]> git.immae.eu Git - github/Chocobozzz/PeerTube.git/blame - server/tests/api/check-params/users.ts
projects / github / Chocobozzz / PeerTube.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Fix my-account{videos,video-playlists} loading mecanism
[github/Chocobozzz/PeerTube.git] / server / tests / api / check-params / users.ts
CommitLineData
0e1dc3e7
C		 1/* tslint:disable:no-unused-expression */
2
26d21b78 3import { omit } from 'lodash'
0e1dc3e7 4import 'mocha'
47564bbe 5import { join } from 'path'
a95a4cc8 6import { User, UserRole, VideoImport, VideoImportState } from '../../../../shared'
0e1dc3e7
C		 7
8import {
e590b4a5 9 addVideoChannel,
42e1ec25 10 blockUser,
7c3b7976 11 cleanupTests,
42e1ec25
C		 12 createUser,
13 deleteMe,
14 flushAndRunServer,
15 getMyUserInformation,
16 getMyUserVideoRating,
17 getUsersList,
18 immutableAssign,
42e1ec25
C		 19 makeGetRequest,
20 makePostBodyRequest,
21 makePutBodyRequest,
22 makeUploadRequest,
23 registerUser,
24 removeUser,
25 ServerInfo,
26 setAccessTokensToServers,
27 unblockUser,
28 updateUser,
29 uploadVideo,
30 userLogin
94565d52 31} from '../../../../shared/extra-utils'
9639bd17 32import {
33 checkBadCountPagination,
34 checkBadSortPagination,
35 checkBadStartPagination
94565d52
C		 36} from '../../../../shared/extra-utils/requests/check-api-params'
37import { getMagnetURI, getMyVideoImports, getYoutubeVideoUrl, importVideo } from '../../../../shared/extra-utils/videos/video-imports'
187501f8 38import { VideoPrivacy } from '../../../../shared/models/videos'
94565d52 39import { waitJobs } from '../../../../shared/extra-utils/server/jobs'
187501f8 40import { expect } from 'chai'
1eddc9a7 41import { UserAdminFlag } from '../../../../shared/models/users/user-flag.model'
0e1dc3e7
C		 42
43describe('Test users API validators', function () {
44 const path = '/api/v1/users/'
45 let userId: number
46 let rootId: number
a95a4cc8 47 let moderatorId: number
0e1dc3e7
C		 48 let videoId: number
49 let server: ServerInfo
50 let serverWithRegistrationDisabled: ServerInfo
51 let userAccessToken = ''
a95a4cc8 52 let moderatorAccessToken = ''
187501f8 53 let channelId: number
0e1dc3e7
C		 54
55 // ---------------------------------------------------------------
56
57 before(async function () {
e212f887 58 this.timeout(30000)
0e1dc3e7 59
a95a4cc8
C		 60 {
61 const res = await Promise.all([
62 flushAndRunServer(1, { signup: { limit: 7 } }),
63 flushAndRunServer(2)
64 ])
0e1dc3e7 65
a95a4cc8
C		 66 server = res[0]
67 serverWithRegistrationDisabled = res[1]
0e1dc3e7 68
a95a4cc8
C		 69 await setAccessTokensToServers([ server ])
70 }
71
72 {
73 const user = {
74 username: 'user1',
75 password: 'my super password'
76 }
77
78 const videoQuota = 42000000
79 await createUser({
80 url: server.url,
81 accessToken: server.accessToken,
82 username: user.username,
83 password: user.password,
84 videoQuota: videoQuota
85 })
86 userAccessToken = await userLogin(server, user)
87 }
88
89 {
90 const moderator = {
91 username: 'moderator1',
92 password: 'super password'
93 }
94
95 await createUser({
96 url: server.url,
97 accessToken: server.accessToken,
98 username: moderator.username,
99 password: moderator.password,
100 role: UserRole.MODERATOR
101 })
102
103 moderatorAccessToken = await userLogin(server, moderator)
104 }
105
106 {
107 const moderator = {
108 username: 'moderator2',
109 password: 'super password'
110 }
111
112 await createUser({
113 url: server.url,
114 accessToken: server.accessToken,
115 username: moderator.username,
116 password: moderator.password,
117 role: UserRole.MODERATOR
118 })
119 }
26d21b78 120
187501f8
C		 121 {
122 const res = await getMyUserInformation(server.url, server.accessToken)
123 channelId = res.body.videoChannels[ 0 ].id
124 }
125
126 {
127 const res = await uploadVideo(server.url, server.accessToken, {})
128 videoId = res.body.video.id
129 }
a95a4cc8
C		 130
131 {
132 const res = await getUsersList(server.url, server.accessToken)
133 const users: User[] = res.body.data
134
135 userId = users.find(u => u.username === 'user1').id
136 rootId = users.find(u => u.username === 'root').id
137 moderatorId = users.find(u => u.username === 'moderator2').id
138 }
0e1dc3e7
C		 139 })
140
141 describe('When listing users', function () {
142 it('Should fail with a bad start pagination', async function () {
26d21b78 143 await checkBadStartPagination(server.url, path, server.accessToken)
0e1dc3e7
C		 144 })
145
146 it('Should fail with a bad count pagination', async function () {
26d21b78 147 await checkBadCountPagination(server.url, path, server.accessToken)
0e1dc3e7
C		 148 })
149
150 it('Should fail with an incorrect sort', async function () {
26d21b78 151 await checkBadSortPagination(server.url, path, server.accessToken)
0e1dc3e7 152 })
86d13ec2
C		 153
154 it('Should fail with a non authenticated user', async function () {
26d21b78
C		 155 await makeGetRequest({
156 url: server.url,
157 path,
158 statusCodeExpected: 401
159 })
86d13ec2
C		 160 })
161
162 it('Should fail with a non admin user', async function () {
26d21b78
C		 163 await makeGetRequest({
164 url: server.url,
165 path,
166 token: userAccessToken,
167 statusCodeExpected: 403
168 })
86d13ec2 169 })
0e1dc3e7
C		 170 })
171
172 describe('When adding a new user', function () {
26d21b78
C		 173 const baseCorrectParams = {
174 username: 'user2',
175 email: 'test@example.com',
176 password: 'my super password',
177 videoQuota: -1,
bee0abff 178 videoQuotaDaily: -1,
1eddc9a7
C		 179 role: UserRole.USER,
180 adminFlags: UserAdminFlag.BY_PASS_VIDEO_AUTO_BLACKLIST
26d21b78
C		 181 }
182
0e1dc3e7 183 it('Should fail with a too small username', async function () {
d0ce42c1 184 const fields = immutableAssign(baseCorrectParams, { username: '' })
0e1dc3e7
C		 185
186 await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
187 })
188
189 it('Should fail with a too long username', async function () {
9f7a1953 190 const fields = immutableAssign(baseCorrectParams, { username: 'super'.repeat(50) })
0e1dc3e7
C		 191
192 await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
193 })
194
563d032e 195 it('Should fail with a not lowercase username', async function () {
26d21b78 196 const fields = immutableAssign(baseCorrectParams, { username: 'Toto' })
563d032e
C		 197
198 await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
199 })
200
0e1dc3e7 201 it('Should fail with an incorrect username', async function () {
26d21b78 202 const fields = immutableAssign(baseCorrectParams, { username: 'my username' })
0e1dc3e7
C		 203
204 await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
205 })
206
207 it('Should fail with a missing email', async function () {
26d21b78 208 const fields = omit(baseCorrectParams, 'email')
0e1dc3e7
C		 209
210 await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
211 })
212
213 it('Should fail with an invalid email', async function () {
26d21b78 214 const fields = immutableAssign(baseCorrectParams, { email: 'test_example.com' })
0e1dc3e7
C		 215
216 await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
217 })
218
219 it('Should fail with a too small password', async function () {
26d21b78 220 const fields = immutableAssign(baseCorrectParams, { password: 'bla' })
0e1dc3e7
C		 221
222 await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
223 })
224
225 it('Should fail with a too long password', async function () {
26d21b78 226 const fields = immutableAssign(baseCorrectParams, { password: 'super'.repeat(61) })
0e1dc3e7
C		 227
228 await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
229 })
230
1eddc9a7
C		 231 it('Should fail with invalid admin flags', async function () {
232 const fields = immutableAssign(baseCorrectParams, { adminFlags: 'toto' })
233
234 await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
235 })
236
0e1dc3e7 237 it('Should fail with an non authenticated user', async function () {
26d21b78
C		 238 await makePostBodyRequest({
239 url: server.url,
240 path,
241 token: 'super token',
242 fields: baseCorrectParams,
243 statusCodeExpected: 401
244 })
0e1dc3e7
C		 245 })
246
247 it('Should fail if we add a user with the same username', async function () {
26d21b78 248 const fields = immutableAssign(baseCorrectParams, { username: 'user1' })
0e1dc3e7
C		 249
250 await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields, statusCodeExpected: 409 })
251 })
252
253 it('Should fail if we add a user with the same email', async function () {
26d21b78 254 const fields = immutableAssign(baseCorrectParams, { email: 'user1@example.com' })
0e1dc3e7
C		 255
256 await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields, statusCodeExpected: 409 })
257 })
258
77a5501f 259 it('Should fail without a videoQuota', async function () {
26d21b78 260 const fields = omit(baseCorrectParams, 'videoQuota')
77a5501f
C		 261
262 await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
263 })
264
bee0abff
FA		 265 it('Should fail without a videoQuotaDaily', async function () {
266 const fields = omit(baseCorrectParams, 'videoQuotaDaily')
267
268 await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
269 })
270
77a5501f 271 it('Should fail with an invalid videoQuota', async function () {
26d21b78 272 const fields = immutableAssign(baseCorrectParams, { videoQuota: -5 })
757f0da3
C		 273
274 await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
275 })
276
bee0abff
FA		 277 it('Should fail with an invalid videoQuotaDaily', async function () {
278 const fields = immutableAssign(baseCorrectParams, { videoQuotaDaily: -7 })
279
280 await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
281 })
282
757f0da3 283 it('Should fail without a user role', async function () {
26d21b78 284 const fields = omit(baseCorrectParams, 'role')
757f0da3
C		 285
286 await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
287 })
288
289 it('Should fail with an invalid user role', async function () {
26d21b78 290 const fields = immutableAssign(baseCorrectParams, { role: 88989 })
77a5501f
C		 291
292 await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
293 })
294
2ef6a063
C		 295 it('Should fail with a "peertube" username', async function () {
296 const fields = immutableAssign(baseCorrectParams, { username: 'peertube' })
297
298 await makePostBodyRequest({
299 url: server.url,
300 path,
301 token: server.accessToken,
302 fields,
303 statusCodeExpected: 409
304 })
305 })
306
a95a4cc8
C		 307 it('Should fail to create a moderator or an admin with a moderator', async function () {
308 for (const role of [ UserRole.MODERATOR, UserRole.ADMINISTRATOR ]) {
309 const fields = immutableAssign(baseCorrectParams, { role })
310
311 await makePostBodyRequest({
312 url: server.url,
313 path,
314 token: moderatorAccessToken,
315 fields,
316 statusCodeExpected: 403
317 })
318 }
319 })
320
321 it('Should succeed to create a user with a moderator', async function () {
322 const fields = immutableAssign(baseCorrectParams, { username: 'a4656', email: 'a4656@example.com', role: UserRole.USER })
323
324 await makePostBodyRequest({
325 url: server.url,
326 path,
327 token: moderatorAccessToken,
328 fields,
329 statusCodeExpected: 200
330 })
331 })
332
0e1dc3e7 333 it('Should succeed with the correct params', async function () {
26d21b78
C		 334 await makePostBodyRequest({
335 url: server.url,
336 path,
337 token: server.accessToken,
338 fields: baseCorrectParams,
f05a1c30 339 statusCodeExpected: 200
26d21b78 340 })
0e1dc3e7
C		 341 })
342
343 it('Should fail with a non admin user', async function () {
26d21b78 344 const user = {
0e1dc3e7 345 username: 'user1',
0e1dc3e7
C		 346 password: 'my super password'
347 }
26d21b78 348 userAccessToken = await userLogin(server, user)
0e1dc3e7 349
0e1dc3e7
C		 350 const fields = {
351 username: 'user3',
352 email: 'test@example.com',
77a5501f
C		 353 password: 'my super password',
354 videoQuota: 42000000
0e1dc3e7
C		 355 }
356 await makePostBodyRequest({ url: server.url, path, token: userAccessToken, fields, statusCodeExpected: 403 })
357 })
358 })
359
77a5501f
C		 360 describe('When updating my account', function () {
361 it('Should fail with an invalid email attribute', async function () {
362 const fields = {
363 email: 'blabla'
364 }
0e1dc3e7 365
77a5501f 366 await makePutBodyRequest({ url: server.url, path: path + 'me', token: server.accessToken, fields })
0e1dc3e7
C		 367 })
368
369 it('Should fail with a too small password', async function () {
370 const fields = {
a890d1e0 371 currentPassword: 'my super password',
0e1dc3e7
C		 372 password: 'bla'
373 }
374
77a5501f 375 await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields })
0e1dc3e7
C		 376 })
377
378 it('Should fail with a too long password', async function () {
379 const fields = {
a890d1e0 380 currentPassword: 'my super password',
26d21b78 381 password: 'super'.repeat(61)
0e1dc3e7
C		 382 }
383
77a5501f 384 await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields })
0e1dc3e7
C		 385 })
386
a890d1e0
C		 387 it('Should fail without the current password', async function () {
388 const fields = {
389 currentPassword: 'my super password',
390 password: 'super'.repeat(61)
391 }
392
393 await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields })
394 })
395
396 it('Should fail with an invalid current password', async function () {
397 const fields = {
398 currentPassword: 'my super password fail',
399 password: 'super'.repeat(61)
400 }
401
402 await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields, statusCodeExpected: 401 })
403 })
404
0883b324 405 it('Should fail with an invalid NSFW policy attribute', async function () {
0e1dc3e7 406 const fields = {
0883b324 407 nsfwPolicy: 'hello'
0e1dc3e7
C		 408 }
409
77a5501f 410 await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields })
0e1dc3e7
C		 411 })
412
7efe153b
AL		 413 it('Should fail with an invalid autoPlayVideo attribute', async function () {
414 const fields = {
415 autoPlayVideo: -1
416 }
417
418 await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields })
419 })
420
6aa54148
L		 421 it('Should fail with an invalid autoPlayNextVideo attribute', async function () {
422 const fields = {
423 autoPlayNextVideo: -1
424 }
425
426 await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields })
427 })
428
8b9a525a
C		 429 it('Should fail with an invalid videosHistoryEnabled attribute', async function () {
430 const fields = {
431 videosHistoryEnabled: -1
432 }
433
434 await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields })
435 })
436
0e1dc3e7
C		 437 it('Should fail with an non authenticated user', async function () {
438 const fields = {
a890d1e0 439 currentPassword: 'my super password',
0e1dc3e7
C		 440 password: 'my super password'
441 }
442
77a5501f 443 await makePutBodyRequest({ url: server.url, path: path + 'me', token: 'super token', fields, statusCodeExpected: 401 })
0e1dc3e7
C		 444 })
445
2422c46b
C		 446 it('Should fail with a too long description', async function () {
447 const fields = {
d23e6a1c 448 description: 'super'.repeat(201)
2422c46b
C		 449 }
450
451 await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields })
452 })
453
3caf77d3
C		 454 it('Should fail with an invalid videoLanguages attribute', async function () {
455 {
456 const fields = {
457 videoLanguages: 'toto'
458 }
459
460 await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields })
461 }
462
463 {
464 const languages = []
465 for (let i = 0; i < 1000; i++) {
466 languages.push('fr')
467 }
468
469 const fields = {
470 videoLanguages: languages
471 }
472
473 await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields })
474 }
475 })
476
9b474844
C		 477 it('Should fail with an invalid theme', async function () {
478 const fields = { theme: 'invalid' }
479 await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields })
480 })
481
482 it('Should fail with an unknown theme', async function () {
483 const fields = { theme: 'peertube-theme-unknown' }
484 await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields })
485 })
486
43d0ea7f
C		 487 it('Should fail with an invalid noInstanceConfigWarningModal attribute', async function () {
488 const fields = {
489 noInstanceConfigWarningModal: -1
490 }
491
492 await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields })
493 })
494
495 it('Should fail with an invalid noWelcomeModal attribute', async function () {
496 const fields = {
497 noWelcomeModal: -1
498 }
499
500 await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields })
501 })
502
a890d1e0 503 it('Should succeed to change password with the correct params', async function () {
0e1dc3e7 504 const fields = {
a890d1e0 505 currentPassword: 'my super password',
0e1dc3e7 506 password: 'my super password',
0883b324 507 nsfwPolicy: 'blur',
7efe153b 508 autoPlayVideo: false,
9b474844 509 email: 'super_email@example.com',
43d0ea7f
C		 510 theme: 'default',
511 noInstanceConfigWarningModal: true,
512 noWelcomeModal: true
0e1dc3e7
C		 513 }
514
77a5501f
C		 515 await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields, statusCodeExpected: 204 })
516 })
a890d1e0
C		 517
518 it('Should succeed without password change with the correct params', async function () {
519 const fields = {
520 nsfwPolicy: 'blur',
5efab546 521 autoPlayVideo: false
a890d1e0
C		 522 }
523
524 await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields, statusCodeExpected: 204 })
525 })
77a5501f
C		 526 })
527
c5911fd3
C		 528 describe('When updating my avatar', function () {
529 it('Should fail without an incorrect input file', async function () {
530 const fields = {}
531 const attaches = {
99d10301 532 'avatarfile': join(__dirname, '..', '..', 'fixtures', 'video_short.mp4')
c5911fd3 533 }
ac81d1a0 534 await makeUploadRequest({ url: server.url, path: path + '/me/avatar/pick', token: server.accessToken, fields, attaches })
c5911fd3
C		 535 })
536
01de67b9
C		 537 it('Should fail with a big file', async function () {
538 const fields = {}
539 const attaches = {
99d10301 540 'avatarfile': join(__dirname, '..', '..', 'fixtures', 'avatar-big.png')
01de67b9 541 }
ac81d1a0 542 await makeUploadRequest({ url: server.url, path: path + '/me/avatar/pick', token: server.accessToken, fields, attaches })
01de67b9
C		 543 })
544
4bbfc6c6
C		 545 it('Should fail with an unauthenticated user', async function () {
546 const fields = {}
547 const attaches = {
548 'avatarfile': join(__dirname, '..', '..', 'fixtures', 'avatar.png')
549 }
550 await makeUploadRequest({
551 url: server.url,
552 path: path + '/me/avatar/pick',
553 fields,
554 attaches,
555 statusCodeExpected: 401
556 })
557 })
558
c5911fd3
C		 559 it('Should succeed with the correct params', async function () {
560 const fields = {}
561 const attaches = {
99d10301 562 'avatarfile': join(__dirname, '..', '..', 'fixtures', 'avatar.png')
c5911fd3 563 }
ac81d1a0 564 await makeUploadRequest({
47564bbe
C		 565 url: server.url,
566 path: path + '/me/avatar/pick',
567 token: server.accessToken,
568 fields,
569 attaches,
570 statusCodeExpected: 200
571 })
c5911fd3
C		 572 })
573 })
574
94ff4c23 575 describe('When getting a user', function () {
94ff4c23
C		 576
577 it('Should fail with an non authenticated user', async function () {
578 await makeGetRequest({ url: server.url, path: path + userId, token: 'super token', statusCodeExpected: 401 })
579 })
580
581 it('Should fail with a non admin user', async function () {
582 await makeGetRequest({ url: server.url, path, token: userAccessToken, statusCodeExpected: 403 })
583 })
584
585 it('Should succeed with the correct params', async function () {
586 await makeGetRequest({ url: server.url, path: path + userId, token: server.accessToken, statusCodeExpected: 200 })
587 })
588 })
589
77a5501f
C		 590 describe('When updating a user', function () {
591
77a5501f
C		 592 it('Should fail with an invalid email attribute', async function () {
593 const fields = {
594 email: 'blabla'
595 }
596
597 await makePutBodyRequest({ url: server.url, path: path + userId, token: server.accessToken, fields })
598 })
599
fc2ec87a
JM		 600 it('Should fail with an invalid emailVerified attribute', async function () {
601 const fields = {
602 emailVerified: 'yes'
603 }
604
605 await makePutBodyRequest({ url: server.url, path: path + userId, token: server.accessToken, fields })
606 })
607
77a5501f
C		 608 it('Should fail with an invalid videoQuota attribute', async function () {
609 const fields = {
610 videoQuota: -90
611 }
612
613 await makePutBodyRequest({ url: server.url, path: path + userId, token: server.accessToken, fields })
614 })
615
757f0da3
C		 616 it('Should fail with an invalid user role attribute', async function () {
617 const fields = {
618 role: 54878
619 }
620
621 await makePutBodyRequest({ url: server.url, path: path + userId, token: server.accessToken, fields })
622 })
623
b426edd4
C		 624 it('Should fail with a too small password', async function () {
625 const fields = {
626 currentPassword: 'my super password',
627 password: 'bla'
628 }
629
630 await makePutBodyRequest({ url: server.url, path: path + userId, token: server.accessToken, fields })
631 })
632
633 it('Should fail with a too long password', async function () {
634 const fields = {
635 currentPassword: 'my super password',
636 password: 'super'.repeat(61)
637 }
638
639 await makePutBodyRequest({ url: server.url, path: path + userId, token: server.accessToken, fields })
640 })
641
77a5501f
C		 642 it('Should fail with an non authenticated user', async function () {
643 const fields = {
644 videoQuota: 42
645 }
646
647 await makePutBodyRequest({ url: server.url, path: path + userId, token: 'super token', fields, statusCodeExpected: 401 })
648 })
649
f8b8c36b
C		 650 it('Should fail when updating root role', async function () {
651 const fields = {
652 role: UserRole.MODERATOR
653 }
654
655 await makePutBodyRequest({ url: server.url, path: path + rootId, token: server.accessToken, fields })
1eddc9a7
C		 656 })
657
658 it('Should fail with invalid admin flags', async function () {
659 const fields = { adminFlags: 'toto' }
660
a95a4cc8
C		 661 await makePutBodyRequest({ url: server.url, path, token: server.accessToken, fields })
662 })
663
664 it('Should fail to update an admin with a moderator', async function () {
665 const fields = {
666 videoQuota: 42
667 }
668
669 await makePutBodyRequest({
670 url: server.url,
671 path: path + moderatorId,
672 token: moderatorAccessToken,
673 fields,
674 statusCodeExpected: 403
675 })
676 })
677
678 it('Should succeed to update a user with a moderator', async function () {
679 const fields = {
680 videoQuota: 42
681 }
682
683 await makePutBodyRequest({
684 url: server.url,
685 path: path + userId,
686 token: moderatorAccessToken,
687 fields,
688 statusCodeExpected: 204
689 })
f8b8c36b
C		 690 })
691
77a5501f
C		 692 it('Should succeed with the correct params', async function () {
693 const fields = {
694 email: 'email@example.com',
fc2ec87a 695 emailVerified: true,
757f0da3 696 videoQuota: 42,
2f1548fd 697 role: UserRole.USER
77a5501f
C		 698 }
699
700 await makePutBodyRequest({ url: server.url, path: path + userId, token: server.accessToken, fields, statusCodeExpected: 204 })
0e1dc3e7
C		 701 })
702 })
703
704 describe('When getting my information', function () {
705 it('Should fail with a non authenticated user', async function () {
26d21b78 706 await getMyUserInformation(server.url, 'fake_token', 401)
0e1dc3e7
C		 707 })
708
709 it('Should success with the correct parameters', async function () {
26d21b78 710 await getMyUserInformation(server.url, userAccessToken)
0e1dc3e7
C		 711 })
712 })
713
714 describe('When getting my video rating', function () {
715 it('Should fail with a non authenticated user', async function () {
26d21b78 716 await getMyUserVideoRating(server.url, 'fake_token', videoId, 401)
0e1dc3e7
C		 717 })
718
719 it('Should fail with an incorrect video uuid', async function () {
26d21b78 720 await getMyUserVideoRating(server.url, server.accessToken, 'blabla', 400)
0e1dc3e7
C		 721 })
722
723 it('Should fail with an unknown video', async function () {
26d21b78 724 await getMyUserVideoRating(server.url, server.accessToken, '4da6fde3-88f7-4d16-b119-108df5630b06', 404)
0e1dc3e7
C		 725 })
726
26d21b78
C		 727 it('Should succeed with the correct parameters', async function () {
728 await getMyUserVideoRating(server.url, server.accessToken, videoId)
0e1dc3e7
C		 729 })
730 })
731
22834691
C		 732 describe('When retrieving my global ratings', function () {
733 const path = '/api/v1/accounts/user1/ratings'
734
735 it('Should fail with a bad start pagination', async function () {
736 await checkBadStartPagination(server.url, path, userAccessToken)
737 })
738
739 it('Should fail with a bad count pagination', async function () {
740 await checkBadCountPagination(server.url, path, userAccessToken)
741 })
742
743 it('Should fail with an incorrect sort', async function () {
744 await checkBadSortPagination(server.url, path, userAccessToken)
745 })
746
747 it('Should fail with a unauthenticated user', async function () {
748 await makeGetRequest({ url: server.url, path, statusCodeExpected: 401 })
749 })
750
751 it('Should fail with a another user', async function () {
752 await makeGetRequest({ url: server.url, path, token: server.accessToken, statusCodeExpected: 403 })
753 })
754
755 it('Should fail with a bad type', async function () {
756 await makeGetRequest({ url: server.url, path, token: userAccessToken, query: { rating: 'toto ' }, statusCodeExpected: 400 })
757 })
758
759 it('Should succeed with the correct params', async function () {
760 await makeGetRequest({ url: server.url, path, token: userAccessToken, statusCodeExpected: 200 })
761 })
762 })
763
e6921918 764 describe('When blocking/unblocking/removing user', function () {
0e1dc3e7 765 it('Should fail with an incorrect id', async function () {
26d21b78 766 await removeUser(server.url, 'blabla', server.accessToken, 400)
e6921918
C		 767 await blockUser(server.url, 'blabla', server.accessToken, 400)
768 await unblockUser(server.url, 'blabla', server.accessToken, 400)
0e1dc3e7
C		 769 })
770
771 it('Should fail with the root user', async function () {
26d21b78 772 await removeUser(server.url, rootId, server.accessToken, 400)
e6921918
C		 773 await blockUser(server.url, rootId, server.accessToken, 400)
774 await unblockUser(server.url, rootId, server.accessToken, 400)
0e1dc3e7
C		 775 })
776
777 it('Should return 404 with a non existing id', async function () {
26d21b78 778 await removeUser(server.url, 4545454, server.accessToken, 404)
e6921918
C		 779 await blockUser(server.url, 4545454, server.accessToken, 404)
780 await unblockUser(server.url, 4545454, server.accessToken, 404)
781 })
782
783 it('Should fail with a non admin user', async function () {
784 await removeUser(server.url, userId, userAccessToken, 403)
785 await blockUser(server.url, userId, userAccessToken, 403)
786 await unblockUser(server.url, userId, userAccessToken, 403)
0e1dc3e7 787 })
a95a4cc8
C		 788
789 it('Should fail on a moderator with a moderator', async function () {
790 await removeUser(server.url, moderatorId, moderatorAccessToken, 403)
791 await blockUser(server.url, moderatorId, moderatorAccessToken, 403)
792 await unblockUser(server.url, moderatorId, moderatorAccessToken, 403)
793 })
794
795 it('Should succeed on a user with a moderator', async function () {
796 await blockUser(server.url, userId, moderatorAccessToken)
797 await unblockUser(server.url, userId, moderatorAccessToken)
798 })
0e1dc3e7
C		 799 })
800
92b9d60c
C		 801 describe('When deleting our account', function () {
802 it('Should fail with with the root account', async function () {
803 await deleteMe(server.url, server.accessToken, 400)
804 })
805 })
806
e590b4a5 807 describe('When registering a new user', function () {
0e1dc3e7 808 const registrationPath = path + '/register'
26d21b78
C		 809 const baseCorrectParams = {
810 username: 'user3',
1f20622f 811 displayName: 'super user',
26d21b78
C		 812 email: 'test3@example.com',
813 password: 'my super password'
814 }
0e1dc3e7
C		 815
816 it('Should fail with a too small username', async function () {
d0ce42c1 817 const fields = immutableAssign(baseCorrectParams, { username: '' })
0e1dc3e7
C		 818
819 await makePostBodyRequest({ url: server.url, path: registrationPath, token: server.accessToken, fields })
820 })
821
822 it('Should fail with a too long username', async function () {
9f7a1953 823 const fields = immutableAssign(baseCorrectParams, { username: 'super'.repeat(50) })
0e1dc3e7
C		 824
825 await makePostBodyRequest({ url: server.url, path: registrationPath, token: server.accessToken, fields })
826 })
827
828 it('Should fail with an incorrect username', async function () {
26d21b78 829 const fields = immutableAssign(baseCorrectParams, { username: 'my username' })
0e1dc3e7
C		 830
831 await makePostBodyRequest({ url: server.url, path: registrationPath, token: server.accessToken, fields })
832 })
833
834 it('Should fail with a missing email', async function () {
26d21b78 835 const fields = omit(baseCorrectParams, 'email')
0e1dc3e7
C		 836
837 await makePostBodyRequest({ url: server.url, path: registrationPath, token: server.accessToken, fields })
838 })
839
840 it('Should fail with an invalid email', async function () {
26d21b78 841 const fields = immutableAssign(baseCorrectParams, { email: 'test_example.com' })
0e1dc3e7
C		 842
843 await makePostBodyRequest({ url: server.url, path: registrationPath, token: server.accessToken, fields })
844 })
845
846 it('Should fail with a too small password', async function () {
26d21b78 847 const fields = immutableAssign(baseCorrectParams, { password: 'bla' })
0e1dc3e7
C		 848
849 await makePostBodyRequest({ url: server.url, path: registrationPath, token: server.accessToken, fields })
850 })
851
852 it('Should fail with a too long password', async function () {
26d21b78 853 const fields = immutableAssign(baseCorrectParams, { password: 'super'.repeat(61) })
0e1dc3e7
C		 854
855 await makePostBodyRequest({ url: server.url, path: registrationPath, token: server.accessToken, fields })
856 })
857
858 it('Should fail if we register a user with the same username', async function () {
26d21b78 859 const fields = immutableAssign(baseCorrectParams, { username: 'root' })
0e1dc3e7 860
26d21b78
C		 861 await makePostBodyRequest({
862 url: server.url,
863 path: registrationPath,
864 token: server.accessToken,
865 fields,
866 statusCodeExpected: 409
867 })
0e1dc3e7
C		 868 })
869
2ef6a063
C		 870 it('Should fail with a "peertube" username', async function () {
871 const fields = immutableAssign(baseCorrectParams, { username: 'peertube' })
872
873 await makePostBodyRequest({
874 url: server.url,
875 path: registrationPath,
876 token: server.accessToken,
877 fields,
878 statusCodeExpected: 409
879 })
880 })
881
0e1dc3e7 882 it('Should fail if we register a user with the same email', async function () {
7c3b7976 883 const fields = immutableAssign(baseCorrectParams, { email: 'admin' + server.internalServerNumber + '@example.com' })
0e1dc3e7 884
26d21b78
C		 885 await makePostBodyRequest({
886 url: server.url,
887 path: registrationPath,
888 token: server.accessToken,
889 fields,
890 statusCodeExpected: 409
891 })
0e1dc3e7
C		 892 })
893
1f20622f
C		 894 it('Should fail with a bad display name', async function () {
895 const fields = immutableAssign(baseCorrectParams, { displayName: 'a'.repeat(150) })
896
897 await makePostBodyRequest({ url: server.url, path: registrationPath, token: server.accessToken, fields })
898 })
899
e590b4a5
C		 900 it('Should fail with a bad channel name', async function () {
901 const fields = immutableAssign(baseCorrectParams, { channel: { name: '[]azf', displayName: 'toto' } })
902
903 await makePostBodyRequest({ url: server.url, path: registrationPath, token: server.accessToken, fields })
904 })
905
906 it('Should fail with a bad channel display name', async function () {
907 const fields = immutableAssign(baseCorrectParams, { channel: { name: 'toto', displayName: '' } })
908
909 await makePostBodyRequest({ url: server.url, path: registrationPath, token: server.accessToken, fields })
910 })
911
32d7f2b7 912 it('Should fail with a channel name that is the same as username', async function () {
1d5342ab
C		 913 const source = { username: 'super_user', channel: { name: 'super_user', displayName: 'display name' } }
914 const fields = immutableAssign(baseCorrectParams, source)
915
916 await makePostBodyRequest({ url: server.url, path: registrationPath, token: server.accessToken, fields })
917 })
918
e590b4a5
C		 919 it('Should fail with an existing channel', async function () {
920 const videoChannelAttributesArg = { name: 'existing_channel', displayName: 'hello', description: 'super description' }
921 await addVideoChannel(server.url, server.accessToken, videoChannelAttributesArg)
922
923 const fields = immutableAssign(baseCorrectParams, { channel: { name: 'existing_channel', displayName: 'toto' } })
924
925 await makePostBodyRequest({ url: server.url, path: registrationPath, token: server.accessToken, fields, statusCodeExpected: 409 })
926 })
927
0e1dc3e7 928 it('Should succeed with the correct params', async function () {
e590b4a5
C		 929 const fields = immutableAssign(baseCorrectParams, { channel: { name: 'super_channel', displayName: 'toto' } })
930
26d21b78
C		 931 await makePostBodyRequest({
932 url: server.url,
933 path: registrationPath,
934 token: server.accessToken,
e590b4a5 935 fields: fields,
26d21b78
C		 936 statusCodeExpected: 204
937 })
0e1dc3e7
C		 938 })
939
940 it('Should fail on a server with registration disabled', async function () {
941 const fields = {
942 username: 'user4',
943 email: 'test4@example.com',
944 password: 'my super password 4'
945 }
946
947 await makePostBodyRequest({
948 url: serverWithRegistrationDisabled.url,
949 path: registrationPath,
950 token: serverWithRegistrationDisabled.accessToken,
951 fields,
952 statusCodeExpected: 403
953 })
954 })
955 })
956
957 describe('When registering multiple users on a server with users limit', function () {
958 it('Should fail when after 3 registrations', async function () {
959 await registerUser(server.url, 'user42', 'super password', 403)
960 })
961 })
962
77a5501f 963 describe('When having a video quota', function () {
bee0abff 964 it('Should fail with a user having too many videos', async function () {
26d21b78
C		 965 await updateUser({
966 url: server.url,
967 userId: rootId,
968 accessToken: server.accessToken,
77a5501f 969 videoQuota: 42
26d21b78 970 })
77a5501f 971
26d21b78 972 await uploadVideo(server.url, server.accessToken, {}, 403)
77a5501f
C		 973 })
974
bee0abff 975 it('Should fail with a registered user having too many videos', async function () {
adc236fe 976 this.timeout(30000)
77a5501f 977
26d21b78 978 const user = {
77a5501f 979 username: 'user3',
77a5501f
C		 980 password: 'my super password'
981 }
26d21b78 982 userAccessToken = await userLogin(server, user)
77a5501f
C		 983
984 const videoAttributes = { fixture: 'video_short2.webm' }
985 await uploadVideo(server.url, userAccessToken, videoAttributes)
986 await uploadVideo(server.url, userAccessToken, videoAttributes)
987 await uploadVideo(server.url, userAccessToken, videoAttributes)
988 await uploadVideo(server.url, userAccessToken, videoAttributes)
989 await uploadVideo(server.url, userAccessToken, videoAttributes)
990 await uploadVideo(server.url, userAccessToken, videoAttributes, 403)
991 })
187501f8
C		 992
993 it('Should fail to import with HTTP/Torrent/magnet', async function () {
a031ab0b 994 this.timeout(120000)
187501f8
C		 995
996 const baseAttributes = {
997 channelId: 1,
998 privacy: VideoPrivacy.PUBLIC
999 }
1000 await importVideo(server.url, server.accessToken, immutableAssign(baseAttributes, { targetUrl: getYoutubeVideoUrl() }))
1001 await importVideo(server.url, server.accessToken, immutableAssign(baseAttributes, { magnetUri: getMagnetURI() }))
3e17515e 1002 await importVideo(server.url, server.accessToken, immutableAssign(baseAttributes, { torrentfile: 'video-720p.torrent' }))
187501f8
C		 1003
1004 await waitJobs([ server ])
1005
1006 const res = await getMyVideoImports(server.url, server.accessToken)
1007
1008 expect(res.body.total).to.equal(3)
1009 const videoImports: VideoImport[] = res.body.data
1010 expect(videoImports).to.have.lengthOf(3)
1011
1012 for (const videoImport of videoImports) {
1013 expect(videoImport.state.id).to.equal(VideoImportState.FAILED)
1014 expect(videoImport.error).not.to.be.undefined
1015 expect(videoImport.error).to.contain('user video quota is exceeded')
1016 }
1017 })
77a5501f
C		 1018 })
1019
bee0abff
FA		 1020 describe('When having a daily video quota', function () {
1021 it('Should fail with a user having too many videos', async function () {
1022 await updateUser({
1023 url: server.url,
1024 userId: rootId,
1025 accessToken: server.accessToken,
1026 videoQuotaDaily: 42
1027 })
1028
1029 await uploadVideo(server.url, server.accessToken, {}, 403)
1030 })
1031 })
1032
1033 describe('When having an absolute and daily video quota', function () {
1034 it('Should fail if exceeding total quota', async function () {
1035 await updateUser({
1036 url: server.url,
1037 userId: rootId,
1038 accessToken: server.accessToken,
1039 videoQuota: 42,
1040 videoQuotaDaily: 1024 * 1024 * 1024
1041 })
1042
1043 await uploadVideo(server.url, server.accessToken, {}, 403)
1044 })
1045
1046 it('Should fail if exceeding daily quota', async function () {
1047 await updateUser({
1048 url: server.url,
1049 userId: rootId,
1050 accessToken: server.accessToken,
1051 videoQuota: 1024 * 1024 * 1024,
1052 videoQuotaDaily: 42
1053 })
1054
1055 await uploadVideo(server.url, server.accessToken, {}, 403)
1056 })
1057 })
1058
f076daa7
C		 1059 describe('When asking a password reset', function () {
1060 const path = '/api/v1/users/ask-reset-password'
1061
1062 it('Should fail with a missing email', async function () {
1063 const fields = {}
1064
1065 await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
1066 })
1067
1068 it('Should fail with an invalid email', async function () {
1069 const fields = { email: 'hello' }
1070
1071 await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
1072 })
1073
1074 it('Should success with the correct params', async function () {
1075 const fields = { email: 'admin@example.com' }
1076
1077 await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields, statusCodeExpected: 204 })
1078 })
1079 })
1080
d9eaee39
JM		 1081 describe('When asking for an account verification email', function () {
1082 const path = '/api/v1/users/ask-send-verify-email'
1083
1084 it('Should fail with a missing email', async function () {
1085 const fields = {}
1086
1087 await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
1088 })
1089
1090 it('Should fail with an invalid email', async function () {
1091 const fields = { email: 'hello' }
1092
1093 await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
1094 })
1095
1096 it('Should succeed with the correct params', async function () {
1097 const fields = { email: 'admin@example.com' }
1098
1099 await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields, statusCodeExpected: 204 })
1100 })
1101 })
1102
7c3b7976
C		 1103 after(async function () {
1104 await cleanupTests([ server, serverWithRegistrationDisabled ])
0e1dc3e7
C		 1105 })
1106})
ActivityPub-federated video streaming platform using P2P directly in your web browser