1 /* tslint:disable:no-unused-expression */
3 import * as chai from 'chai'
5 import { User, UserRole } from '../../../../shared/index'
13 getBlacklistedVideosList,
15 getMyUserVideoQuotaUsed,
19 getUsersListPaginationAndSort,
35 } from '../../../../shared/extra-utils'
36 import { follow } from '../../../../shared/extra-utils/server/follows'
37 import { setAccessTokensToServers } from '../../../../shared/extra-utils/users/login'
38 import { getMyVideos } from '../../../../shared/extra-utils/videos/videos'
39 import { UserAdminFlag } from '../../../../shared/models/users/user-flag.model'
41 const expect = chai.expect
43 describe('Test users', function () {
44 let server: ServerInfo
45 let accessToken: string
46 let accessTokenUser: string
51 password: 'super password'
54 before(async function () {
56 server = await flushAndRunServer(1)
58 await setAccessTokensToServers([ server ])
61 describe('OAuth client', function () {
62 it('Should create a new client')
64 it('Should return the first client')
66 it('Should remove the last client')
68 it('Should not login with an invalid client id', async function () {
69 const client = { id: 'client', secret: server.client.secret }
70 const res = await login(server.url, client, server.user, 400)
72 expect(res.body.error).to.contain('client is invalid')
75 it('Should not login with an invalid client secret', async function () {
76 const client = { id: server.client.id, secret: 'coucou' }
77 const res = await login(server.url, client, server.user, 400)
79 expect(res.body.error).to.contain('client is invalid')
83 describe('Login', function () {
85 it('Should not login with an invalid username', async function () {
86 const user = { username: 'captain crochet', password: server.user.password }
87 const res = await login(server.url, server.client, user, 400)
89 expect(res.body.error).to.contain('credentials are invalid')
92 it('Should not login with an invalid password', async function () {
93 const user = { username: server.user.username, password: 'mew_three' }
94 const res = await login(server.url, server.client, user, 400)
96 expect(res.body.error).to.contain('credentials are invalid')
99 it('Should not be able to upload a video', async function () {
100 accessToken = 'my_super_token'
102 const videoAttributes = {}
103 await uploadVideo(server.url, accessToken, videoAttributes, 401)
106 it('Should not be able to follow', async function () {
107 accessToken = 'my_super_token'
108 await follow(server.url, [ 'http://example.com' ], accessToken, 401)
111 it('Should not be able to unfollow')
113 it('Should be able to login', async function () {
114 const res = await login(server.url, server.client, server.user, 200)
116 accessToken = res.body.access_token
120 describe('Upload', function () {
122 it('Should upload the video with the correct token', async function () {
123 const videoAttributes = {}
124 await uploadVideo(server.url, accessToken, videoAttributes)
125 const res = await getVideosList(server.url)
126 const video = res.body.data[ 0 ]
128 expect(video.account.name).to.equal('root')
132 it('Should upload the video again with the correct token', async function () {
133 const videoAttributes = {}
134 await uploadVideo(server.url, accessToken, videoAttributes)
138 describe('Ratings', function () {
140 it('Should retrieve a video rating', async function () {
141 await rateVideo(server.url, accessToken, videoId, 'like')
142 const res = await getMyUserVideoRating(server.url, accessToken, videoId)
143 const rating = res.body
145 expect(rating.videoId).to.equal(videoId)
146 expect(rating.rating).to.equal('like')
149 it('Should retrieve ratings list', async function () {
150 await rateVideo(server.url, accessToken, videoId, 'like')
152 const res = await getAccountRatings(server.url, server.user.username, server.accessToken, null, 200)
153 const ratings = res.body
155 expect(ratings.total).to.equal(1)
156 expect(ratings.data[ 0 ].video.id).to.equal(videoId)
157 expect(ratings.data[ 0 ].rating).to.equal('like')
160 it('Should retrieve ratings list by rating type', async function () {
162 const res = await getAccountRatings(server.url, server.user.username, server.accessToken, 'like')
163 const ratings = res.body
164 expect(ratings.data.length).to.equal(1)
168 const res = await getAccountRatings(server.url, server.user.username, server.accessToken, 'dislike')
169 const ratings = res.body
170 expect(ratings.data.length).to.equal(0)
175 describe('Remove video', function () {
176 it('Should not be able to remove the video with an incorrect token', async function () {
177 await removeVideo(server.url, 'bad_token', videoId, 401)
180 it('Should not be able to remove the video with the token of another account')
182 it('Should be able to remove the video with the correct token', async function () {
183 await removeVideo(server.url, accessToken, videoId)
187 describe('Logout', function () {
188 it('Should logout (revoke token)')
190 it('Should not be able to get the user information')
192 it('Should not be able to upload a video')
194 it('Should not be able to remove a video')
196 it('Should not be able to rate a video', async function () {
197 const path = '/api/v1/videos/'
204 path: path + videoId,
205 token: 'wrong token',
207 statusCodeExpected: 401
209 await makePutBodyRequest(options)
212 it('Should be able to login again')
214 it('Should have an expired access token')
216 it('Should refresh the token')
218 it('Should be able to upload a video again')
221 describe('Creating a user', function () {
223 it('Should be able to create a new user', async function () {
226 accessToken: accessToken,
227 username: user.username,
228 password: user.password,
229 videoQuota: 2 * 1024 * 1024,
230 adminFlags: UserAdminFlag.BY_PASS_VIDEO_AUTO_BLACKLIST
234 it('Should be able to login with this user', async function () {
235 accessTokenUser = await userLogin(server, user)
238 it('Should be able to get user information', async function () {
239 const res1 = await getMyUserInformation(server.url, accessTokenUser)
240 const userMe: User = res1.body
242 const res2 = await getUserInformation(server.url, server.accessToken, userMe.id)
243 const userGet: User = res2.body
245 for (const user of [ userMe, userGet ]) {
246 expect(user.username).to.equal('user_1')
247 expect(user.email).to.equal('user_1@example.com')
248 expect(user.nsfwPolicy).to.equal('display')
249 expect(user.videoQuota).to.equal(2 * 1024 * 1024)
250 expect(user.roleLabel).to.equal('User')
251 expect(user.id).to.be.a('number')
252 expect(user.account.displayName).to.equal('user_1')
253 expect(user.account.description).to.be.null
256 expect(userMe.adminFlags).to.be.undefined
257 expect(userGet.adminFlags).to.equal(UserAdminFlag.BY_PASS_VIDEO_AUTO_BLACKLIST)
261 describe('My videos & quotas', function () {
263 it('Should be able to upload a video with this user', async function () {
266 const videoAttributes = {
267 name: 'super user video',
268 fixture: 'video_short.webm'
270 await uploadVideo(server.url, accessTokenUser, videoAttributes)
273 it('Should have video quota updated', async function () {
274 const res = await getMyUserVideoQuotaUsed(server.url, accessTokenUser)
275 const data = res.body
277 expect(data.videoQuotaUsed).to.equal(218910)
279 const resUsers = await getUsersList(server.url, server.accessToken)
281 const users: User[] = resUsers.body.data
282 const tmpUser = users.find(u => u.username === user.username)
283 expect(tmpUser.videoQuotaUsed).to.equal(218910)
286 it('Should be able to list my videos', async function () {
287 const res = await getMyVideos(server.url, accessTokenUser, 0, 5)
288 expect(res.body.total).to.equal(1)
290 const videos = res.body.data
291 expect(videos).to.have.lengthOf(1)
293 expect(videos[ 0 ].name).to.equal('super user video')
297 describe('Users listing', function () {
299 it('Should list all the users', async function () {
300 const res = await getUsersList(server.url, server.accessToken)
301 const result = res.body
302 const total = result.total
303 const users = result.data
305 expect(total).to.equal(2)
306 expect(users).to.be.an('array')
307 expect(users.length).to.equal(2)
309 const user = users[ 0 ]
310 expect(user.username).to.equal('user_1')
311 expect(user.email).to.equal('user_1@example.com')
312 expect(user.nsfwPolicy).to.equal('display')
314 const rootUser = users[ 1 ]
315 expect(rootUser.username).to.equal('root')
316 expect(rootUser.email).to.equal('admin1@example.com')
317 expect(user.nsfwPolicy).to.equal('display')
322 it('Should list only the first user by username asc', async function () {
323 const res = await getUsersListPaginationAndSort(server.url, server.accessToken, 0, 1, 'username')
325 const result = res.body
326 const total = result.total
327 const users = result.data
329 expect(total).to.equal(2)
330 expect(users.length).to.equal(1)
332 const user = users[ 0 ]
333 expect(user.username).to.equal('root')
334 expect(user.email).to.equal('admin1@example.com')
335 expect(user.roleLabel).to.equal('Administrator')
336 expect(user.nsfwPolicy).to.equal('display')
339 it('Should list only the first user by username desc', async function () {
340 const res = await getUsersListPaginationAndSort(server.url, server.accessToken, 0, 1, '-username')
341 const result = res.body
342 const total = result.total
343 const users = result.data
345 expect(total).to.equal(2)
346 expect(users.length).to.equal(1)
348 const user = users[ 0 ]
349 expect(user.username).to.equal('user_1')
350 expect(user.email).to.equal('user_1@example.com')
351 expect(user.nsfwPolicy).to.equal('display')
354 it('Should list only the second user by createdAt desc', async function () {
355 const res = await getUsersListPaginationAndSort(server.url, server.accessToken, 0, 1, '-createdAt')
356 const result = res.body
357 const total = result.total
358 const users = result.data
360 expect(total).to.equal(2)
361 expect(users.length).to.equal(1)
363 const user = users[ 0 ]
364 expect(user.username).to.equal('user_1')
365 expect(user.email).to.equal('user_1@example.com')
366 expect(user.nsfwPolicy).to.equal('display')
369 it('Should list all the users by createdAt asc', async function () {
370 const res = await getUsersListPaginationAndSort(server.url, server.accessToken, 0, 2, 'createdAt')
371 const result = res.body
372 const total = result.total
373 const users = result.data
375 expect(total).to.equal(2)
376 expect(users.length).to.equal(2)
378 expect(users[ 0 ].username).to.equal('root')
379 expect(users[ 0 ].email).to.equal('admin1@example.com')
380 expect(users[ 0 ].nsfwPolicy).to.equal('display')
382 expect(users[ 1 ].username).to.equal('user_1')
383 expect(users[ 1 ].email).to.equal('user_1@example.com')
384 expect(users[ 1 ].nsfwPolicy).to.equal('display')
387 it('Should search user by username', async function () {
388 const res = await getUsersListPaginationAndSort(server.url, server.accessToken, 0, 2, 'createdAt', 'oot')
389 const users = res.body.data as User[]
391 expect(res.body.total).to.equal(1)
392 expect(users.length).to.equal(1)
394 expect(users[ 0 ].username).to.equal('root')
397 it('Should search user by email', async function () {
399 const res = await getUsersListPaginationAndSort(server.url, server.accessToken, 0, 2, 'createdAt', 'r_1@exam')
400 const users = res.body.data as User[]
402 expect(res.body.total).to.equal(1)
403 expect(users.length).to.equal(1)
405 expect(users[ 0 ].username).to.equal('user_1')
406 expect(users[ 0 ].email).to.equal('user_1@example.com')
410 const res = await getUsersListPaginationAndSort(server.url, server.accessToken, 0, 2, 'createdAt', 'example')
411 const users = res.body.data as User[]
413 expect(res.body.total).to.equal(2)
414 expect(users.length).to.equal(2)
416 expect(users[ 0 ].username).to.equal('root')
417 expect(users[ 1 ].username).to.equal('user_1')
422 describe('Update my account', function () {
423 it('Should update my password', async function () {
426 accessToken: accessTokenUser,
427 currentPassword: 'super password',
428 newPassword: 'new password'
430 user.password = 'new password'
432 await userLogin(server, user, 200)
435 it('Should be able to change the NSFW display attribute', async function () {
438 accessToken: accessTokenUser,
439 nsfwPolicy: 'do_not_list'
442 const res = await getMyUserInformation(server.url, accessTokenUser)
443 const user = res.body
445 expect(user.username).to.equal('user_1')
446 expect(user.email).to.equal('user_1@example.com')
447 expect(user.nsfwPolicy).to.equal('do_not_list')
448 expect(user.videoQuota).to.equal(2 * 1024 * 1024)
449 expect(user.id).to.be.a('number')
450 expect(user.account.displayName).to.equal('user_1')
451 expect(user.account.description).to.be.null
454 it('Should be able to change the autoPlayVideo attribute', async function () {
457 accessToken: accessTokenUser,
461 const res = await getMyUserInformation(server.url, accessTokenUser)
462 const user = res.body
464 expect(user.autoPlayVideo).to.be.false
467 it('Should be able to change the email display attribute', async function () {
470 accessToken: accessTokenUser,
471 email: 'updated@example.com'
474 const res = await getMyUserInformation(server.url, accessTokenUser)
475 const user = res.body
477 expect(user.username).to.equal('user_1')
478 expect(user.email).to.equal('updated@example.com')
479 expect(user.nsfwPolicy).to.equal('do_not_list')
480 expect(user.videoQuota).to.equal(2 * 1024 * 1024)
481 expect(user.id).to.be.a('number')
482 expect(user.account.displayName).to.equal('user_1')
483 expect(user.account.description).to.be.null
486 it('Should be able to update my avatar', async function () {
487 const fixture = 'avatar.png'
489 await updateMyAvatar({
491 accessToken: accessTokenUser,
495 const res = await getMyUserInformation(server.url, accessTokenUser)
496 const user = res.body
498 await testImage(server.url, 'avatar-resized', user.account.avatar.path, '.png')
501 it('Should be able to update my display name', async function () {
504 accessToken: accessTokenUser,
505 displayName: 'new display name'
508 const res = await getMyUserInformation(server.url, accessTokenUser)
509 const user = res.body
511 expect(user.username).to.equal('user_1')
512 expect(user.email).to.equal('updated@example.com')
513 expect(user.nsfwPolicy).to.equal('do_not_list')
514 expect(user.videoQuota).to.equal(2 * 1024 * 1024)
515 expect(user.id).to.be.a('number')
516 expect(user.account.displayName).to.equal('new display name')
517 expect(user.account.description).to.be.null
520 it('Should be able to update my description', async function () {
523 accessToken: accessTokenUser,
524 description: 'my super description updated'
527 const res = await getMyUserInformation(server.url, accessTokenUser)
528 const user = res.body
530 expect(user.username).to.equal('user_1')
531 expect(user.email).to.equal('updated@example.com')
532 expect(user.nsfwPolicy).to.equal('do_not_list')
533 expect(user.videoQuota).to.equal(2 * 1024 * 1024)
534 expect(user.id).to.be.a('number')
535 expect(user.account.displayName).to.equal('new display name')
536 expect(user.account.description).to.equal('my super description updated')
540 describe('Updating another user', function () {
542 it('Should be able to update another user', async function () {
547 email: 'updated2@example.com',
550 role: UserRole.MODERATOR,
551 adminFlags: UserAdminFlag.NONE
554 const res = await getUserInformation(server.url, accessToken, userId)
555 const user = res.body
557 expect(user.username).to.equal('user_1')
558 expect(user.email).to.equal('updated2@example.com')
559 expect(user.emailVerified).to.be.true
560 expect(user.nsfwPolicy).to.equal('do_not_list')
561 expect(user.videoQuota).to.equal(42)
562 expect(user.roleLabel).to.equal('Moderator')
563 expect(user.id).to.be.a('number')
564 expect(user.adminFlags).to.equal(UserAdminFlag.NONE)
567 it('Should have removed the user token', async function () {
568 await getMyUserVideoQuotaUsed(server.url, accessTokenUser, 401)
570 accessTokenUser = await userLogin(server, user)
573 it('Should be able to update another user password', async function () {
578 password: 'password updated'
581 await getMyUserVideoQuotaUsed(server.url, accessTokenUser, 401)
583 await userLogin(server, user, 400)
585 user.password = 'password updated'
586 accessTokenUser = await userLogin(server, user)
590 describe('Video blacklists', function () {
591 it('Should be able to list video blacklist by a moderator', async function () {
592 await getBlacklistedVideosList({ url: server.url, token: accessTokenUser })
596 describe('Remove a user', function () {
597 it('Should be able to remove this user', async function () {
598 await removeUser(server.url, userId, accessToken)
601 it('Should not be able to login with this user', async function () {
602 await userLogin(server, user, 400)
605 it('Should not have videos of this user', async function () {
606 const res = await getVideosList(server.url)
608 expect(res.body.total).to.equal(1)
610 const video = res.body.data[ 0 ]
611 expect(video.account.name).to.equal('root')
615 describe('Registering a new user', function () {
616 it('Should register a new user', async function () {
617 await registerUser(server.url, 'user_15', 'my super password')
620 it('Should be able to login with this registered user', async function () {
623 password: 'my super password'
626 accessToken = await userLogin(server, user15)
629 it('Should have the correct video quota', async function () {
630 const res = await getMyUserInformation(server.url, accessToken)
631 const user = res.body
633 expect(user.videoQuota).to.equal(5 * 1024 * 1024)
636 it('Should remove me', async function () {
638 const res = await getUsersList(server.url, server.accessToken)
639 expect(res.body.data.find(u => u.username === 'user_15')).to.not.be.undefined
642 await deleteMe(server.url, accessToken)
645 const res = await getUsersList(server.url, server.accessToken)
646 expect(res.body.data.find(u => u.username === 'user_15')).to.be.undefined
651 describe('User blocking', function () {
652 it('Should block and unblock a user', async function () {
655 password: 'my super password'
657 const resUser = await createUser({
659 accessToken: server.accessToken,
660 username: user16.username,
661 password: user16.password
663 const user16Id = resUser.body.user.id
665 accessToken = await userLogin(server, user16)
667 await getMyUserInformation(server.url, accessToken, 200)
668 await blockUser(server.url, user16Id, server.accessToken)
670 await getMyUserInformation(server.url, accessToken, 401)
671 await userLogin(server, user16, 400)
673 await unblockUser(server.url, user16Id, server.accessToken)
674 accessToken = await userLogin(server, user16)
675 await getMyUserInformation(server.url, accessToken, 200)
679 after(async function () {
680 await cleanupTests([ server ])