numerus/test/expense.sql

-- Test expense
set client_min_messages to warning;
create extension if not exists pgtap;
reset client_min_messages;

begin;

select plan(67);

set search_path to numerus, auth, public;

select has_table('expense');
select has_pk('expense' );
select table_privs_are('expense', 'guest', array []::text[]);
select table_privs_are('expense', 'invoicer', array ['SELECT', 'INSERT', 'UPDATE', 'DELETE']);
select table_privs_are('expense', 'admin', array ['SELECT', 'INSERT', 'UPDATE', 'DELETE']);
select table_privs_are('expense', 'authenticator', array []::text[]);

select has_sequence('expense_expense_id_seq');
select sequence_privs_are('expense_expense_id_seq', 'guest', array[]::text[]);
select sequence_privs_are('expense_expense_id_seq', 'invoicer', array['USAGE']);
select sequence_privs_are('expense_expense_id_seq', 'admin', array['USAGE']);
select sequence_privs_are('expense_expense_id_seq', 'authenticator', array[]::text[]);

select has_column('expense', 'expense_id');
select col_is_pk('expense', 'expense_id');
select col_type_is('expense', 'expense_id', 'integer');
select col_not_null('expense', 'expense_id');
select col_has_default('expense', 'expense_id');
select col_default_is('expense', 'expense_id', 'nextval(''expense_expense_id_seq''::regclass)');

select has_column('expense', 'company_id');
select col_is_fk('expense', 'company_id');
select fk_ok('expense', 'company_id', 'company', 'company_id');
select col_type_is('expense', 'company_id', 'integer');
select col_not_null('expense', 'company_id');
select col_hasnt_default('expense', 'company_id');

select has_column('expense', 'slug');
select col_is_unique('expense', 'slug');
select col_type_is('expense', 'slug', 'uuid');
select col_not_null('expense', 'slug');
select col_has_default('expense', 'slug');
select col_default_is('expense', 'slug', 'gen_random_uuid()');

select has_column('expense', 'contact_id');
select col_is_fk('expense', 'contact_id');
select fk_ok('expense', 'contact_id', 'contact', 'contact_id');
select col_type_is('expense', 'contact_id', 'integer');
select col_not_null('expense', 'contact_id');
select col_hasnt_default('expense', 'contact_id');

select has_column('expense', 'invoice_number');
select col_type_is('expense', 'invoice_number', 'text');
select col_not_null('expense', 'invoice_number');
select col_hasnt_default('expense', 'invoice_number');

select has_column('expense', 'invoice_date');
select col_type_is('expense', 'invoice_date', 'date');
select col_not_null('expense', 'invoice_date');
select col_hasnt_default('expense', 'invoice_date');

select has_column('expense', 'amount');
select col_type_is('expense', 'amount', 'integer');
select col_not_null('expense', 'amount');
select col_hasnt_default('expense', 'amount');

select has_column('expense', 'currency_code');
select col_is_fk('expense', 'currency_code');
select fk_ok('expense', 'currency_code', 'currency', 'currency_code');
select col_type_is('expense', 'currency_code', 'currency_code');
select col_not_null('expense', 'currency_code');
select col_hasnt_default('expense', 'currency_code');

select has_column('expense', 'tags');
select col_type_is('expense', 'tags', 'tag_name[]');
select col_not_null('expense', 'tags');
select col_has_default('expense', 'tags');
select col_default_is('expense', 'tags', '{}');

select has_column('expense', 'created_at');
select col_type_is('expense', 'created_at', 'timestamp with time zone');
select col_not_null('expense', 'created_at');
select col_has_default('expense', 'created_at');
select col_default_is('expense', 'created_at', 'CURRENT_TIMESTAMP');


set client_min_messages to warning;
truncate expense cascade;
truncate contact cascade;
truncate company_user cascade;
truncate company cascade;
truncate payment_method cascade;
truncate auth."user" cascade;
reset client_min_messages;

insert into auth."user" (user_id, email, name, password, role, cookie, cookie_expires_at)
values (1, 'demo@tandem.blog', 'Demo', 'test', 'invoicer', '44facbb30d8a419dfd4bfbc44a4b5539d4970148dfc84bed0e', current_timestamp + interval '1 month')
     , (5, 'admin@tandem.blog', 'Demo', 'test', 'admin', '12af4c88b528c2ad4222e3740496ecbc58e76e26f087657524', current_timestamp + interval '1 month')
;

set constraints "company_default_payment_method_id_fkey" deferred;

insert into company (company_id, business_name, vatin, trade_name, phone, email, web, address, city, province, postal_code, country_code, currency_code, default_payment_method_id)
values (2, 'Company 2', 'XX123', '', '555-555-555', 'a@a', '', '', '', '', '', 'ES', 'EUR', 222)
     , (4, 'Company 4', 'XX234', '', '666-666-666', 'b@b', '', '', '', '', '', 'FR', 'USD', 444)
;

insert into payment_method (payment_method_id, company_id, name, instructions)
values (444, 4, 'cash', 'cash')
     , (222, 2, 'cash', 'cash')
;

set constraints "company_default_payment_method_id_fkey" immediate;

insert into company_user (company_id, user_id)
values (2, 1)
     , (4, 5)
;

insert into contact (contact_id, company_id, name)
values (6, 2, 'Contact 1')
     , (8, 4, 'Contact 2')
;

insert into expense (company_id, invoice_number, contact_id, invoice_date, amount, currency_code)
values (2, 'INV020001', 6, '2011-01-11', 111, 'EUR')
     , (4, 'INV040001', 8, '2022-02-22', 222, 'EUR')
;


prepare expense_data as
select company_id, invoice_number
from expense
order by company_id, invoice_number;

set role invoicer;
select is_empty('expense_data', 'Should show no data when cookie is not set yet');
reset role;

select set_cookie('44facbb30d8a419dfd4bfbc44a4b5539d4970148dfc84bed0e/demo@tandem.blog');
select bag_eq(
	'expense_data',
	$$ values (2, 'INV020001')
	$$,
	'Should only list expenses of the companies where demo@tandem.blog is user of'
);
reset role;

select set_cookie('12af4c88b528c2ad4222e3740496ecbc58e76e26f087657524/admin@tandem.blog');
select bag_eq(
	'expense_data',
	$$ values (4, 'INV040001')
	$$,
	'Should only list expenses of the companies where admin@tandem.blog is user of'
);
reset role;

select set_cookie('not-a-cookie');
select throws_ok(
	'expense_data',
	'42501', 'permission denied for table expense',
	'Should not allow select to guest users'
);
reset role;


select *
from finish();

rollback;
Add the expense relation 2023-04-30 14:06:16 +00:00			`-- Test expense`
			`set client_min_messages to warning;`
			`create extension if not exists pgtap;`
			`reset client_min_messages;`

			`begin;`

			`select plan(67);`

			`set search_path to numerus, auth, public;`

			`select has_table('expense');`
			`select has_pk('expense' );`
			`select table_privs_are('expense', 'guest', array []::text[]);`
			`select table_privs_are('expense', 'invoicer', array ['SELECT', 'INSERT', 'UPDATE', 'DELETE']);`
			`select table_privs_are('expense', 'admin', array ['SELECT', 'INSERT', 'UPDATE', 'DELETE']);`
			`select table_privs_are('expense', 'authenticator', array []::text[]);`

			`select has_sequence('expense_expense_id_seq');`
			`select sequence_privs_are('expense_expense_id_seq', 'guest', array[]::text[]);`
			`select sequence_privs_are('expense_expense_id_seq', 'invoicer', array['USAGE']);`
			`select sequence_privs_are('expense_expense_id_seq', 'admin', array['USAGE']);`
			`select sequence_privs_are('expense_expense_id_seq', 'authenticator', array[]::text[]);`

			`select has_column('expense', 'expense_id');`
			`select col_is_pk('expense', 'expense_id');`
			`select col_type_is('expense', 'expense_id', 'integer');`
			`select col_not_null('expense', 'expense_id');`
			`select col_has_default('expense', 'expense_id');`
			`select col_default_is('expense', 'expense_id', 'nextval(''expense_expense_id_seq''::regclass)');`

			`select has_column('expense', 'company_id');`
			`select col_is_fk('expense', 'company_id');`
			`select fk_ok('expense', 'company_id', 'company', 'company_id');`
			`select col_type_is('expense', 'company_id', 'integer');`
			`select col_not_null('expense', 'company_id');`
			`select col_hasnt_default('expense', 'company_id');`

			`select has_column('expense', 'slug');`
			`select col_is_unique('expense', 'slug');`
			`select col_type_is('expense', 'slug', 'uuid');`
			`select col_not_null('expense', 'slug');`
			`select col_has_default('expense', 'slug');`
			`select col_default_is('expense', 'slug', 'gen_random_uuid()');`

			`select has_column('expense', 'contact_id');`
			`select col_is_fk('expense', 'contact_id');`
			`select fk_ok('expense', 'contact_id', 'contact', 'contact_id');`
			`select col_type_is('expense', 'contact_id', 'integer');`
			`select col_not_null('expense', 'contact_id');`
			`select col_hasnt_default('expense', 'contact_id');`

			`select has_column('expense', 'invoice_number');`
			`select col_type_is('expense', 'invoice_number', 'text');`
			`select col_not_null('expense', 'invoice_number');`
			`select col_hasnt_default('expense', 'invoice_number');`

			`select has_column('expense', 'invoice_date');`
			`select col_type_is('expense', 'invoice_date', 'date');`
			`select col_not_null('expense', 'invoice_date');`
			`select col_hasnt_default('expense', 'invoice_date');`

			`select has_column('expense', 'amount');`
			`select col_type_is('expense', 'amount', 'integer');`
			`select col_not_null('expense', 'amount');`
			`select col_hasnt_default('expense', 'amount');`

			`select has_column('expense', 'currency_code');`
			`select col_is_fk('expense', 'currency_code');`
			`select fk_ok('expense', 'currency_code', 'currency', 'currency_code');`
			`select col_type_is('expense', 'currency_code', 'currency_code');`
			`select col_not_null('expense', 'currency_code');`
			`select col_hasnt_default('expense', 'currency_code');`

			`select has_column('expense', 'tags');`
			`select col_type_is('expense', 'tags', 'tag_name[]');`
			`select col_not_null('expense', 'tags');`
			`select col_has_default('expense', 'tags');`
			`select col_default_is('expense', 'tags', '{}');`

			`select has_column('expense', 'created_at');`
			`select col_type_is('expense', 'created_at', 'timestamp with time zone');`
			`select col_not_null('expense', 'created_at');`
			`select col_has_default('expense', 'created_at');`
Change CURRENT_TIMESTAMP parameter for col_default_is It turns out i have been years doing this wrong: you are supposed to pass that value as a text, like 'CURRENT_TIMESTAMP', not like the keyword so that it returns the current timestamp as a timestamptz. However, i have been doing it wrong because of a bug in previous versions of pgTAP[0], that did not take into account keywords such as CURRENT_TIMESTAMP or CURRENT_DATE and was comparing their actual values, not the names, therefore i thought that i misread the documentation. Only now have discovered this because Debian 12 upgraded pgTAP version to 1.2.0. [0]: https://github.com/theory/pgtap/issues/244 2023-06-15 11:55:15 +00:00			`select col_default_is('expense', 'created_at', 'CURRENT_TIMESTAMP');`
Add the expense relation 2023-04-30 14:06:16 +00:00

			`set client_min_messages to warning;`
			`truncate expense cascade;`
			`truncate contact cascade;`
			`truncate company_user cascade;`
			`truncate company cascade;`
			`truncate payment_method cascade;`
			`truncate auth."user" cascade;`
			`reset client_min_messages;`

			`insert into auth."user" (user_id, email, name, password, role, cookie, cookie_expires_at)`
			`values (1, 'demo@tandem.blog', 'Demo', 'test', 'invoicer', '44facbb30d8a419dfd4bfbc44a4b5539d4970148dfc84bed0e', current_timestamp + interval '1 month')`
			`, (5, 'admin@tandem.blog', 'Demo', 'test', 'admin', '12af4c88b528c2ad4222e3740496ecbc58e76e26f087657524', current_timestamp + interval '1 month')`
			`;`

			`set constraints "company_default_payment_method_id_fkey" deferred;`

			`insert into company (company_id, business_name, vatin, trade_name, phone, email, web, address, city, province, postal_code, country_code, currency_code, default_payment_method_id)`
			`values (2, 'Company 2', 'XX123', '', '555-555-555', 'a@a', '', '', '', '', '', 'ES', 'EUR', 222)`
			`, (4, 'Company 4', 'XX234', '', '666-666-666', 'b@b', '', '', '', '', '', 'FR', 'USD', 444)`
			`;`

			`insert into payment_method (payment_method_id, company_id, name, instructions)`
			`values (444, 4, 'cash', 'cash')`
			`, (222, 2, 'cash', 'cash')`
			`;`

			`set constraints "company_default_payment_method_id_fkey" immediate;`

			`insert into company_user (company_id, user_id)`
			`values (2, 1)`
			`, (4, 5)`
			`;`

Split contact relation into tax_details, phone, web, and email We need to have contacts with just a name: we need to assign freelancer’s quote as expense linked the government, but of course we do not have a phone or email for that “contact”, much less a VATIN or other tax details. It is also interesting for other expenses-only contacts to not have to input all tax details, as we may not need to invoice then, thus are useless for us, but sometimes it might be interesting to have them, “just in case”. Of course, i did not want to make nullable any of the tax details required to generate an invoice, otherwise we could allow illegal invoices. Therefore, that data had to go in a different relation, and invoice’s foreign key update to point to that relation, not just customer, or we would again be able to create invalid invoices. We replaced the contact’s trade name with just name, because we do not need _three_ names for a contact, but we _do_ need two: the one we use to refer to them and the business name for tax purposes. The new contact_phone, contact_web, and contact_email relations could be simply a nullable field, but i did not see the point, since there are not that many instances where i need any of this data. Now company.taxDetailsForm is no longer “the same as contactForm with some extra fields”, because i have to add a check whether the user needs to invoice the contact, to check that the required values are there. I have an additional problem with the contact form when not using JavaScript: i must set the required field to all tax details fields to avoid the “(optional)” suffix, and because they _are_ required when that checkbox is enabled, but i can not set them optional when the check is unchecked. My solution for now is to ignore the form validation, and later i will add some JavaScript that adds the validation again, so it will work in all cases. 2023-06-30 19:32:48 +00:00			`insert into contact (contact_id, company_id, name)`
			`values (6, 2, 'Contact 1')`
			`, (8, 4, 'Contact 2')`
Add the expense relation 2023-04-30 14:06:16 +00:00			`;`

			`insert into expense (company_id, invoice_number, contact_id, invoice_date, amount, currency_code)`
			`values (2, 'INV020001', 6, '2011-01-11', 111, 'EUR')`
			`, (4, 'INV040001', 8, '2022-02-22', 222, 'EUR')`
			`;`


			`prepare expense_data as`
			`select company_id, invoice_number`
			`from expense`
			`order by company_id, invoice_number;`

			`set role invoicer;`
			`select is_empty('expense_data', 'Should show no data when cookie is not set yet');`
			`reset role;`

			`select set_cookie('44facbb30d8a419dfd4bfbc44a4b5539d4970148dfc84bed0e/demo@tandem.blog');`
			`select bag_eq(`
			`'expense_data',`
			`$$ values (2, 'INV020001')`
			`$$,`
			`'Should only list expenses of the companies where demo@tandem.blog is user of'`
			`);`
			`reset role;`

			`select set_cookie('12af4c88b528c2ad4222e3740496ecbc58e76e26f087657524/admin@tandem.blog');`
			`select bag_eq(`
			`'expense_data',`
			`$$ values (4, 'INV040001')`
			`$$,`
			`'Should only list expenses of the companies where admin@tandem.blog is user of'`
			`);`
			`reset role;`

			`select set_cookie('not-a-cookie');`
			`select throws_ok(`
			`'expense_data',`
			`'42501', 'permission denied for table expense',`
			`'Should not allow select to guest users'`
			`);`
			`reset role;`


			`select *`
			`from finish();`

			`rollback;`