PeerTube/server/tests/api/users/users-verification.ts

/* tslint:disable:no-unused-expression */

import * as chai from 'chai'
import 'mocha'
import {
  registerUser, flushTests, getUserInformation, getMyUserInformation, killallServers,
  userLogin, login, flushAndRunServer, ServerInfo, verifyEmail, updateCustomSubConfig, wait, cleanupTests
} from '../../../../shared/extra-utils'
import { setAccessTokensToServers } from '../../../../shared/extra-utils/users/login'
import { MockSmtpServer } from '../../../../shared/extra-utils/miscs/email'
import { waitJobs } from '../../../../shared/extra-utils/server/jobs'

const expect = chai.expect

describe('Test users account verification', function () {
  let server: ServerInfo
  let userId: number
  let verificationString: string
  let expectedEmailsLength = 0
  const user1 = {
    username: 'user_1',
    password: 'super password'
  }
  const user2 = {
    username: 'user_2',
    password: 'super password'
  }
  const emails: object[] = []

  before(async function () {
    this.timeout(30000)

    await MockSmtpServer.Instance.collectEmails(emails)

    const overrideConfig = {
      smtp: {
        hostname: 'localhost'
      }
    }
    server = await flushAndRunServer(1, overrideConfig)

    await setAccessTokensToServers([ server ])
  })

  it('Should register user and send verification email if verification required', async function () {
    this.timeout(5000)
    await updateCustomSubConfig(server.url, server.accessToken, {
      signup: {
        enabled: true,
        requiresEmailVerification: true,
        limit: 10
      }
    })

    await registerUser(server.url, user1.username, user1.password)

    await waitJobs(server)
    expectedEmailsLength++
    expect(emails).to.have.lengthOf(expectedEmailsLength)

    const email = emails[expectedEmailsLength - 1]

    const verificationStringMatches = /verificationString=([a-z0-9]+)/.exec(email['text'])
    expect(verificationStringMatches).not.to.be.null

    verificationString = verificationStringMatches[1]
    expect(verificationString).to.have.length.above(2)

    const userIdMatches = /userId=([0-9]+)/.exec(email['text'])
    expect(userIdMatches).not.to.be.null

    userId = parseInt(userIdMatches[1], 10)

    const resUserInfo = await getUserInformation(server.url, server.accessToken, userId)
    expect(resUserInfo.body.emailVerified).to.be.false
  })

  it('Should not allow login for user with unverified email', async function () {
    const resLogin = await login(server.url, server.client, user1, 400)
    expect(resLogin.body.error).to.contain('User email is not verified.')
  })

  it('Should verify the user via email and allow login', async function () {
    await verifyEmail(server.url, userId, verificationString)
    await login(server.url, server.client, user1)
    const resUserVerified = await getUserInformation(server.url, server.accessToken, userId)
    expect(resUserVerified.body.emailVerified).to.be.true
  })

  it('Should register user not requiring email verification if setting not enabled', async function () {
    this.timeout(5000)
    await updateCustomSubConfig(server.url, server.accessToken, {
      signup: {
        enabled: true,
        requiresEmailVerification: false,
        limit: 10
      }
    })

    await registerUser(server.url, user2.username, user2.password)

    await waitJobs(server)
    expect(emails).to.have.lengthOf(expectedEmailsLength)

    const accessToken = await userLogin(server, user2)

    const resMyUserInfo = await getMyUserInformation(server.url, accessToken)
    expect(resMyUserInfo.body.emailVerified).to.be.null
  })

  it('Should allow login for user with unverified email when setting later enabled', async function () {
    await updateCustomSubConfig(server.url, server.accessToken, {
      signup: {
        enabled: true,
        requiresEmailVerification: true,
        limit: 10
      }
    })

    await userLogin(server, user2)
  })

  after(async function () {
    MockSmtpServer.Instance.kill()

    await cleanupTests([ server ])
  })
})
add user account email verificiation (#977) * add user account email verificiation includes server and client code to: * enable verificationRequired via custom config * send verification email with registration * ask for verification email * verify via email * prevent login if not verified and required * conditional client links to ask for new verification email * allow login for verified=null these are users created when verification not required should still be able to login when verification is enabled * refactor email verifcation pr * change naming from verified to emailVerified * change naming from askVerifyEmail to askSendVerifyEmail * undo unrelated automatic prettier formatting on api/config * use redirectService for home * remove redundant success notification on email verified * revert test.yaml smpt host 2018-08-31 09:18:19 +02:00			`/* tslint:disable:no-unused-expression */`

			`import * as chai from 'chai'`
			`import 'mocha'`
			`import {`
			`registerUser, flushTests, getUserInformation, getMyUserInformation, killallServers,`
Use test wrapper exit function 2019-04-24 15:10:37 +02:00			`userLogin, login, flushAndRunServer, ServerInfo, verifyEmail, updateCustomSubConfig, wait, cleanupTests`
Shared utils -> extra-utils Because they need dev dependencies 2019-04-15 15:26:15 +02:00			`} from '../../../../shared/extra-utils'`
			`import { setAccessTokensToServers } from '../../../../shared/extra-utils/users/login'`
			`import { MockSmtpServer } from '../../../../shared/extra-utils/miscs/email'`
			`import { waitJobs } from '../../../../shared/extra-utils/server/jobs'`
add user account email verificiation (#977) * add user account email verificiation includes server and client code to: * enable verificationRequired via custom config * send verification email with registration * ask for verification email * verify via email * prevent login if not verified and required * conditional client links to ask for new verification email * allow login for verified=null these are users created when verification not required should still be able to login when verification is enabled * refactor email verifcation pr * change naming from verified to emailVerified * change naming from askVerifyEmail to askSendVerifyEmail * undo unrelated automatic prettier formatting on api/config * use redirectService for home * remove redundant success notification on email verified * revert test.yaml smpt host 2018-08-31 09:18:19 +02:00
			`const expect = chai.expect`

			`describe('Test users account verification', function () {`
			`let server: ServerInfo`
			`let userId: number`
			`let verificationString: string`
			`let expectedEmailsLength = 0`
			`const user1 = {`
			`username: 'user_1',`
			`password: 'super password'`
			`}`
			`const user2 = {`
			`username: 'user_2',`
			`password: 'super password'`
			`}`
			`const emails: object[] = []`

			`before(async function () {`
			`this.timeout(30000)`

throw error if MailDev doesn't run also allow calling in multiple file 2018-12-15 14:51:51 +01:00			`await MockSmtpServer.Instance.collectEmails(emails)`
add user account email verificiation (#977) * add user account email verificiation includes server and client code to: * enable verificationRequired via custom config * send verification email with registration * ask for verification email * verify via email * prevent login if not verified and required * conditional client links to ask for new verification email * allow login for verified=null these are users created when verification not required should still be able to login when verification is enabled * refactor email verifcation pr * change naming from verified to emailVerified * change naming from askVerifyEmail to askSendVerifyEmail * undo unrelated automatic prettier formatting on api/config * use redirectService for home * remove redundant success notification on email verified * revert test.yaml smpt host 2018-08-31 09:18:19 +02:00
			`const overrideConfig = {`
			`smtp: {`
			`hostname: 'localhost'`
			`}`
			`}`
Cleanup tests 2019-04-24 10:53:40 +02:00			`server = await flushAndRunServer(1, overrideConfig)`
add user account email verificiation (#977) * add user account email verificiation includes server and client code to: * enable verificationRequired via custom config * send verification email with registration * ask for verification email * verify via email * prevent login if not verified and required * conditional client links to ask for new verification email * allow login for verified=null these are users created when verification not required should still be able to login when verification is enabled * refactor email verifcation pr * change naming from verified to emailVerified * change naming from askVerifyEmail to askSendVerifyEmail * undo unrelated automatic prettier formatting on api/config * use redirectService for home * remove redundant success notification on email verified * revert test.yaml smpt host 2018-08-31 09:18:19 +02:00
			`await setAccessTokensToServers([ server ])`
			`})`

			`it('Should register user and send verification email if verification required', async function () {`
			`this.timeout(5000)`
			`await updateCustomSubConfig(server.url, server.accessToken, {`
			`signup: {`
			`enabled: true,`
			`requiresEmailVerification: true,`
			`limit: 10`
			`}`
			`})`

			`await registerUser(server.url, user1.username, user1.password)`

			`await waitJobs(server)`
			`expectedEmailsLength++`
			`expect(emails).to.have.lengthOf(expectedEmailsLength)`

			`const email = emails[expectedEmailsLength - 1]`

			`const verificationStringMatches = /verificationString=([a-z0-9]+)/.exec(email['text'])`
			`expect(verificationStringMatches).not.to.be.null`

			`verificationString = verificationStringMatches[1]`
			`expect(verificationString).to.have.length.above(2)`

			`const userIdMatches = /userId=([0-9]+)/.exec(email['text'])`
			`expect(userIdMatches).not.to.be.null`

			`userId = parseInt(userIdMatches[1], 10)`

			`const resUserInfo = await getUserInformation(server.url, server.accessToken, userId)`
			`expect(resUserInfo.body.emailVerified).to.be.false`
			`})`

			`it('Should not allow login for user with unverified email', async function () {`
			`const resLogin = await login(server.url, server.client, user1, 400)`
			`expect(resLogin.body.error).to.contain('User email is not verified.')`
			`})`

			`it('Should verify the user via email and allow login', async function () {`
			`await verifyEmail(server.url, userId, verificationString)`
			`await login(server.url, server.client, user1)`
			`const resUserVerified = await getUserInformation(server.url, server.accessToken, userId)`
			`expect(resUserVerified.body.emailVerified).to.be.true`
			`})`

			`it('Should register user not requiring email verification if setting not enabled', async function () {`
			`this.timeout(5000)`
			`await updateCustomSubConfig(server.url, server.accessToken, {`
			`signup: {`
			`enabled: true,`
			`requiresEmailVerification: false,`
			`limit: 10`
			`}`
			`})`

			`await registerUser(server.url, user2.username, user2.password)`

			`await waitJobs(server)`
			`expect(emails).to.have.lengthOf(expectedEmailsLength)`

			`const accessToken = await userLogin(server, user2)`

			`const resMyUserInfo = await getMyUserInformation(server.url, accessToken)`
			`expect(resMyUserInfo.body.emailVerified).to.be.null`
			`})`

			`it('Should allow login for user with unverified email when setting later enabled', async function () {`
			`await updateCustomSubConfig(server.url, server.accessToken, {`
			`signup: {`
			`enabled: true,`
			`requiresEmailVerification: true,`
			`limit: 10`
			`}`
			`})`

			`await userLogin(server, user2)`
			`})`

Use test wrapper exit function 2019-04-24 15:10:37 +02:00			`after(async function () {`
Fix socket.io websocket connection 2019-01-08 15:51:52 +01:00			`MockSmtpServer.Instance.kill()`
Use test wrapper exit function 2019-04-24 15:10:37 +02:00
			`await cleanupTests([ server ])`
add user account email verificiation (#977) * add user account email verificiation includes server and client code to: * enable verificationRequired via custom config * send verification email with registration * ask for verification email * verify via email * prevent login if not verified and required * conditional client links to ask for new verification email * allow login for verified=null these are users created when verification not required should still be able to login when verification is enabled * refactor email verifcation pr * change naming from verified to emailVerified * change naming from askVerifyEmail to askSendVerifyEmail * undo unrelated automatic prettier formatting on api/config * use redirectService for home * remove redundant success notification on email verified * revert test.yaml smpt host 2018-08-31 09:18:19 +02:00			`})`
			`})`