- await server.pluginsCommand.install({ npmName: 'peertube-theme-background-red' })
- })
-
- describe('OAuth client', function () {
- it('Should create a new client')
-
- it('Should return the first client')
-
- it('Should remove the last client')
-
- it('Should not login with an invalid client id', async function () {
- const client = { id: 'client', secret: server.client.secret }
- const res = await login(server.url, client, server.user, HttpStatusCode.BAD_REQUEST_400)
-
- expect(res.body.code).to.equal(OAuth2ErrorCode.INVALID_CLIENT)
- expect(res.body.error).to.contain('client is invalid')
- expect(res.body.type.startsWith('https://')).to.be.true
- expect(res.body.type).to.contain(OAuth2ErrorCode.INVALID_CLIENT)
- })
-
- it('Should not login with an invalid client secret', async function () {
- const client = { id: server.client.id, secret: 'coucou' }
- const res = await login(server.url, client, server.user, HttpStatusCode.BAD_REQUEST_400)
-
- expect(res.body.code).to.equal(OAuth2ErrorCode.INVALID_CLIENT)
- expect(res.body.error).to.contain('client is invalid')
- expect(res.body.type.startsWith('https://')).to.be.true
- expect(res.body.type).to.contain(OAuth2ErrorCode.INVALID_CLIENT)
- })
- })
-
- describe('Login', function () {
-
- it('Should not login with an invalid username', async function () {
- const user = { username: 'captain crochet', password: server.user.password }
- const res = await login(server.url, server.client, user, HttpStatusCode.BAD_REQUEST_400)
-
- expect(res.body.code).to.equal(OAuth2ErrorCode.INVALID_GRANT)
- expect(res.body.error).to.contain('credentials are invalid')
- expect(res.body.type.startsWith('https://')).to.be.true
- expect(res.body.type).to.contain(OAuth2ErrorCode.INVALID_GRANT)
- })
-
- it('Should not login with an invalid password', async function () {
- const user = { username: server.user.username, password: 'mew_three' }
- const res = await login(server.url, server.client, user, HttpStatusCode.BAD_REQUEST_400)
-
- expect(res.body.code).to.equal(OAuth2ErrorCode.INVALID_GRANT)
- expect(res.body.error).to.contain('credentials are invalid')
- expect(res.body.type.startsWith('https://')).to.be.true
- expect(res.body.type).to.contain(OAuth2ErrorCode.INVALID_GRANT)
- })
-
- it('Should not be able to upload a video', async function () {
- accessToken = 'my_super_token'
-
- const videoAttributes = {}
- await uploadVideo(server.url, accessToken, videoAttributes, HttpStatusCode.UNAUTHORIZED_401)
- })
-
- it('Should not be able to follow', async function () {
- accessToken = 'my_super_token'
-
- await server.followsCommand.follow({
- targets: [ 'http://example.com' ],
- token: accessToken,
- expectedStatus: HttpStatusCode.UNAUTHORIZED_401
- })
- })
-
- it('Should not be able to unfollow')
-
- it('Should be able to login', async function () {
- const res = await login(server.url, server.client, server.user, HttpStatusCode.OK_200)
-
- accessToken = res.body.access_token
- })
-
- it('Should be able to login with an insensitive username', async function () {
- const user = { username: 'RoOt', password: server.user.password }
- await login(server.url, server.client, user, HttpStatusCode.OK_200)
-
- const user2 = { username: 'rOoT', password: server.user.password }
- await login(server.url, server.client, user2, HttpStatusCode.OK_200)
-
- const user3 = { username: 'ROOt', password: server.user.password }
- await login(server.url, server.client, user3, HttpStatusCode.OK_200)
- })
- })
-
- describe('Upload', function () {
-
- it('Should upload the video with the correct token', async function () {
- const videoAttributes = {}
- await uploadVideo(server.url, accessToken, videoAttributes)
- const res = await getVideosList(server.url)
- const video = res.body.data[0]
-
- expect(video.account.name).to.equal('root')
- videoId = video.id
- })
-
- it('Should upload the video again with the correct token', async function () {
- const videoAttributes = {}
- await uploadVideo(server.url, accessToken, videoAttributes)
- })
- })
-
- describe('Ratings', function () {
-
- it('Should retrieve a video rating', async function () {
- await rateVideo(server.url, accessToken, videoId, 'like')
- const res = await getMyUserVideoRating(server.url, accessToken, videoId)
- const rating = res.body
-
- expect(rating.videoId).to.equal(videoId)
- expect(rating.rating).to.equal('like')
- })
-
- it('Should retrieve ratings list', async function () {
- await rateVideo(server.url, accessToken, videoId, 'like')
-
- const res = await getAccountRatings(server.url, server.user.username, server.accessToken, null, HttpStatusCode.OK_200)
- const ratings = res.body
-
- expect(ratings.total).to.equal(1)
- expect(ratings.data[0].video.id).to.equal(videoId)
- expect(ratings.data[0].rating).to.equal('like')
- })
-
- it('Should retrieve ratings list by rating type', async function () {
- {
- const res = await getAccountRatings(server.url, server.user.username, server.accessToken, 'like')
- const ratings = res.body
- expect(ratings.data.length).to.equal(1)
- }
-
- {
- const res = await getAccountRatings(server.url, server.user.username, server.accessToken, 'dislike')
- const ratings = res.body
- expect(ratings.data.length).to.equal(0)
- }
- })
- })
-
- describe('Remove video', function () {
- it('Should not be able to remove the video with an incorrect token', async function () {
- await removeVideo(server.url, 'bad_token', videoId, HttpStatusCode.UNAUTHORIZED_401)
- })
-
- it('Should not be able to remove the video with the token of another account')
-
- it('Should be able to remove the video with the correct token', async function () {
- await removeVideo(server.url, accessToken, videoId)
- })
- })
-
- describe('Logout', function () {
- it('Should logout (revoke token)', async function () {
- await logout(server.url, server.accessToken)
- })
-
- it('Should not be able to get the user information', async function () {
- await getMyUserInformation(server.url, server.accessToken, HttpStatusCode.UNAUTHORIZED_401)
- })
-
- it('Should not be able to upload a video', async function () {
- await uploadVideo(server.url, server.accessToken, { name: 'video' }, HttpStatusCode.UNAUTHORIZED_401)
- })
-
- it('Should not be able to rate a video', async function () {
- const path = '/api/v1/videos/'
- const data = {
- rating: 'likes'
- }
-
- const options = {
- url: server.url,
- path: path + videoId,
- token: 'wrong token',
- fields: data,
- statusCodeExpected: HttpStatusCode.UNAUTHORIZED_401
- }
- await makePutBodyRequest(options)
- })
-
- it('Should be able to login again', async function () {
- const res = await login(server.url, server.client, server.user)
- server.accessToken = res.body.access_token
- server.refreshToken = res.body.refresh_token
- })
-
- it('Should be able to get my user information again', async function () {
- await getMyUserInformation(server.url, server.accessToken)
- })
-
- it('Should have an expired access token', async function () {
- this.timeout(15000)
-
- await setTokenField(server.internalServerNumber, server.accessToken, 'accessTokenExpiresAt', new Date().toISOString())
- await setTokenField(server.internalServerNumber, server.accessToken, 'refreshTokenExpiresAt', new Date().toISOString())
-
- killallServers([ server ])
- await reRunServer(server)
-
- await getMyUserInformation(server.url, server.accessToken, 401)
- })
-
- it('Should not be able to refresh an access token with an expired refresh token', async function () {
- await refreshToken(server, server.refreshToken, 400)
- })
-
- it('Should refresh the token', async function () {
- this.timeout(15000)
-
- const futureDate = new Date(new Date().getTime() + 1000 * 60).toISOString()
- await setTokenField(server.internalServerNumber, server.accessToken, 'refreshTokenExpiresAt', futureDate)
-
- killallServers([ server ])
- await reRunServer(server)
-
- const res = await refreshToken(server, server.refreshToken)
- server.accessToken = res.body.access_token
- server.refreshToken = res.body.refresh_token
- })
-
- it('Should be able to get my user information again', async function () {
- await getMyUserInformation(server.url, server.accessToken)
- })