X-Git-Url: https://git.immae.eu/?a=blobdiff_plain;f=server%2Ftests%2Fapi%2Fcheck-params%2Fusers.js;h=9e7115da149a53bc5c465a3d71a83e0f9f736c1c;hb=291e8d3eed88fe714fb74ad897ac2c67347a85ff;hp=debf63cf6892d2e391b41eba5871b65412c127f6;hpb=ad4a8a1cca1049f600ebcdce9260c1021cd821a5;p=github%2FChocobozzz%2FPeerTube.git diff --git a/server/tests/api/check-params/users.js b/server/tests/api/check-params/users.js index debf63cf6..9e7115da1 100644 --- a/server/tests/api/check-params/users.js +++ b/server/tests/api/check-params/users.js @@ -1,3 +1,5 @@ +/* eslint-disable no-unused-expressions */ + 'use strict' const request = require('supertest') @@ -7,26 +9,36 @@ const loginUtils = require('../../utils/login') const requestsUtils = require('../../utils/requests') const serversUtils = require('../../utils/servers') const usersUtils = require('../../utils/users') +const videosUtils = require('../../utils/videos') describe('Test users API validators', function () { const path = '/api/v1/users/' let userId = null let rootId = null + let videoId = null let server = null + let serverWithRegistrationDisabled = null let userAccessToken = null // --------------------------------------------------------------- before(function (done) { - this.timeout(20000) + this.timeout(120000) series([ function (next) { serversUtils.flushTests(next) }, function (next) { - serversUtils.runServer(1, function (server1) { - server = server1 + serversUtils.runServer(1, function (serverCreated) { + server = serverCreated + + next() + }) + }, + function (next) { + serversUtils.runServer(2, function (serverCreated) { + serverWithRegistrationDisabled = serverCreated next() }) @@ -45,6 +57,20 @@ describe('Test users API validators', function () { usersUtils.createUser(server.url, server.accessToken, username, password, next) }, + function (next) { + const videoAttributes = {} + videosUtils.uploadVideo(server.url, server.accessToken, videoAttributes, next) + }, + function (next) { + videosUtils.getVideosList(server.url, function (err, res) { + if (err) throw err + + const videos = res.body.data + videoId = videos[0].id + + next() + }) + }, function (next) { const user = { username: 'user1', @@ -252,6 +278,14 @@ describe('Test users API validators', function () { requestsUtils.makePutBodyRequest(server.url, path + userId, userAccessToken, data, done) }) + it('Should fail with an invalid display NSFW attribute', function (done) { + const data = { + displayNSFW: -1 + } + + requestsUtils.makePutBodyRequest(server.url, path + userId, userAccessToken, data, done) + }) + it('Should fail with an non authenticated user', function (done) { const data = { password: 'my super password' @@ -262,7 +296,8 @@ describe('Test users API validators', function () { it('Should succeed with the correct params', function (done) { const data = { - password: 'my super password' + password: 'my super password', + displayNSFW: true } requestsUtils.makePutBodyRequest(server.url, path + userId, userAccessToken, data, done, 204) @@ -287,6 +322,63 @@ describe('Test users API validators', function () { }) }) + describe('When getting my video rating', function () { + it('Should fail with a non authenticated user', function (done) { + request(server.url) + .get(path + 'me/videos/' + videoId + '/rating') + .set('Authorization', 'Bearer faketoken') + .set('Accept', 'application/json') + .expect(401, done) + }) + + it('Should fail with an incorrect video uuid', function (done) { + request(server.url) + .get(path + 'me/videos/blabla/rating') + .set('Authorization', 'Bearer ' + userAccessToken) + .set('Accept', 'application/json') + .expect(400, done) + }) + + it('Should fail with an unknown video', function (done) { + request(server.url) + .get(path + 'me/videos/4da6fde3-88f7-4d16-b119-108df5630b06/rating') + .set('Authorization', 'Bearer ' + userAccessToken) + .set('Accept', 'application/json') + .expect(404, done) + }) + + it('Should success with the correct parameters', function (done) { + request(server.url) + .get(path + 'me/videos/' + videoId + '/rating') + .set('Authorization', 'Bearer ' + userAccessToken) + .set('Accept', 'application/json') + .expect(200, done) + }) + }) + + describe('When removing an user', function () { + it('Should fail with an incorrect id', function (done) { + request(server.url) + .delete(path + 'bla-bla') + .set('Authorization', 'Bearer ' + server.accessToken) + .expect(400, done) + }) + + it('Should fail with the root user', function (done) { + request(server.url) + .delete(path + rootId) + .set('Authorization', 'Bearer ' + server.accessToken) + .expect(400, done) + }) + + it('Should return 404 with a non existing id', function (done) { + request(server.url) + .delete(path + '45') + .set('Authorization', 'Bearer ' + server.accessToken) + .expect(404, done) + }) + }) + describe('When removing an user', function () { it('Should fail with an incorrect id', function (done) { request(server.url) @@ -310,8 +402,130 @@ describe('Test users API validators', function () { }) }) + describe('When register a new user', function () { + const registrationPath = path + '/register' + + it('Should fail with a too small username', function (done) { + const data = { + username: 'ji', + email: 'test@example.com', + password: 'mysuperpassword' + } + + requestsUtils.makePostBodyRequest(server.url, registrationPath, server.accessToken, data, done) + }) + + it('Should fail with a too long username', function (done) { + const data = { + username: 'mysuperusernamewhichisverylong', + email: 'test@example.com', + password: 'mysuperpassword' + } + + requestsUtils.makePostBodyRequest(server.url, registrationPath, server.accessToken, data, done) + }) + + it('Should fail with an incorrect username', function (done) { + const data = { + username: 'my username', + email: 'test@example.com', + password: 'mysuperpassword' + } + + requestsUtils.makePostBodyRequest(server.url, registrationPath, server.accessToken, data, done) + }) + + it('Should fail with a missing email', function (done) { + const data = { + username: 'ji', + password: 'mysuperpassword' + } + + requestsUtils.makePostBodyRequest(server.url, registrationPath, server.accessToken, data, done) + }) + + it('Should fail with an invalid email', function (done) { + const data = { + username: 'mysuperusernamewhichisverylong', + email: 'testexample.com', + password: 'mysuperpassword' + } + + requestsUtils.makePostBodyRequest(server.url, registrationPath, server.accessToken, data, done) + }) + + it('Should fail with a too small password', function (done) { + const data = { + username: 'myusername', + email: 'test@example.com', + password: 'bla' + } + + requestsUtils.makePostBodyRequest(server.url, registrationPath, server.accessToken, data, done) + }) + + it('Should fail with a too long password', function (done) { + const data = { + username: 'myusername', + email: 'test@example.com', + password: 'my super long password which is very very very very very very very very very very very very very very' + + 'very very very very very very very very very very very very very very very veryv very very very very' + + 'very very very very very very very very very very very very very very very very very very very very long' + } + + requestsUtils.makePostBodyRequest(server.url, registrationPath, server.accessToken, data, done) + }) + + it('Should fail if we register a user with the same username', function (done) { + const data = { + username: 'root', + email: 'test@example.com', + password: 'my super password' + } + + requestsUtils.makePostBodyRequest(server.url, registrationPath, server.accessToken, data, done, 409) + }) + + it('Should fail if we register a user with the same email', function (done) { + const data = { + username: 'myusername', + email: 'admin1@example.com', + password: 'my super password' + } + + requestsUtils.makePostBodyRequest(server.url, registrationPath, server.accessToken, data, done, 409) + }) + + it('Should succeed with the correct params', function (done) { + const data = { + username: 'user3', + email: 'test3@example.com', + password: 'my super password' + } + + requestsUtils.makePostBodyRequest(server.url, registrationPath, server.accessToken, data, done, 204) + }) + + it('Should fail on a server with registration disabled', function (done) { + const data = { + username: 'user4', + email: 'test4@example.com', + password: 'my super password 4' + } + + requestsUtils.makePostBodyRequest(serverWithRegistrationDisabled.url, registrationPath, serverWithRegistrationDisabled.accessToken, data, done, 403) + }) + }) + + describe('When registering multiple users on a server with users limit', function () { + it('Should fail when after 3 registrations', function (done) { + usersUtils.registerUser(server.url, 'user42', 'super password', 403, done) + }) + }) + after(function (done) { process.kill(-server.app.pid) + process.kill(-serverWithRegistrationDisabled.app.pid) // Keep the logs if the test failed if (this.ok) {