borg/drone-detector
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
ef5c1830e7e9cbb2b8ff5c31ac364f6c278df0e0
drone-detector/server/test-rbac.js
Alexander Borg ef5c1830e7 Fix jwt-token
2025-09-13 14:12:29 +02:00

167 lines
4.7 KiB
JavaScript
Raw Blame History

This file contains invisible Unicode characters

This file contains invisible Unicode characters that are indistinguishable to humans but may be processed differently by a computer. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

/**
* Test script to verify RBAC system functionality
*/
const { hasPermission, ROLES, PERMISSIONS } = require('./middleware/rbac');
// Mock users with different roles
const users = {
admin: {
id: 1,
username: 'super_admin',
role: 'admin'
},
user_admin: {
id: 2,
username: 'user_manager',
role: 'user_admin'
},
security_admin: {
id: 3,
username: 'security_manager',
role: 'security_admin'
},
branding_admin: {
id: 4,
username: 'branding_manager',
role: 'branding_admin'
},
operator: {
id: 5,
username: 'device_operator',
role: 'operator'
},
viewer: {
id: 6,
username: 'read_only_user',
role: 'viewer'
}
};
console.log('🧪 Testing RBAC System\n');
// Display available roles and their permissions
console.log('📋 Available Roles:');
Object.entries(ROLES).forEach(([role, permissions]) => {
console.log(` ${role}: ${permissions.join(', ')}`);
});
console.log('\n📋 Available Permissions:');
Object.entries(PERMISSIONS).forEach(([permission, description]) => {
console.log(` ${permission}: ${description}`);
});
},
security_admin: {
id: 3,
username: 'security_manager',
role: 'security_admin'
},
branding_admin: {
id: 4,
username: 'branding_manager',
role: 'branding_admin'
},
operator: {
id: 5,
username: 'basic_operator',
role: 'operator'
},
viewer: {
id: 6,
username: 'read_only',
role: 'viewer'
}
};
// Test scenarios
const testScenarios = [
{
name: 'Admin - Full Access',
user: users.admin,
permissions: ['tenant.view', 'tenant.edit', 'branding.edit', 'security.edit', 'users.create', 'users.edit', 'users.delete'],
expectedResults: [true, true, true, true, true, true, true]
},
{
name: 'User Admin - User Management Only',
user: users.user_admin,
permissions: ['tenant.view', 'tenant.edit', 'branding.edit', 'security.edit', 'users.create', 'users.edit', 'users.delete'],
expectedResults: [true, false, false, false, true, true, true]
},
{
name: 'Security Admin - Security Only',
user: users.security_admin,
permissions: ['tenant.view', 'tenant.edit', 'branding.edit', 'security.edit', 'users.create', 'users.edit', 'users.delete'],
expectedResults: [true, false, false, true, false, false, false]
},
{
name: 'Branding Admin - Branding Only',
user: users.branding_admin,
permissions: ['tenant.view', 'tenant.edit', 'branding.edit', 'security.edit', 'users.create', 'users.edit', 'users.delete'],
expectedResults: [true, false, true, false, false, false, false]
},
{
name: 'Operator - Limited Access',
user: users.operator,
permissions: ['tenant.view', 'tenant.edit', 'branding.edit', 'security.edit', 'users.create', 'users.edit', 'users.delete'],
expectedResults: [true, false, false, false, false, false, false]
},
{
name: 'Viewer - Read Only',
user: users.viewer,
permissions: ['tenant.view', 'tenant.edit', 'branding.edit', 'security.edit', 'users.create', 'users.edit', 'users.delete'],
expectedResults: [true, false, false, false, false, false, false]
}
];
console.log('🧪 Testing RBAC System\n');
// Display available roles and permissions
console.log('📋 Available Roles:');
Object.keys(ROLES).forEach(role => {
console.log(` ${role}: ${ROLES[role].join(', ')}`);
});
console.log('\n📋 Available Permissions:');
Object.keys(PERMISSIONS).forEach(category => {
console.log(` ${category}:`);
PERMISSIONS[category].forEach(permission => {
console.log(` - ${permission}`);
});
});
console.log('\n🔍 Running Permission Tests:\n');
// Run tests
let totalTests = 0;
let passedTests = 0;
testScenarios.forEach(scenario => {
console.log(`\n👤 ${scenario.name} (${scenario.user.username})`);
console.log('─'.repeat(50));
scenario.permissions.forEach((permission, index) => {
totalTests++;
const result = hasPermission(scenario.user, permission);
const expected = scenario.expectedResults[index];
const passed = result === expected;
if (passed) passedTests++;
const status = passed ? '✅' : '❌';
const expectedText = expected ? 'ALLOW' : 'DENY';
const actualText = result ? 'ALLOW' : 'DENY';
console.log(` ${status} ${permission}: Expected ${expectedText}, Got ${actualText}`);
});
});
console.log('\n📊 Test Results:');
console.log(` Passed: ${passedTests}/${totalTests}`);
console.log(` Success Rate: ${Math.round((passedTests/totalTests) * 100)}%`);
if (passedTests === totalTests) {
console.log('\n🎉 All tests passed! RBAC system is working correctly.');
} else {
console.log('\n⚠ Some tests failed. Please check the RBAC configuration.');
}
Reference in New Issue View Git Blame Copy Permalink