LibreChat/packages/data-schemas/src/methods/user.test.ts

import mongoose from 'mongoose';
import { createUserMethods } from './user';
import { signPayload } from '~/crypto';
import type { IUser } from '~/types';

jest.mock('~/crypto', () => ({
  signPayload: jest.fn(),
}));

describe('User Methods', () => {
  const mockSignPayload = signPayload as jest.MockedFunction<typeof signPayload>;
  let userMethods: ReturnType<typeof createUserMethods>;

  beforeEach(() => {
    jest.clearAllMocks();
    userMethods = createUserMethods(mongoose);
  });

  describe('generateToken', () => {
    const mockUser = {
      _id: 'user123',
      username: 'testuser',
      provider: 'local',
      email: 'test@example.com',
      name: 'Test User',
      avatar: '',
      role: 'user',
      emailVerified: false,
      createdAt: new Date(),
      updatedAt: new Date(),
    } as IUser;

    afterEach(() => {
      delete process.env.JWT_SECRET;
    });

    it('should default to 15 minutes when expiresIn is not provided', async () => {
      process.env.JWT_SECRET = 'test-secret';
      mockSignPayload.mockResolvedValue('mocked-token');

      await userMethods.generateToken(mockUser);

      expect(mockSignPayload).toHaveBeenCalledWith({
        payload: {
          id: mockUser._id,
          username: mockUser.username,
          provider: mockUser.provider,
          email: mockUser.email,
        },
        secret: 'test-secret',
        expirationTime: 900, // 15 minutes in seconds (DEFAULT_SESSION_EXPIRY / 1000)
      });
    });

    it('should default to 15 minutes when expiresIn is undefined', async () => {
      process.env.JWT_SECRET = 'test-secret';
      mockSignPayload.mockResolvedValue('mocked-token');

      await userMethods.generateToken(mockUser, undefined);

      expect(mockSignPayload).toHaveBeenCalledWith({
        payload: {
          id: mockUser._id,
          username: mockUser.username,
          provider: mockUser.provider,
          email: mockUser.email,
        },
        secret: 'test-secret',
        expirationTime: 900, // 15 minutes in seconds (DEFAULT_SESSION_EXPIRY / 1000)
      });
    });

    it('should use custom expiry when expiresIn is provided', async () => {
      process.env.JWT_SECRET = 'test-secret';
      mockSignPayload.mockResolvedValue('mocked-token');

      await userMethods.generateToken(mockUser, 1000 * 60 * 30); // 30 minutes

      expect(mockSignPayload).toHaveBeenCalledWith({
        payload: {
          id: mockUser._id,
          username: mockUser.username,
          provider: mockUser.provider,
          email: mockUser.email,
        },
        secret: 'test-secret',
        expirationTime: 1800, // 30 minutes in seconds
      });
    });

    it('should use 0 when expiresIn is 0', async () => {
      process.env.JWT_SECRET = 'test-secret';
      mockSignPayload.mockResolvedValue('mocked-token');

      // When 0 is passed, it should use 0 (caller's responsibility to pass valid value)
      await userMethods.generateToken(mockUser, 0);

      expect(mockSignPayload).toHaveBeenCalledWith({
        payload: {
          id: mockUser._id,
          username: mockUser.username,
          provider: mockUser.provider,
          email: mockUser.email,
        },
        secret: 'test-secret',
        expirationTime: 0, // 0 seconds
      });
    });

    it('should throw error when no user is provided', async () => {
      process.env.JWT_SECRET = 'test-secret';

      await expect(userMethods.generateToken(null as unknown as IUser)).rejects.toThrow(
        'No user provided',
      );
    });

    it('should return the token from signPayload', async () => {
      process.env.JWT_SECRET = 'test-secret';
      const expectedToken = 'generated-jwt-token';
      mockSignPayload.mockResolvedValue(expectedToken);

      const token = await userMethods.generateToken(mockUser, 1000 * 60 * 60); // 1 hour

      expect(token).toBe(expectedToken);
    });
  });
});
📧 feat: Mailgun API Email Configuration (#7742) * fix: add undefined password check in local user authentication * fix: edge case - issue deleting user when no conversations in deleteUserController * feat: Integrate Mailgun API for email sending functionality * fix: undefined SESSION_EXPIRY handling and add tests * fix: update import path for isEnabled utility in azureUtils.js to resolve circular dep. 2025-06-04 13:12:37 -04:00			`import mongoose from 'mongoose';`
			`import { createUserMethods } from './user';`
			`import { signPayload } from '~/crypto';`
			`import type { IUser } from '~/types';`

			`jest.mock('~/crypto', () => ({`
			`signPayload: jest.fn(),`
			`}));`

			`describe('User Methods', () => {`
			`const mockSignPayload = signPayload as jest.MockedFunction<typeof signPayload>;`
			`let userMethods: ReturnType<typeof createUserMethods>;`

			`beforeEach(() => {`
			`jest.clearAllMocks();`
			`userMethods = createUserMethods(mongoose);`
			`});`

			`describe('generateToken', () => {`
			`const mockUser = {`
			`_id: 'user123',`
			`username: 'testuser',`
			`provider: 'local',`
			`email: 'test@example.com',`
			`name: 'Test User',`
			`avatar: '',`
			`role: 'user',`
			`emailVerified: false,`
			`createdAt: new Date(),`
			`updatedAt: new Date(),`
			`} as IUser;`

			`afterEach(() => {`
			`delete process.env.JWT_SECRET;`
			`});`

🧮 refactor: Replace Eval with Safe Math Expression Parser (#11098) * chore: Add mathjs dependency * refactor: Replace eval with mathjs for safer expression evaluation and improve session expiry handling to not environment variables from data-schemas package * test: Add integration tests for math function with environment variable expressions * refactor: Update test description for clarity on expiresIn behavior * refactor: Update test cases to clarify default expiration behavior for token generation * refactor: Improve error handling in math function for clearer evaluation errors 2025-12-25 12:25:41 -05:00			`it('should default to 15 minutes when expiresIn is not provided', async () => {`
📧 feat: Mailgun API Email Configuration (#7742) * fix: add undefined password check in local user authentication * fix: edge case - issue deleting user when no conversations in deleteUserController * feat: Integrate Mailgun API for email sending functionality * fix: undefined SESSION_EXPIRY handling and add tests * fix: update import path for isEnabled utility in azureUtils.js to resolve circular dep. 2025-06-04 13:12:37 -04:00			`process.env.JWT_SECRET = 'test-secret';`
			`mockSignPayload.mockResolvedValue('mocked-token');`

			`await userMethods.generateToken(mockUser);`

			`expect(mockSignPayload).toHaveBeenCalledWith({`
			`payload: {`
			`id: mockUser._id,`
			`username: mockUser.username,`
			`provider: mockUser.provider,`
			`email: mockUser.email,`
			`},`
			`secret: 'test-secret',`
🧮 refactor: Replace Eval with Safe Math Expression Parser (#11098) * chore: Add mathjs dependency * refactor: Replace eval with mathjs for safer expression evaluation and improve session expiry handling to not environment variables from data-schemas package * test: Add integration tests for math function with environment variable expressions * refactor: Update test description for clarity on expiresIn behavior * refactor: Update test cases to clarify default expiration behavior for token generation * refactor: Improve error handling in math function for clearer evaluation errors 2025-12-25 12:25:41 -05:00			`expirationTime: 900, // 15 minutes in seconds (DEFAULT_SESSION_EXPIRY / 1000)`
📧 feat: Mailgun API Email Configuration (#7742) * fix: add undefined password check in local user authentication * fix: edge case - issue deleting user when no conversations in deleteUserController * feat: Integrate Mailgun API for email sending functionality * fix: undefined SESSION_EXPIRY handling and add tests * fix: update import path for isEnabled utility in azureUtils.js to resolve circular dep. 2025-06-04 13:12:37 -04:00			`});`
			`});`

🧮 refactor: Replace Eval with Safe Math Expression Parser (#11098) * chore: Add mathjs dependency * refactor: Replace eval with mathjs for safer expression evaluation and improve session expiry handling to not environment variables from data-schemas package * test: Add integration tests for math function with environment variable expressions * refactor: Update test description for clarity on expiresIn behavior * refactor: Update test cases to clarify default expiration behavior for token generation * refactor: Improve error handling in math function for clearer evaluation errors 2025-12-25 12:25:41 -05:00			`it('should default to 15 minutes when expiresIn is undefined', async () => {`
📧 feat: Mailgun API Email Configuration (#7742) * fix: add undefined password check in local user authentication * fix: edge case - issue deleting user when no conversations in deleteUserController * feat: Integrate Mailgun API for email sending functionality * fix: undefined SESSION_EXPIRY handling and add tests * fix: update import path for isEnabled utility in azureUtils.js to resolve circular dep. 2025-06-04 13:12:37 -04:00			`process.env.JWT_SECRET = 'test-secret';`
			`mockSignPayload.mockResolvedValue('mocked-token');`

🧮 refactor: Replace Eval with Safe Math Expression Parser (#11098) * chore: Add mathjs dependency * refactor: Replace eval with mathjs for safer expression evaluation and improve session expiry handling to not environment variables from data-schemas package * test: Add integration tests for math function with environment variable expressions * refactor: Update test description for clarity on expiresIn behavior * refactor: Update test cases to clarify default expiration behavior for token generation * refactor: Improve error handling in math function for clearer evaluation errors 2025-12-25 12:25:41 -05:00			`await userMethods.generateToken(mockUser, undefined);`
📧 feat: Mailgun API Email Configuration (#7742) * fix: add undefined password check in local user authentication * fix: edge case - issue deleting user when no conversations in deleteUserController * feat: Integrate Mailgun API for email sending functionality * fix: undefined SESSION_EXPIRY handling and add tests * fix: update import path for isEnabled utility in azureUtils.js to resolve circular dep. 2025-06-04 13:12:37 -04:00
			`expect(mockSignPayload).toHaveBeenCalledWith({`
			`payload: {`
			`id: mockUser._id,`
			`username: mockUser.username,`
			`provider: mockUser.provider,`
			`email: mockUser.email,`
			`},`
			`secret: 'test-secret',`
🧮 refactor: Replace Eval with Safe Math Expression Parser (#11098) * chore: Add mathjs dependency * refactor: Replace eval with mathjs for safer expression evaluation and improve session expiry handling to not environment variables from data-schemas package * test: Add integration tests for math function with environment variable expressions * refactor: Update test description for clarity on expiresIn behavior * refactor: Update test cases to clarify default expiration behavior for token generation * refactor: Improve error handling in math function for clearer evaluation errors 2025-12-25 12:25:41 -05:00			`expirationTime: 900, // 15 minutes in seconds (DEFAULT_SESSION_EXPIRY / 1000)`
📧 feat: Mailgun API Email Configuration (#7742) * fix: add undefined password check in local user authentication * fix: edge case - issue deleting user when no conversations in deleteUserController * feat: Integrate Mailgun API for email sending functionality * fix: undefined SESSION_EXPIRY handling and add tests * fix: update import path for isEnabled utility in azureUtils.js to resolve circular dep. 2025-06-04 13:12:37 -04:00			`});`
			`});`

🧮 refactor: Replace Eval with Safe Math Expression Parser (#11098) * chore: Add mathjs dependency * refactor: Replace eval with mathjs for safer expression evaluation and improve session expiry handling to not environment variables from data-schemas package * test: Add integration tests for math function with environment variable expressions * refactor: Update test description for clarity on expiresIn behavior * refactor: Update test cases to clarify default expiration behavior for token generation * refactor: Improve error handling in math function for clearer evaluation errors 2025-12-25 12:25:41 -05:00			`it('should use custom expiry when expiresIn is provided', async () => {`
📧 feat: Mailgun API Email Configuration (#7742) * fix: add undefined password check in local user authentication * fix: edge case - issue deleting user when no conversations in deleteUserController * feat: Integrate Mailgun API for email sending functionality * fix: undefined SESSION_EXPIRY handling and add tests * fix: update import path for isEnabled utility in azureUtils.js to resolve circular dep. 2025-06-04 13:12:37 -04:00			`process.env.JWT_SECRET = 'test-secret';`
			`mockSignPayload.mockResolvedValue('mocked-token');`

🧮 refactor: Replace Eval with Safe Math Expression Parser (#11098) * chore: Add mathjs dependency * refactor: Replace eval with mathjs for safer expression evaluation and improve session expiry handling to not environment variables from data-schemas package * test: Add integration tests for math function with environment variable expressions * refactor: Update test description for clarity on expiresIn behavior * refactor: Update test cases to clarify default expiration behavior for token generation * refactor: Improve error handling in math function for clearer evaluation errors 2025-12-25 12:25:41 -05:00			`await userMethods.generateToken(mockUser, 1000 * 60 * 30); // 30 minutes`
📧 feat: Mailgun API Email Configuration (#7742) * fix: add undefined password check in local user authentication * fix: edge case - issue deleting user when no conversations in deleteUserController * feat: Integrate Mailgun API for email sending functionality * fix: undefined SESSION_EXPIRY handling and add tests * fix: update import path for isEnabled utility in azureUtils.js to resolve circular dep. 2025-06-04 13:12:37 -04:00
			`expect(mockSignPayload).toHaveBeenCalledWith({`
			`payload: {`
			`id: mockUser._id,`
			`username: mockUser.username,`
			`provider: mockUser.provider,`
			`email: mockUser.email,`
			`},`
			`secret: 'test-secret',`
			`expirationTime: 1800, // 30 minutes in seconds`
			`});`
			`});`

🧮 refactor: Replace Eval with Safe Math Expression Parser (#11098) * chore: Add mathjs dependency * refactor: Replace eval with mathjs for safer expression evaluation and improve session expiry handling to not environment variables from data-schemas package * test: Add integration tests for math function with environment variable expressions * refactor: Update test description for clarity on expiresIn behavior * refactor: Update test cases to clarify default expiration behavior for token generation * refactor: Improve error handling in math function for clearer evaluation errors 2025-12-25 12:25:41 -05:00			`it('should use 0 when expiresIn is 0', async () => {`
📧 feat: Mailgun API Email Configuration (#7742) * fix: add undefined password check in local user authentication * fix: edge case - issue deleting user when no conversations in deleteUserController * feat: Integrate Mailgun API for email sending functionality * fix: undefined SESSION_EXPIRY handling and add tests * fix: update import path for isEnabled utility in azureUtils.js to resolve circular dep. 2025-06-04 13:12:37 -04:00			`process.env.JWT_SECRET = 'test-secret';`
			`mockSignPayload.mockResolvedValue('mocked-token');`

🧮 refactor: Replace Eval with Safe Math Expression Parser (#11098) * chore: Add mathjs dependency * refactor: Replace eval with mathjs for safer expression evaluation and improve session expiry handling to not environment variables from data-schemas package * test: Add integration tests for math function with environment variable expressions * refactor: Update test description for clarity on expiresIn behavior * refactor: Update test cases to clarify default expiration behavior for token generation * refactor: Improve error handling in math function for clearer evaluation errors 2025-12-25 12:25:41 -05:00			`// When 0 is passed, it should use 0 (caller's responsibility to pass valid value)`
			`await userMethods.generateToken(mockUser, 0);`
📧 feat: Mailgun API Email Configuration (#7742) * fix: add undefined password check in local user authentication * fix: edge case - issue deleting user when no conversations in deleteUserController * feat: Integrate Mailgun API for email sending functionality * fix: undefined SESSION_EXPIRY handling and add tests * fix: update import path for isEnabled utility in azureUtils.js to resolve circular dep. 2025-06-04 13:12:37 -04:00
			`expect(mockSignPayload).toHaveBeenCalledWith({`
			`payload: {`
			`id: mockUser._id,`
			`username: mockUser.username,`
			`provider: mockUser.provider,`
			`email: mockUser.email,`
			`},`
			`secret: 'test-secret',`
🧮 refactor: Replace Eval with Safe Math Expression Parser (#11098) * chore: Add mathjs dependency * refactor: Replace eval with mathjs for safer expression evaluation and improve session expiry handling to not environment variables from data-schemas package * test: Add integration tests for math function with environment variable expressions * refactor: Update test description for clarity on expiresIn behavior * refactor: Update test cases to clarify default expiration behavior for token generation * refactor: Improve error handling in math function for clearer evaluation errors 2025-12-25 12:25:41 -05:00			`expirationTime: 0, // 0 seconds`
📧 feat: Mailgun API Email Configuration (#7742) * fix: add undefined password check in local user authentication * fix: edge case - issue deleting user when no conversations in deleteUserController * feat: Integrate Mailgun API for email sending functionality * fix: undefined SESSION_EXPIRY handling and add tests * fix: update import path for isEnabled utility in azureUtils.js to resolve circular dep. 2025-06-04 13:12:37 -04:00			`});`
			`});`

			`it('should throw error when no user is provided', async () => {`
			`process.env.JWT_SECRET = 'test-secret';`

			`await expect(userMethods.generateToken(null as unknown as IUser)).rejects.toThrow(`
			`'No user provided',`
			`);`
			`});`

			`it('should return the token from signPayload', async () => {`
			`process.env.JWT_SECRET = 'test-secret';`
			`const expectedToken = 'generated-jwt-token';`
			`mockSignPayload.mockResolvedValue(expectedToken);`

🧮 refactor: Replace Eval with Safe Math Expression Parser (#11098) * chore: Add mathjs dependency * refactor: Replace eval with mathjs for safer expression evaluation and improve session expiry handling to not environment variables from data-schemas package * test: Add integration tests for math function with environment variable expressions * refactor: Update test description for clarity on expiresIn behavior * refactor: Update test cases to clarify default expiration behavior for token generation * refactor: Improve error handling in math function for clearer evaluation errors 2025-12-25 12:25:41 -05:00			`const token = await userMethods.generateToken(mockUser, 1000 * 60 * 60); // 1 hour`
📧 feat: Mailgun API Email Configuration (#7742) * fix: add undefined password check in local user authentication * fix: edge case - issue deleting user when no conversations in deleteUserController * feat: Integrate Mailgun API for email sending functionality * fix: undefined SESSION_EXPIRY handling and add tests * fix: update import path for isEnabled utility in azureUtils.js to resolve circular dep. 2025-06-04 13:12:37 -04:00
			`expect(token).toBe(expectedToken);`
			`});`
			`});`
			`});`