284313f908
Some checks are pending
Bidi Control Character Guard / bidi-control-guard (push) Waiting to run
Circular Dependency Check / Check for new circular dependencies (push) Waiting to run
Citus Migration Smoke / Combined migrations on single-node Citus (push) Waiting to run
E2E Fresh Install Tests / fresh-install-e2e (push) Waiting to run
ext-v2 guardrails / Run ext-v2 guard and ESLint (push) Waiting to run
Integration Tests / Check for relevant changes (push) Waiting to run
Integration Tests / ${{ (github.event_name == 'schedule' || github.event.inputs.suite == 'full') && 'Full integration suite' || 'Tier-1 integration subset' }} (push) Blocked by required conditions
Mobile checks / Mobile lint + typecheck (push) Waiting to run
Mobile checks / Mobile unit tests (push) Waiting to run
Mobile checks / Mobile dependency audit (report) (push) Waiting to run
Mobile checks / Mobile reproducibility checks (push) Waiting to run
Secrets guard (env backups) / Ensure no tracked env backup files (push) Waiting to run
Temporal Readiness / fast-readiness (push) Waiting to run
Temporal Readiness / docker-parity (push) Waiting to run
TypeScript Type Check / Nx affected typecheck (push) Waiting to run
Unit Tests / Skipped-test budget (push) Waiting to run
Unit Tests / Nx affected unit tests (push) Waiting to run
Unit Tests / Server unit coverage (informational) (push) Waiting to run
Validate Tenant Management Schema / Check for relevant changes (push) Waiting to run
Validate Tenant Management Schema / Validate Tenant Management Schema (push) Blocked by required conditions
EE Workflows Build Guard / ee-workflows-build-guard (push) Waiting to run
Excluded: .git, node_modules, secrets/, compose.env, assemblyscript tgz Source: /opt/alga-psa on psa.joliet.tech
46 lines
1.4 KiB
TypeScript
46 lines
1.4 KiB
TypeScript
import { beforeEach, describe, expect, it, vi } from 'vitest';
|
|
import { hasPermission } from '@alga-psa/auth/rbac';
|
|
|
|
const createTenantKnex = vi.fn();
|
|
|
|
vi.mock('@alga-psa/db', () => ({
|
|
createTenantKnex: (...args: any[]) => createTenantKnex(...args),
|
|
}));
|
|
|
|
vi.mock('@alga-psa/auth/withAuth', () => ({
|
|
withAuth:
|
|
(fn: any) =>
|
|
(...args: any[]) =>
|
|
fn({ id: 'user-1' }, { tenant: 'tenant-1' }, ...args),
|
|
}));
|
|
|
|
vi.mock('@alga-psa/auth/rbac', () => ({
|
|
hasPermission: vi.fn(() => true),
|
|
}));
|
|
|
|
describe('deleteContract action', () => {
|
|
beforeEach(() => {
|
|
vi.clearAllMocks();
|
|
vi.mocked(hasPermission).mockReturnValue(true);
|
|
delete process.env.E2E_AUTH_BYPASS;
|
|
createTenantKnex.mockResolvedValue({ knex: vi.fn() });
|
|
});
|
|
|
|
it('user without contract delete permission cannot discard drafts (T064)', async () => {
|
|
vi.mocked(hasPermission).mockImplementation((_user, _domain, action) => action !== 'delete');
|
|
|
|
const errorSpy = vi.spyOn(console, 'error').mockImplementation(() => {});
|
|
|
|
const { deleteContract } = await import('../src/actions/contractActions');
|
|
try {
|
|
// The action now reports permission failures as a structured result
|
|
// instead of throwing.
|
|
await expect(deleteContract('contract-1')).resolves.toEqual({
|
|
permissionError: 'Permission denied: Cannot delete billing contracts',
|
|
});
|
|
} finally {
|
|
errorSpy.mockRestore();
|
|
}
|
|
});
|
|
});
|