]>
Commit | Line | Data |
---|---|---|
b379759f C |
1 | import { checkBadCountPagination, checkBadSortPagination, checkBadStartPagination } from '@server/tests/shared' |
2 | import { omit } from '@shared/core-utils' | |
3 | import { HttpStatusCode, UserRole } from '@shared/models' | |
9436936c C |
4 | import { |
5 | cleanupTests, | |
6 | createSingleServer, | |
7 | makePostBodyRequest, | |
8 | PeerTubeServer, | |
9 | setAccessTokensToServers, | |
10 | setDefaultAccountAvatar, | |
11 | setDefaultChannelAvatar | |
12 | } from '@shared/server-commands' | |
b379759f C |
13 | |
14 | describe('Test registrations API validators', function () { | |
15 | let server: PeerTubeServer | |
16 | let userToken: string | |
17 | let moderatorToken: string | |
18 | ||
19 | // --------------------------------------------------------------- | |
20 | ||
21 | before(async function () { | |
22 | this.timeout(30000) | |
23 | ||
24 | server = await createSingleServer(1) | |
25 | ||
26 | await setAccessTokensToServers([ server ]) | |
9436936c C |
27 | await setDefaultAccountAvatar([ server ]) |
28 | await setDefaultChannelAvatar([ server ]) | |
29 | ||
b379759f C |
30 | await server.config.enableSignup(false); |
31 | ||
32 | ({ token: moderatorToken } = await server.users.generate('moderator', UserRole.MODERATOR)); | |
33 | ({ token: userToken } = await server.users.generate('user', UserRole.USER)) | |
34 | }) | |
35 | ||
36 | describe('Register', function () { | |
37 | const registrationPath = '/api/v1/users/register' | |
38 | const registrationRequestPath = '/api/v1/users/registrations/request' | |
39 | ||
40 | const baseCorrectParams = { | |
41 | username: 'user3', | |
42 | displayName: 'super user', | |
43 | email: 'test3@example.com', | |
44 | password: 'my super password', | |
45 | registrationReason: 'my super registration reason' | |
46 | } | |
47 | ||
48 | describe('When registering a new user or requesting user registration', function () { | |
49 | ||
50 | async function check (fields: any, expectedStatus = HttpStatusCode.BAD_REQUEST_400) { | |
9436936c | 51 | await server.config.enableSignup(false) |
b379759f | 52 | await makePostBodyRequest({ url: server.url, path: registrationPath, fields, expectedStatus }) |
9436936c C |
53 | |
54 | await server.config.enableSignup(true) | |
b379759f C |
55 | await makePostBodyRequest({ url: server.url, path: registrationRequestPath, fields, expectedStatus }) |
56 | } | |
57 | ||
58 | it('Should fail with a too small username', async function () { | |
59 | const fields = { ...baseCorrectParams, username: '' } | |
60 | ||
61 | await check(fields) | |
62 | }) | |
63 | ||
64 | it('Should fail with a too long username', async function () { | |
65 | const fields = { ...baseCorrectParams, username: 'super'.repeat(50) } | |
66 | ||
67 | await check(fields) | |
68 | }) | |
69 | ||
70 | it('Should fail with an incorrect username', async function () { | |
71 | const fields = { ...baseCorrectParams, username: 'my username' } | |
72 | ||
73 | await check(fields) | |
74 | }) | |
75 | ||
76 | it('Should fail with a missing email', async function () { | |
77 | const fields = omit(baseCorrectParams, [ 'email' ]) | |
78 | ||
79 | await check(fields) | |
80 | }) | |
81 | ||
82 | it('Should fail with an invalid email', async function () { | |
83 | const fields = { ...baseCorrectParams, email: 'test_example.com' } | |
84 | ||
85 | await check(fields) | |
86 | }) | |
87 | ||
88 | it('Should fail with a too small password', async function () { | |
89 | const fields = { ...baseCorrectParams, password: 'bla' } | |
90 | ||
91 | await check(fields) | |
92 | }) | |
93 | ||
94 | it('Should fail with a too long password', async function () { | |
95 | const fields = { ...baseCorrectParams, password: 'super'.repeat(61) } | |
96 | ||
97 | await check(fields) | |
98 | }) | |
99 | ||
100 | it('Should fail if we register a user with the same username', async function () { | |
101 | const fields = { ...baseCorrectParams, username: 'root' } | |
102 | ||
103 | await check(fields, HttpStatusCode.CONFLICT_409) | |
104 | }) | |
105 | ||
106 | it('Should fail with a "peertube" username', async function () { | |
107 | const fields = { ...baseCorrectParams, username: 'peertube' } | |
108 | ||
109 | await check(fields, HttpStatusCode.CONFLICT_409) | |
110 | }) | |
111 | ||
112 | it('Should fail if we register a user with the same email', async function () { | |
113 | const fields = { ...baseCorrectParams, email: 'admin' + server.internalServerNumber + '@example.com' } | |
114 | ||
115 | await check(fields, HttpStatusCode.CONFLICT_409) | |
116 | }) | |
117 | ||
118 | it('Should fail with a bad display name', async function () { | |
119 | const fields = { ...baseCorrectParams, displayName: 'a'.repeat(150) } | |
120 | ||
121 | await check(fields) | |
122 | }) | |
123 | ||
124 | it('Should fail with a bad channel name', async function () { | |
125 | const fields = { ...baseCorrectParams, channel: { name: '[]azf', displayName: 'toto' } } | |
126 | ||
127 | await check(fields) | |
128 | }) | |
129 | ||
130 | it('Should fail with a bad channel display name', async function () { | |
131 | const fields = { ...baseCorrectParams, channel: { name: 'toto', displayName: '' } } | |
132 | ||
133 | await check(fields) | |
134 | }) | |
135 | ||
136 | it('Should fail with a channel name that is the same as username', async function () { | |
137 | const source = { username: 'super_user', channel: { name: 'super_user', displayName: 'display name' } } | |
138 | const fields = { ...baseCorrectParams, ...source } | |
139 | ||
140 | await check(fields) | |
141 | }) | |
142 | ||
143 | it('Should fail with an existing channel', async function () { | |
144 | const attributes = { name: 'existing_channel', displayName: 'hello', description: 'super description' } | |
145 | await server.channels.create({ attributes }) | |
146 | ||
147 | const fields = { ...baseCorrectParams, channel: { name: 'existing_channel', displayName: 'toto' } } | |
148 | ||
149 | await check(fields, HttpStatusCode.CONFLICT_409) | |
150 | }) | |
151 | ||
152 | it('Should fail on a server with registration disabled', async function () { | |
153 | this.timeout(60000) | |
154 | ||
9436936c | 155 | await server.config.updateExistingSubConfig({ |
b379759f C |
156 | newConfig: { |
157 | signup: { | |
158 | enabled: false | |
159 | } | |
160 | } | |
161 | }) | |
162 | ||
163 | await server.registrations.register({ username: 'user4', expectedStatus: HttpStatusCode.FORBIDDEN_403 }) | |
164 | await server.registrations.requestRegistration({ | |
165 | username: 'user4', | |
166 | registrationReason: 'reason', | |
167 | expectedStatus: HttpStatusCode.FORBIDDEN_403 | |
168 | }) | |
169 | }) | |
170 | ||
171 | it('Should fail if the user limit is reached', async function () { | |
172 | this.timeout(60000) | |
173 | ||
174 | const { total } = await server.users.list() | |
175 | ||
9436936c | 176 | await server.config.enableSignup(false, total) |
b379759f | 177 | await server.registrations.register({ username: 'user42', expectedStatus: HttpStatusCode.FORBIDDEN_403 }) |
9436936c C |
178 | |
179 | await server.config.enableSignup(true, total) | |
b379759f C |
180 | await server.registrations.requestRegistration({ |
181 | username: 'user42', | |
182 | registrationReason: 'reason', | |
183 | expectedStatus: HttpStatusCode.FORBIDDEN_403 | |
184 | }) | |
185 | }) | |
9436936c C |
186 | |
187 | it('Should succeed if the user limit is not reached', async function () { | |
188 | this.timeout(60000) | |
189 | ||
190 | const { total } = await server.users.list() | |
191 | ||
192 | await server.config.enableSignup(false, total + 1) | |
193 | await server.registrations.register({ username: 'user43', expectedStatus: HttpStatusCode.NO_CONTENT_204 }) | |
194 | ||
195 | await server.config.enableSignup(true, total + 2) | |
196 | await server.registrations.requestRegistration({ | |
197 | username: 'user44', | |
198 | registrationReason: 'reason', | |
199 | expectedStatus: HttpStatusCode.OK_200 | |
200 | }) | |
201 | }) | |
b379759f C |
202 | }) |
203 | ||
204 | describe('On direct registration', function () { | |
205 | ||
206 | it('Should succeed with the correct params', async function () { | |
207 | await server.config.enableSignup(false) | |
208 | ||
209 | const fields = { | |
210 | username: 'user_direct_1', | |
211 | displayName: 'super user direct 1', | |
212 | email: 'user_direct_1@example.com', | |
213 | password: 'my super password', | |
214 | channel: { name: 'super_user_direct_1_channel', displayName: 'super user direct 1 channel' } | |
215 | } | |
216 | ||
217 | await makePostBodyRequest({ url: server.url, path: registrationPath, fields, expectedStatus: HttpStatusCode.NO_CONTENT_204 }) | |
218 | }) | |
219 | ||
220 | it('Should fail if the instance requires approval', async function () { | |
221 | this.timeout(60000) | |
222 | ||
223 | await server.config.enableSignup(true) | |
224 | await server.registrations.register({ username: 'user42', expectedStatus: HttpStatusCode.FORBIDDEN_403 }) | |
225 | }) | |
226 | }) | |
227 | ||
228 | describe('On registration request', function () { | |
229 | ||
230 | before(async function () { | |
231 | this.timeout(60000) | |
232 | ||
233 | await server.config.enableSignup(true) | |
234 | }) | |
235 | ||
236 | it('Should fail with an invalid registration reason', async function () { | |
237 | for (const registrationReason of [ '', 't', 't'.repeat(5000) ]) { | |
238 | await server.registrations.requestRegistration({ | |
239 | username: 'user_request_1', | |
240 | registrationReason, | |
241 | expectedStatus: HttpStatusCode.BAD_REQUEST_400 | |
242 | }) | |
243 | } | |
244 | }) | |
245 | ||
246 | it('Should succeed with the correct params', async function () { | |
247 | await server.registrations.requestRegistration({ | |
248 | username: 'user_request_2', | |
249 | registrationReason: 'tt', | |
250 | channel: { | |
251 | displayName: 'my user request 2 channel', | |
252 | name: 'user_request_2_channel' | |
253 | } | |
254 | }) | |
255 | }) | |
256 | ||
7590f7a8 | 257 | it('Should fail if the username is already awaiting registration approval', async function () { |
b379759f C |
258 | await server.registrations.requestRegistration({ |
259 | username: 'user_request_2', | |
260 | registrationReason: 'tt', | |
261 | channel: { | |
262 | displayName: 'my user request 42 channel', | |
263 | name: 'user_request_42_channel' | |
264 | }, | |
265 | expectedStatus: HttpStatusCode.CONFLICT_409 | |
266 | }) | |
267 | }) | |
268 | ||
7590f7a8 C |
269 | it('Should fail if the email is already awaiting registration approval', async function () { |
270 | await server.registrations.requestRegistration({ | |
271 | username: 'user42', | |
272 | email: 'user_request_2@example.com', | |
273 | registrationReason: 'tt', | |
274 | channel: { | |
275 | displayName: 'my user request 42 channel', | |
276 | name: 'user_request_42_channel' | |
277 | }, | |
278 | expectedStatus: HttpStatusCode.CONFLICT_409 | |
279 | }) | |
280 | }) | |
281 | ||
b379759f C |
282 | it('Should fail if the channel is already awaiting registration approval', async function () { |
283 | await server.registrations.requestRegistration({ | |
284 | username: 'user42', | |
285 | registrationReason: 'tt', | |
286 | channel: { | |
287 | displayName: 'my user request 2 channel', | |
288 | name: 'user_request_2_channel' | |
289 | }, | |
290 | expectedStatus: HttpStatusCode.CONFLICT_409 | |
291 | }) | |
292 | }) | |
293 | ||
294 | it('Should fail if the instance does not require approval', async function () { | |
295 | this.timeout(60000) | |
296 | ||
297 | await server.config.enableSignup(false) | |
298 | ||
299 | await server.registrations.requestRegistration({ | |
300 | username: 'user42', | |
301 | registrationReason: 'toto', | |
302 | expectedStatus: HttpStatusCode.BAD_REQUEST_400 | |
303 | }) | |
304 | }) | |
305 | }) | |
306 | }) | |
307 | ||
308 | describe('Registrations accept/reject', function () { | |
309 | let id1: number | |
310 | let id2: number | |
311 | ||
312 | before(async function () { | |
313 | this.timeout(60000) | |
314 | ||
315 | await server.config.enableSignup(true); | |
316 | ||
317 | ({ id: id1 } = await server.registrations.requestRegistration({ username: 'request_2', registrationReason: 'toto' })); | |
318 | ({ id: id2 } = await server.registrations.requestRegistration({ username: 'request_3', registrationReason: 'toto' })) | |
319 | }) | |
320 | ||
321 | it('Should fail to accept/reject registration without token', async function () { | |
322 | const options = { id: id1, moderationResponse: 'tt', token: null, expectedStatus: HttpStatusCode.UNAUTHORIZED_401 } | |
323 | await server.registrations.accept(options) | |
324 | await server.registrations.reject(options) | |
325 | }) | |
326 | ||
327 | it('Should fail to accept/reject registration with a non moderator user', async function () { | |
328 | const options = { id: id1, moderationResponse: 'tt', token: userToken, expectedStatus: HttpStatusCode.FORBIDDEN_403 } | |
329 | await server.registrations.accept(options) | |
330 | await server.registrations.reject(options) | |
331 | }) | |
332 | ||
333 | it('Should fail to accept/reject registration with a bad registration id', async function () { | |
334 | { | |
335 | const options = { id: 't' as any, moderationResponse: 'tt', token: moderatorToken, expectedStatus: HttpStatusCode.BAD_REQUEST_400 } | |
336 | await server.registrations.accept(options) | |
337 | await server.registrations.reject(options) | |
338 | } | |
339 | ||
340 | { | |
341 | const options = { id: 42, moderationResponse: 'tt', token: moderatorToken, expectedStatus: HttpStatusCode.NOT_FOUND_404 } | |
342 | await server.registrations.accept(options) | |
343 | await server.registrations.reject(options) | |
344 | } | |
345 | }) | |
346 | ||
347 | it('Should fail to accept/reject registration with a bad moderation resposne', async function () { | |
348 | for (const moderationResponse of [ '', 't', 't'.repeat(5000) ]) { | |
349 | const options = { id: id1, moderationResponse, token: moderatorToken, expectedStatus: HttpStatusCode.BAD_REQUEST_400 } | |
350 | await server.registrations.accept(options) | |
351 | await server.registrations.reject(options) | |
352 | } | |
353 | }) | |
354 | ||
355 | it('Should succeed to accept a registration', async function () { | |
356 | await server.registrations.accept({ id: id1, moderationResponse: 'tt', token: moderatorToken }) | |
357 | }) | |
358 | ||
359 | it('Should succeed to reject a registration', async function () { | |
360 | await server.registrations.reject({ id: id2, moderationResponse: 'tt', token: moderatorToken }) | |
361 | }) | |
362 | ||
363 | it('Should fail to accept/reject a registration that was already accepted/rejected', async function () { | |
364 | for (const id of [ id1, id2 ]) { | |
365 | const options = { id, moderationResponse: 'tt', token: moderatorToken, expectedStatus: HttpStatusCode.CONFLICT_409 } | |
366 | await server.registrations.accept(options) | |
367 | await server.registrations.reject(options) | |
368 | } | |
369 | }) | |
370 | }) | |
371 | ||
372 | describe('Registrations deletion', function () { | |
373 | let id1: number | |
374 | let id2: number | |
375 | let id3: number | |
376 | ||
377 | before(async function () { | |
378 | ({ id: id1 } = await server.registrations.requestRegistration({ username: 'request_4', registrationReason: 'toto' })); | |
379 | ({ id: id2 } = await server.registrations.requestRegistration({ username: 'request_5', registrationReason: 'toto' })); | |
380 | ({ id: id3 } = await server.registrations.requestRegistration({ username: 'request_6', registrationReason: 'toto' })) | |
381 | ||
382 | await server.registrations.accept({ id: id2, moderationResponse: 'tt' }) | |
383 | await server.registrations.reject({ id: id3, moderationResponse: 'tt' }) | |
384 | }) | |
385 | ||
386 | it('Should fail to delete registration without token', async function () { | |
387 | await server.registrations.delete({ id: id1, token: null, expectedStatus: HttpStatusCode.UNAUTHORIZED_401 }) | |
388 | }) | |
389 | ||
390 | it('Should fail to delete registration with a non moderator user', async function () { | |
391 | await server.registrations.delete({ id: id1, token: userToken, expectedStatus: HttpStatusCode.FORBIDDEN_403 }) | |
392 | }) | |
393 | ||
394 | it('Should fail to delete registration with a bad registration id', async function () { | |
395 | await server.registrations.delete({ id: 't' as any, token: moderatorToken, expectedStatus: HttpStatusCode.BAD_REQUEST_400 }) | |
396 | await server.registrations.delete({ id: 42, token: moderatorToken, expectedStatus: HttpStatusCode.NOT_FOUND_404 }) | |
397 | }) | |
398 | ||
399 | it('Should succeed with the correct params', async function () { | |
400 | await server.registrations.delete({ id: id1, token: moderatorToken }) | |
401 | await server.registrations.delete({ id: id2, token: moderatorToken }) | |
402 | await server.registrations.delete({ id: id3, token: moderatorToken }) | |
403 | }) | |
404 | }) | |
405 | ||
406 | describe('Listing registrations', function () { | |
407 | const path = '/api/v1/users/registrations' | |
408 | ||
409 | it('Should fail with a bad start pagination', async function () { | |
410 | await checkBadStartPagination(server.url, path, server.accessToken) | |
411 | }) | |
412 | ||
413 | it('Should fail with a bad count pagination', async function () { | |
414 | await checkBadCountPagination(server.url, path, server.accessToken) | |
415 | }) | |
416 | ||
417 | it('Should fail with an incorrect sort', async function () { | |
418 | await checkBadSortPagination(server.url, path, server.accessToken) | |
419 | }) | |
420 | ||
421 | it('Should fail with a non authenticated user', async function () { | |
422 | await server.registrations.list({ | |
423 | token: null, | |
424 | expectedStatus: HttpStatusCode.UNAUTHORIZED_401 | |
425 | }) | |
426 | }) | |
427 | ||
428 | it('Should fail with a non admin user', async function () { | |
429 | await server.registrations.list({ | |
430 | token: userToken, | |
431 | expectedStatus: HttpStatusCode.FORBIDDEN_403 | |
432 | }) | |
433 | }) | |
434 | ||
435 | it('Should succeed with the correct params', async function () { | |
436 | await server.registrations.list({ | |
437 | token: moderatorToken, | |
438 | search: 'toto' | |
439 | }) | |
440 | }) | |
441 | }) | |
442 | ||
443 | after(async function () { | |
444 | await cleanupTests([ server ]) | |
445 | }) | |
446 | }) |