etherpad-lite/tests
Richard Hansen f7953ece85 socketio: Delete redundant authentication check
There's no need to perform an authentication check in the socket.io
middleware because `PadMessageHandler.handleMessage` calls
`SecurityMananger.checkAccess` and that now performs authentication
and authorization checks.

This change also improves the user experience: Before, access denials
caused socket.io error events in the client, which `pad.js` mostly
ignores (the user doesn't see anything). Now a deny message is sent
back to the client, which causes `pad.js` to display an obvious
permission denied message.

This also fixes a minor bug: `settings.loadTest` is supposed to bypass
authentication and authorization checks, but they weren't bypassed
because `SecurityManager.checkAccess` did not check
`settings.loadTest`.
2020-10-05 18:12:04 +01:00
..
backend socketio: Delete redundant authentication check 2020-10-05 18:12:04 +01:00
container tests: remove loadSettings.js for backend tests. 2020-04-14 03:36:13 +02:00
frontend tests: disable a version of safari for now as its too buggy on sauce labs 2020-09-27 23:13:29 +01:00
ratelimit security: Support proxy with rate limiting and include CI test coverage for nginx rev proxy (#4373) 2020-10-01 10:39:01 +01:00
README.md tests: backend tests are now run with "npm test" instead of a custom bash script 2018-07-28 23:54:51 +02:00

About this folder: Tests

Before running the tests, start an Etherpad instance on your machine.

Frontend

To run the frontend tests, point your browser to <yourdomainhere>/tests/frontend

Backend

To run the backend tests, run cd src and then npm test