[github/Chocobozzz/PeerTube.git] / server / tests / api / check-params / video-abuses.ts

/* eslint-disable @typescript-eslint/no-unused-expressions,@typescript-eslint/require-await */

import 'mocha'
import { AbuseState, VideoAbuseCreate } from '@shared/models'
import {
  cleanupTests,
  createUser,
  deleteVideoAbuse,
  flushAndRunServer,
  makeGetRequest,
  makePostBodyRequest,
  ServerInfo,
  setAccessTokensToServers,
  updateVideoAbuse,
  uploadVideo,
  userLogin
} from '../../../../shared/extra-utils'
import {
  checkBadCountPagination,
  checkBadSortPagination,
  checkBadStartPagination
} from '../../../../shared/extra-utils/requests/check-api-params'

// FIXME: deprecated in 2.3. Remove this controller

describe('Test video abuses API validators', function () {
  let server: ServerInfo
  let userAccessToken = ''
  let videoAbuseId: number

  // ---------------------------------------------------------------

  before(async function () {
    this.timeout(30000)

    server = await flushAndRunServer(1)

    await setAccessTokensToServers([ server ])

    const username = 'user1'
    const password = 'my super password'
    await createUser({ url: server.url, accessToken: server.accessToken, username: username, password: password })
    userAccessToken = await userLogin(server, { username, password })

    const res = await uploadVideo(server.url, server.accessToken, {})
    server.video = res.body.video
  })

  describe('When listing video abuses', function () {
    const path = '/api/v1/videos/abuse'

    it('Should fail with a bad start pagination', async function () {
      await checkBadStartPagination(server.url, path, server.accessToken)
    })

    it('Should fail with a bad count pagination', async function () {
      await checkBadCountPagination(server.url, path, server.accessToken)
    })

    it('Should fail with an incorrect sort', async function () {
      await checkBadSortPagination(server.url, path, server.accessToken)
    })

    it('Should fail with a non authenticated user', async function () {
      await makeGetRequest({
        url: server.url,
        path,
        statusCodeExpected: 401
      })
    })

    it('Should fail with a non admin user', async function () {
      await makeGetRequest({
        url: server.url,
        path,
        token: userAccessToken,
        statusCodeExpected: 403
      })
    })

    it('Should fail with a bad id filter', async function () {
      await makeGetRequest({ url: server.url, path, token: server.accessToken, query: { id: 'toto' } })
    })

    it('Should fail with a bad state filter', async function () {
      await makeGetRequest({ url: server.url, path, token: server.accessToken, query: { state: 'toto' } })
    })

    it('Should fail with a bad videoIs filter', async function () {
      await makeGetRequest({ url: server.url, path, token: server.accessToken, query: { videoIs: 'toto' } })
    })

    it('Should succeed with the correct params', async function () {
      await makeGetRequest({ url: server.url, path, token: server.accessToken, query: { id: 13 }, statusCodeExpected: 200 })
    })
  })

  describe('When reporting a video abuse', function () {
    const basePath = '/api/v1/videos/'
    let path: string

    before(() => {
      path = basePath + server.video.id + '/abuse'
    })

    it('Should fail with nothing', async function () {
      const fields = {}
      await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
    })

    it('Should fail with a wrong video', async function () {
      const wrongPath = '/api/v1/videos/blabla/abuse'
      const fields = { reason: 'my super reason' }

      await makePostBodyRequest({ url: server.url, path: wrongPath, token: server.accessToken, fields })
    })

    it('Should fail with a non authenticated user', async function () {
      const fields = { reason: 'my super reason' }

      await makePostBodyRequest({ url: server.url, path, token: 'hello', fields, statusCodeExpected: 401 })
    })

    it('Should fail with a reason too short', async function () {
      const fields = { reason: 'h' }

      await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
    })

    it('Should fail with a too big reason', async function () {
      const fields = { reason: 'super'.repeat(605) }

      await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
    })

    it('Should succeed with the correct parameters (basic)', async function () {
      const fields = { reason: 'my super reason' }

      const res = await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields, statusCodeExpected: 200 })
      videoAbuseId = res.body.abuse.id
    })

    it('Should fail with a wrong predefined reason', async function () {
      const fields = { reason: 'my super reason', predefinedReasons: [ 'wrongPredefinedReason' ] }

      await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
    })

    it('Should fail with negative timestamps', async function () {
      const fields = { reason: 'my super reason', startAt: -1 }

      await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
    })

    it('Should succeed with the corret parameters (advanced)', async function () {
      const fields: VideoAbuseCreate = { reason: 'my super reason', predefinedReasons: [ 'serverRules' ], startAt: 1, endAt: 5 }

      await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields, statusCodeExpected: 200 })
    })
  })

  describe('When updating a video abuse', function () {

    it('Should fail with a non authenticated user', async function () {
      await updateVideoAbuse(server.url, 'blabla', server.video.uuid, videoAbuseId, {}, 401)
    })

    it('Should fail with a non admin user', async function () {
      await updateVideoAbuse(server.url, userAccessToken, server.video.uuid, videoAbuseId, {}, 403)
    })

    it('Should fail with a bad video id or bad video abuse id', async function () {
      await updateVideoAbuse(server.url, server.accessToken, server.video.uuid, 45, {}, 404)
      await updateVideoAbuse(server.url, server.accessToken, 52, videoAbuseId, {}, 404)
    })

    it('Should fail with a bad state', async function () {
      const body = { state: 5 }
      await updateVideoAbuse(server.url, server.accessToken, server.video.uuid, videoAbuseId, body, 400)
    })

    it('Should fail with a bad moderation comment', async function () {
      const body = { moderationComment: 'b'.repeat(3001) }
      await updateVideoAbuse(server.url, server.accessToken, server.video.uuid, videoAbuseId, body, 400)
    })

    it('Should succeed with the correct params', async function () {
      const body = { state: AbuseState.ACCEPTED }
      await updateVideoAbuse(server.url, server.accessToken, server.video.uuid, videoAbuseId, body)
    })
  })

  describe('When deleting a video abuse', function () {

    it('Should fail with a non authenticated user', async function () {
      await deleteVideoAbuse(server.url, 'blabla', server.video.uuid, videoAbuseId, 401)
    })

    it('Should fail with a non admin user', async function () {
      await deleteVideoAbuse(server.url, userAccessToken, server.video.uuid, videoAbuseId, 403)
    })

    it('Should fail with a bad video id or bad video abuse id', async function () {
      await deleteVideoAbuse(server.url, server.accessToken, server.video.uuid, 45, 404)
      await deleteVideoAbuse(server.url, server.accessToken, 52, videoAbuseId, 404)
    })

    it('Should succeed with the correct params', async function () {
      await deleteVideoAbuse(server.url, server.accessToken, server.video.uuid, videoAbuseId)
    })
  })

  after(async function () {
    await cleanupTests([ server ])
  })
})
Commit	Line	Data
a1587156	1	/* eslint-disable @typescript-eslint/no-unused-expressions,@typescript-eslint/require-await */
0e1dc3e7	2
0e1dc3e7	3	import 'mocha'
d95d1559	4	import { AbuseState, VideoAbuseCreate } from '@shared/models'
0e1dc3e7	5	import {
7c3b7976	6	cleanupTests,
268eebed C	7	createUser,
268eebed C	8	deleteVideoAbuse,
7c3b7976	9	flushAndRunServer,
268eebed C	10	makeGetRequest,
268eebed C	11	makePostBodyRequest,
268eebed C	12	ServerInfo,
	13	setAccessTokensToServers,
	14	updateVideoAbuse,
	15	uploadVideo,
	16	userLogin
94565d52	17	} from '../../../../shared/extra-utils'
9639bd17	18	import {
	19	checkBadCountPagination,
	20	checkBadSortPagination,
	21	checkBadStartPagination
94565d52	22	} from '../../../../shared/extra-utils/requests/check-api-params'
d95d1559 C	23
d95d1559 C	24	// FIXME: deprecated in 2.3. Remove this controller
0e1dc3e7 C	25
	26	describe('Test video abuses API validators', function () {
	27	let server: ServerInfo
	28	let userAccessToken = ''
268eebed	29	let videoAbuseId: number
0e1dc3e7 C	30
	31	// ---------------------------------------------------------------
	32
	33	before(async function () {
e212f887	34	this.timeout(30000)
0e1dc3e7	35
210feb6c	36	server = await flushAndRunServer(1)
0e1dc3e7 C	37
	38	await setAccessTokensToServers([ server ])
	39
	40	const username = 'user1'
	41	const password = 'my super password'
1eddc9a7	42	await createUser({ url: server.url, accessToken: server.accessToken, username: username, password: password })
eec63bbc	43	userAccessToken = await userLogin(server, { username, password })
0e1dc3e7	44
11ba2ab3 C	45	const res = await uploadVideo(server.url, server.accessToken, {})
11ba2ab3 C	46	server.video = res.body.video
0e1dc3e7 C	47	})
	48
	49	describe('When listing video abuses', function () {
	50	const path = '/api/v1/videos/abuse'
	51
	52	it('Should fail with a bad start pagination', async function () {
11ba2ab3	53	await checkBadStartPagination(server.url, path, server.accessToken)
0e1dc3e7 C	54	})
	55
	56	it('Should fail with a bad count pagination', async function () {
11ba2ab3	57	await checkBadCountPagination(server.url, path, server.accessToken)
0e1dc3e7 C	58	})
	59
	60	it('Should fail with an incorrect sort', async function () {
11ba2ab3	61	await checkBadSortPagination(server.url, path, server.accessToken)
0e1dc3e7 C	62	})
	63
	64	it('Should fail with a non authenticated user', async function () {
11ba2ab3 C	65	await makeGetRequest({
	66	url: server.url,
	67	path,
	68	statusCodeExpected: 401
	69	})
0e1dc3e7 C	70	})
	71
	72	it('Should fail with a non admin user', async function () {
11ba2ab3 C	73	await makeGetRequest({
	74	url: server.url,
	75	path,
	76	token: userAccessToken,
	77	statusCodeExpected: 403
	78	})
0e1dc3e7	79	})
feb34f6b C	80
	81	it('Should fail with a bad id filter', async function () {
	82	await makeGetRequest({ url: server.url, path, token: server.accessToken, query: { id: 'toto' } })
	83	})
	84
	85	it('Should fail with a bad state filter', async function () {
	86	await makeGetRequest({ url: server.url, path, token: server.accessToken, query: { state: 'toto' } })
	87	})
	88
	89	it('Should fail with a bad videoIs filter', async function () {
	90	await makeGetRequest({ url: server.url, path, token: server.accessToken, query: { videoIs: 'toto' } })
	91	})
	92
	93	it('Should succeed with the correct params', async function () {
	94	await makeGetRequest({ url: server.url, path, token: server.accessToken, query: { id: 13 }, statusCodeExpected: 200 })
	95	})
0e1dc3e7 C	96	})
	97
	98	describe('When reporting a video abuse', function () {
	99	const basePath = '/api/v1/videos/'
268eebed C	100	let path: string
	101
	102	before(() => {
	103	path = basePath + server.video.id + '/abuse'
	104	})
0e1dc3e7 C	105
0e1dc3e7 C	106	it('Should fail with nothing', async function () {
0e1dc3e7 C	107	const fields = {}
	108	await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
	109	})
	110
	111	it('Should fail with a wrong video', async function () {
	112	const wrongPath = '/api/v1/videos/blabla/abuse'
268eebed C	113	const fields = { reason: 'my super reason' }
268eebed C	114
53abc4c2	115	await makePostBodyRequest({ url: server.url, path: wrongPath, token: server.accessToken, fields })
0e1dc3e7 C	116	})
	117
	118	it('Should fail with a non authenticated user', async function () {
268eebed C	119	const fields = { reason: 'my super reason' }
268eebed C	120
0e1dc3e7 C	121	await makePostBodyRequest({ url: server.url, path, token: 'hello', fields, statusCodeExpected: 401 })
	122	})
	123
	124	it('Should fail with a reason too short', async function () {
268eebed C	125	const fields = { reason: 'h' }
268eebed C	126
0e1dc3e7 C	127	await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
	128	})
	129
1506307f C	130	it('Should fail with a too big reason', async function () {
1506307f C	131	const fields = { reason: 'super'.repeat(605) }
268eebed	132
0e1dc3e7 C	133	await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
0e1dc3e7 C	134	})
268eebed	135
1ebddadd RK	136	it('Should succeed with the correct parameters (basic)', async function () {
1ebddadd RK	137	const fields = { reason: 'my super reason' }
268eebed C	138
268eebed C	139	const res = await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields, statusCodeExpected: 200 })
d95d1559	140	videoAbuseId = res.body.abuse.id
268eebed	141	})
1ebddadd RK	142
	143	it('Should fail with a wrong predefined reason', async function () {
	144	const fields = { reason: 'my super reason', predefinedReasons: [ 'wrongPredefinedReason' ] }
	145
	146	await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
	147	})
	148
	149	it('Should fail with negative timestamps', async function () {
	150	const fields = { reason: 'my super reason', startAt: -1 }
	151
	152	await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields })
	153	})
	154
1ebddadd RK	155	it('Should succeed with the corret parameters (advanced)', async function () {
	156	const fields: VideoAbuseCreate = { reason: 'my super reason', predefinedReasons: [ 'serverRules' ], startAt: 1, endAt: 5 }
	157
	158	await makePostBodyRequest({ url: server.url, path, token: server.accessToken, fields, statusCodeExpected: 200 })
	159	})
268eebed C	160	})
	161
	162	describe('When updating a video abuse', function () {
268eebed C	163
	164	it('Should fail with a non authenticated user', async function () {
	165	await updateVideoAbuse(server.url, 'blabla', server.video.uuid, videoAbuseId, {}, 401)
	166	})
	167
	168	it('Should fail with a non admin user', async function () {
	169	await updateVideoAbuse(server.url, userAccessToken, server.video.uuid, videoAbuseId, {}, 403)
	170	})
	171
	172	it('Should fail with a bad video id or bad video abuse id', async function () {
	173	await updateVideoAbuse(server.url, server.accessToken, server.video.uuid, 45, {}, 404)
	174	await updateVideoAbuse(server.url, server.accessToken, 52, videoAbuseId, {}, 404)
	175	})
	176
	177	it('Should fail with a bad state', async function () {
	178	const body = { state: 5 }
	179	await updateVideoAbuse(server.url, server.accessToken, server.video.uuid, videoAbuseId, body, 400)
	180	})
	181
	182	it('Should fail with a bad moderation comment', async function () {
1506307f	183	const body = { moderationComment: 'b'.repeat(3001) }
268eebed C	184	await updateVideoAbuse(server.url, server.accessToken, server.video.uuid, videoAbuseId, body, 400)
	185	})
	186
	187	it('Should succeed with the correct params', async function () {
d95d1559	188	const body = { state: AbuseState.ACCEPTED }
268eebed C	189	await updateVideoAbuse(server.url, server.accessToken, server.video.uuid, videoAbuseId, body)
	190	})
	191	})
	192
	193	describe('When deleting a video abuse', function () {
268eebed C	194
	195	it('Should fail with a non authenticated user', async function () {
	196	await deleteVideoAbuse(server.url, 'blabla', server.video.uuid, videoAbuseId, 401)
	197	})
	198
	199	it('Should fail with a non admin user', async function () {
	200	await deleteVideoAbuse(server.url, userAccessToken, server.video.uuid, videoAbuseId, 403)
	201	})
	202
	203	it('Should fail with a bad video id or bad video abuse id', async function () {
	204	await deleteVideoAbuse(server.url, server.accessToken, server.video.uuid, 45, 404)
	205	await deleteVideoAbuse(server.url, server.accessToken, 52, videoAbuseId, 404)
	206	})
	207
	208	it('Should succeed with the correct params', async function () {
	209	await deleteVideoAbuse(server.url, server.accessToken, server.video.uuid, videoAbuseId)
	210	})
0e1dc3e7 C	211	})
0e1dc3e7 C	212
7c3b7976 C	213	after(async function () {
7c3b7976 C	214	await cleanupTests([ server ])
0e1dc3e7 C	215	})
0e1dc3e7 C	216	})