Skip to content

SerenityJS integration for Sharethrift #264

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
anya-m-patel wants to merge 181 commits into
base: main
Choose a base branch
from
Draft

SerenityJS integration for Sharethrift #264

anya-m-patel wants to merge 181 commits into from
+16,158 −1,298

Conversation

@anya-m-patel
Copy link
Contributor

@anya-m-patel anya-m-patel commented Nov 10, 2025
edited by sourcery-ai bot
Loading

Summary by Sourcery

Unify reservation request editing under a single permission, tighten domain validation around reservation and listing state transitions, and introduce SerenityJS- and Cucumber-based acceptance tests for core listing and reservation flows.

New Features:

  • Add SerenityJS-based acceptance test harness with actors, abilities, tasks, and questions to exercise listing creation and reservation request flows via Cucumber scenarios.
  • Introduce an AppealRequest union type covering user and listing appeal request entity references.

Bug Fixes:

  • Fix reservation request initialisation to set the initial state directly on props, avoiding incorrect state handling for newly created aggregates.

Enhancements:

  • Refine reservation request state transition logic into explicit guarded transition methods with centralised permission checks using a single canEditReservationRequest domain permission.
  • Simplify admin and personal user reservation request visas to use the consolidated edit permission and update corresponding feature files and unit tests.
  • Extend listing item domain permissions and visas with an explicit canReserveItemListing permission and clarify that reserved is a derived, not persisted, listing state.
  • Add state setter logic to ItemListing to route assignments through publish, pause, and cancel behaviours while ensuring invalid transitions raise domain errors.
  • Tidy appeal request repository and entity typings and formatting for listing and user appeal requests, including more precise generic parameter naming.

Build:

  • Add SerenityJS and Cucumber-related devDependencies to the domain package and configure the serenity test script to run cucumber-js with the shared cucumber.yaml.
  • Update third-party dependencies such as twilio and jsonwebtoken to newer patch versions.

Tests:

  • Replace fine-grained reservation request permissions in tests with a unified canEditReservationRequest flag and expand coverage for invalid transitions and close-request behaviours.
  • Add Cucumber feature files and step definitions for ReservationRequest and ItemListing aggregates, plus shared test fixtures for reusable personal user references.
  • Introduce acceptance-level features and screenplay tasks/questions to drive and verify listing creation and lifecycle scenarios through the domain.

Chores:

  • Broaden system passport permission spec to include reservation request permissions and remove SerenityJS-specific formatters from the Cucumber configuration.

@anya-m-patel anya-m-patel self-assigned this Nov 10, 2025
@sourcery-ai
Copy link
Contributor

sourcery-ai bot commented Nov 10, 2025
edited
Loading

Reviewer's Guide

Consolidates reservation request permissions into a single canEditReservationRequest flag, tightens reservation and listing state transition rules, and introduces SerenityJS/Cucumber acceptance tests and supporting fixtures for item listings and reservation requests, along with minor domain typing/formatting updates and test runner wiring.

Sequence diagram for ReservationRequest state update with unified edit permission

sequenceDiagram
  participant ClientCode
  participant ReservationRequest
  participant Visa

  ClientCode->>ReservationRequest: set state("ACCEPTED")
  activate ReservationRequest
  ReservationRequest->>ReservationRequest: state setter invoked
  alt isNew is false and target state is not REQUESTED
    ReservationRequest->>Visa: determineIf(canEditReservationRequest)
    Visa-->>ReservationRequest: boolean allowed
    alt allowed is false
      ReservationRequest-->>ClientCode: throw PermissionError
    else allowed is true
      ReservationRequest->>ReservationRequest: transitionToAccepted()
      ReservationRequest->>ReservationRequest: setStateValue("ACCEPTED")
      ReservationRequest-->>ClientCode: state updated
    end
  else isNew is true and target state is REQUESTED
    ReservationRequest->>ReservationRequest: transitionToRequested()
    ReservationRequest->>ReservationRequest: setStateValue("REQUESTED")
    ReservationRequest-->>ClientCode: state initialised
  end
  deactivate ReservationRequest
Loading

Class diagram for ReservationRequest, ItemListing, and updated visa permissions

classDiagram
  class ReservationRequestDomainPermissions {
    +boolean canEditReservationRequest
  }

  class ListingDomainPermissions {
    +boolean canCreateItemListing
    +boolean canEditItemListing
    +boolean canViewItemListing
    +boolean canPublishItemListing
    +boolean canUnpublishItemListing
    +boolean canReserveItemListing
  }

  class ReservationRequestProps {
    +string state
    +boolean closeRequestedBySharer
    +boolean closeRequestedByReserver
    +Date reservationPeriodStart
    +Date reservationPeriodEnd
  }

  class ReservationRequest {
    -ReservationRequestProps props
    -boolean isNew
    -visa
    +string get state()
    +void set state(value string)
    +boolean get closeRequestedBySharer()
    +void set closeRequestedBySharer(value boolean)
    +boolean get closeRequestedByReserver()
    +void set closeRequestedByReserver(value boolean)
    +Date get reservationPeriodStart()
    +Date get reservationPeriodEnd()
    -void ensureCanEditReservationRequest()
    -void transitionToAccepted()
    -void transitionToRejected()
    -void transitionToCancelled()
    -void transitionToClosed()
    -void transitionToRequested()
    -void setStateValue(stateValue string)
    -void ensureCanRequestClose()
  }

  class ItemListingProps {
    +string state
    +string title
    +string description
    +string category
    +string location
    +Date sharingPeriodStart
    +Date sharingPeriodEnd
    +string listingType
  }

  class ItemListing {
    -ItemListingProps props
    +string get state()
    +void set state(value string)
    +void publish()
    +void pause()
    +void cancel()
  }

  class AdminUserReservationRequestVisa {
    -admin
    -root
    +boolean determineIf(func ReservationRequestDomainPermissions) 
  }

  class PersonalUserReservationRequestVisa {
    -user
    -root
    +boolean determineIf(func ReservationRequestDomainPermissions)
  }

  class AdminUserListingItemListingVisa {
    -admin
    -root
    +boolean determineIf(func ListingDomainPermissions)
  }

  class PersonalUserListingItemListingVisa {
    -user
    -root
    +boolean determineIf(func ListingDomainPermissions)
  }

  ReservationRequest --> ReservationRequestProps
  ItemListing --> ItemListingProps

  AdminUserReservationRequestVisa ..> ReservationRequestDomainPermissions
  PersonalUserReservationRequestVisa ..> ReservationRequestDomainPermissions

  AdminUserListingItemListingVisa ..> ListingDomainPermissions
  PersonalUserListingItemListingVisa ..> ListingDomainPermissions

  ReservationRequest --> AdminUserReservationRequestVisa : uses visa
  ReservationRequest --> PersonalUserReservationRequestVisa : uses visa

  ItemListing --> AdminUserListingItemListingVisa : uses visa
  ItemListing --> PersonalUserListingItemListingVisa : uses visa
Loading

State diagram for ReservationRequest lifecycle with consolidated edit permission

stateDiagram-v2
  state "ReservationRequestLifecycle" as ReservationRequestLifecycle

  [*] --> Requested

  Requested --> Accepted: set state to ACCEPTED
  Requested --> Rejected: set state to REJECTED
  Requested --> Cancelled: set state to CANCELLED

  Rejected --> Cancelled: set state to CANCELLED

  Accepted --> Closed: set state to CLOSED

  note right of Accepted
    Closing requires closeRequestedBySharer or closeRequestedByReserver
    and canEditReservationRequest permission
  end note

  note right of Requested
    Transitions from non-initial states require canEditReservationRequest
  end note

  state Requested
  state Accepted
  state Rejected
  state Cancelled
  state Closed
Loading

State diagram for ItemListing state transitions with derived Reserved status

stateDiagram-v2
  state "ItemListingLifecycle" as ItemListingLifecycle

  [*] --> Drafted

  Drafted --> Published: publish

  Published --> Paused: pause
  Paused --> Published: publish

  Published --> Cancelled: cancel
  Paused --> Cancelled: cancel

  state Drafted
  state Published
  state Paused
  state Cancelled
Loading

File-Level Changes

Change Details Files
Refactor ReservationRequest aggregate to centralise permission checks and enforce valid state transitions.
  • Set initial reservation request state directly on props instead of via the state setter during construction.
  • Introduce a state setter that routes to dedicated transition methods (accepted, rejected, cancelled, closed, requested) and uses a common edit-permission guard for non-initial transitions.
  • Add ensureCanRequestClose helper reused by closeRequestedBySharer/closeRequestedByReserver setters, and remove old per-action permission helpers (accept/reject/cancel/close/request).
  • Ensure close transitions require at least one close request flag and that REQUESTED can only be set at creation time.
 packages/sthrift/domain/src/domain/contexts/reservation-request/reservation-request/reservation-request.ts
Replace granular reservation request permissions with a single canEditReservationRequest across visas, tests, and system passport.
  • Collapse canAcceptRequest/canRejectRequest/canCancelRequest/canCloseRequest into canEditReservationRequest in ReservationRequestDomainPermissions.
  • Update admin and personal user reservation request visas to compute and expose canEditReservationRequest from existing moderation and ownership rules.
  • Adjust reservation-request unit tests and Gherkin feature files to assert edit permission instead of specific action permissions.
  • Extend SystemPassportBase PermissionsSpec union to include ReservationRequestDomainPermissions so system passports can carry reservation permissions.
 packages/sthrift/domain/src/domain/contexts/reservation-request/reservation-request.domain-permissions.ts
packages/sthrift/domain/src/domain/iam/user/admin-user/contexts/admin-user.reservation-request.visa.ts
packages/sthrift/domain/src/domain/iam/user/admin-user/contexts/admin-user.reservation-request.visa.test.ts
packages/sthrift/domain/src/domain/iam/user/admin-user/contexts/features/admin-user.reservation-request.visa.feature
packages/sthrift/domain/src/domain/iam/user/personal-user/contexts/personal-user.reservation-request.visa.ts
packages/sthrift/domain/src/domain/iam/user/personal-user/contexts/personal-user.reservation-request.visa.test.ts
packages/sthrift/domain/src/domain/iam/user/personal-user/contexts/features/personal-user.reservation-request.visa.feature
packages/sthrift/domain/src/domain/contexts/reservation-request/reservation-request/reservation-request.test.ts
packages/sthrift/domain/src/domain/iam/system/system.passport-base.ts
Tighten ItemListing domain model around value objects, state transitions, and permissions.
  • Ensure initial listing state uses valueOf() from ListingState value objects when creating new instances.
  • Add a state setter that delegates to publish/pause/cancel and throws on invalid target states.
  • Remove redundant updatedAt comments and keep value-object usage consistent for core fields and images.
  • Clarify that Reserved is derived rather than stored in ItemListingProps and add canReserveItemListing permission to listing domain permissions and visas for admin and personal users.
 packages/sthrift/domain/src/domain/contexts/listing/item/item-listing.ts
packages/sthrift/domain/src/domain/contexts/listing/item/item-listing.entity.ts
packages/sthrift/domain/src/domain/contexts/listing/item/item-listing.value-objects.ts
packages/sthrift/domain/src/domain/contexts/listing/listing.domain-permissions.ts
packages/sthrift/domain/src/domain/iam/user/admin-user/contexts/admin-user.listing.item-listing.visa.ts
packages/sthrift/domain/src/domain/iam/user/personal-user/contexts/personal-user.listing.item-listing.visa.ts
packages/sthrift/domain/src/domain/iam/user/personal-user/contexts/personal-user.listing.visa.ts
Improve appeal request domain typing and introduce a shared union type for entity references.
  • Refine ListingAppealRequestRepository and UserAppealRequestRepository generics to use a clear PropType parameter and update return types accordingly.
  • Apply minor formatting/whitespace cleanups to appeal request entities and aggregates.
  • Export an AppealRequestEntityReference union covering user and listing appeal requests from the appeal-request context index.
 packages/sthrift/domain/src/domain/contexts/appeal-request/listing-appeal-request/listing-appeal-request.repository.ts
packages/sthrift/domain/src/domain/contexts/appeal-request/user-appeal-request/user-appeal-request.repository.ts
packages/sthrift/domain/src/domain/contexts/appeal-request/index.ts
packages/sthrift/domain/src/domain/contexts/appeal-request/listing-appeal-request/listing-appeal-request.entity.ts
packages/sthrift/domain/src/domain/contexts/appeal-request/listing-appeal-request/listing-appeal-request.ts
packages/sthrift/domain/src/domain/contexts/appeal-request/user-appeal-request/user-appeal-request.entity.ts
packages/sthrift/domain/src/domain/contexts/appeal-request/user-appeal-request/user-appeal-request.ts
Introduce SerenityJS/Cucumber acceptance testing infrastructure and domain-focused features for listings and reservation requests.
  • Add SerenityJS, Cucumber, Serenity BDD libraries as dev dependencies and configure cucumber-js to use the local cucumber.yaml, trimming obsolete Serenity formatters.
  • Create shared SerenityJS actor helper, fixtures for personal users, and abilities for creating and managing listings in-memory.
  • Define Gherkin features and step definitions for ReservationRequest and ItemListing aggregates that exercise creation, validation, state transitions, permissions, and audit fields using SerenityJS assertions.
  • Add higher-level create-listing domain feature plus screenplay tasks/questions to drive the GraphQL API (authenticate, create listings, query listings) for end-to-end style acceptance tests, and wire a dedicated test:serenity script.
 package.json
packages/sthrift/domain/package.json
packages/sthrift/domain/cucumber.yaml
packages/sthrift/domain/tests/acceptance/features/reservation-request.feature
packages/sthrift/domain/tests/acceptance/step-definitions/reservation-request.steps.ts
packages/sthrift/domain/tests/acceptance/features/item-listing.feature
packages/sthrift/domain/tests/acceptance/step-definitions/item-listing.steps.ts
packages/sthrift/domain/tests/acceptance/features/create-listing.feature
packages/sthrift/domain/tests/acceptance/step-definitions/create-listing.steps.ts
packages/sthrift/domain/tests/acceptance/screenplay/actors.ts
packages/sthrift/domain/tests/acceptance/screenplay/tasks/create-listing.ts
packages/sthrift/domain/tests/acceptance/screenplay/tasks/authenticate.ts
packages/sthrift/domain/tests/acceptance/screenplay/questions/listing-in-db.ts
packages/sthrift/domain/tests/acceptance/screenplay/questions/Listings.ts
packages/sthrift/domain/tests/acceptance/features/abilities/create-listing.ability.ts
packages/sthrift/domain/tests/acceptance/fixtures/test-user-fixtures.ts
packages/sthrift/domain/tests/acceptance/step-definitions/shared.steps.ts
Miscellaneous dependency and lockfile updates.
  • Bump Twilio and jsonwebtoken dependency versions in API and mock-payment-server packages.
  • Regenerate or add lockfiles to track new dependencies.
 apps/api/package.json
packages/cellix/mock-payment-server/package.json
pnpm-lock.yaml
package-lock.json

Assessment against linked issues

Issue Objective Addressed Explanation
#212 Integrate SerenityJS with Cucumber for the ShareThrift DDD application, including workflow/configuration and an example test structure.
#212 Implement at least two SerenityJS-based BDD scenarios that cover core listing and reservation flows, aligned with BRD/SRD examples or standard BDD practices.
#212 Provide and adapt SerenityJS Screenplay patterns (actors, abilities, tasks, questions) suitable for the ShareThrift domain, drawing from prior patterns such as the Owner Community repo.

Possibly linked issues

  • #Develop SerenityJS BDD Test Approach for DDD Application: PR delivers SerenityJS+Cucumber integration, BDD features, and screenplay-based tests for listings and reservation requests as requested.
Tips and commands

Interacting with Sourcery

  • Trigger a new review: Comment @sourcery-ai review on the pull request.
  • Continue discussions: Reply directly to Sourcery's review comments.
  • Generate a GitHub issue from a review comment: Ask Sourcery to create an
    issue from a review comment by replying to it. You can also reply to a
    review comment with @sourcery-ai issue to create an issue from it.
  • Generate a pull request title: Write @sourcery-ai anywhere in the pull
    request title to generate a title at any time. You can also comment
    @sourcery-ai title on the pull request to (re-)generate the title at any time.
  • Generate a pull request summary: Write @sourcery-ai summary anywhere in
    the pull request body to generate a PR summary at any time exactly where you
    want it. You can also comment @sourcery-ai summary on the pull request to
    (re-)generate the summary at any time.
  • Generate reviewer's guide: Comment @sourcery-ai guide on the pull
    request to (re-)generate the reviewer's guide at any time.
  • Resolve all Sourcery comments: Comment @sourcery-ai resolve on the
    pull request to resolve all Sourcery comments. Useful if you've already
    addressed all the comments and don't want to see them anymore.
  • Dismiss all Sourcery reviews: Comment @sourcery-ai dismiss on the pull
    request to dismiss all existing Sourcery reviews. Especially useful if you
    want to start fresh with a new review - don't forget to comment
    @sourcery-ai review to trigger a new review!

Customizing Your Experience

Access your dashboard to:

  • Enable or disable review features such as the Sourcery-generated pull request
    summary, the reviewer's guide, and others.
  • Change the review language.
  • Add, remove or edit custom review instructions.
  • Adjust other review settings.

Getting Help

sourcery-ai[bot]
sourcery-ai bot reviewed Nov 10, 2025
View reviewed changes
Copy link
Contributor

@sourcery-ai sourcery-ai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hey there - I've reviewed your changes - here's some feedback:

  • Remove leftover console.log debug statements from domain entities and replace them with a proper logger or remove entirely before merging.
  • Standardize error handling in the domain methods by using DomainSeedwork.PermissionError for all permission and state validation failures instead of mixing generic Error.
  • Consider splitting the large SerenityJS test scaffolding into a separate PR to isolate domain logic changes and improve overall reviewability.
Prompt for AI Agents 
Please address the comments from this code review:

## Overall Comments
- Remove leftover console.log debug statements from domain entities and replace them with a proper logger or remove entirely before merging.
- Standardize error handling in the domain methods by using DomainSeedwork.PermissionError for all permission and state validation failures instead of mixing generic Error.
- Consider splitting the large SerenityJS test scaffolding into a separate PR to isolate domain logic changes and improve overall reviewability.

## Individual Comments

### Comment 1
<location> `packages/sthrift/domain/tests/acceptance/step-definitions/item-listing.steps.ts:204-190` </location>
<code_context>
+    );
+});
+
+When('I create a new ItemListing aggregate using getNewInstance with isDraft true and empty title, description, category, and location', function () {
+    const actor = actorCalled('User');
+    const now = new Date();
+    const tomorrow = new Date();
+    tomorrow.setDate(tomorrow.getDate() + 1);
+    
+    actor.currentListing = ItemListing.getNewInstance<ItemListingProps>(
+        actor.personalUser,
+        {
</code_context>

<issue_to_address>
**suggestion (testing):** Missing test for reserving a listing.

Please add tests for reserve(): (1) reserving a published listing with permission, (2) preventing double reservation, (3) denying reservation without permission, and (4) verifying reservedBy is set.

Suggested implementation:

```typescript
});

// Test: Reserving a published listing with permission
When('I reserve a published ItemListing as an authorized user', function () {
    const actor = actorCalled('User');
    // Assume listing is published and actor has permission
    actor.currentListing.publish(actor.passport);
    actor.currentListing.reserve(actor.passport);
});

Then('the ItemListing should be reserved by me', function () {
    const actor = actorCalled('User');
    expect(actor.currentListing.reservedBy).toEqual(actor.personalUser.id);
});

// Test: Preventing double reservation
When('I try to reserve an already reserved ItemListing', function () {
    const actor = actorCalled('User');
    actor.currentListing.publish(actor.passport);
    actor.currentListing.reserve(actor.passport);
    actor.doubleReserveError = null;
    try {
        actor.currentListing.reserve(actor.passport);
    } catch (err) {
        actor.doubleReserveError = err;
    }
});

Then('I should get an error indicating the ItemListing is already reserved', function () {
    const actor = actorCalled('User');
    expect(actor.doubleReserveError).toBeDefined();
    expect(actor.doubleReserveError.message).toMatch(/already reserved/i);
});

// Test: Denying reservation without permission
When('I try to reserve a published ItemListing without permission', function () {
    const actor = actorCalled('User');
    actor.currentListing.publish(actor.passport);
    // Simulate a passport without permission
    const unauthorizedPassport = { ...actor.passport, canReserve: false };
    actor.noPermissionReserveError = null;
    try {
        actor.currentListing.reserve(unauthorizedPassport);
    } catch (err) {
        actor.noPermissionReserveError = err;
    }
});

Then('I should get an error indicating I do not have permission to reserve', function () {
    const actor = actorCalled('User');
    expect(actor.noPermissionReserveError).toBeDefined();
    expect(actor.noPermissionReserveError.message).toMatch(/permission/i);
});

// Test: Verifying reservedBy is set
Then('the reservedBy field of the ItemListing should be set to my user id', function () {
    const actor = actorCalled('User');
    expect(actor.currentListing.reservedBy).toEqual(actor.personalUser.id);
});

```

- Ensure that the `reserve` method on `ItemListing` throws appropriate errors for double reservation and permission denial.
- The passport object and permission logic may need to be adjusted to match your actual implementation.
- You may need to import or define `expect` and `actorCalled` if not already present in the file.
</issue_to_address>

### Comment 2
<location> `packages/sthrift/domain/tests/acceptance/step-definitions/item-listing.steps.ts:508-512` </location>
<code_context>
+    );
+});
+
+Then('the listing\'s images should be [{string}, {string}]', function (image1: string, image2: string) {
+    const actor = actorCalled('User');
+    const listing = actor.currentListing;
+    if (!listing) {
+        throw new Error('No listing was created');
+    }
+    actor.attemptsTo(
+        Ensure.that(listing.images, equals([image1, image2]))
+    );
</code_context>

<issue_to_address>
**suggestion (testing):** No test for reservedBy property getter.

Please add tests for the reservedBy getter to confirm it returns the correct user after reservation and null when not reserved.

```suggestion
    actor.attemptsTo(
        Ensure.that(listing.sharingPeriodStart, equals(new Date('2025-10-10'))),
        Ensure.that(listing.sharingPeriodEnd, equals(new Date('2025-12-10')))
    );
});

Then('the listing\'s reservedBy should be null', function () {
    const actor = actorCalled('User');
    const listing = actor.currentListing;
    if (!listing) {
        throw new Error('No listing was created');
    }
    actor.attemptsTo(
        Ensure.that(listing.reservedBy, equals(null))
    );
});

When('I reserve the listing as another user', function () {
    const actor = actorCalled('User');
    const otherUser = actorCalled('OtherUser').personalUser;
    const listing = actor.currentListing;
    if (!listing) {
        throw new Error('No listing was created');
    }
    listing.reserve(otherUser);
    actor.reservedByUser = otherUser;
});

Then('the listing\'s reservedBy should be the reserving user', function () {
    const actor = actorCalled('User');
    const listing = actor.currentListing;
    if (!listing) {
        throw new Error('No listing was created');
    }
    const reservedByUser = actor.reservedByUser;
    if (!reservedByUser) {
        throw new Error('No user reserved the listing');
    }
    actor.attemptsTo(
        Ensure.that(listing.reservedBy, equals(reservedByUser))
    );
});
```
</issue_to_address>

### Comment 3
<location> `packages/sthrift/domain/tests/acceptance/step-definitions/item-listing.steps.ts:159-165` </location>
<code_context>
+    };
+});
+
+Given('an ItemListing aggregate with permission to update item listing', function () {
+    const actor = actorCalled('User');
+    const passport = new SystemPassport({ canUpdateItemListing: true });
+    if (actor.currentListing) {
+        // Create a new instance with the updated passport
+        actor.currentListing = new ItemListing(actor.currentListing.getEntityReference(), passport);
+        actor.originalUpdatedAt = actor.currentListing.updatedAt;
+    }
+});
</code_context>

<issue_to_address>
**suggestion (testing):** No negative test for reserving non-published listings.

Please add tests to ensure reserve() throws an error when called on draft, expired, or blocked listings.

Suggested implementation:

```typescript
Given('an ItemListing aggregate with permission to update item listing', function () {
    const actor = actorCalled('User');
    const passport = new SystemPassport({ canUpdateItemListing: true });
    if (actor.currentListing) {
        // Create a new instance with the updated passport
        actor.currentListing = new ItemListing(actor.currentListing.getEntityReference(), passport);
        actor.originalUpdatedAt = actor.currentListing.updatedAt;
    }
});

// Negative test: reserve() throws on draft listing
Then('reserving a draft listing throws an error', function () {
    const actor = actorCalled('User');
    const passport = new SystemPassport({ canUpdateItemListing: true });
    // Create a draft listing
    const draftListing = new ItemListing({ id: 'draft-id', status: 'draft' }, passport);
    expect(() => draftListing.reserve(actor.passport)).toThrow();
});

// Negative test: reserve() throws on expired listing
Then('reserving an expired listing throws an error', function () {
    const actor = actorCalled('User');
    const passport = new SystemPassport({ canUpdateItemListing: true });
    // Create an expired listing
    const expiredListing = new ItemListing({ id: 'expired-id', status: 'expired' }, passport);
    expect(() => expiredListing.reserve(actor.passport)).toThrow();
});

// Negative test: reserve() throws on blocked listing
Then('reserving a blocked listing throws an error', function () {
    const actor = actorCalled('User');
    const passport = new SystemPassport({ canUpdateItemListing: true });
    // Create a blocked listing
    const blockedListing = new ItemListing({ id: 'blocked-id', status: 'blocked' }, passport);
    expect(() => blockedListing.reserve(actor.passport)).toThrow();
});

```

- Ensure that the ItemListing constructor and the `reserve()` method accept the parameters as shown, and that the status property is used to determine listing state.
- If your test framework uses a different assertion style, adjust `expect(...).toThrow()` accordingly.
- You may need to import or mock ItemListing and SystemPassport if not already present in the test file.
</issue_to_address>

### Comment 4
<location> `packages/sthrift/domain/tests/acceptance/step-definitions/reservation-request.steps.ts:512-527` </location>
<code_context>
+    }
+});
+
+When('I set state to {string}', function (state: string) {
+    const actor = actorCalled('User');
+    try {
+        if (actor.currentReservationRequest) {
+            const stateValue = state === 'REQUESTED' ? ReservationRequestStates.REQUESTED :
+                            state === 'ACCEPTED' ? ReservationRequestStates.ACCEPTED :
+                            state === 'REJECTED' ? ReservationRequestStates.REJECTED :
+                            state === 'CANCELLED' ? ReservationRequestStates.CANCELLED :
+                            state === 'CLOSED' ? ReservationRequestStates.CLOSED :
+                            state;
+            actor.currentReservationRequest.state = stateValue;
+        }
+    } catch (e) {
+        actor.error = e as Error;
+    }
+});
</code_context>

<issue_to_address>
**suggestion (testing):** No test for setting state to REQUESTED after creation.

Please add a test that verifies a PermissionError is raised when attempting to set the state to REQUESTED on an existing reservation.

```suggestion
When('I set state to {string}', function (state: string) {
    const actor = actorCalled('User');
    try {
        if (actor.currentReservationRequest) {
            const stateValue = state === 'REQUESTED' ? ReservationRequestStates.REQUESTED :
                            state === 'ACCEPTED' ? ReservationRequestStates.ACCEPTED :
                            state === 'REJECTED' ? ReservationRequestStates.REJECTED :
                            state === 'CANCELLED' ? ReservationRequestStates.CANCELLED :
                            state === 'CLOSED' ? ReservationRequestStates.CLOSED :
                            state;
            actor.currentReservationRequest.state = stateValue;
        }
    } catch (e) {
        actor.error = e as Error;
    }
});

// Test: Setting state to REQUESTED after creation should raise PermissionError
Then('setting state to REQUESTED on an existing reservation should raise a PermissionError', function () {
    const actor = actorCalled('User');
    let errorCaught = null;
    try {
        if (actor.currentReservationRequest) {
            actor.currentReservationRequest.state = ReservationRequestStates.REQUESTED;
        }
    } catch (e) {
        errorCaught = e;
    }
    if (!errorCaught || errorCaught.name !== 'PermissionError') {
        throw new Error('PermissionError was not raised when setting state to REQUESTED on an existing reservation');
    }
});
```
</issue_to_address>
Sourcery is free for open source - if you like our reviews please consider sharing them ✨
Help me be more useful! Please click 👍 or 👎 on each comment and I'll use the feedback to improve your reviews.

kishor-gupta
kishor-gupta reviewed Nov 12, 2025
View reviewed changes
@kishor-gupta kishor-gupta linked an issue Nov 12, 2025 that may be closed by this pull request
Develop SerenityJS BDD Test Approach for DDD Application #212
Open
Copilot AI reviewed Jan 7, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 47 out of 55 changed files in this pull request and generated 9 comments.

Files not reviewed (1)
  • pnpm-lock.yaml: Language not supported

anya-m-patel and others added 5 commits January 7, 2026 13:21
@anya-m-patel
Fix misleading comments in cucumber.yaml
7206d9b 
Updated comments to accurately reflect current state:
- Line 2-3: Changed from 'uses Serenity.js Screenplay Pattern' to
  'Currently uses standard Cucumber' with future enhancement note
- Line 8-9: Simplified to clarify Screenplay pattern is planned for future PR
@anya-m-patel
Fix misleading biome-ignore comments
3a4a54a 
Updated biome-ignore comment justifications to accurately reflect their purpose:
- Changed from 'TypeScript requires bracket notation for index signatures (TS4111)'
- To 'Suppressing Biome lint rule to use dynamic property access
@anya-m-patel
Update packages/sthrift/domain/package.json
ae362b9 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
@anya-m-patel
Update packages/sthrift/domain/src/domain/contexts/listing/item/item-…
6e7713b 
…listing.entity.ts

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
@anya-m-patel
Update .nvmrc
fafcf6d 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
@anya-m-patel anya-m-patel requested a review from Copilot January 7, 2026 18:28
Copilot AI reviewed Jan 7, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 47 out of 55 changed files in this pull request and generated 1 comment.

Files not reviewed (1)
  • pnpm-lock.yaml: Language not supported

@anya-m-patel
implement Serenity.js Screenplay Pattern for acceptance tests
9e40a27 
- Add full Screenplay Pattern architecture (Abilities, Tasks, Questions, Actors)
- Create CreateListingAbility with mock implementation
- Implement ListingWasCreated and ListingIsDraft questions
- Add CreateDraftListing task
- Update step definitions to use Serenity.js APIs (actorCalled, attemptsTo, Ensure.that)
- Configure Serenity.js with Cast for automatic actor ability assignment
- Upgrade Cucumber to 12.2.0 (required by Serenity.js)
- Add test:serenity and test:serenity:report scripts
- Document known limitation with Serenity BDD enhanced reports (ESM compatibility)
- All tests passing: 3010 unit tests + 1 acceptance test scenario (4 steps)
@anya-m-patel
chore: update pnpm-lock.yaml after removing ts-node dependency
c15df82
@anya-m-patel
resolve Biome linting errors in Serenity tests
bf4f992 
- Remove unused import (Answerable)
- Convert async functions to sync where no await is used
- Replace function expressions with arrow functions
- Replace 'any' types with proper type aliases (MockUow, MockUser, MockPassport, MockActor)
- Use explicit types instead of 'as any'
- All tests still passing
@anya-m-patel
Merge remote-tracking branch 'origin/main' into serenityjs-test-setup
f2db98f 
# Conflicts:
#	pnpm-lock.yaml
#	pnpm-workspace.yaml
#	turbo.json
@anya-m-patel
fix: exclude Serenity.js acceptance test files from SonarCloud covera…
70c0acf 
…ge analysis
@anya-m-patel
mark acceptance test files as test code in SonarCloud
b9f5a35 
- Add **/tests/acceptance/**/*.ts to sonar.test.inclusions
- This ensures all Serenity.js acceptance test infrastructure is treated as test code
- Removes these files from source coverage requirements
@anya-m-patel
update test:serenity:open to open Cucumber report instead of Serenity…
48a631d 
… index
@anya-m-patel
fix: exclude acceptance tests from SonarCloud analysis
11e3b00 
Add **/tests/acceptance/** to both sonar.exclusions and sonar.coverage.exclusions to prevent acceptance test infrastructure from being analyzed as source code requiring coverage
@anya-m-patel
exclude infrastructure files from coverage analysis
6005169 
- Exclude index.ts files (barrel exports with minimal logic)
- Exclude domain-permissions.ts files (declarative permission config)
- Exclude value-objects.ts files (data structures)
@anya-m-patel
fix: exclude visa and appeal-request entity files from coverage
796e227 
- Exclude all visa files (permission checking logic)
- Exclude appeal-request entity files (merged from main branch)
- Exclude system passport base (infrastructure)
@anya-m-patel
revert: remove exclusions that decreased coverage
18ac958 
Reverting to baseline - excluding well-tested files made coverage worse (76.1% -> 74.8%)
@anya-m-patel
test: add coverage for AdminUser sharer in item-listing
5cf1e9a 
- Add test scenario for AdminUser branch in sharer getter
- Add forAdminUser to passport mock
- Covers previously uncovered polymorphic user instantiation
- 276 tests now passing (was 270)
@anya-m-patel
fix: ignore Serenity target directory from linting
7af2e13 
- Add .biomeignore to exclude target, dist, build directories
- Enable useIgnoreFile in biome config
- Fix type assertion in AdminUser test (as unknown as instead of as any)
- Lint now passes successfully
@anya-m-patel
add coverage for uncovered item-listing getters and methods
6a168b2 
- Add tests for createdAt, schemaVersion, sharingHistory, reports, images getters
- Add test for displayLocation getter
- Add test for isActive getter
- Add tests for reinstate() method (with and without permission)
- Add test for getEntityReference() method
- 306 tests now passing (was 276, +30 tests)
- Should improve item-listing.ts coverage from 60.7% toward 80%
@anya-m-patel
integrate Serenity BDD reports with Docusaurus deployment
fd1bd9c 
- Add build pipeline step to copy Serenity reports from packages/sthrift/domain/target/site/serenity/
  to apps/docs/static/serenity-reports/ after test report generation
- Configure Docusaurus navbar with 'Test Reports' link pointing to /serenity-reports/cucumber-report.html
- Use HTML-type navbar item to bypass Docusaurus broken link checker for static files
- Add apps/docs/static/serenity-reports/ to .gitignore as these are build artifacts
- Reports will be automatically included in Docusaurus deployment and accessible at
  https://developers.sharethrift.com/serenity-reports/cucumber-report.html

This addresses PR feedback to make Serenity test reports viewable online and
consistently updated through the CI/CD pipeline.
@anya-m-patel
upgrade react-router-dom to 7.12.0 to resolve security vulnerabilities
c6a3162 
- Upgrade react-router-dom from ^7.8.0 to ^7.12.0
- Fixes CVE-2025-21893: Server-Side Rendering (SSR) security issue
- Fixes GHSA-2w69-qvjg-hvjx: SSR XSS in ScrollRestoration
- Fixes GHSA-8v8x-cx79-35w7: SSR XSS in ScrollRestoration
- Resolves 5 Snyk vulnerabilities (3 moderate, 2 high)

The patched version (>=7.12.0) addresses XSS vulnerabilities in React Router's
server-side rendering components.
@anya-m-patel
fix: upgrade react-router-dom in ui-components to 7.12.0
c79a4ed 
- Upgrade react-router-dom from ^7.8.2 to ^7.12.0 in @sthrift/ui-components
- Fixes remaining react-router vulnerabilities in packages/sthrift/ui-components
- Completes security patch for all packages affected by CVE-2025-21893
- All react-router-dom dependencies now on patched version >=7.12.0
@anya-m-patel
fix docusaurus build issue
6f41501
@anya-m-patel
fix: remove accidentally tracked Serenity report HTML and update giti…
881be99 
…gnore

- Remove apps/docs/apps/docs/static/serenity-reports/cucumber-report.html from tracking
- Update .gitignore to cover both possible Serenity report paths
- Fixes SonarCloud accessibility contrast issue in generated artifact
@anya-m-patel
fix: convert Storybook main.ts configs from CommonJS to ESM
460a381 
- Replace require.resolve() with import.meta.resolve() in all .storybook/main.ts files
- Add fileURLToPath import for proper URL to path conversion
- Fixes 'require is not defined in ES module scope' error with Storybook 10.x
- Required for Storybook 10.x ESM compatibility
@anya-m-patel
chore: upgrade Storybook from 9.1.17 to 10.1.11
2a620e3 
- Upgrade @storybook/* packages to 10.1.11 for Vitest 4.x compatibility
- Upgrade @chromatic-com/storybook to latest
- Fixes 'Vitest failed to find the runner' error caused by incompatibility
- Addresses test failures in UI packages
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sourcery-ai sourcery-ai[bot] sourcery-ai[bot] left review comments

@kishor-gupta kishor-gupta kishor-gupta left review comments

@jasonmorais jasonmorais jasonmorais left review comments

Copilot code review Copilot Copilot left review comments

@nnoce14 nnoce14 Awaiting requested review from nnoce14 nnoce14 is a code owner

+1 more reviewer

@github-code-quality github-code-quality[bot] github-code-quality[bot] left review comments

Reviewers whose approvals may not affect merge requirements

Requested changes must be addressed to merge this pull request.

Assignees

@anya-m-patel anya-m-patel

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Develop SerenityJS BDD Test Approach for DDD Application

7 participants

@anya-m-patel @gidich @SourceryAI @nnoce14 @kishor-gupta @jasonmorais