[github/Chocobozzz/PeerTube.git] / server / tests / api / check-params / bulk.ts

/* eslint-disable @typescript-eslint/no-unused-expressions,@typescript-eslint/require-await */

import 'mocha'
import {
  cleanupTests,
  createUser,
  flushAndRunServer,
  ServerInfo,
  setAccessTokensToServers,
  userLogin
} from '../../../../shared/extra-utils'
import { makePostBodyRequest } from '../../../../shared/extra-utils/requests/requests'
import { HttpStatusCode } from '../../../../shared/core-utils/miscs/http-error-codes'

describe('Test bulk API validators', function () {
  let server: ServerInfo
  let userAccessToken: string

  // ---------------------------------------------------------------

  before(async function () {
    this.timeout(120000)

    server = await flushAndRunServer(1)
    await setAccessTokensToServers([ server ])

    const user = { username: 'user1', password: 'password' }
    await createUser({ url: server.url, accessToken: server.accessToken, username: user.username, password: user.password })

    userAccessToken = await userLogin(server, user)
  })

  describe('When removing comments of', function () {
    const path = '/api/v1/bulk/remove-comments-of'

    it('Should fail with an unauthenticated user', async function () {
      await makePostBodyRequest({
        url: server.url,
        path,
        fields: { accountName: 'user1', scope: 'my-videos' },
        statusCodeExpected: HttpStatusCode.UNAUTHORIZED_401
      })
    })

    it('Should fail with an unknown account', async function () {
      await makePostBodyRequest({
        url: server.url,
        token: server.accessToken,
        path,
        fields: { accountName: 'user2', scope: 'my-videos' },
        statusCodeExpected: HttpStatusCode.NOT_FOUND_404
      })
    })

    it('Should fail with an invalid scope', async function () {
      await makePostBodyRequest({
        url: server.url,
        token: server.accessToken,
        path,
        fields: { accountName: 'user1', scope: 'my-videoss' },
        statusCodeExpected: HttpStatusCode.BAD_REQUEST_400
      })
    })

    it('Should fail to delete comments of the instance without the appropriate rights', async function () {
      await makePostBodyRequest({
        url: server.url,
        token: userAccessToken,
        path,
        fields: { accountName: 'user1', scope: 'instance' },
        statusCodeExpected: HttpStatusCode.FORBIDDEN_403
      })
    })

    it('Should succeed with the correct params', async function () {
      await makePostBodyRequest({
        url: server.url,
        token: server.accessToken,
        path,
        fields: { accountName: 'user1', scope: 'instance' },
        statusCodeExpected: HttpStatusCode.NO_CONTENT_204
      })
    })
  })

  after(async function () {
    await cleanupTests([ server ])
  })
})
Commit	Line	Data
444c0a0e C	1	/* eslint-disable @typescript-eslint/no-unused-expressions,@typescript-eslint/require-await */
	2
	3	import 'mocha'
	4	import {
	5	cleanupTests,
	6	createUser,
	7	flushAndRunServer,
	8	ServerInfo,
	9	setAccessTokensToServers,
	10	userLogin
	11	} from '../../../../shared/extra-utils'
	12	import { makePostBodyRequest } from '../../../../shared/extra-utils/requests/requests'
2d53be02	13	import { HttpStatusCode } from '../../../../shared/core-utils/miscs/http-error-codes'
444c0a0e C	14
	15	describe('Test bulk API validators', function () {
	16	let server: ServerInfo
	17	let userAccessToken: string
	18
	19	// ---------------------------------------------------------------
	20
	21	before(async function () {
	22	this.timeout(120000)
	23
	24	server = await flushAndRunServer(1)
	25	await setAccessTokensToServers([ server ])
	26
	27	const user = { username: 'user1', password: 'password' }
	28	await createUser({ url: server.url, accessToken: server.accessToken, username: user.username, password: user.password })
	29
	30	userAccessToken = await userLogin(server, user)
	31	})
	32
	33	describe('When removing comments of', function () {
	34	const path = '/api/v1/bulk/remove-comments-of'
	35
	36	it('Should fail with an unauthenticated user', async function () {
	37	await makePostBodyRequest({
	38	url: server.url,
	39	path,
	40	fields: { accountName: 'user1', scope: 'my-videos' },
2d53be02	41	statusCodeExpected: HttpStatusCode.UNAUTHORIZED_401
444c0a0e C	42	})
	43	})
	44
	45	it('Should fail with an unknown account', async function () {
	46	await makePostBodyRequest({
	47	url: server.url,
	48	token: server.accessToken,
	49	path,
	50	fields: { accountName: 'user2', scope: 'my-videos' },
2d53be02	51	statusCodeExpected: HttpStatusCode.NOT_FOUND_404
444c0a0e C	52	})
	53	})
	54
	55	it('Should fail with an invalid scope', async function () {
	56	await makePostBodyRequest({
	57	url: server.url,
	58	token: server.accessToken,
	59	path,
	60	fields: { accountName: 'user1', scope: 'my-videoss' },
2d53be02	61	statusCodeExpected: HttpStatusCode.BAD_REQUEST_400
444c0a0e C	62	})
	63	})
	64
	65	it('Should fail to delete comments of the instance without the appropriate rights', async function () {
	66	await makePostBodyRequest({
	67	url: server.url,
	68	token: userAccessToken,
	69	path,
	70	fields: { accountName: 'user1', scope: 'instance' },
2d53be02	71	statusCodeExpected: HttpStatusCode.FORBIDDEN_403
444c0a0e C	72	})
	73	})
	74
	75	it('Should succeed with the correct params', async function () {
	76	await makePostBodyRequest({
	77	url: server.url,
	78	token: server.accessToken,
	79	path,
	80	fields: { accountName: 'user1', scope: 'instance' },
2d53be02	81	statusCodeExpected: HttpStatusCode.NO_CONTENT_204
444c0a0e C	82	})
	83	})
	84	})
	85
	86	after(async function () {
	87	await cleanupTests([ server ])
	88	})
	89	})