[github/Chocobozzz/PeerTube.git] / server / tests / api / users.ts

/* tslint:disable:no-unused-expression */

import 'mocha'
import * as chai from 'chai'
const expect = chai.expect

import {
  ServerInfo,
  flushTests,
  runServer,
  login,
  uploadVideo,
  makeFriends,
  quitFriends,
  getVideosList,
  rateVideo,
  getUserVideoRating,
  removeVideo,
  makePutBodyRequest,
  createUser,
  loginAndGetAccessToken,
  getMyUserInformation,
  getUsersList,
  getUsersListPaginationAndSort,
  updateUser,
  updateMyUser,
  registerUser,
  removeUser
} from '../utils'
import { killallServers } from '../utils/servers'
import { getUserInformation } from '../utils/users'

describe('Test users', function () {
  let server: ServerInfo
  let accessToken: string
  let accessTokenUser: string
  let videoId: number
  let userId: number

  before(async function () {
    this.timeout(120000)

    await flushTests()
    server = await runServer(1)
  })

  it('Should create a new client')

  it('Should return the first client')

  it('Should remove the last client')

  it('Should not login with an invalid client id', async function () {
    const client = { id: 'client', secret: server.client.secret }
    const res = await login(server.url, client, server.user, 400)

    expect(res.body.error).to.equal('invalid_client')
  })

  it('Should not login with an invalid client secret', async function () {
    const client = { id: server.client.id, secret: 'coucou' }
    const res = await login(server.url, client, server.user, 400)

    expect(res.body.error).to.equal('invalid_client')
  })

  it('Should not login with an invalid username', async function () {
    const user = { username: 'captain crochet', password: server.user.password }
    const res = await login(server.url, server.client, user, 400)

    expect(res.body.error).to.equal('invalid_grant')
  })

  it('Should not login with an invalid password', async function () {
    const user = { username: server.user.username, password: 'mew_three' }
    const res = await login(server.url, server.client, user, 400)

    expect(res.body.error).to.equal('invalid_grant')
  })

  it('Should not be able to upload a video', async function () {
    accessToken = 'my_super_token'

    const videoAttributes = {}
    await uploadVideo(server.url, accessToken, videoAttributes, 401)
  })

  it('Should not be able to make friends', async function () {
    accessToken = 'my_super_token'
    await makeFriends(server.url, accessToken, 401)
  })

  it('Should not be able to quit friends', async function () {
    accessToken = 'my_super_token'
    await quitFriends(server.url, accessToken, 401)
  })

  it('Should be able to login', async function () {
    const res = await login(server.url, server.client, server.user, 200)

    accessToken = res.body.access_token
  })

  it('Should upload the video with the correct token', async function () {
    const videoAttributes = {}
    await uploadVideo(server.url, accessToken, videoAttributes, 204)
    const res = await getVideosList(server.url)
    const video = res.body.data[0]

    expect(video.author).to.equal('root')
    videoId = video.id
  })

  it('Should upload the video again with the correct token', async function () {
    const videoAttributes = {}
    await uploadVideo(server.url, accessToken, videoAttributes, 204)
  })

  it('Should retrieve a video rating', async function () {
    await rateVideo(server.url, accessToken, videoId, 'like')
    const res = await getUserVideoRating(server.url, accessToken, videoId)
    const rating = res.body

    expect(rating.videoId).to.equal(videoId)
    expect(rating.rating).to.equal('like')
  })

  it('Should not be able to remove the video with an incorrect token', async function () {
    await removeVideo(server.url, 'bad_token', videoId, 401)
  })

  it('Should not be able to remove the video with the token of another account')

  it('Should be able to remove the video with the correct token', async function () {
    await removeVideo(server.url, accessToken, videoId)
  })

  it('Should logout (revoke token)')

  it('Should not be able to get the user information')

  it('Should not be able to upload a video')

  it('Should not be able to remove a video')

  it('Should not be able to rate a video', async function () {
    const path = '/api/v1/videos/'
    const data = {
      rating: 'likes'
    }

    const options = {
      url: server.url,
      path: path + videoId,
      token: 'wrong token',
      fields: data,
      statusCodeExpected: 401
    }
    await makePutBodyRequest(options)
  })

  it('Should be able to login again')

  it('Should have an expired access token')

  it('Should refresh the token')

  it('Should be able to upload a video again')

  it('Should be able to create a new user', async function () {
    await createUser(server.url, accessToken, 'user_1', 'super password', 2 * 1024 * 1024)
  })

  it('Should be able to login with this user', async function () {
    server.user = {
      username: 'user_1',
      password: 'super password'
    }

    accessTokenUser = await loginAndGetAccessToken(server)
  })

  it('Should be able to get the user information', async function () {
    const res = await getMyUserInformation(server.url, accessTokenUser)
    const user = res.body

    expect(user.username).to.equal('user_1')
    expect(user.email).to.equal('user_1@example.com')
    expect(user.displayNSFW).to.be.false
    expect(user.videoQuota).to.equal(2 * 1024 * 1024)
    expect(user.id).to.be.a('number')
  })

  it('Should be able to upload a video with this user', async function () {
    this.timeout(5000)

    const videoAttributes = {}
    await uploadVideo(server.url, accessTokenUser, videoAttributes)
  })

  it('Should list all the users', async function () {
    const res = await getUsersList(server.url)
    const result = res.body
    const total = result.total
    const users = result.data

    expect(total).to.equal(2)
    expect(users).to.be.an('array')
    expect(users.length).to.equal(2)

    const user = users[0]
    expect(user.username).to.equal('user_1')
    expect(user.email).to.equal('user_1@example.com')
    expect(user.displayNSFW).to.be.false

    const rootUser = users[1]
    expect(rootUser.username).to.equal('root')
    expect(rootUser.email).to.equal('admin1@example.com')
    expect(rootUser.displayNSFW).to.be.false

    userId = user.id
  })

  it('Should list only the first user by username asc', async function () {
    const res = await getUsersListPaginationAndSort(server.url, 0, 1, 'username')

    const result = res.body
    const total = result.total
    const users = result.data

    expect(total).to.equal(2)
    expect(users.length).to.equal(1)

    const user = users[0]
    expect(user.username).to.equal('root')
    expect(user.email).to.equal('admin1@example.com')
    expect(user.displayNSFW).to.be.false
  })

  it('Should list only the first user by username desc', async function () {
    const res = await getUsersListPaginationAndSort(server.url, 0, 1, '-username')
    const result = res.body
    const total = result.total
    const users = result.data

    expect(total).to.equal(2)
    expect(users.length).to.equal(1)

    const user = users[0]
    expect(user.username).to.equal('user_1')
    expect(user.email).to.equal('user_1@example.com')
    expect(user.displayNSFW).to.be.false
  })

  it('Should list only the second user by createdAt desc', async function () {
    const res = await getUsersListPaginationAndSort(server.url, 0, 1, '-createdAt')
    const result = res.body
    const total = result.total
    const users = result.data

    expect(total).to.equal(2)
    expect(users.length).to.equal(1)

    const user = users[0]
    expect(user.username).to.equal('user_1')
    expect(user.email).to.equal('user_1@example.com')
    expect(user.displayNSFW).to.be.false
  })

  it('Should list all the users by createdAt asc', async function () {
    const res = await getUsersListPaginationAndSort(server.url, 0, 2, 'createdAt')
    const result = res.body
    const total = result.total
    const users = result.data

    expect(total).to.equal(2)
    expect(users.length).to.equal(2)

    expect(users[0].username).to.equal('root')
    expect(users[0].email).to.equal('admin1@example.com')
    expect(users[0].displayNSFW).to.be.false

    expect(users[1].username).to.equal('user_1')
    expect(users[1].email).to.equal('user_1@example.com')
    expect(users[1].displayNSFW).to.be.false
  })

  it('Should update my password', async function () {
    await updateMyUser(server.url, accessTokenUser, 'new password')
    server.user.password = 'new password'

    await login(server.url, server.client, server.user, 200)
  })

  it('Should be able to change the NSFW display attribute', async function () {
    await updateMyUser(server.url, accessTokenUser, undefined, true)

    const res = await getMyUserInformation(server.url, accessTokenUser)
    const user = res.body

    expect(user.username).to.equal('user_1')
    expect(user.email).to.equal('user_1@example.com')
    expect(user.displayNSFW).to.be.ok
    expect(user.videoQuota).to.equal(2 * 1024 * 1024)
    expect(user.id).to.be.a('number')
  })

  it('Should be able to change the email display attribute', async function () {
    await updateMyUser(server.url, accessTokenUser, undefined, undefined, 'updated@example.com')

    const res = await getMyUserInformation(server.url, accessTokenUser)
    const user = res.body

    expect(user.username).to.equal('user_1')
    expect(user.email).to.equal('updated@example.com')
    expect(user.displayNSFW).to.be.ok
    expect(user.videoQuota).to.equal(2 * 1024 * 1024)
    expect(user.id).to.be.a('number')
  })

  it('Should be able to update another user', async function () {
    await updateUser(server.url, userId, accessToken, 'updated2@example.com', 42)

    const res = await getUserInformation(server.url, accessToken, userId)
    const user = res.body

    expect(user.username).to.equal('user_1')
    expect(user.email).to.equal('updated2@example.com')
    expect(user.displayNSFW).to.be.ok
    expect(user.videoQuota).to.equal(42)
    expect(user.id).to.be.a('number')
  })

  it('Should be able to remove this user', async function () {
    await removeUser(server.url, userId, accessToken)
  })

  it('Should not be able to login with this user', async function () {
    // server.user is already set to user 1
    await login(server.url, server.client, server.user, 400)
  })

  it('Should not have videos of this user', async function () {
    const res = await getVideosList(server.url)

    expect(res.body.total).to.equal(1)

    const video = res.body.data[0]
    expect(video.author).to.equal('root')
  })

  it('Should register a new user', async function () {
    await registerUser(server.url, 'user_15', 'my super password')
  })

  it('Should be able to login with this registered user', async function () {
    server.user = {
      username: 'user_15',
      password: 'my super password'
    }

    accessToken = await loginAndGetAccessToken(server)
  })

  it('Should have the correct video quota', async function () {
    const res = await getMyUserInformation(server.url, accessToken)
    const user = res.body

    expect(user.videoQuota).to.equal(5 * 1024 * 1024)
  })

  after(async function () {
    killallServers([ server ])

    // Keep the logs if the test failed
    if (this['ok']) {
      await flushTests()
    }
  })
})
Commit	Line	Data
0e1dc3e7 C	1	/* tslint:disable:no-unused-expression */
	2
	3	import 'mocha'
	4	import * as chai from 'chai'
	5	const expect = chai.expect
	6
	7	import {
	8	ServerInfo,
	9	flushTests,
	10	runServer,
	11	login,
	12	uploadVideo,
	13	makeFriends,
	14	quitFriends,
	15	getVideosList,
	16	rateVideo,
	17	getUserVideoRating,
	18	removeVideo,
	19	makePutBodyRequest,
	20	createUser,
	21	loginAndGetAccessToken,
5c98d3bf	22	getMyUserInformation,
0e1dc3e7 C	23	getUsersList,
	24	getUsersListPaginationAndSort,
	25	updateUser,
5c98d3bf	26	updateMyUser,
0e1dc3e7 C	27	registerUser,
	28	removeUser
	29	} from '../utils'
	30	import { killallServers } from '../utils/servers'
5c98d3bf	31	import { getUserInformation } from '../utils/users'
0e1dc3e7 C	32
	33	describe('Test users', function () {
	34	let server: ServerInfo
	35	let accessToken: string
	36	let accessTokenUser: string
	37	let videoId: number
	38	let userId: number
	39
	40	before(async function () {
	41	this.timeout(120000)
	42
	43	await flushTests()
	44	server = await runServer(1)
	45	})
	46
	47	it('Should create a new client')
	48
	49	it('Should return the first client')
	50
	51	it('Should remove the last client')
	52
	53	it('Should not login with an invalid client id', async function () {
	54	const client = { id: 'client', secret: server.client.secret }
	55	const res = await login(server.url, client, server.user, 400)
	56
	57	expect(res.body.error).to.equal('invalid_client')
	58	})
	59
	60	it('Should not login with an invalid client secret', async function () {
	61	const client = { id: server.client.id, secret: 'coucou' }
	62	const res = await login(server.url, client, server.user, 400)
	63
	64	expect(res.body.error).to.equal('invalid_client')
	65	})
	66
	67	it('Should not login with an invalid username', async function () {
	68	const user = { username: 'captain crochet', password: server.user.password }
	69	const res = await login(server.url, server.client, user, 400)
	70
	71	expect(res.body.error).to.equal('invalid_grant')
	72	})
	73
	74	it('Should not login with an invalid password', async function () {
5f04dd2f	75	const user = { username: server.user.username, password: 'mew_three' }
0e1dc3e7 C	76	const res = await login(server.url, server.client, user, 400)
	77
	78	expect(res.body.error).to.equal('invalid_grant')
	79	})
	80
	81	it('Should not be able to upload a video', async function () {
	82	accessToken = 'my_super_token'
	83
	84	const videoAttributes = {}
	85	await uploadVideo(server.url, accessToken, videoAttributes, 401)
	86	})
	87
	88	it('Should not be able to make friends', async function () {
	89	accessToken = 'my_super_token'
	90	await makeFriends(server.url, accessToken, 401)
	91	})
	92
	93	it('Should not be able to quit friends', async function () {
	94	accessToken = 'my_super_token'
	95	await quitFriends(server.url, accessToken, 401)
	96	})
	97
	98	it('Should be able to login', async function () {
	99	const res = await login(server.url, server.client, server.user, 200)
	100
	101	accessToken = res.body.access_token
	102	})
	103
	104	it('Should upload the video with the correct token', async function () {
	105	const videoAttributes = {}
	106	await uploadVideo(server.url, accessToken, videoAttributes, 204)
	107	const res = await getVideosList(server.url)
	108	const video = res.body.data[0]
	109
	110	expect(video.author).to.equal('root')
	111	videoId = video.id
	112	})
	113
	114	it('Should upload the video again with the correct token', async function () {
	115	const videoAttributes = {}
	116	await uploadVideo(server.url, accessToken, videoAttributes, 204)
	117	})
	118
	119	it('Should retrieve a video rating', async function () {
	120	await rateVideo(server.url, accessToken, videoId, 'like')
	121	const res = await getUserVideoRating(server.url, accessToken, videoId)
	122	const rating = res.body
	123
	124	expect(rating.videoId).to.equal(videoId)
	125	expect(rating.rating).to.equal('like')
	126	})
	127
	128	it('Should not be able to remove the video with an incorrect token', async function () {
	129	await removeVideo(server.url, 'bad_token', videoId, 401)
	130	})
	131
	132	it('Should not be able to remove the video with the token of another account')
	133
	134	it('Should be able to remove the video with the correct token', async function () {
	135	await removeVideo(server.url, accessToken, videoId)
	136	})
	137
	138	it('Should logout (revoke token)')
	139
140	it('Should not be able to get the user information')
141
142	it('Should not be able to upload a video')
143
144	it('Should not be able to remove a video')
145
146	it('Should not be able to rate a video', async function () {
147	const path = '/api/v1/videos/'
148	const data = {
149	rating: 'likes'
150	}
151
152	const options = {
153	url: server.url,
154	path: path + videoId,
155	token: 'wrong token',
156	fields: data,
157	statusCodeExpected: 401
158	}
159	await makePutBodyRequest(options)
160	})
161
162	it('Should be able to login again')
163
164	it('Should have an expired access token')
165
166	it('Should refresh the token')
167
168	it('Should be able to upload a video again')
169
170	it('Should be able to create a new user', async function () {
5c98d3bf	171	await createUser(server.url, accessToken, 'user_1', 'super password', 2 * 1024 * 1024)
0e1dc3e7 C	172	})
	173
	174	it('Should be able to login with this user', async function () {
	175	server.user = {
	176	username: 'user_1',
	177	password: 'super password'
	178	}
	179
	180	accessTokenUser = await loginAndGetAccessToken(server)
	181	})
	182
	183	it('Should be able to get the user information', async function () {
5c98d3bf	184	const res = await getMyUserInformation(server.url, accessTokenUser)
0e1dc3e7 C	185	const user = res.body
	186
	187	expect(user.username).to.equal('user_1')
	188	expect(user.email).to.equal('user_1@example.com')
	189	expect(user.displayNSFW).to.be.false
5c98d3bf	190	expect(user.videoQuota).to.equal(2 * 1024 * 1024)
0e1dc3e7 C	191	expect(user.id).to.be.a('number')
	192	})
	193
	194	it('Should be able to upload a video with this user', async function () {
	195	this.timeout(5000)
	196
	197	const videoAttributes = {}
	198	await uploadVideo(server.url, accessTokenUser, videoAttributes)
	199	})
	200
	201	it('Should list all the users', async function () {
	202	const res = await getUsersList(server.url)
	203	const result = res.body
	204	const total = result.total
	205	const users = result.data
	206
	207	expect(total).to.equal(2)
	208	expect(users).to.be.an('array')
	209	expect(users.length).to.equal(2)
	210
	211	const user = users[0]
	212	expect(user.username).to.equal('user_1')
	213	expect(user.email).to.equal('user_1@example.com')
	214	expect(user.displayNSFW).to.be.false
	215
	216	const rootUser = users[1]
	217	expect(rootUser.username).to.equal('root')
	218	expect(rootUser.email).to.equal('admin1@example.com')
	219	expect(rootUser.displayNSFW).to.be.false
	220
	221	userId = user.id
	222	})
	223
	224	it('Should list only the first user by username asc', async function () {
	225	const res = await getUsersListPaginationAndSort(server.url, 0, 1, 'username')
	226
	227	const result = res.body
	228	const total = result.total
	229	const users = result.data
	230
	231	expect(total).to.equal(2)
	232	expect(users.length).to.equal(1)
	233
	234	const user = users[0]
	235	expect(user.username).to.equal('root')
	236	expect(user.email).to.equal('admin1@example.com')
	237	expect(user.displayNSFW).to.be.false
	238	})
	239
	240	it('Should list only the first user by username desc', async function () {
	241	const res = await getUsersListPaginationAndSort(server.url, 0, 1, '-username')
	242	const result = res.body
	243	const total = result.total
	244	const users = result.data
	245
	246	expect(total).to.equal(2)
	247	expect(users.length).to.equal(1)
	248
	249	const user = users[0]
	250	expect(user.username).to.equal('user_1')
	251	expect(user.email).to.equal('user_1@example.com')
	252	expect(user.displayNSFW).to.be.false
	253	})
	254
255	it('Should list only the second user by createdAt desc', async function () {
256	const res = await getUsersListPaginationAndSort(server.url, 0, 1, '-createdAt')
257	const result = res.body
258	const total = result.total
259	const users = result.data
260
261	expect(total).to.equal(2)
262	expect(users.length).to.equal(1)
263
264	const user = users[0]
265	expect(user.username).to.equal('user_1')
266	expect(user.email).to.equal('user_1@example.com')
267	expect(user.displayNSFW).to.be.false
268	})
269
270	it('Should list all the users by createdAt asc', async function () {
271	const res = await getUsersListPaginationAndSort(server.url, 0, 2, 'createdAt')
272	const result = res.body
273	const total = result.total
274	const users = result.data
275
276	expect(total).to.equal(2)
277	expect(users.length).to.equal(2)
278
279	expect(users[0].username).to.equal('root')
280	expect(users[0].email).to.equal('admin1@example.com')
281	expect(users[0].displayNSFW).to.be.false
282
283	expect(users[1].username).to.equal('user_1')
284	expect(users[1].email).to.equal('user_1@example.com')
285	expect(users[1].displayNSFW).to.be.false
286	})
287
5c98d3bf C	288	it('Should update my password', async function () {
5c98d3bf C	289	await updateMyUser(server.url, accessTokenUser, 'new password')
0e1dc3e7 C	290	server.user.password = 'new password'
	291
	292	await login(server.url, server.client, server.user, 200)
	293	})
	294
	295	it('Should be able to change the NSFW display attribute', async function () {
5c98d3bf	296	await updateMyUser(server.url, accessTokenUser, undefined, true)
0e1dc3e7	297
5c98d3bf	298	const res = await getMyUserInformation(server.url, accessTokenUser)
0e1dc3e7 C	299	const user = res.body
	300
	301	expect(user.username).to.equal('user_1')
	302	expect(user.email).to.equal('user_1@example.com')
	303	expect(user.displayNSFW).to.be.ok
5c98d3bf C	304	expect(user.videoQuota).to.equal(2 * 1024 * 1024)
	305	expect(user.id).to.be.a('number')
	306	})
	307
	308	it('Should be able to change the email display attribute', async function () {
	309	await updateMyUser(server.url, accessTokenUser, undefined, undefined, 'updated@example.com')
	310
	311	const res = await getMyUserInformation(server.url, accessTokenUser)
	312	const user = res.body
	313
	314	expect(user.username).to.equal('user_1')
	315	expect(user.email).to.equal('updated@example.com')
	316	expect(user.displayNSFW).to.be.ok
	317	expect(user.videoQuota).to.equal(2 * 1024 * 1024)
	318	expect(user.id).to.be.a('number')
	319	})
	320
	321	it('Should be able to update another user', async function () {
77a5501f	322	await updateUser(server.url, userId, accessToken, 'updated2@example.com', 42)
5c98d3bf	323
77a5501f	324	const res = await getUserInformation(server.url, accessToken, userId)
5c98d3bf C	325	const user = res.body
	326
	327	expect(user.username).to.equal('user_1')
	328	expect(user.email).to.equal('updated2@example.com')
	329	expect(user.displayNSFW).to.be.ok
	330	expect(user.videoQuota).to.equal(42)
0e1dc3e7 C	331	expect(user.id).to.be.a('number')
	332	})
	333
	334	it('Should be able to remove this user', async function () {
	335	await removeUser(server.url, userId, accessToken)
	336	})
	337
	338	it('Should not be able to login with this user', async function () {
	339	// server.user is already set to user 1
	340	await login(server.url, server.client, server.user, 400)
	341	})
	342
	343	it('Should not have videos of this user', async function () {
	344	const res = await getVideosList(server.url)
	345
	346	expect(res.body.total).to.equal(1)
	347
	348	const video = res.body.data[0]
	349	expect(video.author).to.equal('root')
	350	})
	351
	352	it('Should register a new user', async function () {
	353	await registerUser(server.url, 'user_15', 'my super password')
	354	})
	355
	356	it('Should be able to login with this registered user', async function () {
	357	server.user = {
	358	username: 'user_15',
	359	password: 'my super password'
	360	}
	361
5c98d3bf C	362	accessToken = await loginAndGetAccessToken(server)
	363	})
	364
	365	it('Should have the correct video quota', async function () {
	366	const res = await getMyUserInformation(server.url, accessToken)
	367	const user = res.body
	368
	369	expect(user.videoQuota).to.equal(5 * 1024 * 1024)
0e1dc3e7 C	370	})
	371
	372	after(async function () {
	373	killallServers([ server ])
	374
	375	// Keep the logs if the test failed
	376	if (this['ok']) {
	377	await flushTests()
	378	}
	379	})
	380	})