1 /* eslint-disable @typescript-eslint/no-unused-expressions,@typescript-eslint/require-await */
3 import * as chai from 'chai'
13 updateCustomSubConfig,
17 } from '../../../../shared/extra-utils'
18 import { setAccessTokensToServers } from '../../../../shared/extra-utils/users/login'
19 import { MockSmtpServer } from '../../../../shared/extra-utils/miscs/email'
20 import { waitJobs } from '../../../../shared/extra-utils/server/jobs'
21 import { User } from '../../../../shared/models/users'
23 const expect = chai.expect
25 describe('Test users account verification', function () {
26 let server: ServerInfo
28 let userAccessToken: string
29 let verificationString: string
30 let expectedEmailsLength = 0
33 password: 'super password'
37 password: 'super password'
39 const emails: object[] = []
41 before(async function () {
44 const port = await MockSmtpServer.Instance.collectEmails(emails)
46 const overrideConfig = {
48 hostname: 'localhost',
52 server = await flushAndRunServer(1, overrideConfig)
54 await setAccessTokensToServers([ server ])
57 it('Should register user and send verification email if verification required', async function () {
60 await updateCustomSubConfig(server.url, server.accessToken, {
63 requiresEmailVerification: true,
68 await registerUser(server.url, user1.username, user1.password)
70 await waitJobs(server)
71 expectedEmailsLength++
72 expect(emails).to.have.lengthOf(expectedEmailsLength)
74 const email = emails[expectedEmailsLength - 1]
76 const verificationStringMatches = /verificationString=([a-z0-9]+)/.exec(email['text'])
77 expect(verificationStringMatches).not.to.be.null
79 verificationString = verificationStringMatches[1]
80 expect(verificationString).to.have.length.above(2)
82 const userIdMatches = /userId=([0-9]+)/.exec(email['text'])
83 expect(userIdMatches).not.to.be.null
85 userId = parseInt(userIdMatches[1], 10)
87 const resUserInfo = await getUserInformation(server.url, server.accessToken, userId)
88 expect(resUserInfo.body.emailVerified).to.be.false
91 it('Should not allow login for user with unverified email', async function () {
92 const resLogin = await login(server.url, server.client, user1, 400)
93 expect(resLogin.body.error).to.contain('User email is not verified.')
96 it('Should verify the user via email and allow login', async function () {
97 await verifyEmail(server.url, userId, verificationString)
99 const res = await login(server.url, server.client, user1)
100 userAccessToken = res.body.access_token
102 const resUserVerified = await getUserInformation(server.url, server.accessToken, userId)
103 expect(resUserVerified.body.emailVerified).to.be.true
106 it('Should be able to change the user email', async function () {
109 let updateVerificationString: string
114 accessToken: userAccessToken,
115 email: 'updated@example.com',
116 currentPassword: user1.password
119 await waitJobs(server)
120 expectedEmailsLength++
121 expect(emails).to.have.lengthOf(expectedEmailsLength)
123 const email = emails[expectedEmailsLength - 1]
125 const verificationStringMatches = /verificationString=([a-z0-9]+)/.exec(email['text'])
126 updateVerificationString = verificationStringMatches[1]
130 const res = await getMyUserInformation(server.url, userAccessToken)
131 const me: User = res.body
133 expect(me.email).to.equal('user_1@example.com')
134 expect(me.pendingEmail).to.equal('updated@example.com')
138 await verifyEmail(server.url, userId, updateVerificationString, true)
140 const res = await getMyUserInformation(server.url, userAccessToken)
141 const me: User = res.body
143 expect(me.email).to.equal('updated@example.com')
144 expect(me.pendingEmail).to.be.null
148 it('Should register user not requiring email verification if setting not enabled', async function () {
150 await updateCustomSubConfig(server.url, server.accessToken, {
153 requiresEmailVerification: false,
158 await registerUser(server.url, user2.username, user2.password)
160 await waitJobs(server)
161 expect(emails).to.have.lengthOf(expectedEmailsLength)
163 const accessToken = await userLogin(server, user2)
165 const resMyUserInfo = await getMyUserInformation(server.url, accessToken)
166 expect(resMyUserInfo.body.emailVerified).to.be.null
169 it('Should allow login for user with unverified email when setting later enabled', async function () {
170 await updateCustomSubConfig(server.url, server.accessToken, {
173 requiresEmailVerification: true,
178 await userLogin(server, user2)
181 after(async function () {
182 MockSmtpServer.Instance.kill()
184 await cleanupTests([ server ])