[github/Chocobozzz/PeerTube.git] / server / tests / api / check-params / video-abuses.ts

/* tslint:disable:no-unused-expression */

import 'mocha'

import {
  cleanupTests,
  createUser,
  deleteVideoAbuse,
  flushAndRunServer,
  makeGetRequest,
  makePostBodyRequest,
  ServerInfo,
  setAccessTokensToServers,
  updateVideoAbuse,
  uploadVideo,
  userLogin
} from '../../../../shared/extra-utils'
import {
  checkBadCountPagination,
  checkBadSortPagination,
  checkBadStartPagination
} from '../../../../shared/extra-utils/requests/check-api-params'
import { VideoAbuseState } from '../../../../shared/models/videos'

describe('Test video abuses API validators', function () {
  let server: ServerInfo
  let userAccessToken = ''
  let videoAbuseId: number

  // ---------------------------------------------------------------

  before(async function () {
    this.timeout(30000)

    server = await flushAndRunServer(1)

    await setAccessTokensToServers([ server ])

    const username = 'user1'
    const password = 'my super password'
    await createUser({ url: server.url, accessToken: server.accessToken, username: username, password: password })
    userAccessToken = await userLogin(server, { username, password })

    const res = await uploadVideo(server.url, server.accessToken, {})
    server.video = res.body.video
  })

  describe('When listing video abuses', function () {
    const path = '/api/v1/videos/abuse'

    it('Should fail with a bad start pagination', async function () {
      await checkBadStartPagination(server.url, path, server.accessToken)
    })

    it('Should fail with a bad count pagination', async function () {
      await checkBadCountPagination(server.url, path, server.accessToken)
    })

    it('Should fail with an incorrect sort', async function () {
      await checkBadSortPagination(server.url, path, server.accessToken)
    })

    it('Should fail with a non authenticated user', async function () {
      await makeGetRequest({
        url: server.url,
        path,
        statusCodeExpected: 401
      })
    })

    it('Should fail with a non admin user', async function () {
      await makeGetRequest({
        url: server.url,
        path,
        token: userAccessToken,
        statusCodeExpected: 403
      })
    })
  })

  describe('When reporting a video abuse', function () {
    const basePath = '/api/v1/videos/'
    let path: string

    before(() => {
      path = basePath + server.video.id + '/abuse'
    })

    it('Should fail with nothing', async function () {
      const fields = {}
      await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
    })

    it('Should fail with a wrong video', async function () {
      const wrongPath = '/api/v1/videos/blabla/abuse'
      const fields = { reason: 'my super reason' }

      await makePostBodyRequest({ url: server.url, path: wrongPath, token: server.accessToken, fields })
    })

    it('Should fail with a non authenticated user', async function () {
      const fields = { reason: 'my super reason' }

      await makePostBodyRequest({ url: server.url, path, token: 'hello', fields, statusCodeExpected: 401 })
    })

    it('Should fail with a reason too short', async function () {
      const fields = { reason: 'h' }

      await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
    })

    it('Should fail with a too big reason', async function () {
      const fields = { reason: 'super'.repeat(605) }

      await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
    })

    it('Should succeed with the correct parameters', async function () {
      const fields = { reason: 'super reason' }

      const res = await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields, statusCodeExpected: 200 })
      videoAbuseId = res.body.videoAbuse.id
    })
  })

  describe('When updating a video abuse', function () {
    const basePath = '/api/v1/videos/'
    let path: string

    before(() => {
      path = basePath + server.video.id + '/abuse/' + videoAbuseId
    })

    it('Should fail with a non authenticated user', async function () {
      await updateVideoAbuse(server.url, 'blabla', server.video.uuid, videoAbuseId, {}, 401)
    })

    it('Should fail with a non admin user', async function () {
      await updateVideoAbuse(server.url, userAccessToken, server.video.uuid, videoAbuseId, {}, 403)
    })

    it('Should fail with a bad video id or bad video abuse id', async function () {
      await updateVideoAbuse(server.url, server.accessToken, server.video.uuid, 45, {}, 404)
      await updateVideoAbuse(server.url, server.accessToken, 52, videoAbuseId, {}, 404)
    })

    it('Should fail with a bad state', async function () {
      const body = { state: 5 }
      await updateVideoAbuse(server.url, server.accessToken, server.video.uuid, videoAbuseId, body, 400)
    })

    it('Should fail with a bad moderation comment', async function () {
      const body = { moderationComment: 'b'.repeat(3001) }
      await updateVideoAbuse(server.url, server.accessToken, server.video.uuid, videoAbuseId, body, 400)
    })

    it('Should succeed with the correct params', async function () {
      const body = { state: VideoAbuseState.ACCEPTED }
      await updateVideoAbuse(server.url, server.accessToken, server.video.uuid, videoAbuseId, body)
    })
  })

  describe('When deleting a video abuse', function () {
    const basePath = '/api/v1/videos/'
    let path: string

    before(() => {
      path = basePath + server.video.id + '/abuse/' + videoAbuseId
    })

    it('Should fail with a non authenticated user', async function () {
      await deleteVideoAbuse(server.url, 'blabla', server.video.uuid, videoAbuseId, 401)
    })

    it('Should fail with a non admin user', async function () {
      await deleteVideoAbuse(server.url, userAccessToken, server.video.uuid, videoAbuseId, 403)
    })

    it('Should fail with a bad video id or bad video abuse id', async function () {
      await deleteVideoAbuse(server.url, server.accessToken, server.video.uuid, 45, 404)
      await deleteVideoAbuse(server.url, server.accessToken, 52, videoAbuseId, 404)
    })

    it('Should succeed with the correct params', async function () {
      await deleteVideoAbuse(server.url, server.accessToken, server.video.uuid, videoAbuseId)
    })
  })

  after(async function () {
    await cleanupTests([ server ])
  })
})
Commit	Line	Data
0e1dc3e7 C	1	/* tslint:disable:no-unused-expression */
0e1dc3e7 C	2
0e1dc3e7 C	3	import 'mocha'
	4
	5	import {
7c3b7976	6	cleanupTests,
268eebed C	7	createUser,
268eebed C	8	deleteVideoAbuse,
7c3b7976	9	flushAndRunServer,
268eebed C	10	makeGetRequest,
268eebed C	11	makePostBodyRequest,
268eebed C	12	ServerInfo,
	13	setAccessTokensToServers,
	14	updateVideoAbuse,
	15	uploadVideo,
	16	userLogin
94565d52	17	} from '../../../../shared/extra-utils'
9639bd17	18	import {
	19	checkBadCountPagination,
	20	checkBadSortPagination,
	21	checkBadStartPagination
94565d52	22	} from '../../../../shared/extra-utils/requests/check-api-params'
268eebed	23	import { VideoAbuseState } from '../../../../shared/models/videos'
0e1dc3e7 C	24
	25	describe('Test video abuses API validators', function () {
	26	let server: ServerInfo
	27	let userAccessToken = ''
268eebed	28	let videoAbuseId: number
0e1dc3e7 C	29
	30	// ---------------------------------------------------------------
	31
	32	before(async function () {
e212f887	33	this.timeout(30000)
0e1dc3e7	34
210feb6c	35	server = await flushAndRunServer(1)
0e1dc3e7 C	36
	37	await setAccessTokensToServers([ server ])
	38
	39	const username = 'user1'
	40	const password = 'my super password'
1eddc9a7	41	await createUser({ url: server.url, accessToken: server.accessToken, username: username, password: password })
eec63bbc	42	userAccessToken = await userLogin(server, { username, password })
0e1dc3e7	43
11ba2ab3 C	44	const res = await uploadVideo(server.url, server.accessToken, {})
11ba2ab3 C	45	server.video = res.body.video
0e1dc3e7 C	46	})
	47
	48	describe('When listing video abuses', function () {
	49	const path = '/api/v1/videos/abuse'
	50
	51	it('Should fail with a bad start pagination', async function () {
11ba2ab3	52	await checkBadStartPagination(server.url, path, server.accessToken)
0e1dc3e7 C	53	})
	54
	55	it('Should fail with a bad count pagination', async function () {
11ba2ab3	56	await checkBadCountPagination(server.url, path, server.accessToken)
0e1dc3e7 C	57	})
	58
	59	it('Should fail with an incorrect sort', async function () {
11ba2ab3	60	await checkBadSortPagination(server.url, path, server.accessToken)
0e1dc3e7 C	61	})
	62
	63	it('Should fail with a non authenticated user', async function () {
11ba2ab3 C	64	await makeGetRequest({
	65	url: server.url,
	66	path,
	67	statusCodeExpected: 401
	68	})
0e1dc3e7 C	69	})
	70
	71	it('Should fail with a non admin user', async function () {
11ba2ab3 C	72	await makeGetRequest({
	73	url: server.url,
	74	path,
	75	token: userAccessToken,
	76	statusCodeExpected: 403
	77	})
0e1dc3e7 C	78	})
	79	})
	80
	81	describe('When reporting a video abuse', function () {
	82	const basePath = '/api/v1/videos/'
268eebed C	83	let path: string
	84
	85	before(() => {
	86	path = basePath + server.video.id + '/abuse'
	87	})
0e1dc3e7 C	88
0e1dc3e7 C	89	it('Should fail with nothing', async function () {
0e1dc3e7 C	90	const fields = {}
	91	await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
	92	})
	93
	94	it('Should fail with a wrong video', async function () {
	95	const wrongPath = '/api/v1/videos/blabla/abuse'
268eebed C	96	const fields = { reason: 'my super reason' }
268eebed C	97
53abc4c2	98	await makePostBodyRequest({ url: server.url, path: wrongPath, token: server.accessToken, fields })
0e1dc3e7 C	99	})
	100
	101	it('Should fail with a non authenticated user', async function () {
268eebed C	102	const fields = { reason: 'my super reason' }
268eebed C	103
0e1dc3e7 C	104	await makePostBodyRequest({ url: server.url, path, token: 'hello', fields, statusCodeExpected: 401 })
	105	})
	106
	107	it('Should fail with a reason too short', async function () {
268eebed C	108	const fields = { reason: 'h' }
268eebed C	109
0e1dc3e7 C	110	await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
	111	})
	112
1506307f C	113	it('Should fail with a too big reason', async function () {
1506307f C	114	const fields = { reason: 'super'.repeat(605) }
268eebed	115
0e1dc3e7 C	116	await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
0e1dc3e7 C	117	})
268eebed C	118
	119	it('Should succeed with the correct parameters', async function () {
	120	const fields = { reason: 'super reason' }
	121
	122	const res = await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields, statusCodeExpected: 200 })
	123	videoAbuseId = res.body.videoAbuse.id
	124	})
	125	})
	126
	127	describe('When updating a video abuse', function () {
	128	const basePath = '/api/v1/videos/'
	129	let path: string
	130
	131	before(() => {
	132	path = basePath + server.video.id + '/abuse/' + videoAbuseId
	133	})
	134
	135	it('Should fail with a non authenticated user', async function () {
	136	await updateVideoAbuse(server.url, 'blabla', server.video.uuid, videoAbuseId, {}, 401)
	137	})
	138
	139	it('Should fail with a non admin user', async function () {
	140	await updateVideoAbuse(server.url, userAccessToken, server.video.uuid, videoAbuseId, {}, 403)
	141	})
	142
	143	it('Should fail with a bad video id or bad video abuse id', async function () {
	144	await updateVideoAbuse(server.url, server.accessToken, server.video.uuid, 45, {}, 404)
	145	await updateVideoAbuse(server.url, server.accessToken, 52, videoAbuseId, {}, 404)
	146	})
	147
	148	it('Should fail with a bad state', async function () {
	149	const body = { state: 5 }
	150	await updateVideoAbuse(server.url, server.accessToken, server.video.uuid, videoAbuseId, body, 400)
	151	})
	152
	153	it('Should fail with a bad moderation comment', async function () {
1506307f	154	const body = { moderationComment: 'b'.repeat(3001) }
268eebed C	155	await updateVideoAbuse(server.url, server.accessToken, server.video.uuid, videoAbuseId, body, 400)
	156	})
	157
	158	it('Should succeed with the correct params', async function () {
	159	const body = { state: VideoAbuseState.ACCEPTED }
	160	await updateVideoAbuse(server.url, server.accessToken, server.video.uuid, videoAbuseId, body)
	161	})
	162	})
	163
	164	describe('When deleting a video abuse', function () {
	165	const basePath = '/api/v1/videos/'
	166	let path: string
	167
	168	before(() => {
	169	path = basePath + server.video.id + '/abuse/' + videoAbuseId
	170	})
	171
	172	it('Should fail with a non authenticated user', async function () {
	173	await deleteVideoAbuse(server.url, 'blabla', server.video.uuid, videoAbuseId, 401)
	174	})
	175
	176	it('Should fail with a non admin user', async function () {
	177	await deleteVideoAbuse(server.url, userAccessToken, server.video.uuid, videoAbuseId, 403)
	178	})
	179
	180	it('Should fail with a bad video id or bad video abuse id', async function () {
	181	await deleteVideoAbuse(server.url, server.accessToken, server.video.uuid, 45, 404)
	182	await deleteVideoAbuse(server.url, server.accessToken, 52, videoAbuseId, 404)
	183	})
	184
	185	it('Should succeed with the correct params', async function () {
	186	await deleteVideoAbuse(server.url, server.accessToken, server.video.uuid, videoAbuseId)
	187	})
0e1dc3e7 C	188	})
0e1dc3e7 C	189
7c3b7976 C	190	after(async function () {
7c3b7976 C	191	await cleanupTests([ server ])
0e1dc3e7 C	192	})
0e1dc3e7 C	193	})