[github/Chocobozzz/PeerTube.git] / server / tests / api / check-params / registrations.ts

import { checkBadCountPagination, checkBadSortPagination, checkBadStartPagination } from '@server/tests/shared'
import { omit } from '@shared/core-utils'
import { HttpStatusCode, UserRole } from '@shared/models'
import {
  cleanupTests,
  createSingleServer,
  makePostBodyRequest,
  PeerTubeServer,
  setAccessTokensToServers,
  setDefaultAccountAvatar,
  setDefaultChannelAvatar
} from '@shared/server-commands'

describe('Test registrations API validators', function () {
  let server: PeerTubeServer
  let userToken: string
  let moderatorToken: string

  // ---------------------------------------------------------------

  before(async function () {
    this.timeout(30000)

    server = await createSingleServer(1)

    await setAccessTokensToServers([ server ])
    await setDefaultAccountAvatar([ server ])
    await setDefaultChannelAvatar([ server ])

    await server.config.enableSignup(false);

    ({ token: moderatorToken } = await server.users.generate('moderator', UserRole.MODERATOR));
    ({ token: userToken } = await server.users.generate('user', UserRole.USER))
  })

  describe('Register', function () {
    const registrationPath = '/api/v1/users/register'
    const registrationRequestPath = '/api/v1/users/registrations/request'

    const baseCorrectParams = {
      username: 'user3',
      displayName: 'super user',
      email: 'test3@example.com',
      password: 'my super password',
      registrationReason: 'my super registration reason'
    }

    describe('When registering a new user or requesting user registration', function () {

      async function check (fields: any, expectedStatus = HttpStatusCode.BAD_REQUEST_400) {
        await server.config.enableSignup(false)
        await makePostBodyRequest({ url: server.url, path: registrationPath, fields, expectedStatus })

        await server.config.enableSignup(true)
        await makePostBodyRequest({ url: server.url, path: registrationRequestPath, fields, expectedStatus })
      }

      it('Should fail with a too small username', async function () {
        const fields = { ...baseCorrectParams, username: '' }

        await check(fields)
      })

      it('Should fail with a too long username', async function () {
        const fields = { ...baseCorrectParams, username: 'super'.repeat(50) }

        await check(fields)
      })

      it('Should fail with an incorrect username', async function () {
        const fields = { ...baseCorrectParams, username: 'my username' }

        await check(fields)
      })

      it('Should fail with a missing email', async function () {
        const fields = omit(baseCorrectParams, [ 'email' ])

        await check(fields)
      })

      it('Should fail with an invalid email', async function () {
        const fields = { ...baseCorrectParams, email: 'test_example.com' }

        await check(fields)
      })

      it('Should fail with a too small password', async function () {
        const fields = { ...baseCorrectParams, password: 'bla' }

        await check(fields)
      })

      it('Should fail with a too long password', async function () {
        const fields = { ...baseCorrectParams, password: 'super'.repeat(61) }

        await check(fields)
      })

      it('Should fail if we register a user with the same username', async function () {
        const fields = { ...baseCorrectParams, username: 'root' }

        await check(fields, HttpStatusCode.CONFLICT_409)
      })

      it('Should fail with a "peertube" username', async function () {
        const fields = { ...baseCorrectParams, username: 'peertube' }

        await check(fields, HttpStatusCode.CONFLICT_409)
      })

      it('Should fail if we register a user with the same email', async function () {
        const fields = { ...baseCorrectParams, email: 'admin' + server.internalServerNumber + '@example.com' }

        await check(fields, HttpStatusCode.CONFLICT_409)
      })

      it('Should fail with a bad display name', async function () {
        const fields = { ...baseCorrectParams, displayName: 'a'.repeat(150) }

        await check(fields)
      })

      it('Should fail with a bad channel name', async function () {
        const fields = { ...baseCorrectParams, channel: { name: '[]azf', displayName: 'toto' } }

        await check(fields)
      })

      it('Should fail with a bad channel display name', async function () {
        const fields = { ...baseCorrectParams, channel: { name: 'toto', displayName: '' } }

        await check(fields)
      })

      it('Should fail with a channel name that is the same as username', async function () {
        const source = { username: 'super_user', channel: { name: 'super_user', displayName: 'display name' } }
        const fields = { ...baseCorrectParams, ...source }

        await check(fields)
      })

      it('Should fail with an existing channel', async function () {
        const attributes = { name: 'existing_channel', displayName: 'hello', description: 'super description' }
        await server.channels.create({ attributes })

        const fields = { ...baseCorrectParams, channel: { name: 'existing_channel', displayName: 'toto' } }

        await check(fields, HttpStatusCode.CONFLICT_409)
      })

      it('Should fail on a server with registration disabled', async function () {
        this.timeout(60000)

        await server.config.updateExistingSubConfig({
          newConfig: {
            signup: {
              enabled: false
            }
          }
        })

        await server.registrations.register({ username: 'user4', expectedStatus: HttpStatusCode.FORBIDDEN_403 })
        await server.registrations.requestRegistration({
          username: 'user4',
          registrationReason: 'reason',
          expectedStatus: HttpStatusCode.FORBIDDEN_403
        })
      })

      it('Should fail if the user limit is reached', async function () {
        this.timeout(60000)

        const { total } = await server.users.list()

        await server.config.enableSignup(false, total)
        await server.registrations.register({ username: 'user42', expectedStatus: HttpStatusCode.FORBIDDEN_403 })

        await server.config.enableSignup(true, total)
        await server.registrations.requestRegistration({
          username: 'user42',
          registrationReason: 'reason',
          expectedStatus: HttpStatusCode.FORBIDDEN_403
        })
      })

      it('Should succeed if the user limit is not reached', async function () {
        this.timeout(60000)

        const { total } = await server.users.list()

        await server.config.enableSignup(false, total + 1)
        await server.registrations.register({ username: 'user43', expectedStatus: HttpStatusCode.NO_CONTENT_204 })

        await server.config.enableSignup(true, total + 2)
        await server.registrations.requestRegistration({
          username: 'user44',
          registrationReason: 'reason',
          expectedStatus: HttpStatusCode.OK_200
        })
      })
    })

    describe('On direct registration', function () {

      it('Should succeed with the correct params', async function () {
        await server.config.enableSignup(false)

        const fields = {
          username: 'user_direct_1',
          displayName: 'super user direct 1',
          email: 'user_direct_1@example.com',
          password: 'my super password',
          channel: { name: 'super_user_direct_1_channel', displayName: 'super user direct 1 channel' }
        }

        await makePostBodyRequest({ url: server.url, path: registrationPath, fields, expectedStatus: HttpStatusCode.NO_CONTENT_204 })
      })

      it('Should fail if the instance requires approval', async function () {
        this.timeout(60000)

        await server.config.enableSignup(true)
        await server.registrations.register({ username: 'user42', expectedStatus: HttpStatusCode.FORBIDDEN_403 })
      })
    })

    describe('On registration request', function () {

      before(async function () {
        this.timeout(60000)

        await server.config.enableSignup(true)
      })

      it('Should fail with an invalid registration reason', async function () {
        for (const registrationReason of [ '', 't', 't'.repeat(5000) ]) {
          await server.registrations.requestRegistration({
            username: 'user_request_1',
            registrationReason,
            expectedStatus: HttpStatusCode.BAD_REQUEST_400
          })
        }
      })

      it('Should succeed with the correct params', async function () {
        await server.registrations.requestRegistration({
          username: 'user_request_2',
          registrationReason: 'tt',
          channel: {
            displayName: 'my user request 2 channel',
            name: 'user_request_2_channel'
          }
        })
      })

      it('Should fail if the username is already awaiting registration approval', async function () {
        await server.registrations.requestRegistration({
          username: 'user_request_2',
          registrationReason: 'tt',
          channel: {
            displayName: 'my user request 42 channel',
            name: 'user_request_42_channel'
          },
          expectedStatus: HttpStatusCode.CONFLICT_409
        })
      })

      it('Should fail if the email is already awaiting registration approval', async function () {
        await server.registrations.requestRegistration({
          username: 'user42',
          email: 'user_request_2@example.com',
          registrationReason: 'tt',
          channel: {
            displayName: 'my user request 42 channel',
            name: 'user_request_42_channel'
          },
          expectedStatus: HttpStatusCode.CONFLICT_409
        })
      })

      it('Should fail if the channel is already awaiting registration approval', async function () {
        await server.registrations.requestRegistration({
          username: 'user42',
          registrationReason: 'tt',
          channel: {
            displayName: 'my user request 2 channel',
            name: 'user_request_2_channel'
          },
          expectedStatus: HttpStatusCode.CONFLICT_409
        })
      })

      it('Should fail if the instance does not require approval', async function () {
        this.timeout(60000)

        await server.config.enableSignup(false)

        await server.registrations.requestRegistration({
          username: 'user42',
          registrationReason: 'toto',
          expectedStatus: HttpStatusCode.BAD_REQUEST_400
        })
      })
    })
  })

  describe('Registrations accept/reject', function () {
    let id1: number
    let id2: number

    before(async function () {
      this.timeout(60000)

      await server.config.enableSignup(true);

      ({ id: id1 } = await server.registrations.requestRegistration({ username: 'request_2', registrationReason: 'toto' }));
      ({ id: id2 } = await server.registrations.requestRegistration({ username: 'request_3', registrationReason: 'toto' }))
    })

    it('Should fail to accept/reject registration without token', async function () {
      const options = { id: id1, moderationResponse: 'tt', token: null, expectedStatus: HttpStatusCode.UNAUTHORIZED_401 }
      await server.registrations.accept(options)
      await server.registrations.reject(options)
    })

    it('Should fail to accept/reject registration with a non moderator user', async function () {
      const options = { id: id1, moderationResponse: 'tt', token: userToken, expectedStatus: HttpStatusCode.FORBIDDEN_403 }
      await server.registrations.accept(options)
      await server.registrations.reject(options)
    })

    it('Should fail to accept/reject registration with a bad registration id', async function () {
      {
        const options = { id: 't' as any, moderationResponse: 'tt', token: moderatorToken, expectedStatus: HttpStatusCode.BAD_REQUEST_400 }
        await server.registrations.accept(options)
        await server.registrations.reject(options)
      }

      {
        const options = { id: 42, moderationResponse: 'tt', token: moderatorToken, expectedStatus: HttpStatusCode.NOT_FOUND_404 }
        await server.registrations.accept(options)
        await server.registrations.reject(options)
      }
    })

    it('Should fail to accept/reject registration with a bad moderation resposne', async function () {
      for (const moderationResponse of [ '', 't', 't'.repeat(5000) ]) {
        const options = { id: id1, moderationResponse, token: moderatorToken, expectedStatus: HttpStatusCode.BAD_REQUEST_400 }
        await server.registrations.accept(options)
        await server.registrations.reject(options)
      }
    })

    it('Should succeed to accept a registration', async function () {
      await server.registrations.accept({ id: id1, moderationResponse: 'tt', token: moderatorToken })
    })

    it('Should succeed to reject a registration', async function () {
      await server.registrations.reject({ id: id2, moderationResponse: 'tt', token: moderatorToken })
    })

    it('Should fail to accept/reject a registration that was already accepted/rejected', async function () {
      for (const id of [ id1, id2 ]) {
        const options = { id, moderationResponse: 'tt', token: moderatorToken, expectedStatus: HttpStatusCode.CONFLICT_409 }
        await server.registrations.accept(options)
        await server.registrations.reject(options)
      }
    })
  })

  describe('Registrations deletion', function () {
    let id1: number
    let id2: number
    let id3: number

    before(async function () {
      ({ id: id1 } = await server.registrations.requestRegistration({ username: 'request_4', registrationReason: 'toto' }));
      ({ id: id2 } = await server.registrations.requestRegistration({ username: 'request_5', registrationReason: 'toto' }));
      ({ id: id3 } = await server.registrations.requestRegistration({ username: 'request_6', registrationReason: 'toto' }))

      await server.registrations.accept({ id: id2, moderationResponse: 'tt' })
      await server.registrations.reject({ id: id3, moderationResponse: 'tt' })
    })

    it('Should fail to delete registration without token', async function () {
      await server.registrations.delete({ id: id1, token: null, expectedStatus: HttpStatusCode.UNAUTHORIZED_401 })
    })

    it('Should fail to delete registration with a non moderator user', async function () {
      await server.registrations.delete({ id: id1, token: userToken, expectedStatus: HttpStatusCode.FORBIDDEN_403 })
    })

    it('Should fail to delete registration with a bad registration id', async function () {
      await server.registrations.delete({ id: 't' as any, token: moderatorToken, expectedStatus: HttpStatusCode.BAD_REQUEST_400 })
      await server.registrations.delete({ id: 42, token: moderatorToken, expectedStatus: HttpStatusCode.NOT_FOUND_404 })
    })

    it('Should succeed with the correct params', async function () {
      await server.registrations.delete({ id: id1, token: moderatorToken })
      await server.registrations.delete({ id: id2, token: moderatorToken })
      await server.registrations.delete({ id: id3, token: moderatorToken })
    })
  })

  describe('Listing registrations', function () {
    const path = '/api/v1/users/registrations'

    it('Should fail with a bad start pagination', async function () {
      await checkBadStartPagination(server.url, path, server.accessToken)
    })

    it('Should fail with a bad count pagination', async function () {
      await checkBadCountPagination(server.url, path, server.accessToken)
    })

    it('Should fail with an incorrect sort', async function () {
      await checkBadSortPagination(server.url, path, server.accessToken)
    })

    it('Should fail with a non authenticated user', async function () {
      await server.registrations.list({
        token: null,
        expectedStatus: HttpStatusCode.UNAUTHORIZED_401
      })
    })

    it('Should fail with a non admin user', async function () {
      await server.registrations.list({
        token: userToken,
        expectedStatus: HttpStatusCode.FORBIDDEN_403
      })
    })

    it('Should succeed with the correct params', async function () {
      await server.registrations.list({
        token: moderatorToken,
        search: 'toto'
      })
    })
  })

  after(async function () {
    await cleanupTests([ server ])
  })
})
Commit	Line	Data
b379759f C	1	import { checkBadCountPagination, checkBadSortPagination, checkBadStartPagination } from '@server/tests/shared'
	2	import { omit } from '@shared/core-utils'
	3	import { HttpStatusCode, UserRole } from '@shared/models'
9436936c C	4	import {
	5	cleanupTests,
	6	createSingleServer,
	7	makePostBodyRequest,
	8	PeerTubeServer,
	9	setAccessTokensToServers,
	10	setDefaultAccountAvatar,
	11	setDefaultChannelAvatar
	12	} from '@shared/server-commands'
b379759f C	13
	14	describe('Test registrations API validators', function () {
	15	let server: PeerTubeServer
	16	let userToken: string
	17	let moderatorToken: string
	18
	19	// ---------------------------------------------------------------
	20
	21	before(async function () {
	22	this.timeout(30000)
	23
	24	server = await createSingleServer(1)
	25
	26	await setAccessTokensToServers([ server ])
9436936c C	27	await setDefaultAccountAvatar([ server ])
	28	await setDefaultChannelAvatar([ server ])
	29
b379759f C	30	await server.config.enableSignup(false);
	31
	32	({ token: moderatorToken } = await server.users.generate('moderator', UserRole.MODERATOR));
	33	({ token: userToken } = await server.users.generate('user', UserRole.USER))
	34	})
	35
	36	describe('Register', function () {
	37	const registrationPath = '/api/v1/users/register'
	38	const registrationRequestPath = '/api/v1/users/registrations/request'
	39
	40	const baseCorrectParams = {
	41	username: 'user3',
	42	displayName: 'super user',
	43	email: 'test3@example.com',
	44	password: 'my super password',
	45	registrationReason: 'my super registration reason'
	46	}
	47
	48	describe('When registering a new user or requesting user registration', function () {
	49
	50	async function check (fields: any, expectedStatus = HttpStatusCode.BAD_REQUEST_400) {
9436936c	51	await server.config.enableSignup(false)
b379759f	52	await makePostBodyRequest({ url: server.url, path: registrationPath, fields, expectedStatus })
9436936c C	53
9436936c C	54	await server.config.enableSignup(true)
b379759f C	55	await makePostBodyRequest({ url: server.url, path: registrationRequestPath, fields, expectedStatus })
	56	}
	57
	58	it('Should fail with a too small username', async function () {
	59	const fields = { ...baseCorrectParams, username: '' }
	60
	61	await check(fields)
	62	})
	63
	64	it('Should fail with a too long username', async function () {
	65	const fields = { ...baseCorrectParams, username: 'super'.repeat(50) }
	66
	67	await check(fields)
	68	})
	69
	70	it('Should fail with an incorrect username', async function () {
	71	const fields = { ...baseCorrectParams, username: 'my username' }
	72
	73	await check(fields)
	74	})
	75
	76	it('Should fail with a missing email', async function () {
	77	const fields = omit(baseCorrectParams, [ 'email' ])
	78
	79	await check(fields)
	80	})
	81
	82	it('Should fail with an invalid email', async function () {
	83	const fields = { ...baseCorrectParams, email: 'test_example.com' }
	84
	85	await check(fields)
	86	})
	87
	88	it('Should fail with a too small password', async function () {
	89	const fields = { ...baseCorrectParams, password: 'bla' }
	90
	91	await check(fields)
	92	})
	93
	94	it('Should fail with a too long password', async function () {
	95	const fields = { ...baseCorrectParams, password: 'super'.repeat(61) }
	96
	97	await check(fields)
	98	})
	99
	100	it('Should fail if we register a user with the same username', async function () {
	101	const fields = { ...baseCorrectParams, username: 'root' }
	102
	103	await check(fields, HttpStatusCode.CONFLICT_409)
	104	})
	105
	106	it('Should fail with a "peertube" username', async function () {
	107	const fields = { ...baseCorrectParams, username: 'peertube' }
	108
	109	await check(fields, HttpStatusCode.CONFLICT_409)
	110	})
	111
	112	it('Should fail if we register a user with the same email', async function () {
	113	const fields = { ...baseCorrectParams, email: 'admin' + server.internalServerNumber + '@example.com' }
	114
	115	await check(fields, HttpStatusCode.CONFLICT_409)
	116	})
	117
	118	it('Should fail with a bad display name', async function () {
119	const fields = { ...baseCorrectParams, displayName: 'a'.repeat(150) }
120
121	await check(fields)
122	})
123
124	it('Should fail with a bad channel name', async function () {
125	const fields = { ...baseCorrectParams, channel: { name: '[]azf', displayName: 'toto' } }
126
127	await check(fields)
128	})
129
130	it('Should fail with a bad channel display name', async function () {
131	const fields = { ...baseCorrectParams, channel: { name: 'toto', displayName: '' } }
132
133	await check(fields)
134	})
135
136	it('Should fail with a channel name that is the same as username', async function () {
137	const source = { username: 'super_user', channel: { name: 'super_user', displayName: 'display name' } }
138	const fields = { ...baseCorrectParams, ...source }
139
140	await check(fields)
141	})
142
143	it('Should fail with an existing channel', async function () {
144	const attributes = { name: 'existing_channel', displayName: 'hello', description: 'super description' }
145	await server.channels.create({ attributes })
146
147	const fields = { ...baseCorrectParams, channel: { name: 'existing_channel', displayName: 'toto' } }
148
149	await check(fields, HttpStatusCode.CONFLICT_409)
150	})
151
152	it('Should fail on a server with registration disabled', async function () {
153	this.timeout(60000)
154
9436936c	155	await server.config.updateExistingSubConfig({
b379759f C	156	newConfig: {
	157	signup: {
	158	enabled: false
	159	}
	160	}
	161	})
	162
	163	await server.registrations.register({ username: 'user4', expectedStatus: HttpStatusCode.FORBIDDEN_403 })
	164	await server.registrations.requestRegistration({
	165	username: 'user4',
	166	registrationReason: 'reason',
	167	expectedStatus: HttpStatusCode.FORBIDDEN_403
	168	})
	169	})
	170
	171	it('Should fail if the user limit is reached', async function () {
	172	this.timeout(60000)
	173
	174	const { total } = await server.users.list()
	175
9436936c	176	await server.config.enableSignup(false, total)
b379759f	177	await server.registrations.register({ username: 'user42', expectedStatus: HttpStatusCode.FORBIDDEN_403 })
9436936c C	178
9436936c C	179	await server.config.enableSignup(true, total)
b379759f C	180	await server.registrations.requestRegistration({
	181	username: 'user42',
	182	registrationReason: 'reason',
	183	expectedStatus: HttpStatusCode.FORBIDDEN_403
	184	})
	185	})
9436936c C	186
	187	it('Should succeed if the user limit is not reached', async function () {
	188	this.timeout(60000)
	189
	190	const { total } = await server.users.list()
	191
	192	await server.config.enableSignup(false, total + 1)
	193	await server.registrations.register({ username: 'user43', expectedStatus: HttpStatusCode.NO_CONTENT_204 })
	194
	195	await server.config.enableSignup(true, total + 2)
	196	await server.registrations.requestRegistration({
	197	username: 'user44',
	198	registrationReason: 'reason',
	199	expectedStatus: HttpStatusCode.OK_200
	200	})
	201	})
b379759f C	202	})
	203
	204	describe('On direct registration', function () {
	205
	206	it('Should succeed with the correct params', async function () {
	207	await server.config.enableSignup(false)
	208
	209	const fields = {
	210	username: 'user_direct_1',
	211	displayName: 'super user direct 1',
	212	email: 'user_direct_1@example.com',
	213	password: 'my super password',
	214	channel: { name: 'super_user_direct_1_channel', displayName: 'super user direct 1 channel' }
	215	}
	216
	217	await makePostBodyRequest({ url: server.url, path: registrationPath, fields, expectedStatus: HttpStatusCode.NO_CONTENT_204 })
	218	})
	219
	220	it('Should fail if the instance requires approval', async function () {
	221	this.timeout(60000)
	222
	223	await server.config.enableSignup(true)
	224	await server.registrations.register({ username: 'user42', expectedStatus: HttpStatusCode.FORBIDDEN_403 })
	225	})
	226	})
	227
	228	describe('On registration request', function () {
	229
	230	before(async function () {
	231	this.timeout(60000)
	232
	233	await server.config.enableSignup(true)
	234	})
	235
	236	it('Should fail with an invalid registration reason', async function () {
	237	for (const registrationReason of [ '', 't', 't'.repeat(5000) ]) {
	238	await server.registrations.requestRegistration({
	239	username: 'user_request_1',
	240	registrationReason,
	241	expectedStatus: HttpStatusCode.BAD_REQUEST_400
	242	})
	243	}
	244	})
	245
	246	it('Should succeed with the correct params', async function () {
	247	await server.registrations.requestRegistration({
	248	username: 'user_request_2',
	249	registrationReason: 'tt',
	250	channel: {
	251	displayName: 'my user request 2 channel',
	252	name: 'user_request_2_channel'
	253	}
	254	})
	255	})
	256
7590f7a8	257	it('Should fail if the username is already awaiting registration approval', async function () {
b379759f C	258	await server.registrations.requestRegistration({
	259	username: 'user_request_2',
	260	registrationReason: 'tt',
	261	channel: {
	262	displayName: 'my user request 42 channel',
	263	name: 'user_request_42_channel'
	264	},
	265	expectedStatus: HttpStatusCode.CONFLICT_409
	266	})
	267	})
	268
7590f7a8 C	269	it('Should fail if the email is already awaiting registration approval', async function () {
	270	await server.registrations.requestRegistration({
	271	username: 'user42',
	272	email: 'user_request_2@example.com',
	273	registrationReason: 'tt',
	274	channel: {
	275	displayName: 'my user request 42 channel',
	276	name: 'user_request_42_channel'
	277	},
	278	expectedStatus: HttpStatusCode.CONFLICT_409
	279	})
	280	})
	281
b379759f C	282	it('Should fail if the channel is already awaiting registration approval', async function () {
	283	await server.registrations.requestRegistration({
	284	username: 'user42',
	285	registrationReason: 'tt',
	286	channel: {
	287	displayName: 'my user request 2 channel',
	288	name: 'user_request_2_channel'
	289	},
	290	expectedStatus: HttpStatusCode.CONFLICT_409
	291	})
	292	})
	293
	294	it('Should fail if the instance does not require approval', async function () {
	295	this.timeout(60000)
	296
	297	await server.config.enableSignup(false)
	298
	299	await server.registrations.requestRegistration({
	300	username: 'user42',
	301	registrationReason: 'toto',
	302	expectedStatus: HttpStatusCode.BAD_REQUEST_400
	303	})
	304	})
	305	})
	306	})
	307
	308	describe('Registrations accept/reject', function () {
	309	let id1: number
	310	let id2: number
	311
	312	before(async function () {
	313	this.timeout(60000)
	314
	315	await server.config.enableSignup(true);
	316
	317	({ id: id1 } = await server.registrations.requestRegistration({ username: 'request_2', registrationReason: 'toto' }));
	318	({ id: id2 } = await server.registrations.requestRegistration({ username: 'request_3', registrationReason: 'toto' }))
	319	})
	320
	321	it('Should fail to accept/reject registration without token', async function () {
	322	const options = { id: id1, moderationResponse: 'tt', token: null, expectedStatus: HttpStatusCode.UNAUTHORIZED_401 }
	323	await server.registrations.accept(options)
	324	await server.registrations.reject(options)
	325	})
	326
	327	it('Should fail to accept/reject registration with a non moderator user', async function () {
	328	const options = { id: id1, moderationResponse: 'tt', token: userToken, expectedStatus: HttpStatusCode.FORBIDDEN_403 }
	329	await server.registrations.accept(options)
	330	await server.registrations.reject(options)
	331	})
	332
	333	it('Should fail to accept/reject registration with a bad registration id', async function () {
	334	{
	335	const options = { id: 't' as any, moderationResponse: 'tt', token: moderatorToken, expectedStatus: HttpStatusCode.BAD_REQUEST_400 }
	336	await server.registrations.accept(options)
	337	await server.registrations.reject(options)
	338	}
	339
	340	{
	341	const options = { id: 42, moderationResponse: 'tt', token: moderatorToken, expectedStatus: HttpStatusCode.NOT_FOUND_404 }
	342	await server.registrations.accept(options)
	343	await server.registrations.reject(options)
	344	}
	345	})
346
347	it('Should fail to accept/reject registration with a bad moderation resposne', async function () {
348	for (const moderationResponse of [ '', 't', 't'.repeat(5000) ]) {
349	const options = { id: id1, moderationResponse, token: moderatorToken, expectedStatus: HttpStatusCode.BAD_REQUEST_400 }
350	await server.registrations.accept(options)
351	await server.registrations.reject(options)
352	}
353	})
354
355	it('Should succeed to accept a registration', async function () {
356	await server.registrations.accept({ id: id1, moderationResponse: 'tt', token: moderatorToken })
357	})
358
359	it('Should succeed to reject a registration', async function () {
360	await server.registrations.reject({ id: id2, moderationResponse: 'tt', token: moderatorToken })
361	})
362
363	it('Should fail to accept/reject a registration that was already accepted/rejected', async function () {
364	for (const id of [ id1, id2 ]) {
365	const options = { id, moderationResponse: 'tt', token: moderatorToken, expectedStatus: HttpStatusCode.CONFLICT_409 }
366	await server.registrations.accept(options)
367	await server.registrations.reject(options)
368	}
369	})
370	})
371
372	describe('Registrations deletion', function () {
373	let id1: number
374	let id2: number
375	let id3: number
376
377	before(async function () {
378	({ id: id1 } = await server.registrations.requestRegistration({ username: 'request_4', registrationReason: 'toto' }));
379	({ id: id2 } = await server.registrations.requestRegistration({ username: 'request_5', registrationReason: 'toto' }));
380	({ id: id3 } = await server.registrations.requestRegistration({ username: 'request_6', registrationReason: 'toto' }))
381
382	await server.registrations.accept({ id: id2, moderationResponse: 'tt' })
383	await server.registrations.reject({ id: id3, moderationResponse: 'tt' })
384	})
385
386	it('Should fail to delete registration without token', async function () {
387	await server.registrations.delete({ id: id1, token: null, expectedStatus: HttpStatusCode.UNAUTHORIZED_401 })
388	})
389
390	it('Should fail to delete registration with a non moderator user', async function () {
391	await server.registrations.delete({ id: id1, token: userToken, expectedStatus: HttpStatusCode.FORBIDDEN_403 })
392	})
393
394	it('Should fail to delete registration with a bad registration id', async function () {
395	await server.registrations.delete({ id: 't' as any, token: moderatorToken, expectedStatus: HttpStatusCode.BAD_REQUEST_400 })
396	await server.registrations.delete({ id: 42, token: moderatorToken, expectedStatus: HttpStatusCode.NOT_FOUND_404 })
397	})
398
399	it('Should succeed with the correct params', async function () {
400	await server.registrations.delete({ id: id1, token: moderatorToken })
401	await server.registrations.delete({ id: id2, token: moderatorToken })
402	await server.registrations.delete({ id: id3, token: moderatorToken })
403	})
404	})
405
406	describe('Listing registrations', function () {
407	const path = '/api/v1/users/registrations'
408
409	it('Should fail with a bad start pagination', async function () {
410	await checkBadStartPagination(server.url, path, server.accessToken)
411	})
412
413	it('Should fail with a bad count pagination', async function () {
414	await checkBadCountPagination(server.url, path, server.accessToken)
415	})
416
417	it('Should fail with an incorrect sort', async function () {
418	await checkBadSortPagination(server.url, path, server.accessToken)
419	})
420
421	it('Should fail with a non authenticated user', async function () {
422	await server.registrations.list({
423	token: null,
424	expectedStatus: HttpStatusCode.UNAUTHORIZED_401
425	})
426	})
427
428	it('Should fail with a non admin user', async function () {
429	await server.registrations.list({
430	token: userToken,
431	expectedStatus: HttpStatusCode.FORBIDDEN_403
432	})
433	})
434
435	it('Should succeed with the correct params', async function () {
436	await server.registrations.list({
437	token: moderatorToken,
438	search: 'toto'
439	})
440	})
441	})
442
443	after(async function () {
444	await cleanupTests([ server ])
445	})
446	})