[TECH] Migrer la route POST api/admin/memberships/{id}/disable

 #11423

Author: pix-service-auto-merge

Diff for: api/lib/application/memberships/index.js

@@ -2,42 +2,11 @@ import Joi from 'joi';
 
 import { securityPreHandlers } from '../../../src/shared/application/security-pre-handlers.js';
 import { identifiersType } from '../../../src/shared/domain/types/identifiers-type.js';
-import { membershipController } from './membership-controller.js';
+import { membershipController } from '../../../src/team/application/membership/membership.controller.js';
+import { membershipController as libMembershipController } from './membership-controller.js';
 
 const register = async function (server) {
-  const adminRoutes = [
-    {
-      method: 'POST',
-      path: '/api/admin/memberships/{id}/disable',
-      config: {
-        pre: [
-          {
-            method: (request, h) =>
-              securityPreHandlers.hasAtLeastOneAccessOf([
-                securityPreHandlers.checkAdminMemberHasRoleSuperAdmin,
-                securityPreHandlers.checkAdminMemberHasRoleSupport,
-                securityPreHandlers.checkAdminMemberHasRoleMetier,
-              ])(request, h),
-            assign: 'hasAuthorizationToAccessAdminScope',
-          },
-        ],
-        validate: {
-          params: Joi.object({
-            id: identifiersType.membershipId,
-          }),
-        },
-        handler: membershipController.disable,
-        tags: ['api'],
-        notes: [
-          "- **Cette route est restreinte aux utilisateurs authentifiés ayant les droits d'accès**\n" +
-            "- Elle permet la désactivation d'un membre",
-        ],
-      },
-    },
-  ];
-
   server.route([
-    ...adminRoutes,
     {
       method: 'POST',
       path: '/api/memberships/me/disable',
@@ -57,7 +26,7 @@ const register = async function (server) {
             organizationId: identifiersType.organizationId,
           }),
         },
-        handler: membershipController.disableOwnOrganizationMembership,
+        handler: libMembershipController.disableOwnOrganizationMembership,
         tags: ['api'],
         notes: [
           "- **Cette route est restreinte aux utilisateurs authentifiés en tant qu'administrateur de l'organisation\n" +

Diff for: api/lib/application/memberships/membership-controller.js

@@ -1,14 +1,6 @@
 import * as requestResponseUtils from '../../../src/shared/infrastructure/utils/request-response-utils.js';
 import { usecases } from '../../domain/usecases/index.js';
 
-const disable = async function (request, h) {
-  const membershipId = request.params.id;
-  const userId = requestResponseUtils.extractUserIdFromRequest(request);
-
-  await usecases.disableMembership({ membershipId, userId });
-  return h.response().code(204);
-};
-
 const disableOwnOrganizationMembership = async function (request, h) {
   const organizationId = request.payload.organizationId;
   const userId = requestResponseUtils.extractUserIdFromRequest(request);
@@ -18,6 +10,6 @@ const disableOwnOrganizationMembership = async function (request, h) {
   return h.response().code(204);
 };
 
-const membershipController = { disable, disableOwnOrganizationMembership };
+const membershipController = { disableOwnOrganizationMembership };
 
 export { membershipController };

Diff for: api/src/team/application/membership/membership.admin.route.js

@@ -139,4 +139,32 @@ export const membershipAdminRoutes = [
       ],
     },
   },
+  {
+    method: 'POST',
+    path: '/api/admin/memberships/{id}/disable',
+    config: {
+      pre: [
+        {
+          method: (request, h) =>
+            securityPreHandlers.hasAtLeastOneAccessOf([
+              securityPreHandlers.checkAdminMemberHasRoleSuperAdmin,
+              securityPreHandlers.checkAdminMemberHasRoleSupport,
+              securityPreHandlers.checkAdminMemberHasRoleMetier,
+            ])(request, h),
+          assign: 'hasAuthorizationToAccessAdminScope',
+        },
+      ],
+      validate: {
+        params: Joi.object({
+          id: identifiersType.membershipId,
+        }),
+      },
+      handler: (request, h) => membershipController.disable(request, h),
+      tags: ['api'],
+      notes: [
+        "- **Cette route est restreinte aux utilisateurs authentifiés ayant les droits d'accès**\n" +
+          "- Elle permet la désactivation d'un membre",
+      ],
+    },
+  },
 ];

Diff for: api/src/team/application/membership/membership.controller.js

@@ -13,6 +13,14 @@ const create = async function (request, h, dependencies = { membershipSerializer
   return h.response(dependencies.membershipSerializer.serializeForAdmin(membership)).created();
 };
 
+const disable = async function (request, h) {
+  const membershipId = request.params.id;
+  const userId = requestResponseUtils.extractUserIdFromRequest(request);
+
+  await usecases.disableMembership({ membershipId, userId });
+  return h.response().code(204);
+};
+
 const update = async function (request, h, dependencies = { requestResponseUtils, membershipSerializer }) {
   const membershipId = request.params.id;
   const userId = dependencies.requestResponseUtils.extractUserIdFromRequest(request);
@@ -42,6 +50,6 @@ const findPaginatedFilteredMemberships = async function (request) {
   return membershipSerializer.serialize(memberships, pagination);
 };
 
-const membershipController = { create, findPaginatedFilteredMemberships, update };
+const membershipController = { create, disable, findPaginatedFilteredMemberships, update };
 
 export { membershipController };

Diff for: api/lib/domain/usecases/disable-membership.js renamed to api/src/team/domain/usecases/disable-membership.usecase.js

@@ -1,6 +1,6 @@
 import * as moduleUnderTest from '../../../../lib/application/memberships/index.js';
-import { usecases } from '../../../../lib/domain/usecases/index.js';
 import { securityPreHandlers } from '../../../../src/shared/application/security-pre-handlers.js';
+import { usecases } from '../../../../src/team/domain/usecases/index.js';
 import { domainBuilder, expect, HttpTestServer, sinon } from '../../../test-helper.js';
 
 describe('Integration | Application | Memberships | membership-controller', function () {

Diff for: api/tests/integration/application/memberships/membership-controller_test.js

@@ -266,6 +266,63 @@ describe('Acceptance | Team | Admin | Route | membership', function () {
     });
   });
 
+  describe('POST /api/admin/memberships/{id}/disable', function () {
+    let options;
+    let adminUserId;
+    let userId;
+    let organizationId;
+    let membershipId;
+
+    beforeEach(async function () {
+      const externalId = 'externalId';
+      adminUserId = databaseBuilder.factory.buildUser.withRole().id;
+      organizationId = databaseBuilder.factory.buildOrganization({ externalId, type: 'SCO' }).id;
+      userId = databaseBuilder.factory.buildUser().id;
+      membershipId = databaseBuilder.factory.buildMembership({
+        organizationId,
+        userId,
+        organizationRole: Membership.roles.MEMBER,
+      }).id;
+      databaseBuilder.factory.buildCertificationCenter({ externalId });
+
+      await databaseBuilder.commit();
+      options = {
+        method: 'POST',
+        url: `/api/admin/memberships/${membershipId}/disable`,
+        payload: {
+          data: {
+            id: membershipId.toString(),
+            type: 'memberships',
+            relationships: {
+              user: {
+                data: {
+                  type: 'users',
+                  id: userId,
+                },
+              },
+              organization: {
+                data: {
+                  type: 'organizations',
+                  id: organizationId,
+                },
+              },
+            },
+          },
+        },
+        headers: generateAuthenticatedUserRequestHeaders({ userId: adminUserId }),
+      };
+    });
+
+    it('returns 204 if user is Pix Admin', async function () {
+      // given
+      // when
+      const response = await server.inject(options);
+
+      // then
+      expect(response.statusCode).to.equal(204);
+    });
+  });
+
   describe('GET /api/admin/organizations/{id}/memberships', function () {
     it('returns the matching membership as JSON API', async function () {
       // given

Diff for: api/tests/team/acceptance/application/membership/membership.admin.route.test.js

@@ -3,7 +3,7 @@ import { membershipController } from '../../../../../src/team/application/member
 import { teamRoutes } from '../../../../../src/team/application/routes.js';
 import { expect, HttpTestServer, sinon } from '../../../../test-helper.js';
 
-describe('Unit | Team | Application | Route | Membership', function () {
+describe('Unit | Team | Application | Admin | Route | Membership', function () {
   describe('POST /api/admin/memberships', function () {
     it('returns forbidden access if admin member has CERTIF role', async function () {
       // given
@@ -70,4 +70,49 @@ describe('Unit | Team | Application | Route | Membership', function () {
       expect(response.statusCode).to.equal(403);
     });
   });
+
+  describe('POST /api/admin/memberships/{id}/disable', function () {
+    it('returns 204 if user is Pix Admin', async function () {
+      // given
+      sinon.stub(securityPreHandlers, 'hasAtLeastOneAccessOf').returns(() => true);
+      sinon.stub(membershipController, 'disable').callsFake((request, h) => h.response().code(204));
+
+      const httpTestServer = new HttpTestServer();
+      await httpTestServer.register(teamRoutes);
+      const membershipId = 123;
+
+      // when
+      const response = await httpTestServer.request('POST', `/api/admin/memberships/${membershipId}/disable`);
+
+      // then
+      expect(response.statusCode).to.equal(204);
+      expect(membershipController.disable).to.have.been.called;
+    });
+
+    it('returns forbidden access if admin member has CERTIF role', async function () {
+      // given
+      sinon.stub(membershipController, 'disable');
+
+      sinon.stub(securityPreHandlers, 'checkAdminMemberHasRoleCertif').callsFake((request, h) => h.response(true));
+      sinon
+        .stub(securityPreHandlers, 'checkAdminMemberHasRoleSuperAdmin')
+        .callsFake((request, h) => h.response({ errors: new Error('forbidden') }).code(403));
+      sinon
+        .stub(securityPreHandlers, 'checkAdminMemberHasRoleSupport')
+        .callsFake((request, h) => h.response({ errors: new Error('forbidden') }).code(403));
+      sinon
+        .stub(securityPreHandlers, 'checkAdminMemberHasRoleMetier')
+        .callsFake((request, h) => h.response({ errors: new Error('forbidden') }).code(403));
+
+      const httpTestServer = new HttpTestServer();
+      await httpTestServer.register(teamRoutes);
+
+      // when
+      const response = await httpTestServer.request('POST', '/api/admin/memberships/1/disable');
+
+      // then
+      expect(response.statusCode).to.equal(403);
+      expect(membershipController.disable).to.have.not.been.called;
+    });
+  });
 });

Diff for: api/tests/team/unit/application/membership/membership.admin.route.test.js

@@ -1,8 +1,8 @@
-import { disableMembership } from '../../../../lib/domain/usecases/disable-membership.js';
-import { MembershipUpdateError } from '../../../../src/shared/domain/errors.js';
-import { catchErr, expect, sinon } from '../../../test-helper.js';
+import { MembershipUpdateError } from '../../../../../src/shared/domain/errors.js';
+import { disableMembership } from '../../../../../src/team/domain/usecases/disable-membership.usecase.js';
+import { catchErr, expect, sinon } from '../../../../test-helper.js';
 
-describe('Unit | UseCase | disable-membership', function () {
+describe('Unit | Team | Domain | UseCase | disable-membership', function () {
   let membershipRepository;
 
   beforeEach(function () {

Diff for: api/tests/unit/domain/usecases/disable-membership_test.js renamed to api/tests/team/unit/domain/usecases/disable-membership.usecase.test.js

@@ -1,54 +1,9 @@
 import * as moduleUnderTest from '../../../../lib/application/memberships/index.js';
-import { membershipController } from '../../../../lib/application/memberships/membership-controller.js';
 import { securityPreHandlers } from '../../../../src/shared/application/security-pre-handlers.js';
+import { membershipController } from '../../../../src/team/application/membership/membership.controller.js';
 import { expect, HttpTestServer, sinon } from '../../../test-helper.js';
 
 describe('Unit | Router | membership-router', function () {
-  describe('POST /api/admin/memberships/{id}/disable', function () {
-    it('should return 204 if user is Pix Admin', async function () {
-      // given
-      sinon.stub(securityPreHandlers, 'hasAtLeastOneAccessOf').returns(() => true);
-      sinon.stub(membershipController, 'disable').callsFake((request, h) => h.response().code(204));
-
-      const httpTestServer = new HttpTestServer();
-      await httpTestServer.register(moduleUnderTest);
-      const membershipId = 123;
-
-      // when
-      const response = await httpTestServer.request('POST', `/api/admin/memberships/${membershipId}/disable`);
-
-      // then
-      expect(response.statusCode).to.equal(204);
-      expect(membershipController.disable).to.have.been.called;
-    });
-
-    it('returns forbidden access if admin member has CERTIF role', async function () {
-      // given
-      sinon.stub(membershipController, 'disable');
-
-      sinon.stub(securityPreHandlers, 'checkAdminMemberHasRoleCertif').callsFake((request, h) => h.response(true));
-      sinon
-        .stub(securityPreHandlers, 'checkAdminMemberHasRoleSuperAdmin')
-        .callsFake((request, h) => h.response({ errors: new Error('forbidden') }).code(403));
-      sinon
-        .stub(securityPreHandlers, 'checkAdminMemberHasRoleSupport')
-        .callsFake((request, h) => h.response({ errors: new Error('forbidden') }).code(403));
-      sinon
-        .stub(securityPreHandlers, 'checkAdminMemberHasRoleMetier')
-        .callsFake((request, h) => h.response({ errors: new Error('forbidden') }).code(403));
-
-      const httpTestServer = new HttpTestServer();
-      await httpTestServer.register(moduleUnderTest);
-
-      // when
-      const response = await httpTestServer.request('POST', '/api/admin/memberships/1/disable');
-
-      // then
-      expect(response.statusCode).to.equal(403);
-      expect(membershipController.disable).to.have.not.been.called;
-    });
-  });
-
   describe('POST /api/memberships/{id}/disable', function () {
     it('should return 204 if user is admin in organization', async function () {
       // given