cloudron-box/src/routes/test/mail-test.js

'use strict';

/* global it:false */
/* global describe:false */
/* global before:false */
/* global after:false */

var async = require('async'),
    constants = require('../../constants.js'),
    crypto = require('crypto'),
    database = require('../../database.js'),
    expect = require('expect.js'),
    mail = require('../../mail.js'),
    maildb = require('../../maildb.js'),
    server = require('../../server.js'),
    settings = require('../../settings.js'),
    superagent = require('superagent'),
    userdb = require('../../userdb.js'),
    _ = require('underscore');

var SERVER_URL = 'http://localhost:' + constants.PORT;

const DASHBOARD_DOMAIN = {
    domain: 'admin.com',
    zoneName: 'admin.com',
    config: {},
    provider: 'noop',
    fallbackCertificate: null,
    tlsConfig: { provider: 'fallback' }
};

const DOMAIN_0 = {
    domain: 'example-mail-test.com',
    zoneName: 'example-mail-test.com',
    config: {},
    provider: 'noop',
    fallbackCertificate: null,
    tlsConfig: { provider: 'fallback' }
};
const USERNAME = 'superadmin', PASSWORD = 'Foobar?1337', EMAIL ='silly@me.com', MAILBOX_NAME = 'superman';
const LIST_NAME = 'devs';
var token = null;
var userId = '';

function setup(done) {
    async.series([
        server.start.bind(null),
        database._clear.bind(null),

        function dnsSetup(callback) {
            superagent.post(SERVER_URL + '/api/v1/cloudron/setup')
                .send({ dnsConfig: { provider: DASHBOARD_DOMAIN.provider, domain: DASHBOARD_DOMAIN.domain, config: DASHBOARD_DOMAIN.config, tlsConfig: { provider: 'fallback' } } })
                .end(function (error, result) {
                    expect(result).to.be.ok();
                    expect(result.statusCode).to.eql(200);

                    callback();
                });
        },

        function waitForSetup(done) {
            async.retry({ times: 5, interval: 4000 }, function (retryCallback) {
                superagent.get(SERVER_URL + '/api/v1/cloudron/status')
                    .end(function (error, result) {
                        if (!result || result.statusCode !== 200) return retryCallback(new Error('Bad result'));

                        if (!result.body.setup.active && result.body.setup.errorMessage === '' && result.body.adminFqdn) return retryCallback();

                        retryCallback(new Error('Not done yet: ' + JSON.stringify(result.body)));
                    });
            }, done);
        },

        function createAdmin(callback) {
            superagent.post(SERVER_URL + '/api/v1/cloudron/activate')
                .query({ setupToken: 'somesetuptoken' })
                .send({ username: USERNAME, password: PASSWORD, email: EMAIL })
                .end(function (error, result) {
                    expect(error).to.not.be.ok();
                    expect(result).to.be.ok();
                    expect(result.statusCode).to.eql(201);

                    // stash token for further use
                    token = result.body.token;

                    callback();
                });
        },

        function createDomain(callback) {
            superagent.post(SERVER_URL + '/api/v1/domains')
                .query({ access_token: token })
                .send(DOMAIN_0)
                .end(function (error, result) {
                    expect(result.statusCode).to.equal(201);

                    callback();
                });
        },

        function getUserId(callback) {
            userdb.getByUsername(USERNAME, function (error, result) {
                expect(error).to.not.be.ok();

                userId = result.id;

                callback();
            });
        }
    ], done);
}

function cleanup(done) {
    database._clear(function (error) {
        expect(!error).to.be.ok();

        server.stop(done);
    });
}

describe('Mail API', function () {
    before(setup);
    after(cleanup);

    describe('crud', function () {
        it('cannot get non-existing domain', function (done) {
            superagent.get(SERVER_URL + '/api/v1/mail/doesnotexist.com')
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(404);
                    done();
                });
        });

        it('can get domain', function (done) {
            superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain)
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(200);
                    expect(res.body.domain).to.equal(DOMAIN_0.domain);
                    expect(res.body.enabled).to.equal(false);
                    expect(res.body.mailFromValidation).to.equal(true);
                    expect(res.body.catchAll).to.be.an(Array);
                    expect(res.body.catchAll.length).to.equal(0);
                    expect(res.body.relay).to.be.an('object');
                    expect(res.body.relay.provider).to.equal('cloudron-smtp');
                    done();
                });
        });
    });

    describe('status', function () {
        var resolve = null;
        var dnsAnswerQueue = [];
        var dkimDomain, spfDomain, mxDomain, dmarcDomain;

        before(function (done) {
            var dns = require('../../native-dns.js');

            // replace dns resolveTxt()
            resolve = dns.resolve;
            dns.resolve = function (hostname, type, options, callback) {
                expect(hostname).to.be.a('string');
                expect(callback).to.be.a('function');

                if (!dnsAnswerQueue[hostname] || !(type in dnsAnswerQueue[hostname])) return callback(new Error('no mock answer'));

                if (dnsAnswerQueue[hostname][type] === null) return callback(new Error({ code: 'ENODATA'} ));

                callback(null, dnsAnswerQueue[hostname][type]);
            };

            const suffix = crypto.createHash('sha256').update(settings.dashboardDomain()).digest('hex').substr(0, 6);
            dkimDomain = `cloudron-${suffix}._domainkey.${DOMAIN_0.domain}`;
            spfDomain = DOMAIN_0.domain;
            mxDomain = DOMAIN_0.domain;
            dmarcDomain = '_dmarc.' + DOMAIN_0.domain;

            superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/enable')
                .query({ access_token: token })
                .send({ enabled: true })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(202);

                    done();
                });
        });

        after(function (done) {
            var dns = require('../../native-dns.js');

            dns.resolve = resolve;

            done();
        });

        it('does not fail when dns errors', function (done) {
            superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/status')
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(200);
                    done();
                });
        });

        function clearDnsAnswerQueue() {
            dnsAnswerQueue = { };
            dnsAnswerQueue[dkimDomain] =  { };
            dnsAnswerQueue[spfDomain] =  { };
            dnsAnswerQueue[mxDomain] =  { };
            dnsAnswerQueue[dmarcDomain] =  { };
        }

        it('succeeds with dns errors', function (done) {
            clearDnsAnswerQueue();

            superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/status')
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(200);

                    expect(res.body.dns.dkim).to.be.an('object');
                    expect(res.body.dns.dkim.domain).to.eql(dkimDomain);
                    expect(res.body.dns.dkim.type).to.eql('TXT');
                    expect(res.body.dns.dkim.value).to.eql(null);
                    expect(res.body.dns.dkim.expected).to.eql('v=DKIM1; t=s; p=' + mail._readDkimPublicKeySync(DOMAIN_0.domain));
                    expect(res.body.dns.dkim.status).to.eql(false);

                    expect(res.body.dns.spf).to.be.an('object');
                    expect(res.body.dns.spf.domain).to.eql(spfDomain);
                    expect(res.body.dns.spf.type).to.eql('TXT');
                    expect(res.body.dns.spf.value).to.eql(null);
                    expect(res.body.dns.spf.expected).to.eql('v=spf1 a:' + settings.dashboardFqdn() + ' ~all');
                    expect(res.body.dns.spf.status).to.eql(false);

                    expect(res.body.dns.dmarc).to.be.an('object');
                    expect(res.body.dns.dmarc.type).to.eql('TXT');
                    expect(res.body.dns.dmarc.value).to.eql(null);
                    expect(res.body.dns.dmarc.expected).to.eql('v=DMARC1; p=reject; pct=100');
                    expect(res.body.dns.dmarc.status).to.eql(false);

                    expect(res.body.dns.mx).to.be.an('object');
                    expect(res.body.dns.mx.type).to.eql('MX');
                    expect(res.body.dns.mx.value).to.eql(null);
                    expect(res.body.dns.mx.expected).to.eql('10 ' + settings.mailFqdn() + '.');
                    expect(res.body.dns.mx.status).to.eql(false);

                    expect(res.body.dns.ptr).to.be.an('object');
                    expect(res.body.dns.ptr.type).to.eql('PTR');
                    // expect(res.body.ptr.value).to.eql(null); this will be anything random
                    expect(res.body.dns.ptr.expected).to.eql(settings.mailFqdn());
                    expect(res.body.dns.ptr.status).to.eql(false);

                    done();
                });
        });

        it('succeeds with "undefined" spf, dkim, dmarc, mx, ptr records', function (done) {
            clearDnsAnswerQueue();

            dnsAnswerQueue[dkimDomain].TXT = null;
            dnsAnswerQueue[spfDomain].TXT = null;
            dnsAnswerQueue[mxDomain].MX = null;
            dnsAnswerQueue[dmarcDomain].TXT = null;

            superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/status')
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(200);

                    expect(res.body.dns.spf).to.be.an('object');
                    expect(res.body.dns.spf.expected).to.eql('v=spf1 a:' + settings.dashboardFqdn() + ' ~all');
                    expect(res.body.dns.spf.status).to.eql(false);
                    expect(res.body.dns.spf.value).to.eql(null);

                    expect(res.body.dns.dkim).to.be.an('object');
                    expect(res.body.dns.dkim.expected).to.eql('v=DKIM1; t=s; p=' + mail._readDkimPublicKeySync(DOMAIN_0.domain));
                    expect(res.body.dns.dkim.status).to.eql(false);
                    expect(res.body.dns.dkim.value).to.eql(null);

                    expect(res.body.dns.dmarc).to.be.an('object');
                    expect(res.body.dns.dmarc.expected).to.eql('v=DMARC1; p=reject; pct=100');
                    expect(res.body.dns.dmarc.status).to.eql(false);
                    expect(res.body.dns.dmarc.value).to.eql(null);

                    expect(res.body.dns.mx).to.be.an('object');
                    expect(res.body.dns.mx.status).to.eql(false);
                    expect(res.body.dns.mx.expected).to.eql('10 ' + settings.mailFqdn() + '.');
                    expect(res.body.dns.mx.value).to.eql(null);

                    expect(res.body.dns.ptr).to.be.an('object');
                    expect(res.body.dns.ptr.expected).to.eql(settings.mailFqdn());
                    expect(res.body.dns.ptr.status).to.eql(false);
                    // expect(res.body.ptr.value).to.eql(null); this will be anything random

                    done();
                });
        });

        it('succeeds with all different spf, dkim, dmarc, mx, ptr records', function (done) {
            clearDnsAnswerQueue();

            dnsAnswerQueue[mxDomain].MX = [ { priority: '20', exchange: settings.mailFqdn() }, { priority: '10', exchange: 'some.other.server' } ];
            dnsAnswerQueue[dmarcDomain].TXT = [['v=DMARC2; p=reject; pct=100']];
            dnsAnswerQueue[dkimDomain].TXT = [['v=DKIM2; t=s; p=' + mail._readDkimPublicKeySync(DOMAIN_0.domain)]];
            dnsAnswerQueue[spfDomain].TXT = [['v=spf1 a:random.com ~all']];

            superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/status')
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(200);

                    expect(res.body.dns.spf).to.be.an('object');
                    expect(res.body.dns.spf.expected).to.eql('v=spf1 a:' + settings.dashboardFqdn() + ' a:random.com ~all');
                    expect(res.body.dns.spf.status).to.eql(false);
                    expect(res.body.dns.spf.value).to.eql('v=spf1 a:random.com ~all');

                    expect(res.body.dns.dkim).to.be.an('object');
                    expect(res.body.dns.dkim.expected).to.eql('v=DKIM1; t=s; p=' + mail._readDkimPublicKeySync(DOMAIN_0.domain));
                    expect(res.body.dns.dkim.status).to.eql(true); // as long as p= matches we are good
                    expect(res.body.dns.dkim.value).to.eql('v=DKIM2; t=s; p=' + mail._readDkimPublicKeySync(DOMAIN_0.domain));

                    expect(res.body.dns.dmarc).to.be.an('object');
                    expect(res.body.dns.dmarc.expected).to.eql('v=DMARC1; p=reject; pct=100');
                    expect(res.body.dns.dmarc.status).to.eql(false);
                    expect(res.body.dns.dmarc.value).to.eql('v=DMARC2; p=reject; pct=100');

                    expect(res.body.dns.mx).to.be.an('object');
                    expect(res.body.dns.mx.status).to.eql(true);
                    expect(res.body.dns.mx.expected).to.eql('10 ' + settings.mailFqdn() + '.');
                    expect(res.body.dns.mx.value).to.eql('20 ' + settings.mailFqdn() + '. 10 some.other.server.');

                    expect(res.body.dns.ptr).to.be.an('object');
                    expect(res.body.dns.ptr.expected).to.eql(settings.mailFqdn());
                    expect(res.body.dns.ptr.status).to.eql(false);
                    // expect(res.body.ptr.value).to.eql(null); this will be anything random

                    expect(res.body.relay).to.be.an('object');

                    done();
                });
        });

        it('succeeds with existing embedded spf', function (done) {
            clearDnsAnswerQueue();

            dnsAnswerQueue[spfDomain].TXT = [['v=spf1 a:example.com a:' + settings.mailFqdn() + ' ~all']];

            superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/status')
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(200);

                    expect(res.body.dns.spf).to.be.an('object');
                    expect(res.body.dns.spf.domain).to.eql(spfDomain);
                    expect(res.body.dns.spf.type).to.eql('TXT');
                    expect(res.body.dns.spf.value).to.eql('v=spf1 a:example.com a:' + settings.mailFqdn() + ' ~all');
                    expect(res.body.dns.spf.expected).to.eql('v=spf1 a:example.com a:' + settings.mailFqdn() + ' ~all');
                    expect(res.body.dns.spf.status).to.eql(true);

                    done();
                });
        });

        it('succeeds with modified DMARC1 values', function (done) {
            clearDnsAnswerQueue();

            dnsAnswerQueue[dmarcDomain].TXT = [['v=DMARC1; p=reject; rua=mailto:rua@example.com; pct=100']];

            superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/status')
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(200);

                    expect(res.body.dns.dmarc).to.be.an('object');
                    expect(res.body.dns.dmarc.expected).to.eql('v=DMARC1; p=reject; pct=100');
                    expect(res.body.dns.dmarc.status).to.eql(true);
                    expect(res.body.dns.dmarc.value).to.eql('v=DMARC1; p=reject; rua=mailto:rua@example.com; pct=100');

                    done();
                });
        });

        it('succeeds with all correct records', function (done) {
            clearDnsAnswerQueue();

            dnsAnswerQueue[mxDomain].MX = [ { priority: '10', exchange: settings.mailFqdn() } ];
            dnsAnswerQueue[dmarcDomain].TXT = [['v=DMARC1; p=reject; pct=100']];
            dnsAnswerQueue[dkimDomain].TXT = [['v=DKIM1; t=s; p=', mail._readDkimPublicKeySync(DOMAIN_0.domain) ]];
            dnsAnswerQueue[spfDomain].TXT = [['v=spf1 a:' + settings.dashboardFqdn() + ' ~all']];

            superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/status')
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(200);

                    expect(res.body.dns.dkim).to.be.an('object');
                    expect(res.body.dns.dkim.domain).to.eql(dkimDomain);
                    expect(res.body.dns.dkim.type).to.eql('TXT');
                    expect(res.body.dns.dkim.value).to.eql('v=DKIM1; t=s; p=' + mail._readDkimPublicKeySync(DOMAIN_0.domain));
                    expect(res.body.dns.dkim.expected).to.eql('v=DKIM1; t=s; p=' + mail._readDkimPublicKeySync(DOMAIN_0.domain));
                    expect(res.body.dns.dkim.status).to.eql(true);

                    expect(res.body.dns.spf).to.be.an('object');
                    expect(res.body.dns.spf.domain).to.eql(spfDomain);
                    expect(res.body.dns.spf.type).to.eql('TXT');
                    expect(res.body.dns.spf.value).to.eql('v=spf1 a:' + settings.dashboardFqdn() + ' ~all');
                    expect(res.body.dns.spf.expected).to.eql('v=spf1 a:' + settings.dashboardFqdn() + ' ~all');
                    expect(res.body.dns.spf.status).to.eql(true);

                    expect(res.body.dns.dmarc).to.be.an('object');
                    expect(res.body.dns.dmarc.expected).to.eql('v=DMARC1; p=reject; pct=100');
                    expect(res.body.dns.dmarc.status).to.eql(true);
                    expect(res.body.dns.dmarc.value).to.eql('v=DMARC1; p=reject; pct=100');

                    expect(res.body.dns.mx).to.be.an('object');
                    expect(res.body.dns.mx.status).to.eql(true);
                    expect(res.body.dns.mx.expected).to.eql('10 ' + settings.mailFqdn() + '.');
                    expect(res.body.dns.mx.value).to.eql('10 ' + settings.mailFqdn() + '.');

                    done();
                });
        });
    });

    describe('mail from validation', function () {
        it('get mail from validation succeeds', function (done) {
            superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain)
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(200);
                    expect(res.body.mailFromValidation).to.eql(true);
                    done();
                });
        });

        it('cannot set without enabled field', function (done) {
            superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mail_from_validation')
                .query({ access_token: token })
                .send({ })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(400);
                    done();
                });
        });

        it('can set with enabled field', function (done) {
            superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mail_from_validation')
                .query({ access_token: token })
                .send({ enabled: false })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(202);
                    done();
                });
        });
    });

    describe('catch_all', function () {
        it('get catch_all succeeds', function (done) {
            superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain)
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(200);
                    expect(res.body.catchAll).to.eql([ ]);
                    done();
                });
        });

        it('cannot set without addresses field', function (done) {
            superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/catch_all')
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(400);
                    done();
                });
        });

        it('cannot set with bad addresses field', function (done) {
            superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/catch_all')
                .query({ access_token: token })
                .send({ addresses: [ 'user1', 123 ] })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(400);
                    done();
                });
        });

        it('set succeeds', function (done) {
            superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/catch_all')
                .query({ access_token: token })
                .send({ addresses: [ 'user1' ] })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(202);
                    done();
                });
        });

        it('get succeeds', function (done) {
            superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain)
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(200);
                    expect(res.body.catchAll).to.eql([ 'user1' ]);
                    done();
                });
        });
    });

    describe('mail relay', function () {
        it('get mail relay succeeds', function (done) {
            superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain)
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(200);
                    expect(res.body.relay).to.eql({ provider: 'cloudron-smtp' });
                    done();
                });
        });

        it('cannot set without provider field', function (done) {
            superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/relay')
                .query({ access_token: token })
                .send({ })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(400);
                    done();
                });
        });

        it('cannot set with bad host', function (done) {
            superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/relay')
                .query({ access_token: token })
                .send({ provider: 'external-smtp', host: true })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(400);
                    done();
                });
        });

        it('set fails because mail server is unreachable', function (done) {
            superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/relay')
                .query({ access_token: token })
                .send({ provider: 'external-smtp', host: 'host', port: 25, username: 'u', password: 'p', tls: true })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(400);
                    done();
                });
        });

        it('get succeeds', function (done) {
            var relay = { provider: 'external-smtp', host: 'host', port: 25, username: 'u', password: 'p', tls: true };

            maildb.update(DOMAIN_0.domain, { relay: relay }, function (error) { // skip the mail server verify()
                expect(error).to.not.be.ok();

                superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain)
                    .query({ access_token: token })
                    .end(function (err, res) {
                        expect(res.statusCode).to.equal(200);
                        expect(_.omit(res.body.relay, 'password')).to.eql(_.omit(relay, 'password'));
                        done();
                    });
            });
        });
    });

    describe('mailboxes', function () {
        it('add succeeds', function (done) {
            superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes')
                .send({ name: MAILBOX_NAME, ownerId: userId, ownerType: 'user', active: true })
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(201);
                    done();
                });
        });

        it('cannot add again', function (done) {
            superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes')
                .send({ name: MAILBOX_NAME, ownerId: userId, ownerType: 'user', active: true })
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(409);
                    done();
                });
        });

        it('get fails if not exist', function (done) {
            superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes/' + 'someuserdoesnotexist')
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(404);
                    done();
                });
        });

        it('get succeeds', function (done) {
            superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes/' + MAILBOX_NAME)
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(200);
                    expect(res.body.mailbox).to.be.an('object');
                    expect(res.body.mailbox.name).to.equal(MAILBOX_NAME);
                    expect(res.body.mailbox.ownerId).to.equal(userId);
                    expect(res.body.mailbox.ownerType).to.equal('user');
                    expect(res.body.mailbox.aliasName).to.equal(null);
                    expect(res.body.mailbox.aliasDomain).to.equal(null);
                    expect(res.body.mailbox.domain).to.equal(DOMAIN_0.domain);
                    done();
                });
        });

        it('listing succeeds', function (done) {
            superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes')
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(200);
                    expect(res.body.mailboxes.length).to.eql(1);
                    expect(res.body.mailboxes[0]).to.be.an('object');
                    expect(res.body.mailboxes[0].name).to.equal(MAILBOX_NAME);
                    expect(res.body.mailboxes[0].ownerId).to.equal(userId);
                    expect(res.body.mailboxes[0].ownerType).to.equal('user');
                    expect(res.body.mailboxes[0].aliases).to.eql([]);
                    expect(res.body.mailboxes[0].domain).to.equal(DOMAIN_0.domain);
                    done();
                });
        });

        it('disable fails even if not exist', function (done) {
            superagent.del(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes/' + 'someuserdoesnotexist')
                .send({ deleteMails: false })
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(404);
                    done();
                });
        });

        it('disable succeeds', function (done) {
            superagent.del(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes/' + MAILBOX_NAME)
                .send({ deleteMails: false })
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(201);
                    superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes/' + MAILBOX_NAME)
                        .query({ access_token: token })
                        .end(function (err, res) {
                            expect(res.statusCode).to.equal(404);
                            done();
                        });
                });
        });
    });

    describe('aliases', function () {
        after(function (done) {
            mail._removeMailboxes(DOMAIN_0.domain, function (error) {
                if (error) return done(error);
                done();
            });
        });

        it('add the mailbox', function (done) {
            superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes')
                .send({ name: MAILBOX_NAME, ownerId: userId, ownerType: 'user', active: true })
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(201);
                    done();
                });
        });

        it('set fails if aliases is missing', function (done) {
            superagent.put(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes/' + MAILBOX_NAME + '/aliases')
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(400);
                    done();
                });
        });

        it('set fails if user does not exist', function (done) {
            superagent.put(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes/randomuser/aliases')
                .send({ aliases: [{ name: 'hello', domain: DOMAIN_0.domain}, {name: 'there', domain: DOMAIN_0.domain}] })
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(404);
                    done();
                });
        });

        it('set fails if aliases is the wrong type', function (done) {
            superagent.put(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes/' + MAILBOX_NAME + '/aliases')
                .send({ aliases: 'hello, there' })
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(400);
                    done();
                });
        });

        it('set succeeds', function (done) {
            superagent.put(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes/' + MAILBOX_NAME + '/aliases')
                .send({ aliases: [{ name: 'hello', domain: DOMAIN_0.domain}, {name: 'there', domain: DOMAIN_0.domain}] })
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(202);
                    done();
                });
        });

        it('get succeeds', function (done) {
            superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes/' + MAILBOX_NAME + '/aliases')
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(200);
                    expect(res.body.aliases).to.eql([{ name: 'hello', domain: DOMAIN_0.domain}, {name: 'there', domain: DOMAIN_0.domain}]);
                    done();
                });
        });

        it('get fails if mailbox does not exist', function (done) {
            superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes/somerandomuser/aliases')
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(404);
                    done();
                });
        });
    });

    describe('mailinglists', function () {
        after(function (done) {
            mail._removeMailboxes(DOMAIN_0.domain, function (error) {
                if (error) return done(error);

                done();
            });
        });

        it('add fails without groupId', function (done) {
            superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/lists')
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(400);
                    done();
                });
        });

        it('add fails with invalid groupId', function (done) {
            superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/lists')
                .send({ groupId: {} })
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(400);
                    done();
                });
        });

        it('add fails without members array', function (done) {
            superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/lists')
                .send({ name: LIST_NAME })
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(400);
                    done();
                });
        });

        it('add succeeds', function (done) {
            superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/lists')
                .send({ name: LIST_NAME, members: [ `admin2@${DOMAIN_0.domain}`, `${USERNAME}@${DOMAIN_0.domain}`], membersOnly: false, active: true })
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(201);
                    done();
                });
        });

        it('add twice fails', function (done) {
            superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/lists')
                .send({ name: LIST_NAME, members: [ `admin2@${DOMAIN_0.domain}`, `${USERNAME}@${DOMAIN_0.domain}`], membersOnly: false, active: true })
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(409);
                    done();
                });
        });

        it('get fails if not exist', function (done) {
            superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/lists/' + 'doesnotexist')
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(404);
                    done();
                });
        });

        it('get succeeds', function (done) {
            superagent.get(SERVER_URL + `/api/v1/mail/${DOMAIN_0.domain}/lists/${LIST_NAME}`)
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(200);
                    expect(res.body.list).to.be.an('object');
                    expect(res.body.list.name).to.equal(LIST_NAME);
                    expect(res.body.list.ownerId).to.equal('admin');
                    expect(res.body.list.aliasName).to.equal(null);
                    expect(res.body.list.domain).to.equal(DOMAIN_0.domain);
                    expect(res.body.list.members).to.eql([ `admin2@${DOMAIN_0.domain}`, `superadmin@${DOMAIN_0.domain}` ]);
                    expect(res.body.list.membersOnly).to.be(false);
                    done();
                });
        });

        it('get all succeeds', function (done) {
            superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/lists')
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(200);
                    expect(res.body.lists).to.be.an(Array);
                    expect(res.body.lists.length).to.equal(1);
                    expect(res.body.lists[0].name).to.equal(LIST_NAME);
                    expect(res.body.lists[0].ownerId).to.equal('admin');
                    expect(res.body.lists[0].aliasName).to.equal(null);
                    expect(res.body.lists[0].domain).to.equal(DOMAIN_0.domain);
                    expect(res.body.lists[0].members).to.eql([ `admin2@${DOMAIN_0.domain}`, `superadmin@${DOMAIN_0.domain}` ]);
                    expect(res.body.lists[0].membersOnly).to.be(false);
                    done();
                });
        });

        it('del fails if list does not exist', function (done) {
            superagent.del(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/lists/' + 'doesnotexist')
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(404);
                    done();
                });
        });

        it('del succeeds', function (done) {
            superagent.del(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/lists/' + LIST_NAME)
                .query({ access_token: token })
                .end(function (err, res) {
                    expect(res.statusCode).to.equal(204);

                    superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/lists/' + LIST_NAME)
                        .query({ access_token: token })
                        .end(function (err, res) {
                            expect(res.statusCode).to.equal(404);
                            done();
                        });
                });
        });
    });
});