[github/Chocobozzz/PeerTube.git] / server / tests / api / users.js

'use strict'

const chai = require('chai')
const expect = chai.expect
const pathUtils = require('path')
const series = require('async/series')

const loginUtils = require('../utils/login')
const podsUtils = require('../utils/pods')
const serversUtils = require('../utils/servers')
const usersUtils = require('../utils/users')
const videosUtils = require('../utils/videos')
const webtorrent = require(pathUtils.join(__dirname, '../../lib/webtorrent'))
webtorrent.silent = true

describe('Test users', function () {
  let server = null
  let accessToken = null
  let accessTokenUser = null
  let videoId = null
  let userId = null

  before(function (done) {
    this.timeout(20000)

    series([
      function (next) {
        serversUtils.flushTests(next)
      },
      function (next) {
        serversUtils.runServer(1, function (server1) {
          server = server1
          next()
        })
      }
    ], done)
  })

  it('Should create a new client')

  it('Should return the first client')

  it('Should remove the last client')

  it('Should not login with an invalid client id', function (done) {
    const client = { id: 'client', password: server.client.secret }
    loginUtils.login(server.url, client, server.user, 400, function (err, res) {
      if (err) throw err

      expect(res.body.error).to.equal('invalid_client')
      done()
    })
  })

  it('Should not login with an invalid client password', function (done) {
    const client = { id: server.client.id, password: 'coucou' }
    loginUtils.login(server.url, client, server.user, 400, function (err, res) {
      if (err) throw err

      expect(res.body.error).to.equal('invalid_client')
      done()
    })
  })

  it('Should not login with an invalid username', function (done) {
    const user = { username: 'captain crochet', password: server.user.password }
    loginUtils.login(server.url, server.client, user, 400, function (err, res) {
      if (err) throw err

      expect(res.body.error).to.equal('invalid_grant')
      done()
    })
  })

  it('Should not login with an invalid password', function (done) {
    const user = { username: server.user.username, password: 'mewthree' }
    loginUtils.login(server.url, server.client, user, 400, function (err, res) {
      if (err) throw err

      expect(res.body.error).to.equal('invalid_grant')
      done()
    })
  })

  it('Should not be able to upload a video', function (done) {
    accessToken = 'mysupertoken'

    const name = 'my super name'
    const description = 'my super description'
    const tags = [ 'tag1', 'tag2' ]
    const video = 'video_short.webm'
    videosUtils.uploadVideo(server.url, accessToken, name, description, tags, video, 401, done)
  })

  it('Should not be able to make friends', function (done) {
    accessToken = 'mysupertoken'
    podsUtils.makeFriends(server.url, accessToken, 401, done)
  })

  it('Should not be able to quit friends', function (done) {
    accessToken = 'mysupertoken'
    podsUtils.quitFriends(server.url, accessToken, 401, done)
  })

  it('Should be able to login', function (done) {
    loginUtils.login(server.url, server.client, server.user, 200, function (err, res) {
      if (err) throw err

      accessToken = res.body.access_token
      done()
    })
  })

  it('Should upload the video with the correct token', function (done) {
    const name = 'my super name'
    const description = 'my super description'
    const tags = [ 'tag1', 'tag2' ]
    const video = 'video_short.webm'
    videosUtils.uploadVideo(server.url, accessToken, name, description, tags, video, 204, function (err, res) {
      if (err) throw err

      videosUtils.getVideosList(server.url, function (err, res) {
        if (err) throw err

        const video = res.body.data[0]
        expect(video.author).to.equal('root')

        videoId = video.id
        done()
      })
    })
  })

  it('Should upload the video again with the correct token', function (done) {
    const name = 'my super name 2'
    const description = 'my super description 2'
    const tags = [ 'tag1' ]
    const video = 'video_short.webm'
    videosUtils.uploadVideo(server.url, accessToken, name, description, tags, video, 204, done)
  })

  it('Should not be able to remove the video with an incorrect token', function (done) {
    videosUtils.removeVideo(server.url, 'bad_token', videoId, 401, done)
  })

  it('Should not be able to remove the video with the token of another account')

  it('Should be able to remove the video with the correct token', function (done) {
    videosUtils.removeVideo(server.url, accessToken, videoId, done)
  })

  it('Should logout (revoke token)')

  it('Should not be able to upload a video')

  it('Should not be able to remove a video')

  it('Should be able to login again')

  it('Should have an expired access token')

  it('Should refresh the token')

  it('Should be able to upload a video again')

  it('Should be able to create a new user', function (done) {
    usersUtils.createUser(server.url, accessToken, 'user_1', 'super password', done)
  })

  it('Should be able to login with this user', function (done) {
    server.user = {
      username: 'user_1',
      password: 'super password'
    }

    loginUtils.loginAndGetAccessToken(server, function (err, token) {
      if (err) throw err

      accessTokenUser = token

      done()
    })
  })

  it('Should be able to get the user informations', function (done) {
    usersUtils.getUserInformation(server.url, accessTokenUser, function (err, res) {
      if (err) throw err

      const user = res.body

      expect(user.username).to.equal('user_1')
      expect(user.id).to.exist

      done()
    })
  })

  it('Should be able to upload a video with this user', function (done) {
    this.timeout(5000)

    const name = 'my super name'
    const description = 'my super description'
    const tags = [ 'tag1', 'tag2', 'tag3' ]
    const file = 'video_short.webm'
    videosUtils.uploadVideo(server.url, accessTokenUser, name, description, tags, file, done)
  })

  it('Should list all the users', function (done) {
    usersUtils.getUsersList(server.url, function (err, res) {
      if (err) throw err

      const users = res.body.data

      expect(users).to.be.an('array')
      expect(users.length).to.equal(2)

      const rootUser = users[0]
      expect(rootUser.username).to.equal('root')

      const user = users[1]
      expect(user.username).to.equal('user_1')
      userId = user.id

      done()
    })
  })

  it('Should update the user password', function (done) {
    usersUtils.updateUser(server.url, userId, accessTokenUser, 'new password', function (err, res) {
      if (err) throw err

      server.user.password = 'new password'
      loginUtils.login(server.url, server.client, server.user, 200, done)
    })
  })

  it('Should be able to remove this user', function (done) {
    usersUtils.removeUser(server.url, accessToken, 'user_1', done)
  })

  it('Should not be able to login with this user', function (done) {
    // server.user is already set to user 1
    loginUtils.login(server.url, server.client, server.user, 400, done)
  })

  it('Should not have videos of this user', function (done) {
    videosUtils.getVideosList(server.url, function (err, res) {
      if (err) throw err

      expect(res.body.total).to.equal(1)
      const video = res.body.data[0]
      expect(video.author).to.equal('root')

      done()
    })
  })

  after(function (done) {
    process.kill(-server.app.pid)

    // Keep the logs if the test failed
    if (this.ok) {
      serversUtils.flushTests(done)
    } else {
      done()
    }
  })
})
Commit	Line	Data
0c1cbbfe C	1	'use strict'
0c1cbbfe C	2
0c1cbbfe C	3	const chai = require('chai')
	4	const expect = chai.expect
	5	const pathUtils = require('path')
1a42c9e2	6	const series = require('async/series')
0c1cbbfe	7
8d309058 C	8	const loginUtils = require('../utils/login')
	9	const podsUtils = require('../utils/pods')
	10	const serversUtils = require('../utils/servers')
	11	const usersUtils = require('../utils/users')
	12	const videosUtils = require('../utils/videos')
0c1cbbfe C	13	const webtorrent = require(pathUtils.join(__dirname, '../../lib/webtorrent'))
	14	webtorrent.silent = true
	15
0c1cbbfe C	16	describe('Test users', function () {
0c1cbbfe C	17	let server = null
bc503c2a	18	let accessToken = null
9bd26629 C	19	let accessTokenUser = null
	20	let videoId = null
	21	let userId = null
0c1cbbfe C	22
	23	before(function (done) {
	24	this.timeout(20000)
	25
1a42c9e2	26	series([
0c1cbbfe	27	function (next) {
8d309058	28	serversUtils.flushTests(next)
0c1cbbfe C	29	},
0c1cbbfe C	30	function (next) {
8d309058	31	serversUtils.runServer(1, function (server1) {
0c1cbbfe C	32	server = server1
	33	next()
	34	})
	35	}
	36	], done)
	37	})
	38
b0ec596c C	39	it('Should create a new client')
	40
	41	it('Should return the first client')
	42
	43	it('Should remove the last client')
	44
0c1cbbfe C	45	it('Should not login with an invalid client id', function (done) {
0c1cbbfe C	46	const client = { id: 'client', password: server.client.secret }
8d309058	47	loginUtils.login(server.url, client, server.user, 400, function (err, res) {
0c1cbbfe C	48	if (err) throw err
	49
	50	expect(res.body.error).to.equal('invalid_client')
	51	done()
	52	})
	53	})
	54
	55	it('Should not login with an invalid client password', function (done) {
	56	const client = { id: server.client.id, password: 'coucou' }
8d309058	57	loginUtils.login(server.url, client, server.user, 400, function (err, res) {
0c1cbbfe C	58	if (err) throw err
	59
	60	expect(res.body.error).to.equal('invalid_client')
	61	done()
	62	})
	63	})
	64
	65	it('Should not login with an invalid username', function (done) {
	66	const user = { username: 'captain crochet', password: server.user.password }
8d309058	67	loginUtils.login(server.url, server.client, user, 400, function (err, res) {
0c1cbbfe C	68	if (err) throw err
	69
	70	expect(res.body.error).to.equal('invalid_grant')
	71	done()
	72	})
	73	})
	74
	75	it('Should not login with an invalid password', function (done) {
	76	const user = { username: server.user.username, password: 'mewthree' }
8d309058	77	loginUtils.login(server.url, server.client, user, 400, function (err, res) {
0c1cbbfe C	78	if (err) throw err
	79
	80	expect(res.body.error).to.equal('invalid_grant')
	81	done()
	82	})
	83	})
	84
	85	it('Should not be able to upload a video', function (done) {
bc503c2a	86	accessToken = 'mysupertoken'
be587647 C	87
	88	const name = 'my super name'
	89	const description = 'my super description'
	90	const tags = [ 'tag1', 'tag2' ]
	91	const video = 'video_short.webm'
8d309058	92	videosUtils.uploadVideo(server.url, accessToken, name, description, tags, video, 401, done)
0c1cbbfe C	93	})
0c1cbbfe C	94
b3b92647 C	95	it('Should not be able to make friends', function (done) {
b3b92647 C	96	accessToken = 'mysupertoken'
8d309058	97	podsUtils.makeFriends(server.url, accessToken, 401, done)
b3b92647 C	98	})
	99
	100	it('Should not be able to quit friends', function (done) {
	101	accessToken = 'mysupertoken'
8d309058	102	podsUtils.quitFriends(server.url, accessToken, 401, done)
b3b92647 C	103	})
b3b92647 C	104
0c1cbbfe	105	it('Should be able to login', function (done) {
8d309058	106	loginUtils.login(server.url, server.client, server.user, 200, function (err, res) {
0c1cbbfe C	107	if (err) throw err
0c1cbbfe C	108
bc503c2a	109	accessToken = res.body.access_token
0c1cbbfe C	110	done()
	111	})
	112	})
	113
	114	it('Should upload the video with the correct token', function (done) {
be587647 C	115	const name = 'my super name'
	116	const description = 'my super description'
	117	const tags = [ 'tag1', 'tag2' ]
	118	const video = 'video_short.webm'
8d309058	119	videosUtils.uploadVideo(server.url, accessToken, name, description, tags, video, 204, function (err, res) {
0c1cbbfe C	120	if (err) throw err
0c1cbbfe C	121
8d309058	122	videosUtils.getVideosList(server.url, function (err, res) {
0c1cbbfe C	123	if (err) throw err
0c1cbbfe C	124
68ce3ae0	125	const video = res.body.data[0]
6d8ada5f C	126	expect(video.author).to.equal('root')
6d8ada5f C	127
bc503c2a	128	videoId = video.id
0c1cbbfe C	129	done()
	130	})
	131	})
	132	})
	133
	134	it('Should upload the video again with the correct token', function (done) {
be587647 C	135	const name = 'my super name 2'
	136	const description = 'my super description 2'
	137	const tags = [ 'tag1' ]
	138	const video = 'video_short.webm'
8d309058	139	videosUtils.uploadVideo(server.url, accessToken, name, description, tags, video, 204, done)
0c1cbbfe C	140	})
	141
	142	it('Should not be able to remove the video with an incorrect token', function (done) {
8d309058	143	videosUtils.removeVideo(server.url, 'bad_token', videoId, 401, done)
0c1cbbfe C	144	})
	145
	146	it('Should not be able to remove the video with the token of another account')
	147
	148	it('Should be able to remove the video with the correct token', function (done) {
8d309058	149	videosUtils.removeVideo(server.url, accessToken, videoId, done)
0c1cbbfe C	150	})
0c1cbbfe C	151
2f372a86	152	it('Should logout (revoke token)')
0c1cbbfe C	153
	154	it('Should not be able to upload a video')
	155
	156	it('Should not be able to remove a video')
	157
	158	it('Should be able to login again')
	159
2f372a86 C	160	it('Should have an expired access token')
	161
	162	it('Should refresh the token')
	163
	164	it('Should be able to upload a video again')
	165
9bd26629	166	it('Should be able to create a new user', function (done) {
8d309058	167	usersUtils.createUser(server.url, accessToken, 'user_1', 'super password', done)
9bd26629 C	168	})
	169
	170	it('Should be able to login with this user', function (done) {
	171	server.user = {
	172	username: 'user_1',
	173	password: 'super password'
	174	}
	175
8d309058	176	loginUtils.loginAndGetAccessToken(server, function (err, token) {
9bd26629 C	177	if (err) throw err
	178
	179	accessTokenUser = token
	180
	181	done()
	182	})
	183	})
	184
99a64bfe	185	it('Should be able to get the user informations', function (done) {
8d309058	186	usersUtils.getUserInformation(server.url, accessTokenUser, function (err, res) {
99a64bfe C	187	if (err) throw err
	188
	189	const user = res.body
	190
	191	expect(user.username).to.equal('user_1')
	192	expect(user.id).to.exist
	193
	194	done()
	195	})
	196	})
	197
9bd26629 C	198	it('Should be able to upload a video with this user', function (done) {
	199	this.timeout(5000)
	200
	201	const name = 'my super name'
	202	const description = 'my super description'
	203	const tags = [ 'tag1', 'tag2', 'tag3' ]
	204	const file = 'video_short.webm'
8d309058	205	videosUtils.uploadVideo(server.url, accessTokenUser, name, description, tags, file, done)
9bd26629 C	206	})
	207
	208	it('Should list all the users', function (done) {
8d309058	209	usersUtils.getUsersList(server.url, function (err, res) {
9bd26629 C	210	if (err) throw err
	211
	212	const users = res.body.data
	213
	214	expect(users).to.be.an('array')
	215	expect(users.length).to.equal(2)
	216
	217	const rootUser = users[0]
	218	expect(rootUser.username).to.equal('root')
	219
	220	const user = users[1]
	221	expect(user.username).to.equal('user_1')
	222	userId = user.id
	223
	224	done()
	225	})
	226	})
	227
	228	it('Should update the user password', function (done) {
8d309058	229	usersUtils.updateUser(server.url, userId, accessTokenUser, 'new password', function (err, res) {
9bd26629 C	230	if (err) throw err
	231
	232	server.user.password = 'new password'
8d309058	233	loginUtils.login(server.url, server.client, server.user, 200, done)
9bd26629 C	234	})
	235	})
	236
	237	it('Should be able to remove this user', function (done) {
8d309058	238	usersUtils.removeUser(server.url, accessToken, 'user_1', done)
9bd26629 C	239	})
	240
	241	it('Should not be able to login with this user', function (done) {
	242	// server.user is already set to user 1
8d309058	243	loginUtils.login(server.url, server.client, server.user, 400, done)
9bd26629 C	244	})
	245
	246	it('Should not have videos of this user', function (done) {
8d309058	247	videosUtils.getVideosList(server.url, function (err, res) {
9bd26629 C	248	if (err) throw err
	249
	250	expect(res.body.total).to.equal(1)
	251	const video = res.body.data[0]
	252	expect(video.author).to.equal('root')
	253
	254	done()
	255	})
	256	})
	257
0c1cbbfe C	258	after(function (done) {
	259	process.kill(-server.app.pid)
	260
	261	// Keep the logs if the test failed
	262	if (this.ok) {
8d309058	263	serversUtils.flushTests(done)
0c1cbbfe C	264	} else {
	265	done()
	266	}
	267	})
	268	})