d25d482dc2
CI / Migrate Dev DB (push) Has been skipped
CI / Detect Version (push) Has been cancelled
CI / Migrate DB (push) Has been cancelled
CI / Build Dev ECR (./docker/app.Dockerfile, ECR_APP) (push) Has been cancelled
CI / Build Dev ECR (./docker/db.Dockerfile, ECR_MIGRATIONS) (push) Has been cancelled
CI / Build Dev ECR (./docker/pii.Dockerfile, ECR_PII) (push) Has been cancelled
CI / Build Dev ECR (./docker/realtime.Dockerfile, ECR_REALTIME) (push) Has been cancelled
CI / Deploy Trigger.dev (Dev) (push) Has been cancelled
CI / Build AMD64 (./docker/app.Dockerfile, ECR_APP, ghcr.io/simstudioai/simstudio) (push) Has been cancelled
CI / Build AMD64 (./docker/db.Dockerfile, ECR_MIGRATIONS, ghcr.io/simstudioai/migrations) (push) Has been cancelled
CI / Build AMD64 (./docker/pii.Dockerfile, ECR_PII, ghcr.io/simstudioai/pii) (push) Has been cancelled
CI / Build AMD64 (./docker/realtime.Dockerfile, ECR_REALTIME, ghcr.io/simstudioai/realtime) (push) Has been cancelled
CI / Build ARM64 (GHCR Only) (./docker/app.Dockerfile, ghcr.io/simstudioai/simstudio) (push) Has been cancelled
CI / Build ARM64 (GHCR Only) (./docker/db.Dockerfile, ghcr.io/simstudioai/migrations) (push) Has been cancelled
CI / Build ARM64 (GHCR Only) (./docker/pii.Dockerfile, ghcr.io/simstudioai/pii) (push) Has been cancelled
CI / Build ARM64 (GHCR Only) (./docker/realtime.Dockerfile, ghcr.io/simstudioai/realtime) (push) Has been cancelled
CI / Create GHCR Manifests (ghcr.io/simstudioai/migrations) (push) Has been cancelled
CI / Create GHCR Manifests (ghcr.io/simstudioai/pii) (push) Has been cancelled
CI / Create GHCR Manifests (ghcr.io/simstudioai/realtime) (push) Has been cancelled
CI / Create GHCR Manifests (ghcr.io/simstudioai/simstudio) (push) Has been cancelled
CI / Check Docs Changes (push) Has been cancelled
CI / Process Docs (push) Has been cancelled
CI / Create GitHub Release (push) Has been cancelled
CI / Test and Build (push) Has been cancelled
Publish CLI Package / publish-npm (push) Has been cancelled
Publish Python SDK / publish-pypi (push) Has been cancelled
Publish TypeScript SDK / publish-npm (push) Has been cancelled
396 lines
13 KiB
TypeScript
396 lines
13 KiB
TypeScript
/**
|
|
* Tests for copilot api-keys API route
|
|
*
|
|
* @vitest-environment node
|
|
*/
|
|
import { authMockFns, createEnvMock } from '@sim/testing'
|
|
import { NextRequest } from 'next/server'
|
|
import { beforeEach, describe, expect, it, vi } from 'vitest'
|
|
|
|
const { mockFetch, mockGetMothershipBaseURL } = vi.hoisted(() => ({
|
|
mockFetch: vi.fn(),
|
|
mockGetMothershipBaseURL: vi.fn(),
|
|
}))
|
|
|
|
vi.mock('@/lib/copilot/constants', () => ({
|
|
SIM_AGENT_API_URL_DEFAULT: 'https://agent.sim.example.com',
|
|
SIM_AGENT_API_URL: 'https://agent.sim.example.com',
|
|
COPILOT_MODES: ['ask', 'build', 'plan'] as const,
|
|
COPILOT_REQUEST_MODES: ['ask', 'build', 'plan', 'agent'] as const,
|
|
}))
|
|
|
|
vi.mock('@/lib/copilot/server/agent-url', () => ({
|
|
getMothershipBaseURL: mockGetMothershipBaseURL,
|
|
}))
|
|
|
|
vi.mock('@/lib/core/config/env', () => createEnvMock({ COPILOT_API_KEY: 'test-api-key' }))
|
|
|
|
import { DELETE, GET } from '@/app/api/copilot/api-keys/route'
|
|
|
|
// `fetchGo` reads `response.status` and `response.headers.get('content-length')`
|
|
// to stamp span attributes, so mock responses need both fields or the call
|
|
// path throws before the route handler sees the body.
|
|
function buildMockResponse(init: {
|
|
ok: boolean
|
|
status?: number
|
|
json: () => Promise<unknown>
|
|
}): Record<string, unknown> {
|
|
return {
|
|
ok: init.ok,
|
|
status: init.status ?? (init.ok ? 200 : 500),
|
|
headers: new Headers(),
|
|
json: init.json,
|
|
}
|
|
}
|
|
|
|
describe('Copilot API Keys API Route', () => {
|
|
beforeEach(() => {
|
|
vi.clearAllMocks()
|
|
mockGetMothershipBaseURL.mockResolvedValue('https://agent.sim.example.com')
|
|
global.fetch = mockFetch
|
|
})
|
|
|
|
describe('GET', () => {
|
|
it('should return 401 when user is not authenticated', async () => {
|
|
authMockFns.mockGetSession.mockResolvedValue(null)
|
|
|
|
const request = new NextRequest('http://localhost:3000/api/copilot/api-keys')
|
|
const response = await GET(request)
|
|
|
|
expect(response.status).toBe(401)
|
|
const responseData = await response.json()
|
|
expect(responseData).toEqual({ error: 'Unauthorized' })
|
|
})
|
|
|
|
it('should return list of API keys with masked values', async () => {
|
|
authMockFns.mockGetSession.mockResolvedValue({
|
|
user: { id: 'user-123', email: 'test@example.com' },
|
|
})
|
|
|
|
const mockApiKeys = [
|
|
{
|
|
id: 'key-1',
|
|
apiKey: 'sk-sim-abcdefghijklmnopqrstuv',
|
|
name: 'Production Key',
|
|
createdAt: '2024-01-01T00:00:00.000Z',
|
|
lastUsed: '2024-01-15T00:00:00.000Z',
|
|
},
|
|
{
|
|
id: 'key-2',
|
|
apiKey: 'sk-sim-zyxwvutsrqponmlkjihgfe',
|
|
name: null,
|
|
createdAt: '2024-01-02T00:00:00.000Z',
|
|
lastUsed: null,
|
|
},
|
|
]
|
|
|
|
mockFetch.mockResolvedValueOnce(
|
|
buildMockResponse({
|
|
ok: true,
|
|
json: () => Promise.resolve(mockApiKeys),
|
|
})
|
|
)
|
|
|
|
const request = new NextRequest('http://localhost:3000/api/copilot/api-keys')
|
|
const response = await GET(request)
|
|
|
|
expect(response.status).toBe(200)
|
|
const responseData = await response.json()
|
|
expect(responseData.keys).toHaveLength(2)
|
|
expect(responseData.keys[0].id).toBe('key-1')
|
|
expect(responseData.keys[0].displayKey).toBe('•••••qrstuv')
|
|
expect(responseData.keys[0].name).toBe('Production Key')
|
|
expect(responseData.keys[1].displayKey).toBe('•••••jihgfe')
|
|
expect(responseData.keys[1].name).toBeNull()
|
|
})
|
|
|
|
it('should return empty array when user has no API keys', async () => {
|
|
authMockFns.mockGetSession.mockResolvedValue({
|
|
user: { id: 'user-123', email: 'test@example.com' },
|
|
})
|
|
|
|
mockFetch.mockResolvedValueOnce(
|
|
buildMockResponse({
|
|
ok: true,
|
|
json: () => Promise.resolve([]),
|
|
})
|
|
)
|
|
|
|
const request = new NextRequest('http://localhost:3000/api/copilot/api-keys')
|
|
const response = await GET(request)
|
|
|
|
expect(response.status).toBe(200)
|
|
const responseData = await response.json()
|
|
expect(responseData.keys).toEqual([])
|
|
})
|
|
|
|
it('should forward userId to Sim Agent', async () => {
|
|
authMockFns.mockGetSession.mockResolvedValue({
|
|
user: { id: 'user-123', email: 'test@example.com' },
|
|
})
|
|
|
|
mockFetch.mockResolvedValueOnce(
|
|
buildMockResponse({
|
|
ok: true,
|
|
json: () => Promise.resolve([]),
|
|
})
|
|
)
|
|
|
|
const request = new NextRequest('http://localhost:3000/api/copilot/api-keys')
|
|
await GET(request)
|
|
|
|
expect(mockFetch).toHaveBeenCalledWith(
|
|
'https://agent.sim.example.com/api/validate-key/get-api-keys',
|
|
expect.objectContaining({
|
|
method: 'POST',
|
|
headers: expect.objectContaining({
|
|
'Content-Type': 'application/json',
|
|
'x-api-key': 'test-api-key',
|
|
}),
|
|
body: JSON.stringify({ userId: 'user-123' }),
|
|
})
|
|
)
|
|
})
|
|
|
|
it('should return error when Sim Agent returns non-ok response', async () => {
|
|
authMockFns.mockGetSession.mockResolvedValue({
|
|
user: { id: 'user-123', email: 'test@example.com' },
|
|
})
|
|
|
|
mockFetch.mockResolvedValueOnce(
|
|
buildMockResponse({
|
|
ok: false,
|
|
status: 503,
|
|
json: () => Promise.resolve({ error: 'Service unavailable' }),
|
|
})
|
|
)
|
|
|
|
const request = new NextRequest('http://localhost:3000/api/copilot/api-keys')
|
|
const response = await GET(request)
|
|
|
|
expect(response.status).toBe(503)
|
|
const responseData = await response.json()
|
|
expect(responseData).toEqual({ error: 'Failed to get keys' })
|
|
})
|
|
|
|
it('should return 500 when Sim Agent returns invalid response', async () => {
|
|
authMockFns.mockGetSession.mockResolvedValue({
|
|
user: { id: 'user-123', email: 'test@example.com' },
|
|
})
|
|
|
|
mockFetch.mockResolvedValueOnce(
|
|
buildMockResponse({
|
|
ok: true,
|
|
json: () => Promise.resolve({ invalid: 'response' }),
|
|
})
|
|
)
|
|
|
|
const request = new NextRequest('http://localhost:3000/api/copilot/api-keys')
|
|
const response = await GET(request)
|
|
|
|
expect(response.status).toBe(500)
|
|
const responseData = await response.json()
|
|
expect(responseData).toEqual({ error: 'Invalid response from Sim Agent' })
|
|
})
|
|
|
|
it('should handle network errors gracefully', async () => {
|
|
authMockFns.mockGetSession.mockResolvedValue({
|
|
user: { id: 'user-123', email: 'test@example.com' },
|
|
})
|
|
|
|
mockFetch.mockRejectedValueOnce(new Error('Network error'))
|
|
|
|
const request = new NextRequest('http://localhost:3000/api/copilot/api-keys')
|
|
const response = await GET(request)
|
|
|
|
expect(response.status).toBe(500)
|
|
const responseData = await response.json()
|
|
expect(responseData).toEqual({ error: 'Failed to get keys' })
|
|
})
|
|
|
|
it('should handle API keys with empty apiKey string', async () => {
|
|
authMockFns.mockGetSession.mockResolvedValue({
|
|
user: { id: 'user-123', email: 'test@example.com' },
|
|
})
|
|
|
|
const mockApiKeys = [
|
|
{
|
|
id: 'key-1',
|
|
apiKey: '',
|
|
name: 'Empty Key',
|
|
createdAt: '2024-01-01T00:00:00.000Z',
|
|
lastUsed: null,
|
|
},
|
|
]
|
|
|
|
mockFetch.mockResolvedValueOnce(
|
|
buildMockResponse({
|
|
ok: true,
|
|
json: () => Promise.resolve(mockApiKeys),
|
|
})
|
|
)
|
|
|
|
const request = new NextRequest('http://localhost:3000/api/copilot/api-keys')
|
|
const response = await GET(request)
|
|
|
|
expect(response.status).toBe(200)
|
|
const responseData = await response.json()
|
|
expect(responseData.keys[0].displayKey).toBe('•••••')
|
|
})
|
|
|
|
it('should handle JSON parsing errors from Sim Agent', async () => {
|
|
authMockFns.mockGetSession.mockResolvedValue({
|
|
user: { id: 'user-123', email: 'test@example.com' },
|
|
})
|
|
|
|
mockFetch.mockResolvedValueOnce(
|
|
buildMockResponse({
|
|
ok: true,
|
|
json: () => Promise.reject(new Error('Invalid JSON')),
|
|
})
|
|
)
|
|
|
|
const request = new NextRequest('http://localhost:3000/api/copilot/api-keys')
|
|
const response = await GET(request)
|
|
|
|
expect(response.status).toBe(500)
|
|
const responseData = await response.json()
|
|
expect(responseData).toEqual({ error: 'Invalid response from Sim Agent' })
|
|
})
|
|
})
|
|
|
|
describe('DELETE', () => {
|
|
it('should return 401 when user is not authenticated', async () => {
|
|
authMockFns.mockGetSession.mockResolvedValue(null)
|
|
|
|
const request = new NextRequest('http://localhost:3000/api/copilot/api-keys?id=key-123')
|
|
const response = await DELETE(request)
|
|
|
|
expect(response.status).toBe(401)
|
|
const responseData = await response.json()
|
|
expect(responseData).toEqual({ error: 'Unauthorized' })
|
|
})
|
|
|
|
it('should return 400 when id parameter is missing', async () => {
|
|
authMockFns.mockGetSession.mockResolvedValue({
|
|
user: { id: 'user-123', email: 'test@example.com' },
|
|
})
|
|
|
|
const request = new NextRequest('http://localhost:3000/api/copilot/api-keys')
|
|
const response = await DELETE(request)
|
|
|
|
expect(response.status).toBe(400)
|
|
const responseData = await response.json()
|
|
expect(responseData).toEqual({ error: 'id is required' })
|
|
})
|
|
|
|
it('should successfully delete an API key', async () => {
|
|
authMockFns.mockGetSession.mockResolvedValue({
|
|
user: { id: 'user-123', email: 'test@example.com' },
|
|
})
|
|
|
|
mockFetch.mockResolvedValueOnce(
|
|
buildMockResponse({
|
|
ok: true,
|
|
json: () => Promise.resolve({ success: true }),
|
|
})
|
|
)
|
|
|
|
const request = new NextRequest('http://localhost:3000/api/copilot/api-keys?id=key-123')
|
|
const response = await DELETE(request)
|
|
|
|
expect(response.status).toBe(200)
|
|
const responseData = await response.json()
|
|
expect(responseData).toEqual({ success: true })
|
|
|
|
expect(mockFetch).toHaveBeenCalledWith(
|
|
'https://agent.sim.example.com/api/validate-key/delete',
|
|
expect.objectContaining({
|
|
method: 'POST',
|
|
headers: expect.objectContaining({
|
|
'Content-Type': 'application/json',
|
|
'x-api-key': 'test-api-key',
|
|
}),
|
|
body: JSON.stringify({ userId: 'user-123', apiKeyId: 'key-123' }),
|
|
})
|
|
)
|
|
})
|
|
|
|
it('should return error when Sim Agent returns non-ok response', async () => {
|
|
authMockFns.mockGetSession.mockResolvedValue({
|
|
user: { id: 'user-123', email: 'test@example.com' },
|
|
})
|
|
|
|
mockFetch.mockResolvedValueOnce(
|
|
buildMockResponse({
|
|
ok: false,
|
|
status: 404,
|
|
json: () => Promise.resolve({ error: 'Key not found' }),
|
|
})
|
|
)
|
|
|
|
const request = new NextRequest('http://localhost:3000/api/copilot/api-keys?id=non-existent')
|
|
const response = await DELETE(request)
|
|
|
|
expect(response.status).toBe(404)
|
|
const responseData = await response.json()
|
|
expect(responseData).toEqual({ error: 'Failed to delete key' })
|
|
})
|
|
|
|
it('should return 500 when Sim Agent returns invalid response', async () => {
|
|
authMockFns.mockGetSession.mockResolvedValue({
|
|
user: { id: 'user-123', email: 'test@example.com' },
|
|
})
|
|
|
|
mockFetch.mockResolvedValueOnce(
|
|
buildMockResponse({
|
|
ok: true,
|
|
json: () => Promise.resolve({ success: false }),
|
|
})
|
|
)
|
|
|
|
const request = new NextRequest('http://localhost:3000/api/copilot/api-keys?id=key-123')
|
|
const response = await DELETE(request)
|
|
|
|
expect(response.status).toBe(500)
|
|
const responseData = await response.json()
|
|
expect(responseData).toEqual({ error: 'Invalid response from Sim Agent' })
|
|
})
|
|
|
|
it('should handle network errors gracefully', async () => {
|
|
authMockFns.mockGetSession.mockResolvedValue({
|
|
user: { id: 'user-123', email: 'test@example.com' },
|
|
})
|
|
|
|
mockFetch.mockRejectedValueOnce(new Error('Network error'))
|
|
|
|
const request = new NextRequest('http://localhost:3000/api/copilot/api-keys?id=key-123')
|
|
const response = await DELETE(request)
|
|
|
|
expect(response.status).toBe(500)
|
|
const responseData = await response.json()
|
|
expect(responseData).toEqual({ error: 'Failed to delete key' })
|
|
})
|
|
|
|
it('should handle JSON parsing errors from Sim Agent on delete', async () => {
|
|
authMockFns.mockGetSession.mockResolvedValue({
|
|
user: { id: 'user-123', email: 'test@example.com' },
|
|
})
|
|
|
|
mockFetch.mockResolvedValueOnce(
|
|
buildMockResponse({
|
|
ok: true,
|
|
json: () => Promise.reject(new Error('Invalid JSON')),
|
|
})
|
|
)
|
|
|
|
const request = new NextRequest('http://localhost:3000/api/copilot/api-keys?id=key-123')
|
|
const response = await DELETE(request)
|
|
|
|
expect(response.status).toBe(500)
|
|
const responseData = await response.json()
|
|
expect(responseData).toEqual({ error: 'Invalid response from Sim Agent' })
|
|
})
|
|
})
|
|
})
|