Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat(core): Add includeData parameter to GET /credentials #12220

Merged
merged 19 commits into from
Dec 31, 2024
Merged

feat(core): Add includeData parameter to GET /credentials #12220

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
19 commits
Select commit Hold shift + click to select a range
6093c5a
add DTOs for `GET /credentials` and `GET /credentials/:credentialId`
despairblue Dec 13, 2024
fc99b55
destructure options and assign defaults
despairblue Dec 13, 2024
bbc3f95
feat(core): Add `includeData` parameter to `GET /credentials`
despairblue Dec 13, 2024
fe46872
fix: default value type
r00gm Dec 18, 2024
e57c92c
chore: remove mocks
r00gm Dec 18, 2024
37834b3
apply feedback
despairblue Dec 27, 2024
e9220ce
redact by default when decrypting credentials
despairblue Dec 27, 2024
733d7ed
add docstring
despairblue Dec 27, 2024
f6b2b2f
fix imports
despairblue Dec 27, 2024
d38e918
remove unintended change
despairblue Dec 27, 2024
e8143d2
update zod-class
despairblue Dec 30, 2024
c0aba3b
move booleanLiteral to right folder
despairblue Dec 30, 2024
2149602
convert boolean literals to booleans
despairblue Dec 30, 2024
ba14efb
add tests for DTOs
despairblue Dec 30, 2024
5b88f74
rename schema
despairblue Dec 30, 2024
5fad0ca
default to false
despairblue Dec 30, 2024
dccbd33
remove unnecessary case
despairblue Dec 30, 2024
8a1b523
add tests to increase coverage
despairblue Dec 30, 2024
7956302
mock more
despairblue Dec 31, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
62 changes: 61 additions & 1 deletion packages/cli/src/credentials/__tests__/credentials.service.test.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,6 +1,8 @@
import { mock } from 'jest-mock-extended';
import { nanoId, date } from 'minifaker';
import { Cipher } from 'n8n-core';
import { CREDENTIAL_EMPTY_VALUE, type ICredentialType } from 'n8n-workflow';
import Container from 'typedi';

import { CREDENTIAL_BLANKING_VALUE } from '@/constants';
import type { CredentialTypes } from '@/credential-types';
Expand Down Expand Up @@ -30,6 +32,8 @@ describe('CredentialsService', () => {
},
],
});

const cipher = Container.get(Cipher);
const credentialTypes = mock<CredentialTypes>();
const service = new CredentialsService(
mock(),
Expand Down Expand Up @@ -61,7 +65,7 @@ describe('CredentialsService', () => {
csrfSecret: 'super-secret',
};

credentialTypes.getByName.calledWith(credential.type).mockReturnValue(credType);
credentialTypes.getByName.calledWith(credential.type).mockReturnValueOnce(credType);

const redactedData = service.redact(decryptedData, credential);

Expand Down Expand Up @@ -137,4 +141,60 @@ describe('CredentialsService', () => {
});
});
});

describe('decrypt', () => {
it('should redact sensitive values by default', () => {
// ARRANGE
const data = {
clientId: 'abc123',
clientSecret: 'sensitiveSecret',
accessToken: '',
oauthTokenData: 'super-secret',
csrfSecret: 'super-secret',
};
const credential = mock<CredentialsEntity>({
id: '123',
name: 'Test Credential',
type: 'oauth2',
data: cipher.encrypt(data),
});
credentialTypes.getByName.calledWith(credential.type).mockReturnValueOnce(credType);

// ACT
const redactedData = service.decrypt(credential);
despairblue marked this conversation as resolved.
Show resolved Hide resolved

// ASSERT
expect(redactedData).toEqual({
clientId: 'abc123',
clientSecret: CREDENTIAL_BLANKING_VALUE,
accessToken: CREDENTIAL_EMPTY_VALUE,
oauthTokenData: CREDENTIAL_BLANKING_VALUE,
csrfSecret: CREDENTIAL_BLANKING_VALUE,
});
});

it('should return sensitive values if `includeRawData` is true', () => {
// ARRANGE
const data = {
clientId: 'abc123',
clientSecret: 'sensitiveSecret',
accessToken: '',
oauthTokenData: 'super-secret',
csrfSecret: 'super-secret',
};
const credential = mock<CredentialsEntity>({
id: '123',
name: 'Test Credential',
type: 'oauth2',
data: cipher.encrypt(data),
});
credentialTypes.getByName.calledWith(credential.type).mockReturnValueOnce(credType);

// ACT
const redactedData = service.decrypt(credential, true);

// ASSERT
expect(redactedData).toEqual(data);
});
});
});
50 changes: 50 additions & 0 deletions packages/cli/src/databases/repositories/__tests__/credentials.repository.test.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,50 @@
import { mock } from 'jest-mock-extended';
import { Container } from 'typedi';

import { CredentialsEntity } from '@/databases/entities/credentials-entity';
import { mockEntityManager } from '@test/mocking';

import { CredentialsRepository } from '../credentials.repository';

const entityManager = mockEntityManager(CredentialsEntity);
const repository = Container.get(CredentialsRepository);

describe('findMany', () => {
const credentialsId = 'cred_123';
const credential = mock<CredentialsEntity>({ id: credentialsId });

beforeEach(() => {
jest.resetAllMocks();
});

test('return `data` property if `includeData:true` and select is using the record syntax', async () => {
// ARRANGE
entityManager.find.mockResolvedValueOnce([credential]);

// ACT
const credentials = await repository.findMany({ includeData: true, select: { id: true } });

// ASSERT
expect(credentials).toHaveLength(1);
expect(credentials[0]).toHaveProperty('data');
});

test('return `data` property if `includeData:true` and select is using the record syntax', async () => {
// ARRANGE
entityManager.find.mockResolvedValueOnce([credential]);

// ACT
const credentials = await repository.findMany({
includeData: true,
//TODO: fix this
// The function's type does not support this but this is what it
// actually gets from the service because the middlewares are typed
// loosely.
select: ['id'] as never,
});

// ASSERT
expect(credentials).toHaveLength(1);
expect(credentials[0]).toHaveProperty('data');
});
});
Loading