Hartmut/Nexus
1
0
Fork 0
Code Issues 11 Pull Requests 1 Actions Packages Projects Releases Wiki Activity

fix(build): resolve Next.js build failures from invalid route exports

Browse Source 
- Extract detectAuthAnomalies + THRESHOLDS from route.ts to detect.ts
  (Next.js rejects non-standard exports from route files)
- Add explicit RenderResult return type to test-utils customRender
- Skip ESLint during next build (runs separately via pnpm lint)
- Revert test file exclusions from tsconfig (breaks eslint parser)
- Update route.test.ts imports to match new file structure

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
This commit is contained in:
Hartmut Nörenberg
2026-04-11 07:40:00 +02:00
parent d8aac21e2d
commit 4469fc42af
5 changed files with 122 additions and 108 deletions
Download Patch File Download Diff File Expand all files Collapse all files
apps/web/src/app/api/cron/auth-anomaly-check/route.test.ts
+34 -28
View File
@@ -10,8 +10,8 @@
* - No admin notification when no anomalies
*/
import { afterEach, beforeEach, describe, expect, it, vi } from "vitest";
import { THRESHOLDS } from "./route.js";
import { beforeEach, describe, expect, it, vi } from "vitest";
import { THRESHOLDS } from "./detect.js";
// ─── Prisma mock ─────────────────────────────────────────────────────────────
const auditLogFindManyMock = vi.hoisted(() => vi.fn());
@@ -62,10 +62,17 @@ async function importRoute() {
return mod;
}
async function importDetect() {
const mod = await import("./detect.js");
return mod;
}
// ─── tests ────────────────────────────────────────────────────────────────────
describe("GET /api/cron/auth-anomaly-check — cron secret enforcement", () => {
beforeEach(() => { vi.clearAllMocks(); });
beforeEach(() => {
vi.clearAllMocks();
});
it("returns 401 when verifyCronSecret denies the request", async () => {
const { NextResponse } = await import("next/server");
@@ -102,7 +109,7 @@ describe("GET /api/cron/auth-anomaly-check — no anomalies", () => {
);
const { GET } = await importRoute();
const res = await GET(makeRequest());
const body = await res.json() as { ok: boolean; anomalies: unknown[] };
const body = (await res.json()) as { ok: boolean; anomalies: unknown[] };
expect(res.status).toBe(200);
expect(body.ok).toBe(true);
expect(body.anomalies).toHaveLength(0);
@@ -129,7 +136,7 @@ describe("GET /api/cron/auth-anomaly-check — HIGH_GLOBAL_FAILURE_RATE", () =>
userFindManyMock.mockResolvedValue([{ id: "admin_1" }]);
const { GET } = await importRoute();
const res = await GET(makeRequest());
const body = await res.json() as { anomalies: Array<{ type: string }> };
const body = (await res.json()) as { anomalies: Array<{ type: string }> };
expect(body.anomalies.some((a) => a.type === "HIGH_GLOBAL_FAILURE_RATE")).toBe(true);
});
@@ -141,7 +148,10 @@ describe("GET /api/cron/auth-anomaly-check — HIGH_GLOBAL_FAILURE_RATE", () =>
const { GET } = await importRoute();
await GET(makeRequest());
expect(createNotificationsMock).toHaveBeenCalledOnce();
const call = createNotificationsMock.mock.calls[0]![0] as { userIds: string[]; priority: string };
const call = createNotificationsMock.mock.calls[0]![0] as {
userIds: string[];
priority: string;
};
expect(call.userIds).toContain("admin_1");
expect(call.priority).toBe("CRITICAL");
});
@@ -161,7 +171,7 @@ describe("GET /api/cron/auth-anomaly-check — CONCENTRATED_FAILURES", () => {
userFindManyMock.mockResolvedValue([{ id: "admin_1" }]);
const { GET } = await importRoute();
const res = await GET(makeRequest());
const body = await res.json() as { anomalies: Array<{ type: string; entityId: string }> };
const body = (await res.json()) as { anomalies: Array<{ type: string; entityId: string }> };
const concentrated = body.anomalies.find((a) => a.type === "CONCENTRATED_FAILURES");
expect(concentrated).toBeDefined();
expect(concentrated!.entityId).toBe("target_user");
@@ -169,11 +179,13 @@ describe("GET /api/cron/auth-anomaly-check — CONCENTRATED_FAILURES", () => {
it("does not flag an entity that is below the per-entity threshold", async () => {
auditLogFindManyMock.mockResolvedValue(
Array.from({ length: THRESHOLDS.perEntityFailures - 1 }, () => makeFailureEvent("target_user")),
Array.from({ length: THRESHOLDS.perEntityFailures - 1 }, () =>
makeFailureEvent("target_user"),
),
);
const { GET } = await importRoute();
const res = await GET(makeRequest());
const body = await res.json() as { anomalies: Array<{ type: string }> };
const body = (await res.json()) as { anomalies: Array<{ type: string }> };
expect(body.anomalies.some((a) => a.type === "CONCENTRATED_FAILURES")).toBe(false);
});
@@ -199,7 +211,7 @@ describe("GET /api/cron/auth-anomaly-check — error handling", () => {
const { GET } = await importRoute();
const res = await GET(makeRequest());
expect(res.status).toBe(500);
const body = await res.json() as { ok: boolean };
const body = (await res.json()) as { ok: boolean };
expect(body.ok).toBe(false);
});
});
@@ -209,11 +221,13 @@ describe("GET /api/cron/auth-anomaly-check — error handling", () => {
// the CRON_SECRET check, to verify threshold logic in isolation.
describe("detectAuthAnomalies — unit tests", () => {
beforeEach(() => { vi.clearAllMocks(); });
beforeEach(() => {
vi.clearAllMocks();
});
it("returns empty anomalies and zero totalFailures when no events are found", async () => {
auditLogFindManyMock.mockResolvedValue([]);
const { detectAuthAnomalies } = await importRoute();
const { detectAuthAnomalies } = await importDetect();
const result = await detectAuthAnomalies();
@@ -227,13 +241,11 @@ describe("detectAuthAnomalies — unit tests", () => {
summary: "Login failed: bad password",
}));
auditLogFindManyMock.mockResolvedValue(events);
const { detectAuthAnomalies } = await importRoute();
const { detectAuthAnomalies } = await importDetect();
const result = await detectAuthAnomalies();
const globalAnomaly = result.anomalies.find(
(a) => a.type === "HIGH_GLOBAL_FAILURE_RATE",
);
const globalAnomaly = result.anomalies.find((a) => a.type === "HIGH_GLOBAL_FAILURE_RATE");
expect(globalAnomaly).toBeDefined();
expect(globalAnomaly!.count).toBe(THRESHOLDS.globalFailures);
expect(result.totalFailures).toBe(THRESHOLDS.globalFailures);
@@ -245,13 +257,11 @@ describe("detectAuthAnomalies — unit tests", () => {
summary: "Login failed: bad password",
}));
auditLogFindManyMock.mockResolvedValue(events);
const { detectAuthAnomalies } = await importRoute();
const { detectAuthAnomalies } = await importDetect();
const result = await detectAuthAnomalies();
const concentrated = result.anomalies.find(
(a) => a.type === "CONCENTRATED_FAILURES",
);
const concentrated = result.anomalies.find((a) => a.type === "CONCENTRATED_FAILURES");
expect(concentrated).toBeDefined();
expect(concentrated!.count).toBe(THRESHOLDS.perEntityFailures);
expect(concentrated!.entityId).toBe("user_attacker");
@@ -265,13 +275,11 @@ describe("detectAuthAnomalies — unit tests", () => {
summary: "Login failed: unknown user",
}));
auditLogFindManyMock.mockResolvedValue(events);
const { detectAuthAnomalies } = await importRoute();
const { detectAuthAnomalies } = await importDetect();
const result = await detectAuthAnomalies();
const concentrated = result.anomalies.find(
(a) => a.type === "CONCENTRATED_FAILURES",
);
const concentrated = result.anomalies.find((a) => a.type === "CONCENTRATED_FAILURES");
expect(concentrated).toBeUndefined();
});
@@ -289,15 +297,13 @@ describe("detectAuthAnomalies — unit tests", () => {
}),
);
auditLogFindManyMock.mockResolvedValue([...botEvents, ...otherEvents]);
const { detectAuthAnomalies } = await importRoute();
const { detectAuthAnomalies } = await importDetect();
const result = await detectAuthAnomalies();
expect(result.totalFailures).toBe(THRESHOLDS.globalFailures);
const globalAnomaly = result.anomalies.find(
(a) => a.type === "HIGH_GLOBAL_FAILURE_RATE",
);
const globalAnomaly = result.anomalies.find((a) => a.type === "HIGH_GLOBAL_FAILURE_RATE");
expect(globalAnomaly).toBeDefined();
const concentrated = result.anomalies.find(