123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215 |
- /* eslint-disable @typescript-eslint/no-unused-expressions,@typescript-eslint/require-await */
- import 'mocha'
- import { expect } from 'chai'
- import { wait } from '@shared/core-utils'
- import { HttpStatusCode, UserRole } from '@shared/models'
- import { cleanupTests, createSingleServer, PeerTubeServer, PluginsCommand, setAccessTokensToServers } from '@shared/server-commands'
- describe('Test id and pass auth plugins', function () {
- let server: PeerTubeServer
- let crashAccessToken: string
- let crashRefreshToken: string
- let lagunaAccessToken: string
- let lagunaRefreshToken: string
- before(async function () {
- this.timeout(30000)
- server = await createSingleServer(1)
- await setAccessTokensToServers([ server ])
- for (const suffix of [ 'one', 'two', 'three' ]) {
- await server.plugins.install({ path: PluginsCommand.getPluginTestPath('-id-pass-auth-' + suffix) })
- }
- })
- it('Should display the correct configuration', async function () {
- const config = await server.config.getConfig()
- const auths = config.plugin.registeredIdAndPassAuths
- expect(auths).to.have.lengthOf(8)
- const crashAuth = auths.find(a => a.authName === 'crash-auth')
- expect(crashAuth).to.exist
- expect(crashAuth.npmName).to.equal('peertube-plugin-test-id-pass-auth-one')
- expect(crashAuth.weight).to.equal(50)
- })
- it('Should not login', async function () {
- await server.login.login({ user: { username: 'toto', password: 'password' }, expectedStatus: HttpStatusCode.BAD_REQUEST_400 })
- })
- it('Should login Spyro, create the user and use the token', async function () {
- const accessToken = await server.login.getAccessToken({ username: 'spyro', password: 'spyro password' })
- const body = await server.users.getMyInfo({ token: accessToken })
- expect(body.username).to.equal('spyro')
- expect(body.account.displayName).to.equal('Spyro the Dragon')
- expect(body.role).to.equal(UserRole.USER)
- })
- it('Should login Crash, create the user and use the token', async function () {
- {
- const body = await server.login.login({ user: { username: 'crash', password: 'crash password' } })
- crashAccessToken = body.access_token
- crashRefreshToken = body.refresh_token
- }
- {
- const body = await server.users.getMyInfo({ token: crashAccessToken })
- expect(body.username).to.equal('crash')
- expect(body.account.displayName).to.equal('Crash Bandicoot')
- expect(body.role).to.equal(UserRole.MODERATOR)
- }
- })
- it('Should login the first Laguna, create the user and use the token', async function () {
- {
- const body = await server.login.login({ user: { username: 'laguna', password: 'laguna password' } })
- lagunaAccessToken = body.access_token
- lagunaRefreshToken = body.refresh_token
- }
- {
- const body = await server.users.getMyInfo({ token: lagunaAccessToken })
- expect(body.username).to.equal('laguna')
- expect(body.account.displayName).to.equal('laguna')
- expect(body.role).to.equal(UserRole.USER)
- }
- })
- it('Should refresh crash token, but not laguna token', async function () {
- {
- const resRefresh = await server.login.refreshToken({ refreshToken: crashRefreshToken })
- crashAccessToken = resRefresh.body.access_token
- crashRefreshToken = resRefresh.body.refresh_token
- const body = await server.users.getMyInfo({ token: crashAccessToken })
- expect(body.username).to.equal('crash')
- }
- {
- await server.login.refreshToken({ refreshToken: lagunaRefreshToken, expectedStatus: HttpStatusCode.BAD_REQUEST_400 })
- }
- })
- it('Should update Crash profile', async function () {
- await server.users.updateMe({
- token: crashAccessToken,
- displayName: 'Beautiful Crash',
- description: 'Mutant eastern barred bandicoot'
- })
- const body = await server.users.getMyInfo({ token: crashAccessToken })
- expect(body.account.displayName).to.equal('Beautiful Crash')
- expect(body.account.description).to.equal('Mutant eastern barred bandicoot')
- })
- it('Should logout Crash', async function () {
- await server.login.logout({ token: crashAccessToken })
- })
- it('Should have logged out Crash', async function () {
- await server.servers.waitUntilLog('On logout for auth 1 - 2')
- await server.users.getMyInfo({ token: crashAccessToken, expectedStatus: HttpStatusCode.UNAUTHORIZED_401 })
- })
- it('Should login Crash and keep the old existing profile', async function () {
- crashAccessToken = await server.login.getAccessToken({ username: 'crash', password: 'crash password' })
- const body = await server.users.getMyInfo({ token: crashAccessToken })
- expect(body.username).to.equal('crash')
- expect(body.account.displayName).to.equal('Beautiful Crash')
- expect(body.account.description).to.equal('Mutant eastern barred bandicoot')
- expect(body.role).to.equal(UserRole.MODERATOR)
- })
- it('Should reject token of laguna by the plugin hook', async function () {
- this.timeout(10000)
- await wait(5000)
- await server.users.getMyInfo({ token: lagunaAccessToken, expectedStatus: HttpStatusCode.UNAUTHORIZED_401 })
- })
- it('Should reject an invalid username, email, role or display name', async function () {
- const command = server.login
- await command.login({ user: { username: 'ward', password: 'ward password' }, expectedStatus: HttpStatusCode.BAD_REQUEST_400 })
- await server.servers.waitUntilLog('valid username')
- await command.login({ user: { username: 'kiros', password: 'kiros password' }, expectedStatus: HttpStatusCode.BAD_REQUEST_400 })
- await server.servers.waitUntilLog('valid display name')
- await command.login({ user: { username: 'raine', password: 'raine password' }, expectedStatus: HttpStatusCode.BAD_REQUEST_400 })
- await server.servers.waitUntilLog('valid role')
- await command.login({ user: { username: 'ellone', password: 'elonne password' }, expectedStatus: HttpStatusCode.BAD_REQUEST_400 })
- await server.servers.waitUntilLog('valid email')
- })
- it('Should unregister spyro-auth and do not login existing Spyro', async function () {
- await server.plugins.updateSettings({
- npmName: 'peertube-plugin-test-id-pass-auth-one',
- settings: { disableSpyro: true }
- })
- const command = server.login
- await command.login({ user: { username: 'spyro', password: 'spyro password' }, expectedStatus: HttpStatusCode.BAD_REQUEST_400 })
- await command.login({ user: { username: 'spyro', password: 'fake' }, expectedStatus: HttpStatusCode.BAD_REQUEST_400 })
- })
- it('Should have disabled this auth', async function () {
- const config = await server.config.getConfig()
- const auths = config.plugin.registeredIdAndPassAuths
- expect(auths).to.have.lengthOf(7)
- const spyroAuth = auths.find(a => a.authName === 'spyro-auth')
- expect(spyroAuth).to.not.exist
- })
- it('Should uninstall the plugin one and do not login existing Crash', async function () {
- await server.plugins.uninstall({ npmName: 'peertube-plugin-test-id-pass-auth-one' })
- await server.login.login({
- user: { username: 'crash', password: 'crash password' },
- expectedStatus: HttpStatusCode.BAD_REQUEST_400
- })
- })
- it('Should display the correct configuration', async function () {
- const config = await server.config.getConfig()
- const auths = config.plugin.registeredIdAndPassAuths
- expect(auths).to.have.lengthOf(6)
- const crashAuth = auths.find(a => a.authName === 'crash-auth')
- expect(crashAuth).to.not.exist
- })
- it('Should display plugin auth information in users list', async function () {
- const { data } = await server.users.list()
- const root = data.find(u => u.username === 'root')
- const crash = data.find(u => u.username === 'crash')
- const laguna = data.find(u => u.username === 'laguna')
- expect(root.pluginAuth).to.be.null
- expect(crash.pluginAuth).to.equal('peertube-plugin-test-id-pass-auth-one')
- expect(laguna.pluginAuth).to.equal('peertube-plugin-test-id-pass-auth-two')
- })
- after(async function () {
- await cleanupTests([ server ])
- })
- })
|