Refactor update-emote-set tests

src/__tests__/helpers/updateEmoteSetMocks.ts

@@ -0,0 +1,108 @@
+import { vi } from 'vitest'
+
+// Mock the middleware
+vi.mock('@/lib/api-middlewares/with-authentication', () => ({
+  withAuthentication: (handler) => handler,
+}))
+
+// Mock prisma
+vi.mock('@/lib/db', () => ({
+  default: {
+    subscription: {
+      findMany: vi.fn(),
+    },
+  },
+}))
+
+// Mock next-auth
+vi.mock('next-auth', () => ({
+  getServerSession: vi.fn(),
+}))
+
+// Mock auth options
+vi.mock('@/lib/auth', () => ({
+  authOptions: {},
+}))
+
+// Mock the 7TV library functions
+vi.mock('@/lib/7tv', () => ({
+  get7TVUser: vi.fn(),
+  getOrCreateEmoteSet: vi.fn(),
+}))
+
+// Prepare variable to capture GraphQL requests
+export let mockRequest: ReturnType<typeof vi.fn>
+
+// Mock GraphQL client and gql
+vi.mock('graphql-request', () => {
+  mockRequest = vi.fn()
+  return {
+    GraphQLClient: vi.fn().mockImplementation(() => ({
+      request: mockRequest,
+    })),
+    gql: (query: string) => query,
+  }
+})
+
+// Mock authentication
+vi.mock('@/lib/api/getServerSession', () => ({
+  getServerSession: vi.fn(),
+}))
+
+// Mock subscription utils
+vi.mock('@/utils/subscription', () => ({
+  getSubscription: vi.fn(),
+  canAccessFeature: vi.fn(),
+  SubscriptionTier: {
+    FREE: 'FREE',
+    PRO: 'PRO',
+  },
+}))
+
+// Mock ChatBot emotes
+vi.mock('@/components/Dashboard/ChatBot', () => ({
+  emotesRequired: [
+    { id: 'emote1', label: 'Emote1' },
+    { id: 'emote2', label: 'Emote2' },
+  ],
+}))
+
+// Mock getTwitchTokens to avoid environment variable issues
+vi.mock('@/lib/getTwitchTokens', () => ({
+  default: vi.fn().mockResolvedValue({
+    access_token: 'mock-access-token',
+    expires_in: 14400,
+    token_type: 'bearer',
+  }),
+  CLIENT_ID: 'mock-client-id',
+  CLIENT_SECRET: 'mock-client-secret',
+}))
+
+// Import mocked modules so tests can use them
+import { get7TVUser, getOrCreateEmoteSet } from '@/lib/7tv'
+import { getServerSession } from '@/lib/api/getServerSession'
+import { canAccessFeature, getSubscription } from '@/utils/subscription'
+import { GraphQLClient } from 'graphql-request'
+
+export {
+  get7TVUser,
+  getOrCreateEmoteSet,
+  getServerSession,
+  canAccessFeature,
+  getSubscription,
+  GraphQLClient,
+}
+
+export function setupEnv() {
+  vi.stubEnv('SEVENTV_AUTH', 'test-auth-token')
+  vi.stubEnv('TWITCH_CLIENT_ID', 'mock-client-id')
+  vi.stubEnv('TWITCH_CLIENT_SECRET', 'mock-client-secret')
+  mockRequest = vi.fn()
+  vi.mocked(GraphQLClient).mockImplementation(
+    () => ({ request: mockRequest }) as unknown as GraphQLClient,
+  )
+}
+
+export function cleanupEnv() {
+  vi.unstubAllEnvs()
+}

src/__tests__/pages/api/update-emote-set/access.test.ts

@@ -0,0 +1,102 @@
+import handler from '@/pages/api/update-emote-set'
+import { createMocks } from 'node-mocks-http'
+import { afterEach, beforeEach, describe, expect, it, vi } from 'vitest'
+import {
+  setupEnv,
+  cleanupEnv,
+  getServerSession,
+  getSubscription,
+  canAccessFeature,
+} from '../../helpers/updateEmoteSetMocks'
+
+// Load shared mocks
+import '../../helpers/updateEmoteSetMocks'
+
+describe('update-emote-set API - access control', () => {
+  beforeEach(() => {
+    vi.resetAllMocks()
+    setupEnv()
+  })
+
+  afterEach(() => {
+    cleanupEnv()
+  })
+
+  it('returns 403 when user is impersonating', async () => {
+    vi.mocked(getServerSession).mockResolvedValueOnce({
+      user: {
+        id: 'user-123',
+        isImpersonating: true,
+        name: 'Test User',
+        image: 'image-url',
+        twitchId: 'twitch-123',
+        role: 'user',
+        locale: 'en-US',
+        scope: 'test-scope',
+      },
+      expires: new Date(Date.now() + 24 * 60 * 60 * 1000).toISOString(),
+    })
+
+    const { req, res } = createMocks({ method: 'GET' })
+
+    await handler(req, res)
+
+    expect(res.statusCode).toBe(403)
+    expect(res._getJSONData()).toEqual({ message: 'Forbidden' })
+  })
+
+  it('returns 403 when user is not authenticated', async () => {
+    vi.mocked(getServerSession).mockResolvedValueOnce(null)
+
+    const { req, res } = createMocks({ method: 'GET' })
+
+    await handler(req, res)
+
+    expect(res.statusCode).toBe(403)
+    expect(res._getJSONData()).toEqual({ message: 'Forbidden' })
+  })
+
+  it('returns 403 when user does not have access to auto7TV feature', async () => {
+    vi.mocked(getServerSession).mockResolvedValueOnce({
+      user: {
+        id: 'user-123',
+        name: 'Test User',
+        image: 'image-url',
+        isImpersonating: false,
+        twitchId: 'twitch-123',
+        role: 'user',
+        locale: 'en-US',
+        scope: 'test-scope',
+      },
+      expires: new Date(Date.now() + 24 * 60 * 60 * 1000).toISOString(),
+    })
+
+    vi.mocked(getSubscription).mockResolvedValueOnce({
+      id: 'subscription-123',
+      tier: 'FREE',
+      stripeCustomerId: null,
+      stripePriceId: null,
+      stripeSubscriptionId: null,
+      status: 'ACTIVE',
+      currentPeriodEnd: null,
+      cancelAtPeriodEnd: false,
+      isGift: false,
+      transactionType: 'RECURRING',
+      createdAt: new Date(),
+      giftDetails: null,
+      metadata: {},
+    })
+
+    vi.mocked(canAccessFeature).mockReturnValueOnce({
+      hasAccess: false,
+      requiredTier: 'PRO',
+    })
+
+    const { req, res } = createMocks({ method: 'GET' })
+
+    await handler(req, res)
+
+    expect(res.statusCode).toBe(403)
+    expect(res._getJSONData()).toEqual({ message: 'Forbidden' })
+  })
+})