mirror of
https://github.com/simstudioai/sim.git
synced 2026-04-06 03:00:16 -04:00
775daed2ea
* v0 * Fix ppt load * Fixes * Fixes * Fix lint * Fix wid * Download image * Update tools * Fix lint * Fix error msg * Tool fixes * Reenable subagent stream * Subagent stream * Fix edit workflow hydration * Throw func execute error on error * Rewrite * Remove promptForToolApproval flag, fix workflow terminal logs * Fixes * Fix buffer * Fix * Fix claimed by * Cleanup v1 * Tool call loop * Fixes * Fixes * Fix subaget aborts * Fix diff * Add delegating state to subagents * Fix build * Fix sandbox * Fix lint --------- Co-authored-by: Waleed <walif6@gmail.com> Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com> Co-authored-by: Lakee Sivaraya <71339072+lakeesiv@users.noreply.github.com> Co-authored-by: Vikhyath Mondreti <vikhyath@simstudio.ai> Co-authored-by: Vikhyath Mondreti <vikhyathvikku@gmail.com> Co-authored-by: Theodore Li <teddy@zenobiapay.com>
223 lines
6.1 KiB
TypeScript
223 lines
6.1 KiB
TypeScript
/**
|
|
* @vitest-environment node
|
|
*/
|
|
import { NextRequest } from 'next/server'
|
|
import { beforeEach, describe, expect, it, vi } from 'vitest'
|
|
|
|
const {
|
|
authenticateCopilotRequestSessionOnly,
|
|
createBadRequestResponse,
|
|
createInternalServerErrorResponse,
|
|
createNotFoundResponse,
|
|
createRequestTracker,
|
|
createUnauthorizedResponse,
|
|
getAsyncToolCall,
|
|
getRunSegment,
|
|
upsertAsyncToolCall,
|
|
completeAsyncToolCall,
|
|
publishToolConfirmation,
|
|
} = vi.hoisted(() => ({
|
|
authenticateCopilotRequestSessionOnly: vi.fn(),
|
|
createBadRequestResponse: vi.fn((message: string) =>
|
|
Response.json({ error: message }, { status: 400 })
|
|
),
|
|
createInternalServerErrorResponse: vi.fn((message: string) =>
|
|
Response.json({ error: message }, { status: 500 })
|
|
),
|
|
createNotFoundResponse: vi.fn((message: string) =>
|
|
Response.json({ error: message }, { status: 404 })
|
|
),
|
|
createRequestTracker: vi.fn(() => ({ requestId: 'req-1', getDuration: () => 1 })),
|
|
createUnauthorizedResponse: vi.fn(() =>
|
|
Response.json({ error: 'Unauthorized' }, { status: 401 })
|
|
),
|
|
getAsyncToolCall: vi.fn(),
|
|
getRunSegment: vi.fn(),
|
|
upsertAsyncToolCall: vi.fn(),
|
|
completeAsyncToolCall: vi.fn(),
|
|
publishToolConfirmation: vi.fn(),
|
|
}))
|
|
|
|
vi.mock('@/lib/copilot/request-helpers', () => ({
|
|
authenticateCopilotRequestSessionOnly,
|
|
createBadRequestResponse,
|
|
createInternalServerErrorResponse,
|
|
createNotFoundResponse,
|
|
createRequestTracker,
|
|
createUnauthorizedResponse,
|
|
}))
|
|
|
|
vi.mock('@/lib/copilot/async-runs/repository', () => ({
|
|
getAsyncToolCall,
|
|
getRunSegment,
|
|
upsertAsyncToolCall,
|
|
completeAsyncToolCall,
|
|
}))
|
|
|
|
vi.mock('@/lib/copilot/orchestrator/persistence', () => ({
|
|
publishToolConfirmation,
|
|
}))
|
|
|
|
import { POST } from './route'
|
|
|
|
describe('Copilot Confirm API Route', () => {
|
|
const existingRow = {
|
|
toolCallId: 'tool-call-123',
|
|
runId: 'run-1',
|
|
checkpointId: 'checkpoint-1',
|
|
toolName: 'client_tool',
|
|
args: { foo: 'bar' },
|
|
}
|
|
|
|
beforeEach(() => {
|
|
vi.clearAllMocks()
|
|
authenticateCopilotRequestSessionOnly.mockResolvedValue({
|
|
userId: 'user-1',
|
|
isAuthenticated: true,
|
|
})
|
|
getAsyncToolCall.mockResolvedValue(existingRow)
|
|
getRunSegment.mockResolvedValue({ id: 'run-1', userId: 'user-1' })
|
|
upsertAsyncToolCall.mockResolvedValue(existingRow)
|
|
completeAsyncToolCall.mockResolvedValue(existingRow)
|
|
})
|
|
|
|
function createMockPostRequest(body: Record<string, unknown>): NextRequest {
|
|
return new NextRequest('http://localhost:3000/api/copilot/confirm', {
|
|
method: 'POST',
|
|
body: JSON.stringify(body),
|
|
headers: { 'Content-Type': 'application/json' },
|
|
})
|
|
}
|
|
|
|
it('returns 401 when the session is unauthenticated', async () => {
|
|
authenticateCopilotRequestSessionOnly.mockResolvedValue({
|
|
userId: null,
|
|
isAuthenticated: false,
|
|
})
|
|
|
|
const response = await POST(
|
|
createMockPostRequest({
|
|
toolCallId: 'tool-call-123',
|
|
status: 'success',
|
|
})
|
|
)
|
|
|
|
expect(response.status).toBe(401)
|
|
expect(await response.json()).toEqual({ error: 'Unauthorized' })
|
|
})
|
|
|
|
it('returns 404 when the tool call row does not exist', async () => {
|
|
getAsyncToolCall.mockResolvedValue(null)
|
|
|
|
const response = await POST(
|
|
createMockPostRequest({
|
|
toolCallId: 'missing-tool',
|
|
status: 'success',
|
|
})
|
|
)
|
|
|
|
expect(response.status).toBe(404)
|
|
expect(await response.json()).toEqual({ error: 'Tool call not found' })
|
|
})
|
|
|
|
it('returns 403 when the tool call belongs to a different user', async () => {
|
|
getRunSegment.mockResolvedValue({ id: 'run-1', userId: 'user-2' })
|
|
|
|
const response = await POST(
|
|
createMockPostRequest({
|
|
toolCallId: 'tool-call-123',
|
|
status: 'success',
|
|
})
|
|
)
|
|
|
|
expect(response.status).toBe(403)
|
|
expect(await response.json()).toEqual({ error: 'Forbidden' })
|
|
})
|
|
|
|
it('persists terminal confirmations through completeAsyncToolCall', async () => {
|
|
const response = await POST(
|
|
createMockPostRequest({
|
|
toolCallId: 'tool-call-123',
|
|
status: 'success',
|
|
message: 'Tool executed successfully',
|
|
data: { ok: true },
|
|
})
|
|
)
|
|
|
|
expect(response.status).toBe(200)
|
|
expect(completeAsyncToolCall).toHaveBeenCalledWith({
|
|
toolCallId: 'tool-call-123',
|
|
status: 'completed',
|
|
result: { ok: true },
|
|
error: null,
|
|
})
|
|
expect(upsertAsyncToolCall).not.toHaveBeenCalled()
|
|
expect(publishToolConfirmation).toHaveBeenCalledWith(
|
|
expect.objectContaining({
|
|
toolCallId: 'tool-call-123',
|
|
status: 'success',
|
|
data: { ok: true },
|
|
})
|
|
)
|
|
})
|
|
|
|
it('uses upsertAsyncToolCall for non-terminal confirmations', async () => {
|
|
const response = await POST(
|
|
createMockPostRequest({
|
|
toolCallId: 'tool-call-123',
|
|
status: 'accepted',
|
|
})
|
|
)
|
|
|
|
expect(response.status).toBe(200)
|
|
expect(upsertAsyncToolCall).toHaveBeenCalledWith({
|
|
runId: 'run-1',
|
|
checkpointId: 'checkpoint-1',
|
|
toolCallId: 'tool-call-123',
|
|
toolName: 'client_tool',
|
|
args: { foo: 'bar' },
|
|
status: 'pending',
|
|
})
|
|
expect(completeAsyncToolCall).not.toHaveBeenCalled()
|
|
})
|
|
|
|
it('publishes confirmation after a durable non-terminal update', async () => {
|
|
const response = await POST(
|
|
createMockPostRequest({
|
|
toolCallId: 'tool-call-123',
|
|
status: 'background',
|
|
})
|
|
)
|
|
|
|
expect(response.status).toBe(200)
|
|
expect(upsertAsyncToolCall).toHaveBeenCalledWith({
|
|
runId: 'run-1',
|
|
checkpointId: 'checkpoint-1',
|
|
toolCallId: 'tool-call-123',
|
|
toolName: 'client_tool',
|
|
args: { foo: 'bar' },
|
|
status: 'pending',
|
|
})
|
|
expect(publishToolConfirmation).toHaveBeenCalledWith(
|
|
expect.objectContaining({
|
|
toolCallId: 'tool-call-123',
|
|
status: 'background',
|
|
})
|
|
)
|
|
})
|
|
|
|
it('returns 400 when the durable write fails before publish', async () => {
|
|
completeAsyncToolCall.mockRejectedValueOnce(new Error('db down'))
|
|
|
|
const response = await POST(
|
|
createMockPostRequest({
|
|
toolCallId: 'tool-call-123',
|
|
status: 'success',
|
|
})
|
|
)
|
|
|
|
expect(response.status).toBe(400)
|
|
expect(publishToolConfirmation).not.toHaveBeenCalled()
|
|
})
|
|
})
|