940e704069
Enhanced the Supabase SQL tests by refining the code indentation. Added a new function that ensures users can only own a single account. Revised the interactive generator to use boolean checks rather than string inputs which simplifies the setup process and prevents potential user errors.
127 lines
3.0 KiB
PL/PgSQL
127 lines
3.0 KiB
PL/PgSQL
begin;
|
|
|
|
create extension "basejump-supabase_test_helpers" version '0.0.6';
|
|
|
|
select
|
|
no_plan();
|
|
|
|
--- we insert a user into auth.users and return the id into user_id to use
|
|
select
|
|
tests.create_supabase_user('test1', 'test1@test.com');
|
|
|
|
select
|
|
tests.create_supabase_user('test2');
|
|
|
|
-- Create an team account
|
|
select
|
|
tests.authenticate_as('test1');
|
|
|
|
select
|
|
public.create_team_account('Test');
|
|
|
|
select
|
|
row_eq($$
|
|
select
|
|
primary_owner_user_id, is_personal_account, slug, name
|
|
from makerkit.get_account_by_slug('test') $$,
|
|
row (tests.get_supabase_uid('test1'), false,
|
|
'test'::text, 'Test'::varchar),
|
|
'Users can create a team account');
|
|
|
|
-- Should be the primary owner of the team account by default
|
|
select
|
|
row_eq($$
|
|
select
|
|
account_role from public.accounts_memberships
|
|
where
|
|
account_id =(
|
|
select
|
|
id
|
|
from public.accounts
|
|
where
|
|
slug = 'test')
|
|
and user_id = tests.get_supabase_uid('test1')
|
|
$$, row ('owner'::varchar),
|
|
'The primary owner should have the owner role for the team account');
|
|
|
|
-- Should be able to see the team account
|
|
select
|
|
isnt_empty($$
|
|
select
|
|
* from public.accounts
|
|
where
|
|
primary_owner_user_id =
|
|
tests.get_supabase_uid('test1') $$,
|
|
'The primary owner should be able to see the team account');
|
|
|
|
-- Others should not be able to see the team account
|
|
select
|
|
tests.authenticate_as('test2');
|
|
|
|
select
|
|
is_empty($$
|
|
select
|
|
* from public.accounts
|
|
where
|
|
primary_owner_user_id =
|
|
tests.get_supabase_uid('test1') $$,
|
|
'Other users should not be able to see the team account');
|
|
|
|
-- should not have any role for the team account
|
|
select
|
|
is (public.has_role_on_account((
|
|
select
|
|
id
|
|
from makerkit.get_account_by_slug('test'))),
|
|
false,
|
|
'Foreign users should not have any role for the team account');
|
|
|
|
-- enforcing a single team account per owner using a trigger when
|
|
-- inserting a team
|
|
set local role postgres;
|
|
|
|
create or replace function kit.single_account_per_owner()
|
|
returns trigger
|
|
as $$
|
|
declare
|
|
total_accounts int;
|
|
begin
|
|
select
|
|
count(id)
|
|
from
|
|
public.accounts
|
|
where
|
|
primary_owner_user_id = auth.uid() into total_accounts;
|
|
|
|
if total_accounts > 0 then
|
|
raise exception 'User can only own 1 account';
|
|
end if;
|
|
|
|
return NEW;
|
|
|
|
end
|
|
$$
|
|
language plpgsql
|
|
set search_path = '';
|
|
|
|
-- trigger to protect account fields
|
|
create trigger single_account_per_owner
|
|
before insert on public.accounts for each row
|
|
execute function kit.single_account_per_owner();
|
|
|
|
-- Create an team account
|
|
select
|
|
tests.authenticate_as('test1');
|
|
|
|
select
|
|
throws_ok(
|
|
$$ select
|
|
public.create_team_account('Test2') $$, 'User can only own 1 account');
|
|
|
|
select
|
|
*
|
|
from
|
|
finish();
|
|
|
|
rollback;
|