186-template-175
/
mini-starter
haarautettu lähteestä 155-template-138/mini-starter


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278
							import { describe, it, expect, beforeEach, afterEach } from 'vitest';
import { AppDataSource } from '@d8d/shared-utils';
import { setupIntegrationDatabaseHooksWithEntities } from '@d8d/shared-test-util';
import { FileMt } from '../../src/entities/file.entity';
import { FileServiceMt } from '../../src/services/file.service.mt';
import { UserEntityMt } from '@d8d/user-module-mt/entities';

describe('文件模块多租户数据隔离测试', () => {
  let fileService: FileServiceMt;
  const tenant1UserId = 1;
  const tenant2UserId = 2;

  // 设置数据库钩子
  setupIntegrationDatabaseHooksWithEntities([FileMt, UserEntityMt]);

  beforeEach(async () => {
    // 创建文件服务实例
    fileService = new FileServiceMt(AppDataSource);

    // 清理文件数据
    const fileRepository = AppDataSource.getRepository(FileMt);
    await fileRepository.delete({});
  });

  describe('文件创建租户隔离', () => {
    it('应该为租户1创建文件并设置正确的租户ID', async () => {
      const fileData = {
        name: 'tenant1_file.pdf',
        type: 'application/pdf',
        size: 1024,
        path: 'test/path',
        uploadUserId: tenant1UserId,
        description: '租户1的文件'
      };

      const result = await fileService.createFile(fileData, 1);

      expect(result.file.tenantId).toBe(1);
      expect(result.file.name).toBe('tenant1_file.pdf');
      expect(result.file.uploadUserId).toBe(tenant1UserId);
    });

    it('应该为租户2创建文件并设置正确的租户ID', async () => {
      const fileData = {
        name: 'tenant2_file.pdf',
        type: 'application/pdf',
        size: 2048,
        path: 'test/path',
        uploadUserId: tenant2UserId,
        description: '租户2的文件'
      };

      const result = await fileService.createFile(fileData, 2);

      expect(result.file.tenantId).toBe(2);
      expect(result.file.name).toBe('tenant2_file.pdf');
      expect(result.file.uploadUserId).toBe(tenant2UserId);
    });
  });

  describe('文件查询租户隔离', () => {
    beforeEach(async () => {
      // 创建测试文件
      const fileRepository = AppDataSource.getRepository(FileMt);

      // 租户1的文件
      await fileRepository.save([
        fileRepository.create({
          name: 'tenant1_file1.pdf',
          type: 'application/pdf',
          size: 1024,
          path: 'tenant1/path1',
          uploadUserId: tenant1UserId,
          tenantId: 1,
          uploadTime: new Date()
        }),
        fileRepository.create({
          name: 'tenant1_file2.jpg',
          type: 'image/jpeg',
          size: 2048,
          path: 'tenant1/path2',
          uploadUserId: tenant1UserId,
          tenantId: 1,
          uploadTime: new Date()
        })
      ]);

      // 租户2的文件
      await fileRepository.save([
        fileRepository.create({
          name: 'tenant2_file1.pdf',
          type: 'application/pdf',
          size: 3072,
          path: 'tenant2/path1',
          uploadUserId: tenant2UserId,
          tenantId: 2,
          uploadTime: new Date()
        })
      ]);
    });

    it('应该只返回租户1的文件列表', async () => {
      const files = await fileService.findAll({ tenantId: 1 });

      expect(files).toHaveLength(2);
      expect(files.every(file => file.tenantId === 1)).toBe(true);
      expect(files.some(file => file.name === 'tenant1_file1.pdf')).toBe(true);
      expect(files.some(file => file.name === 'tenant1_file2.jpg')).toBe(true);
    });

    it('应该只返回租户2的文件列表', async () => {
      const files = await fileService.findAll({ tenantId: 2 });

      expect(files).toHaveLength(1);
      expect(files[0].tenantId).toBe(2);
      expect(files[0].name).toBe('tenant2_file1.pdf');
    });

    it('应该正确获取租户1的特定文件', async () => {
      const fileRepository = AppDataSource.getRepository(FileMt);
      const tenant1File = await fileRepository.findOneBy({ tenantId: 1, name: 'tenant1_file1.pdf' });

      if (tenant1File) {
        const file = await fileService.getById(tenant1File.id, { tenantId: 1 });
        expect(file).toBeDefined();
        expect(file?.tenantId).toBe(1);
        expect(file?.name).toBe('tenant1_file1.pdf');
      }
    });

    it('租户1不应该访问租户2的文件', async () => {
      const fileRepository = AppDataSource.getRepository(FileMt);
      const tenant2File = await fileRepository.findOneBy({ tenantId: 2, name: 'tenant2_file1.pdf' });

      if (tenant2File) {
        const file = await fileService.getById(tenant2File.id, { tenantId: 1 });
        expect(file).toBeNull();
      }
    });
  });

  describe('文件更新租户隔离', () => {
    let tenant1File: FileMt;

    beforeEach(async () => {
      // 创建租户1的测试文件
      const fileRepository = AppDataSource.getRepository(FileMt);
      tenant1File = fileRepository.create({
        name: 'original_name.pdf',
        type: 'application/pdf',
        size: 1024,
        path: 'tenant1/original',
        uploadUserId: tenant1UserId,
        tenantId: 1,
        uploadTime: new Date()
      });
      await fileRepository.save(tenant1File);
    });

    it('应该允许租户1更新自己的文件', async () => {
      const updateData = {
        name: 'updated_name.pdf',
        description: '更新后的描述'
      };

      const updatedFile = await fileService.update(tenant1File.id, updateData, { tenantId: 1 });

      expect(updatedFile.name).toBe('updated_name.pdf');
      expect(updatedFile.description).toBe('更新后的描述');
      expect(updatedFile.tenantId).toBe(1);
    });

    it('不应该允许租户2更新租户1的文件', async () => {
      const updateData = {
        name: 'hacked_name.pdf'
      };

      await expect(fileService.update(tenant1File.id, updateData, { tenantId: 2 }))
        .rejects.toThrow();
    });
  });

  describe('文件删除租户隔离', () => {
    let tenant1File: FileMt;
    let tenant2File: FileMt;

    beforeEach(async () => {
      // 创建测试文件
      const fileRepository = AppDataSource.getRepository(FileMt);

      tenant1File = fileRepository.create({
        name: 'tenant1_delete_test.pdf',
        type: 'application/pdf',
        size: 1024,
        path: 'tenant1/delete_test',
        uploadUserId: tenant1UserId,
        tenantId: 1,
        uploadTime: new Date()
      });

      tenant2File = fileRepository.create({
        name: 'tenant2_delete_test.pdf',
        type: 'application/pdf',
        size: 2048,
        path: 'tenant2/delete_test',
        uploadUserId: tenant2UserId,
        tenantId: 2,
        uploadTime: new Date()
      });

      await fileRepository.save([tenant1File, tenant2File]);
    });

    it('应该允许租户1删除自己的文件', async () => {
      const result = await fileService.delete(tenant1File.id, { tenantId: 1 });
      expect(result).toBe(true);

      // 验证文件已被删除
      const fileRepository = AppDataSource.getRepository(FileMt);
      const deletedFile = await fileRepository.findOneBy({ id: tenant1File.id });
      expect(deletedFile).toBeNull();
    });

    it('不应该允许租户2删除租户1的文件', async () => {
      await expect(fileService.delete(tenant1File.id, { tenantId: 2 }))
        .rejects.toThrow();

      // 验证文件仍然存在
      const fileRepository = AppDataSource.getRepository(FileMt);
      const existingFile = await fileRepository.findOneBy({ id: tenant1File.id });
      expect(existingFile).toBeDefined();
    });

    it('应该允许租户2删除自己的文件', async () => {
      const result = await fileService.delete(tenant2File.id, { tenantId: 2 });
      expect(result).toBe(true);

      // 验证文件已被删除
      const fileRepository = AppDataSource.getRepository(FileMt);
      const deletedFile = await fileRepository.findOneBy({ id: tenant2File.id });
      expect(deletedFile).toBeNull();
    });
  });

  describe('文件存储路径租户隔离', () => {
    it('应该为租户1的文件生成包含租户ID的存储路径', async () => {
      const fileData = {
        name: 'tenant1_path_test.pdf',
        type: 'application/pdf',
        size: 1024,
        uploadUserId: tenant1UserId,
        description: '租户1路径测试文件'
      };

      const result = await fileService.createFile(fileData, 1);

      expect(result.file.path).toContain('tenants/1/');
      expect(result.file.path).toContain(tenant1UserId.toString());
      expect(result.file.path).toContain('tenant1_path_test.pdf');
    });

    it('应该为租户2的文件生成包含租户ID的存储路径', async () => {
      const fileData = {
        name: 'tenant2_path_test.pdf',
        type: 'application/pdf',
        size: 1024,
        uploadUserId: tenant2UserId,
        description: '租户2路径测试文件'
      };

      const result = await fileService.createFile(fileData, 2);

      expect(result.file.path).toContain('tenants/2/');
      expect(result.file.path).toContain(tenant2UserId.toString());
      expect(result.file.path).toContain('tenant2_path_test.pdf');
    });
  });
});