✅ Add items and admin tests, and refactor existing ones (#2146)

alejsdev · github-actions[bot] · web-flow · commit 43fac49a1439 · 2026-01-23T17:27:17.000+01:00
Co-authored-by: github-actions[bot] &lt;github-actions[bot]@users.noreply.github.com&gt;
diff --git a/frontend/tests/admin.spec.ts b/frontend/tests/admin.spec.ts
@@ -0,0 +1,205 @@
+import { expect, test } from "@playwright/test"
+import { firstSuperuser, firstSuperuserPassword } from "./config.ts"
+import { createUser } from "./utils/privateApi"
+import { randomEmail, randomPassword } from "./utils/random"
+import { logInUser } from "./utils/user"
+
+test("Admin page is accessible and shows correct title", async ({ page }) => {
+  await page.goto("/admin")
+  await expect(page.getByRole("heading", { name: "Users" })).toBeVisible()
+  await expect(
+    page.getByText("Manage user accounts and permissions"),
+  ).toBeVisible()
+})
+
+test("Add User button is visible", async ({ page }) => {
+  await page.goto("/admin")
+  await expect(page.getByRole("button", { name: "Add User" })).toBeVisible()
+})
+
+test.describe("Admin user management", () => {
+  test("Create a new user successfully", async ({ page }) => {
+    await page.goto("/admin")
+
+    const email = randomEmail()
+    const password = randomPassword()
+    const fullName = "Test User Admin"
+
+    await page.getByRole("button", { name: "Add User" }).click()
+
+    await page.getByPlaceholder("Email").fill(email)
+    await page.getByPlaceholder("Full name").fill(fullName)
+    await page.getByPlaceholder("Password").first().fill(password)
+    await page.getByPlaceholder("Password").last().fill(password)
+
+    await page.getByRole("button", { name: "Save" }).click()
+
+    await expect(page.getByText("User created successfully")).toBeVisible()
+
+    await expect(page.getByRole("dialog")).not.toBeVisible()
+
+    const userRow = page.getByRole("row").filter({ hasText: email })
+    await expect(userRow).toBeVisible()
+  })
+
+  test("Create a superuser", async ({ page }) => {
+    await page.goto("/admin")
+
+    const email = randomEmail()
+    const password = randomPassword()
+
+    await page.getByRole("button", { name: "Add User" }).click()
+
+    await page.getByPlaceholder("Email").fill(email)
+    await page.getByPlaceholder("Password").first().fill(password)
+    await page.getByPlaceholder("Password").last().fill(password)
+    await page.getByLabel("Is superuser?").check()
+    await page.getByLabel("Is active?").check()
+
+    await page.getByRole("button", { name: "Save" }).click()
+
+    await expect(page.getByText("User created successfully")).toBeVisible()
+
+    await expect(page.getByRole("dialog")).not.toBeVisible()
+
+    const userRow = page.getByRole("row").filter({ hasText: email })
+    await expect(userRow.getByText("Superuser")).toBeVisible()
+  })
+
+  test("Edit a user successfully", async ({ page }) => {
+    await page.goto("/admin")
+
+    const email = randomEmail()
+    const password = randomPassword()
+    const originalName = "Original Name"
+    const updatedName = "Updated Name"
+
+    await page.getByRole("button", { name: "Add User" }).click()
+    await page.getByPlaceholder("Email").fill(email)
+    await page.getByPlaceholder("Full name").fill(originalName)
+    await page.getByPlaceholder("Password").first().fill(password)
+    await page.getByPlaceholder("Password").last().fill(password)
+    await page.getByRole("button", { name: "Save" }).click()
+
+    await expect(page.getByText("User created successfully")).toBeVisible()
+    await expect(page.getByRole("dialog")).not.toBeVisible()
+
+    const userRow = page.getByRole("row").filter({ hasText: email })
+    await userRow.getByRole("button").click()
+
+    await page.getByRole("menuitem", { name: "Edit User" }).click()
+
+    await page.getByPlaceholder("Full name").fill(updatedName)
+    await page.getByRole("button", { name: "Save" }).click()
+
+    await expect(page.getByText("User updated successfully")).toBeVisible()
+    await expect(page.getByText(updatedName)).toBeVisible()
+  })
+
+  test("Delete a user successfully", async ({ page }) => {
+    await page.goto("/admin")
+
+    const email = randomEmail()
+    const password = randomPassword()
+
+    await page.getByRole("button", { name: "Add User" }).click()
+    await page.getByPlaceholder("Email").fill(email)
+    await page.getByPlaceholder("Password").first().fill(password)
+    await page.getByPlaceholder("Password").last().fill(password)
+    await page.getByRole("button", { name: "Save" }).click()
+
+    await expect(page.getByText("User created successfully")).toBeVisible()
+
+    await expect(page.getByRole("dialog")).not.toBeVisible()
+
+    const userRow = page.getByRole("row").filter({ hasText: email })
+    await userRow.getByRole("button").click()
+
+    await page.getByRole("menuitem", { name: "Delete User" }).click()
+
+    await page.getByRole("button", { name: "Delete" }).click()
+
+    await expect(
+      page.getByText("The user was deleted successfully"),
+    ).toBeVisible()
+
+    await expect(
+      page.getByRole("row").filter({ hasText: email }),
+    ).not.toBeVisible()
+  })
+
+  test("Cancel user creation", async ({ page }) => {
+    await page.goto("/admin")
+
+    await page.getByRole("button", { name: "Add User" }).click()
+    await page.getByPlaceholder("Email").fill("test@example.com")
+
+    await page.getByRole("button", { name: "Cancel" }).click()
+
+    await expect(page.getByRole("dialog")).not.toBeVisible()
+  })
+
+  test("Email is required and must be valid", async ({ page }) => {
+    await page.goto("/admin")
+
+    await page.getByRole("button", { name: "Add User" }).click()
+
+    await page.getByPlaceholder("Email").fill("invalid-email")
+    await page.getByPlaceholder("Email").blur()
+
+    await expect(page.getByText("Invalid email address")).toBeVisible()
+  })
+
+  test("Password must be at least 8 characters", async ({ page }) => {
+    await page.goto("/admin")
+
+    await page.getByRole("button", { name: "Add User" }).click()
+
+    await page.getByPlaceholder("Email").fill(randomEmail())
+    await page.getByPlaceholder("Password").first().fill("short")
+    await page.getByPlaceholder("Password").last().fill("short")
+    await page.getByRole("button", { name: "Save" }).click()
+
+    await expect(
+      page.getByText("Password must be at least 8 characters"),
+    ).toBeVisible()
+  })
+
+  test("Passwords must match", async ({ page }) => {
+    await page.goto("/admin")
+
+    await page.getByRole("button", { name: "Add User" }).click()
+
+    await page.getByPlaceholder("Email").fill(randomEmail())
+    await page.getByPlaceholder("Password").first().fill(randomPassword())
+    await page.getByPlaceholder("Password").last().fill("different12345")
+    await page.getByPlaceholder("Password").last().blur()
+
+    await expect(page.getByText("The passwords don't match")).toBeVisible()
+  })
+})
+
+test.describe("Admin page access control", () => {
+  test.use({ storageState: { cookies: [], origins: [] } })
+
+  test("Non-superuser cannot access admin page", async ({ page }) => {
+    const email = randomEmail()
+    const password = randomPassword()
+
+    await createUser({ email, password })
+    await logInUser(page, email, password)
+
+    await page.goto("/admin")
+
+    await expect(page.getByRole("heading", { name: "Users" })).not.toBeVisible()
+    await expect(page).not.toHaveURL(/\/admin/)
+  })
+
+  test("Superuser can access admin page", async ({ page }) => {
+    await logInUser(page, firstSuperuser, firstSuperuserPassword)
+
+    await page.goto("/admin")
+
+    await expect(page.getByRole("heading", { name: "Users" })).toBeVisible()
+  })
+})
diff --git a/frontend/tests/items.spec.ts b/frontend/tests/items.spec.ts
@@ -0,0 +1,132 @@
+import { expect, test } from "@playwright/test"
+import { createUser } from "./utils/privateApi"
+import {
+  randomEmail,
+  randomItemDescription,
+  randomItemTitle,
+  randomPassword,
+} from "./utils/random"
+import { logInUser } from "./utils/user"
+
+test("Items page is accessible and shows correct title", async ({ page }) => {
+  await page.goto("/items")
+  await expect(page.getByRole("heading", { name: "Items" })).toBeVisible()
+  await expect(page.getByText("Create and manage your items")).toBeVisible()
+})
+
+test("Add Item button is visible", async ({ page }) => {
+  await page.goto("/items")
+  await expect(page.getByRole("button", { name: "Add Item" })).toBeVisible()
+})
+
+test.describe("Items management", () => {
+  test.use({ storageState: { cookies: [], origins: [] } })
+  let email: string
+  const password = randomPassword()
+
+  test.beforeAll(async () => {
+    email = randomEmail()
+    await createUser({ email, password })
+  })
+
+  test.beforeEach(async ({ page }) => {
+    await logInUser(page, email, password)
+    await page.goto("/items")
+  })
+
+  test("Create a new item successfully", async ({ page }) => {
+    const title = randomItemTitle()
+    const description = randomItemDescription()
+
+    await page.getByRole("button", { name: "Add Item" }).click()
+    await page.getByLabel("Title").fill(title)
+    await page.getByLabel("Description").fill(description)
+    await page.getByRole("button", { name: "Save" }).click()
+
+    await expect(page.getByText("Item created successfully")).toBeVisible()
+    await expect(page.getByText(title)).toBeVisible()
+  })
+
+  test("Create item with only required fields", async ({ page }) => {
+    const title = randomItemTitle()
+
+    await page.getByRole("button", { name: "Add Item" }).click()
+    await page.getByLabel("Title").fill(title)
+    await page.getByRole("button", { name: "Save" }).click()
+
+    await expect(page.getByText("Item created successfully")).toBeVisible()
+    await expect(page.getByText(title)).toBeVisible()
+  })
+
+  test("Cancel item creation", async ({ page }) => {
+    await page.getByRole("button", { name: "Add Item" }).click()
+    await page.getByLabel("Title").fill("Test Item")
+    await page.getByRole("button", { name: "Cancel" }).click()
+
+    await expect(page.getByRole("dialog")).not.toBeVisible()
+  })
+
+  test("Title is required", async ({ page }) => {
+    await page.getByRole("button", { name: "Add Item" }).click()
+    await page.getByLabel("Title").fill("")
+    await page.getByLabel("Title").blur()
+
+    await expect(page.getByText("Title is required")).toBeVisible()
+  })
+
+  test.describe("Edit and Delete", () => {
+    let itemTitle: string
+
+    test.beforeEach(async ({ page }) => {
+      itemTitle = randomItemTitle()
+
+      await page.getByRole("button", { name: "Add Item" }).click()
+      await page.getByLabel("Title").fill(itemTitle)
+      await page.getByRole("button", { name: "Save" }).click()
+      await expect(page.getByText("Item created successfully")).toBeVisible()
+      await expect(page.getByRole("dialog")).not.toBeVisible()
+    })
+
+    test("Edit an item successfully", async ({ page }) => {
+      const itemRow = page.getByRole("row").filter({ hasText: itemTitle })
+      await itemRow.getByRole("button").last().click()
+      await page.getByRole("menuitem", { name: "Edit Item" }).click()
+
+      const updatedTitle = randomItemTitle()
+      await page.getByLabel("Title").fill(updatedTitle)
+      await page.getByRole("button", { name: "Save" }).click()
+
+      await expect(page.getByText("Item updated successfully")).toBeVisible()
+      await expect(page.getByText(updatedTitle)).toBeVisible()
+    })
+
+    test("Delete an item successfully", async ({ page }) => {
+      const itemRow = page.getByRole("row").filter({ hasText: itemTitle })
+      await itemRow.getByRole("button").last().click()
+      await page.getByRole("menuitem", { name: "Delete Item" }).click()
+
+      await page.getByRole("button", { name: "Delete" }).click()
+
+      await expect(
+        page.getByText("The item was deleted successfully"),
+      ).toBeVisible()
+      await expect(page.getByText(itemTitle)).not.toBeVisible()
+    })
+  })
+})
+
+test.describe("Items empty state", () => {
+  test.use({ storageState: { cookies: [], origins: [] } })
+
+  test("Shows empty state message when no items exist", async ({ page }) => {
+    const email = randomEmail()
+    const password = randomPassword()
+    await createUser({ email, password })
+    await logInUser(page, email, password)
+
+    await page.goto("/items")
+
+    await expect(page.getByText("You don't have any items yet")).toBeVisible()
+    await expect(page.getByText("Add a new item to get started")).toBeVisible()
+  })
+})
diff --git a/frontend/tests/login.spec.ts b/frontend/tests/login.spec.ts
@@ -69,8 +69,6 @@ test("Log in with invalid password", async ({ page }) => {
   await expect(page.getByText("Incorrect email or password")).toBeVisible()
 })
 
-// Log out
-
 test("Successful log out", async ({ page }) => {
   await page.goto("/login")
 
diff --git a/frontend/tests/sign-up.spec.ts b/frontend/tests/sign-up.spec.ts
@@ -75,13 +75,11 @@ test("Sign up with existing email", async ({ page }) => {
   const email = randomEmail()
   const password = randomPassword()
 
-  // Sign up with an email
   await page.goto("/signup")
 
   await fillForm(page, fullName, email, password, password)
   await page.getByRole("button", { name: "Sign Up" }).click()
 
-  // Sign up again with the same email
   await page.goto("/signup")
 
   await fillForm(page, fullName, email, password, password)
diff --git a/frontend/tests/user-settings.spec.ts b/frontend/tests/user-settings.spec.ts
diff --git a/frontend/tests/utils/random.ts b/frontend/tests/utils/random.ts
