From 8cff34edcdccb86b2a07f7558fbbde1b7d740d72 Mon Sep 17 00:00:00 2001
From: Zai Shi <zaishi00@outlook.com>
Date: Sun, 11 Aug 2024 20:57:56 -0700
Subject: [PATCH] added project deletion tests

---
 .../src/route-handlers/smart-request.tsx      |   2 +-
 .../backend/endpoints/api/v1/projects.test.ts | 129 +++++++++++++++++-
 2 files changed, 129 insertions(+), 2 deletions(-)

diff --git a/apps/backend/src/route-handlers/smart-request.tsx b/apps/backend/src/route-handlers/smart-request.tsx
index f59b29541..7a834ddde 100644
--- a/apps/backend/src/route-handlers/smart-request.tsx
+++ b/apps/backend/src/route-handlers/smart-request.tsx
@@ -231,7 +231,7 @@ async function parseAuth(req: NextRequest): Promise<SmartRequestAuth | null> {
 
   const project = await getProject(projectId);
   if (!project) {
-    throw new StackAssertionError("Project not found; this should never happen because having a project ID should guarantee a project");
+    throw new StackAssertionError("Project not found; this should only happen if the project was deleted and the access token is still valid", { projectId });
   }
 
   let user = null;
diff --git a/apps/e2e/tests/backend/endpoints/api/v1/projects.test.ts b/apps/e2e/tests/backend/endpoints/api/v1/projects.test.ts
index 44f3182d2..4abc434f0 100644
--- a/apps/e2e/tests/backend/endpoints/api/v1/projects.test.ts
+++ b/apps/e2e/tests/backend/endpoints/api/v1/projects.test.ts
@@ -2,7 +2,7 @@ import { it } from "../../../../helpers";
 import { Auth, InternalProjectKeys, Project, backendContext, niceBackendFetch } from "../../../backend-helpers";
 
 
-it("should not have have access to the project", async ({ expect }) => {
+it("should not have have access to the project without project keys", async ({ expect }) => {
   backendContext.set({
     projectKeys: 'no-project'
   });
@@ -801,3 +801,130 @@ it("updates the project oauth configuration", async ({ expect }) => {
     }
   `);
 });
+
+it("deletes a project with admin access", async ({ expect }) => {
+  await Auth.Otp.signIn();
+  const { adminAccessToken } = await Project.createAndGetAdminToken();
+
+  // Delete the project
+  const deleteResponse = await niceBackendFetch(`/api/v1/projects/current`, {
+    accessType: "admin",
+    method: "DELETE",
+    headers: {
+      'x-stack-admin-access-token': adminAccessToken,
+    }
+  });
+
+  expect(deleteResponse).toMatchInlineSnapshot(`
+    NiceResponse {
+      "status": 200,
+      "body": { "success": true },
+      "headers": Headers { <some fields may have been hidden> },
+    }
+  `);
+});
+
+it("deletes a project with server access", async ({ expect }) => {
+  await Auth.Otp.signIn();
+  const { adminAccessToken } = await Project.createAndGetAdminToken();
+
+  // Delete the project
+  const deleteResponse = await niceBackendFetch(`/api/v1/projects/current`, {
+    accessType: "server",
+    method: "DELETE",
+    headers: {
+      'x-stack-admin-access-token': adminAccessToken,
+    }
+  });
+
+  expect(deleteResponse).toMatchInlineSnapshot(`
+    NiceResponse {
+      "status": 401,
+      "body": {
+        "code": "INSUFFICIENT_ACCESS_TYPE",
+        "details": {
+          "actual_access_type": "server",
+          "allowed_access_types": ["admin"],
+        },
+        "error": "The x-stack-access-type header must be 'admin', but was 'server'.",
+      },
+      "headers": Headers {
+        "x-stack-known-error": "INSUFFICIENT_ACCESS_TYPE",
+        <some fields may have been hidden>,
+      },
+    }
+  `);
+});
+
+it("deletes a project with users, teams, and permissions", async ({ expect }) => {
+  await Auth.Otp.signIn();
+  const { adminAccessToken } = await Project.createAndGetAdminToken();
+
+  // Create a user
+  const userResponse = await niceBackendFetch(`/api/v1/users`, {
+    accessType: "server",
+    method: "POST",
+    headers: {
+      'x-stack-admin-access-token': adminAccessToken,
+    },
+    body: {
+      primary_email: "test@test.com",
+      password: "testing",
+      primary_email_auth_enabled: true,
+    }
+  });
+  expect(userResponse.status).toBe(201);
+
+  // Create a team
+  const teamResponse = await niceBackendFetch(`/api/v1/teams`, {
+    accessType: "server",
+    method: "POST",
+    headers: {
+      'x-stack-admin-access-token': adminAccessToken,
+    },
+    body: {
+      display_name: "Test Team",
+    }
+  });
+  expect(teamResponse.status).toBe(201);
+
+  // create a team permission
+  const teamPermissionResponse = await niceBackendFetch(`/api/v1/team-permission-definitions`, {
+    accessType: "admin",
+    method: "POST",
+    body: {
+      id: 'p1'
+    },
+    headers: {
+      'x-stack-admin-access-token': adminAccessToken
+    },
+  });
+  expect(teamPermissionResponse.status).toBe(201);
+
+  // Delete the project
+  const deleteResponse = await niceBackendFetch(`/api/v1/projects/current`, {
+    accessType: "server",
+    method: "DELETE",
+    headers: {
+      'x-stack-admin-access-token': adminAccessToken,
+    }
+  });
+
+  expect(deleteResponse).toMatchInlineSnapshot(`
+    NiceResponse {
+      "status": 401,
+      "body": {
+        "code": "INSUFFICIENT_ACCESS_TYPE",
+        "details": {
+          "actual_access_type": "server",
+          "allowed_access_types": ["admin"],
+        },
+        "error": "The x-stack-access-type header must be 'admin', but was 'server'.",
+      },
+      "headers": Headers {
+        "x-stack-known-error": "INSUFFICIENT_ACCESS_TYPE",
+        <some fields may have been hidden>,
+      },
+    }
+  `);
+});
\ No newline at end of file