2020-02-14 17:49:17 +00:00
|
|
|
require 'rails_helper'
|
|
|
|
|
|
|
|
RSpec.describe 'Webhooks API', type: :request do
|
|
|
|
let(:account) { create(:account) }
|
|
|
|
let(:inbox) { create(:inbox, account: account) }
|
2020-02-26 04:14:24 +00:00
|
|
|
let(:webhook) { create(:webhook, account: account, inbox: inbox, url: 'https://hello.com') }
|
2020-02-14 17:49:17 +00:00
|
|
|
let(:administrator) { create(:user, account: account, role: :administrator) }
|
|
|
|
let(:agent) { create(:user, account: account, role: :agent) }
|
|
|
|
|
2020-03-09 17:57:10 +00:00
|
|
|
describe 'GET /api/v1/accounts/<account_id>/webhooks' do
|
2020-02-14 17:49:17 +00:00
|
|
|
context 'when it is an authenticated agent' do
|
|
|
|
it 'returns unauthorized' do
|
2020-03-09 17:57:10 +00:00
|
|
|
get "/api/v1/accounts/#{account.id}/webhooks",
|
2020-02-14 17:49:17 +00:00
|
|
|
headers: agent.create_new_auth_token,
|
|
|
|
as: :json
|
|
|
|
expect(response).to have_http_status(:unauthorized)
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
context 'when it is an authenticated admin user' do
|
|
|
|
it 'gets all webhook' do
|
2020-03-09 17:57:10 +00:00
|
|
|
get "/api/v1/accounts/#{account.id}/webhooks",
|
2020-02-14 17:49:17 +00:00
|
|
|
headers: administrator.create_new_auth_token,
|
|
|
|
as: :json
|
|
|
|
expect(response).to have_http_status(:success)
|
|
|
|
expect(JSON.parse(response.body)['payload']['webhooks'].count).to eql account.webhooks.count
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2020-03-09 17:57:10 +00:00
|
|
|
describe 'POST /api/v1/accounts/<account_id>/webhooks' do
|
2020-02-14 17:49:17 +00:00
|
|
|
context 'when it is an authenticated agent' do
|
|
|
|
it 'returns unauthorized' do
|
2020-03-09 17:57:10 +00:00
|
|
|
post "/api/v1/accounts/#{account.id}/webhooks",
|
2020-02-14 17:49:17 +00:00
|
|
|
headers: agent.create_new_auth_token,
|
|
|
|
as: :json
|
|
|
|
expect(response).to have_http_status(:unauthorized)
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
context 'when it is an authenticated admin user' do
|
|
|
|
it 'creates webhook' do
|
2020-03-09 17:57:10 +00:00
|
|
|
post "/api/v1/accounts/#{account.id}/webhooks",
|
2020-02-26 04:14:24 +00:00
|
|
|
params: { account_id: account.id, inbox_id: inbox.id, url: 'https://hello.com' },
|
2020-02-14 17:49:17 +00:00
|
|
|
headers: administrator.create_new_auth_token,
|
|
|
|
as: :json
|
|
|
|
expect(response).to have_http_status(:success)
|
|
|
|
|
2020-02-26 04:14:24 +00:00
|
|
|
expect(JSON.parse(response.body)['payload']['webhook']['url']).to eql 'https://hello.com'
|
2020-02-14 17:49:17 +00:00
|
|
|
end
|
2022-02-28 10:14:02 +00:00
|
|
|
|
|
|
|
it 'throws error when invalid url provided' do
|
|
|
|
post "/api/v1/accounts/#{account.id}/webhooks",
|
|
|
|
params: { account_id: account.id, inbox_id: inbox.id, url: 'javascript:alert(1)' },
|
|
|
|
headers: administrator.create_new_auth_token,
|
|
|
|
as: :json
|
|
|
|
expect(response).to have_http_status(:unprocessable_entity)
|
|
|
|
expect(JSON.parse(response.body)['message']).to eql 'Url is invalid'
|
|
|
|
end
|
2022-04-25 12:14:42 +00:00
|
|
|
|
|
|
|
it 'throws error if subscription events are invalid' do
|
|
|
|
post "/api/v1/accounts/#{account.id}/webhooks",
|
|
|
|
params: { url: 'https://hello.com', subscriptions: ['conversation_random_event'] },
|
|
|
|
headers: administrator.create_new_auth_token,
|
|
|
|
as: :json
|
|
|
|
expect(response).to have_http_status(:unprocessable_entity)
|
|
|
|
expect(JSON.parse(response.body)['message']).to eql 'Subscriptions Invalid events'
|
|
|
|
end
|
|
|
|
|
|
|
|
it 'throws error if subscription events are empty' do
|
|
|
|
post "/api/v1/accounts/#{account.id}/webhooks",
|
|
|
|
params: { url: 'https://hello.com', subscriptions: [] },
|
|
|
|
headers: administrator.create_new_auth_token,
|
|
|
|
as: :json
|
|
|
|
expect(response).to have_http_status(:unprocessable_entity)
|
|
|
|
expect(JSON.parse(response.body)['message']).to eql 'Subscriptions Invalid events'
|
|
|
|
end
|
|
|
|
|
|
|
|
it 'use default if subscription events are nil' do
|
|
|
|
post "/api/v1/accounts/#{account.id}/webhooks",
|
|
|
|
params: { url: 'https://hello.com', subscriptions: nil },
|
|
|
|
headers: administrator.create_new_auth_token,
|
|
|
|
as: :json
|
|
|
|
expect(response).to have_http_status(:ok)
|
|
|
|
expect(
|
|
|
|
JSON.parse(response.body)['payload']['webhook']['subscriptions']
|
|
|
|
).to eql %w[conversation_status_changed conversation_updated conversation_created message_created message_updated
|
|
|
|
webwidget_triggered]
|
|
|
|
end
|
2020-02-14 17:49:17 +00:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2020-03-09 17:57:10 +00:00
|
|
|
describe 'PUT /api/v1/accounts/<account_id>/webhooks/:id' do
|
2020-02-14 17:49:17 +00:00
|
|
|
context 'when it is an authenticated agent' do
|
|
|
|
it 'returns unauthorized' do
|
2020-03-09 17:57:10 +00:00
|
|
|
put "/api/v1/accounts/#{account.id}/webhooks/#{webhook.id}",
|
2020-02-14 17:49:17 +00:00
|
|
|
headers: agent.create_new_auth_token,
|
|
|
|
as: :json
|
|
|
|
expect(response).to have_http_status(:unauthorized)
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
context 'when it is an authenticated admin user' do
|
|
|
|
it 'updates webhook' do
|
2020-03-09 17:57:10 +00:00
|
|
|
put "/api/v1/accounts/#{account.id}/webhooks/#{webhook.id}",
|
2020-02-26 04:14:24 +00:00
|
|
|
params: { url: 'https://hello.com' },
|
2020-02-14 17:49:17 +00:00
|
|
|
headers: administrator.create_new_auth_token,
|
|
|
|
as: :json
|
|
|
|
expect(response).to have_http_status(:success)
|
2020-02-26 04:14:24 +00:00
|
|
|
expect(JSON.parse(response.body)['payload']['webhook']['url']).to eql 'https://hello.com'
|
2020-02-14 17:49:17 +00:00
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2020-03-09 17:57:10 +00:00
|
|
|
describe 'DELETE /api/v1/accounts/<account_id>/webhooks/:id' do
|
2020-02-14 17:49:17 +00:00
|
|
|
context 'when it is an authenticated agent' do
|
|
|
|
it 'returns unauthorized' do
|
2020-03-09 17:57:10 +00:00
|
|
|
delete "/api/v1/accounts/#{account.id}/webhooks/#{webhook.id}",
|
2020-02-14 17:49:17 +00:00
|
|
|
headers: agent.create_new_auth_token,
|
|
|
|
as: :json
|
|
|
|
expect(response).to have_http_status(:unauthorized)
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
context 'when it is an authenticated admin user' do
|
|
|
|
it 'deletes webhook' do
|
2020-03-09 17:57:10 +00:00
|
|
|
delete "/api/v1/accounts/#{account.id}/webhooks/#{webhook.id}",
|
2020-02-14 17:49:17 +00:00
|
|
|
headers: administrator.create_new_auth_token,
|
|
|
|
as: :json
|
|
|
|
expect(response).to have_http_status(:success)
|
|
|
|
expect(account.webhooks.count).to be 0
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|