feat: add tests for all resolvers

TODO.md

@@ -8,11 +8,7 @@
 - [x] Check extra data in oauth profile and save accordingly
 - [x] Update all the resolver to make them compatible with schema changes
 - [x] Update JWT claims
-- [] Write integration tests for all resolvers
+- [x] Write integration tests for all resolvers
-- [] Update doc
-  - [] Rename all schemas + vars
-- [] Update JS lib
-- [] Update react lib
 
 ## Feature Multiple sessions
 

server/resolvers/update_profile.go

@@ -113,7 +113,8 @@ func UpdateProfile(ctx context.Context, params model.UpdateProfileInput) (*model
 		}
 		newEmail := strings.ToLower(*params.Email)
 		// check if user with new email exists
-		_, err = db.Mgr.GetUserByEmail(newEmail)
+		_, err := db.Mgr.GetUserByEmail(newEmail)
+
 		// err = nil means user exists
 		if err == nil {
 			return res, fmt.Errorf("user with this email address already exists")

server/test/cors_test.go

@@ -15,8 +15,9 @@ func TestCors(t *testing.T) {
 	defer s.Server.Close()
 	client := &http.Client{}
 
-	s.Req.Header.Add("Origin", allowedOrigin)
+	req, _ := createContext(s)
-	res, _ := client.Do(s.Req)
+	req.Header.Add("Origin", allowedOrigin)
+	res, _ := client.Do(req)
 
 	// You should get your origin (or a * depending on your config) if the
 	// passed origin is allowed.

server/test/delete_user_test.go

@@ -0,0 +1,34 @@
+package test
+
+import (
+	"testing"
+
+	"github.com/authorizerdev/authorizer/server/constants"
+	"github.com/authorizerdev/authorizer/server/graph/model"
+	"github.com/authorizerdev/authorizer/server/resolvers"
+	"github.com/stretchr/testify/assert"
+)
+
+func deleteUserTest(s TestSetup, t *testing.T) {
+	t.Run(`should delete users with admin secret only`, func(t *testing.T) {
+		req, ctx := createContext(s)
+		email := "delete_user." + s.TestInfo.Email
+		resolvers.Signup(ctx, model.SignUpInput{
+			Email:           email,
+			Password:        s.TestInfo.Password,
+			ConfirmPassword: s.TestInfo.Password,
+		})
+
+		_, err := resolvers.DeleteUser(ctx, model.DeleteUserInput{
+			Email: email,
+		})
+		assert.NotNil(t, err, "unauthorized")
+
+		req.Header.Add("x-authorizer-admin-secret", constants.ADMIN_SECRET)
+		_, err = resolvers.DeleteUser(ctx, model.DeleteUserInput{
+			Email: email,
+		})
+		assert.Nil(t, err)
+		cleanData(email)
+	})
+}

server/test/forgot_password_test.go

@@ -11,22 +11,25 @@ import (
 )
 
 func forgotPasswordTest(s TestSetup, t *testing.T) {
-	email := "forgot_password." + s.TestInfo.Email
+	t.Run(`should run forgot password`, func(t *testing.T) {
-	_, err := resolvers.Signup(s.Ctx, model.SignUpInput{
+		_, ctx := createContext(s)
-		Email:           email,
+		email := "forgot_password." + s.TestInfo.Email
-		Password:        s.TestInfo.Password,
+		_, err := resolvers.Signup(ctx, model.SignUpInput{
-		ConfirmPassword: s.TestInfo.Password,
+			Email:           email,
+			Password:        s.TestInfo.Password,
+			ConfirmPassword: s.TestInfo.Password,
+		})
+
+		_, err = resolvers.ForgotPassword(ctx, model.ForgotPasswordInput{
+			Email: email,
+		})
+		assert.Nil(t, err, "no errors for forgot password")
+
+		verificationRequest, err := db.Mgr.GetVerificationByEmail(email, enum.ForgotPassword.String())
+		assert.Nil(t, err)
+
+		assert.Equal(t, verificationRequest.Identifier, enum.ForgotPassword.String())
+
+		cleanData(email)
 	})
-
-	_, err = resolvers.ForgotPassword(s.Ctx, model.ForgotPasswordInput{
-		Email: email,
-	})
-	assert.Nil(t, err, "no errors for forgot password")
-
-	verificationRequest, err := db.Mgr.GetVerificationByEmail(email, enum.ForgotPassword.String())
-	assert.Nil(t, err)
-
-	assert.Equal(t, verificationRequest.Identifier, enum.ForgotPassword.String())
-
-	cleanData(email)
 }

server/test/login_test.go

@@ -11,45 +11,48 @@ import (
 )
 
 func loginTests(s TestSetup, t *testing.T) {
-	email := "login." + s.TestInfo.Email
+	t.Run(`should login`, func(t *testing.T) {
-	_, err := resolvers.Signup(s.Ctx, model.SignUpInput{
+		_, ctx := createContext(s)
-		Email:           email,
+		email := "login." + s.TestInfo.Email
-		Password:        s.TestInfo.Password,
+		_, err := resolvers.Signup(ctx, model.SignUpInput{
-		ConfirmPassword: s.TestInfo.Password,
+			Email:           email,
+			Password:        s.TestInfo.Password,
+			ConfirmPassword: s.TestInfo.Password,
+		})
+
+		_, err = resolvers.Login(ctx, model.LoginInput{
+			Email:    email,
+			Password: s.TestInfo.Password,
+		})
+
+		assert.NotNil(t, err, "should fail because email is not verified")
+
+		verificationRequest, err := db.Mgr.GetVerificationByEmail(email, enum.BasicAuthSignup.String())
+		resolvers.VerifyEmail(ctx, model.VerifyEmailInput{
+			Token: verificationRequest.Token,
+		})
+
+		_, err = resolvers.Login(ctx, model.LoginInput{
+			Email:    email,
+			Password: s.TestInfo.Password,
+			Roles:    []string{"test"},
+		})
+		assert.NotNil(t, err, "invalid roles")
+
+		_, err = resolvers.Login(ctx, model.LoginInput{
+			Email:    email,
+			Password: s.TestInfo.Password + "s",
+		})
+		assert.NotNil(t, err, "invalid password")
+
+		loginRes, err := resolvers.Login(ctx, model.LoginInput{
+			Email:    email,
+			Password: s.TestInfo.Password,
+		})
+
+		assert.Nil(t, err, "login successful")
+		assert.NotNil(t, loginRes.AccessToken, "access token should not be empty")
+
+		cleanData(email)
 	})
-
-	_, err = resolvers.Login(s.Ctx, model.LoginInput{
-		Email:    email,
-		Password: s.TestInfo.Password,
-	})
-
-	assert.NotNil(t, err, "should fail because email is not verified")
-
-	verificationRequest, err := db.Mgr.GetVerificationByEmail(email, enum.BasicAuthSignup.String())
-	resolvers.VerifyEmail(s.Ctx, model.VerifyEmailInput{
-		Token: verificationRequest.Token,
-	})
-
-	_, err = resolvers.Login(s.Ctx, model.LoginInput{
-		Email:    email,
-		Password: s.TestInfo.Password,
-		Roles:    []string{"test"},
-	})
-	assert.NotNil(t, err, "invalid roles")
-
-	_, err = resolvers.Login(s.Ctx, model.LoginInput{
-		Email:    email,
-		Password: s.TestInfo.Password + "s",
-	})
-	assert.NotNil(t, err, "invalid password")
-
-	loginRes, err := resolvers.Login(s.Ctx, model.LoginInput{
-		Email:    email,
-		Password: s.TestInfo.Password,
-	})
-
-	assert.Nil(t, err, "login successful")
-	assert.Nil(t, loginRes.AccessToken, "access token should not be empty")
-
-	cleanData(email)
 }

server/test/logout_test.go

@@ -0,0 +1,35 @@
+package test
+
+import (
+	"testing"
+
+	"github.com/authorizerdev/authorizer/server/db"
+	"github.com/authorizerdev/authorizer/server/enum"
+	"github.com/authorizerdev/authorizer/server/graph/model"
+	"github.com/authorizerdev/authorizer/server/resolvers"
+	"github.com/stretchr/testify/assert"
+)
+
+func logoutTests(s TestSetup, t *testing.T) {
+	t.Run(`should logout user`, func(t *testing.T) {
+		req, ctx := createContext(s)
+		email := "logout." + s.TestInfo.Email
+
+		_, err := resolvers.MagicLinkLogin(ctx, model.MagicLinkLoginInput{
+			Email: email,
+		})
+
+		verificationRequest, err := db.Mgr.GetVerificationByEmail(email, enum.MagicLink.String())
+		verifyRes, err := resolvers.VerifyEmail(ctx, model.VerifyEmailInput{
+			Token: verificationRequest.Token,
+		})
+
+		token := *verifyRes.AccessToken
+		req.Header.Add("Authorization", "Bearer "+token)
+		_, err = resolvers.Logout(ctx)
+		assert.Nil(t, err)
+		_, err = resolvers.Profile(ctx)
+		assert.NotNil(t, err, "unauthorized")
+		cleanData(email)
+	})
+}

server/test/magic_link_login_test.go

@@ -0,0 +1,35 @@
+package test
+
+import (
+	"testing"
+
+	"github.com/authorizerdev/authorizer/server/db"
+	"github.com/authorizerdev/authorizer/server/enum"
+	"github.com/authorizerdev/authorizer/server/graph/model"
+	"github.com/authorizerdev/authorizer/server/resolvers"
+	"github.com/stretchr/testify/assert"
+)
+
+func magicLinkLoginTests(s TestSetup, t *testing.T) {
+	t.Run(`should login with magic link`, func(t *testing.T) {
+		req, ctx := createContext(s)
+		email := "magic_link_login." + s.TestInfo.Email
+
+		_, err := resolvers.MagicLinkLogin(ctx, model.MagicLinkLoginInput{
+			Email: email,
+		})
+		assert.Nil(t, err)
+
+		verificationRequest, err := db.Mgr.GetVerificationByEmail(email, enum.MagicLink.String())
+		verifyRes, err := resolvers.VerifyEmail(ctx, model.VerifyEmailInput{
+			Token: verificationRequest.Token,
+		})
+
+		token := *verifyRes.AccessToken
+		req.Header.Add("Authorization", "Bearer "+token)
+		_, err = resolvers.Profile(ctx)
+		assert.Nil(t, err)
+
+		cleanData(email)
+	})
+}

server/test/meta_test.go

@@ -0,0 +1,23 @@
+package test
+
+import (
+	"context"
+	"testing"
+
+	"github.com/authorizerdev/authorizer/server/resolvers"
+	"github.com/stretchr/testify/assert"
+)
+
+func metaTests(s TestSetup, t *testing.T) {
+	t.Run(`should get meta information`, func(t *testing.T) {
+		ctx := context.Background()
+		meta, err := resolvers.Meta(ctx)
+		assert.Nil(t, err)
+		assert.False(t, meta.IsFacebookLoginEnabled)
+		assert.False(t, meta.IsGoogleLoginEnabled)
+		assert.False(t, meta.IsGithubLoginEnabled)
+		assert.True(t, meta.IsEmailVerificationEnabled)
+		assert.True(t, meta.IsBasicAuthenticationEnabled)
+		assert.True(t, meta.IsMagicLinkLoginEnabled)
+	})
+}

server/test/profile_test.go

@@ -0,0 +1,42 @@
+package test
+
+import (
+	"testing"
+
+	"github.com/authorizerdev/authorizer/server/db"
+	"github.com/authorizerdev/authorizer/server/enum"
+	"github.com/authorizerdev/authorizer/server/graph/model"
+	"github.com/authorizerdev/authorizer/server/resolvers"
+	"github.com/stretchr/testify/assert"
+)
+
+func profileTests(s TestSetup, t *testing.T) {
+	t.Run(`should get profile only with token`, func(t *testing.T) {
+		req, ctx := createContext(s)
+		email := "profile." + s.TestInfo.Email
+
+		resolvers.Signup(ctx, model.SignUpInput{
+			Email:           email,
+			Password:        s.TestInfo.Password,
+			ConfirmPassword: s.TestInfo.Password,
+		})
+
+		_, err := resolvers.Profile(ctx)
+		assert.NotNil(t, err, "unauthorized")
+
+		verificationRequest, err := db.Mgr.GetVerificationByEmail(email, enum.BasicAuthSignup.String())
+		verifyRes, err := resolvers.VerifyEmail(ctx, model.VerifyEmailInput{
+			Token: verificationRequest.Token,
+		})
+
+		token := *verifyRes.AccessToken
+		req.Header.Add("Authorization", "Bearer "+token)
+		profileRes, err := resolvers.Profile(ctx)
+		assert.Nil(t, err)
+
+		newEmail := *&profileRes.Email
+		assert.Equal(t, email, newEmail, "emails should be equal")
+
+		cleanData(email)
+	})
+}

server/test/resend_verify_email_test.go

@@ -10,19 +10,22 @@ import (
 )
 
 func resendVerifyEmailTests(s TestSetup, t *testing.T) {
-	email := "resend_verify_email." + s.TestInfo.Email
+	t.Run(`should resend verification email`, func(t *testing.T) {
-	_, err := resolvers.Signup(s.Ctx, model.SignUpInput{
+		_, ctx := createContext(s)
-		Email:           email,
+		email := "resend_verify_email." + s.TestInfo.Email
-		Password:        s.TestInfo.Password,
+		_, err := resolvers.Signup(ctx, model.SignUpInput{
-		ConfirmPassword: s.TestInfo.Password,
+			Email:           email,
+			Password:        s.TestInfo.Password,
+			ConfirmPassword: s.TestInfo.Password,
+		})
+
+		_, err = resolvers.ResendVerifyEmail(ctx, model.ResendVerifyEmailInput{
+			Email:      email,
+			Identifier: enum.BasicAuthSignup.String(),
+		})
+
+		assert.Nil(t, err)
+
+		cleanData(email)
 	})
-
-	_, err = resolvers.ResendVerifyEmail(s.Ctx, model.ResendVerifyEmailInput{
-		Email:      email,
-		Identifier: enum.BasicAuthSignup.String(),
-	})
-
-	assert.Nil(t, err)
-
-	cleanData(email)
 }

server/test/reset_password_test.go

@@ -11,36 +11,39 @@ import (
 )
 
 func resetPasswordTest(s TestSetup, t *testing.T) {
-	email := "reset_password." + s.TestInfo.Email
+	t.Run(`should reset password`, func(t *testing.T) {
-	_, err := resolvers.Signup(s.Ctx, model.SignUpInput{
+		email := "reset_password." + s.TestInfo.Email
-		Email:           email,
+		_, ctx := createContext(s)
-		Password:        s.TestInfo.Password,
+		_, err := resolvers.Signup(ctx, model.SignUpInput{
-		ConfirmPassword: s.TestInfo.Password,
+			Email:           email,
+			Password:        s.TestInfo.Password,
+			ConfirmPassword: s.TestInfo.Password,
+		})
+
+		_, err = resolvers.ForgotPassword(ctx, model.ForgotPasswordInput{
+			Email: email,
+		})
+		assert.Nil(t, err, "no errors for forgot password")
+
+		verificationRequest, err := db.Mgr.GetVerificationByEmail(email, enum.ForgotPassword.String())
+		assert.Nil(t, err, "should get forgot password request")
+
+		_, err = resolvers.ResetPassword(ctx, model.ResetPasswordInput{
+			Token:           verificationRequest.Token,
+			Password:        "test1",
+			ConfirmPassword: "test",
+		})
+
+		assert.NotNil(t, err, "passowrds don't match")
+
+		_, err = resolvers.ResetPassword(ctx, model.ResetPasswordInput{
+			Token:           verificationRequest.Token,
+			Password:        "test1",
+			ConfirmPassword: "test1",
+		})
+
+		assert.Nil(t, err, "password changed successfully")
+
+		cleanData(email)
 	})
-
-	_, err = resolvers.ForgotPassword(s.Ctx, model.ForgotPasswordInput{
-		Email: email,
-	})
-	assert.Nil(t, err, "no errors for forgot password")
-
-	verificationRequest, err := db.Mgr.GetVerificationByEmail(email, enum.ForgotPassword.String())
-	assert.Nil(t, err, "should get forgot password request")
-
-	_, err = resolvers.ResetPassword(s.Ctx, model.ResetPasswordInput{
-		Token:           verificationRequest.Token,
-		Password:        "test1",
-		ConfirmPassword: "test",
-	})
-
-	assert.NotNil(t, err, "passowrds don't match")
-
-	_, err = resolvers.ResetPassword(s.Ctx, model.ResetPasswordInput{
-		Token:           verificationRequest.Token,
-		Password:        "test1",
-		ConfirmPassword: "test1",
-	})
-
-	assert.Nil(t, err, "password changed successfully")
-
-	cleanData(email)
 }

server/test/resolvers_test.go

@@ -1,7 +1,6 @@
 package test
 
 import (
-	"log"
 	"testing"
 
 	"github.com/authorizerdev/authorizer/server/constants"
@@ -16,21 +15,33 @@ func TestResolvers(t *testing.T) {
 		enum.Mongodb.String():  "mongodb://localhost:27017",
 	}
 
-	log.Println("==== Testing resolvers =====")
-
 	for dbType, dbURL := range databases {
 		constants.DATABASE_URL = dbURL
 		constants.DATABASE_TYPE = dbType
 		db.InitDB()
+
 		s := testSetup()
 		defer s.Server.Close()
-		t.Run("running test cases for "+dbType, func(t *testing.T) {
+
+		t.Run("should pass tests for "+dbType, func(t *testing.T) {
 			loginTests(s, t)
 			signupTests(s, t)
 			forgotPasswordTest(s, t)
 			resendVerifyEmailTests(s, t)
 			resetPasswordTest(s, t)
 			verifyEmailTest(s, t)
+			sessionTests(s, t)
+			profileTests(s, t)
+			updateProfileTests(s, t)
+			magicLinkLoginTests(s, t)
+			logoutTests(s, t)
+			metaTests(s, t)
+
+			// admin tests
+			verificationRequestsTest(s, t)
+			usersTest(s, t)
+			deleteUserTest(s, t)
+			updateUserTest(s, t)
 		})
 	}
 }

server/test/session_test.go

@@ -0,0 +1,42 @@
+package test
+
+import (
+	"testing"
+
+	"github.com/authorizerdev/authorizer/server/db"
+	"github.com/authorizerdev/authorizer/server/enum"
+	"github.com/authorizerdev/authorizer/server/graph/model"
+	"github.com/authorizerdev/authorizer/server/resolvers"
+	"github.com/stretchr/testify/assert"
+)
+
+func sessionTests(s TestSetup, t *testing.T) {
+	t.Run(`should allow access to profile with session only`, func(t *testing.T) {
+		req, ctx := createContext(s)
+		email := "session." + s.TestInfo.Email
+
+		resolvers.Signup(ctx, model.SignUpInput{
+			Email:           email,
+			Password:        s.TestInfo.Password,
+			ConfirmPassword: s.TestInfo.Password,
+		})
+
+		_, err := resolvers.Session(ctx, []string{})
+		assert.NotNil(t, err, "unauthorized")
+
+		verificationRequest, err := db.Mgr.GetVerificationByEmail(email, enum.BasicAuthSignup.String())
+		verifyRes, err := resolvers.VerifyEmail(ctx, model.VerifyEmailInput{
+			Token: verificationRequest.Token,
+		})
+
+		token := *verifyRes.AccessToken
+		req.Header.Add("Authorization", "Bearer "+token)
+		sessionRes, err := resolvers.Session(ctx, []string{})
+		assert.Nil(t, err)
+
+		newToken := *sessionRes.AccessToken
+		assert.Equal(t, token, newToken, "tokens should be equal")
+
+		cleanData(email)
+	})
+}

server/test/signup_test.go

@@ -11,34 +11,37 @@ import (
 )
 
 func signupTests(s TestSetup, t *testing.T) {
-	email := "signup." + s.TestInfo.Email
+	t.Run(`should complete the signup and check duplicates`, func(t *testing.T) {
-	res, err := resolvers.Signup(s.Ctx, model.SignUpInput{
+		_, ctx := createContext(s)
-		Email:           email,
+		email := "signup." + s.TestInfo.Email
-		Password:        s.TestInfo.Password,
+		res, err := resolvers.Signup(ctx, model.SignUpInput{
-		ConfirmPassword: s.TestInfo.Password + "s",
+			Email:           email,
+			Password:        s.TestInfo.Password,
+			ConfirmPassword: s.TestInfo.Password + "s",
+		})
+		assert.NotNil(t, err, "invalid password errors")
+
+		res, err = resolvers.Signup(ctx, model.SignUpInput{
+			Email:           email,
+			Password:        s.TestInfo.Password,
+			ConfirmPassword: s.TestInfo.Password,
+		})
+
+		user := *res.User
+		assert.Equal(t, email, user.Email)
+		assert.Nil(t, res.AccessToken, "access token should be nil")
+
+		res, err = resolvers.Signup(ctx, model.SignUpInput{
+			Email:           email,
+			Password:        s.TestInfo.Password,
+			ConfirmPassword: s.TestInfo.Password,
+		})
+
+		assert.NotNil(t, err, "should throw duplicate email error")
+
+		verificationRequest, err := db.Mgr.GetVerificationByEmail(email, enum.BasicAuthSignup.String())
+		assert.Nil(t, err)
+		assert.Equal(t, email, verificationRequest.Email)
+		cleanData(email)
 	})
-	assert.NotNil(t, err, "invalid password errors")
-
-	res, err = resolvers.Signup(s.Ctx, model.SignUpInput{
-		Email:           email,
-		Password:        s.TestInfo.Password,
-		ConfirmPassword: s.TestInfo.Password,
-	})
-
-	user := *res.User
-	assert.Equal(t, email, user.Email)
-	assert.Nil(t, res.AccessToken, "access token should be nil")
-
-	res, err = resolvers.Signup(s.Ctx, model.SignUpInput{
-		Email:           email,
-		Password:        s.TestInfo.Password,
-		ConfirmPassword: s.TestInfo.Password,
-	})
-
-	assert.NotNil(t, err, "should throw duplicate email error")
-
-	verificationRequest, err := db.Mgr.GetVerificationByEmail(email, enum.BasicAuthSignup.String())
-	assert.Nil(t, err)
-	assert.Equal(t, email, verificationRequest.Email)
-	cleanData(email)
 }

server/test/test.go

@@ -2,7 +2,6 @@ package test
 
 import (
 	"context"
-	"log"
 	"net/http"
 	"net/http/httptest"
 
@@ -26,9 +25,7 @@ type TestData struct {
 type TestSetup struct {
 	GinEngine  *gin.Engine
 	GinContext *gin.Context
-	Ctx        context.Context
 	Server     *httptest.Server
-	Req        *http.Request
 	TestInfo   TestData
 }
 
@@ -49,21 +46,24 @@ func cleanData(email string) {
 	}
 
 	dbUser, err := db.Mgr.GetUserByEmail(email)
-	if err != nil {
+	if err == nil {
-		log.Println("error getting user:", err)
+		db.Mgr.DeleteUser(dbUser)
-	} else {
+		db.Mgr.DeleteUserSession(dbUser.ID)
-		err = db.Mgr.DeleteUser(dbUser)
-		if err != nil {
-			log.Println("error deleting user:", err)
-		}
-
-		err = db.Mgr.DeleteUserSession(dbUser.ID)
-		if err != nil {
-			log.Println("error deleting user session:", err)
-		}
 	}
 }
 
+func createContext(s TestSetup) (*http.Request, context.Context) {
+	req, _ := http.NewRequest(
+		"POST",
+		"http://"+s.Server.Listener.Addr().String()+"/graphql",
+		nil,
+	)
+
+	ctx := context.WithValue(req.Context(), "GinContextKey", s.GinContext)
+	s.GinContext.Request = req
+	return req, ctx
+}
+
 func testSetup() TestSetup {
 	testData := TestData{
 		Email:    "authorizer_tester@yopmail.com",
@@ -84,21 +84,10 @@ func testSetup() TestSetup {
 
 	server := httptest.NewServer(r)
 
-	req, _ := http.NewRequest(
-		"POST",
-		"http://"+server.Listener.Addr().String()+"/graphql",
-		nil,
-	)
-	req.Header.Add("x-authorizer-admin-secret", constants.ADMIN_SECRET)
-	c.Request = req
-	ctx := context.WithValue(req.Context(), "GinContextKey", c)
-
 	return TestSetup{
 		GinEngine:  r,
 		GinContext: c,
-		Ctx:        ctx,
 		Server:     server,
-		Req:        req,
 		TestInfo:   testData,
 	}
 }

server/test/update_profile_test.go

@@ -0,0 +1,53 @@
+package test
+
+import (
+	"testing"
+
+	"github.com/authorizerdev/authorizer/server/db"
+	"github.com/authorizerdev/authorizer/server/enum"
+	"github.com/authorizerdev/authorizer/server/graph/model"
+	"github.com/authorizerdev/authorizer/server/resolvers"
+	"github.com/stretchr/testify/assert"
+)
+
+func updateProfileTests(s TestSetup, t *testing.T) {
+	t.Run(`should update the profile with access token only`, func(t *testing.T) {
+		req, ctx := createContext(s)
+		email := "update_profile." + s.TestInfo.Email
+
+		resolvers.Signup(ctx, model.SignUpInput{
+			Email:           email,
+			Password:        s.TestInfo.Password,
+			ConfirmPassword: s.TestInfo.Password,
+		})
+
+		fName := "samani"
+		_, err := resolvers.UpdateProfile(ctx, model.UpdateProfileInput{
+			FamilyName: &fName,
+		})
+		assert.NotNil(t, err, "unauthorized")
+
+		verificationRequest, err := db.Mgr.GetVerificationByEmail(email, enum.BasicAuthSignup.String())
+		verifyRes, err := resolvers.VerifyEmail(ctx, model.VerifyEmailInput{
+			Token: verificationRequest.Token,
+		})
+
+		token := *verifyRes.AccessToken
+		req.Header.Add("Authorization", "Bearer "+token)
+		_, err = resolvers.UpdateProfile(ctx, model.UpdateProfileInput{
+			FamilyName: &fName,
+		})
+		assert.Nil(t, err)
+
+		newEmail := "new_" + email
+		_, err = resolvers.UpdateProfile(ctx, model.UpdateProfileInput{
+			Email: &newEmail,
+		})
+		assert.Nil(t, err)
+		_, err = resolvers.Profile(ctx)
+		assert.NotNil(t, err, "unauthorized")
+
+		cleanData(newEmail)
+		cleanData(email)
+	})
+}

server/test/update_user_test.go

@@ -0,0 +1,40 @@
+package test
+
+import (
+	"testing"
+
+	"github.com/authorizerdev/authorizer/server/constants"
+	"github.com/authorizerdev/authorizer/server/graph/model"
+	"github.com/authorizerdev/authorizer/server/resolvers"
+	"github.com/stretchr/testify/assert"
+)
+
+func updateUserTest(s TestSetup, t *testing.T) {
+	t.Run(`should update the user with admin secret only`, func(t *testing.T) {
+		req, ctx := createContext(s)
+		email := "update_user." + s.TestInfo.Email
+		signupRes, _ := resolvers.Signup(ctx, model.SignUpInput{
+			Email:           email,
+			Password:        s.TestInfo.Password,
+			ConfirmPassword: s.TestInfo.Password,
+		})
+
+		user := *signupRes.User
+		adminRole := "admin"
+		userRole := "user"
+		newRoles := []*string{&adminRole, &userRole}
+		_, err := resolvers.UpdateUser(ctx, model.UpdateUserInput{
+			ID:    user.ID,
+			Roles: newRoles,
+		})
+		assert.NotNil(t, err, "unauthorized")
+
+		req.Header.Add("x-authorizer-admin-secret", constants.ADMIN_SECRET)
+		_, err = resolvers.UpdateUser(ctx, model.UpdateUserInput{
+			ID:    user.ID,
+			Roles: newRoles,
+		})
+		assert.Nil(t, err)
+		cleanData(email)
+	})
+}

server/test/users_test.go

@@ -0,0 +1,33 @@
+package test
+
+import (
+	"testing"
+
+	"github.com/authorizerdev/authorizer/server/constants"
+	"github.com/authorizerdev/authorizer/server/graph/model"
+	"github.com/authorizerdev/authorizer/server/resolvers"
+	"github.com/stretchr/testify/assert"
+)
+
+func usersTest(s TestSetup, t *testing.T) {
+	t.Run(`should get users list with admin secret only`, func(t *testing.T) {
+		req, ctx := createContext(s)
+		email := "users." + s.TestInfo.Email
+		resolvers.Signup(ctx, model.SignUpInput{
+			Email:           email,
+			Password:        s.TestInfo.Password,
+			ConfirmPassword: s.TestInfo.Password,
+		})
+
+		users, err := resolvers.Users(ctx)
+		assert.NotNil(t, err, "unauthorized")
+
+		req.Header.Add("x-authorizer-admin-secret", constants.ADMIN_SECRET)
+		users, err = resolvers.Users(ctx)
+		assert.Nil(t, err)
+		rLen := len(users)
+		assert.GreaterOrEqual(t, rLen, 1)
+
+		cleanData(email)
+	})
+}

server/test/verification_requests_test.go

@@ -0,0 +1,35 @@
+package test
+
+import (
+	"testing"
+
+	"github.com/authorizerdev/authorizer/server/constants"
+	"github.com/authorizerdev/authorizer/server/graph/model"
+	"github.com/authorizerdev/authorizer/server/resolvers"
+	"github.com/stretchr/testify/assert"
+)
+
+func verificationRequestsTest(s TestSetup, t *testing.T) {
+	t.Run(`should get verification requests with admin secret only`, func(t *testing.T) {
+		req, ctx := createContext(s)
+
+		email := "verification_requests." + s.TestInfo.Email
+		resolvers.Signup(ctx, model.SignUpInput{
+			Email:           email,
+			Password:        s.TestInfo.Password,
+			ConfirmPassword: s.TestInfo.Password,
+		})
+
+		requests, err := resolvers.VerificationRequests(ctx)
+		assert.NotNil(t, err, "unauthorizer")
+
+		req.Header.Add("x-authorizer-admin-secret", constants.ADMIN_SECRET)
+		requests, err = resolvers.VerificationRequests(ctx)
+
+		assert.Nil(t, err)
+		rLen := len(requests)
+		assert.GreaterOrEqual(t, rLen, 1)
+
+		cleanData(email)
+	})
+}

server/test/verify_email_test.go

@@ -11,25 +11,28 @@ import (
 )
 
 func verifyEmailTest(s TestSetup, t *testing.T) {
-	email := "verify_email." + s.TestInfo.Email
+	t.Run(`should verify email`, func(t *testing.T) {
-	res, err := resolvers.Signup(s.Ctx, model.SignUpInput{
+		_, ctx := createContext(s)
-		Email:           email,
+		email := "verify_email." + s.TestInfo.Email
-		Password:        s.TestInfo.Password,
+		res, err := resolvers.Signup(ctx, model.SignUpInput{
-		ConfirmPassword: s.TestInfo.Password,
+			Email:           email,
+			Password:        s.TestInfo.Password,
+			ConfirmPassword: s.TestInfo.Password,
+		})
+
+		user := *res.User
+		assert.Equal(t, email, user.Email)
+		assert.Nil(t, res.AccessToken, "access token should be nil")
+		verificationRequest, err := db.Mgr.GetVerificationByEmail(email, enum.BasicAuthSignup.String())
+		assert.Nil(t, err)
+		assert.Equal(t, email, verificationRequest.Email)
+
+		verifyRes, err := resolvers.VerifyEmail(ctx, model.VerifyEmailInput{
+			Token: verificationRequest.Token,
+		})
+		assert.Nil(t, err)
+		assert.NotEqual(t, verifyRes.AccessToken, "", "access token should not be empty")
+
+		cleanData(email)
 	})
-
-	user := *res.User
-	assert.Equal(t, email, user.Email)
-	assert.Nil(t, res.AccessToken, "access token should be nil")
-	verificationRequest, err := db.Mgr.GetVerificationByEmail(email, enum.BasicAuthSignup.String())
-	assert.Nil(t, err)
-	assert.Equal(t, email, verificationRequest.Email)
-
-	verifyRes, err := resolvers.VerifyEmail(s.Ctx, model.VerifyEmailInput{
-		Token: verificationRequest.Token,
-	})
-	assert.Nil(t, err)
-	assert.NotEqual(t, verifyRes.AccessToken, "", "access token should not be empty")
-
-	cleanData(email)
 }