feat: implement local authentication flow and update related tests

2026-02-25 02:24:51 +05:30
parent 1d50e48609
commit e3404d8590
12 changed files with 245 additions and 296 deletions
--- a/frontend/cypress/e2e/organizations.cy.ts
+++ b/frontend/cypress/e2e/organizations.cy.ts
@@ -1,36 +1,88 @@
 describe("Organizations (PR #61)", () => {
-  const email = Cypress.env("CLERK_TEST_EMAIL") || "jane+clerk_test@example.com";
+  const apiBase = "**/api/v1";

-  it("negative: signed-out user is redirected to sign-in when opening /organization", () => {
+  function stubOrganizationApis() {
+    cy.intercept("GET", `${apiBase}/users/me*`, {
+      statusCode: 200,
+      body: {
+        id: "u1",
+        clerk_user_id: "local-auth-user",
+        email: "local@example.com",
+        name: "Local User",
+        preferred_name: "Local User",
+        timezone: "UTC",
+      },
+    }).as("usersMe");
+
+    cy.intercept("GET", `${apiBase}/organizations/me/list*`, {
+      statusCode: 200,
+      body: [
+        {
+          id: "org1",
+          name: "Testing Org",
+          is_active: true,
+          role: "member",
+        },
+      ],
+    }).as("orgsList");
+
+    cy.intercept("GET", `${apiBase}/organizations/me/member*`, {
+      statusCode: 200,
+      body: {
+        id: "membership-1",
+        user_id: "u1",
+        organization_id: "org1",
+        role: "member",
+      },
+    }).as("orgMembership");
+
+    cy.intercept("GET", `${apiBase}/organizations/me`, {
+      statusCode: 200,
+      body: { id: "org1", name: "Testing Org" },
+    }).as("orgMe");
+
+    cy.intercept("GET", `${apiBase}/organizations/me/members*`, {
+      statusCode: 200,
+      body: {
+        items: [
+          {
+            id: "membership-1",
+            user_id: "u1",
+            role: "member",
+            user: {
+              id: "u1",
+              email: "local@example.com",
+              name: "Local User",
+              preferred_name: "Local User",
+            },
+          },
+        ],
+      },
+    }).as("orgMembers");
+
+    cy.intercept("GET", `${apiBase}/boards*`, {
+      statusCode: 200,
+      body: { items: [] },
+    }).as("boardsList");
+  }
+
+  it("negative: signed-out user sees auth prompt when opening /organization", () => {
    cy.visit("/organization");
-    cy.location("pathname", { timeout: 30_000 }).should("match", /\/sign-in/);
+    cy.contains(/sign in to manage your organization|local authentication/i, {
+      timeout: 30_000,
+    }).should("be.visible");
  });

  it("positive: signed-in user can view /organization and sees correct invite permissions", () => {
-    // Story (positive): a signed-in user can reach the organization page.
-    // Story (negative within flow): non-admin users cannot invite members.
-    cy.visit("/sign-in");
-    cy.clerkLoaded();
-    cy.clerkSignIn({ strategy: "email_code", identifier: email });
-
+    stubOrganizationApis();
+    cy.loginWithLocalAuth();
    cy.visit("/organization");
    cy.waitForAppLoaded();
    cy.contains(/members\s*&\s*invites/i).should("be.visible");
-
-    // Deterministic assertion across roles:
-    // - if user is admin: invite button enabled
-    // - else: invite button disabled with the correct tooltip
    cy.contains("button", /invite member/i)
      .should("be.visible")
-      .then(($btn) => {
-        const isDisabled = $btn.is(":disabled");
-        if (isDisabled) {
-          cy.wrap($btn)
-            .should("have.attr", "title")
-            .and("match", /only organization admins can invite/i);
-        } else {
-          cy.wrap($btn).should("not.be.disabled");
-        }
-      });
+      .should("be.disabled")
+      .and("have.attr", "title")
+      .and("match", /only organization admins can invite/i);
  });
 });