]>
Commit | Line | Data |
---|---|---|
1 | /* eslint-disable @typescript-eslint/no-unused-expressions,@typescript-eslint/require-await */ | |
2 | ||
3 | import 'mocha' | |
4 | import * as chai from 'chai' | |
5 | import { AbuseState, AbuseUpdate, MyUser, User, UserRole, Video, VideoPlaylistType } from '@shared/models' | |
6 | import { CustomConfig } from '@shared/models/server' | |
7 | import { HttpStatusCode } from '../../../../shared/core-utils/miscs/http-error-codes' | |
8 | import { | |
9 | addVideoCommentThread, | |
10 | blockUser, | |
11 | cleanupTests, | |
12 | closeAllSequelize, | |
13 | createUser, | |
14 | deleteMe, | |
15 | flushAndRunServer, | |
16 | getAccountRatings, | |
17 | getAdminAbusesList, | |
18 | getBlacklistedVideosList, | |
19 | getCustomConfig, | |
20 | getMyUserInformation, | |
21 | getMyUserVideoQuotaUsed, | |
22 | getMyUserVideoRating, | |
23 | getUserInformation, | |
24 | getUsersList, | |
25 | getUsersListPaginationAndSort, | |
26 | getVideoChannel, | |
27 | getVideosList, | |
28 | installPlugin, | |
29 | killallServers, | |
30 | login, | |
31 | makePutBodyRequest, | |
32 | rateVideo, | |
33 | registerUserWithChannel, | |
34 | removeUser, | |
35 | removeVideo, | |
36 | reportAbuse, | |
37 | reRunServer, | |
38 | ServerInfo, | |
39 | setTokenField, | |
40 | testImage, | |
41 | unblockUser, | |
42 | updateAbuse, | |
43 | updateCustomSubConfig, | |
44 | updateMyAvatar, | |
45 | updateMyUser, | |
46 | updateUser, | |
47 | uploadVideo, | |
48 | userLogin, | |
49 | waitJobs | |
50 | } from '../../../../shared/extra-utils' | |
51 | import { follow } from '../../../../shared/extra-utils/server/follows' | |
52 | import { logout, refreshToken, setAccessTokensToServers } from '../../../../shared/extra-utils/users/login' | |
53 | import { getMyVideos } from '../../../../shared/extra-utils/videos/videos' | |
54 | import { UserAdminFlag } from '../../../../shared/models/users/user-flag.model' | |
55 | ||
56 | const expect = chai.expect | |
57 | ||
58 | describe('Test users', function () { | |
59 | let server: ServerInfo | |
60 | let accessToken: string | |
61 | let accessTokenUser: string | |
62 | let videoId: number | |
63 | let userId: number | |
64 | const user = { | |
65 | username: 'user_1', | |
66 | password: 'super password' | |
67 | } | |
68 | ||
69 | before(async function () { | |
70 | this.timeout(30000) | |
71 | ||
72 | server = await flushAndRunServer(1, { | |
73 | rates_limit: { | |
74 | login: { | |
75 | max: 30 | |
76 | } | |
77 | } | |
78 | }) | |
79 | ||
80 | await setAccessTokensToServers([ server ]) | |
81 | ||
82 | await installPlugin({ url: server.url, accessToken: server.accessToken, npmName: 'peertube-theme-background-red' }) | |
83 | }) | |
84 | ||
85 | describe('OAuth client', function () { | |
86 | it('Should create a new client') | |
87 | ||
88 | it('Should return the first client') | |
89 | ||
90 | it('Should remove the last client') | |
91 | ||
92 | it('Should not login with an invalid client id', async function () { | |
93 | const client = { id: 'client', secret: server.client.secret } | |
94 | const res = await login(server.url, client, server.user, HttpStatusCode.BAD_REQUEST_400) | |
95 | ||
96 | expect(res.body.code).to.equal('invalid_client') | |
97 | expect(res.body.error).to.contain('client is invalid') | |
98 | }) | |
99 | ||
100 | it('Should not login with an invalid client secret', async function () { | |
101 | const client = { id: server.client.id, secret: 'coucou' } | |
102 | const res = await login(server.url, client, server.user, HttpStatusCode.BAD_REQUEST_400) | |
103 | ||
104 | expect(res.body.code).to.equal('invalid_client') | |
105 | expect(res.body.error).to.contain('client is invalid') | |
106 | }) | |
107 | }) | |
108 | ||
109 | describe('Login', function () { | |
110 | ||
111 | it('Should not login with an invalid username', async function () { | |
112 | const user = { username: 'captain crochet', password: server.user.password } | |
113 | const res = await login(server.url, server.client, user, HttpStatusCode.BAD_REQUEST_400) | |
114 | ||
115 | expect(res.body.code).to.equal('invalid_grant') | |
116 | expect(res.body.error).to.contain('credentials are invalid') | |
117 | }) | |
118 | ||
119 | it('Should not login with an invalid password', async function () { | |
120 | const user = { username: server.user.username, password: 'mew_three' } | |
121 | const res = await login(server.url, server.client, user, HttpStatusCode.BAD_REQUEST_400) | |
122 | ||
123 | expect(res.body.code).to.equal('invalid_grant') | |
124 | expect(res.body.error).to.contain('credentials are invalid') | |
125 | }) | |
126 | ||
127 | it('Should not be able to upload a video', async function () { | |
128 | accessToken = 'my_super_token' | |
129 | ||
130 | const videoAttributes = {} | |
131 | await uploadVideo(server.url, accessToken, videoAttributes, HttpStatusCode.UNAUTHORIZED_401) | |
132 | }) | |
133 | ||
134 | it('Should not be able to follow', async function () { | |
135 | accessToken = 'my_super_token' | |
136 | await follow(server.url, [ 'http://example.com' ], accessToken, HttpStatusCode.UNAUTHORIZED_401) | |
137 | }) | |
138 | ||
139 | it('Should not be able to unfollow') | |
140 | ||
141 | it('Should be able to login', async function () { | |
142 | const res = await login(server.url, server.client, server.user, HttpStatusCode.OK_200) | |
143 | ||
144 | accessToken = res.body.access_token | |
145 | }) | |
146 | ||
147 | it('Should be able to login with an insensitive username', async function () { | |
148 | const user = { username: 'RoOt', password: server.user.password } | |
149 | await login(server.url, server.client, user, HttpStatusCode.OK_200) | |
150 | ||
151 | const user2 = { username: 'rOoT', password: server.user.password } | |
152 | await login(server.url, server.client, user2, HttpStatusCode.OK_200) | |
153 | ||
154 | const user3 = { username: 'ROOt', password: server.user.password } | |
155 | await login(server.url, server.client, user3, HttpStatusCode.OK_200) | |
156 | }) | |
157 | }) | |
158 | ||
159 | describe('Upload', function () { | |
160 | ||
161 | it('Should upload the video with the correct token', async function () { | |
162 | const videoAttributes = {} | |
163 | await uploadVideo(server.url, accessToken, videoAttributes) | |
164 | const res = await getVideosList(server.url) | |
165 | const video = res.body.data[0] | |
166 | ||
167 | expect(video.account.name).to.equal('root') | |
168 | videoId = video.id | |
169 | }) | |
170 | ||
171 | it('Should upload the video again with the correct token', async function () { | |
172 | const videoAttributes = {} | |
173 | await uploadVideo(server.url, accessToken, videoAttributes) | |
174 | }) | |
175 | }) | |
176 | ||
177 | describe('Ratings', function () { | |
178 | ||
179 | it('Should retrieve a video rating', async function () { | |
180 | await rateVideo(server.url, accessToken, videoId, 'like') | |
181 | const res = await getMyUserVideoRating(server.url, accessToken, videoId) | |
182 | const rating = res.body | |
183 | ||
184 | expect(rating.videoId).to.equal(videoId) | |
185 | expect(rating.rating).to.equal('like') | |
186 | }) | |
187 | ||
188 | it('Should retrieve ratings list', async function () { | |
189 | await rateVideo(server.url, accessToken, videoId, 'like') | |
190 | ||
191 | const res = await getAccountRatings(server.url, server.user.username, server.accessToken, null, HttpStatusCode.OK_200) | |
192 | const ratings = res.body | |
193 | ||
194 | expect(ratings.total).to.equal(1) | |
195 | expect(ratings.data[0].video.id).to.equal(videoId) | |
196 | expect(ratings.data[0].rating).to.equal('like') | |
197 | }) | |
198 | ||
199 | it('Should retrieve ratings list by rating type', async function () { | |
200 | { | |
201 | const res = await getAccountRatings(server.url, server.user.username, server.accessToken, 'like') | |
202 | const ratings = res.body | |
203 | expect(ratings.data.length).to.equal(1) | |
204 | } | |
205 | ||
206 | { | |
207 | const res = await getAccountRatings(server.url, server.user.username, server.accessToken, 'dislike') | |
208 | const ratings = res.body | |
209 | expect(ratings.data.length).to.equal(0) | |
210 | } | |
211 | }) | |
212 | }) | |
213 | ||
214 | describe('Remove video', function () { | |
215 | it('Should not be able to remove the video with an incorrect token', async function () { | |
216 | await removeVideo(server.url, 'bad_token', videoId, HttpStatusCode.UNAUTHORIZED_401) | |
217 | }) | |
218 | ||
219 | it('Should not be able to remove the video with the token of another account') | |
220 | ||
221 | it('Should be able to remove the video with the correct token', async function () { | |
222 | await removeVideo(server.url, accessToken, videoId) | |
223 | }) | |
224 | }) | |
225 | ||
226 | describe('Logout', function () { | |
227 | it('Should logout (revoke token)', async function () { | |
228 | await logout(server.url, server.accessToken) | |
229 | }) | |
230 | ||
231 | it('Should not be able to get the user information', async function () { | |
232 | await getMyUserInformation(server.url, server.accessToken, HttpStatusCode.UNAUTHORIZED_401) | |
233 | }) | |
234 | ||
235 | it('Should not be able to upload a video', async function () { | |
236 | await uploadVideo(server.url, server.accessToken, { name: 'video' }, HttpStatusCode.UNAUTHORIZED_401) | |
237 | }) | |
238 | ||
239 | it('Should not be able to rate a video', async function () { | |
240 | const path = '/api/v1/videos/' | |
241 | const data = { | |
242 | rating: 'likes' | |
243 | } | |
244 | ||
245 | const options = { | |
246 | url: server.url, | |
247 | path: path + videoId, | |
248 | token: 'wrong token', | |
249 | fields: data, | |
250 | statusCodeExpected: HttpStatusCode.UNAUTHORIZED_401 | |
251 | } | |
252 | await makePutBodyRequest(options) | |
253 | }) | |
254 | ||
255 | it('Should be able to login again', async function () { | |
256 | const res = await login(server.url, server.client, server.user) | |
257 | server.accessToken = res.body.access_token | |
258 | server.refreshToken = res.body.refresh_token | |
259 | }) | |
260 | ||
261 | it('Should be able to get my user information again', async function () { | |
262 | await getMyUserInformation(server.url, server.accessToken) | |
263 | }) | |
264 | ||
265 | it('Should have an expired access token', async function () { | |
266 | this.timeout(15000) | |
267 | ||
268 | await setTokenField(server.internalServerNumber, server.accessToken, 'accessTokenExpiresAt', new Date().toISOString()) | |
269 | await setTokenField(server.internalServerNumber, server.accessToken, 'refreshTokenExpiresAt', new Date().toISOString()) | |
270 | ||
271 | killallServers([ server ]) | |
272 | await reRunServer(server) | |
273 | ||
274 | await getMyUserInformation(server.url, server.accessToken, 401) | |
275 | }) | |
276 | ||
277 | it('Should not be able to refresh an access token with an expired refresh token', async function () { | |
278 | await refreshToken(server, server.refreshToken, 400) | |
279 | }) | |
280 | ||
281 | it('Should refresh the token', async function () { | |
282 | this.timeout(15000) | |
283 | ||
284 | const futureDate = new Date(new Date().getTime() + 1000 * 60).toISOString() | |
285 | await setTokenField(server.internalServerNumber, server.accessToken, 'refreshTokenExpiresAt', futureDate) | |
286 | ||
287 | killallServers([ server ]) | |
288 | await reRunServer(server) | |
289 | ||
290 | const res = await refreshToken(server, server.refreshToken) | |
291 | server.accessToken = res.body.access_token | |
292 | server.refreshToken = res.body.refresh_token | |
293 | }) | |
294 | ||
295 | it('Should be able to get my user information again', async function () { | |
296 | await getMyUserInformation(server.url, server.accessToken) | |
297 | }) | |
298 | }) | |
299 | ||
300 | describe('Creating a user', function () { | |
301 | ||
302 | it('Should be able to create a new user', async function () { | |
303 | await createUser({ | |
304 | url: server.url, | |
305 | accessToken: accessToken, | |
306 | username: user.username, | |
307 | password: user.password, | |
308 | videoQuota: 2 * 1024 * 1024, | |
309 | adminFlags: UserAdminFlag.BYPASS_VIDEO_AUTO_BLACKLIST | |
310 | }) | |
311 | }) | |
312 | ||
313 | it('Should be able to login with this user', async function () { | |
314 | accessTokenUser = await userLogin(server, user) | |
315 | }) | |
316 | ||
317 | it('Should be able to get user information', async function () { | |
318 | const res1 = await getMyUserInformation(server.url, accessTokenUser) | |
319 | const userMe: MyUser = res1.body | |
320 | ||
321 | const res2 = await getUserInformation(server.url, server.accessToken, userMe.id, true) | |
322 | const userGet: User = res2.body | |
323 | ||
324 | for (const user of [ userMe, userGet ]) { | |
325 | expect(user.username).to.equal('user_1') | |
326 | expect(user.email).to.equal('user_1@example.com') | |
327 | expect(user.nsfwPolicy).to.equal('display') | |
328 | expect(user.videoQuota).to.equal(2 * 1024 * 1024) | |
329 | expect(user.roleLabel).to.equal('User') | |
330 | expect(user.id).to.be.a('number') | |
331 | expect(user.account.displayName).to.equal('user_1') | |
332 | expect(user.account.description).to.be.null | |
333 | } | |
334 | ||
335 | expect(userMe.adminFlags).to.be.undefined | |
336 | expect(userGet.adminFlags).to.equal(UserAdminFlag.BYPASS_VIDEO_AUTO_BLACKLIST) | |
337 | ||
338 | expect(userMe.specialPlaylists).to.have.lengthOf(1) | |
339 | expect(userMe.specialPlaylists[0].type).to.equal(VideoPlaylistType.WATCH_LATER) | |
340 | ||
341 | // Check stats are included with withStats | |
342 | expect(userGet.videosCount).to.be.a('number') | |
343 | expect(userGet.videosCount).to.equal(0) | |
344 | expect(userGet.videoCommentsCount).to.be.a('number') | |
345 | expect(userGet.videoCommentsCount).to.equal(0) | |
346 | expect(userGet.abusesCount).to.be.a('number') | |
347 | expect(userGet.abusesCount).to.equal(0) | |
348 | expect(userGet.abusesAcceptedCount).to.be.a('number') | |
349 | expect(userGet.abusesAcceptedCount).to.equal(0) | |
350 | }) | |
351 | }) | |
352 | ||
353 | describe('My videos & quotas', function () { | |
354 | ||
355 | it('Should be able to upload a video with this user', async function () { | |
356 | this.timeout(10000) | |
357 | ||
358 | const videoAttributes = { | |
359 | name: 'super user video', | |
360 | fixture: 'video_short.webm' | |
361 | } | |
362 | await uploadVideo(server.url, accessTokenUser, videoAttributes) | |
363 | }) | |
364 | ||
365 | it('Should have video quota updated', async function () { | |
366 | const res = await getMyUserVideoQuotaUsed(server.url, accessTokenUser) | |
367 | const data = res.body | |
368 | ||
369 | expect(data.videoQuotaUsed).to.equal(218910) | |
370 | ||
371 | const resUsers = await getUsersList(server.url, server.accessToken) | |
372 | ||
373 | const users: User[] = resUsers.body.data | |
374 | const tmpUser = users.find(u => u.username === user.username) | |
375 | expect(tmpUser.videoQuotaUsed).to.equal(218910) | |
376 | }) | |
377 | ||
378 | it('Should be able to list my videos', async function () { | |
379 | const res = await getMyVideos(server.url, accessTokenUser, 0, 5) | |
380 | expect(res.body.total).to.equal(1) | |
381 | ||
382 | const videos = res.body.data | |
383 | expect(videos).to.have.lengthOf(1) | |
384 | ||
385 | const video: Video = videos[0] | |
386 | expect(video.name).to.equal('super user video') | |
387 | expect(video.thumbnailPath).to.not.be.null | |
388 | expect(video.previewPath).to.not.be.null | |
389 | }) | |
390 | ||
391 | it('Should be able to search in my videos', async function () { | |
392 | { | |
393 | const res = await getMyVideos(server.url, accessTokenUser, 0, 5, '-createdAt', 'user video') | |
394 | expect(res.body.total).to.equal(1) | |
395 | ||
396 | const videos = res.body.data | |
397 | expect(videos).to.have.lengthOf(1) | |
398 | } | |
399 | ||
400 | { | |
401 | const res = await getMyVideos(server.url, accessTokenUser, 0, 5, '-createdAt', 'toto') | |
402 | expect(res.body.total).to.equal(0) | |
403 | ||
404 | const videos = res.body.data | |
405 | expect(videos).to.have.lengthOf(0) | |
406 | } | |
407 | }) | |
408 | ||
409 | it('Should disable webtorrent, enable HLS, and update my quota', async function () { | |
410 | this.timeout(60000) | |
411 | ||
412 | { | |
413 | const res = await getCustomConfig(server.url, server.accessToken) | |
414 | const config = res.body as CustomConfig | |
415 | config.transcoding.webtorrent.enabled = false | |
416 | config.transcoding.hls.enabled = true | |
417 | config.transcoding.enabled = true | |
418 | await updateCustomSubConfig(server.url, server.accessToken, config) | |
419 | } | |
420 | ||
421 | { | |
422 | const videoAttributes = { | |
423 | name: 'super user video 2', | |
424 | fixture: 'video_short.webm' | |
425 | } | |
426 | await uploadVideo(server.url, accessTokenUser, videoAttributes) | |
427 | ||
428 | await waitJobs([ server ]) | |
429 | } | |
430 | ||
431 | { | |
432 | const res = await getMyUserVideoQuotaUsed(server.url, accessTokenUser) | |
433 | const data = res.body | |
434 | ||
435 | expect(data.videoQuotaUsed).to.be.greaterThan(220000) | |
436 | } | |
437 | }) | |
438 | }) | |
439 | ||
440 | describe('Users listing', function () { | |
441 | ||
442 | it('Should list all the users', async function () { | |
443 | const res = await getUsersList(server.url, server.accessToken) | |
444 | const result = res.body | |
445 | const total = result.total | |
446 | const users = result.data | |
447 | ||
448 | expect(total).to.equal(2) | |
449 | expect(users).to.be.an('array') | |
450 | expect(users.length).to.equal(2) | |
451 | ||
452 | const user = users[0] | |
453 | expect(user.username).to.equal('user_1') | |
454 | expect(user.email).to.equal('user_1@example.com') | |
455 | expect(user.nsfwPolicy).to.equal('display') | |
456 | ||
457 | const rootUser = users[1] | |
458 | expect(rootUser.username).to.equal('root') | |
459 | expect(rootUser.email).to.equal('admin' + server.internalServerNumber + '@example.com') | |
460 | expect(user.nsfwPolicy).to.equal('display') | |
461 | ||
462 | expect(rootUser.lastLoginDate).to.exist | |
463 | expect(user.lastLoginDate).to.exist | |
464 | ||
465 | userId = user.id | |
466 | }) | |
467 | ||
468 | it('Should list only the first user by username asc', async function () { | |
469 | const res = await getUsersListPaginationAndSort(server.url, server.accessToken, 0, 1, 'username') | |
470 | ||
471 | const result = res.body | |
472 | const total = result.total | |
473 | const users = result.data | |
474 | ||
475 | expect(total).to.equal(2) | |
476 | expect(users.length).to.equal(1) | |
477 | ||
478 | const user = users[0] | |
479 | expect(user.username).to.equal('root') | |
480 | expect(user.email).to.equal('admin' + server.internalServerNumber + '@example.com') | |
481 | expect(user.roleLabel).to.equal('Administrator') | |
482 | expect(user.nsfwPolicy).to.equal('display') | |
483 | }) | |
484 | ||
485 | it('Should list only the first user by username desc', async function () { | |
486 | const res = await getUsersListPaginationAndSort(server.url, server.accessToken, 0, 1, '-username') | |
487 | const result = res.body | |
488 | const total = result.total | |
489 | const users = result.data | |
490 | ||
491 | expect(total).to.equal(2) | |
492 | expect(users.length).to.equal(1) | |
493 | ||
494 | const user = users[0] | |
495 | expect(user.username).to.equal('user_1') | |
496 | expect(user.email).to.equal('user_1@example.com') | |
497 | expect(user.nsfwPolicy).to.equal('display') | |
498 | }) | |
499 | ||
500 | it('Should list only the second user by createdAt desc', async function () { | |
501 | const res = await getUsersListPaginationAndSort(server.url, server.accessToken, 0, 1, '-createdAt') | |
502 | const result = res.body | |
503 | const total = result.total | |
504 | const users = result.data | |
505 | ||
506 | expect(total).to.equal(2) | |
507 | expect(users.length).to.equal(1) | |
508 | ||
509 | const user = users[0] | |
510 | expect(user.username).to.equal('user_1') | |
511 | expect(user.email).to.equal('user_1@example.com') | |
512 | expect(user.nsfwPolicy).to.equal('display') | |
513 | }) | |
514 | ||
515 | it('Should list all the users by createdAt asc', async function () { | |
516 | const res = await getUsersListPaginationAndSort(server.url, server.accessToken, 0, 2, 'createdAt') | |
517 | const result = res.body | |
518 | const total = result.total | |
519 | const users = result.data | |
520 | ||
521 | expect(total).to.equal(2) | |
522 | expect(users.length).to.equal(2) | |
523 | ||
524 | expect(users[0].username).to.equal('root') | |
525 | expect(users[0].email).to.equal('admin' + server.internalServerNumber + '@example.com') | |
526 | expect(users[0].nsfwPolicy).to.equal('display') | |
527 | ||
528 | expect(users[1].username).to.equal('user_1') | |
529 | expect(users[1].email).to.equal('user_1@example.com') | |
530 | expect(users[1].nsfwPolicy).to.equal('display') | |
531 | }) | |
532 | ||
533 | it('Should search user by username', async function () { | |
534 | const res = await getUsersListPaginationAndSort(server.url, server.accessToken, 0, 2, 'createdAt', 'oot') | |
535 | const users = res.body.data as User[] | |
536 | ||
537 | expect(res.body.total).to.equal(1) | |
538 | expect(users.length).to.equal(1) | |
539 | ||
540 | expect(users[0].username).to.equal('root') | |
541 | }) | |
542 | ||
543 | it('Should search user by email', async function () { | |
544 | { | |
545 | const res = await getUsersListPaginationAndSort(server.url, server.accessToken, 0, 2, 'createdAt', 'r_1@exam') | |
546 | const users = res.body.data as User[] | |
547 | ||
548 | expect(res.body.total).to.equal(1) | |
549 | expect(users.length).to.equal(1) | |
550 | ||
551 | expect(users[0].username).to.equal('user_1') | |
552 | expect(users[0].email).to.equal('user_1@example.com') | |
553 | } | |
554 | ||
555 | { | |
556 | const res = await getUsersListPaginationAndSort(server.url, server.accessToken, 0, 2, 'createdAt', 'example') | |
557 | const users = res.body.data as User[] | |
558 | ||
559 | expect(res.body.total).to.equal(2) | |
560 | expect(users.length).to.equal(2) | |
561 | ||
562 | expect(users[0].username).to.equal('root') | |
563 | expect(users[1].username).to.equal('user_1') | |
564 | } | |
565 | }) | |
566 | }) | |
567 | ||
568 | describe('Update my account', function () { | |
569 | it('Should update my password', async function () { | |
570 | await updateMyUser({ | |
571 | url: server.url, | |
572 | accessToken: accessTokenUser, | |
573 | currentPassword: 'super password', | |
574 | password: 'new password' | |
575 | }) | |
576 | user.password = 'new password' | |
577 | ||
578 | await userLogin(server, user, HttpStatusCode.OK_200) | |
579 | }) | |
580 | ||
581 | it('Should be able to change the NSFW display attribute', async function () { | |
582 | await updateMyUser({ | |
583 | url: server.url, | |
584 | accessToken: accessTokenUser, | |
585 | nsfwPolicy: 'do_not_list' | |
586 | }) | |
587 | ||
588 | const res = await getMyUserInformation(server.url, accessTokenUser) | |
589 | const user = res.body | |
590 | ||
591 | expect(user.username).to.equal('user_1') | |
592 | expect(user.email).to.equal('user_1@example.com') | |
593 | expect(user.nsfwPolicy).to.equal('do_not_list') | |
594 | expect(user.videoQuota).to.equal(2 * 1024 * 1024) | |
595 | expect(user.id).to.be.a('number') | |
596 | expect(user.account.displayName).to.equal('user_1') | |
597 | expect(user.account.description).to.be.null | |
598 | }) | |
599 | ||
600 | it('Should be able to change the autoPlayVideo attribute', async function () { | |
601 | await updateMyUser({ | |
602 | url: server.url, | |
603 | accessToken: accessTokenUser, | |
604 | autoPlayVideo: false | |
605 | }) | |
606 | ||
607 | const res = await getMyUserInformation(server.url, accessTokenUser) | |
608 | const user = res.body | |
609 | ||
610 | expect(user.autoPlayVideo).to.be.false | |
611 | }) | |
612 | ||
613 | it('Should be able to change the autoPlayNextVideo attribute', async function () { | |
614 | await updateMyUser({ | |
615 | url: server.url, | |
616 | accessToken: accessTokenUser, | |
617 | autoPlayNextVideo: true | |
618 | }) | |
619 | ||
620 | const res = await getMyUserInformation(server.url, accessTokenUser) | |
621 | const user = res.body | |
622 | ||
623 | expect(user.autoPlayNextVideo).to.be.true | |
624 | }) | |
625 | ||
626 | it('Should be able to change the email attribute', async function () { | |
627 | await updateMyUser({ | |
628 | url: server.url, | |
629 | accessToken: accessTokenUser, | |
630 | currentPassword: 'new password', | |
631 | email: 'updated@example.com' | |
632 | }) | |
633 | ||
634 | const res = await getMyUserInformation(server.url, accessTokenUser) | |
635 | const user = res.body | |
636 | ||
637 | expect(user.username).to.equal('user_1') | |
638 | expect(user.email).to.equal('updated@example.com') | |
639 | expect(user.nsfwPolicy).to.equal('do_not_list') | |
640 | expect(user.videoQuota).to.equal(2 * 1024 * 1024) | |
641 | expect(user.id).to.be.a('number') | |
642 | expect(user.account.displayName).to.equal('user_1') | |
643 | expect(user.account.description).to.be.null | |
644 | }) | |
645 | ||
646 | it('Should be able to update my avatar with a gif', async function () { | |
647 | const fixture = 'avatar.gif' | |
648 | ||
649 | await updateMyAvatar({ | |
650 | url: server.url, | |
651 | accessToken: accessTokenUser, | |
652 | fixture | |
653 | }) | |
654 | ||
655 | const res = await getMyUserInformation(server.url, accessTokenUser) | |
656 | const user = res.body | |
657 | ||
658 | await testImage(server.url, 'avatar-resized', user.account.avatar.path, '.gif') | |
659 | }) | |
660 | ||
661 | it('Should be able to update my avatar with a gif, and then a png', async function () { | |
662 | for (const extension of [ '.png', '.gif' ]) { | |
663 | const fixture = 'avatar' + extension | |
664 | ||
665 | await updateMyAvatar({ | |
666 | url: server.url, | |
667 | accessToken: accessTokenUser, | |
668 | fixture | |
669 | }) | |
670 | ||
671 | const res = await getMyUserInformation(server.url, accessTokenUser) | |
672 | const user = res.body | |
673 | ||
674 | await testImage(server.url, 'avatar-resized', user.account.avatar.path, extension) | |
675 | } | |
676 | }) | |
677 | ||
678 | it('Should be able to update my display name', async function () { | |
679 | await updateMyUser({ | |
680 | url: server.url, | |
681 | accessToken: accessTokenUser, | |
682 | displayName: 'new display name' | |
683 | }) | |
684 | ||
685 | const res = await getMyUserInformation(server.url, accessTokenUser) | |
686 | const user = res.body | |
687 | ||
688 | expect(user.username).to.equal('user_1') | |
689 | expect(user.email).to.equal('updated@example.com') | |
690 | expect(user.nsfwPolicy).to.equal('do_not_list') | |
691 | expect(user.videoQuota).to.equal(2 * 1024 * 1024) | |
692 | expect(user.id).to.be.a('number') | |
693 | expect(user.account.displayName).to.equal('new display name') | |
694 | expect(user.account.description).to.be.null | |
695 | }) | |
696 | ||
697 | it('Should be able to update my description', async function () { | |
698 | await updateMyUser({ | |
699 | url: server.url, | |
700 | accessToken: accessTokenUser, | |
701 | description: 'my super description updated' | |
702 | }) | |
703 | ||
704 | const res = await getMyUserInformation(server.url, accessTokenUser) | |
705 | const user: User = res.body | |
706 | ||
707 | expect(user.username).to.equal('user_1') | |
708 | expect(user.email).to.equal('updated@example.com') | |
709 | expect(user.nsfwPolicy).to.equal('do_not_list') | |
710 | expect(user.videoQuota).to.equal(2 * 1024 * 1024) | |
711 | expect(user.id).to.be.a('number') | |
712 | expect(user.account.displayName).to.equal('new display name') | |
713 | expect(user.account.description).to.equal('my super description updated') | |
714 | expect(user.noWelcomeModal).to.be.false | |
715 | expect(user.noInstanceConfigWarningModal).to.be.false | |
716 | }) | |
717 | ||
718 | it('Should be able to update my theme', async function () { | |
719 | for (const theme of [ 'background-red', 'default', 'instance-default' ]) { | |
720 | await updateMyUser({ | |
721 | url: server.url, | |
722 | accessToken: accessTokenUser, | |
723 | theme | |
724 | }) | |
725 | ||
726 | const res = await getMyUserInformation(server.url, accessTokenUser) | |
727 | const body: User = res.body | |
728 | ||
729 | expect(body.theme).to.equal(theme) | |
730 | } | |
731 | }) | |
732 | ||
733 | it('Should be able to update my modal preferences', async function () { | |
734 | await updateMyUser({ | |
735 | url: server.url, | |
736 | accessToken: accessTokenUser, | |
737 | noInstanceConfigWarningModal: true, | |
738 | noWelcomeModal: true | |
739 | }) | |
740 | ||
741 | const res = await getMyUserInformation(server.url, accessTokenUser) | |
742 | const user: User = res.body | |
743 | ||
744 | expect(user.noWelcomeModal).to.be.true | |
745 | expect(user.noInstanceConfigWarningModal).to.be.true | |
746 | }) | |
747 | }) | |
748 | ||
749 | describe('Updating another user', function () { | |
750 | it('Should be able to update another user', async function () { | |
751 | await updateUser({ | |
752 | url: server.url, | |
753 | userId, | |
754 | accessToken, | |
755 | email: 'updated2@example.com', | |
756 | emailVerified: true, | |
757 | videoQuota: 42, | |
758 | role: UserRole.MODERATOR, | |
759 | adminFlags: UserAdminFlag.NONE, | |
760 | pluginAuth: 'toto' | |
761 | }) | |
762 | ||
763 | const res = await getUserInformation(server.url, accessToken, userId) | |
764 | const user = res.body as User | |
765 | ||
766 | expect(user.username).to.equal('user_1') | |
767 | expect(user.email).to.equal('updated2@example.com') | |
768 | expect(user.emailVerified).to.be.true | |
769 | expect(user.nsfwPolicy).to.equal('do_not_list') | |
770 | expect(user.videoQuota).to.equal(42) | |
771 | expect(user.roleLabel).to.equal('Moderator') | |
772 | expect(user.id).to.be.a('number') | |
773 | expect(user.adminFlags).to.equal(UserAdminFlag.NONE) | |
774 | expect(user.pluginAuth).to.equal('toto') | |
775 | }) | |
776 | ||
777 | it('Should reset the auth plugin', async function () { | |
778 | await updateUser({ url: server.url, userId, accessToken, pluginAuth: null }) | |
779 | ||
780 | const res = await getUserInformation(server.url, accessToken, userId) | |
781 | const user = res.body as User | |
782 | expect(user.pluginAuth).to.be.null | |
783 | }) | |
784 | ||
785 | it('Should have removed the user token', async function () { | |
786 | await getMyUserVideoQuotaUsed(server.url, accessTokenUser, HttpStatusCode.UNAUTHORIZED_401) | |
787 | ||
788 | accessTokenUser = await userLogin(server, user) | |
789 | }) | |
790 | ||
791 | it('Should be able to update another user password', async function () { | |
792 | await updateUser({ | |
793 | url: server.url, | |
794 | userId, | |
795 | accessToken, | |
796 | password: 'password updated' | |
797 | }) | |
798 | ||
799 | await getMyUserVideoQuotaUsed(server.url, accessTokenUser, HttpStatusCode.UNAUTHORIZED_401) | |
800 | ||
801 | await userLogin(server, user, HttpStatusCode.BAD_REQUEST_400) | |
802 | ||
803 | user.password = 'password updated' | |
804 | accessTokenUser = await userLogin(server, user) | |
805 | }) | |
806 | }) | |
807 | ||
808 | describe('Video blacklists', function () { | |
809 | it('Should be able to list video blacklist by a moderator', async function () { | |
810 | await getBlacklistedVideosList({ url: server.url, token: accessTokenUser }) | |
811 | }) | |
812 | }) | |
813 | ||
814 | describe('Remove a user', function () { | |
815 | it('Should be able to remove this user', async function () { | |
816 | await removeUser(server.url, userId, accessToken) | |
817 | }) | |
818 | ||
819 | it('Should not be able to login with this user', async function () { | |
820 | await userLogin(server, user, HttpStatusCode.BAD_REQUEST_400) | |
821 | }) | |
822 | ||
823 | it('Should not have videos of this user', async function () { | |
824 | const res = await getVideosList(server.url) | |
825 | ||
826 | expect(res.body.total).to.equal(1) | |
827 | ||
828 | const video = res.body.data[0] | |
829 | expect(video.account.name).to.equal('root') | |
830 | }) | |
831 | }) | |
832 | ||
833 | describe('Registering a new user', function () { | |
834 | let user15AccessToken | |
835 | ||
836 | it('Should register a new user', async function () { | |
837 | const user = { displayName: 'super user 15', username: 'user_15', password: 'my super password' } | |
838 | const channel = { name: 'my_user_15_channel', displayName: 'my channel rocks' } | |
839 | ||
840 | await registerUserWithChannel({ url: server.url, user, channel }) | |
841 | }) | |
842 | ||
843 | it('Should be able to login with this registered user', async function () { | |
844 | const user15 = { | |
845 | username: 'user_15', | |
846 | password: 'my super password' | |
847 | } | |
848 | ||
849 | user15AccessToken = await userLogin(server, user15) | |
850 | }) | |
851 | ||
852 | it('Should have the correct display name', async function () { | |
853 | const res = await getMyUserInformation(server.url, user15AccessToken) | |
854 | const user: User = res.body | |
855 | ||
856 | expect(user.account.displayName).to.equal('super user 15') | |
857 | }) | |
858 | ||
859 | it('Should have the correct video quota', async function () { | |
860 | const res = await getMyUserInformation(server.url, user15AccessToken) | |
861 | const user = res.body | |
862 | ||
863 | expect(user.videoQuota).to.equal(5 * 1024 * 1024) | |
864 | }) | |
865 | ||
866 | it('Should have created the channel', async function () { | |
867 | const res = await getVideoChannel(server.url, 'my_user_15_channel') | |
868 | ||
869 | expect(res.body.displayName).to.equal('my channel rocks') | |
870 | }) | |
871 | ||
872 | it('Should remove me', async function () { | |
873 | { | |
874 | const res = await getUsersList(server.url, server.accessToken) | |
875 | expect(res.body.data.find(u => u.username === 'user_15')).to.not.be.undefined | |
876 | } | |
877 | ||
878 | await deleteMe(server.url, user15AccessToken) | |
879 | ||
880 | { | |
881 | const res = await getUsersList(server.url, server.accessToken) | |
882 | expect(res.body.data.find(u => u.username === 'user_15')).to.be.undefined | |
883 | } | |
884 | }) | |
885 | }) | |
886 | ||
887 | describe('User blocking', function () { | |
888 | let user16Id | |
889 | let user16AccessToken | |
890 | const user16 = { | |
891 | username: 'user_16', | |
892 | password: 'my super password' | |
893 | } | |
894 | ||
895 | it('Should block a user', async function () { | |
896 | const resUser = await createUser({ | |
897 | url: server.url, | |
898 | accessToken: server.accessToken, | |
899 | username: user16.username, | |
900 | password: user16.password | |
901 | }) | |
902 | user16Id = resUser.body.user.id | |
903 | ||
904 | user16AccessToken = await userLogin(server, user16) | |
905 | ||
906 | await getMyUserInformation(server.url, user16AccessToken, HttpStatusCode.OK_200) | |
907 | await blockUser(server.url, user16Id, server.accessToken) | |
908 | ||
909 | await getMyUserInformation(server.url, user16AccessToken, HttpStatusCode.UNAUTHORIZED_401) | |
910 | await userLogin(server, user16, HttpStatusCode.BAD_REQUEST_400) | |
911 | }) | |
912 | ||
913 | it('Should search user by banned status', async function () { | |
914 | { | |
915 | const res = await getUsersListPaginationAndSort(server.url, server.accessToken, 0, 2, 'createdAt', undefined, true) | |
916 | const users = res.body.data as User[] | |
917 | ||
918 | expect(res.body.total).to.equal(1) | |
919 | expect(users.length).to.equal(1) | |
920 | ||
921 | expect(users[0].username).to.equal(user16.username) | |
922 | } | |
923 | ||
924 | { | |
925 | const res = await getUsersListPaginationAndSort(server.url, server.accessToken, 0, 2, 'createdAt', undefined, false) | |
926 | const users = res.body.data as User[] | |
927 | ||
928 | expect(res.body.total).to.equal(1) | |
929 | expect(users.length).to.equal(1) | |
930 | ||
931 | expect(users[0].username).to.not.equal(user16.username) | |
932 | } | |
933 | }) | |
934 | ||
935 | it('Should unblock a user', async function () { | |
936 | await unblockUser(server.url, user16Id, server.accessToken) | |
937 | user16AccessToken = await userLogin(server, user16) | |
938 | await getMyUserInformation(server.url, user16AccessToken, HttpStatusCode.OK_200) | |
939 | }) | |
940 | }) | |
941 | ||
942 | describe('User stats', function () { | |
943 | let user17Id | |
944 | let user17AccessToken | |
945 | ||
946 | it('Should report correct initial statistics about a user', async function () { | |
947 | const user17 = { | |
948 | username: 'user_17', | |
949 | password: 'my super password' | |
950 | } | |
951 | const resUser = await createUser({ | |
952 | url: server.url, | |
953 | accessToken: server.accessToken, | |
954 | username: user17.username, | |
955 | password: user17.password | |
956 | }) | |
957 | ||
958 | user17Id = resUser.body.user.id | |
959 | user17AccessToken = await userLogin(server, user17) | |
960 | ||
961 | const res = await getUserInformation(server.url, server.accessToken, user17Id, true) | |
962 | const user: User = res.body | |
963 | ||
964 | expect(user.videosCount).to.equal(0) | |
965 | expect(user.videoCommentsCount).to.equal(0) | |
966 | expect(user.abusesCount).to.equal(0) | |
967 | expect(user.abusesCreatedCount).to.equal(0) | |
968 | expect(user.abusesAcceptedCount).to.equal(0) | |
969 | }) | |
970 | ||
971 | it('Should report correct videos count', async function () { | |
972 | const videoAttributes = { | |
973 | name: 'video to test user stats' | |
974 | } | |
975 | await uploadVideo(server.url, user17AccessToken, videoAttributes) | |
976 | const res1 = await getVideosList(server.url) | |
977 | videoId = res1.body.data.find(video => video.name === videoAttributes.name).id | |
978 | ||
979 | const res2 = await getUserInformation(server.url, server.accessToken, user17Id, true) | |
980 | const user: User = res2.body | |
981 | ||
982 | expect(user.videosCount).to.equal(1) | |
983 | }) | |
984 | ||
985 | it('Should report correct video comments for user', async function () { | |
986 | const text = 'super comment' | |
987 | await addVideoCommentThread(server.url, user17AccessToken, videoId, text) | |
988 | ||
989 | const res = await getUserInformation(server.url, server.accessToken, user17Id, true) | |
990 | const user: User = res.body | |
991 | ||
992 | expect(user.videoCommentsCount).to.equal(1) | |
993 | }) | |
994 | ||
995 | it('Should report correct abuses counts', async function () { | |
996 | const reason = 'my super bad reason' | |
997 | await reportAbuse({ url: server.url, token: user17AccessToken, videoId, reason }) | |
998 | ||
999 | const res1 = await getAdminAbusesList({ url: server.url, token: server.accessToken }) | |
1000 | const abuseId = res1.body.data[0].id | |
1001 | ||
1002 | const res2 = await getUserInformation(server.url, server.accessToken, user17Id, true) | |
1003 | const user2: User = res2.body | |
1004 | ||
1005 | expect(user2.abusesCount).to.equal(1) // number of incriminations | |
1006 | expect(user2.abusesCreatedCount).to.equal(1) // number of reports created | |
1007 | ||
1008 | const body: AbuseUpdate = { state: AbuseState.ACCEPTED } | |
1009 | await updateAbuse(server.url, server.accessToken, abuseId, body) | |
1010 | ||
1011 | const res3 = await getUserInformation(server.url, server.accessToken, user17Id, true) | |
1012 | const user3: User = res3.body | |
1013 | ||
1014 | expect(user3.abusesAcceptedCount).to.equal(1) // number of reports created accepted | |
1015 | }) | |
1016 | }) | |
1017 | ||
1018 | after(async function () { | |
1019 | await closeAllSequelize([ server ]) | |
1020 | await cleanupTests([ server ]) | |
1021 | }) | |
1022 | }) |