add error handling for note retrieval; update user role in setup; implement basic smoke tests and user detail retrieval tests

Author: tryb3l

test/routes/integration/notes/GET/get-by-id-note.test.js

@@ -0,0 +1,128 @@
+'use strict'
+
+const t = require('tap')
+const { createNote } = require('../../../../utils/note-creator')
+const { randomString } = require('../../../../utils/data-creator')
+const { randomUUID } = require('node:crypto')
+
+t.test('GET by id /notes/:id 200 - Fetch note by id', async (t) => {
+  // Arrange
+  const { note, app, accessToken, refreshToken } = await createNote(t)
+
+  // Act
+  const response = await app.inject({
+    method: 'GET',
+    url: `/notes/${note.id}`,
+    headers: {
+      'Content-Type': 'application/json',
+    },
+    cookies: {
+      accessToken: accessToken,
+      refreshToken: refreshToken,
+    },
+  })
+
+  // Assert
+  t.equal(response.statusCode, 200)
+  t.type(response.json(), 'object')
+  t.equal(response.json().data.id, note.id)
+  t.equal(response.json().data.title, note.title)
+  t.equal(response.json().data.body, note.body)
+  t.same(response.json().data.tags, note.tags)
+  t.equal(response.json().data.createdAt, note.createdAt)
+  t.equal(response.json().data.updatedAt, note.updatedAt)
+})
+
+t.test('GET by id /notes/:id 404 - Note not found', async (t) => {
+  // Arrange
+  const { app, accessToken, refreshToken } = await createNote(t)
+  const nonExistentNoteId = randomUUID()
+
+  // Act
+  const response = await app.inject({
+    method: 'GET',
+    url: `/notes/${nonExistentNoteId}`,
+    headers: {
+      'Content-Type': 'application/json',
+    },
+    cookies: {
+      accessToken: accessToken,
+      refreshToken: refreshToken,
+    },
+  })
+
+  // Assert
+  t.equal(response.statusCode, 404)
+  t.type(response.json(), 'object')
+})
+
+t.test('GET by id /notes/:id 400 - Invalid id format', async (t) => {
+  // Arrange
+  const { app, accessToken, refreshToken } = await createNote(t)
+  const invalidNoteId = randomString('1234567890', 10)
+
+  // Act
+  const response = await app.inject({
+    method: 'GET',
+    url: `/notes/${invalidNoteId}`,
+    headers: {
+      'Content-Type': 'application/json',
+    },
+    cookies: {
+      accessToken: accessToken,
+      refreshToken: refreshToken,
+    },
+  })
+
+  // Assert
+  t.equal(response.statusCode, 400)
+  t.type(response.json(), 'object')
+})
+
+t.test('GET by id /notes/:id 401 - Unauthorized', async (t) => {
+  // Arrange
+  const { app } = await createNote(t)
+  const nonExistentNoteId = randomUUID()
+  const accessToken = 'invalid'
+  const refreshToken = 'invalid'
+
+  // Act
+  const response = await app.inject({
+    method: 'GET',
+    url: `/notes/${nonExistentNoteId}`,
+    headers: {
+      'Content-Type': 'application/json',
+    },
+    cookies: {
+      accessToken: accessToken,
+      refreshToken: refreshToken,
+    },
+  })
+
+  // Assert
+  t.equal(response.statusCode, 401)
+  t.type(response.json(), 'object')
+})
+
+t.test('GET by id /notes/:id 404 - Note not found', async (t) => {
+  // Arrange
+  const { app, accessToken, refreshToken } = await createNote(t)
+  const nonExistentNoteId = randomUUID()
+
+  // Act
+  const response = await app.inject({
+    method: 'GET',
+    url: `/notes/${nonExistentNoteId}`,
+    headers: {
+      'Content-Type': 'application/json',
+    },
+    cookies: {
+      accessToken: accessToken,
+      refreshToken: refreshToken,
+    },
+  })
+
+  // Assert
+  t.equal(response.statusCode, 404)
+  t.type(response.json(), 'object')
+})

test/routes/integration/notes/GET/get-notes.test.js

@@ -0,0 +1,157 @@
+'use strict'
+
+const t = require('tap')
+const { setup } = require('../../../../utils/setup-user')
+const { randomString } = require('../../../../utils/data-creator')
+
+t.beforeEach(async (t) => {
+  const { app, accessToken, refreshToken } = await setup(t)
+  t.context.app = app
+  t.context.accessToken = accessToken
+  t.context.refreshToken = refreshToken
+
+  // Create a note before each test
+  const noteTitle = randomString(10)
+  const noteBody = randomString(20)
+  const noteTags = [randomString(5)]
+
+  const response = await app.inject({
+    method: 'POST',
+    url: '/notes/',
+    headers: {
+      contentType: 'application/json',
+    },
+    cookies: {
+      accessToken: accessToken,
+      refreshToken: refreshToken,
+    },
+    payload: {
+      title: noteTitle,
+      body: noteBody,
+      tags: noteTags,
+    },
+  })
+
+  t.equal(response.statusCode, 201)
+  t.type(response.json(), 'object')
+  t.ok(response.json().id)
+  t.equal(typeof response.json().id, 'string')
+
+  t.context.noteId = response.json().id
+})
+
+t.test('GET /notes 200 - List notes', async (t) => {
+  // Arrange
+  const { app, accessToken, refreshToken } = t.context
+
+  // Act
+  const response = await app.inject({
+    method: 'GET',
+    url: '/notes',
+    headers: {
+      contentType: 'application/json',
+    },
+    cookies: {
+      accessToken: accessToken,
+      refreshToken: refreshToken,
+    },
+  })
+
+  // Assert
+  t.equal(response.statusCode, 201)
+  t.type(response.json(), 'object')
+  t.ok(Array.isArray(response.json().data))
+  t.type(response.json().totalCount, 'number')
+})
+
+t.skip('GET /notes 200 - List notes with pagination', async (t) => {
+  // Arrange
+  const { app, accessToken, refreshToken } = t.context
+
+  // Act
+  const response = await app.inject({
+    method: 'GET',
+    url: '/notes?skip=0&limit=2',
+    headers: {
+      contentType: 'application/json',
+    },
+    cookies: {
+      accessToken: accessToken,
+      refreshToken: refreshToken,
+    },
+  })
+
+  // Assert
+  t.equal(response.statusCode, 201)
+  t.type(response.json(), 'object')
+  t.ok(Array.isArray(response.json().data))
+  t.type(response.json().totalCount, 'number')
+  t.equal(response.json().data.length, 2)
+})
+
+t.test('GET /notes 200 - List notes with title filter', async (t) => {
+  // Arrange
+  const { app, accessToken, refreshToken } = t.context
+  const title = 'testnote'
+
+  // Act
+  const response = await app.inject({
+    method: 'GET',
+    url: `/notes?title=${title}`,
+    headers: {
+      contentType: 'application/json',
+    },
+    cookies: {
+      accessToken: accessToken,
+      refreshToken: refreshToken,
+    },
+  })
+
+  // Assert
+  t.equal(response.statusCode, 201)
+  t.type(response.json(), 'object')
+  t.ok(Array.isArray(response.json().data))
+  t.type(response.json().totalCount, 'number')
+  t.ok(response.json().data.every((note) => note.title.includes(title)))
+})
+
+t.test('GET /notes 400 - Invalid skip and limit', async (t) => {
+  // Arrange
+  const { app, accessToken, refreshToken } = t.context
+
+  // Act
+  const response = await app.inject({
+    method: 'GET',
+    url: '/notes?skip=-1&limit=-5',
+    headers: {
+      contentType: 'application/json',
+    },
+    cookies: {
+      accessToken: accessToken,
+      refreshToken: refreshToken,
+    },
+  })
+
+  // Assert
+  t.equal(response.statusCode, 400)
+  t.type(response.json(), 'object')
+  t.equal(response.json().message, 'Skip and limit must be non-negative integers')
+})
+
+t.test('GET /notes 401 - Unauthorized', async (t) => {
+  // Arrange
+  const { app } = t.context
+
+  // Act
+  const response = await app.inject({
+    method: 'GET',
+    url: '/notes',
+    headers: {
+      contentType: 'application/json',
+    },
+  })
+
+  // Assert
+  t.equal(response.statusCode, 401)
+  t.type(response.json(), 'object')
+})