diff options
| author | Chocobozzz <me@florianbigard.com> | 2018-09-26 16:28:15 +0200 |
|---|---|---|
| committer | Chocobozzz <me@florianbigard.com> | 2018-09-26 16:28:27 +0200 |
| commit | a890d1e0d30851741392e6e7f14acffe685d28e0 (patch) | |
| tree | 40f6d0c4643f795670943e176d60b2e85a0fb6e0 /server/tests/api/check-params/users.ts | |
| parent | be1206bb934c223893a652be5f1f6c911c9c66be (diff) | |
| download | PeerTube-a890d1e0d30851741392e6e7f14acffe685d28e0.tar.gz PeerTube-a890d1e0d30851741392e6e7f14acffe685d28e0.tar.zst PeerTube-a890d1e0d30851741392e6e7f14acffe685d28e0.zip | |
Check current password on server side
Diffstat (limited to 'server/tests/api/check-params/users.ts')
| -rw-r--r-- | server/tests/api/check-params/users.ts | 34 |
1 files changed, 33 insertions, 1 deletions
diff --git a/server/tests/api/check-params/users.ts b/server/tests/api/check-params/users.ts index 95903c8a5..cbfa0c137 100644 --- a/server/tests/api/check-params/users.ts +++ b/server/tests/api/check-params/users.ts | |||
| @@ -254,6 +254,7 @@ describe('Test users API validators', function () { | |||
| 254 | 254 | ||
| 255 | it('Should fail with a too small password', async function () { | 255 | it('Should fail with a too small password', async function () { |
| 256 | const fields = { | 256 | const fields = { |
| 257 | currentPassword: 'my super password', | ||
| 257 | password: 'bla' | 258 | password: 'bla' |
| 258 | } | 259 | } |
| 259 | 260 | ||
| @@ -262,12 +263,31 @@ describe('Test users API validators', function () { | |||
| 262 | 263 | ||
| 263 | it('Should fail with a too long password', async function () { | 264 | it('Should fail with a too long password', async function () { |
| 264 | const fields = { | 265 | const fields = { |
| 266 | currentPassword: 'my super password', | ||
| 265 | password: 'super'.repeat(61) | 267 | password: 'super'.repeat(61) |
| 266 | } | 268 | } |
| 267 | 269 | ||
| 268 | await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields }) | 270 | await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields }) |
| 269 | }) | 271 | }) |
| 270 | 272 | ||
| 273 | it('Should fail without the current password', async function () { | ||
| 274 | const fields = { | ||
| 275 | currentPassword: 'my super password', | ||
| 276 | password: 'super'.repeat(61) | ||
| 277 | } | ||
| 278 | |||
| 279 | await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields }) | ||
| 280 | }) | ||
| 281 | |||
| 282 | it('Should fail with an invalid current password', async function () { | ||
| 283 | const fields = { | ||
| 284 | currentPassword: 'my super password fail', | ||
| 285 | password: 'super'.repeat(61) | ||
| 286 | } | ||
| 287 | |||
| 288 | await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields, statusCodeExpected: 401 }) | ||
| 289 | }) | ||
| 290 | |||
| 271 | it('Should fail with an invalid NSFW policy attribute', async function () { | 291 | it('Should fail with an invalid NSFW policy attribute', async function () { |
| 272 | const fields = { | 292 | const fields = { |
| 273 | nsfwPolicy: 'hello' | 293 | nsfwPolicy: 'hello' |
| @@ -286,6 +306,7 @@ describe('Test users API validators', function () { | |||
| 286 | 306 | ||
| 287 | it('Should fail with an non authenticated user', async function () { | 307 | it('Should fail with an non authenticated user', async function () { |
| 288 | const fields = { | 308 | const fields = { |
| 309 | currentPassword: 'my super password', | ||
| 289 | password: 'my super password' | 310 | password: 'my super password' |
| 290 | } | 311 | } |
| 291 | 312 | ||
| @@ -300,8 +321,9 @@ describe('Test users API validators', function () { | |||
| 300 | await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields }) | 321 | await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields }) |
| 301 | }) | 322 | }) |
| 302 | 323 | ||
| 303 | it('Should succeed with the correct params', async function () { | 324 | it('Should succeed to change password with the correct params', async function () { |
| 304 | const fields = { | 325 | const fields = { |
| 326 | currentPassword: 'my super password', | ||
| 305 | password: 'my super password', | 327 | password: 'my super password', |
| 306 | nsfwPolicy: 'blur', | 328 | nsfwPolicy: 'blur', |
| 307 | autoPlayVideo: false, | 329 | autoPlayVideo: false, |
| @@ -310,6 +332,16 @@ describe('Test users API validators', function () { | |||
| 310 | 332 | ||
| 311 | await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields, statusCodeExpected: 204 }) | 333 | await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields, statusCodeExpected: 204 }) |
| 312 | }) | 334 | }) |
| 335 | |||
| 336 | it('Should succeed without password change with the correct params', async function () { | ||
| 337 | const fields = { | ||
| 338 | nsfwPolicy: 'blur', | ||
| 339 | autoPlayVideo: false, | ||
| 340 | email: 'super_email@example.com' | ||
| 341 | } | ||
| 342 | |||
| 343 | await makePutBodyRequest({ url: server.url, path: path + 'me', token: userAccessToken, fields, statusCodeExpected: 204 }) | ||
| 344 | }) | ||
| 313 | }) | 345 | }) |
| 314 | 346 | ||
| 315 | describe('When updating my avatar', function () { | 347 | describe('When updating my avatar', function () { |