1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
|
/* eslint-disable @typescript-eslint/no-unused-expressions,@typescript-eslint/require-await */
import 'mocha'
import * as chai from 'chai'
import { HttpStatusCode } from '../../../../shared/core-utils/miscs/http-error-codes'
import {
cleanupTests,
flushAndRunServer,
getMyUserInformation,
getUserInformation,
login,
registerUser,
ServerInfo,
updateMyUser,
userLogin,
verifyEmail
} from '../../../../shared/extra-utils'
import { MockSmtpServer } from '../../../../shared/extra-utils/mock-servers/mock-email'
import { waitJobs } from '../../../../shared/extra-utils/server/jobs'
import { setAccessTokensToServers } from '../../../../shared/extra-utils/users/login'
import { User } from '../../../../shared/models/users'
const expect = chai.expect
describe('Test users account verification', function () {
let server: ServerInfo
let userId: number
let userAccessToken: string
let verificationString: string
let expectedEmailsLength = 0
const user1 = {
username: 'user_1',
password: 'super password'
}
const user2 = {
username: 'user_2',
password: 'super password'
}
const emails: object[] = []
before(async function () {
this.timeout(30000)
const port = await MockSmtpServer.Instance.collectEmails(emails)
const overrideConfig = {
smtp: {
hostname: 'localhost',
port
}
}
server = await flushAndRunServer(1, overrideConfig)
await setAccessTokensToServers([ server ])
})
it('Should register user and send verification email if verification required', async function () {
this.timeout(30000)
await server.configCommand.updateCustomSubConfig({
newConfig: {
signup: {
enabled: true,
requiresEmailVerification: true,
limit: 10
}
}
})
await registerUser(server.url, user1.username, user1.password)
await waitJobs(server)
expectedEmailsLength++
expect(emails).to.have.lengthOf(expectedEmailsLength)
const email = emails[expectedEmailsLength - 1]
const verificationStringMatches = /verificationString=([a-z0-9]+)/.exec(email['text'])
expect(verificationStringMatches).not.to.be.null
verificationString = verificationStringMatches[1]
expect(verificationString).to.have.length.above(2)
const userIdMatches = /userId=([0-9]+)/.exec(email['text'])
expect(userIdMatches).not.to.be.null
userId = parseInt(userIdMatches[1], 10)
const resUserInfo = await getUserInformation(server.url, server.accessToken, userId)
expect(resUserInfo.body.emailVerified).to.be.false
})
it('Should not allow login for user with unverified email', async function () {
const resLogin = await login(server.url, server.client, user1, HttpStatusCode.BAD_REQUEST_400)
expect(resLogin.body.detail).to.contain('User email is not verified.')
})
it('Should verify the user via email and allow login', async function () {
await verifyEmail(server.url, userId, verificationString)
const res = await login(server.url, server.client, user1)
userAccessToken = res.body.access_token
const resUserVerified = await getUserInformation(server.url, server.accessToken, userId)
expect(resUserVerified.body.emailVerified).to.be.true
})
it('Should be able to change the user email', async function () {
this.timeout(10000)
let updateVerificationString: string
{
await updateMyUser({
url: server.url,
accessToken: userAccessToken,
email: 'updated@example.com',
currentPassword: user1.password
})
await waitJobs(server)
expectedEmailsLength++
expect(emails).to.have.lengthOf(expectedEmailsLength)
const email = emails[expectedEmailsLength - 1]
const verificationStringMatches = /verificationString=([a-z0-9]+)/.exec(email['text'])
updateVerificationString = verificationStringMatches[1]
}
{
const res = await getMyUserInformation(server.url, userAccessToken)
const me: User = res.body
expect(me.email).to.equal('user_1@example.com')
expect(me.pendingEmail).to.equal('updated@example.com')
}
{
await verifyEmail(server.url, userId, updateVerificationString, true)
const res = await getMyUserInformation(server.url, userAccessToken)
const me: User = res.body
expect(me.email).to.equal('updated@example.com')
expect(me.pendingEmail).to.be.null
}
})
it('Should register user not requiring email verification if setting not enabled', async function () {
this.timeout(5000)
await server.configCommand.updateCustomSubConfig({
newConfig: {
signup: {
enabled: true,
requiresEmailVerification: false,
limit: 10
}
}
})
await registerUser(server.url, user2.username, user2.password)
await waitJobs(server)
expect(emails).to.have.lengthOf(expectedEmailsLength)
const accessToken = await userLogin(server, user2)
const resMyUserInfo = await getMyUserInformation(server.url, accessToken)
expect(resMyUserInfo.body.emailVerified).to.be.null
})
it('Should allow login for user with unverified email when setting later enabled', async function () {
await server.configCommand.updateCustomSubConfig({
newConfig: {
signup: {
enabled: true,
requiresEmailVerification: true,
limit: 10
}
}
})
await userLogin(server, user2)
})
after(async function () {
MockSmtpServer.Instance.kill()
await cleanupTests([ server ])
})
})
|