183 lines
7.9 KiB
Java
183 lines
7.9 KiB
Java
package com.yoyuzh.admin;
|
|
|
|
import com.yoyuzh.PortalBackendApplication;
|
|
import com.yoyuzh.auth.User;
|
|
import com.yoyuzh.auth.UserRepository;
|
|
import com.yoyuzh.files.StoredFile;
|
|
import com.yoyuzh.files.StoredFileRepository;
|
|
import org.junit.jupiter.api.BeforeEach;
|
|
import org.junit.jupiter.api.Test;
|
|
import org.springframework.beans.factory.annotation.Autowired;
|
|
import org.springframework.boot.test.autoconfigure.web.servlet.AutoConfigureMockMvc;
|
|
import org.springframework.boot.test.context.SpringBootTest;
|
|
import org.springframework.security.test.context.support.WithMockUser;
|
|
import org.springframework.test.web.servlet.MockMvc;
|
|
|
|
import java.time.LocalDateTime;
|
|
|
|
import static org.springframework.test.web.servlet.request.MockMvcRequestBuilders.delete;
|
|
import static org.springframework.test.web.servlet.request.MockMvcRequestBuilders.get;
|
|
import static org.springframework.test.web.servlet.request.MockMvcRequestBuilders.patch;
|
|
import static org.springframework.test.web.servlet.request.MockMvcRequestBuilders.post;
|
|
import static org.springframework.test.web.servlet.request.MockMvcRequestBuilders.put;
|
|
import static org.springframework.test.web.servlet.result.MockMvcResultMatchers.jsonPath;
|
|
import static org.springframework.test.web.servlet.result.MockMvcResultMatchers.status;
|
|
|
|
@SpringBootTest(
|
|
classes = PortalBackendApplication.class,
|
|
properties = {
|
|
"spring.datasource.url=jdbc:h2:mem:admin_api_test;MODE=MySQL;DB_CLOSE_DELAY=-1",
|
|
"spring.datasource.driver-class-name=org.h2.Driver",
|
|
"spring.datasource.username=sa",
|
|
"spring.datasource.password=",
|
|
"spring.jpa.hibernate.ddl-auto=create-drop",
|
|
"app.jwt.secret=0123456789abcdef0123456789abcdef",
|
|
"app.admin.usernames=admin",
|
|
"app.storage.root-dir=./target/test-storage-admin",
|
|
"app.cqu.require-login=true",
|
|
"app.cqu.mock-enabled=false"
|
|
}
|
|
)
|
|
@AutoConfigureMockMvc
|
|
class AdminControllerIntegrationTest {
|
|
|
|
@Autowired
|
|
private MockMvc mockMvc;
|
|
|
|
@Autowired
|
|
private UserRepository userRepository;
|
|
|
|
@Autowired
|
|
private StoredFileRepository storedFileRepository;
|
|
|
|
private User portalUser;
|
|
private User secondaryUser;
|
|
private StoredFile storedFile;
|
|
private StoredFile secondaryFile;
|
|
|
|
@BeforeEach
|
|
void setUp() {
|
|
storedFileRepository.deleteAll();
|
|
userRepository.deleteAll();
|
|
|
|
portalUser = new User();
|
|
portalUser.setUsername("alice");
|
|
portalUser.setEmail("alice@example.com");
|
|
portalUser.setPasswordHash("encoded-password");
|
|
portalUser.setCreatedAt(LocalDateTime.now());
|
|
portalUser.setLastSchoolStudentId("20230001");
|
|
portalUser.setLastSchoolSemester("2025-2026-1");
|
|
portalUser = userRepository.save(portalUser);
|
|
|
|
secondaryUser = new User();
|
|
secondaryUser.setUsername("bob");
|
|
secondaryUser.setEmail("bob@example.com");
|
|
secondaryUser.setPasswordHash("encoded-password");
|
|
secondaryUser.setCreatedAt(LocalDateTime.now().minusDays(1));
|
|
secondaryUser = userRepository.save(secondaryUser);
|
|
|
|
storedFile = new StoredFile();
|
|
storedFile.setUser(portalUser);
|
|
storedFile.setFilename("report.pdf");
|
|
storedFile.setPath("/");
|
|
storedFile.setStorageName("report.pdf");
|
|
storedFile.setContentType("application/pdf");
|
|
storedFile.setSize(1024L);
|
|
storedFile.setDirectory(false);
|
|
storedFile.setCreatedAt(LocalDateTime.now());
|
|
storedFile = storedFileRepository.save(storedFile);
|
|
|
|
secondaryFile = new StoredFile();
|
|
secondaryFile.setUser(secondaryUser);
|
|
secondaryFile.setFilename("notes.txt");
|
|
secondaryFile.setPath("/docs");
|
|
secondaryFile.setStorageName("notes.txt");
|
|
secondaryFile.setContentType("text/plain");
|
|
secondaryFile.setSize(256L);
|
|
secondaryFile.setDirectory(false);
|
|
secondaryFile.setCreatedAt(LocalDateTime.now().minusHours(2));
|
|
secondaryFile = storedFileRepository.save(secondaryFile);
|
|
}
|
|
|
|
@Test
|
|
@WithMockUser(username = "admin")
|
|
void shouldAllowConfiguredAdminToListUsersAndSummary() throws Exception {
|
|
mockMvc.perform(get("/api/admin/users?page=0&size=10"))
|
|
.andExpect(status().isOk())
|
|
.andExpect(jsonPath("$.code").value(0))
|
|
.andExpect(jsonPath("$.data.items[0].username").value("alice"))
|
|
.andExpect(jsonPath("$.data.items[0].lastSchoolStudentId").value("20230001"))
|
|
.andExpect(jsonPath("$.data.items[0].role").value("USER"))
|
|
.andExpect(jsonPath("$.data.items[0].banned").value(false));
|
|
|
|
mockMvc.perform(get("/api/admin/summary"))
|
|
.andExpect(status().isOk())
|
|
.andExpect(jsonPath("$.data.totalUsers").value(2))
|
|
.andExpect(jsonPath("$.data.totalFiles").value(2))
|
|
.andExpect(jsonPath("$.data.usersWithSchoolCache").value(1));
|
|
}
|
|
|
|
@Test
|
|
@WithMockUser(username = "admin")
|
|
void shouldSupportUserSearchPasswordAndStatusManagement() throws Exception {
|
|
mockMvc.perform(get("/api/admin/users?page=0&size=10&query=ali"))
|
|
.andExpect(status().isOk())
|
|
.andExpect(jsonPath("$.data.total").value(1))
|
|
.andExpect(jsonPath("$.data.items[0].username").value("alice"));
|
|
|
|
mockMvc.perform(patch("/api/admin/users/{userId}/role", portalUser.getId())
|
|
.contentType("application/json")
|
|
.content("""
|
|
{"role":"ADMIN"}
|
|
"""))
|
|
.andExpect(status().isOk())
|
|
.andExpect(jsonPath("$.data.role").value("ADMIN"));
|
|
|
|
mockMvc.perform(patch("/api/admin/users/{userId}/status", portalUser.getId())
|
|
.contentType("application/json")
|
|
.content("""
|
|
{"banned":true}
|
|
"""))
|
|
.andExpect(status().isOk())
|
|
.andExpect(jsonPath("$.data.banned").value(true));
|
|
|
|
mockMvc.perform(put("/api/admin/users/{userId}/password", portalUser.getId())
|
|
.contentType("application/json")
|
|
.content("""
|
|
{"newPassword":"AdminSetPass1!"}
|
|
"""))
|
|
.andExpect(status().isOk())
|
|
.andExpect(jsonPath("$.data.id").value(portalUser.getId()));
|
|
|
|
mockMvc.perform(post("/api/admin/users/{userId}/password/reset", secondaryUser.getId()))
|
|
.andExpect(status().isOk())
|
|
.andExpect(jsonPath("$.data.temporaryPassword").isNotEmpty());
|
|
}
|
|
|
|
@Test
|
|
@WithMockUser(username = "admin")
|
|
void shouldAllowConfiguredAdminToListAndDeleteFiles() throws Exception {
|
|
mockMvc.perform(get("/api/admin/files?page=0&size=10"))
|
|
.andExpect(status().isOk())
|
|
.andExpect(jsonPath("$.data.items[0].filename").value("report.pdf"))
|
|
.andExpect(jsonPath("$.data.items[0].ownerUsername").value("alice"));
|
|
|
|
mockMvc.perform(get("/api/admin/files?page=0&size=10&query=report&ownerQuery=ali"))
|
|
.andExpect(status().isOk())
|
|
.andExpect(jsonPath("$.data.total").value(1))
|
|
.andExpect(jsonPath("$.data.items[0].filename").value("report.pdf"));
|
|
|
|
mockMvc.perform(delete("/api/admin/files/{fileId}", storedFile.getId()))
|
|
.andExpect(status().isOk())
|
|
.andExpect(jsonPath("$.code").value(0));
|
|
}
|
|
|
|
@Test
|
|
@WithMockUser(username = "portal-user")
|
|
void shouldRejectNonAdminUser() throws Exception {
|
|
mockMvc.perform(get("/api/admin/users?page=0&size=10"))
|
|
.andExpect(status().isForbidden())
|
|
.andExpect(jsonPath("$.msg").value("没有权限访问该资源"));
|
|
}
|
|
}
|