2016-06-01 16:31:47 -07:00
|
|
|
/* jslint node:true */
|
|
|
|
|
/* global it:false */
|
|
|
|
|
/* global describe:false */
|
|
|
|
|
/* global before:false */
|
|
|
|
|
/* global after:false */
|
|
|
|
|
|
|
|
|
|
'use strict';
|
|
|
|
|
|
|
|
|
|
var async = require('async'),
|
2019-07-25 15:43:51 -07:00
|
|
|
constants = require('../../constants.js'),
|
2016-06-01 16:31:47 -07:00
|
|
|
database = require('../../database.js'),
|
|
|
|
|
expect = require('expect.js'),
|
|
|
|
|
superagent = require('superagent'),
|
|
|
|
|
server = require('../../server.js');
|
|
|
|
|
|
2019-07-25 15:43:51 -07:00
|
|
|
var SERVER_URL = 'http://localhost:' + constants.PORT;
|
2018-02-09 12:43:20 +01:00
|
|
|
var DOMAIN = 'example-server-test.com';
|
2016-06-01 16:31:47 -07:00
|
|
|
var USERNAME = 'superadmin', PASSWORD = 'Foobar?1337', EMAIL ='silly@me.com';
|
|
|
|
|
var token = null;
|
|
|
|
|
|
|
|
|
|
function setup(done) {
|
|
|
|
|
async.series([
|
2018-02-09 12:43:20 +01:00
|
|
|
server.start,
|
|
|
|
|
database._clear
|
2016-06-01 16:31:47 -07:00
|
|
|
], done);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function cleanup(done) {
|
2018-02-09 12:43:20 +01:00
|
|
|
async.series([
|
|
|
|
|
database._clear,
|
|
|
|
|
server.stop
|
|
|
|
|
], done);
|
2016-06-01 16:31:47 -07:00
|
|
|
}
|
|
|
|
|
|
2018-12-15 15:27:16 -08:00
|
|
|
function waitForSetup(done) {
|
|
|
|
|
async.retry({ times: 5, interval: 4000 }, function (retryCallback) {
|
|
|
|
|
superagent.get(SERVER_URL + '/api/v1/cloudron/status')
|
|
|
|
|
.end(function (error, result) {
|
|
|
|
|
if (!result || result.statusCode !== 200) return retryCallback(new Error('Bad result'));
|
|
|
|
|
|
|
|
|
|
if (!result.body.setup.active && result.body.setup.errorMessage === '' && result.body.adminFqdn) return retryCallback();
|
|
|
|
|
|
|
|
|
|
retryCallback(new Error('Not done yet: ' + JSON.stringify(result.body)));
|
|
|
|
|
});
|
|
|
|
|
}, done);
|
|
|
|
|
}
|
|
|
|
|
|
2016-06-01 16:31:47 -07:00
|
|
|
describe('REST API', function () {
|
|
|
|
|
before(setup);
|
|
|
|
|
after(cleanup);
|
|
|
|
|
|
2018-02-09 12:43:20 +01:00
|
|
|
it('dns setup fails without provider', function (done) {
|
2018-10-30 13:36:00 -07:00
|
|
|
superagent.post(SERVER_URL + '/api/v1/cloudron/setup')
|
|
|
|
|
.send({ dnsConfig: { domain: DOMAIN, config: {} } })
|
|
|
|
|
.end(function (error, result) {
|
|
|
|
|
expect(result).to.be.ok();
|
|
|
|
|
expect(result.statusCode).to.eql(400);
|
2018-02-09 12:43:20 +01:00
|
|
|
|
2018-10-30 13:36:00 -07:00
|
|
|
done();
|
|
|
|
|
});
|
2018-02-09 12:43:20 +01:00
|
|
|
});
|
|
|
|
|
|
2018-10-30 13:36:00 -07:00
|
|
|
it('dns setup fails with invalid provider', function (done) {
|
|
|
|
|
superagent.post(SERVER_URL + '/api/v1/cloudron/setup')
|
|
|
|
|
.send({ dnsConfig: { provider: 'foobar', domain: DOMAIN, config: {} } })
|
|
|
|
|
.end(function (error, result) {
|
|
|
|
|
expect(result).to.be.ok();
|
|
|
|
|
expect(result.statusCode).to.eql(400);
|
2018-02-09 12:43:20 +01:00
|
|
|
|
2018-10-30 13:36:00 -07:00
|
|
|
done();
|
|
|
|
|
});
|
2018-02-09 12:43:20 +01:00
|
|
|
});
|
|
|
|
|
|
2018-10-30 13:36:00 -07:00
|
|
|
it('dns setup fails with missing domain', function (done) {
|
|
|
|
|
superagent.post(SERVER_URL + '/api/v1/cloudron/setup')
|
|
|
|
|
.send({ dnsConfig: { provider: 'noop', config: {} } })
|
|
|
|
|
.end(function (error, result) {
|
|
|
|
|
expect(result).to.be.ok();
|
|
|
|
|
expect(result.statusCode).to.eql(400);
|
2018-02-09 12:43:20 +01:00
|
|
|
|
2018-10-30 13:36:00 -07:00
|
|
|
done();
|
|
|
|
|
});
|
2018-02-09 12:43:20 +01:00
|
|
|
});
|
|
|
|
|
|
2018-10-30 13:36:00 -07:00
|
|
|
it('dns setup fails with invalid domain', function (done) {
|
|
|
|
|
superagent.post(SERVER_URL + '/api/v1/cloudron/setup')
|
|
|
|
|
.send({ dnsConfig: { provider: 'noop', domain: '.foo', config: {} } })
|
|
|
|
|
.end(function (error, result) {
|
|
|
|
|
expect(result).to.be.ok();
|
|
|
|
|
expect(result.statusCode).to.eql(400);
|
2018-02-09 12:43:20 +01:00
|
|
|
|
2018-10-30 13:36:00 -07:00
|
|
|
done();
|
|
|
|
|
});
|
2018-02-09 12:43:20 +01:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('dns setup fails with invalid config', function (done) {
|
2018-10-30 13:36:00 -07:00
|
|
|
superagent.post(SERVER_URL + '/api/v1/cloudron/setup')
|
|
|
|
|
.send({ dnsConfig: { provider: 'noop', domain: DOMAIN, config: 'not an object' } })
|
|
|
|
|
.end(function (error, result) {
|
|
|
|
|
expect(result).to.be.ok();
|
|
|
|
|
expect(result.statusCode).to.eql(400);
|
|
|
|
|
|
|
|
|
|
done();
|
|
|
|
|
});
|
2018-02-09 12:43:20 +01:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('dns setup fails with invalid zoneName', function (done) {
|
2018-10-30 13:36:00 -07:00
|
|
|
superagent.post(SERVER_URL + '/api/v1/cloudron/setup')
|
|
|
|
|
.send({ dnsConfig: { provider: 'noop', domain: DOMAIN, config: {}, zoneName: 1337 } })
|
|
|
|
|
.end(function (error, result) {
|
|
|
|
|
expect(result).to.be.ok();
|
|
|
|
|
expect(result.statusCode).to.eql(400);
|
|
|
|
|
|
|
|
|
|
done();
|
|
|
|
|
});
|
2018-02-09 12:43:20 +01:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('dns setup fails with invalid tlsConfig', function (done) {
|
2018-10-30 13:36:00 -07:00
|
|
|
superagent.post(SERVER_URL + '/api/v1/cloudron/setup')
|
|
|
|
|
.send({ dnsConfig: { provider: 'noop', domain: DOMAIN, config: {}, tlsConfig: 'foobar' } })
|
|
|
|
|
.end(function (error, result) {
|
|
|
|
|
expect(result).to.be.ok();
|
|
|
|
|
expect(result.statusCode).to.eql(400);
|
|
|
|
|
|
|
|
|
|
done();
|
|
|
|
|
});
|
2018-02-09 12:43:20 +01:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('dns setup fails with invalid tlsConfig provider', function (done) {
|
2018-10-30 13:36:00 -07:00
|
|
|
superagent.post(SERVER_URL + '/api/v1/cloudron/setup')
|
|
|
|
|
.send({ dnsConfig: { provider: 'noop', domain: DOMAIN, config: {}, tlsConfig: { provider: 1337 } } })
|
|
|
|
|
.end(function (error, result) {
|
|
|
|
|
expect(result).to.be.ok();
|
|
|
|
|
expect(result.statusCode).to.eql(400);
|
|
|
|
|
|
|
|
|
|
done();
|
|
|
|
|
});
|
2018-02-09 12:43:20 +01:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('dns setup succeeds', function (done) {
|
2018-10-30 13:36:00 -07:00
|
|
|
superagent.post(SERVER_URL + '/api/v1/cloudron/setup')
|
2018-12-15 15:27:16 -08:00
|
|
|
.send({ dnsConfig: { provider: 'noop', domain: DOMAIN, adminFqdn: 'my.' + DOMAIN, config: {}, tlsConfig: { provider: 'fallback' } } })
|
2018-10-30 13:36:00 -07:00
|
|
|
.end(function (error, result) {
|
|
|
|
|
expect(result).to.be.ok();
|
|
|
|
|
expect(result.statusCode).to.eql(200);
|
|
|
|
|
|
2018-12-15 15:27:16 -08:00
|
|
|
waitForSetup(done);
|
2018-10-30 13:36:00 -07:00
|
|
|
});
|
2018-02-09 12:43:20 +01:00
|
|
|
});
|
|
|
|
|
|
2018-12-07 14:35:04 -08:00
|
|
|
it('dns setup twice succeeds', function (done) {
|
2018-10-30 13:36:00 -07:00
|
|
|
superagent.post(SERVER_URL + '/api/v1/cloudron/setup')
|
2018-12-15 15:27:16 -08:00
|
|
|
.send({ dnsConfig: { provider: 'noop', domain: DOMAIN, DOMAIN, config: {} }, tlsConfig: { provider: 'fallback' } })
|
2018-10-30 13:36:00 -07:00
|
|
|
.end(function (error, result) {
|
|
|
|
|
expect(result).to.be.ok();
|
2018-12-07 14:35:04 -08:00
|
|
|
expect(result.statusCode).to.eql(200);
|
2018-10-30 13:36:00 -07:00
|
|
|
|
2018-12-15 15:27:16 -08:00
|
|
|
waitForSetup(done);
|
2018-10-30 13:36:00 -07:00
|
|
|
});
|
2018-02-09 12:43:20 +01:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('activation fails without username', function (done) {
|
|
|
|
|
superagent.post(SERVER_URL + '/api/v1/cloudron/activate')
|
2018-10-30 13:36:00 -07:00
|
|
|
.query({ setupToken: 'somesetuptoken' })
|
|
|
|
|
.send({ password: PASSWORD, email: EMAIL })
|
|
|
|
|
.end(function (error, result) {
|
|
|
|
|
expect(result).to.be.ok();
|
|
|
|
|
expect(result.statusCode).to.eql(400);
|
|
|
|
|
|
|
|
|
|
done();
|
|
|
|
|
});
|
2018-02-09 12:43:20 +01:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('activation fails with invalid username', function (done) {
|
|
|
|
|
superagent.post(SERVER_URL + '/api/v1/cloudron/activate')
|
2018-10-30 13:36:00 -07:00
|
|
|
.query({ setupToken: 'somesetuptoken' })
|
|
|
|
|
.send({ username: '?this.is-not!valid', password: PASSWORD, email: EMAIL })
|
|
|
|
|
.end(function (error, result) {
|
|
|
|
|
expect(result).to.be.ok();
|
|
|
|
|
expect(result.statusCode).to.eql(400);
|
|
|
|
|
|
|
|
|
|
done();
|
|
|
|
|
});
|
2018-02-09 12:43:20 +01:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('activation fails without email', function (done) {
|
|
|
|
|
superagent.post(SERVER_URL + '/api/v1/cloudron/activate')
|
2018-10-30 13:36:00 -07:00
|
|
|
.query({ setupToken: 'somesetuptoken' })
|
|
|
|
|
.send({ username: USERNAME, password: PASSWORD })
|
|
|
|
|
.end(function (error, result) {
|
|
|
|
|
expect(result).to.be.ok();
|
|
|
|
|
expect(result.statusCode).to.eql(400);
|
|
|
|
|
|
|
|
|
|
done();
|
|
|
|
|
});
|
2018-02-09 12:43:20 +01:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('activation fails with invalid email', function (done) {
|
|
|
|
|
superagent.post(SERVER_URL + '/api/v1/cloudron/activate')
|
2018-10-30 13:36:00 -07:00
|
|
|
.query({ setupToken: 'somesetuptoken' })
|
|
|
|
|
.send({ username: USERNAME, password: PASSWORD, email: 'notanemail' })
|
|
|
|
|
.end(function (error, result) {
|
|
|
|
|
expect(result).to.be.ok();
|
|
|
|
|
expect(result.statusCode).to.eql(400);
|
|
|
|
|
|
|
|
|
|
done();
|
|
|
|
|
});
|
2018-02-09 12:43:20 +01:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('activation fails without password', function (done) {
|
|
|
|
|
superagent.post(SERVER_URL + '/api/v1/cloudron/activate')
|
2018-10-30 13:36:00 -07:00
|
|
|
.query({ setupToken: 'somesetuptoken' })
|
|
|
|
|
.send({ username: USERNAME, email: EMAIL })
|
|
|
|
|
.end(function (error, result) {
|
|
|
|
|
expect(result).to.be.ok();
|
|
|
|
|
expect(result.statusCode).to.eql(400);
|
|
|
|
|
|
|
|
|
|
done();
|
|
|
|
|
});
|
2018-02-09 12:43:20 +01:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('activation fails with invalid password', function (done) {
|
|
|
|
|
superagent.post(SERVER_URL + '/api/v1/cloudron/activate')
|
2018-10-30 13:36:00 -07:00
|
|
|
.query({ setupToken: 'somesetuptoken' })
|
|
|
|
|
.send({ username: USERNAME, password: 'short', email: EMAIL })
|
|
|
|
|
.end(function (error, result) {
|
|
|
|
|
expect(result).to.be.ok();
|
|
|
|
|
expect(result.statusCode).to.eql(400);
|
|
|
|
|
|
|
|
|
|
done();
|
|
|
|
|
});
|
2018-02-09 12:43:20 +01:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('activation succeeds', function (done) {
|
|
|
|
|
superagent.post(SERVER_URL + '/api/v1/cloudron/activate')
|
2018-10-30 13:36:00 -07:00
|
|
|
.query({ setupToken: 'somesetuptoken' })
|
|
|
|
|
.send({ username: USERNAME, password: PASSWORD, email: EMAIL })
|
|
|
|
|
.end(function (error, result) {
|
|
|
|
|
expect(result).to.be.ok();
|
|
|
|
|
expect(result.statusCode).to.eql(201);
|
2018-02-09 12:43:20 +01:00
|
|
|
|
2018-10-30 13:36:00 -07:00
|
|
|
// stash token for further use
|
|
|
|
|
token = result.body.token;
|
2018-02-09 12:43:20 +01:00
|
|
|
|
2018-10-30 13:36:00 -07:00
|
|
|
done();
|
|
|
|
|
});
|
2018-02-09 12:43:20 +01:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('activating twice fails', function (done) {
|
|
|
|
|
superagent.post(SERVER_URL + '/api/v1/cloudron/activate')
|
2018-10-30 13:36:00 -07:00
|
|
|
.query({ setupToken: 'somesetuptoken' })
|
|
|
|
|
.send({ username: USERNAME, password: PASSWORD, email: EMAIL })
|
|
|
|
|
.end(function (error, result) {
|
|
|
|
|
expect(result).to.be.ok();
|
2018-12-07 14:35:04 -08:00
|
|
|
expect(result.statusCode).to.eql(409);
|
|
|
|
|
|
|
|
|
|
done();
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('dns setup after activation fails', function (done) {
|
|
|
|
|
superagent.post(SERVER_URL + '/api/v1/cloudron/setup')
|
|
|
|
|
.send({ dnsConfig: { provider: 'noop', domain: DOMAIN, DOMAIN, config: {} } })
|
|
|
|
|
.end(function (error, result) {
|
|
|
|
|
expect(result).to.be.ok();
|
2018-10-30 13:36:00 -07:00
|
|
|
expect(result.statusCode).to.eql(409);
|
|
|
|
|
|
|
|
|
|
done();
|
|
|
|
|
});
|
2018-02-09 12:43:20 +01:00
|
|
|
});
|
|
|
|
|
|
2016-06-01 16:31:47 -07:00
|
|
|
it('does not crash with invalid JSON', function (done) {
|
|
|
|
|
superagent.post(SERVER_URL + '/api/v1/users')
|
|
|
|
|
.query({ access_token: token })
|
|
|
|
|
.set('content-type', 'application/json')
|
2017-11-21 01:56:24 +01:00
|
|
|
.send('some invalid non-strict json')
|
|
|
|
|
.end(function (error, result) {
|
2017-11-27 18:05:16 -08:00
|
|
|
expect(result.statusCode).to.equal(400);
|
|
|
|
|
expect(result.body.message).to.be('Failed to parse body');
|
2017-11-21 01:56:24 +01:00
|
|
|
|
2017-11-27 18:05:16 -08:00
|
|
|
done();
|
|
|
|
|
});
|
2016-06-01 16:31:47 -07:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('does not crash with invalid string', function (done) {
|
|
|
|
|
superagent.post(SERVER_URL + '/api/v1/users')
|
|
|
|
|
.query({ access_token: token })
|
|
|
|
|
.set('content-type', 'application/x-www-form-urlencoded')
|
2017-11-21 01:56:24 +01:00
|
|
|
.send('some string')
|
|
|
|
|
.end(function (error, result) {
|
2017-11-27 18:05:16 -08:00
|
|
|
expect(result.statusCode).to.equal(400);
|
2017-11-21 01:56:24 +01:00
|
|
|
|
2017-11-27 18:05:16 -08:00
|
|
|
done();
|
|
|
|
|
});
|
2016-06-01 16:31:47 -07:00
|
|
|
});
|
|
|
|
|
});
|
