
View File

@@ -74,6 +74,23 @@ describe('#documents.info', async () => {
expect(body.data.updatedBy.id).toEqual(user.id);
});
it('should require authorization without token', async () => {
const { document } = await seed();
const res = await server.post('/api/documents.info', {
body: { id: document.id },
});
expect(res.status).toEqual(403);
});
it('should require authorization with incorrect token', async () => {
const { document } = await seed();
const user = await buildUser();
const res = await server.post('/api/documents.info', {
body: { token: user.getJwtToken(), id: document.id },
});
expect(res.status).toEqual(403);
});
it('should require a valid shareId', async () => {
const res = await server.post('/api/documents.info', {
body: { shareId: 123 },