diff --git a/packages/backend/src/graphql/queries/get-current-user.test.ts b/packages/backend/src/graphql/queries/get-current-user.test.ts
new file mode 100644
index 0000000000..20d2cbae5a
--- /dev/null
+++ b/packages/backend/src/graphql/queries/get-current-user.test.ts
@@ -0,0 +1,107 @@
+import request, { Test } from 'supertest';
+import app from '../../app';
+import createAuthTokenByUserId from '../../helpers/create-auth-token-by-user-id';
+import createRole from '../../../test/fixtures/role';
+import createUser from '../../../test/fixtures/user';
+import { IRole, IUser } from '@automatisch/types';
+
+describe('getCurrentUser', () => {
+  describe('with unauthorized user', () => {
+    it('should throw not authorized error', async () => {
+      const invalidUserToken = 'invalid-token';
+
+      const query = `
+        query {
+          getCurrentUser {
+            id
+            email
+          }
+        }
+      `;
+
+      const response = await request(app)
+        .post('/graphql')
+        .set('Authorization', invalidUserToken)
+        .send({ query })
+        .expect(200);
+
+      expect(response.body.errors).toBeDefined();
+      expect(response.body.errors[0].message).toEqual('Not Authorised!');
+    });
+  });
+
+  describe('with authorized user', () => {
+    let role: IRole, currentUser: IUser, token: string, requestObject: Test;
+
+    beforeEach(async () => {
+      role = await createRole({
+        key: 'sample',
+        name: 'sample',
+      });
+
+      currentUser = await createUser({
+        roleId: role.id,
+      });
+
+      token = createAuthTokenByUserId(currentUser.id);
+      requestObject = request(app)
+        .post('/graphql')
+        .set('Authorization', token);
+    });
+
+    it('should return user data', async () => {
+      const query = `
+        query {
+          getCurrentUser {
+            id
+            email
+            fullName
+            email
+            createdAt
+            updatedAt
+            role {
+              id
+              name
+            }
+          }
+        }
+      `;
+
+      const response = await requestObject.send({ query }).expect(200);
+
+      const expectedResponsePayload = {
+        data: {
+          getCurrentUser: {
+            createdAt: (currentUser.createdAt as Date).getTime().toString(),
+            email: currentUser.email,
+            fullName: currentUser.fullName,
+            id: currentUser.id,
+            role: { id: role.id, name: role.name },
+            updatedAt: (currentUser.updatedAt as Date).getTime().toString(),
+          },
+        },
+      };
+
+      expect(response.body).toEqual(expectedResponsePayload);
+    });
+
+    it('should not return user password', async () => {
+      const query = `
+        query {
+          getCurrentUser {
+            id
+            email
+            password
+          }
+        }
+      `;
+
+      const response = await requestObject.send({ query }).expect(400);
+
+      expect(response.body.errors).toBeDefined();
+      expect(response.body.errors[0].message).toEqual(
+        'Cannot query field "password" on type "User".'
+      );
+    });
+  });
+});