improvement(tests): speed up unit tests by eliminating vi.resetModules anti-pattern

- convert 51 test files from vi.resetModules/vi.doMock/dynamic import to vi.hoisted/vi.mock/static import
- add global @sim/db mock to vitest.setup.ts
- switch 4 test files from jsdom to node environment
- remove all vi.importActual calls that loaded heavy modules (200+ block files)
- remove slow mockConsoleLogger/mockAuth/setupCommonApiMocks helpers
- reduce real setTimeout delays in engine tests
- mock heavy transitive deps in diff-engine test

test execution time: 34s -> 9s (3.9x faster)
environment time: 2.5s -> 0.6s (4x faster)

Author: waleedlatif1

apps/sim/app/api/auth/[...all]/route.test.ts

@@ -1,7 +1,7 @@
 /**
  * @vitest-environment node
  */
-import { createMockRequest, setupCommonApiMocks } from '@sim/testing'
+import { createMockRequest } from '@sim/testing'
 import { beforeEach, describe, expect, it, vi } from 'vitest'
 
 const handlerMocks = vi.hoisted(() => ({
@@ -14,6 +14,7 @@ const handlerMocks = vi.hoisted(() => ({
       session: { id: 'anon-session' },
     },
   })),
+  isAuthDisabled: false,
 }))
 
 vi.mock('better-auth/next-js', () => ({
@@ -32,26 +33,29 @@ vi.mock('@/lib/auth/anonymous', () => ({
   createAnonymousGetSessionResponse: handlerMocks.createAnonymousGetSessionResponse,
 }))
 
+vi.mock('@/lib/core/config/feature-flags', () => ({
+  get isAuthDisabled() {
+    return handlerMocks.isAuthDisabled
+  },
+}))
+
+import { GET } from '@/app/api/auth/[...all]/route'
+
 describe('auth catch-all route (DISABLE_AUTH get-session)', () => {
   beforeEach(() => {
-    vi.resetModules()
-    setupCommonApiMocks()
-    handlerMocks.betterAuthGET.mockReset()
-    handlerMocks.betterAuthPOST.mockReset()
-    handlerMocks.ensureAnonymousUserExists.mockReset()
-    handlerMocks.createAnonymousGetSessionResponse.mockClear()
+    vi.clearAllMocks()
+    handlerMocks.isAuthDisabled = false
   })
 
   it('returns anonymous session in better-auth response envelope when auth is disabled', async () => {
-    vi.doMock('@/lib/core/config/feature-flags', () => ({ isAuthDisabled: true }))
+    handlerMocks.isAuthDisabled = true
 
     const req = createMockRequest(
       'GET',
       undefined,
       {},
       'http://localhost:3000/api/auth/get-session'
     )
-    const { GET } = await import('@/app/api/auth/[...all]/route')
 
     const res = await GET(req as any)
     const json = await res.json()
@@ -67,10 +71,11 @@ describe('auth catch-all route (DISABLE_AUTH get-session)', () => {
   })
 
   it('delegates to better-auth handler when auth is enabled', async () => {
-    vi.doMock('@/lib/core/config/feature-flags', () => ({ isAuthDisabled: false }))
+    handlerMocks.isAuthDisabled = false
 
+    const { NextResponse } = await import('next/server')
     handlerMocks.betterAuthGET.mockResolvedValueOnce(
-      new (await import('next/server')).NextResponse(JSON.stringify({ data: { ok: true } }), {
+      new NextResponse(JSON.stringify({ data: { ok: true } }), {
         headers: { 'content-type': 'application/json' },
       }) as any
     )
@@ -81,7 +86,6 @@ describe('auth catch-all route (DISABLE_AUTH get-session)', () => {
       {},
       'http://localhost:3000/api/auth/get-session'
     )
-    const { GET } = await import('@/app/api/auth/[...all]/route')
 
     const res = await GET(req as any)
     const json = await res.json()

apps/sim/app/api/auth/forget-password/route.test.ts

@@ -3,91 +3,64 @@
  *
  * @vitest-environment node
  */
-import {
-  createMockRequest,
-  mockConsoleLogger,
-  mockCryptoUuid,
-  mockDrizzleOrm,
-  mockUuid,
-  setupCommonApiMocks,
-} from '@sim/testing'
+import { createMockRequest } from '@sim/testing'
 import { afterEach, beforeEach, describe, expect, it, vi } from 'vitest'
 
-vi.mock('@/lib/core/utils/urls', () => ({
-  getBaseUrl: vi.fn(() => 'https://app.example.com'),
-}))
-
-/** Setup auth API mocks for testing authentication routes */
-function setupAuthApiMocks(
-  options: {
-    operations?: {
-      forgetPassword?: { success?: boolean; error?: string }
-      resetPassword?: { success?: boolean; error?: string }
-    }
-  } = {}
-) {
-  setupCommonApiMocks()
-  mockUuid()
-  mockCryptoUuid()
-  mockConsoleLogger()
-  mockDrizzleOrm()
-
-  const { operations = {} } = options
-  const defaultOperations = {
-    forgetPassword: { success: true, error: 'Forget password error', ...operations.forgetPassword },
-    resetPassword: { success: true, error: 'Reset password error', ...operations.resetPassword },
+const { mockForgetPassword, mockLogger } = vi.hoisted(() => {
+  const logger = {
+    info: vi.fn(),
+    warn: vi.fn(),
+    error: vi.fn(),
+    debug: vi.fn(),
+    trace: vi.fn(),
+    fatal: vi.fn(),
+    child: vi.fn(),
   }
-
-  const createAuthMethod = (config: { success?: boolean; error?: string }) => {
-    return vi.fn().mockImplementation(() => {
-      if (config.success) {
-        return Promise.resolve()
-      }
-      return Promise.reject(new Error(config.error))
-    })
+  return {
+    mockForgetPassword: vi.fn(),
+    mockLogger: logger,
   }
+})
 
-  vi.doMock('@/lib/auth', () => ({
-    auth: {
-      api: {
-        forgetPassword: createAuthMethod(defaultOperations.forgetPassword),
-        resetPassword: createAuthMethod(defaultOperations.resetPassword),
-      },
+vi.mock('@/lib/core/utils/urls', () => ({
+  getBaseUrl: vi.fn(() => 'https://app.example.com'),
+}))
+vi.mock('@/lib/auth', () => ({
+  auth: {
+    api: {
+      forgetPassword: mockForgetPassword,
     },
-  }))
-}
+  },
+}))
+vi.mock('@sim/logger', () => ({
+  createLogger: vi.fn().mockReturnValue(mockLogger),
+}))
+
+import { POST } from '@/app/api/auth/forget-password/route'
 
 describe('Forget Password API Route', () => {
   beforeEach(() => {
-    vi.resetModules()
+    vi.clearAllMocks()
+    mockForgetPassword.mockResolvedValue(undefined)
   })
 
   afterEach(() => {
     vi.clearAllMocks()
   })
 
   it('should send password reset email successfully with same-origin redirectTo', async () => {
-    setupAuthApiMocks({
-      operations: {
-        forgetPassword: { success: true },
-      },
-    })
-
     const req = createMockRequest('POST', {
       email: 'test@example.com',
       redirectTo: 'https://app.example.com/reset',
     })
 
-    const { POST } = await import('@/app/api/auth/forget-password/route')
-
     const response = await POST(req)
     const data = await response.json()
 
     expect(response.status).toBe(200)
     expect(data.success).toBe(true)
 
-    const auth = await import('@/lib/auth')
-    expect(auth.auth.api.forgetPassword).toHaveBeenCalledWith({
+    expect(mockForgetPassword).toHaveBeenCalledWith({
       body: {
         email: 'test@example.com',
         redirectTo: 'https://app.example.com/reset',
@@ -97,50 +70,32 @@ describe('Forget Password API Route', () => {
   })
 
   it('should reject external redirectTo URL', async () => {
-    setupAuthApiMocks({
-      operations: {
-        forgetPassword: { success: true },
-      },
-    })
-
     const req = createMockRequest('POST', {
       email: 'test@example.com',
       redirectTo: 'https://evil.com/phishing',
     })
 
-    const { POST } = await import('@/app/api/auth/forget-password/route')
-
     const response = await POST(req)
     const data = await response.json()
 
     expect(response.status).toBe(400)
     expect(data.message).toBe('Redirect URL must be a valid same-origin URL')
 
-    const auth = await import('@/lib/auth')
-    expect(auth.auth.api.forgetPassword).not.toHaveBeenCalled()
+    expect(mockForgetPassword).not.toHaveBeenCalled()
   })
 
   it('should send password reset email without redirectTo', async () => {
-    setupAuthApiMocks({
-      operations: {
-        forgetPassword: { success: true },
-      },
-    })
-
     const req = createMockRequest('POST', {
       email: 'test@example.com',
     })
 
-    const { POST } = await import('@/app/api/auth/forget-password/route')
-
     const response = await POST(req)
     const data = await response.json()
 
     expect(response.status).toBe(200)
     expect(data.success).toBe(true)
 
-    const auth = await import('@/lib/auth')
-    expect(auth.auth.api.forgetPassword).toHaveBeenCalledWith({
+    expect(mockForgetPassword).toHaveBeenCalledWith({
       body: {
         email: 'test@example.com',
         redirectTo: undefined,
@@ -150,97 +105,64 @@ describe('Forget Password API Route', () => {
   })
 
   it('should handle missing email', async () => {
-    setupAuthApiMocks()
-
     const req = createMockRequest('POST', {})
 
-    const { POST } = await import('@/app/api/auth/forget-password/route')
-
     const response = await POST(req)
     const data = await response.json()
 
     expect(response.status).toBe(400)
     expect(data.message).toBe('Email is required')
 
-    const auth = await import('@/lib/auth')
-    expect(auth.auth.api.forgetPassword).not.toHaveBeenCalled()
+    expect(mockForgetPassword).not.toHaveBeenCalled()
   })
 
   it('should handle empty email', async () => {
-    setupAuthApiMocks()
-
     const req = createMockRequest('POST', {
       email: '',
     })
 
-    const { POST } = await import('@/app/api/auth/forget-password/route')
-
     const response = await POST(req)
     const data = await response.json()
 
     expect(response.status).toBe(400)
     expect(data.message).toBe('Please provide a valid email address')
 
-    const auth = await import('@/lib/auth')
-    expect(auth.auth.api.forgetPassword).not.toHaveBeenCalled()
+    expect(mockForgetPassword).not.toHaveBeenCalled()
   })
 
   it('should handle auth service error with message', async () => {
     const errorMessage = 'User not found'
 
-    setupAuthApiMocks({
-      operations: {
-        forgetPassword: {
-          success: false,
-          error: errorMessage,
-        },
-      },
-    })
+    mockForgetPassword.mockRejectedValue(new Error(errorMessage))
 
     const req = createMockRequest('POST', {
       email: 'nonexistent@example.com',
     })
 
-    const { POST } = await import('@/app/api/auth/forget-password/route')
-
     const response = await POST(req)
     const data = await response.json()
 
     expect(response.status).toBe(500)
     expect(data.message).toBe(errorMessage)
 
-    const logger = await import('@sim/logger')
-    const mockLogger = logger.createLogger('ForgetPasswordTest')
     expect(mockLogger.error).toHaveBeenCalledWith('Error requesting password reset:', {
       error: expect.any(Error),
     })
   })
 
   it('should handle unknown error', async () => {
-    setupAuthApiMocks()
-
-    vi.doMock('@/lib/auth', () => ({
-      auth: {
-        api: {
-          forgetPassword: vi.fn().mockRejectedValue('Unknown error'),
-        },
-      },
-    }))
+    mockForgetPassword.mockRejectedValue('Unknown error')
 
     const req = createMockRequest('POST', {
       email: 'test@example.com',
     })
 
-    const { POST } = await import('@/app/api/auth/forget-password/route')
-
     const response = await POST(req)
     const data = await response.json()
 
     expect(response.status).toBe(500)
     expect(data.message).toBe('Failed to send password reset email. Please try again later.')
 
-    const logger = await import('@sim/logger')
-    const mockLogger = logger.createLogger('ForgetPasswordTest')
     expect(mockLogger.error).toHaveBeenCalled()
   })
 })