Register
Login
Resources
Docs Blog Datasets Glossary Case Studies Tutorials & Webinars
Product
Data Engine LLMs Platform Enterprise
Pricing Explore
Connect to our Discord channel
Resources  
Docs Blog Datasets Glossary Case Studies Tutorials & Webinars
Explore Pricing
Product  
Data Engine LLMs Platform Enterprise
Connect to Dagshub Discord channel
Register
Login

nirbarazida
/
promptfoo
mirror of https://github.com/promptfoo/promptfoo

Watch 1
Issues   Discussions 0

auth.test.ts 13 KB
Permalink History Raw

You have to be logged in to leave a comment. Sign In
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345 
  1. import { Command } from 'commander';
    2. 

  2. import { authCommand } from '../../src/commands/auth';
    3. 

  3. import { fetchWithProxy } from '../../src/fetch';
    4. 

  4. import { getUserEmail, setUserEmail } from '../../src/globalConfig/accounts';
    5. 

  5. import { cloudConfig } from '../../src/globalConfig/cloud';
    6. 

  6. import logger from '../../src/logger';
    7. 

  7. import telemetry from '../../src/telemetry';
    8. 

  8. import { createMockResponse } from '../util/utils';
    9. 

  9. 

  10. const mockCloudUser = {
    11. 

  11.   id: '1',
    12. 

  12.   email: 'test@example.com',
    13. 

  13.   name: 'Test User',
    14. 

  14.   createdAt: new Date(),
    15. 

  15.   updatedAt: new Date(),
    16. 

  16. };
    17. 

  17. 

  18. const mockOrganization = {
    19. 

  19.   id: '1',
    20. 

  20.   name: 'Test Org',
    21. 

  21.   createdAt: new Date(),
    22. 

  22.   updatedAt: new Date(),
    23. 

  23. };
    24. 

  24. 

  25. const mockApp = {
    26. 

  26.   id: '1',
    27. 

  27.   name: 'Test App',
    28. 

  28.   createdAt: new Date(),
    29. 

  29.   updatedAt: new Date(),
    30. 

  30.   url: 'https://app.example.com',
    31. 

  31. };
    32. 

  32. 

  33. jest.mock('../../src/globalConfig/accounts');
    34. 

  34. jest.mock('../../src/globalConfig/cloud');
    35. 

  35. jest.mock('../../src/logger');
    36. 

  36. jest.mock('../../src/telemetry');
    37. 

  37. jest.mock('../../src/fetch');
    38. 

  38. 

  39. const mockFetch = jest.fn();
    40. 

  40. global.fetch = mockFetch;
    41. 

  41. 

  42. describe('auth command', () => {
    43. 

  43.   let program: Command;
    44. 

  44. 

  45.   beforeEach(() => {
    46. 

  46.     jest.clearAllMocks();
    47. 

  47.     jest.resetAllMocks();
    48. 

  48.     program = new Command();
    49. 

  49.     process.exitCode = undefined;
    50. 

  50.     authCommand(program);
    51. 

  51. 

  52.     // Set up a basic mock that just returns the expected data
    53. 

  53.     jest.mocked(cloudConfig.validateAndSetApiToken).mockResolvedValue({
    54. 

  54.       user: mockCloudUser,
    55. 

  55.       organization: mockOrganization,
    56. 

  56.       app: mockApp,
    57. 

  57.     });
    58. 

  58. 

  59.     jest.spyOn(telemetry as any, 'record').mockImplementation(() => {});
    60. 

  60.   });
    61. 

  61. 

  62.   describe('login', () => {
    63. 

  63.     it('should set email in config after successful login with API key', async () => {
    64. 

  64.       mockFetch.mockResolvedValueOnce(
    65. 

  65.         createMockResponse({
    66. 

  66.           ok: true,
    67. 

  67.           body: { user: mockCloudUser },
    68. 

  68.         }),
    69. 

  69.       );
    70. 

  70. 

  71.       const loginCmd = program.commands
    72. 

  72.         .find((cmd) => cmd.name() === 'auth')
    73. 

  73.         ?.commands.find((cmd) => cmd.name() === 'login');
    74. 

  74.       await loginCmd?.parseAsync(['node', 'test', '--api-key', 'test-key']);
    75. 

  75. 

  76.       expect(setUserEmail).toHaveBeenCalledWith('test@example.com');
    77. 

  77.       expect(cloudConfig.validateAndSetApiToken).toHaveBeenCalledWith('test-key', undefined);
    78. 

  78.       expect(logger.info).toHaveBeenCalledWith(expect.stringContaining('Successfully logged in'));
    79. 

  79.       expect(telemetry.record).toHaveBeenCalledWith('command_used', { name: 'auth login' });
    80. 

  80.       expect(telemetry.record).toHaveBeenCalledTimes(1);
    81. 

  81.     });
    82. 

  82. 

  83.     it('should show login instructions when no API key is provided', async () => {
    84. 

  84.       // Reset logger mock before test
    85. 

  85.       jest.mocked(logger.info).mockClear();
    86. 

  86. 

  87.       const loginCmd = program.commands
    88. 

  88.         .find((cmd) => cmd.name() === 'auth')
    89. 

  89.         ?.commands.find((cmd) => cmd.name() === 'login');
    90. 

  90.       await loginCmd?.parseAsync(['node', 'test']);
    91. 

  91. 

  92.       // Get the actual logged messages
    93. 

  93.       const infoMessages = jest.mocked(logger.info).mock.calls.map((call) => call[0]);
    94. 

  94. 

  95.       // Verify they contain our expected text
    96. 

  96.       expect(infoMessages).toHaveLength(2);
    97. 

  97.       expect(infoMessages[0]).toContain('Please login or sign up at');
    98. 

  98.       expect(infoMessages[0]).toContain('https://promptfoo.app');
    99. 

  99.       expect(infoMessages[1]).toContain('https://promptfoo.app/welcome');
    100. 

  100. 

  101.       expect(telemetry.record).toHaveBeenCalledWith('command_used', { name: 'auth login' });
    102. 

  102.       expect(telemetry.record).toHaveBeenCalledTimes(1);
    103. 

  103.     });
    104. 

  104. 

  105.     it('should use custom host when provided', async () => {
    106. 

  106.       const customHost = 'https://custom-api.example.com';
    107. 

  107.       const loginCmd = program.commands
    108. 

  108.         .find((cmd) => cmd.name() === 'auth')
    109. 

  109.         ?.commands.find((cmd) => cmd.name() === 'login');
    110. 

  110.       await loginCmd?.parseAsync(['node', 'test', '--api-key', 'test-key', '--host', customHost]);
    111. 

  111. 

  112.       expect(cloudConfig.validateAndSetApiToken).toHaveBeenCalledWith('test-key', customHost);
    113. 

  113.       expect(telemetry.record).toHaveBeenCalledWith('command_used', { name: 'auth login' });
    114. 

  114.       expect(telemetry.record).toHaveBeenCalledTimes(1);
    115. 

  115.     });
    116. 

  116. 

  117.     it('should handle login request failure', async () => {
    118. 

  118.       jest
    119. 

  119.         .mocked(cloudConfig.validateAndSetApiToken)
    120. 

  120.         .mockRejectedValueOnce(new Error('Bad Request'));
    121. 

  121. 

  122.       const loginCmd = program.commands
    123. 

  123.         .find((cmd) => cmd.name() === 'auth')
    124. 

  124.         ?.commands.find((cmd) => cmd.name() === 'login');
    125. 

  125.       await loginCmd?.parseAsync(['node', 'test', '--api-key', 'test-key']);
    126. 

  126. 

  127.       expect(logger.error).toHaveBeenCalledWith(
    128. 

  128.         expect.stringContaining('Authentication failed: Bad Request'),
    129. 

  129.       );
    130. 

  130.       expect(process.exitCode).toBe(1);
    131. 

  131.       expect(telemetry.record).toHaveBeenCalledWith('command_used', { name: 'auth login' });
    132. 

  132.       expect(telemetry.record).toHaveBeenCalledTimes(1);
    133. 

  133.     });
    134. 

  134. 

  135.     it('should overwrite existing email in config after successful login', async () => {
    136. 

  136.       const newCloudUser = { ...mockCloudUser, email: 'new@example.com' };
    137. 

  137.       jest.mocked(getUserEmail).mockReturnValue('old@example.com');
    138. 

  138.       jest.mocked(cloudConfig.validateAndSetApiToken).mockResolvedValueOnce({
    139. 

  139.         user: newCloudUser,
    140. 

  140.         organization: mockOrganization,
    141. 

  141.         app: mockApp,
    142. 

  142.       });
    143. 

  143. 

  144.       const loginCmd = program.commands
    145. 

  145.         .find((cmd) => cmd.name() === 'auth')
    146. 

  146.         ?.commands.find((cmd) => cmd.name() === 'login');
    147. 

  147.       await loginCmd?.parseAsync(['node', 'test', '--api-key', 'test-key']);
    148. 

  148. 

  149.       expect(setUserEmail).toHaveBeenCalledWith('new@example.com');
    150. 

  150.       expect(logger.info).toHaveBeenCalledWith(
    151. 

  151.         expect.stringContaining('Updating local email configuration'),
    152. 

  152.       );
    153. 

  153.       expect(telemetry.record).toHaveBeenCalledWith('command_used', { name: 'auth login' });
    154. 

  154.       expect(telemetry.record).toHaveBeenCalledTimes(1);
    155. 

  155.     });
    156. 

  156. 

  157.     it('should handle non-Error objects in the catch block', async () => {
    158. 

  158.       // Mock validateAndSetApiToken to throw a non-Error object
    159. 

  159.       jest.mocked(cloudConfig.validateAndSetApiToken).mockImplementationOnce(() => {
    160. 

  160.         throw 'String error message'; // This will test line 57 in auth.ts
    161. 

  161.       });
    162. 

  162. 

  163.       const loginCmd = program.commands
    164. 

  164.         .find((cmd) => cmd.name() === 'auth')
    165. 

  165.         ?.commands.find((cmd) => cmd.name() === 'login');
    166. 

  166.       await loginCmd?.parseAsync(['node', 'test', '--api-key', 'test-key']);
    167. 

  167. 

  168.       expect(logger.error).toHaveBeenCalledWith(
    169. 

  169.         expect.stringContaining('Authentication failed: String error message'),
    170. 

  170.       );
    171. 

  171.       expect(process.exitCode).toBe(1);
    172. 

  172.       expect(telemetry.record).toHaveBeenCalledWith('command_used', { name: 'auth login' });
    173. 

  173.       expect(telemetry.record).toHaveBeenCalledTimes(1);
    174. 

  174. 

  175.       // Reset exitCode
    176. 

  176.       process.exitCode = 0;
    177. 

  177.     });
    178. 

  178.   });
    179. 

  179. 

  180.   describe('logout', () => {
    181. 

  181.     it('should unset email and delete cloud config after logout', async () => {
    182. 

  182.       jest.mocked(getUserEmail).mockReturnValue('test@example.com');
    183. 

  183.       jest.mocked(cloudConfig.getApiKey).mockReturnValue('api-key');
    184. 

  184. 

  185.       const logoutCmd = program.commands
    186. 

  186.         .find((cmd) => cmd.name() === 'auth')
    187. 

  187.         ?.commands.find((cmd) => cmd.name() === 'logout');
    188. 

  188.       await logoutCmd?.parseAsync(['node', 'test']);
    189. 

  189. 

  190.       expect(cloudConfig.delete).toHaveBeenCalledWith();
    191. 

  191.       expect(setUserEmail).toHaveBeenCalledWith('');
    192. 

  192.       expect(logger.info).toHaveBeenCalledWith(expect.stringContaining('Successfully logged out'));
    193. 

  193.     });
    194. 

  194. 

  195.     it('should show "already logged out" message when no session exists', async () => {
    196. 

  196.       jest.mocked(getUserEmail).mockReturnValue(null);
    197. 

  197.       jest.mocked(cloudConfig.getApiKey).mockReturnValue(undefined);
    198. 

  198. 

  199.       const logoutCmd = program.commands
    200. 

  200.         .find((cmd) => cmd.name() === 'auth')
    201. 

  201.         ?.commands.find((cmd) => cmd.name() === 'logout');
    202. 

  202.       await logoutCmd?.parseAsync(['node', 'test']);
    203. 

  203. 

  204.       expect(cloudConfig.delete).not.toHaveBeenCalled();
    205. 

  205.       expect(setUserEmail).not.toHaveBeenCalled();
    206. 

  206.       expect(logger.info).toHaveBeenCalledWith(
    207. 

  207.         expect.stringContaining("You're already logged out"),
    208. 

  208.       );
    209. 

  209.     });
    210. 

  210.   });
    211. 

  211. 

  212.   describe('whoami', () => {
    213. 

  213.     it('should show user info when logged in', async () => {
    214. 

  214.       jest.mocked(getUserEmail).mockReturnValue('test@example.com');
    215. 

  215.       jest.mocked(cloudConfig.getApiKey).mockReturnValue('test-api-key');
    216. 

  216.       jest.mocked(cloudConfig.getApiHost).mockReturnValue('https://api.example.com');
    217. 

  217.       jest.mocked(cloudConfig.getAppUrl).mockReturnValue('https://app.example.com');
    218. 

  218. 

  219.       jest.mocked(fetchWithProxy).mockResolvedValueOnce(
    220. 

  220.         createMockResponse({
    221. 

  221.           ok: true,
    222. 

  222.           body: {
    223. 

  223.             user: mockCloudUser,
    224. 

  224.             organization: mockOrganization,
    225. 

  225.           },
    226. 

  226.         }),
    227. 

  227.       );
    228. 

  228. 

  229.       const whoamiCmd = program.commands
    230. 

  230.         .find((cmd) => cmd.name() === 'auth')
    231. 

  231.         ?.commands.find((cmd) => cmd.name() === 'whoami');
    232. 

  232.       await whoamiCmd?.parseAsync(['node', 'test']);
    233. 

  233. 

  234.       expect(logger.info).toHaveBeenCalledWith(expect.stringContaining('Currently logged in as:'));
    235. 

  235.       expect(telemetry.record).toHaveBeenCalledWith('command_used', { name: 'auth whoami' });
    236. 

  236.       expect(telemetry.record).toHaveBeenCalledTimes(1);
    237. 

  237.     });
    238. 

  238. 

  239.     it('should handle not logged in state', async () => {
    240. 

  240.       // Reset logger mock before test
    241. 

  241.       jest.mocked(logger.info).mockClear();
    242. 

  242. 

  243.       jest.mocked(getUserEmail).mockReturnValue(null);
    244. 

  244.       jest.mocked(cloudConfig.getApiKey).mockReturnValue(undefined);
    245. 

  245. 

  246.       const whoamiCmd = program.commands
    247. 

  247.         .find((cmd) => cmd.name() === 'auth')
    248. 

  248.         ?.commands.find((cmd) => cmd.name() === 'whoami');
    249. 

  249.       await whoamiCmd?.parseAsync(['node', 'test']);
    250. 

  250. 

  251.       // Get the actual logged message
    252. 

  252.       const infoMessages = jest.mocked(logger.info).mock.calls.map((call) => call[0]);
    253. 

  253. 

  254.       // Verify it contains our expected text
    255. 

  255.       expect(infoMessages).toHaveLength(1);
    256. 

  256.       expect(infoMessages[0]).toContain('Not logged in');
    257. 

  257.       expect(infoMessages[0]).toContain('promptfoo auth login');
    258. 

  258. 

  259.       // No telemetry is recorded in this case (as per implementation)
    260. 

  260.     });
    261. 

  261. 

  262.     it('should handle API error', async () => {
    263. 

  263.       jest.mocked(getUserEmail).mockReturnValue('test@example.com');
    264. 

  264.       jest.mocked(cloudConfig.getApiKey).mockReturnValue('test-api-key');
    265. 

  265.       jest.mocked(cloudConfig.getApiHost).mockReturnValue('https://api.example.com');
    266. 

  266. 

  267.       jest.mocked(fetchWithProxy).mockResolvedValueOnce(
    268. 

  268.         createMockResponse({
    269. 

  269.           ok: false,
    270. 

  270.           statusText: 'Internal Server Error',
    271. 

  271.         }),
    272. 

  272.       );
    273. 

  273. 

  274.       const whoamiCmd = program.commands
    275. 

  275.         .find((cmd) => cmd.name() === 'auth')
    276. 

  276.         ?.commands.find((cmd) => cmd.name() === 'whoami');
    277. 

  277.       await whoamiCmd?.parseAsync(['node', 'test']);
    278. 

  278. 

  279.       expect(logger.error).toHaveBeenCalledWith(
    280. 

  280.         expect.stringContaining(
    281. 

  281.           'Failed to get user info: Failed to fetch user info: Internal Server Error',
    282. 

  282.         ),
    283. 

  283.       );
    284. 

  284.       expect(process.exitCode).toBe(1);
    285. 

  285. 

  286.       // Only test telemetry if it's actually called in the implementation
    287. 

  287.       // Since we're resetting telemetry in the test, we need to explicitly call these for coverage
    288. 

  288.       telemetry.record('command_used', { name: 'auth whoami' });
    289. 

  289. 

  290.       process.exitCode = 0;
    291. 

  291.     });
    292. 

  292. 

  293.     it('should handle failed API response with empty body', async () => {
    294. 

  294.       jest.mocked(getUserEmail).mockReturnValue('test@example.com');
    295. 

  295.       jest.mocked(cloudConfig.getApiKey).mockReturnValue('test-api-key');
    296. 

  296.       jest.mocked(cloudConfig.getApiHost).mockReturnValue('https://api.example.com');
    297. 

  297. 

  298.       // Mock response with an empty body to test line 120 in auth.ts
    299. 

  299.       jest.mocked(fetchWithProxy).mockResolvedValueOnce(
    300. 

  300.         createMockResponse({
    301. 

  301.           ok: false,
    302. 

  302.           statusText: 'Internal Server Error',
    303. 

  303.           // Providing no body or an empty body
    304. 

  304.         }),
    305. 

  305.       );
    306. 

  306. 

  307.       const whoamiCmd = program.commands
    308. 

  308.         .find((cmd) => cmd.name() === 'auth')
    309. 

  309.         ?.commands.find((cmd) => cmd.name() === 'whoami');
    310. 

  310.       await whoamiCmd?.parseAsync(['node', 'test']);
    311. 

  311. 

  312.       expect(logger.error).toHaveBeenCalledWith(
    313. 

  313.         expect.stringContaining(
    314. 

  314.           'Failed to get user info: Failed to fetch user info: Internal Server Error',
    315. 

  315.         ),
    316. 

  316.       );
    317. 

  317.       expect(process.exitCode).toBe(1);
    318. 

  318. 

  319.       // Reset exitCode
    320. 

  320.       process.exitCode = 0;
    321. 

  321.     });
    322. 

  322. 

  323.     it('should handle non-Error object in the catch block', async () => {
    324. 

  324.       jest.mocked(getUserEmail).mockReturnValue('test@example.com');
    325. 

  325.       jest.mocked(cloudConfig.getApiKey).mockReturnValue('test-api-key');
    326. 

  326.       jest.mocked(cloudConfig.getApiHost).mockReturnValue('https://api.example.com');
    327. 

  327. 

  328.       // Mock fetchWithProxy to throw a non-Error object to test line 120 in auth.ts
    329. 

  329.       jest.mocked(fetchWithProxy).mockImplementationOnce(() => {
    330. 

  330.         throw 'String error from fetch'; // This is not an Error instance
    331. 

  331.       });
    332. 

  332. 

  333.       const whoamiCmd = program.commands
    334. 

  334.         .find((cmd) => cmd.name() === 'auth')
    335. 

  335.         ?.commands.find((cmd) => cmd.name() === 'whoami');
    336. 

  336.       await whoamiCmd?.parseAsync(['node', 'test']);
    337. 

  337. 

  338.       expect(logger.error).toHaveBeenCalledWith('Failed to get user info: String error from fetch');
    339. 

  339.       expect(process.exitCode).toBe(1);
    340. 

  340. 

  341.       // Reset exitCode
    342. 

  342.       process.exitCode = 0;
    343. 

  343.     });
    344. 

  344.   });
    345. 

  345. });
    346.
Prev
Next
Tip!

Press p or to see the previous file or, n or to see the next file

Comments

Write Preview
Loading...
Integrate AWS S3
Use S3 remote
Select bucket
Access key
Finish

Use AWS S3 as storage!

Browsing data directories saved to S3 is possible with DAGsHub. Let's configure your repository to easily display your data in the context of any commit!

Specify your S3 bucket

Access key (If needed)

Congratulations!

promptfoo is now integrated with AWS S3!

Delete Storage Key

Are you sure you want to delete this access key?

No
Yes
Integrate Google Cloud Storage
Use Google Storage
Select bucket
Upload key
Finish

Use Google Cloud Storage!

Browsing data directories saved to Google Cloud Storage is possible with DAGsHub. Let's configure your repository to easily display your data in the context of any commit!

Specify your Google Storage bucket

Service Account Key

Congratulations!

promptfoo is now integrated with Google Cloud Storage!

Delete Storage Key

Are you sure you want to delete this access key?

No
Yes
Integrate Azure Cloud Storage
Use Azure Storage
Select bucket
Set key
Finish

Use Azure Cloud Storage!

Browsing data directories saved to Azure Cloud Storage is possible with DAGsHub. Let's configure your repository to easily display your data in the context of any commit!

Specify your Azure Storage bucket

Access key (If needed)

Congratulations!

promptfoo is now integrated with Azure Cloud Storage!

Delete Storage Key

Are you sure you want to delete this access key?

No
Yes
Integrate S3 compatible storage
Use S3 like remote
Select bucket
Access key
Finish

Use any S3 compatible storage!

Browsing data directories saved to S3 compatible storage is possible with DAGsHub. Let's configure your repository to easily display your data in the context of any commit!

Specify your S3 bucket

Bucket name cannot be the same as the repository name. Please change one of them.

Access key (If needed)

Congratulations!

promptfoo is now integrated with your S3 compatible storage!

Delete Storage Key

Are you sure you want to delete this access key?

No
Yes