keycloak-scim/js/apps/admin-ui/cypress/e2e/clients_test.spec.ts
Jon Koops 7cbe609571
Filter dedicated client scopes when searching (#28433)
Closes #28431

Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-04-04 11:28:09 +00:00

1238 lines
41 KiB
TypeScript

import { v4 as uuid } from "uuid";
import LoginPage from "../support/pages/LoginPage";
import ListingPage, {
Filter,
FilterAssignedType,
} from "../support/pages/admin-ui/ListingPage";
import CreateClientPage from "../support/pages/admin-ui/manage/clients/CreateClientPage";
import adminClient from "../support/util/AdminClient";
import { keycloakBefore } from "../support/util/keycloak_hooks";
import RoleMappingTab from "../support/pages/admin-ui/manage/RoleMappingTab";
import createRealmRolePage from "../support/pages/admin-ui/manage/realm_roles/CreateRealmRolePage";
import AssociatedRolesPage from "../support/pages/admin-ui/manage/realm_roles/AssociatedRolesPage";
import ClientRolesTab from "../support/pages/admin-ui/manage/clients/ClientRolesTab";
import InitialAccessTokenTab from "../support/pages/admin-ui/manage/clients/tabs/InitialAccessTokenTab";
import AdvancedTab from "../support/pages/admin-ui/manage/clients/client_details/tabs/AdvancedTab";
import ClientDetailsPage, {
ClientsDetailsTab,
} from "../support/pages/admin-ui/manage/clients/client_details/ClientDetailsPage";
import CommonPage from "../support/pages/CommonPage";
import AttributesTab from "../support/pages/admin-ui/manage/AttributesTab";
import DedicatedScopesMappersTab from "../support/pages/admin-ui/manage/clients/client_details/DedicatedScopesMappersTab";
import { ClientRegistrationPage } from "../support/pages/admin-ui/manage/clients/ClientRegistrationPage";
let itemId = "client_crud";
const loginPage = new LoginPage();
const associatedRolesPage = new AssociatedRolesPage();
const createClientPage = new CreateClientPage();
const clientDetailsPage = new ClientDetailsPage();
const commonPage = new CommonPage();
const listingPage = new ListingPage();
const attributesTab = new AttributesTab();
const dedicatedScopesMappersTab = new DedicatedScopesMappersTab();
describe("Clients test", () => {
describe("Client details - Client scopes subtab", () => {
const clientId = "client-scopes-subtab-test";
const clientScopeName = "client-scope-test";
const clientScopeNameDefaultType = "client-scope-test-default-type";
const clientScopeNameOptionalType = "client-scope-test-optional-type";
const clientScope = {
name: clientScopeName,
description: "",
protocol: "openid-connect",
attributes: {
"include.in.token.scope": "true",
"display.on.consent.screen": "true",
"gui.order": "1",
"consent.screen.text": "",
},
};
const msgScopeMappingRemoved = "Scope mapping successfully removed";
before(async () => {
adminClient.createClient({
clientId,
protocol: "openid-connect",
publicClient: false,
});
for (let i = 0; i < 5; i++) {
clientScope.name = clientScopeName + i;
await adminClient.createClientScope(clientScope);
await adminClient.addDefaultClientScopeInClient(
clientScopeName + i,
clientId,
);
}
clientScope.name = clientScopeNameDefaultType;
await adminClient.createClientScope(clientScope);
clientScope.name = clientScopeNameOptionalType;
await adminClient.createClientScope(clientScope);
});
beforeEach(() => {
loginPage.logIn();
keycloakBefore();
commonPage.sidebar().goToClients();
commonPage.tableToolbarUtils().searchItem(clientId);
cy.intercept("/admin/realms/master/clients/*").as("fetchClient");
commonPage.tableUtils().clickRowItemLink(clientId);
cy.wait("@fetchClient");
clientDetailsPage.goToClientScopesTab();
});
after(async () => {
adminClient.deleteClient(clientId);
for (let i = 0; i < 5; i++) {
await adminClient.deleteClientScope(clientScopeName + i);
}
await adminClient.deleteClientScope(clientScopeNameDefaultType);
await adminClient.deleteClientScope(clientScopeNameOptionalType);
});
it("Should list client scopes", () => {
commonPage
.tableUtils()
.checkRowItemsGreaterThan(1)
.checkRowItemExists(clientScopeName + 0);
});
it("Should search existing client scope by name", () => {
commonPage.tableToolbarUtils().searchItem(clientScopeName + 0, false);
commonPage
.tableUtils()
.checkRowItemExists(clientScopeName + 0)
.checkRowItemsEqualTo(1);
});
it("Should search non-existent client scope by name", () => {
commonPage.tableToolbarUtils().searchItem("non-existent-item", false);
commonPage.tableUtils().checkIfExists(false);
commonPage.emptyState().checkIfExists(true);
});
it("Should search existing client scope by assigned type", () => {
commonPage
.tableToolbarUtils()
.selectSearchType(Filter.AssignedType)
.selectSecondarySearchType(FilterAssignedType.Default);
commonPage
.tableUtils()
.checkRowItemExists(FilterAssignedType.Default)
.checkRowItemExists(FilterAssignedType.Optional, false);
commonPage
.tableToolbarUtils()
.selectSecondarySearchType(FilterAssignedType.Optional);
commonPage
.tableUtils()
.checkRowItemExists(FilterAssignedType.Default, false)
.checkRowItemExists(FilterAssignedType.Optional);
commonPage
.tableToolbarUtils()
.selectSecondarySearchType(FilterAssignedType.AllTypes);
commonPage
.tableUtils()
.checkRowItemExists(FilterAssignedType.Default)
.checkRowItemExists(FilterAssignedType.Optional);
});
const newItemsWithExpectedAssignedTypes = [
[clientScopeNameOptionalType, FilterAssignedType.Optional],
[clientScopeNameDefaultType, FilterAssignedType.Default],
];
newItemsWithExpectedAssignedTypes.forEach(($type) => {
const [itemName, assignedType] = $type;
it(`Should add client scope ${itemName} with ${assignedType} assigned type`, () => {
commonPage.tableToolbarUtils().addClientScope();
commonPage
.modalUtils()
.checkModalTitle("Add client scopes to " + clientId);
commonPage.tableUtils().selectRowItemCheckbox(itemName);
commonPage.modalUtils().confirmModalWithItem(assignedType);
commonPage.masthead().checkNotificationMessage("Scope mapping updated");
commonPage.tableToolbarUtils().searchItem(itemName, false);
commonPage
.tableUtils()
.checkRowItemExists(itemName)
.checkRowItemExists(assignedType);
});
});
const expectedItemAssignedTypes = [
FilterAssignedType.Optional,
FilterAssignedType.Default,
];
expectedItemAssignedTypes.forEach(($assignedType) => {
const itemName = clientScopeName + 0;
it(`Should change item ${itemName} AssignedType to ${$assignedType} from search bar`, () => {
commonPage.tableToolbarUtils().searchItem(itemName, false);
commonPage.tableUtils().selectRowItemCheckbox(itemName);
commonPage.tableToolbarUtils().changeTypeTo($assignedType);
commonPage.masthead().checkNotificationMessage("Scope mapping updated");
commonPage.tableToolbarUtils().searchItem(itemName, false);
commonPage.tableUtils().checkRowItemExists($assignedType);
});
});
it("Should show items on next page are more than 11", () => {
commonPage.sidebar().waitForPageLoad();
commonPage.tableToolbarUtils().clickNextPageButton();
commonPage.tableUtils().checkRowItemsGreaterThan(1);
});
it("Should remove client scope from item bar", () => {
const itemName = clientScopeName + 0;
commonPage.tableToolbarUtils().searchItem(itemName, false);
commonPage.tableUtils().selectRowItemAction(itemName, "Remove");
commonPage.modalUtils().confirmModal();
commonPage.masthead().checkNotificationMessage(msgScopeMappingRemoved);
commonPage.tableToolbarUtils().searchItem(itemName, false);
listingPage.assertNoResults();
});
it("Should remove multiple client scopes from search bar", () => {
const itemName1 = clientScopeName + 1;
const itemName2 = clientScopeName + 2;
cy.intercept("/admin/realms/master/client-scopes").as("load");
commonPage.tableToolbarUtils().clickSearchButton();
cy.wait("@load");
cy.wait(1000);
commonPage.tableToolbarUtils().checkActionItemIsEnabled("Remove", false);
commonPage.tableToolbarUtils().searchItem(clientScopeName, false);
commonPage
.tableUtils()
.selectRowItemCheckbox(itemName1)
.selectRowItemCheckbox(itemName2);
cy.intercept("/admin/realms/master/client-scopes").as("load");
commonPage.tableToolbarUtils().clickSearchButton();
cy.wait("@load");
cy.wait(1000);
commonPage.tableToolbarUtils().clickActionItem("Remove");
commonPage.masthead().checkNotificationMessage(msgScopeMappingRemoved);
commonPage.tableToolbarUtils().searchItem(clientScopeName, false);
commonPage
.tableUtils()
.checkRowItemExists(itemName1, false)
.checkRowItemExists(itemName2, false);
commonPage.tableToolbarUtils().clickSearchButton();
});
//fails, issue https://github.com/keycloak/keycloak-admin-ui/issues/1874
it("Should show initial items after filtering", () => {
commonPage
.tableToolbarUtils()
.selectSearchType(Filter.AssignedType)
.selectSecondarySearchType(FilterAssignedType.Optional)
.selectSearchType(Filter.Name);
commonPage
.tableUtils()
.checkRowItemExists(FilterAssignedType.Default, false)
.checkRowItemExists(FilterAssignedType.Optional);
});
});
describe("Client scopes evaluate subtab", () => {
const clientName = "testClient";
beforeEach(() => {
loginPage.logIn();
keycloakBefore();
commonPage.sidebar().goToClients();
});
before(async () => {
await adminClient.createClient({
protocol: "openid-connect",
clientId: clientName,
publicClient: false,
});
});
after(async () => {
await adminClient.deleteClient(clientName);
});
it("check effective protocol mappers list is not empty and find effective protocol mapper locale", () => {
commonPage.tableToolbarUtils().searchItem(clientName);
commonPage.tableUtils().clickRowItemLink(clientName);
clientDetailsPage.goToClientScopesEvaluateTab();
cy.findByTestId("effective-protocol-mappers")
.find("tr")
.should("have.length.gt", 0);
});
it("check role scope mappings list list is not empty and find role scope mapping admin", () => {
commonPage.tableToolbarUtils().searchItem(clientName);
commonPage.tableUtils().clickRowItemLink(clientName);
clientDetailsPage.goToClientScopesEvaluateTab();
clientDetailsPage.goToClientScopesEvaluateEffectiveRoleScopeMappingsTab();
cy.findByTestId("effective-role-scope-mappings")
.find("tr")
.should("have.length.gt", 0);
});
it("check generated id token and user info", () => {
commonPage.tableToolbarUtils().searchItem(clientName);
commonPage.tableUtils().clickRowItemLink(clientName);
clientDetailsPage.goToClientScopesEvaluateTab();
cy.get("div#generatedAccessToken").contains("No generated access token");
clientDetailsPage.goToClientScopesEvaluateGeneratedIdTokenTab();
cy.get("div#generatedIdToken").contains("No generated id token");
clientDetailsPage.goToClientScopesEvaluateGeneratedUserInfoTab();
cy.get("div#generatedUserInfo").contains("No generated user info");
cy.get("input#user-select-typeahead").type("admin");
cy.get("li[id*=select-option-] > button:first-child").click();
clientDetailsPage.goToClientScopesEvaluateGeneratedAccessTokenTab();
cy.get("div#generatedAccessToken").contains(
'"preferred_username": "admin"',
);
cy.get("div#generatedAccessToken").contains('"scope": "');
clientDetailsPage.goToClientScopesEvaluateGeneratedIdTokenTab();
cy.get("div#generatedIdToken").contains('"preferred_username": "admin"');
clientDetailsPage.goToClientScopesEvaluateGeneratedUserInfoTab();
cy.get("div#generatedIdToken").contains('"preferred_username": "admin"');
cy.get("div#generatedIdToken").contains('"session_state"');
});
});
describe("Client creation", () => {
beforeEach(() => {
loginPage.logIn();
keycloakBefore();
commonPage.sidebar().goToClients();
});
it("Should cancel creating client", () => {
commonPage.tableToolbarUtils().createClient();
createClientPage.continue().checkClientIdRequiredMessage();
createClientPage
.fillClientData("")
.selectClientType("OpenID Connect")
.cancel();
cy.url().should("not.include", "/add-client");
});
it("Should check settings elements", () => {
commonPage.tableToolbarUtils().clickPrimaryButton();
const clientId = "Test settings";
createClientPage
.fillClientData(clientId)
.continue()
.checkCapabilityConfigElements()
.continue()
.save();
commonPage
.masthead()
.checkNotificationMessage("Client created successfully");
commonPage.sidebar().waitForPageLoad();
createClientPage
.checkCapabilityConfigElements()
.checkAccessSettingsElements()
.checkLoginSettingsElements()
.checkLogoutSettingsElements()
.deleteClientFromActionDropdown();
commonPage.modalUtils().confirmModal();
commonPage.tableUtils().checkRowItemExists(clientId, false);
});
it("Should navigate to previous using 'back' button", () => {
commonPage.tableToolbarUtils().createClient();
createClientPage.continue().checkClientIdRequiredMessage();
createClientPage
.fillClientData("test_client")
.selectClientType("OpenID Connect")
.continue()
.back()
.checkGeneralSettingsStepActive();
});
it("Should fail creating client", () => {
commonPage.tableToolbarUtils().createClient();
createClientPage.continue().checkClientIdRequiredMessage();
createClientPage
.fillClientData("")
.selectClientType("OpenID Connect")
.continue()
.checkClientIdRequiredMessage();
createClientPage.fillClientData("account").continue().continue().save();
// The error should inform about duplicated name/id
commonPage
.masthead()
.checkNotificationMessage(
"Could not create client: 'Client account already exists'",
);
});
it("Client CRUD test", () => {
itemId += "_" + uuid();
// Create
commonPage.tableUtils().checkRowItemExists(itemId, false);
commonPage.tableToolbarUtils().clickPrimaryButton();
createClientPage.cancel();
commonPage.tableUtils().checkRowItemExists(itemId, false);
commonPage.tableToolbarUtils().clickPrimaryButton();
createClientPage
.selectClientType("OpenID Connect")
.fillClientData(itemId)
.continue()
.switchClientAuthentication()
.clickDirectAccess()
.clickImplicitFlow()
.clickOAuthDeviceAuthorizationGrant()
.clickOidcCibaGrant()
.clickServiceAccountRoles()
.clickStandardFlow()
.continue()
.save();
commonPage
.masthead()
.checkNotificationMessage("Client created successfully");
commonPage.sidebar().goToClients();
commonPage.tableToolbarUtils().searchItem("John Doe", false);
commonPage.emptyState().checkIfExists(true);
commonPage.tableToolbarUtils().searchItem("");
commonPage.tableUtils().checkRowItemExists("account");
commonPage.tableToolbarUtils().searchItem(itemId);
commonPage.tableUtils().checkRowItemExists(itemId);
// Delete
commonPage.tableUtils().selectRowItemAction(itemId, "Delete");
commonPage.sidebar().waitForPageLoad();
commonPage
.modalUtils()
.checkModalTitle(`Delete ${itemId} ?`)
.confirmModal();
commonPage
.masthead()
.checkNotificationMessage("The client has been deleted");
commonPage.tableUtils().checkRowItemExists(itemId, false);
});
it("Initial access token can't be created with 0 days and count", () => {
const initialAccessTokenTab = new InitialAccessTokenTab();
initialAccessTokenTab
.goToInitialAccessTokenTab()
.shouldBeEmpty()
.goToCreateFromEmptyList()
.fillNewTokenData(0, 0)
.checkExpirationGreaterThanZeroError()
.checkCountValue(1)
.checkSaveButtonIsDisabled();
});
it("Initial access token", () => {
const initialAccessTokenTab = new InitialAccessTokenTab();
initialAccessTokenTab
.goToInitialAccessTokenTab()
.shouldBeEmpty()
.goToCreateFromEmptyList()
.fillNewTokenData(1, 3)
.save();
commonPage
.modalUtils()
.checkModalTitle("Initial access token details")
.closeModal();
commonPage
.masthead()
.checkNotificationMessage("New initial access token has been created");
initialAccessTokenTab.shouldNotBeEmpty();
commonPage.tableToolbarUtils().searchItem("John Doe", false);
commonPage.emptyState().checkIfExists(true);
commonPage.tableToolbarUtils().searchItem("", false);
initialAccessTokenTab.getFirstId((id) => {
commonPage
.tableUtils()
.checkRowItemValueByItemName(id, 4, "4")
.checkRowItemValueByItemName(id, 5, "4")
.checkRowItemExists(id);
});
commonPage.tableToolbarUtils().clickPrimaryButton("Create");
initialAccessTokenTab.fillNewTokenData(1, 3).save();
commonPage.modalUtils().closeModal();
initialAccessTokenTab.getFirstId((id) => {
commonPage.tableUtils().selectRowItemAction(id, "Delete");
commonPage.sidebar().waitForPageLoad();
commonPage
.modalUtils()
.checkModalTitle("Delete initial access token?")
.confirmModal();
});
commonPage
.masthead()
.checkNotificationMessage("Initial access token deleted successfully");
initialAccessTokenTab.shouldNotBeEmpty();
initialAccessTokenTab.getFirstId((id) => {
commonPage.tableUtils().selectRowItemAction(id, "Delete");
commonPage.sidebar().waitForPageLoad();
commonPage.modalUtils().confirmModal();
});
initialAccessTokenTab.shouldBeEmpty();
});
it("Should fail to create imported client with empty ID", () => {
commonPage.sidebar().goToClients();
cy.findByTestId("importClient").click();
cy.findByTestId("clientId").click();
cy.findByText("Save").click();
cy.findByText("Required field");
});
const identicalClientId = "identical";
it("Should fail to create client with same ID", () => {
commonPage.sidebar().goToClients();
commonPage.tableToolbarUtils().createClient();
createClientPage
.fillClientData(identicalClientId)
.continue()
.continue()
.save();
commonPage.masthead().closeAllAlertMessages();
commonPage.sidebar().goToClients();
cy.findByTestId("importClient").click();
cy.findByTestId("realm-file").selectFile(
"cypress/fixtures/partial-import-test-data/import-identical-client.json",
{ action: "drag-drop" },
);
cy.wait(1000);
//cy.findByTestId("realm-file").contains('"clientId": "identical"')
cy.findByTestId("clientId").click();
cy.findByText("Save").click();
commonPage
.masthead()
.checkNotificationMessage(
"Could not import client: Client identical already exists",
true,
);
});
it("should delete 'identical' client id", () => {
commonPage.sidebar().goToClients();
adminClient.deleteClient(identicalClientId);
});
});
describe("Roles tab test", () => {
const rolesTab = new ClientRolesTab();
const client = "client_" + uuid();
before(() =>
adminClient.createClient({
clientId: client,
protocol: "openid-connect",
publicClient: false,
}),
);
beforeEach(() => {
loginPage.logIn();
keycloakBefore();
commonPage.sidebar().goToClients();
commonPage.tableToolbarUtils().searchItem(client);
commonPage.tableUtils().clickRowItemLink(client);
rolesTab.goToRolesTab();
});
after(() => {
adminClient.deleteClient(client);
});
it("Should fail to create client role with empty name", () => {
rolesTab.goToCreateRoleFromEmptyState();
createRealmRolePage.fillRealmRoleData("").save();
createRealmRolePage.checkRealmRoleNameRequiredMessage();
});
it("Should create client role", () => {
rolesTab.goToCreateRoleFromEmptyState();
createRealmRolePage.fillRealmRoleData(itemId).save();
commonPage.masthead().checkNotificationMessage("Role created", true);
});
it("Should update client role description", () => {
const updateDescription = "updated description";
commonPage.tableToolbarUtils().searchItem(itemId, false);
commonPage.tableUtils().clickRowItemLink(itemId);
createRealmRolePage.updateDescription(updateDescription).save();
commonPage
.masthead()
.checkNotificationMessage("The role has been saved", true);
createRealmRolePage.checkDescription(updateDescription);
});
it("Should add attribute to client role", () => {
commonPage.tableUtils().clickRowItemLink(itemId);
rolesTab.goToAttributesTab();
attributesTab
.addAttribute("crud_attribute_key", "crud_attribute_value")
.save();
attributesTab.assertRowItemsEqualTo(1);
commonPage
.masthead()
.checkNotificationMessage("The role has been saved", true);
});
it("Should delete attribute from client role", () => {
commonPage.tableUtils().clickRowItemLink(itemId);
rolesTab.goToAttributesTab();
attributesTab.deleteAttribute(0);
attributesTab.assertEmpty();
commonPage
.masthead()
.checkNotificationMessage("The role has been saved", true);
});
it("Should create client role to be deleted", () => {
rolesTab.goToCreateRoleFromToolbar();
createRealmRolePage.fillRealmRoleData("client_role_to_be_deleted").save();
commonPage.masthead().checkNotificationMessage("Role created", true);
});
it("Should fail to create duplicate client role", () => {
rolesTab.goToCreateRoleFromToolbar();
createRealmRolePage.fillRealmRoleData(itemId).save();
commonPage
.masthead()
.checkNotificationMessage(
`Could not create role: Role with name ${itemId} already exists`,
true,
);
});
it("Should search existing client role", () => {
commonPage.tableToolbarUtils().searchItem(itemId, false);
commonPage.tableUtils().checkRowItemExists(itemId);
});
it("Should search non-existing role test", () => {
commonPage.tableToolbarUtils().searchItem("role_DNE", false);
commonPage.emptyState().checkIfExists(true);
});
it("roles empty search test", () => {
commonPage.tableToolbarUtils().searchItem("", false);
commonPage.tableUtils().checkIfExists(true);
});
it("Add associated roles test", () => {
commonPage.tableToolbarUtils().searchItem(itemId, false);
commonPage.tableUtils().clickRowItemLink(itemId);
// Add associated realm role
associatedRolesPage.addAssociatedRealmRole("create-realm");
commonPage
.masthead()
.checkNotificationMessage("Associated roles have been added", true);
// Add associated client role
associatedRolesPage.addAssociatedRoleFromSearchBar(
"manage-account",
true,
);
commonPage
.masthead()
.checkNotificationMessage("Associated roles have been added", true);
rolesTab.goToAssociatedRolesTab();
// Add associated client role
associatedRolesPage.addAssociatedRoleFromSearchBar(
"manage-consent",
true,
);
commonPage
.masthead()
.checkNotificationMessage("Associated roles have been added", true);
});
it("Should hide inherited roles test", () => {
commonPage.tableToolbarUtils().searchItem(itemId, false);
commonPage.tableUtils().clickRowItemLink(itemId);
rolesTab.goToAssociatedRolesTab().hideInheritedRoles();
});
it("Should delete associated roles test", () => {
commonPage.tableToolbarUtils().searchItem(itemId, false);
commonPage.tableUtils().clickRowItemLink(itemId);
rolesTab.goToAssociatedRolesTab();
commonPage.tableUtils().selectRowItemAction("create-realm", "Unassign");
commonPage.sidebar().waitForPageLoad();
commonPage.modalUtils().checkModalTitle("Remove role?").confirmModal();
commonPage.sidebar().waitForPageLoad();
commonPage
.masthead()
.checkNotificationMessage("Scope mapping successfully removed", true);
commonPage.tableUtils().selectRowItemAction("manage-consent", "Unassign");
commonPage.sidebar().waitForPageLoad();
commonPage.modalUtils().checkModalTitle("Remove role?").confirmModal();
});
it("Should delete associated role from search bar test", () => {
commonPage.tableToolbarUtils().searchItem(itemId, false);
commonPage.tableUtils().clickRowItemLink(itemId);
commonPage.sidebar().waitForPageLoad();
rolesTab.goToAssociatedRolesTab();
cy.get('td[data-label="Name"]')
.contains("manage-account")
.parent()
.within(() => {
cy.get("input").click();
});
associatedRolesPage.removeAssociatedRoles();
commonPage.sidebar().waitForPageLoad();
commonPage.modalUtils().checkModalTitle("Remove role?").confirmModal();
commonPage.sidebar().waitForPageLoad();
commonPage
.masthead()
.checkNotificationMessage("Scope mapping successfully removed", true);
});
it("Should delete client role test", () => {
commonPage.tableUtils().selectRowItemAction(itemId, "Delete");
commonPage.sidebar().waitForPageLoad();
commonPage.modalUtils().checkModalTitle("Delete role?").confirmModal();
});
it("Should delete client role from role details test", () => {
commonPage
.tableToolbarUtils()
.searchItem("client_role_to_be_deleted", false);
commonPage.tableUtils().clickRowItemLink("client_role_to_be_deleted");
createRealmRolePage.clickActionMenu("Delete this role");
commonPage.modalUtils().confirmModal();
commonPage
.masthead()
.checkNotificationMessage("The role has been deleted", true);
});
});
describe("Advanced tab test", () => {
const advancedTab = new AdvancedTab();
let client: string;
beforeEach(() => {
loginPage.logIn();
keycloakBefore();
commonPage.sidebar().goToClients();
client = "client_" + uuid();
commonPage.tableToolbarUtils().createClient();
createClientPage
.selectClientType("OpenID Connect")
.fillClientData(client)
.continue();
commonPage.sidebar().waitForPageLoad();
createClientPage.continue().save();
commonPage
.masthead()
.checkNotificationMessage("Client created successfully");
clientDetailsPage.goToAdvancedTab();
});
afterEach(() => {
adminClient.deleteClient(client);
});
it("Clustering", () => {
advancedTab.expandClusterNode();
advancedTab.checkEmptyClusterNode();
advancedTab.registerNodeManually().fillHost("localhost").saveHost();
advancedTab.checkTestClusterAvailability(true);
commonPage.masthead().checkNotificationMessage("Node successfully added");
advancedTab.deleteClusterNode();
commonPage.modalUtils().confirmModal();
commonPage
.masthead()
.checkNotificationMessage("Node successfully removed");
advancedTab.checkEmptyClusterNode();
});
it("Fine grain OpenID connect configuration", () => {
const algorithm = "ES384";
advancedTab
.selectAccessTokenSignatureAlgorithm(algorithm)
.saveFineGrain();
advancedTab
.selectAccessTokenSignatureAlgorithm("HS384")
.revertFineGrain();
advancedTab.checkAccessTokenSignatureAlgorithm(algorithm);
});
it("OIDC Compatibility Modes configuration", () => {
advancedTab.clickAllCompatibilitySwitch();
advancedTab.saveCompatibility();
advancedTab.jumpToCompatability();
advancedTab.clickExcludeSessionStateSwitch();
advancedTab.clickUseRefreshTokenForClientCredentialsGrantSwitch();
advancedTab.revertCompatibility();
});
it("Advanced settings", () => {
advancedTab.jumpToAdvanced();
advancedTab.clickAdvancedSwitches();
advancedTab.jumpToAdvanced();
advancedTab.selectKeyForCodeExchangeInput("S256");
advancedTab.saveAdvanced();
advancedTab.jumpToAdvanced();
advancedTab.checkAdvancedSwitchesOn();
advancedTab.checkKeyForCodeExchangeInput("S256");
advancedTab.selectKeyForCodeExchangeInput("plain");
advancedTab.checkKeyForCodeExchangeInput("plain");
advancedTab.jumpToAdvanced();
advancedTab.clickAdvancedSwitches();
advancedTab.revertAdvanced();
advancedTab.jumpToAdvanced();
advancedTab.checkKeyForCodeExchangeInput("S256");
//uncomment when revert button reverts all switches
//and ACR to LoA Mapping + Default ACR Values
//advancedTab.checkAdvancedSwitchesOn();
});
it("Authentication flow override", () => {
advancedTab.jumpToAuthFlow();
advancedTab.selectBrowserFlowInput("browser");
advancedTab.selectDirectGrantInput("docker auth");
advancedTab.checkBrowserFlowInput("browser");
advancedTab.checkDirectGrantInput("docker auth");
advancedTab.revertAuthFlowOverride();
advancedTab.jumpToAuthFlow();
advancedTab.checkBrowserFlowInput("Choose...");
advancedTab.checkDirectGrantInput("Choose...");
advancedTab.selectBrowserFlowInput("browser");
advancedTab.selectDirectGrantInput("docker auth");
advancedTab.saveAuthFlowOverride();
advancedTab.selectBrowserFlowInput("first broker login");
advancedTab.selectDirectGrantInput("first broker login");
advancedTab.revertAuthFlowOverride();
//revert doesn't work after saving.
//advancedTab.CheckBrowserFlowInput("browser");
//advancedTab.CheckDirectGrantInput("docker auth");
});
});
describe("Service account tab test", () => {
const serviceAccountTab = new RoleMappingTab("user");
const serviceAccountName = "service-account-client";
before(() =>
adminClient.createClient({
protocol: "openid-connect",
clientId: serviceAccountName,
publicClient: false,
authorizationServicesEnabled: true,
serviceAccountsEnabled: true,
standardFlowEnabled: true,
}),
);
beforeEach(() => {
loginPage.logIn();
keycloakBefore();
commonPage.sidebar().goToClients();
});
after(() => {
adminClient.deleteClient(serviceAccountName);
});
it("List", () => {
commonPage.tableToolbarUtils().searchItem(serviceAccountName);
commonPage.tableUtils().clickRowItemLink(serviceAccountName);
serviceAccountTab
.goToServiceAccountTab()
.checkRoles(["offline_access", "uma_authorization"], false)
.checkRoles(["default-roles-master", "uma_protection"])
.unhideInheritedRoles();
commonPage.sidebar().waitForPageLoad();
serviceAccountTab
.checkRoles([
"default-roles-master",
"offline_access",
"uma_authorization",
"uma_protection",
])
.hideInheritedRoles();
commonPage.sidebar().waitForPageLoad();
serviceAccountTab
.checkRoles(["offline_access", "uma_authorization"], false)
.checkRoles(["default-roles-master", "uma_protection"]);
listingPage
.searchItem("testing", false)
.checkEmptyList()
.searchItem("", false);
serviceAccountTab
.checkRoles(["offline_access", "uma_authorization"], false)
.checkRoles(["default-roles-master", "uma_protection"]);
});
it("Assign", () => {
commonPage.tableUtils().clickRowItemLink(serviceAccountName);
serviceAccountTab
.goToServiceAccountTab()
.assignRole(false)
.selectRow("create-realm", true)
.assign();
commonPage.masthead().checkNotificationMessage("Role mapping updated");
serviceAccountTab.selectRow("create-realm").unAssign();
commonPage.sidebar().waitForPageLoad();
commonPage.modalUtils().checkModalTitle("Remove role?").confirmModal();
commonPage
.masthead()
.checkNotificationMessage("Scope mapping successfully removed");
//cy.intercept("/admin/realms/master/users").as("assignRoles");
serviceAccountTab.checkRoles(["create-realm"], false).assignRole(false);
//cy.wait("@assignRoles");
commonPage.sidebar().waitForPageLoad();
serviceAccountTab
.selectRow("offline_access", true)
.selectRow("admin", true)
.selectRow("create-realm", true)
.assign();
commonPage.masthead().checkNotificationMessage("Role mapping updated");
commonPage.sidebar().waitForPageLoad();
serviceAccountTab.unhideInheritedRoles();
commonPage.sidebar().waitForPageLoad();
serviceAccountTab.hideInheritedRoles();
serviceAccountTab
.selectRow("offline_access")
.selectRow("admin")
.unAssign();
commonPage.modalUtils().confirmModal();
serviceAccountTab
.checkRoles(["admin"], false)
.checkRoles(["create-realm"]);
listingPage.clickRowDetails("create-realm");
serviceAccountTab.unAssignFromDropdown();
commonPage.modalUtils().confirmModal();
commonPage.sidebar().waitForPageLoad();
serviceAccountTab.unhideInheritedRoles();
serviceAccountTab
.checkRoles(["create-realm"], false)
.checkRoles([
"default-roles-master",
"offline_access",
"uma_authorization",
"uma_protection",
]);
});
});
describe("Mapping tab", () => {
const mappingClient = "mapping-client";
beforeEach(() => {
loginPage.logIn();
keycloakBefore();
commonPage.sidebar().goToClients();
commonPage.tableToolbarUtils().searchItem(mappingClient);
commonPage.tableUtils().clickRowItemLink(mappingClient);
});
before(() => {
adminClient.createClient({
protocol: "openid-connect",
clientId: mappingClient,
publicClient: false,
});
});
after(() => {
adminClient.deleteClient(mappingClient);
});
it("Add mapping to openid client", () => {
clientDetailsPage
.goToClientScopesTab()
.clickDedicatedScope(mappingClient);
dedicatedScopesMappersTab.addPredefinedMapper();
clientDetailsPage.modalUtils().table().clickHeaderItem(1, "input");
clientDetailsPage.modalUtils().confirmModal();
clientDetailsPage
.masthead()
.checkNotificationMessage("Mapping successfully created");
});
});
describe("Keys tab test", () => {
const keysName = "keys-client";
before(() =>
adminClient.createClient({
protocol: "openid-connect",
clientId: keysName,
publicClient: false,
}),
);
beforeEach(() => {
loginPage.logIn();
keycloakBefore();
commonPage.sidebar().goToClients();
commonPage.tableToolbarUtils().searchItem(keysName);
commonPage.tableUtils().clickRowItemLink(keysName);
});
after(() => {
adminClient.deleteClient(keysName);
});
it("Generate new keys", () => {
const keysTab = clientDetailsPage.goToKeysTab();
keysTab.clickGenerate();
keysTab.fillGenerateModal("JKS", "keyname", "123", "1234").clickConfirm();
commonPage
.masthead()
.checkNotificationMessage(
"New key pair and certificate generated successfully",
);
});
});
describe("Realm client", () => {
const clientName = "master-realm";
beforeEach(() => {
loginPage.logIn();
keycloakBefore();
commonPage.sidebar().goToClients();
commonPage.tableToolbarUtils().searchItem(clientName);
commonPage.tableUtils().clickRowItemLink(clientName);
});
it("Displays the correct tabs", () => {
clientDetailsPage.goToSettingsTab();
clientDetailsPage
.tabUtils()
.checkTabExists(ClientsDetailsTab.Settings, true)
.checkTabExists(ClientsDetailsTab.Roles, true)
.checkTabExists(ClientsDetailsTab.Sessions, true)
.checkTabExists(ClientsDetailsTab.Permissions, true)
.checkTabExists(ClientsDetailsTab.Advanced, true)
.checkNumberOfTabsIsEqual(5);
});
it("Hides the delete action", () => {
commonPage
.actionToolbarUtils()
.clickActionToggleButton()
.checkActionItemExists("Delete", false);
});
});
describe("Bearer only", () => {
const clientId = "bearer-only";
before(() =>
adminClient.createClient({
clientId,
protocol: "openid-connect",
publicClient: false,
bearerOnly: true,
}),
);
beforeEach(() => {
loginPage.logIn();
keycloakBefore();
commonPage.sidebar().goToClients();
cy.intercept("/admin/realms/master/clients/*").as("fetchClient");
commonPage.tableToolbarUtils().searchItem(clientId);
commonPage.tableUtils().clickRowItemLink(clientId);
cy.wait("@fetchClient");
});
after(() => {
adminClient.deleteClient(clientId);
});
it("Shows an explainer text for bearer only clients", () => {
commonPage
.actionToolbarUtils()
.bearerOnlyExplainerLabelElement.trigger("mouseenter");
commonPage
.actionToolbarUtils()
.bearerOnlyExplainerTooltipElement.should("exist");
});
it("Hides the capability config section", () => {
cy.findByTestId("capability-config-form").should("not.exist");
cy.findByTestId("jump-link-capability-config").should("not.exist");
});
});
describe("Accessibility tests for clients", () => {
const clientId = "a11y-client";
beforeEach(() => {
loginPage.logIn();
keycloakBefore();
commonPage.sidebar().goToClients();
cy.injectAxe();
});
it("Check a11y violations on load/ clients list tab", () => {
cy.checkA11y();
});
it("Check a11y violations on create client page", () => {
commonPage.sidebar().goToClients();
commonPage.tableToolbarUtils().createClient();
createClientPage.fillClientData(clientId);
cy.checkA11y();
cy.findByTestId("next").click();
cy.checkA11y();
cy.findByTestId("next").click();
cy.checkA11y();
});
it("Check a11y violations on client details page", () => {
const rolesTab = new ClientRolesTab();
commonPage.sidebar().goToClients();
commonPage.tableToolbarUtils().createClient();
createClientPage.fillClientData(clientId).continue().continue().save();
cy.checkA11y();
rolesTab.goToRolesTab();
cy.checkA11y();
clientDetailsPage.goToClientScopesTab();
cy.checkA11y();
clientDetailsPage.goToClientScopesEvaluateTab();
cy.checkA11y();
clientDetailsPage.goToClientScopesEvaluateEffectiveRoleScopeMappingsTab();
cy.checkA11y();
clientDetailsPage.goToClientScopesEvaluateGeneratedAccessTokenTab();
cy.checkA11y();
clientDetailsPage.goToClientScopesEvaluateGeneratedIdTokenTab();
cy.checkA11y();
clientDetailsPage.goToClientScopesEvaluateGeneratedUserInfoTab();
cy.checkA11y();
clientDetailsPage.goToAdvancedTab();
cy.checkA11y();
});
it("Check a11y violations in delete dialog", () => {
commonPage.tableToolbarUtils().searchItem(clientId, false);
commonPage.tableUtils().selectRowItemAction(clientId, "Delete");
cy.checkA11y();
cy.findAllByTestId("confirm").click();
});
it("Check a11y violations on import client", () => {
cy.findByTestId("importClient").click();
cy.checkA11y();
});
it("Check a11y violations on initial access token", () => {
const initialAccessTokenTab = new InitialAccessTokenTab();
initialAccessTokenTab.goToInitialAccessTokenTab();
cy.checkA11y();
});
it("Check a11y violations on client registration/ anonymous access policies tab", () => {
const clientRegistration = new ClientRegistrationPage();
clientRegistration.goToClientRegistrationTab();
cy.checkA11y();
});
it("Check a11y violations on client registration/ authenticated access policies tab", () => {
const clientRegistration = new ClientRegistrationPage();
clientRegistration.goToClientRegistrationTab();
cy.findByTestId("authenticated").click();
cy.checkA11y();
});
});
});