1 files changed, 6 insertions, 228 deletions
diff --git a/server/tests/api/users/users.ts b/server/tests/api/users/users.ts
index 421b3ce16..f1e170971 100644
--- a/server/tests/api/users/users.ts
+++ b/server/tests/api/users/users.ts
@@ -2,15 +2,8 @@
 import { expect } from 'chai'
 import { testImage } from '@server/tests/shared'
-import { AbuseState, HttpStatusCode, OAuth2ErrorCode, UserAdminFlag, UserRole, VideoPlaylistType } from '@shared/models'
+import { AbuseState, HttpStatusCode, UserAdminFlag, UserRole, VideoPlaylistType } from '@shared/models'
-import {
+import { cleanupTests, createSingleServer, PeerTubeServer, setAccessTokensToServers } from '@shared/server-commands'
-  cleanupTests,
-  createSingleServer,
-  killallServers,
-  makePutBodyRequest,
-  PeerTubeServer,
-  setAccessTokensToServers
-} from '@shared/server-commands'
 describe('Test users', function () {
  let server: PeerTubeServer
@@ -39,166 +32,6 @@ describe('Test users', function () {
    await server.plugins.install({ npmName: 'peertube-theme-background-red' })
  })
-  describe('OAuth client', function () {
-    it('Should create a new client')
-    it('Should return the first client')
-    it('Should remove the last client')
-    it('Should not login with an invalid client id', async function () {
-      const client = { id: 'client', secret: server.store.client.secret }
-      const body = await server.login.login({ client, expectedStatus: HttpStatusCode.BAD_REQUEST_400 })
-      expect(body.code).to.equal(OAuth2ErrorCode.INVALID_CLIENT)
-      expect(body.error).to.contain('client is invalid')
-      expect(body.type.startsWith('https://')).to.be.true
-      expect(body.type).to.contain(OAuth2ErrorCode.INVALID_CLIENT)
-    })
-    it('Should not login with an invalid client secret', async function () {
-      const client = { id: server.store.client.id, secret: 'coucou' }
-      const body = await server.login.login({ client, expectedStatus: HttpStatusCode.BAD_REQUEST_400 })
-      expect(body.code).to.equal(OAuth2ErrorCode.INVALID_CLIENT)
-      expect(body.error).to.contain('client is invalid')
-      expect(body.type.startsWith('https://')).to.be.true
-      expect(body.type).to.contain(OAuth2ErrorCode.INVALID_CLIENT)
-    })
-  })
-  describe('Login', function () {
-    it('Should not login with an invalid username', async function () {
-      const user = { username: 'captain crochet', password: server.store.user.password }
-      const body = await server.login.login({ user, expectedStatus: HttpStatusCode.BAD_REQUEST_400 })
-      expect(body.code).to.equal(OAuth2ErrorCode.INVALID_GRANT)
-      expect(body.error).to.contain('credentials are invalid')
-      expect(body.type.startsWith('https://')).to.be.true
-      expect(body.type).to.contain(OAuth2ErrorCode.INVALID_GRANT)
-    })
-    it('Should not login with an invalid password', async function () {
-      const user = { username: server.store.user.username, password: 'mew_three' }
-      const body = await server.login.login({ user, expectedStatus: HttpStatusCode.BAD_REQUEST_400 })
-      expect(body.code).to.equal(OAuth2ErrorCode.INVALID_GRANT)
-      expect(body.error).to.contain('credentials are invalid')
-      expect(body.type.startsWith('https://')).to.be.true
-      expect(body.type).to.contain(OAuth2ErrorCode.INVALID_GRANT)
-    })
-    it('Should not be able to upload a video', async function () {
-      token = 'my_super_token'
-      await server.videos.upload({ token, expectedStatus: HttpStatusCode.UNAUTHORIZED_401 })
-    })
-    it('Should not be able to follow', async function () {
-      token = 'my_super_token'
-      await server.follows.follow({
-        hosts: [ 'http://example.com' ],
-        token,
-        expectedStatus: HttpStatusCode.UNAUTHORIZED_401
-      })
-    })
-    it('Should not be able to unfollow')
-    it('Should be able to login', async function () {
-      const body = await server.login.login({ expectedStatus: HttpStatusCode.OK_200 })
-      token = body.access_token
-    })
-    it('Should be able to login with an insensitive username', async function () {
-      const user = { username: 'RoOt', password: server.store.user.password }
-      await server.login.login({ user, expectedStatus: HttpStatusCode.OK_200 })
-      const user2 = { username: 'rOoT', password: server.store.user.password }
-      await server.login.login({ user: user2, expectedStatus: HttpStatusCode.OK_200 })
-      const user3 = { username: 'ROOt', password: server.store.user.password }
-      await server.login.login({ user: user3, expectedStatus: HttpStatusCode.OK_200 })
-    })
-  })
-  describe('Logout', function () {
-    it('Should logout (revoke token)', async function () {
-      await server.login.logout({ token: server.accessToken })
-    })
-    it('Should not be able to get the user information', async function () {
-      await server.users.getMyInfo({ expectedStatus: HttpStatusCode.UNAUTHORIZED_401 })
-    })
-    it('Should not be able to upload a video', async function () {
-      await server.videos.upload({ attributes: { name: 'video' }, expectedStatus: HttpStatusCode.UNAUTHORIZED_401 })
-    })
-    it('Should not be able to rate a video', async function () {
-      const path = '/api/v1/videos/'
-      const data = {
-        rating: 'likes'
-      }
-      const options = {
-        url: server.url,
-        path: path + videoId,
-        token: 'wrong token',
-        fields: data,
-        expectedStatus: HttpStatusCode.UNAUTHORIZED_401
-      }
-      await makePutBodyRequest(options)
-    })
-    it('Should be able to login again', async function () {
-      const body = await server.login.login()
-      server.accessToken = body.access_token
-      server.refreshToken = body.refresh_token
-    })
-    it('Should be able to get my user information again', async function () {
-      await server.users.getMyInfo()
-    })
-    it('Should have an expired access token', async function () {
-      this.timeout(60000)
-      await server.sql.setTokenField(server.accessToken, 'accessTokenExpiresAt', new Date().toISOString())
-      await server.sql.setTokenField(server.accessToken, 'refreshTokenExpiresAt', new Date().toISOString())
-      await killallServers([ server ])
-      await server.run()
-      await server.users.getMyInfo({ expectedStatus: HttpStatusCode.UNAUTHORIZED_401 })
-    })
-    it('Should not be able to refresh an access token with an expired refresh token', async function () {
-      await server.login.refreshToken({ refreshToken: server.refreshToken, expectedStatus: HttpStatusCode.BAD_REQUEST_400 })
-    })
-    it('Should refresh the token', async function () {
-      this.timeout(50000)
-      const futureDate = new Date(new Date().getTime() + 1000 * 60).toISOString()
-      await server.sql.setTokenField(server.accessToken, 'refreshTokenExpiresAt', futureDate)
-      await killallServers([ server ])
-      await server.run()
-      const res = await server.login.refreshToken({ refreshToken: server.refreshToken })
-      server.accessToken = res.body.access_token
-      server.refreshToken = res.body.refresh_token
-    })
-    it('Should be able to get my user information again', async function () {
-      await server.users.getMyInfo()
-    })
-  })
  describe('Creating a user', function () {
    it('Should be able to create a new user', async function () {
@@ -512,6 +345,7 @@ describe('Test users', function () {
  })
  describe('Updating another user', function () {
    it('Should be able to update another user', async function () {
      await server.users.update({
        userId,
@@ -562,13 +396,6 @@ describe('Test users', function () {
    })
  })
-  describe('Video blacklists', function () {
-    it('Should be able to list my video blacklist', async function () {
-      await server.blacklist.list({ token: userToken })
-    })
-  })
  describe('Remove a user', function () {
    before(async function () {
@@ -602,59 +429,10 @@ describe('Test users', function () {
    })
  })
-  describe('Registering a new user', function () {
-    let user15AccessToken: string
-    it('Should register a new user', async function () {
-      const user = { displayName: 'super user 15', username: 'user_15', password: 'my super password' }
-      const channel = { name: 'my_user_15_channel', displayName: 'my channel rocks' }
-      await server.users.register({ ...user, channel })
-    })
-    it('Should be able to login with this registered user', async function () {
-      const user15 = {
-        username: 'user_15',
-        password: 'my super password'
-      }
-      user15AccessToken = await server.login.getAccessToken(user15)
-    })
-    it('Should have the correct display name', async function () {
-      const user = await server.users.getMyInfo({ token: user15AccessToken })
-      expect(user.account.displayName).to.equal('super user 15')
-    })
-    it('Should have the correct video quota', async function () {
-      const user = await server.users.getMyInfo({ token: user15AccessToken })
-      expect(user.videoQuota).to.equal(5 * 1024 * 1024)
-    })
-    it('Should have created the channel', async function () {
-      const { displayName } = await server.channels.get({ channelName: 'my_user_15_channel' })
-      expect(displayName).to.equal('my channel rocks')
-    })
-    it('Should remove me', async function () {
-      {
-        const { data } = await server.users.list()
-        expect(data.find(u => u.username === 'user_15')).to.not.be.undefined
-      }
-      await server.users.deleteMe({ token: user15AccessToken })
-      {
-        const { data } = await server.users.list()
-        expect(data.find(u => u.username === 'user_15')).to.be.undefined
-      }
-    })
-  })
  describe('User blocking', function () {
-    let user16Id
+    let user16Id: number
-    let user16AccessToken
+    let user16AccessToken: string
    const user16 = {
      username: 'user_16',
      password: 'my super password'

diff --git a/server/tests/api/users/users.ts b/server/tests/api/users/users.ts index 421b3ce16..f1e170971 100644 --- a/server/tests/api/users/users.ts +++ b/server/tests/api/users/users.ts
@@ -2,15 +2,8 @@
2		2
3	import { expect } from 'chai'	3	import { expect } from 'chai'
4	import { testImage } from '@server/tests/shared'	4	import { testImage } from '@server/tests/shared'
5	import { AbuseState, HttpStatusCode, OAuth2ErrorCode, UserAdminFlag, UserRole, VideoPlaylistType } from '@shared/models'	5	import { AbuseState, HttpStatusCode, UserAdminFlag, UserRole, VideoPlaylistType } from '@shared/models'
6	import {	6	import { cleanupTests, createSingleServer, PeerTubeServer, setAccessTokensToServers } from '@shared/server-commands'
7	cleanupTests,
8	createSingleServer,
9	killallServers,
10	makePutBodyRequest,
11	PeerTubeServer,
12	setAccessTokensToServers
13	} from '@shared/server-commands'
14		7
15	describe('Test users', function () {	8	describe('Test users', function () {
16	let server: PeerTubeServer	9	let server: PeerTubeServer
@@ -39,166 +32,6 @@ describe('Test users', function () {
39	await server.plugins.install({ npmName: 'peertube-theme-background-red' })	32	await server.plugins.install({ npmName: 'peertube-theme-background-red' })
40	})	33	})
41		34
42	describe('OAuth client', function () {
43	it('Should create a new client')
44
45	it('Should return the first client')
46
47	it('Should remove the last client')
48
49	it('Should not login with an invalid client id', async function () {
50	const client = { id: 'client', secret: server.store.client.secret }
51	const body = await server.login.login({ client, expectedStatus: HttpStatusCode.BAD_REQUEST_400 })
52
53	expect(body.code).to.equal(OAuth2ErrorCode.INVALID_CLIENT)
54	expect(body.error).to.contain('client is invalid')
55	expect(body.type.startsWith('https://')).to.be.true
56	expect(body.type).to.contain(OAuth2ErrorCode.INVALID_CLIENT)
57	})
58
59	it('Should not login with an invalid client secret', async function () {
60	const client = { id: server.store.client.id, secret: 'coucou' }
61	const body = await server.login.login({ client, expectedStatus: HttpStatusCode.BAD_REQUEST_400 })
62
63	expect(body.code).to.equal(OAuth2ErrorCode.INVALID_CLIENT)
64	expect(body.error).to.contain('client is invalid')
65	expect(body.type.startsWith('https://')).to.be.true
66	expect(body.type).to.contain(OAuth2ErrorCode.INVALID_CLIENT)
67	})
68	})
69
70	describe('Login', function () {
71
72	it('Should not login with an invalid username', async function () {
73	const user = { username: 'captain crochet', password: server.store.user.password }
74	const body = await server.login.login({ user, expectedStatus: HttpStatusCode.BAD_REQUEST_400 })
75
76	expect(body.code).to.equal(OAuth2ErrorCode.INVALID_GRANT)
77	expect(body.error).to.contain('credentials are invalid')
78	expect(body.type.startsWith('https://')).to.be.true
79	expect(body.type).to.contain(OAuth2ErrorCode.INVALID_GRANT)
80	})
81
82	it('Should not login with an invalid password', async function () {
83	const user = { username: server.store.user.username, password: 'mew_three' }
84	const body = await server.login.login({ user, expectedStatus: HttpStatusCode.BAD_REQUEST_400 })
85
86	expect(body.code).to.equal(OAuth2ErrorCode.INVALID_GRANT)
87	expect(body.error).to.contain('credentials are invalid')
88	expect(body.type.startsWith('https://')).to.be.true
89	expect(body.type).to.contain(OAuth2ErrorCode.INVALID_GRANT)
90	})
91
92	it('Should not be able to upload a video', async function () {
93	token = 'my_super_token'
94
95	await server.videos.upload({ token, expectedStatus: HttpStatusCode.UNAUTHORIZED_401 })
96	})
97
98	it('Should not be able to follow', async function () {
99	token = 'my_super_token'
100
101	await server.follows.follow({
102	hosts: [ 'http://example.com' ],
103	token,
104	expectedStatus: HttpStatusCode.UNAUTHORIZED_401
105	})
106	})
107
108	it('Should not be able to unfollow')
109
110	it('Should be able to login', async function () {
111	const body = await server.login.login({ expectedStatus: HttpStatusCode.OK_200 })
112
113	token = body.access_token
114	})
115
116	it('Should be able to login with an insensitive username', async function () {
117	const user = { username: 'RoOt', password: server.store.user.password }
118	await server.login.login({ user, expectedStatus: HttpStatusCode.OK_200 })
119
120	const user2 = { username: 'rOoT', password: server.store.user.password }
121	await server.login.login({ user: user2, expectedStatus: HttpStatusCode.OK_200 })
122
123	const user3 = { username: 'ROOt', password: server.store.user.password }
124	await server.login.login({ user: user3, expectedStatus: HttpStatusCode.OK_200 })
125	})
126	})
127
128	describe('Logout', function () {
129	it('Should logout (revoke token)', async function () {
130	await server.login.logout({ token: server.accessToken })
131	})
132
133	it('Should not be able to get the user information', async function () {
134	await server.users.getMyInfo({ expectedStatus: HttpStatusCode.UNAUTHORIZED_401 })
135	})
136
137	it('Should not be able to upload a video', async function () {
138	await server.videos.upload({ attributes: { name: 'video' }, expectedStatus: HttpStatusCode.UNAUTHORIZED_401 })
139	})
140
141	it('Should not be able to rate a video', async function () {
142	const path = '/api/v1/videos/'
143	const data = {
144	rating: 'likes'
145	}
146
147	const options = {
148	url: server.url,
149	path: path + videoId,
150	token: 'wrong token',
151	fields: data,
152	expectedStatus: HttpStatusCode.UNAUTHORIZED_401
153	}
154	await makePutBodyRequest(options)
155	})
156
157	it('Should be able to login again', async function () {
158	const body = await server.login.login()
159	server.accessToken = body.access_token
160	server.refreshToken = body.refresh_token
161	})
162
163	it('Should be able to get my user information again', async function () {
164	await server.users.getMyInfo()
165	})
166
167	it('Should have an expired access token', async function () {
168	this.timeout(60000)
169
170	await server.sql.setTokenField(server.accessToken, 'accessTokenExpiresAt', new Date().toISOString())
171	await server.sql.setTokenField(server.accessToken, 'refreshTokenExpiresAt', new Date().toISOString())
172
173	await killallServers([ server ])
174	await server.run()
175
176	await server.users.getMyInfo({ expectedStatus: HttpStatusCode.UNAUTHORIZED_401 })
177	})
178
179	it('Should not be able to refresh an access token with an expired refresh token', async function () {
180	await server.login.refreshToken({ refreshToken: server.refreshToken, expectedStatus: HttpStatusCode.BAD_REQUEST_400 })
181	})
182
183	it('Should refresh the token', async function () {
184	this.timeout(50000)
185
186	const futureDate = new Date(new Date().getTime() + 1000 * 60).toISOString()
187	await server.sql.setTokenField(server.accessToken, 'refreshTokenExpiresAt', futureDate)
188
189	await killallServers([ server ])
190	await server.run()
191
192	const res = await server.login.refreshToken({ refreshToken: server.refreshToken })
193	server.accessToken = res.body.access_token
194	server.refreshToken = res.body.refresh_token
195	})
196
197	it('Should be able to get my user information again', async function () {
198	await server.users.getMyInfo()
199	})
200	})
201
202	describe('Creating a user', function () {	35	describe('Creating a user', function () {
203		36
204	it('Should be able to create a new user', async function () {	37	it('Should be able to create a new user', async function () {
@@ -512,6 +345,7 @@ describe('Test users', function () {
512	})	345	})
513		346
514	describe('Updating another user', function () {	347	describe('Updating another user', function () {
		348
515	it('Should be able to update another user', async function () {	349	it('Should be able to update another user', async function () {
516	await server.users.update({	350	await server.users.update({
517	userId,	351	userId,
@@ -562,13 +396,6 @@ describe('Test users', function () {
562	})	396	})
563	})	397	})
564		398
565	describe('Video blacklists', function () {
566
567	it('Should be able to list my video blacklist', async function () {
568	await server.blacklist.list({ token: userToken })
569	})
570	})
571
572	describe('Remove a user', function () {	399	describe('Remove a user', function () {
573		400
574	before(async function () {	401	before(async function () {
@@ -602,59 +429,10 @@ describe('Test users', function () {
602	})	429	})
603	})	430	})
604		431
605	describe('Registering a new user', function () {
606	let user15AccessToken: string
607
608	it('Should register a new user', async function () {
609	const user = { displayName: 'super user 15', username: 'user_15', password: 'my super password' }
610	const channel = { name: 'my_user_15_channel', displayName: 'my channel rocks' }
611
612	await server.users.register({ ...user, channel })
613	})
614
615	it('Should be able to login with this registered user', async function () {
616	const user15 = {
617	username: 'user_15',
618	password: 'my super password'
619	}
620
621	user15AccessToken = await server.login.getAccessToken(user15)
622	})
623
624	it('Should have the correct display name', async function () {
625	const user = await server.users.getMyInfo({ token: user15AccessToken })
626	expect(user.account.displayName).to.equal('super user 15')
627	})
628
629	it('Should have the correct video quota', async function () {
630	const user = await server.users.getMyInfo({ token: user15AccessToken })
631	expect(user.videoQuota).to.equal(5 * 1024 * 1024)
632	})
633
634	it('Should have created the channel', async function () {
635	const { displayName } = await server.channels.get({ channelName: 'my_user_15_channel' })
636
637	expect(displayName).to.equal('my channel rocks')
638	})
639
640	it('Should remove me', async function () {
641	{
642	const { data } = await server.users.list()
643	expect(data.find(u => u.username === 'user_15')).to.not.be.undefined
644	}
645
646	await server.users.deleteMe({ token: user15AccessToken })
647
648	{
649	const { data } = await server.users.list()
650	expect(data.find(u => u.username === 'user_15')).to.be.undefined
651	}
652	})
653	})
654
655	describe('User blocking', function () {	432	describe('User blocking', function () {
656	let user16Id	433	let user16Id: number
657	let user16AccessToken	434	let user16AccessToken: string
		435
658	const user16 = {	436	const user16 = {
659	username: 'user_16',	437	username: 'user_16',
660	password: 'my super password'	438	password: 'my super password'