[github/Chocobozzz/PeerTube.git] / server / tests / api / users.js

'use strict'

const chai = require('chai')
const expect = chai.expect
const pathUtils = require('path')
const series = require('async/series')

const webtorrent = require(pathUtils.join(__dirname, '../../lib/webtorrent'))
webtorrent.silent = true

const utils = require('./utils')

describe('Test users', function () {
  let server = null
  let accessToken = null
  let accessTokenUser = null
  let videoId = null
  let userId = null

  before(function (done) {
    this.timeout(20000)

    series([
      function (next) {
        utils.flushTests(next)
      },
      function (next) {
        utils.runServer(1, function (server1) {
          server = server1
          next()
        })
      }
    ], done)
  })

  it('Should create a new client')

  it('Should return the first client')

  it('Should remove the last client')

  it('Should not login with an invalid client id', function (done) {
    const client = { id: 'client', password: server.client.secret }
    utils.login(server.url, client, server.user, 400, function (err, res) {
      if (err) throw err

      expect(res.body.error).to.equal('invalid_client')
      done()
    })
  })

  it('Should not login with an invalid client password', function (done) {
    const client = { id: server.client.id, password: 'coucou' }
    utils.login(server.url, client, server.user, 400, function (err, res) {
      if (err) throw err

      expect(res.body.error).to.equal('invalid_client')
      done()
    })
  })

  it('Should not login with an invalid username', function (done) {
    const user = { username: 'captain crochet', password: server.user.password }
    utils.login(server.url, server.client, user, 400, function (err, res) {
      if (err) throw err

      expect(res.body.error).to.equal('invalid_grant')
      done()
    })
  })

  it('Should not login with an invalid password', function (done) {
    const user = { username: server.user.username, password: 'mewthree' }
    utils.login(server.url, server.client, user, 400, function (err, res) {
      if (err) throw err

      expect(res.body.error).to.equal('invalid_grant')
      done()
    })
  })

  it('Should not be able to upload a video', function (done) {
    accessToken = 'mysupertoken'

    const name = 'my super name'
    const description = 'my super description'
    const tags = [ 'tag1', 'tag2' ]
    const video = 'video_short.webm'
    utils.uploadVideo(server.url, accessToken, name, description, tags, video, 401, done)
  })

  it('Should not be able to make friends', function (done) {
    accessToken = 'mysupertoken'
    utils.makeFriends(server.url, accessToken, 401, done)
  })

  it('Should not be able to quit friends', function (done) {
    accessToken = 'mysupertoken'
    utils.quitFriends(server.url, accessToken, 401, done)
  })

  it('Should be able to login', function (done) {
    utils.login(server.url, server.client, server.user, 200, function (err, res) {
      if (err) throw err

      accessToken = res.body.access_token
      done()
    })
  })

  it('Should upload the video with the correct token', function (done) {
    const name = 'my super name'
    const description = 'my super description'
    const tags = [ 'tag1', 'tag2' ]
    const video = 'video_short.webm'
    utils.uploadVideo(server.url, accessToken, name, description, tags, video, 204, function (err, res) {
      if (err) throw err

      utils.getVideosList(server.url, function (err, res) {
        if (err) throw err

        const video = res.body.data[0]
        expect(video.author).to.equal('root')

        videoId = video.id
        done()
      })
    })
  })

  it('Should upload the video again with the correct token', function (done) {
    const name = 'my super name 2'
    const description = 'my super description 2'
    const tags = [ 'tag1' ]
    const video = 'video_short.webm'
    utils.uploadVideo(server.url, accessToken, name, description, tags, video, 204, done)
  })

  it('Should not be able to remove the video with an incorrect token', function (done) {
    utils.removeVideo(server.url, 'bad_token', videoId, 401, done)
  })

  it('Should not be able to remove the video with the token of another account')

  it('Should be able to remove the video with the correct token', function (done) {
    utils.removeVideo(server.url, accessToken, videoId, done)
  })

  it('Should logout (revoke token)')

  it('Should not be able to upload a video')

  it('Should not be able to remove a video')

  it('Should be able to login again')

  it('Should have an expired access token')

  it('Should refresh the token')

  it('Should be able to upload a video again')

  it('Should be able to create a new user', function (done) {
    utils.createUser(server.url, accessToken, 'user_1', 'super password', done)
  })

  it('Should be able to login with this user', function (done) {
    server.user = {
      username: 'user_1',
      password: 'super password'
    }

    utils.loginAndGetAccessToken(server, function (err, token) {
      if (err) throw err

      accessTokenUser = token

      done()
    })
  })

  it('Should be able to upload a video with this user', function (done) {
    this.timeout(5000)

    const name = 'my super name'
    const description = 'my super description'
    const tags = [ 'tag1', 'tag2', 'tag3' ]
    const file = 'video_short.webm'
    utils.uploadVideo(server.url, accessTokenUser, name, description, tags, file, done)
  })

  it('Should list all the users', function (done) {
    utils.getUsersList(server.url, function (err, res) {
      if (err) throw err

      const users = res.body.data

      expect(users).to.be.an('array')
      expect(users.length).to.equal(2)

      const rootUser = users[0]
      expect(rootUser.username).to.equal('root')

      const user = users[1]
      expect(user.username).to.equal('user_1')
      userId = user.id

      done()
    })
  })

  it('Should update the user password', function (done) {
    utils.updateUser(server.url, userId, accessTokenUser, 'new password', function (err, res) {
      if (err) throw err

      server.user.password = 'new password'
      utils.login(server.url, server.client, server.user, 200, done)
    })
  })

  it('Should be able to remove this user', function (done) {
    utils.removeUser(server.url, accessToken, 'user_1', done)
  })

  it('Should not be able to login with this user', function (done) {
    // server.user is already set to user 1
    utils.login(server.url, server.client, server.user, 400, done)
  })

  it('Should not have videos of this user', function (done) {
    utils.getVideosList(server.url, function (err, res) {
      if (err) throw err

      expect(res.body.total).to.equal(1)
      const video = res.body.data[0]
      expect(video.author).to.equal('root')

      done()
    })
  })

  after(function (done) {
    process.kill(-server.app.pid)

    // Keep the logs if the test failed
    if (this.ok) {
      utils.flushTests(done)
    } else {
      done()
    }
  })
})
Commit	Line	Data
0c1cbbfe C	1	'use strict'
0c1cbbfe C	2
0c1cbbfe C	3	const chai = require('chai')
	4	const expect = chai.expect
	5	const pathUtils = require('path')
1a42c9e2	6	const series = require('async/series')
0c1cbbfe C	7
	8	const webtorrent = require(pathUtils.join(__dirname, '../../lib/webtorrent'))
	9	webtorrent.silent = true
	10
	11	const utils = require('./utils')
	12
	13	describe('Test users', function () {
	14	let server = null
bc503c2a	15	let accessToken = null
9bd26629 C	16	let accessTokenUser = null
	17	let videoId = null
	18	let userId = null
0c1cbbfe C	19
	20	before(function (done) {
	21	this.timeout(20000)
	22
1a42c9e2	23	series([
0c1cbbfe C	24	function (next) {
	25	utils.flushTests(next)
	26	},
	27	function (next) {
	28	utils.runServer(1, function (server1) {
	29	server = server1
	30	next()
	31	})
	32	}
	33	], done)
	34	})
	35
b0ec596c C	36	it('Should create a new client')
	37
	38	it('Should return the first client')
	39
	40	it('Should remove the last client')
	41
0c1cbbfe C	42	it('Should not login with an invalid client id', function (done) {
	43	const client = { id: 'client', password: server.client.secret }
	44	utils.login(server.url, client, server.user, 400, function (err, res) {
	45	if (err) throw err
	46
	47	expect(res.body.error).to.equal('invalid_client')
	48	done()
	49	})
	50	})
	51
	52	it('Should not login with an invalid client password', function (done) {
	53	const client = { id: server.client.id, password: 'coucou' }
	54	utils.login(server.url, client, server.user, 400, function (err, res) {
	55	if (err) throw err
	56
	57	expect(res.body.error).to.equal('invalid_client')
	58	done()
	59	})
	60	})
	61
	62	it('Should not login with an invalid username', function (done) {
	63	const user = { username: 'captain crochet', password: server.user.password }
	64	utils.login(server.url, server.client, user, 400, function (err, res) {
	65	if (err) throw err
	66
	67	expect(res.body.error).to.equal('invalid_grant')
	68	done()
	69	})
	70	})
	71
	72	it('Should not login with an invalid password', function (done) {
	73	const user = { username: server.user.username, password: 'mewthree' }
	74	utils.login(server.url, server.client, user, 400, function (err, res) {
	75	if (err) throw err
	76
	77	expect(res.body.error).to.equal('invalid_grant')
	78	done()
	79	})
	80	})
	81
	82	it('Should not be able to upload a video', function (done) {
bc503c2a	83	accessToken = 'mysupertoken'
be587647 C	84
	85	const name = 'my super name'
	86	const description = 'my super description'
	87	const tags = [ 'tag1', 'tag2' ]
	88	const video = 'video_short.webm'
	89	utils.uploadVideo(server.url, accessToken, name, description, tags, video, 401, done)
0c1cbbfe C	90	})
0c1cbbfe C	91
b3b92647 C	92	it('Should not be able to make friends', function (done) {
	93	accessToken = 'mysupertoken'
	94	utils.makeFriends(server.url, accessToken, 401, done)
	95	})
	96
	97	it('Should not be able to quit friends', function (done) {
	98	accessToken = 'mysupertoken'
	99	utils.quitFriends(server.url, accessToken, 401, done)
	100	})
	101
0c1cbbfe C	102	it('Should be able to login', function (done) {
	103	utils.login(server.url, server.client, server.user, 200, function (err, res) {
	104	if (err) throw err
	105
bc503c2a	106	accessToken = res.body.access_token
0c1cbbfe C	107	done()
	108	})
	109	})
	110
	111	it('Should upload the video with the correct token', function (done) {
be587647 C	112	const name = 'my super name'
	113	const description = 'my super description'
	114	const tags = [ 'tag1', 'tag2' ]
	115	const video = 'video_short.webm'
	116	utils.uploadVideo(server.url, accessToken, name, description, tags, video, 204, function (err, res) {
0c1cbbfe C	117	if (err) throw err
	118
	119	utils.getVideosList(server.url, function (err, res) {
	120	if (err) throw err
	121
68ce3ae0	122	const video = res.body.data[0]
6d8ada5f C	123	expect(video.author).to.equal('root')
6d8ada5f C	124
bc503c2a	125	videoId = video.id
0c1cbbfe C	126	done()
	127	})
	128	})
	129	})
	130
	131	it('Should upload the video again with the correct token', function (done) {
be587647 C	132	const name = 'my super name 2'
	133	const description = 'my super description 2'
	134	const tags = [ 'tag1' ]
	135	const video = 'video_short.webm'
	136	utils.uploadVideo(server.url, accessToken, name, description, tags, video, 204, done)
0c1cbbfe C	137	})
	138
	139	it('Should not be able to remove the video with an incorrect token', function (done) {
bc503c2a	140	utils.removeVideo(server.url, 'bad_token', videoId, 401, done)
0c1cbbfe C	141	})
	142
	143	it('Should not be able to remove the video with the token of another account')
	144
	145	it('Should be able to remove the video with the correct token', function (done) {
bc503c2a	146	utils.removeVideo(server.url, accessToken, videoId, done)
0c1cbbfe C	147	})
0c1cbbfe C	148
2f372a86	149	it('Should logout (revoke token)')
0c1cbbfe C	150
	151	it('Should not be able to upload a video')
	152
	153	it('Should not be able to remove a video')
	154
	155	it('Should be able to login again')
	156
2f372a86 C	157	it('Should have an expired access token')
	158
	159	it('Should refresh the token')
	160
	161	it('Should be able to upload a video again')
	162
9bd26629 C	163	it('Should be able to create a new user', function (done) {
	164	utils.createUser(server.url, accessToken, 'user_1', 'super password', done)
	165	})
	166
	167	it('Should be able to login with this user', function (done) {
	168	server.user = {
	169	username: 'user_1',
	170	password: 'super password'
	171	}
	172
	173	utils.loginAndGetAccessToken(server, function (err, token) {
	174	if (err) throw err
	175
	176	accessTokenUser = token
	177
	178	done()
	179	})
	180	})
	181
	182	it('Should be able to upload a video with this user', function (done) {
	183	this.timeout(5000)
	184
	185	const name = 'my super name'
	186	const description = 'my super description'
	187	const tags = [ 'tag1', 'tag2', 'tag3' ]
	188	const file = 'video_short.webm'
	189	utils.uploadVideo(server.url, accessTokenUser, name, description, tags, file, done)
	190	})
	191
	192	it('Should list all the users', function (done) {
	193	utils.getUsersList(server.url, function (err, res) {
	194	if (err) throw err
	195
	196	const users = res.body.data
	197
	198	expect(users).to.be.an('array')
	199	expect(users.length).to.equal(2)
	200
	201	const rootUser = users[0]
	202	expect(rootUser.username).to.equal('root')
	203
	204	const user = users[1]
	205	expect(user.username).to.equal('user_1')
	206	userId = user.id
	207
	208	done()
	209	})
	210	})
	211
	212	it('Should update the user password', function (done) {
	213	utils.updateUser(server.url, userId, accessTokenUser, 'new password', function (err, res) {
	214	if (err) throw err
	215
	216	server.user.password = 'new password'
	217	utils.login(server.url, server.client, server.user, 200, done)
	218	})
	219	})
	220
	221	it('Should be able to remove this user', function (done) {
	222	utils.removeUser(server.url, accessToken, 'user_1', done)
	223	})
	224
	225	it('Should not be able to login with this user', function (done) {
	226	// server.user is already set to user 1
227	utils.login(server.url, server.client, server.user, 400, done)
228	})
229
230	it('Should not have videos of this user', function (done) {
231	utils.getVideosList(server.url, function (err, res) {
232	if (err) throw err
233
234	expect(res.body.total).to.equal(1)
235	const video = res.body.data[0]
236	expect(video.author).to.equal('root')
237
238	done()
239	})
240	})
241
0c1cbbfe C	242	after(function (done) {
	243	process.kill(-server.app.pid)
	244
	245	// Keep the logs if the test failed
	246	if (this.ok) {
	247	utils.flushTests(done)
	248	} else {
	249	done()
	250	}
	251	})
	252	})