65 lines
2.6 KiB
TypeScript
65 lines
2.6 KiB
TypeScript
import { describe, it, expect } from 'vitest';
|
|
import {
|
|
compare_access_levels,
|
|
process_permission_checks,
|
|
access_level_order
|
|
} from './ae_utils__perm_checks';
|
|
|
|
describe('Permission Hierarchy Tests', () => {
|
|
describe('compare_access_levels', () => {
|
|
it('should correctly identify upgrades', () => {
|
|
// High to Low should return 1 (Upgrade if target is high, current is low)
|
|
expect(compare_access_levels('super', 'manager')).toBe(1);
|
|
expect(compare_access_levels('manager', 'administrator')).toBe(1);
|
|
expect(compare_access_levels('administrator', 'trusted')).toBe(1);
|
|
expect(compare_access_levels('trusted', 'authenticated')).toBe(1);
|
|
expect(compare_access_levels('authenticated', 'anonymous')).toBe(1);
|
|
});
|
|
|
|
it('should correctly identify downgrades', () => {
|
|
// Low to High should return -1
|
|
expect(compare_access_levels('manager', 'super')).toBe(-1);
|
|
expect(compare_access_levels('anonymous', 'authenticated')).toBe(
|
|
-1
|
|
);
|
|
});
|
|
|
|
it('should return 0 for equal levels', () => {
|
|
expect(compare_access_levels('manager', 'manager')).toBe(0);
|
|
expect(compare_access_levels('anonymous', 'anonymous')).toBe(0);
|
|
});
|
|
|
|
it('should handle null/empty as anonymous', () => {
|
|
expect(compare_access_levels('trusted', '')).toBe(1);
|
|
expect(compare_access_levels(null as any, 'authenticated')).toBe(
|
|
-1
|
|
);
|
|
});
|
|
});
|
|
|
|
describe('process_permission_checks hierarchy', () => {
|
|
it('manager should imply administrator and trusted', () => {
|
|
const perms = process_permission_checks('manager');
|
|
expect(perms.manager_access).toBe(true);
|
|
expect(perms.administrator_access).toBe(true);
|
|
expect(perms.trusted_access).toBe(true);
|
|
expect(perms.authenticated_access).toBe(true);
|
|
expect(perms.super_access).toBe(false);
|
|
});
|
|
|
|
it('administrator should imply trusted', () => {
|
|
const perms = process_permission_checks('administrator');
|
|
expect(perms.administrator_access).toBe(true);
|
|
expect(perms.trusted_access).toBe(true);
|
|
expect(perms.manager_access).toBe(false);
|
|
});
|
|
|
|
it('anonymous should imply nothing but anonymous_access', () => {
|
|
const perms = process_permission_checks('anonymous');
|
|
expect(perms.anonymous_access).toBe(true);
|
|
expect(perms.authenticated_access).toBe(false);
|
|
expect(perms.trusted_access).toBe(false);
|
|
});
|
|
});
|
|
});
|