1 | require('./utils/trxify-tests')
|
2 |
|
3 | const ACLs = require('./acls')
|
4 | const BaseUser = require('./models/user')
|
5 | const authorizePlugin = require('../src')
|
6 |
|
7 | describe.each(ACLs)('Insert queries (%s)', (library, acl) => {
|
8 | class User extends authorizePlugin(acl, library)(BaseUser) {}
|
9 |
|
10 | test('restrict insert query based on their create access', async () => {
|
11 |
|
12 | await User.query().authorize().insert({ id: 3 })
|
13 |
|
14 |
|
15 | await expect(
|
16 | User.query().authorize({ id: 4, role: 'user' }).insert({ id: 5 })
|
17 | ).rejects.toThrow()
|
18 | })
|
19 | })
|