X-Git-Url: https://git.immae.eu/?a=blobdiff_plain;f=server%2Ftests%2Fapi%2Fusers%2Fusers.ts;h=be80c26165549f27d7d9e578d8de37116e0cab81;hb=c0e8b12e7fd554ba4d2ceb0c4900804c6a4c63ea;hp=c4465d541142874849b495249dab1c07933571ba;hpb=b426edd4854adc6e65844d8c54b8998e792b5778;p=github%2FChocobozzz%2FPeerTube.git diff --git a/server/tests/api/users/users.ts b/server/tests/api/users/users.ts index c4465d541..be80c2616 100644 --- a/server/tests/api/users/users.ts +++ b/server/tests/api/users/users.ts @@ -1,48 +1,26 @@ -/* tslint:disable:no-unused-expression */ +/* eslint-disable @typescript-eslint/no-unused-expressions,@typescript-eslint/require-await */ -import * as chai from 'chai' import 'mocha' -import { User, UserRole } from '../../../../shared/index' +import * as chai from 'chai' +import { HttpStatusCode } from '@shared/models' import { - blockUser, - createUser, - deleteMe, - flushTests, - getBlacklistedVideosList, - getMyUserInformation, - getMyUserVideoQuotaUsed, - getMyUserVideoRating, - getUserInformation, - getUsersList, - getUsersListPaginationAndSort, - getVideosList, + cleanupTests, + createSingleServer, killallServers, - login, makePutBodyRequest, - rateVideo, - registerUser, - removeUser, - removeVideo, - runServer, - ServerInfo, + PeerTubeServer, + setAccessTokensToServers, testImage, - unblockUser, - updateMyAvatar, - updateMyUser, - updateUser, - uploadVideo, - userLogin -} from '../../../../shared/utils/index' -import { follow } from '../../../../shared/utils/server/follows' -import { setAccessTokensToServers } from '../../../../shared/utils/users/login' -import { getMyVideos } from '../../../../shared/utils/videos/videos' + waitJobs +} from '@shared/extra-utils' +import { AbuseState, OAuth2ErrorCode, UserAdminFlag, UserRole, Video, VideoPlaylistType } from '@shared/models' const expect = chai.expect describe('Test users', function () { - let server: ServerInfo - let accessToken: string - let accessTokenUser: string + let server: PeerTubeServer + let token: string + let userToken: string let videoId: number let userId: number const user = { @@ -53,552 +31,828 @@ describe('Test users', function () { before(async function () { this.timeout(30000) - await flushTests() - server = await runServer(1) + server = await createSingleServer(1, { + rates_limit: { + login: { + max: 30 + } + } + }) await setAccessTokensToServers([ server ]) + + await server.plugins.install({ npmName: 'peertube-theme-background-red' }) }) - it('Should create a new client') + describe('OAuth client', function () { + it('Should create a new client') - it('Should return the first client') + it('Should return the first client') - it('Should remove the last client') + it('Should remove the last client') - it('Should not login with an invalid client id', async function () { - const client = { id: 'client', secret: server.client.secret } - const res = await login(server.url, client, server.user, 400) + it('Should not login with an invalid client id', async function () { + const client = { id: 'client', secret: server.store.client.secret } + const body = await server.login.login({ client, expectedStatus: HttpStatusCode.BAD_REQUEST_400 }) - expect(res.body.error).to.contain('client is invalid') - }) + expect(body.code).to.equal(OAuth2ErrorCode.INVALID_CLIENT) + expect(body.error).to.contain('client is invalid') + expect(body.type.startsWith('https://')).to.be.true + expect(body.type).to.contain(OAuth2ErrorCode.INVALID_CLIENT) + }) - it('Should not login with an invalid client secret', async function () { - const client = { id: server.client.id, secret: 'coucou' } - const res = await login(server.url, client, server.user, 400) + it('Should not login with an invalid client secret', async function () { + const client = { id: server.store.client.id, secret: 'coucou' } + const body = await server.login.login({ client, expectedStatus: HttpStatusCode.BAD_REQUEST_400 }) - expect(res.body.error).to.contain('client is invalid') + expect(body.code).to.equal(OAuth2ErrorCode.INVALID_CLIENT) + expect(body.error).to.contain('client is invalid') + expect(body.type.startsWith('https://')).to.be.true + expect(body.type).to.contain(OAuth2ErrorCode.INVALID_CLIENT) + }) }) - it('Should not login with an invalid username', async function () { - const user = { username: 'captain crochet', password: server.user.password } - const res = await login(server.url, server.client, user, 400) + describe('Login', function () { - expect(res.body.error).to.contain('credentials are invalid') - }) + it('Should not login with an invalid username', async function () { + const user = { username: 'captain crochet', password: server.store.user.password } + const body = await server.login.login({ user, expectedStatus: HttpStatusCode.BAD_REQUEST_400 }) - it('Should not login with an invalid password', async function () { - const user = { username: server.user.username, password: 'mew_three' } - const res = await login(server.url, server.client, user, 400) + expect(body.code).to.equal(OAuth2ErrorCode.INVALID_GRANT) + expect(body.error).to.contain('credentials are invalid') + expect(body.type.startsWith('https://')).to.be.true + expect(body.type).to.contain(OAuth2ErrorCode.INVALID_GRANT) + }) - expect(res.body.error).to.contain('credentials are invalid') - }) + it('Should not login with an invalid password', async function () { + const user = { username: server.store.user.username, password: 'mew_three' } + const body = await server.login.login({ user, expectedStatus: HttpStatusCode.BAD_REQUEST_400 }) - it('Should not be able to upload a video', async function () { - accessToken = 'my_super_token' + expect(body.code).to.equal(OAuth2ErrorCode.INVALID_GRANT) + expect(body.error).to.contain('credentials are invalid') + expect(body.type.startsWith('https://')).to.be.true + expect(body.type).to.contain(OAuth2ErrorCode.INVALID_GRANT) + }) - const videoAttributes = {} - await uploadVideo(server.url, accessToken, videoAttributes, 401) - }) + it('Should not be able to upload a video', async function () { + token = 'my_super_token' - it('Should not be able to follow', async function () { - accessToken = 'my_super_token' - await follow(server.url, [ 'http://example.com' ], accessToken, 401) - }) + await server.videos.upload({ token, expectedStatus: HttpStatusCode.UNAUTHORIZED_401 }) + }) - it('Should not be able to unfollow') + it('Should not be able to follow', async function () { + token = 'my_super_token' - it('Should be able to login', async function () { - const res = await login(server.url, server.client, server.user, 200) + await server.follows.follow({ + targets: [ 'http://example.com' ], + token, + expectedStatus: HttpStatusCode.UNAUTHORIZED_401 + }) + }) - accessToken = res.body.access_token - }) + it('Should not be able to unfollow') - it('Should upload the video with the correct token', async function () { - const videoAttributes = {} - await uploadVideo(server.url, accessToken, videoAttributes) - const res = await getVideosList(server.url) - const video = res.body.data[ 0 ] + it('Should be able to login', async function () { + const body = await server.login.login({ expectedStatus: HttpStatusCode.OK_200 }) - expect(video.account.name).to.equal('root') - videoId = video.id - }) + token = body.access_token + }) - it('Should upload the video again with the correct token', async function () { - const videoAttributes = {} - await uploadVideo(server.url, accessToken, videoAttributes) - }) + it('Should be able to login with an insensitive username', async function () { + const user = { username: 'RoOt', password: server.store.user.password } + await server.login.login({ user, expectedStatus: HttpStatusCode.OK_200 }) - it('Should retrieve a video rating', async function () { - await rateVideo(server.url, accessToken, videoId, 'like') - const res = await getMyUserVideoRating(server.url, accessToken, videoId) - const rating = res.body + const user2 = { username: 'rOoT', password: server.store.user.password } + await server.login.login({ user: user2, expectedStatus: HttpStatusCode.OK_200 }) - expect(rating.videoId).to.equal(videoId) - expect(rating.rating).to.equal('like') + const user3 = { username: 'ROOt', password: server.store.user.password } + await server.login.login({ user: user3, expectedStatus: HttpStatusCode.OK_200 }) + }) }) - it('Should not be able to remove the video with an incorrect token', async function () { - await removeVideo(server.url, 'bad_token', videoId, 401) - }) + describe('Upload', function () { - it('Should not be able to remove the video with the token of another account') + it('Should upload the video with the correct token', async function () { + await server.videos.upload({ token }) + const { data } = await server.videos.list() + const video = data[0] - it('Should be able to remove the video with the correct token', async function () { - await removeVideo(server.url, accessToken, videoId) + expect(video.account.name).to.equal('root') + videoId = video.id + }) + + it('Should upload the video again with the correct token', async function () { + await server.videos.upload({ token }) + }) }) - it('Should logout (revoke token)') + describe('Ratings', function () { - it('Should not be able to get the user information') + it('Should retrieve a video rating', async function () { + await server.videos.rate({ id: videoId, rating: 'like' }) + const rating = await server.users.getMyRating({ token, videoId }) - it('Should not be able to upload a video') + expect(rating.videoId).to.equal(videoId) + expect(rating.rating).to.equal('like') + }) - it('Should not be able to remove a video') + it('Should retrieve ratings list', async function () { + await server.videos.rate({ id: videoId, rating: 'like' }) - it('Should not be able to rate a video', async function () { - const path = '/api/v1/videos/' - const data = { - rating: 'likes' - } + const body = await server.accounts.listRatings({ accountName: server.store.user.username }) - const options = { - url: server.url, - path: path + videoId, - token: 'wrong token', - fields: data, - statusCodeExpected: 401 - } - await makePutBodyRequest(options) - }) + expect(body.total).to.equal(1) + expect(body.data[0].video.id).to.equal(videoId) + expect(body.data[0].rating).to.equal('like') + }) - it('Should be able to login again') + it('Should retrieve ratings list by rating type', async function () { + { + const body = await server.accounts.listRatings({ accountName: server.store.user.username, rating: 'like' }) + expect(body.data.length).to.equal(1) + } - it('Should have an expired access token') + { + const body = await server.accounts.listRatings({ accountName: server.store.user.username, rating: 'dislike' }) + expect(body.data.length).to.equal(0) + } + }) + }) - it('Should refresh the token') + describe('Remove video', function () { + it('Should not be able to remove the video with an incorrect token', async function () { + await server.videos.remove({ token: 'bad_token', id: videoId, expectedStatus: HttpStatusCode.UNAUTHORIZED_401 }) + }) - it('Should be able to upload a video again') + it('Should not be able to remove the video with the token of another account') - it('Should be able to create a new user', async function () { - await createUser(server.url, accessToken, user.username, user.password, 2 * 1024 * 1024) + it('Should be able to remove the video with the correct token', async function () { + await server.videos.remove({ token, id: videoId }) + }) }) - it('Should be able to login with this user', async function () { - accessTokenUser = await userLogin(server, user) - }) + describe('Logout', function () { + it('Should logout (revoke token)', async function () { + await server.login.logout({ token: server.accessToken }) + }) - it('Should be able to get the user information', async function () { - const res = await getMyUserInformation(server.url, accessTokenUser) - const user = res.body - - expect(user.username).to.equal('user_1') - expect(user.email).to.equal('user_1@example.com') - expect(user.nsfwPolicy).to.equal('display') - expect(user.videoQuota).to.equal(2 * 1024 * 1024) - expect(user.roleLabel).to.equal('User') - expect(user.id).to.be.a('number') - expect(user.account.displayName).to.equal('user_1') - expect(user.account.description).to.be.null - }) + it('Should not be able to get the user information', async function () { + await server.users.getMyInfo({ expectedStatus: HttpStatusCode.UNAUTHORIZED_401 }) + }) - it('Should be able to upload a video with this user', async function () { - this.timeout(5000) + it('Should not be able to upload a video', async function () { + await server.videos.upload({ attributes: { name: 'video' }, expectedStatus: HttpStatusCode.UNAUTHORIZED_401 }) + }) - const videoAttributes = { - name: 'super user video', - fixture: 'video_short.webm' - } - await uploadVideo(server.url, accessTokenUser, videoAttributes) - }) + it('Should not be able to rate a video', async function () { + const path = '/api/v1/videos/' + const data = { + rating: 'likes' + } + + const options = { + url: server.url, + path: path + videoId, + token: 'wrong token', + fields: data, + expectedStatus: HttpStatusCode.UNAUTHORIZED_401 + } + await makePutBodyRequest(options) + }) - it('Should have video quota updated', async function () { - const res = await getMyUserVideoQuotaUsed(server.url, accessTokenUser) - const data = res.body + it('Should be able to login again', async function () { + const body = await server.login.login() + server.accessToken = body.access_token + server.refreshToken = body.refresh_token + }) - expect(data.videoQuotaUsed).to.equal(218910) + it('Should be able to get my user information again', async function () { + await server.users.getMyInfo() + }) - const resUsers = await getUsersList(server.url, server.accessToken) + it('Should have an expired access token', async function () { + this.timeout(15000) - const users: User[] = resUsers.body.data - const tmpUser = users.find(u => u.username === user.username) - expect(tmpUser.videoQuotaUsed).to.equal(218910) - }) + await server.sql.setTokenField(server.accessToken, 'accessTokenExpiresAt', new Date().toISOString()) + await server.sql.setTokenField(server.accessToken, 'refreshTokenExpiresAt', new Date().toISOString()) - it('Should be able to list my videos', async function () { - const res = await getMyVideos(server.url, accessTokenUser, 0, 5) - expect(res.body.total).to.equal(1) + await killallServers([ server ]) + await server.run() - const videos = res.body.data - expect(videos).to.have.lengthOf(1) + await server.users.getMyInfo({ expectedStatus: HttpStatusCode.UNAUTHORIZED_401 }) + }) - expect(videos[ 0 ].name).to.equal('super user video') - }) + it('Should not be able to refresh an access token with an expired refresh token', async function () { + await server.login.refreshToken({ refreshToken: server.refreshToken, expectedStatus: HttpStatusCode.BAD_REQUEST_400 }) + }) - it('Should list all the users', async function () { - const res = await getUsersList(server.url, server.accessToken) - const result = res.body - const total = result.total - const users = result.data + it('Should refresh the token', async function () { + this.timeout(15000) - expect(total).to.equal(2) - expect(users).to.be.an('array') - expect(users.length).to.equal(2) + const futureDate = new Date(new Date().getTime() + 1000 * 60).toISOString() + await server.sql.setTokenField(server.accessToken, 'refreshTokenExpiresAt', futureDate) - const user = users[ 0 ] - expect(user.username).to.equal('user_1') - expect(user.email).to.equal('user_1@example.com') - expect(user.nsfwPolicy).to.equal('display') + await killallServers([ server ]) + await server.run() - const rootUser = users[ 1 ] - expect(rootUser.username).to.equal('root') - expect(rootUser.email).to.equal('admin1@example.com') - expect(user.nsfwPolicy).to.equal('display') + const res = await server.login.refreshToken({ refreshToken: server.refreshToken }) + server.accessToken = res.body.access_token + server.refreshToken = res.body.refresh_token + }) - userId = user.id + it('Should be able to get my user information again', async function () { + await server.users.getMyInfo() + }) }) - it('Should list only the first user by username asc', async function () { - const res = await getUsersListPaginationAndSort(server.url, server.accessToken, 0, 1, 'username') + describe('Creating a user', function () { - const result = res.body - const total = result.total - const users = result.data + it('Should be able to create a new user', async function () { + await server.users.create({ ...user, videoQuota: 2 * 1024 * 1024, adminFlags: UserAdminFlag.BYPASS_VIDEO_AUTO_BLACKLIST }) + }) - expect(total).to.equal(2) - expect(users.length).to.equal(1) + it('Should be able to login with this user', async function () { + userToken = await server.login.getAccessToken(user) + }) - const user = users[ 0 ] - expect(user.username).to.equal('root') - expect(user.email).to.equal('admin1@example.com') - expect(user.roleLabel).to.equal('Administrator') - expect(user.nsfwPolicy).to.equal('display') + it('Should be able to get user information', async function () { + const userMe = await server.users.getMyInfo({ token: userToken }) + + const userGet = await server.users.get({ userId: userMe.id, withStats: true }) + + for (const user of [ userMe, userGet ]) { + expect(user.username).to.equal('user_1') + expect(user.email).to.equal('user_1@example.com') + expect(user.nsfwPolicy).to.equal('display') + expect(user.videoQuota).to.equal(2 * 1024 * 1024) + expect(user.roleLabel).to.equal('User') + expect(user.id).to.be.a('number') + expect(user.account.displayName).to.equal('user_1') + expect(user.account.description).to.be.null + } + + expect(userMe.adminFlags).to.be.undefined + expect(userGet.adminFlags).to.equal(UserAdminFlag.BYPASS_VIDEO_AUTO_BLACKLIST) + + expect(userMe.specialPlaylists).to.have.lengthOf(1) + expect(userMe.specialPlaylists[0].type).to.equal(VideoPlaylistType.WATCH_LATER) + + // Check stats are included with withStats + expect(userGet.videosCount).to.be.a('number') + expect(userGet.videosCount).to.equal(0) + expect(userGet.videoCommentsCount).to.be.a('number') + expect(userGet.videoCommentsCount).to.equal(0) + expect(userGet.abusesCount).to.be.a('number') + expect(userGet.abusesCount).to.equal(0) + expect(userGet.abusesAcceptedCount).to.be.a('number') + expect(userGet.abusesAcceptedCount).to.equal(0) + }) }) - it('Should list only the first user by username desc', async function () { - const res = await getUsersListPaginationAndSort(server.url, server.accessToken, 0, 1, '-username') - const result = res.body - const total = result.total - const users = result.data + describe('My videos & quotas', function () { - expect(total).to.equal(2) - expect(users.length).to.equal(1) + it('Should be able to upload a video with this user', async function () { + this.timeout(10000) - const user = users[ 0 ] - expect(user.username).to.equal('user_1') - expect(user.email).to.equal('user_1@example.com') - expect(user.nsfwPolicy).to.equal('display') - }) + const attributes = { + name: 'super user video', + fixture: 'video_short.webm' + } + await server.videos.upload({ token: userToken, attributes }) + }) + + it('Should have video quota updated', async function () { + const quota = await server.users.getMyQuotaUsed({ token: userToken }) + expect(quota.videoQuotaUsed).to.equal(218910) - it('Should list only the second user by createdAt desc', async function () { - const res = await getUsersListPaginationAndSort(server.url, server.accessToken, 0, 1, '-createdAt') - const result = res.body - const total = result.total - const users = result.data + const { data } = await server.users.list() + const tmpUser = data.find(u => u.username === user.username) + expect(tmpUser.videoQuotaUsed).to.equal(218910) + }) - expect(total).to.equal(2) - expect(users.length).to.equal(1) + it('Should be able to list my videos', async function () { + const { total, data } = await server.videos.listMyVideos({ token: userToken }) + expect(total).to.equal(1) + expect(data).to.have.lengthOf(1) - const user = users[ 0 ] - expect(user.username).to.equal('user_1') - expect(user.email).to.equal('user_1@example.com') - expect(user.nsfwPolicy).to.equal('display') + const video: Video = data[0] + expect(video.name).to.equal('super user video') + expect(video.thumbnailPath).to.not.be.null + expect(video.previewPath).to.not.be.null + }) + + it('Should be able to search in my videos', async function () { + { + const { total, data } = await server.videos.listMyVideos({ token: userToken, sort: '-createdAt', search: 'user video' }) + expect(total).to.equal(1) + expect(data).to.have.lengthOf(1) + } + + { + const { total, data } = await server.videos.listMyVideos({ token: userToken, sort: '-createdAt', search: 'toto' }) + expect(total).to.equal(0) + expect(data).to.have.lengthOf(0) + } + }) + + it('Should disable webtorrent, enable HLS, and update my quota', async function () { + this.timeout(60000) + + { + const config = await server.config.getCustomConfig() + config.transcoding.webtorrent.enabled = false + config.transcoding.hls.enabled = true + config.transcoding.enabled = true + await server.config.updateCustomSubConfig({ newConfig: config }) + } + + { + const attributes = { + name: 'super user video 2', + fixture: 'video_short.webm' + } + await server.videos.upload({ token: userToken, attributes }) + + await waitJobs([ server ]) + } + + { + const data = await server.users.getMyQuotaUsed({ token: userToken }) + expect(data.videoQuotaUsed).to.be.greaterThan(220000) + } + }) }) - it('Should list all the users by createdAt asc', async function () { - const res = await getUsersListPaginationAndSort(server.url, server.accessToken, 0, 2, 'createdAt') - const result = res.body - const total = result.total - const users = result.data + describe('Users listing', function () { - expect(total).to.equal(2) - expect(users.length).to.equal(2) + it('Should list all the users', async function () { + const { data, total } = await server.users.list() - expect(users[ 0 ].username).to.equal('root') - expect(users[ 0 ].email).to.equal('admin1@example.com') - expect(users[ 0 ].nsfwPolicy).to.equal('display') + expect(total).to.equal(2) + expect(data).to.be.an('array') + expect(data.length).to.equal(2) - expect(users[ 1 ].username).to.equal('user_1') - expect(users[ 1 ].email).to.equal('user_1@example.com') - expect(users[ 1 ].nsfwPolicy).to.equal('display') - }) + const user = data[0] + expect(user.username).to.equal('user_1') + expect(user.email).to.equal('user_1@example.com') + expect(user.nsfwPolicy).to.equal('display') - it('Should search user by username', async function () { - const res = await getUsersListPaginationAndSort(server.url, server.accessToken, 0, 2, 'createdAt', 'oot') - const users = res.body.data as User[] + const rootUser = data[1] + expect(rootUser.username).to.equal('root') + expect(rootUser.email).to.equal('admin' + server.internalServerNumber + '@example.com') + expect(user.nsfwPolicy).to.equal('display') - expect(res.body.total).to.equal(1) - expect(users.length).to.equal(1) + expect(rootUser.lastLoginDate).to.exist + expect(user.lastLoginDate).to.exist - expect(users[ 0 ].username).to.equal('root') - }) + userId = user.id + }) - it('Should search user by email', async function () { - { - const res = await getUsersListPaginationAndSort(server.url, server.accessToken, 0, 2, 'createdAt', 'r_1@exam') - const users = res.body.data as User[] + it('Should list only the first user by username asc', async function () { + const { total, data } = await server.users.list({ start: 0, count: 1, sort: 'username' }) - expect(res.body.total).to.equal(1) - expect(users.length).to.equal(1) + expect(total).to.equal(2) + expect(data.length).to.equal(1) - expect(users[ 0 ].username).to.equal('user_1') - expect(users[ 0 ].email).to.equal('user_1@example.com') - } + const user = data[0] + expect(user.username).to.equal('root') + expect(user.email).to.equal('admin' + server.internalServerNumber + '@example.com') + expect(user.roleLabel).to.equal('Administrator') + expect(user.nsfwPolicy).to.equal('display') + }) - { - const res = await getUsersListPaginationAndSort(server.url, server.accessToken, 0, 2, 'createdAt', 'example') - const users = res.body.data as User[] + it('Should list only the first user by username desc', async function () { + const { total, data } = await server.users.list({ start: 0, count: 1, sort: '-username' }) - expect(res.body.total).to.equal(2) - expect(users.length).to.equal(2) + expect(total).to.equal(2) + expect(data.length).to.equal(1) - expect(users[ 0 ].username).to.equal('root') - expect(users[ 1 ].username).to.equal('user_1') - } - }) + const user = data[0] + expect(user.username).to.equal('user_1') + expect(user.email).to.equal('user_1@example.com') + expect(user.nsfwPolicy).to.equal('display') + }) + + it('Should list only the second user by createdAt desc', async function () { + const { data, total } = await server.users.list({ start: 0, count: 1, sort: '-createdAt' }) + expect(total).to.equal(2) + + expect(data.length).to.equal(1) - it('Should update my password', async function () { - await updateMyUser({ - url: server.url, - accessToken: accessTokenUser, - currentPassword: 'super password', - newPassword: 'new password' + const user = data[0] + expect(user.username).to.equal('user_1') + expect(user.email).to.equal('user_1@example.com') + expect(user.nsfwPolicy).to.equal('display') }) - user.password = 'new password' - await userLogin(server, user, 200) - }) + it('Should list all the users by createdAt asc', async function () { + const { data, total } = await server.users.list({ start: 0, count: 2, sort: 'createdAt' }) + + expect(total).to.equal(2) + expect(data.length).to.equal(2) - it('Should be able to change the NSFW display attribute', async function () { - await updateMyUser({ - url: server.url, - accessToken: accessTokenUser, - nsfwPolicy: 'do_not_list' + expect(data[0].username).to.equal('root') + expect(data[0].email).to.equal('admin' + server.internalServerNumber + '@example.com') + expect(data[0].nsfwPolicy).to.equal('display') + + expect(data[1].username).to.equal('user_1') + expect(data[1].email).to.equal('user_1@example.com') + expect(data[1].nsfwPolicy).to.equal('display') }) - const res = await getMyUserInformation(server.url, accessTokenUser) - const user = res.body + it('Should search user by username', async function () { + const { data, total } = await server.users.list({ start: 0, count: 2, sort: 'createdAt', search: 'oot' }) + expect(total).to.equal(1) + expect(data.length).to.equal(1) + expect(data[0].username).to.equal('root') + }) - expect(user.username).to.equal('user_1') - expect(user.email).to.equal('user_1@example.com') - expect(user.nsfwPolicy).to.equal('do_not_list') - expect(user.videoQuota).to.equal(2 * 1024 * 1024) - expect(user.id).to.be.a('number') - expect(user.account.displayName).to.equal('user_1') - expect(user.account.description).to.be.null + it('Should search user by email', async function () { + { + const { total, data } = await server.users.list({ start: 0, count: 2, sort: 'createdAt', search: 'r_1@exam' }) + expect(total).to.equal(1) + expect(data.length).to.equal(1) + expect(data[0].username).to.equal('user_1') + expect(data[0].email).to.equal('user_1@example.com') + } + + { + const { total, data } = await server.users.list({ start: 0, count: 2, sort: 'createdAt', search: 'example' }) + expect(total).to.equal(2) + expect(data.length).to.equal(2) + expect(data[0].username).to.equal('root') + expect(data[1].username).to.equal('user_1') + } + }) }) - it('Should be able to change the autoPlayVideo attribute', async function () { - await updateMyUser({ - url: server.url, - accessToken: accessTokenUser, - autoPlayVideo: false + describe('Update my account', function () { + + it('Should update my password', async function () { + await server.users.updateMe({ + token: userToken, + currentPassword: 'super password', + password: 'new password' + }) + user.password = 'new password' + + await server.login.login({ user }) }) - const res = await getMyUserInformation(server.url, accessTokenUser) - const user = res.body + it('Should be able to change the NSFW display attribute', async function () { + await server.users.updateMe({ + token: userToken, + nsfwPolicy: 'do_not_list' + }) + + const user = await server.users.getMyInfo({ token: userToken }) + expect(user.username).to.equal('user_1') + expect(user.email).to.equal('user_1@example.com') + expect(user.nsfwPolicy).to.equal('do_not_list') + expect(user.videoQuota).to.equal(2 * 1024 * 1024) + expect(user.id).to.be.a('number') + expect(user.account.displayName).to.equal('user_1') + expect(user.account.description).to.be.null + }) - expect(user.autoPlayVideo).to.be.false - }) + it('Should be able to change the autoPlayVideo attribute', async function () { + await server.users.updateMe({ + token: userToken, + autoPlayVideo: false + }) - it('Should be able to change the email display attribute', async function () { - await updateMyUser({ - url: server.url, - accessToken: accessTokenUser, - email: 'updated@example.com' + const user = await server.users.getMyInfo({ token: userToken }) + expect(user.autoPlayVideo).to.be.false }) - const res = await getMyUserInformation(server.url, accessTokenUser) - const user = res.body + it('Should be able to change the autoPlayNextVideo attribute', async function () { + await server.users.updateMe({ + token: userToken, + autoPlayNextVideo: true + }) - expect(user.username).to.equal('user_1') - expect(user.email).to.equal('updated@example.com') - expect(user.nsfwPolicy).to.equal('do_not_list') - expect(user.videoQuota).to.equal(2 * 1024 * 1024) - expect(user.id).to.be.a('number') - expect(user.account.displayName).to.equal('user_1') - expect(user.account.description).to.be.null - }) + const user = await server.users.getMyInfo({ token: userToken }) + expect(user.autoPlayNextVideo).to.be.true + }) + + it('Should be able to change the email attribute', async function () { + await server.users.updateMe({ + token: userToken, + currentPassword: 'new password', + email: 'updated@example.com' + }) + + const user = await server.users.getMyInfo({ token: userToken }) + expect(user.username).to.equal('user_1') + expect(user.email).to.equal('updated@example.com') + expect(user.nsfwPolicy).to.equal('do_not_list') + expect(user.videoQuota).to.equal(2 * 1024 * 1024) + expect(user.id).to.be.a('number') + expect(user.account.displayName).to.equal('user_1') + expect(user.account.description).to.be.null + }) + + it('Should be able to update my avatar with a gif', async function () { + const fixture = 'avatar.gif' - it('Should be able to update my avatar', async function () { - const fixture = 'avatar.png' + await server.users.updateMyAvatar({ token: userToken, fixture }) - await updateMyAvatar({ - url: server.url, - accessToken: accessTokenUser, - fixture + const user = await server.users.getMyInfo({ token: userToken }) + await testImage(server.url, 'avatar-resized', user.account.avatar.path, '.gif') }) - const res = await getMyUserInformation(server.url, accessTokenUser) - const user = res.body + it('Should be able to update my avatar with a gif, and then a png', async function () { + for (const extension of [ '.png', '.gif' ]) { + const fixture = 'avatar' + extension - await testImage(server.url, 'avatar-resized', user.account.avatar.path, '.png') - }) + await server.users.updateMyAvatar({ token: userToken, fixture }) - it('Should be able to update my display name', async function () { - await updateMyUser({ - url: server.url, - accessToken: accessTokenUser, - displayName: 'new display name' + const user = await server.users.getMyInfo({ token: userToken }) + await testImage(server.url, 'avatar-resized', user.account.avatar.path, extension) + } }) - const res = await getMyUserInformation(server.url, accessTokenUser) - const user = res.body + it('Should be able to update my display name', async function () { + await server.users.updateMe({ token: userToken, displayName: 'new display name' }) + + const user = await server.users.getMyInfo({ token: userToken }) + expect(user.username).to.equal('user_1') + expect(user.email).to.equal('updated@example.com') + expect(user.nsfwPolicy).to.equal('do_not_list') + expect(user.videoQuota).to.equal(2 * 1024 * 1024) + expect(user.id).to.be.a('number') + expect(user.account.displayName).to.equal('new display name') + expect(user.account.description).to.be.null + }) - expect(user.username).to.equal('user_1') - expect(user.email).to.equal('updated@example.com') - expect(user.nsfwPolicy).to.equal('do_not_list') - expect(user.videoQuota).to.equal(2 * 1024 * 1024) - expect(user.id).to.be.a('number') - expect(user.account.displayName).to.equal('new display name') - expect(user.account.description).to.be.null - }) + it('Should be able to update my description', async function () { + await server.users.updateMe({ token: userToken, description: 'my super description updated' }) + + const user = await server.users.getMyInfo({ token: userToken }) + expect(user.username).to.equal('user_1') + expect(user.email).to.equal('updated@example.com') + expect(user.nsfwPolicy).to.equal('do_not_list') + expect(user.videoQuota).to.equal(2 * 1024 * 1024) + expect(user.id).to.be.a('number') + expect(user.account.displayName).to.equal('new display name') + expect(user.account.description).to.equal('my super description updated') + expect(user.noWelcomeModal).to.be.false + expect(user.noInstanceConfigWarningModal).to.be.false + }) + + it('Should be able to update my theme', async function () { + for (const theme of [ 'background-red', 'default', 'instance-default' ]) { + await server.users.updateMe({ token: userToken, theme }) - it('Should be able to update my description', async function () { - await updateMyUser({ - url: server.url, - accessToken: accessTokenUser, - description: 'my super description updated' + const user = await server.users.getMyInfo({ token: userToken }) + expect(user.theme).to.equal(theme) + } }) - const res = await getMyUserInformation(server.url, accessTokenUser) - const user = res.body + it('Should be able to update my modal preferences', async function () { + await server.users.updateMe({ + token: userToken, + noInstanceConfigWarningModal: true, + noWelcomeModal: true + }) - expect(user.username).to.equal('user_1') - expect(user.email).to.equal('updated@example.com') - expect(user.nsfwPolicy).to.equal('do_not_list') - expect(user.videoQuota).to.equal(2 * 1024 * 1024) - expect(user.id).to.be.a('number') - expect(user.account.displayName).to.equal('new display name') - expect(user.account.description).to.equal('my super description updated') + const user = await server.users.getMyInfo({ token: userToken }) + expect(user.noWelcomeModal).to.be.true + expect(user.noInstanceConfigWarningModal).to.be.true + }) }) - it('Should be able to update another user', async function () { - await updateUser({ - url: server.url, - userId, - accessToken, - email: 'updated2@example.com', - emailVerified: true, - videoQuota: 42, - role: UserRole.MODERATOR - }) - - const res = await getUserInformation(server.url, accessToken, userId) - const user = res.body - - expect(user.username).to.equal('user_1') - expect(user.email).to.equal('updated2@example.com') - expect(user.emailVerified).to.be.true - expect(user.nsfwPolicy).to.equal('do_not_list') - expect(user.videoQuota).to.equal(42) - expect(user.roleLabel).to.equal('Moderator') - expect(user.id).to.be.a('number') - }) + describe('Updating another user', function () { + it('Should be able to update another user', async function () { + await server.users.update({ + userId, + token, + email: 'updated2@example.com', + emailVerified: true, + videoQuota: 42, + role: UserRole.MODERATOR, + adminFlags: UserAdminFlag.NONE, + pluginAuth: 'toto' + }) + + const user = await server.users.get({ token, userId }) + + expect(user.username).to.equal('user_1') + expect(user.email).to.equal('updated2@example.com') + expect(user.emailVerified).to.be.true + expect(user.nsfwPolicy).to.equal('do_not_list') + expect(user.videoQuota).to.equal(42) + expect(user.roleLabel).to.equal('Moderator') + expect(user.id).to.be.a('number') + expect(user.adminFlags).to.equal(UserAdminFlag.NONE) + expect(user.pluginAuth).to.equal('toto') + }) - it('Should have removed the user token', async function () { - await getMyUserVideoQuotaUsed(server.url, accessTokenUser, 401) + it('Should reset the auth plugin', async function () { + await server.users.update({ userId, token, pluginAuth: null }) - accessTokenUser = await userLogin(server, user) - }) + const user = await server.users.get({ token, userId }) + expect(user.pluginAuth).to.be.null + }) + + it('Should have removed the user token', async function () { + await server.users.getMyQuotaUsed({ token: userToken, expectedStatus: HttpStatusCode.UNAUTHORIZED_401 }) - it('Should be able to update another user password', async function () { - await updateUser({ - url: server.url, - userId, - accessToken, - password: 'password updated' + userToken = await server.login.getAccessToken(user) }) - await getMyUserVideoQuotaUsed(server.url, accessTokenUser, 401) + it('Should be able to update another user password', async function () { + await server.users.update({ userId, token, password: 'password updated' }) - await userLogin(server, user, 400) + await server.users.getMyQuotaUsed({ token: userToken, expectedStatus: HttpStatusCode.UNAUTHORIZED_401 }) - user.password = 'password updated' - accessTokenUser = await userLogin(server, user) - }) + await server.login.login({ user, expectedStatus: HttpStatusCode.BAD_REQUEST_400 }) - it('Should be able to list video blacklist by a moderator', async function () { - await getBlacklistedVideosList(server.url, accessTokenUser) + user.password = 'password updated' + userToken = await server.login.getAccessToken(user) + }) }) - it('Should be able to remove this user', async function () { - await removeUser(server.url, userId, accessToken) + describe('Video blacklists', function () { + it('Should be able to list video blacklist by a moderator', async function () { + await server.blacklist.list({ token: userToken }) + }) }) - it('Should not be able to login with this user', async function () { - await userLogin(server, user, 400) - }) + describe('Remove a user', function () { + it('Should be able to remove this user', async function () { + await server.users.remove({ userId, token }) + }) - it('Should not have videos of this user', async function () { - const res = await getVideosList(server.url) + it('Should not be able to login with this user', async function () { + await server.login.login({ user, expectedStatus: HttpStatusCode.BAD_REQUEST_400 }) + }) - expect(res.body.total).to.equal(1) + it('Should not have videos of this user', async function () { + const { data, total } = await server.videos.list() + expect(total).to.equal(1) - const video = res.body.data[ 0 ] - expect(video.account.name).to.equal('root') + const video = data[0] + expect(video.account.name).to.equal('root') + }) }) - it('Should register a new user', async function () { - await registerUser(server.url, 'user_15', 'my super password') - }) + describe('Registering a new user', function () { + let user15AccessToken - it('Should be able to login with this registered user', async function () { - const user15 = { - username: 'user_15', - password: 'my super password' - } + it('Should register a new user', async function () { + const user = { displayName: 'super user 15', username: 'user_15', password: 'my super password' } + const channel = { name: 'my_user_15_channel', displayName: 'my channel rocks' } - accessToken = await userLogin(server, user15) - }) + await server.users.register({ ...user, channel }) + }) - it('Should have the correct video quota', async function () { - const res = await getMyUserInformation(server.url, accessToken) - const user = res.body + it('Should be able to login with this registered user', async function () { + const user15 = { + username: 'user_15', + password: 'my super password' + } - expect(user.videoQuota).to.equal(5 * 1024 * 1024) - }) + user15AccessToken = await server.login.getAccessToken(user15) + }) - it('Should remove me', async function () { - { - const res = await getUsersList(server.url, server.accessToken) - expect(res.body.data.find(u => u.username === 'user_15')).to.not.be.undefined - } + it('Should have the correct display name', async function () { + const user = await server.users.getMyInfo({ token: user15AccessToken }) + expect(user.account.displayName).to.equal('super user 15') + }) - await deleteMe(server.url, accessToken) + it('Should have the correct video quota', async function () { + const user = await server.users.getMyInfo({ token: user15AccessToken }) + expect(user.videoQuota).to.equal(5 * 1024 * 1024) + }) - { - const res = await getUsersList(server.url, server.accessToken) - expect(res.body.data.find(u => u.username === 'user_15')).to.be.undefined - } + it('Should have created the channel', async function () { + const { displayName } = await server.channels.get({ channelName: 'my_user_15_channel' }) + + expect(displayName).to.equal('my channel rocks') + }) + + it('Should remove me', async function () { + { + const { data } = await server.users.list() + expect(data.find(u => u.username === 'user_15')).to.not.be.undefined + } + + await server.users.deleteMe({ token: user15AccessToken }) + + { + const { data } = await server.users.list() + expect(data.find(u => u.username === 'user_15')).to.be.undefined + } + }) }) - it('Should block and unblock a user', async function () { + describe('User blocking', function () { + let user16Id + let user16AccessToken const user16 = { username: 'user_16', password: 'my super password' } - const resUser = await createUser(server.url, server.accessToken, user16.username, user16.password) - const user16Id = resUser.body.user.id - accessToken = await userLogin(server, user16) + it('Should block a user', async function () { + const user = await server.users.create({ ...user16 }) + user16Id = user.id - await getMyUserInformation(server.url, accessToken, 200) - await blockUser(server.url, user16Id, server.accessToken) + user16AccessToken = await server.login.getAccessToken(user16) - await getMyUserInformation(server.url, accessToken, 401) - await userLogin(server, user16, 400) + await server.users.getMyInfo({ token: user16AccessToken, expectedStatus: HttpStatusCode.OK_200 }) + await server.users.banUser({ userId: user16Id }) + + await server.users.getMyInfo({ token: user16AccessToken, expectedStatus: HttpStatusCode.UNAUTHORIZED_401 }) + await server.login.login({ user: user16, expectedStatus: HttpStatusCode.BAD_REQUEST_400 }) + }) - await unblockUser(server.url, user16Id, server.accessToken) - accessToken = await userLogin(server, user16) - await getMyUserInformation(server.url, accessToken, 200) + it('Should search user by banned status', async function () { + { + const { data, total } = await server.users.list({ start: 0, count: 2, sort: 'createdAt', blocked: true }) + expect(total).to.equal(1) + expect(data.length).to.equal(1) + + expect(data[0].username).to.equal(user16.username) + } + + { + const { data, total } = await server.users.list({ start: 0, count: 2, sort: 'createdAt', blocked: false }) + expect(total).to.equal(1) + expect(data.length).to.equal(1) + + expect(data[0].username).to.not.equal(user16.username) + } + }) + + it('Should unblock a user', async function () { + await server.users.unbanUser({ userId: user16Id }) + user16AccessToken = await server.login.getAccessToken(user16) + await server.users.getMyInfo({ token: user16AccessToken, expectedStatus: HttpStatusCode.OK_200 }) + }) }) - after(async function () { - killallServers([ server ]) + describe('User stats', function () { + let user17Id + let user17AccessToken - // Keep the logs if the test failed - if (this[ 'ok' ]) { - await flushTests() - } + it('Should report correct initial statistics about a user', async function () { + const user17 = { + username: 'user_17', + password: 'my super password' + } + const created = await server.users.create({ ...user17 }) + + user17Id = created.id + user17AccessToken = await server.login.getAccessToken(user17) + + const user = await server.users.get({ userId: user17Id, withStats: true }) + expect(user.videosCount).to.equal(0) + expect(user.videoCommentsCount).to.equal(0) + expect(user.abusesCount).to.equal(0) + expect(user.abusesCreatedCount).to.equal(0) + expect(user.abusesAcceptedCount).to.equal(0) + }) + + it('Should report correct videos count', async function () { + const attributes = { name: 'video to test user stats' } + await server.videos.upload({ token: user17AccessToken, attributes }) + + const { data } = await server.videos.list() + videoId = data.find(video => video.name === attributes.name).id + + const user = await server.users.get({ userId: user17Id, withStats: true }) + expect(user.videosCount).to.equal(1) + }) + + it('Should report correct video comments for user', async function () { + const text = 'super comment' + await server.comments.createThread({ token: user17AccessToken, videoId, text }) + + const user = await server.users.get({ userId: user17Id, withStats: true }) + expect(user.videoCommentsCount).to.equal(1) + }) + + it('Should report correct abuses counts', async function () { + const reason = 'my super bad reason' + await server.abuses.report({ token: user17AccessToken, videoId, reason }) + + const body1 = await server.abuses.getAdminList() + const abuseId = body1.data[0].id + + const user2 = await server.users.get({ userId: user17Id, withStats: true }) + expect(user2.abusesCount).to.equal(1) // number of incriminations + expect(user2.abusesCreatedCount).to.equal(1) // number of reports created + + await server.abuses.update({ abuseId, body: { state: AbuseState.ACCEPTED } }) + + const user3 = await server.users.get({ userId: user17Id, withStats: true }) + expect(user3.abusesAcceptedCount).to.equal(1) // number of reports created accepted + }) + }) + + after(async function () { + await cleanupTests([ server ]) }) })