Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Topics/k1ch/ Admin DELETE:/personas/{persona_key} #90

Merged
merged 3 commits into from
Jan 26, 2024
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
23 changes: 22 additions & 1 deletion database/layer/admin-persona.js
Original file line number Diff line number Diff line change
Expand Up @@ -73,9 +73,29 @@ const insertPersonaByTenantKey = async (tenantKey, subClaim, userContext = '') =
}
}

/**
* Get persona by personaKey
*
* @param {number} personaKey - The persona key
* @returns {Promise<Object>} - A promise that resolves to the persona object with matching personaKey
*/
const getPersona = async (personaKey) => {
try {
return await usherDb('personas').select('*').where({ key: personaKey }).first();
return await usherDb('personas').select('*').where({ key: personaKey }).first()
} catch (err) {
throw pgErrorHandler(err)
}
}

/**
* Delete a persona record by persona key
*
* @param {number} personaKey - The persona key to delete
* @returns {Promise<number>} - A promise that resolves to the number of deleted records
*/
const deletePersonaByKey = async (personaKey) => {
try {
return await usherDb('personas').where({ key: personaKey }).del()
} catch (err) {
throw pgErrorHandler(err)
}
Expand All @@ -87,4 +107,5 @@ module.exports = {
updatePersona,
insertPersonaByTenantKey,
getPersona,
deletePersonaByKey,
}
54 changes: 53 additions & 1 deletion database/test/db-admin-persona.test.js
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
const { describe, it, before, after, afterEach } = require('mocha')
const { describe, it, before, afterEach } = require('mocha')
const assert = require('assert')
const adminPersonas = require('../layer/admin-persona')
const { usherDb } = require('../layer/knex')
Expand Down Expand Up @@ -64,4 +64,56 @@ describe('Admin persona view', () => {
assert.strictEqual(persona, undefined)
})
})

describe('Test Delete personas by key', () => {
let testPersonaKey
let validPermissionKey
let validRoleKey
let validTenantKey
const invalidPersonaKey = 999999

before(async () => {
const { key: permissionKey } = await usherDb('permissions').select('key').first()
validPermissionKey = permissionKey
const { key: roleKey } = await usherDb('roles').select('key').first()
validRoleKey = roleKey
const { key: tenantKey } = await usherDb('tenants').select('key').first()
validTenantKey = tenantKey
})

beforeEach(async () => {
const [persona] = await usherDb('personas').insert({ tenantkey: validTenantKey, sub_claim: 'persona@test' }).returning('key')
testPersonaKey = persona.key
})

it('Should return 0 when there is no persona record to delete', async () => {
const numberOfDeletedRecords = await adminPersonas.deletePersonaByKey(invalidPersonaKey)
assert.equal(numberOfDeletedRecords, 0)
})

it('Should return 1 when successfully deletes a persona record', async () => {
const numberOfDeletedRecords = await adminPersonas.deletePersonaByKey(testPersonaKey)
assert.equal(numberOfDeletedRecords, 1)
})

it('Should delete persona and cascade delete personapermission records', async () => {
await usherDb('personapermissions').insert({ personakey: testPersonaKey, permissionkey: validPermissionKey })
const numberOfDeletedRecords = await adminPersonas.deletePersonaByKey(testPersonaKey)
assert.equal(numberOfDeletedRecords, 1)
const personaPermission = await usherDb('personapermissions').select('*').where({ personakey: testPersonaKey })
assert.equal(personaPermission.length, 0)
})

it('Should delete persona and cascade delete personarole records', async () => {
await usherDb('personaroles').insert({ personakey: testPersonaKey, rolekey: validRoleKey })
const numberOfDeletedRecords = await adminPersonas.deletePersonaByKey(testPersonaKey)
assert.equal(numberOfDeletedRecords, 1)
const personaRole = await usherDb('personaroles').select('*').where({ personakey: testPersonaKey })
assert.equal(personaRole.length, 0)
})

afterEach(async () => {
await usherDb('personas').where({ key: testPersonaKey }).del()
})
})
})
22 changes: 22 additions & 0 deletions server/src/api_endpoints/personas/persona.js
Original file line number Diff line number Diff line change
@@ -1,5 +1,6 @@
const createError = require('http-errors')
const dbAdminPersona = require('database/layer/admin-persona')
const { checkPersonaExists } = require('./utils')

const createPersona = async (req, res, next) => {
try {
Expand All @@ -11,6 +12,27 @@ const createPersona = async (req, res, next) => {
}
}

/**
* HTTP Request handler
* Delete a persona by key and sends 204 statusCode on success
*
* @param {Object} req - The request object
* @param {Object} res - The response object
* @param {Function} next - The next middleware function
* @returns {Promise<void>} - A promise that resolves to void
*/
const deletePersona = async (req, res, next) => {
try {
const { persona_key: personaKey } = req.params
await checkPersonaExists(personaKey)
await dbAdminPersona.deletePersonaByKey(personaKey)
res.status(204).send()
} catch ({ httpStatusCode = 500, message }) {
return next(createError(httpStatusCode, { message }))
}
}

module.exports = {
createPersona,
deletePersona,
}
1 change: 0 additions & 1 deletion server/src/logging/winston-logger.js
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,6 @@ const expressWinston = require('express-winston')
const fs = require('fs')
const WinstonCloudWatch = require('winston-aws-cloudwatch') // Winston-CloudWatch package
require('dotenv').config()
const env = require('../../server-env')

const logger = expressWinston.logger({
transports: getLoggingTransports(),
Expand Down
56 changes: 55 additions & 1 deletion server/test/endpoint_admin_personas.test.js
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@ const { describe, it, before, afterEach } = require('mocha')
const fetch = require('node-fetch')
const assert = require('assert')

const { getAdmin1IdPToken } = require('./lib/tokens')
const { getAdmin1IdPToken, getTestUser1IdPToken } = require('./lib/tokens')
const { getServerUrl } = require('./lib/urls')
const { usherDb } = require('../../database/layer/knex')

Expand Down Expand Up @@ -64,4 +64,58 @@ describe('Admin Personas', () => {
} catch { }
})
})

describe('DELETE:/personas/{persona_key}', () => {
let testPersonaKey
let validTenantKey
const invalidPersonaKey = 999999
const deletePersona = async (personaKey = testPersonaKey, header = requestHeaders) => {
return await fetch(`${url}/personas/${personaKey}`, {
method: 'DELETE',
headers: header,
})
}

before(async () => {
const { key } = await usherDb('tenants').select('key').first()
validTenantKey = key
})

beforeEach(async () => {
const [persona] = await usherDb('personas').insert({ tenantkey: validTenantKey, sub_claim: 'persona@test' }).returning('key')
testPersonaKey = persona.key
})

it('should return 204, successfully deletes a persona', async () => {
const response = await deletePersona(testPersonaKey)
assert.equal(response.status, 204)
const personas = await usherDb('personas').select('*').where({ key: testPersonaKey })
assert.equal(personas.length, 0)
})

it('should return 400, for invalid persona_key path parameter', async () => {
const response = await deletePersona('a')
assert.equal(response.status, 400)
})

it('should return 401, unauthorized token', async () => {
const userAccessToken = await getTestUser1IdPToken()
const response = await deletePersona(
testPersonaKey,
{
...requestHeaders,
Authorization: `Bearer ${userAccessToken}`
})
assert.equal(response.status, 401)
})

it('should return 404, persona does not exist to delete', async () => {
const response = await deletePersona(invalidPersonaKey)
assert.equal(response.status, 404)
})

afterEach(async () => {
await usherDb('personas').where({ key: testPersonaKey }).del()
})
})
})
4 changes: 2 additions & 2 deletions server/test/endpoint_clients.test.js
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,7 @@ describe('Admin Clients Endpoint Test', () => {
it('Should return error for missing fields', async () => {
let body = { name: 'API Client Name' }
const response = await fetch(`${url}/clients`, { method: 'POST', body: JSON.stringify(body), headers: requestHeaders })
const data = await response.json()
await response.json()
assert.strictEqual(response.status, 400, 'Expected 400 error response code')
})
it('Should return error for invalid tenant name', async () => {
Expand Down Expand Up @@ -65,7 +65,7 @@ describe('Admin Clients Endpoint Test', () => {

after(async () => {
// clean up newly created Clients
const results = await dbAdminRole.deleteClientByClientId('api-client-1')
await dbAdminRole.deleteClientByClientId('api-client-1')
})
})

Expand Down
23 changes: 23 additions & 0 deletions server/the-usher-openapi-spec.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -469,6 +469,29 @@ paths:
500:
$ref: '#/components/responses/InternalError'

/personas/{persona_key}:
delete:
'x-swagger-router-controller': 'personas/persona'
operationId: deletePersona
summary: Deletes the subject persona
parameters:
- $ref: '#/components/parameters/personaKeyPathParam'
tags:
- Admin APIs
security:
- bearerAdminAuth: []
responses:
204:
description: Empty response on success
400:
$ref: '#/components/responses/BadRequest'
401:
$ref: '#/components/responses/Unauthorized'
404:
$ref: '#/components/responses/NotFound'
500:
$ref: '#/components/responses/InternalError'

/personas/{persona_key}/permissions:
get:
'x-swagger-router-controller': 'personas/permissions'
Expand Down
Loading