mini-starter/packages/orders-module-mt/tests/integration/admin-orders.integration.test.ts

import { describe, it, expect, beforeEach } from 'vitest';
import { testClient } from 'hono/testing';
import { IntegrationTestDatabase, setupIntegrationDatabaseHooksWithEntities } from '@d8d/shared-test-util';
import { JWTUtil } from '@d8d/shared-utils';
import { UserEntity, Role } from '@d8d/user-module';
import { DeliveryAddress } from '@d8d/delivery-address-module';
import { AreaEntity } from '@d8d/geo-areas';
import { Merchant } from '@d8d/merchant-module';
import { Supplier } from '@d8d/supplier-module';
import { File } from '@d8d/file-module';
import adminOrderRoutes from '../../src/routes/admin/orders';
import { Order } from '../../src/entities';

// 设置集成测试钩子
setupIntegrationDatabaseHooksWithEntities([
  UserEntity, Role, Order, DeliveryAddress, Merchant, Supplier, File, AreaEntity
])

describe('管理员订单管理API集成测试', () => {
  let client: ReturnType<typeof testClient<typeof adminOrderRoutes>>;
  let adminToken: string;
  let testUser: UserEntity;
  let testAdmin: UserEntity;
  let testDeliveryAddress: DeliveryAddress;
  let testMerchant: Merchant;
  let testSupplier: Supplier;
  let testProvince: AreaEntity;
  let testCity: AreaEntity;
  let testDistrict: AreaEntity;
  let testTown: AreaEntity;

  beforeEach(async () => {
    // 创建测试客户端
    client = testClient(adminOrderRoutes);

    // 获取数据源
    const dataSource = await IntegrationTestDatabase.getDataSource();

    // 创建测试用户
    const userRepository = dataSource.getRepository(UserEntity);
    testUser = userRepository.create({
      username: `test_user_${Math.floor(Math.random() * 100000)}`,
      password: 'test_password',
      nickname: '测试用户',
      registrationSource: 'web'
    });
    await userRepository.save(testUser);

    // 创建测试管理员用户
    testAdmin = userRepository.create({
      username: `test_admin_${Math.floor(Math.random() * 100000)}`,
      password: 'admin_password',
      nickname: '测试管理员',
      registrationSource: 'web'
    });
    await userRepository.save(testAdmin);

    // 生成测试管理员的token
    adminToken = JWTUtil.generateToken({
      id: testAdmin.id,
      username: testAdmin.username,
      roles: [{name:'admin'}]
    });

    // 创建测试地区数据
    const areaRepository = dataSource.getRepository(AreaEntity);
    testProvince = areaRepository.create({
      name: '广东省',
      level: 1,
      code: '44',
      state: 1
    });
    await areaRepository.save(testProvince);

    testCity = areaRepository.create({
      name: '深圳市',
      level: 2,
      code: '4403',
      state: 1
    });
    await areaRepository.save(testCity);

    testDistrict = areaRepository.create({
      name: '南山区',
      level: 3,
      code: '440305',
      state: 1
    });
    await areaRepository.save(testDistrict);

    testTown = areaRepository.create({
      name: '粤海街道',
      level: 4,
      code: '440305001',
      state: 1
    });
    await areaRepository.save(testTown);

    // 创建测试配送地址
    const deliveryAddressRepository = dataSource.getRepository(DeliveryAddress);
    testDeliveryAddress = deliveryAddressRepository.create({
      userId: testUser.id,
      name: '收货人姓名',
      phone: '13800138000',
      receiverProvince: testProvince.id,
      receiverCity: testCity.id,
      receiverDistrict: testDistrict.id,
      receiverTown: testTown.id,
      address: '测试地址',
      isDefault: 1,
      state: 1,
      createdBy: testUser.id
    });
    await deliveryAddressRepository.save(testDeliveryAddress);

    // 创建测试商户
    const merchantRepository = dataSource.getRepository(Merchant);
    testMerchant = merchantRepository.create({
      name: '测试商户',
      username: `test_merchant_${Math.floor(Math.random() * 100000)}`,
      password: 'password123',
      phone: '13800138001',
      realname: '测试商户',
      state: 1,
      createdBy: testUser.id
    });
    await merchantRepository.save(testMerchant);

    // 创建测试供应商
    const supplierRepository = dataSource.getRepository(Supplier);
    testSupplier = supplierRepository.create({
      name: '测试供应商',
      username: `test_supplier_${Math.floor(Math.random() * 100000)}`,
      password: 'password123',
      phone: '13800138002',
      realname: '测试供应商',
      state: 1,
      createdBy: testUser.id
    });
    await supplierRepository.save(testSupplier);
  });

  describe('GET /orders', () => {
    it('应该返回所有订单列表', async () => {
      // 创建多个用户的订单
      const dataSource = await IntegrationTestDatabase.getDataSource();
      const orderRepository = dataSource.getRepository(Order);

      const userOrder1 = orderRepository.create({
        orderNo: `ORDER_${Math.floor(Math.random() * 100000)}`,
        userId: testUser.id,
        amount: 100.00,
        costAmount: 80.00,
        payAmount: 100.00,
        orderType: 1,
        payType: 1,
        payState: 2,
        state: 0,
        addressId: testDeliveryAddress.id,
        merchantId: testMerchant.id,
        supplierId: testSupplier.id,
        recevierProvince: testProvince.id,
        recevierCity: testCity.id,
        recevierDistrict: testDistrict.id,
        recevierTown: testTown.id,
        createdBy: testUser.id
      });
      await orderRepository.save(userOrder1);

      const userOrder2 = orderRepository.create({
        orderNo: `ORDER_${Math.floor(Math.random() * 100000)}`,
        userId: testAdmin.id,
        amount: 200.00,
        costAmount: 160.00,
        payAmount: 200.00,
        orderType: 1,
        payType: 1,
        payState: 2,
        state: 1,
        addressId: testDeliveryAddress.id,
        merchantId: testMerchant.id,
        supplierId: testSupplier.id,
        recevierProvince: testProvince.id,
        recevierCity: testCity.id,
        recevierDistrict: testDistrict.id,
        recevierTown: testTown.id,
        createdBy: testAdmin.id
      });
      await orderRepository.save(userOrder2);

      const response = await client.index.$get({
        query: {}
      }, {
        headers: {
          'Authorization': `Bearer ${adminToken}`
        }
      });

      console.debug('管理员订单列表响应状态:', response.status);
      expect(response.status).toBe(200);

      if (response.status === 200) {
        const data = await response.json();
        expect(data).toHaveProperty('data');
        expect(Array.isArray(data.data)).toBe(true);

        // 验证返回所有用户的订单（管理员可以访问所有数据）
        const userOrderCount = data.data.filter((order: any) => order.userId === testUser.id).length;
        const adminOrderCount = data.data.filter((order: any) => order.userId === testAdmin.id).length;

        expect(userOrderCount).toBeGreaterThan(0);
        expect(adminOrderCount).toBeGreaterThan(0);
      }
    });

    it('应该拒绝未认证用户的访问', async () => {
      const response = await client.index.$get({
        query: {}
      });
      expect(response.status).toBe(401);
    });
  });

  describe('POST /orders', () => {
    it('应该成功创建订单并可以指定权限', async () => {
      const createData = {
        orderNo: `ORDER_${Math.floor(Math.random() * 100000)}`,
        userId: testUser.id,
        amount: 150.00,
        costAmount: 120.00,
        payAmount: 150.00,
        orderType: 1,
        payType: 1,
        payState: 0,
        state: 0,
        addressId: testDeliveryAddress.id,
        merchantId: testMerchant.id,
        supplierId: testSupplier.id
        // createdBy 由认证中间件自动设置
      };

      const response = await client.index.$post({
        json: createData
      }, {
        headers: {
          'Authorization': `Bearer ${adminToken}`
        }
      });

      console.debug('管理员创建订单响应状态:', response.status);
      if (response.status !== 201) {
        const errorData = await response.json();
        console.debug('管理员创建订单错误响应:', errorData);
      }
      expect(response.status).toBe(201);

      if (response.status === 201) {
        const data = await response.json();
        expect(data).toHaveProperty('id');
        expect(data.orderNo).toBe(createData.orderNo);
        expect(parseFloat(data.amount)).toBe(createData.amount);
        expect(data.userId).toBe(createData.userId); // 验证可以指定用户
        expect(data.createdBy).toBe(testAdmin.id); // 验证创建人自动设置为当前管理员用户
      }
    });

    it('应该验证创建订单的必填字段', async () => {
      const invalidData = {
        // 缺少必填字段
        amount: -1,
        orderType: -1
      };

      const response = await client.index.$post({
        json: invalidData
      }, {
        headers: {
          'Authorization': `Bearer ${adminToken}`
        }
      });

      expect(response.status).toBe(400);
    });
  });

  describe('GET /orders/:id', () => {
    it('应该返回指定订单的详情', async () => {
      // 先创建一个订单
      const dataSource = await IntegrationTestDatabase.getDataSource();
      const orderRepository = dataSource.getRepository(Order);
      const testOrder = orderRepository.create({
        orderNo: `ORDER_${Math.floor(Math.random() * 100000)}`,
        userId: testUser.id,
        amount: 100.00,
        costAmount: 80.00,
        payAmount: 100.00,
        orderType: 1,
        payType: 1,
        payState: 2,
        state: 0,
        addressId: testDeliveryAddress.id,
        merchantId: testMerchant.id,
        supplierId: testSupplier.id,
        recevierProvince: testProvince.id,
        recevierCity: testCity.id,
        recevierDistrict: testDistrict.id,
        recevierTown: testTown.id,
        createdBy: testUser.id
      });
      await orderRepository.save(testOrder);

      const response = await client[':id'].$get({
        param: { id: testOrder.id }
      }, {
        headers: {
          'Authorization': `Bearer ${adminToken}`
        }
      });

      console.debug('管理员订单详情响应状态:', response.status);
      expect(response.status).toBe(200);

      if (response.status === 200) {
        const data = await response.json();
        expect(data.id).toBe(testOrder.id);
        expect(data.orderNo).toBe(testOrder.orderNo);
        expect(data.userId).toBe(testUser.id);
      }
    });

    it('应该处理不存在的订单', async () => {
      const response = await client[':id'].$get({
        param: { id: 999999 }
      }, {
        headers: {
          'Authorization': `Bearer ${adminToken}`
        }
      });

      expect(response.status).toBe(404);
    });
  });

  describe('PUT /orders/:id', () => {
    it('应该成功更新任何订单', async () => {
      // 先创建一个订单
      const dataSource = await IntegrationTestDatabase.getDataSource();
      const orderRepository = dataSource.getRepository(Order);
      const testOrder = orderRepository.create({
        orderNo: `ORDER_${Math.floor(Math.random() * 100000)}`,
        userId: testUser.id,
        amount: 100.00,
        costAmount: 80.00,
        payAmount: 100.00,
        orderType: 1,
        payType: 1,
        payState: 2,
        state: 0,
        addressId: testDeliveryAddress.id,
        merchantId: testMerchant.id,
        supplierId: testSupplier.id,
        recevierProvince: testProvince.id,
        recevierCity: testCity.id,
        recevierDistrict: testDistrict.id,
        recevierTown: testTown.id,
        createdBy: testUser.id
      });
      await orderRepository.save(testOrder);

      const updateData = {
        state: 1,
        payState: 1,
        updatedBy: testAdmin.id // 管理员可以指定更新人
      };

      const response = await client[':id'].$put({
        param: { id: testOrder.id },
        json: updateData
      }, {
        headers: {
          'Authorization': `Bearer ${adminToken}`
        }
      });

      console.debug('管理员更新订单响应状态:', response.status);
      expect(response.status).toBe(200);

      if (response.status === 200) {
        const data = await response.json();
        expect(data.state).toBe(updateData.state);
        expect(data.payState).toBe(updateData.payState);
        expect(data.updatedBy).toBe(testAdmin.id); // 验证可以指定更新人
      }
    });
  });

  describe('DELETE /orders/:id', () => {
    it('应该成功删除任何订单', async () => {
      // 先创建一个订单
      const dataSource = await IntegrationTestDatabase.getDataSource();
      const orderRepository = dataSource.getRepository(Order);
      const testOrder = orderRepository.create({
        orderNo: `ORDER_${Math.floor(Math.random() * 100000)}`,
        userId: testUser.id,
        amount: 100.00,
        costAmount: 80.00,
        payAmount: 100.00,
        orderType: 1,
        payType: 1,
        payState: 2,
        state: 0,
        addressId: testDeliveryAddress.id,
        merchantId: testMerchant.id,
        supplierId: testSupplier.id,
        recevierProvince: testProvince.id,
        recevierCity: testCity.id,
        recevierDistrict: testDistrict.id,
        recevierTown: testTown.id,
        createdBy: testUser.id
      });
      await orderRepository.save(testOrder);

      const response = await client[':id'].$delete({
        param: { id: testOrder.id }
      }, {
        headers: {
          'Authorization': `Bearer ${adminToken}`
        }
      });

      console.debug('管理员删除订单响应状态:', response.status);
      expect(response.status).toBe(204);
    });
  });

  describe('订单状态管理测试', () => {
    it('应该正确处理订单状态变更', async () => {
      const dataSource = await IntegrationTestDatabase.getDataSource();
      const orderRepository = dataSource.getRepository(Order);

      // 创建不同状态的订单
      const pendingOrder = orderRepository.create({
        orderNo: `ORDER_${Math.floor(Math.random() * 100000)}`,
        userId: testUser.id,
        amount: 100.00,
        costAmount: 80.00,
        payAmount: 100.00,
        orderType: 1,
        payType: 1,
        payState: 2,
        state: 0, // 未发货
        addressId: testDeliveryAddress.id,
        merchantId: testMerchant.id,
        supplierId: testSupplier.id,
        recevierProvince: testProvince.id,
        recevierCity: testCity.id,
        recevierDistrict: testDistrict.id,
        recevierTown: testTown.id,
        createdBy: testUser.id
      });
      await orderRepository.save(pendingOrder);

      const shippedOrder = orderRepository.create({
        orderNo: `ORDER_${Math.floor(Math.random() * 100000)}`,
        userId: testUser.id,
        amount: 200.00,
        costAmount: 160.00,
        payAmount: 200.00,
        orderType: 1,
        payType: 1,
        payState: 2,
        state: 1, // 已发货
        addressId: testDeliveryAddress.id,
        merchantId: testMerchant.id,
        supplierId: testSupplier.id,
        recevierProvince: testProvince.id,
        recevierCity: testCity.id,
        recevierDistrict: testDistrict.id,
        recevierTown: testTown.id,
        createdBy: testUser.id
      });
      await orderRepository.save(shippedOrder);

      const completedOrder = orderRepository.create({
        orderNo: `ORDER_${Math.floor(Math.random() * 100000)}`,
        userId: testUser.id,
        amount: 300.00,
        costAmount: 240.00,
        payAmount: 300.00,
        orderType: 1,
        payType: 1,
        payState: 2,
        state: 2, // 收货成功
        addressId: testDeliveryAddress.id,
        merchantId: testMerchant.id,
        supplierId: testSupplier.id,
        recevierProvince: testProvince.id,
        recevierCity: testCity.id,
        recevierDistrict: testDistrict.id,
        recevierTown: testTown.id,
        createdBy: testUser.id
      });
      await orderRepository.save(completedOrder);

      // 验证状态过滤
      const response = await client.index.$get({
        query: { filters: JSON.stringify({ state: 1 }) }
      }, {
        headers: {
          'Authorization': `Bearer ${adminToken}`
        }
      });

      expect(response.status).toBe(200);
      const data = await response.json();

      // 类型检查确保data属性存在
      if ('data' in data && Array.isArray(data.data)) {
        // 应该只返回已发货状态的订单
        const pendingOrdersInResponse = data.data.filter((order: any) => order.state === 0);
        const shippedOrdersInResponse = data.data.filter((order: any) => order.state === 1);
        const completedOrdersInResponse = data.data.filter((order: any) => order.state === 2);

        expect(pendingOrdersInResponse.length).toBe(0);
        expect(shippedOrdersInResponse.length).toBeGreaterThan(0);
        expect(completedOrdersInResponse.length).toBe(0);
      } else {
        // 如果响应是错误格式，应该失败
        expect(data).toHaveProperty('data');
      }
    });
  });

  describe('支付状态管理测试', () => {
    it('应该正确处理支付状态变更', async () => {
      const dataSource = await IntegrationTestDatabase.getDataSource();
      const orderRepository = dataSource.getRepository(Order);

      // 创建不同支付状态的订单
      const unpaidOrder = orderRepository.create({
        orderNo: `ORDER_${Math.floor(Math.random() * 100000)}`,
        userId: testUser.id,
        amount: 100.00,
        costAmount: 80.00,
        payAmount: 100.00,
        orderType: 1,
        payType: 1,
        payState: 0, // 未支付
        state: 0,
        addressId: testDeliveryAddress.id,
        merchantId: testMerchant.id,
        supplierId: testSupplier.id,
        recevierProvince: testProvince.id,
        recevierCity: testCity.id,
        recevierDistrict: testDistrict.id,
        recevierTown: testTown.id,
        createdBy: testUser.id
      });
      await orderRepository.save(unpaidOrder);

      const payingOrder = orderRepository.create({
        orderNo: `ORDER_${Math.floor(Math.random() * 100000)}`,
        userId: testUser.id,
        amount: 200.00,
        costAmount: 160.00,
        payAmount: 200.00,
        orderType: 1,
        payType: 1,
        payState: 1, // 支付中
        state: 0,
        addressId: testDeliveryAddress.id,
        merchantId: testMerchant.id,
        supplierId: testSupplier.id,
        recevierProvince: testProvince.id,
        recevierCity: testCity.id,
        recevierDistrict: testDistrict.id,
        recevierTown: testTown.id,
        createdBy: testUser.id
      });
      await orderRepository.save(payingOrder);

      const paidOrder = orderRepository.create({
        orderNo: `ORDER_${Math.floor(Math.random() * 100000)}`,
        userId: testUser.id,
        amount: 300.00,
        costAmount: 240.00,
        payAmount: 300.00,
        orderType: 1,
        payType: 1,
        payState: 2, // 支付成功
        state: 0,
        addressId: testDeliveryAddress.id,
        merchantId: testMerchant.id,
        supplierId: testSupplier.id,
        recevierProvince: testProvince.id,
        recevierCity: testCity.id,
        recevierDistrict: testDistrict.id,
        recevierTown: testTown.id,
        createdBy: testUser.id
      });
      await orderRepository.save(paidOrder);

      // 验证支付状态过滤
      const response = await client.index.$get({
        query: { filters: JSON.stringify({ payState: 2 }) }
      }, {
        headers: {
          'Authorization': `Bearer ${adminToken}`
        }
      });

      expect(response.status).toBe(200);
      const data = await response.json();

      // 类型检查确保data属性存在
      if ('data' in data && Array.isArray(data.data)) {
        // 应该只返回支付成功状态的订单
        const unpaidOrdersInResponse = data.data.filter((order: any) => order.payState === 0);
        const payingOrdersInResponse = data.data.filter((order: any) => order.payState === 1);
        const paidOrdersInResponse = data.data.filter((order: any) => order.payState === 2);

        expect(unpaidOrdersInResponse.length).toBe(0);
        expect(payingOrdersInResponse.length).toBe(0);
        expect(paidOrdersInResponse.length).toBeGreaterThan(0);
      } else {
        // 如果响应是错误格式，应该失败
        expect(data).toHaveProperty('data');
      }
    });
  });

  describe('管理员权限验证测试', () => {
    it('应该验证管理员可以访问所有数据', async () => {
      const dataSource = await IntegrationTestDatabase.getDataSource();
      const orderRepository = dataSource.getRepository(Order);

      // 创建多个用户的订单
      const userOrder = orderRepository.create({
        orderNo: `ORDER_${Math.floor(Math.random() * 100000)}`,
        userId: testUser.id,
        amount: 100.00,
        costAmount: 80.00,
        payAmount: 100.00,
        orderType: 1,
        payType: 1,
        payState: 2,
        state: 0,
        addressId: testDeliveryAddress.id,
        merchantId: testMerchant.id,
        supplierId: testSupplier.id,
        recevierProvince: testProvince.id,
        recevierCity: testCity.id,
        recevierDistrict: testDistrict.id,
        recevierTown: testTown.id,
        createdBy: testUser.id
      });
      await orderRepository.save(userOrder);

      const adminOrder = orderRepository.create({
        orderNo: `ORDER_${Math.floor(Math.random() * 100000)}`,
        userId: testAdmin.id,
        amount: 200.00,
        costAmount: 160.00,
        payAmount: 200.00,
        orderType: 1,
        payType: 1,
        payState: 2,
        state: 0,
        addressId: testDeliveryAddress.id,
        merchantId: testMerchant.id,
        supplierId: testSupplier.id,
        recevierProvince: testProvince.id,
        recevierCity: testCity.id,
        recevierDistrict: testDistrict.id,
        recevierTown: testTown.id,
        createdBy: testAdmin.id
      });
      await orderRepository.save(adminOrder);

      // 使用管理员token获取列表
      const response = await client.index.$get({
        query: {}
      }, {
        headers: {
          'Authorization': `Bearer ${adminToken}`
        }
      });

      expect(response.status).toBe(200);
      const data = await response.json();

      // 类型检查确保data属性存在
      if ('data' in data && Array.isArray(data.data)) {
        // 验证返回所有用户的订单
        const userOrdersInResponse = data.data.filter((order: any) => order.userId === testUser.id);
        const adminOrdersInResponse = data.data.filter((order: any) => order.userId === testAdmin.id);

        expect(userOrdersInResponse.length).toBeGreaterThan(0);
        expect(adminOrdersInResponse.length).toBeGreaterThan(0);
      } else {
        // 如果响应是错误格式，应该失败
        expect(data).toHaveProperty('data');
      }
    });
  });
});