fix(next): admin access control (#5887)

2024-04-17 10:31:39 -04:00
parent abf0461d80
commit 6cd5b253f1
8 changed files with 108 additions and 15 deletions
--- a/test/helpers.ts
+++ b/test/helpers.ts
@@ -13,6 +13,10 @@ type FirstRegisterArgs = {
 }

 type LoginArgs = {
+  data?: {
+    email: string
+    password: string
+  }
  page: Page
  serverURL: string
 }
@@ -91,14 +95,24 @@ export async function firstRegister(args: FirstRegisterArgs): Promise<void> {
 }

 export async function login(args: LoginArgs): Promise<void> {
-  const { page, serverURL } = args
+  const { page, serverURL, data = devUser } = args

-  await page.goto(`${serverURL}/admin`)
-  await page.fill('#field-email', devUser.email)
-  await page.fill('#field-password', devUser.password)
+  await page.goto(`${serverURL}/admin/login`)
+  await page.waitForURL(`${serverURL}/admin/login`)
+  await wait(500)
+  await page.fill('#field-email', data.email)
+  await page.fill('#field-password', data.password)
  await wait(500)
  await page.click('[type=submit]')
  await page.waitForURL(`${serverURL}/admin`)
+
+  await expect(() => expect(page.url()).not.toContain(`/admin/login`)).toPass({
+    timeout: POLL_TOPASS_TIMEOUT,
+  })
+
+  await expect(() => expect(page.url()).not.toContain(`/admin/create-first-user`)).toPass({
+    timeout: POLL_TOPASS_TIMEOUT,
+  })
 }

 export async function saveDocHotkeyAndAssert(page: Page): Promise<void> {