Client: E2E tests login - register

Added Shai hulud detector to cicd

Author: Rad14nt

.github/workflows/auto-test-deploy.yml

@@ -6,6 +6,28 @@ on:
       - "auto-testing-deploy"
 
 jobs:
+
+  shai-hulud-detector:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout seb-server-gui repo
+        uses: actions/checkout@v6
+        with:
+          path: seb
+          clean: false
+      - name: Checkout Cobenian/shai-hulud-detect
+        uses: actions/checkout@v6
+        with:
+          repository: Cobenian/shai-hulud-detect
+          path: hulud
+          clean: false
+      - # Pipeline will automatically fail on exit codes 1 or 2
+        name: Security Scan with Shai-Hulud Detector
+        run: |
+          chmod +x ./hulud/shai-hulud-detector.sh
+          ./hulud/shai-hulud-detector.sh ./seb
+
+
   build-and-push-admin-auto-test:
     runs-on: ubuntu-latest
     strategy:
@@ -72,3 +94,5 @@ jobs:
           file: ./Dockerfile.storybook
           push: true
           tags: docker.io/${{ secrets.DOCKERHUB_ADMIN_USERNAME }}/storybook:${{ env.TAG_NAME }}
+
+# Add tests deployed to separate image (simple node image and pasted e2e tests in there should do the trick)

client/package-lock.json

@@ -72,7 +72,7 @@
         "@testing-library/dom": "^10.4.1",
         "@testing-library/vue": "^8.1.0",
         "@types/luxon": "^3.4.2",
-        "@types/node": "^20.19.24",
+        "@types/node": "^20.19.27",
         "@types/webfontloader": "^1.6.38",
         "@vitejs/plugin-vue": "^5.2.4",
         "@vitest/browser-playwright": "^4.0.8",

client/package.json

@@ -9,10 +9,7 @@ export default defineConfig({
     reporter: process.env.CI ? "line" : "html",
     use: {
         baseURL: process.env.BASE_URL || "http://localhost:8082",
-        trace: "on-first-retry",
-        launchOptions: {
-            slowMo: 500,
-        },
+        trace: "on",
         contextOptions: {
             javaScriptEnabled: true,
         },

client/playwright.config.ts

@@ -0,0 +1,215 @@
+import { test, expect, Page, Locator } from "@playwright/test";
+
+// create an unique username based on current datetime -> So that there is absolutely no way this test fails because of a duplicate username
+// todo, maybe extreact into a separate method to add current date time to whatever variable
+function uniqueUsername(prefix = "e2e") {
+    const d = new Date();
+    const pad = (n: number) => String(n).padStart(2, "0");
+    const ts = [
+        d.getUTCFullYear(),
+        pad(d.getUTCMonth() + 1),
+        pad(d.getUTCDate()),
+        "-",
+        pad(d.getUTCHours()),
+        pad(d.getUTCMinutes()),
+        pad(d.getUTCSeconds()),
+        "-",
+        d.getUTCMilliseconds(),
+    ].join("");
+    return `${prefix}-${ts}`;
+}
+
+// Setup Method for page
+async function setupRegisterPage(page: Page) {
+    await page.addInitScript(() => {
+        localStorage.clear();
+        sessionStorage.clear();
+    });
+
+    await page.goto("/register");
+    await expect(page.getByTestId("register-page-container")).toBeVisible();
+
+    const institutionSelect = page.getByTestId("register-institution-select");
+    const username = page
+        .getByTestId("register-username-input")
+        .getByRole("textbox");
+    const name = page.getByTestId("register-name-input").getByRole("textbox");
+    const surname = page
+        .getByTestId("register-surname-input")
+        .getByRole("textbox");
+    const email = page.getByTestId("register-email-input").getByRole("textbox");
+    const timezoneSelect = page.getByTestId("register-timezone-select");
+    const password = page
+        .getByTestId("register-password-input")
+        .getByRole("textbox");
+    const confirmPassword = page
+        .getByTestId("register-confirmPassword-input")
+        .getByRole("textbox");
+
+    const submitButton = page.getByTestId("register-submit-btn");
+    const successAlert = page.getByTestId("register-success-alert");
+    const errorAlert = page.getByTestId("register-error-alert");
+
+    return {
+        institutionSelect,
+        username,
+        name,
+        surname,
+        email,
+        timezoneSelect,
+        password,
+        confirmPassword,
+        submitButton,
+        successAlert,
+        errorAlert,
+    };
+}
+
+// select option by text from selector (for institution)
+async function selectVuetifyOptionByName(
+    page: Page,
+    selectRoot: Locator,
+    optionName: string,
+) {
+    const input = selectRoot.locator(".v-field__input").first();
+    await input.click();
+
+    const option = page.getByRole("option", { name: optionName });
+    await option.click();
+
+    await page.keyboard.press("Escape").catch(() => {});
+}
+
+// select first option from selector (for timezone)
+// todo Consider exporting to utils file
+async function selectVuetifyFirstOption(page: Page, selectRoot: Locator) {
+    const input = selectRoot.locator(".v-field__input").first();
+    await input.click();
+
+    await expect(page.getByRole("option").first()).toBeVisible({
+        timeout: 10000,
+    });
+
+    await page.keyboard.press("ArrowDown");
+    await page.keyboard.press("Enter");
+    await page.keyboard.press("Escape").catch(() => {});
+}
+
+//tests
+test.describe("1.1.2 User Accounts - CREATE Register", () => {
+    test("A Success", async ({ page }) => {
+        const {
+            institutionSelect,
+            username,
+            name,
+            surname,
+            email,
+            timezoneSelect,
+            password,
+            confirmPassword,
+            submitButton,
+            successAlert,
+        } = await setupRegisterPage(page);
+
+        const uname = uniqueUsername("e2e-user");
+
+        await selectVuetifyOptionByName(page, institutionSelect, "ETH Zürich");
+
+        await username.fill(uname);
+        await name.fill("Andrei");
+        await surname.fill("Mititelu");
+        await email.fill(`${uname}@example.com`);
+
+        await selectVuetifyFirstOption(page, timezoneSelect);
+        await password.fill("StrongPass123!");
+        await confirmPassword.fill("StrongPass123!");
+
+        await submitButton.click();
+
+        await successAlert.waitFor({ state: "attached", timeout: 10000 });
+        await expect(successAlert).toBeVisible();
+        await expect(page.getByTestId("register-error-alert")).toHaveCount(0);
+    });
+
+    test("B Failed validation (client-side form validation)", async ({
+        page,
+    }) => {
+        const {
+            username,
+            name,
+            surname,
+            email,
+            password,
+            confirmPassword,
+            submitButton,
+        } = await setupRegisterPage(page);
+
+        const uname = uniqueUsername("e2e-invalid");
+
+        await username.fill(uname);
+        await name.fill("Test");
+        await surname.fill("User");
+        await email.fill(`${uname}@example.com`);
+
+        // too short (<8)
+        await password.fill("Abc1");
+        await confirmPassword.fill("Abc1");
+
+        await submitButton.click();
+
+        await expect(page.getByTestId("register-success-alert")).toHaveCount(0);
+        await expect(page.getByTestId("register-error-alert")).toHaveCount(0);
+
+        const anyValidationMessage = page.locator(
+            ".v-messages .v-messages__message",
+        );
+        await expect(anyValidationMessage.first()).toBeVisible();
+    });
+
+    test("C Server error on register (simulated)", async ({ page }) => {
+        await page.route("**/useraccount/register", async (route) => {
+            const req = route.request();
+            if (req.method() !== "POST") return route.fallback();
+
+            return route.fulfill({
+                status: 500,
+                body: JSON.stringify({ message: "Internal Server Error" }),
+                headers: { "Content-Type": "application/json" },
+            });
+        });
+
+        const {
+            institutionSelect,
+            username,
+            name,
+            surname,
+            email,
+            timezoneSelect,
+            password,
+            confirmPassword,
+            submitButton,
+            successAlert,
+            errorAlert,
+        } = await setupRegisterPage(page);
+
+        await selectVuetifyOptionByName(page, institutionSelect, "ETH Zürich");
+
+        const uname = `playwright-error-${Date.now()}`;
+        await username.fill(uname);
+        await name.fill("Server");
+        await surname.fill("Error");
+        await email.fill(`error+${Date.now()}@example.com`);
+
+        await selectVuetifyFirstOption(page, timezoneSelect);
+
+        await password.fill("ValidPass123!");
+        await confirmPassword.fill("ValidPass123!");
+
+        await submitButton.click();
+
+        await expect(errorAlert).toBeVisible();
+        await expect(successAlert).toHaveCount(0);
+
+        await expect(page).toHaveURL(/\/register(?:$|[?#])/i);
+    });
+});

client/tests/e2e/1-user-account/1.2-create-register.spec.ts

@@ -1,8 +1,12 @@
 import { test, expect, Page } from "@playwright/test";
 
-const USER = "playwright";
-const PASS = "playwright";
+//TODO change to whatever we chose to add in DB script via FLYWAY
+const correctUser = "playwright";
+const correctPass = "playwright";
+const wrongUser = "invalid@example.cdasdpef";
+const wrongPass = "wrong-passworddddddddddddddd";
 
+// Setup method for page (this, unlike register test, does NOT use test id's)
 async function setupLoginPage(page: Page) {
     await page.addInitScript(() => {
         localStorage.clear();
@@ -17,12 +21,19 @@ async function setupLoginPage(page: Page) {
     return { username, password };
 }
 
+//this triggers video recording for the worker
+test.use({
+    video: {
+        mode: "on",
+    },
+});
+
 test.describe("1.2.1 User Accounts - READ Log in", () => {
     test("A Successful login", async ({ page }) => {
         const { username, password } = await setupLoginPage(page);
 
-        await username.fill(USER);
-        await password.fill(PASS);
+        await username.fill(correctUser);
+        await password.fill(correctPass);
         await page.keyboard.press("Enter");
 
         await expect(page).toHaveURL(/\/home(?:$|[?#])/i, { timeout: 5000 });
@@ -31,8 +42,8 @@ test.describe("1.2.1 User Accounts - READ Log in", () => {
     test("B Failed login, bad credentials", async ({ page }) => {
         const { username, password } = await setupLoginPage(page);
 
-        await username.fill("invalid@example.com");
-        await password.fill("wrong-password");
+        await username.fill(wrongUser);
+        await password.fill(wrongPass);
         await page.keyboard.press("Enter");
 
         const alert = page.getByTestId("login-error-alert");