feat: write REST API endpoint to create step

2024-09-06 17:30:10 +00:00
parent 1ce31eefc6
commit 813646e392
8 changed files with 270 additions and 0 deletions
--- a/packages/backend/src/controllers/api/v1/flows/create-step.js
+++ b/packages/backend/src/controllers/api/v1/flows/create-step.js
@@ -0,0 +1,14 @@
+import { renderObject } from '../../../../helpers/renderer.js';
+
+export default async (request, response) => {
+  const flow = await request.currentUser.authorizedFlows
+    .clone()
+    .findById(request.params.flowId)
+    .throwIfNotFound();
+
+  const createdActionStep = await flow.createActionStep(
+    request.body.previousStepId
+  );
+
+  renderObject(response, createdActionStep, { status: 201 });
+};
--- a/packages/backend/src/controllers/api/v1/flows/create-step.test.js
+++ b/packages/backend/src/controllers/api/v1/flows/create-step.test.js
@@ -0,0 +1,113 @@
+import Crypto from 'node:crypto';
+import { describe, it, expect, beforeEach } from 'vitest';
+import request from 'supertest';
+
+import app from '../../../../app.js';
+import createAuthTokenByUserId from '../../../../helpers/create-auth-token-by-user-id.js';
+import { createUser } from '../../../../../test/factories/user.js';
+import { createAdminRole } from '../../../../../test/factories/role.js';
+import { createFlow } from '../../../../../test/factories/flow.js';
+import { createStep } from '../../../../../test/factories/step.js';
+import createStepMock from '../../../../../test/mocks/rest/api/v1/flows/create-step.js';
+import { createPermission } from '../../../../../test/factories/permission.js';
+
+describe('POST /api/v1/flows/:flowId/steps', () => {
+  let currentUser, flow, triggerStep, token;
+
+  beforeEach(async () => {
+    const adminRole = await createAdminRole();
+    currentUser = await createUser({ roleId: adminRole.id });
+
+    flow = await createFlow({ userId: currentUser.id });
+
+    triggerStep = await createStep({ flowId: flow.id, type: 'trigger' });
+    await createStep({ flowId: flow.id, type: 'action' });
+
+    token = await createAuthTokenByUserId(currentUser.id);
+  });
+
+  it('should return created step', async () => {
+    const response = await request(app)
+      .post(`/api/v1/flows/${flow.id}/steps`)
+      .set('Authorization', token)
+      .send({
+        previousStepId: triggerStep.id,
+      })
+      .expect(201);
+
+    const expectedPayload = await createStepMock({
+      id: response.body.data.id,
+      position: 2,
+    });
+
+    expect(response.body).toMatchObject(expectedPayload);
+  });
+
+  it('should return created step for another user', async () => {
+    const anotherUser = await createUser();
+    const anotherUsertoken = await createAuthTokenByUserId(anotherUser.id);
+
+    await createPermission({
+      roleId: anotherUser.roleId,
+      subject: 'Flow',
+      action: 'read',
+      conditions: [],
+    });
+
+    await createPermission({
+      roleId: anotherUser.roleId,
+      subject: 'Flow',
+      action: 'update',
+      conditions: [],
+    });
+
+    const response = await request(app)
+      .post(`/api/v1/flows/${flow.id}/steps`)
+      .set('Authorization', anotherUsertoken)
+      .send({
+        previousStepId: triggerStep.id,
+      })
+      .expect(201);
+
+    const expectedPayload = await createStepMock({
+      id: response.body.data.id,
+      position: 2,
+    });
+
+    expect(response.body).toMatchObject(expectedPayload);
+  });
+
+  it('should return bad request response for invalid flow UUID', async () => {
+    await request(app)
+      .post('/api/v1/flows/invalidFlowUUID/steps')
+      .set('Authorization', token)
+      .send({
+        previousStepId: triggerStep.id,
+      })
+      .expect(400);
+  });
+
+  it('should return not found response for invalid flow UUID', async () => {
+    const notExistingFlowUUID = Crypto.randomUUID();
+
+    await request(app)
+      .post(`/api/v1/flows/${notExistingFlowUUID}/steps`)
+      .set('Authorization', token)
+      .send({
+        previousStepId: triggerStep.id,
+      })
+      .expect(404);
+  });
+
+  it('should return not found response for invalid flow UUID', async () => {
+    const notExistingStepUUID = Crypto.randomUUID();
+
+    await request(app)
+      .post(`/api/v1/flows/${flow.id}/steps`)
+      .set('Authorization', token)
+      .send({
+        previousStepId: notExistingStepUUID,
+      })
+      .expect(404);
+  });
+});
--- a/packages/backend/src/helpers/authorization.js
+++ b/packages/backend/src/helpers/authorization.js
@@ -93,6 +93,10 @@ const authorizationList = {
    action: 'update',
    subject: 'Flow',
  },
+  'POST /api/v1/flows/:flowId/steps': {
+    action: 'update',
+    subject: 'Flow',
+  },
 };

 export const authorizeUser = async (request, response, next) => {
--- a/packages/backend/src/models/flow.js
+++ b/packages/backend/src/models/flow.js
@@ -135,6 +135,31 @@ class Flow extends Base {
    return this.$query().withGraphFetched('steps');
  }

+  async createActionStep(previousStepId) {
+    const previousStep = await this.$relatedQuery('steps')
+      .findById(previousStepId)
+      .throwIfNotFound();
+
+    const createdStep = await this.$relatedQuery('steps').insertAndFetch({
+      type: 'action',
+      position: previousStep.position + 1,
+    });
+
+    const nextSteps = await this.$relatedQuery('steps')
+      .where('position', '>=', createdStep.position)
+      .whereNot('id', createdStep.id);
+
+    const nextStepQueries = nextSteps.map(async (nextStep, index) => {
+      return await nextStep.$query().patchAndFetch({
+        position: createdStep.position + index + 1,
+      });
+    });
+
+    await Promise.all(nextStepQueries);
+
+    return createdStep;
+  }
+
  async $beforeUpdate(opt, queryContext) {
    await super.$beforeUpdate(opt, queryContext);

--- a/packages/backend/src/models/step.js
+++ b/packages/backend/src/models/step.js
@@ -82,6 +82,8 @@ class Step extends Base {
  });

  get webhookUrl() {
+    if (!this.webhookPath) return null;
+
    return new URL(this.webhookPath, appConfig.webhookUrl).toString();
  }

--- a/packages/backend/src/routes/api/v1/flows.js
+++ b/packages/backend/src/routes/api/v1/flows.js
@@ -5,6 +5,7 @@ import getFlowsAction from '../../../controllers/api/v1/flows/get-flows.js';
 import getFlowAction from '../../../controllers/api/v1/flows/get-flow.js';
 import updateFlowAction from '../../../controllers/api/v1/flows/update-flow.js';
 import createFlowAction from '../../../controllers/api/v1/flows/create-flow.js';
+import createStepAction from '../../../controllers/api/v1/flows/create-step.js';

 const router = Router();

@@ -12,5 +13,11 @@ router.get('/', authenticateUser, authorizeUser, getFlowsAction);
 router.get('/:flowId', authenticateUser, authorizeUser, getFlowAction);
 router.post('/', authenticateUser, authorizeUser, createFlowAction);
 router.patch('/:flowId', authenticateUser, authorizeUser, updateFlowAction);
+router.post(
+  '/:flowId/steps',
+  authenticateUser,
+  authorizeUser,
+  createStepAction
+);

 export default router;
--- a/packages/backend/test/factories/role.js
+++ b/packages/backend/test/factories/role.js
@@ -1,5 +1,6 @@
 import { faker } from '@faker-js/faker';
 import Role from '../../src/models/role';
+import { createPermission } from './permission';

 export const createRole = async (params = {}) => {
  const name = faker.lorem.word();
@@ -16,3 +17,81 @@ export const createRole = async (params = {}) => {

  return role;
 };
+
+export const createAdminRole = async (params = {}) => {
+  const adminRole = await createRole({ ...params, name: 'Admin' });
+
+  await createPermission({
+    roleId: adminRole.id,
+    action: 'read',
+    subject: 'Flow',
+  });
+
+  await createPermission({
+    roleId: adminRole.id,
+    action: 'create',
+    subject: 'Flow',
+  });
+
+  await createPermission({
+    roleId: adminRole.id,
+    action: 'update',
+    subject: 'Flow',
+  });
+
+  await createPermission({
+    roleId: adminRole.id,
+    action: 'delete',
+    subject: 'Flow',
+  });
+
+  await createPermission({
+    roleId: adminRole.id,
+    action: 'publish',
+    subject: 'Flow',
+  });
+
+  await createPermission({
+    roleId: adminRole.id,
+    action: 'read',
+    subject: 'Connection',
+  });
+
+  await createPermission({
+    roleId: adminRole.id,
+    action: 'create',
+    subject: 'Connection',
+  });
+
+  await createPermission({
+    roleId: adminRole.id,
+    action: 'update',
+    subject: 'Connection',
+  });
+
+  await createPermission({
+    roleId: adminRole.id,
+    action: 'delete',
+    subject: 'Connection',
+  });
+
+  await createPermission({
+    roleId: adminRole.id,
+    action: 'read',
+    subject: 'Execution',
+  });
+
+  await createPermission({
+    roleId: adminRole.id,
+    action: 'create',
+    subject: 'Execution',
+  });
+
+  await createPermission({
+    roleId: adminRole.id,
+    action: 'update',
+    subject: 'Execution',
+  });
+
+  return adminRole;
+};
--- a/packages/backend/test/mocks/rest/api/v1/flows/create-step.js
+++ b/packages/backend/test/mocks/rest/api/v1/flows/create-step.js
@@ -0,0 +1,26 @@
+const createStepMock = async (step) => {
+  const data = {
+    id: step.id,
+    type: step.type || 'action',
+    key: step.key || null,
+    appKey: step.appKey || null,
+    iconUrl: step.iconUrl || null,
+    webhookUrl: step.webhookUrl || null,
+    status: step.status || 'incomplete',
+    position: step.position,
+    parameters: step.parameters || {},
+  };
+
+  return {
+    data,
+    meta: {
+      type: 'Step',
+      count: 1,
+      isArray: false,
+      currentPage: null,
+      totalPages: null,
+    },
+  };
+};
+
+export default createStepMock;