1 /* eslint-disable @typescript-eslint/no-unused-expressions,@typescript-eslint/require-await */
3 import * as chai from 'chai'
13 updateCustomSubConfig,
17 } from '../../../../shared/extra-utils'
18 import { setAccessTokensToServers } from '../../../../shared/extra-utils/users/login'
19 import { MockSmtpServer } from '../../../../shared/extra-utils/miscs/email'
20 import { waitJobs } from '../../../../shared/extra-utils/server/jobs'
21 import { User } from '../../../../shared/models/users'
23 const expect = chai.expect
25 describe('Test users account verification', function () {
26 let server: ServerInfo
28 let userAccessToken: string
29 let verificationString: string
30 let expectedEmailsLength = 0
33 password: 'super password'
37 password: 'super password'
39 const emails: object[] = []
41 before(async function () {
44 const port = await MockSmtpServer.Instance.collectEmails(emails)
46 const overrideConfig = {
48 hostname: 'localhost',
52 server = await flushAndRunServer(1, overrideConfig)
54 await setAccessTokensToServers([ server ])
57 it('Should register user and send verification email if verification required', async function () {
59 await updateCustomSubConfig(server.url, server.accessToken, {
62 requiresEmailVerification: true,
67 await registerUser(server.url, user1.username, user1.password)
69 await waitJobs(server)
70 expectedEmailsLength++
71 expect(emails).to.have.lengthOf(expectedEmailsLength)
73 const email = emails[expectedEmailsLength - 1]
75 const verificationStringMatches = /verificationString=([a-z0-9]+)/.exec(email['text'])
76 expect(verificationStringMatches).not.to.be.null
78 verificationString = verificationStringMatches[1]
79 expect(verificationString).to.have.length.above(2)
81 const userIdMatches = /userId=([0-9]+)/.exec(email['text'])
82 expect(userIdMatches).not.to.be.null
84 userId = parseInt(userIdMatches[1], 10)
86 const resUserInfo = await getUserInformation(server.url, server.accessToken, userId)
87 expect(resUserInfo.body.emailVerified).to.be.false
90 it('Should not allow login for user with unverified email', async function () {
91 const resLogin = await login(server.url, server.client, user1, 400)
92 expect(resLogin.body.error).to.contain('User email is not verified.')
95 it('Should verify the user via email and allow login', async function () {
96 await verifyEmail(server.url, userId, verificationString)
98 const res = await login(server.url, server.client, user1)
99 userAccessToken = res.body.access_token
101 const resUserVerified = await getUserInformation(server.url, server.accessToken, userId)
102 expect(resUserVerified.body.emailVerified).to.be.true
105 it('Should be able to change the user email', async function () {
106 let updateVerificationString: string
111 accessToken: userAccessToken,
112 email: 'updated@example.com',
113 currentPassword: user1.password
116 await waitJobs(server)
117 expectedEmailsLength++
118 expect(emails).to.have.lengthOf(expectedEmailsLength)
120 const email = emails[expectedEmailsLength - 1]
122 const verificationStringMatches = /verificationString=([a-z0-9]+)/.exec(email['text'])
123 updateVerificationString = verificationStringMatches[1]
127 const res = await getMyUserInformation(server.url, userAccessToken)
128 const me: User = res.body
130 expect(me.email).to.equal('user_1@example.com')
131 expect(me.pendingEmail).to.equal('updated@example.com')
135 await verifyEmail(server.url, userId, updateVerificationString, true)
137 const res = await getMyUserInformation(server.url, userAccessToken)
138 const me: User = res.body
140 expect(me.email).to.equal('updated@example.com')
141 expect(me.pendingEmail).to.be.null
145 it('Should register user not requiring email verification if setting not enabled', async function () {
147 await updateCustomSubConfig(server.url, server.accessToken, {
150 requiresEmailVerification: false,
155 await registerUser(server.url, user2.username, user2.password)
157 await waitJobs(server)
158 expect(emails).to.have.lengthOf(expectedEmailsLength)
160 const accessToken = await userLogin(server, user2)
162 const resMyUserInfo = await getMyUserInformation(server.url, accessToken)
163 expect(resMyUserInfo.body.emailVerified).to.be.null
166 it('Should allow login for user with unverified email when setting later enabled', async function () {
167 await updateCustomSubConfig(server.url, server.accessToken, {
170 requiresEmailVerification: true,
175 await userLogin(server, user2)
178 after(async function () {
179 MockSmtpServer.Instance.kill()
181 await cleanupTests([ server ])