'use strict'; /* global it:false */ /* global describe:false */ /* global before:false */ /* global after:false */ var async = require('async'), constants = require('../../constants.js'), database = require('../../database.js'), expect = require('expect.js'), mail = require('../../mail.js'), maildb = require('../../maildb.js'), server = require('../../server.js'), settings = require('../../settings.js'), superagent = require('superagent'), userdb = require('../../userdb.js'), _ = require('underscore'); var SERVER_URL = 'http://localhost:' + constants.PORT; const ADMIN_DOMAIN = { domain: 'admin.com', zoneName: 'admin.com', config: {}, provider: 'noop', fallbackCertificate: null, tlsConfig: { provider: 'fallback' } }; const DOMAIN_0 = { domain: 'example-mail-test.com', zoneName: 'example-mail-test.com', config: {}, provider: 'noop', fallbackCertificate: null, tlsConfig: { provider: 'fallback' } }; const USERNAME = 'superadmin', PASSWORD = 'Foobar?1337', EMAIL ='silly@me.com', MAILBOX_NAME = 'superman'; const LIST_NAME = 'devs'; var token = null; var userId = ''; function setup(done) { async.series([ server.start.bind(null), database._clear.bind(null), function dnsSetup(callback) { superagent.post(SERVER_URL + '/api/v1/cloudron/setup') .send({ dnsConfig: { provider: ADMIN_DOMAIN.provider, domain: ADMIN_DOMAIN.domain, config: ADMIN_DOMAIN.config, tlsConfig: { provider: 'fallback' } } }) .end(function (error, result) { expect(result).to.be.ok(); expect(result.statusCode).to.eql(200); callback(); }); }, function waitForSetup(done) { async.retry({ times: 5, interval: 4000 }, function (retryCallback) { superagent.get(SERVER_URL + '/api/v1/cloudron/status') .end(function (error, result) { if (!result || result.statusCode !== 200) return retryCallback(new Error('Bad result')); console.dir(result.body); if (!result.body.setup.active && result.body.setup.errorMessage === '' && result.body.adminFqdn) return retryCallback(); retryCallback(new Error('Not done yet: ' + JSON.stringify(result.body))); }); }, done); }, function createAdmin(callback) { superagent.post(SERVER_URL + '/api/v1/cloudron/activate') .query({ setupToken: 'somesetuptoken' }) .send({ username: USERNAME, password: PASSWORD, email: EMAIL }) .end(function (error, result) { expect(error).to.not.be.ok(); expect(result).to.be.ok(); expect(result.statusCode).to.eql(201); // stash token for further use token = result.body.token; callback(); }); }, function createDomain(callback) { superagent.post(SERVER_URL + '/api/v1/domains') .query({ access_token: token }) .send(DOMAIN_0) .end(function (error, result) { expect(result.statusCode).to.equal(201); callback(); }); }, function getUserId(callback) { userdb.getByUsername(USERNAME, function (error, result) { expect(error).to.not.be.ok(); userId = result.id; callback(); }); } ], done); } function cleanup(done) { database._clear(function (error) { expect(!error).to.be.ok(); server.stop(done); }); } describe('Mail API', function () { before(setup); after(cleanup); describe('crud', function () { it('cannot add non-existing domain', function (done) { superagent.post(SERVER_URL + '/api/v1/mail') .query({ access_token: token }) .send({ domain: 'doesnotexist.com' }) .end(function (err, res) { expect(res.statusCode).to.equal(404); done(); }); }); it('domain must be a string', function (done) { superagent.post(SERVER_URL + '/api/v1/mail') .query({ access_token: token }) .send({ domain: ['doesnotexist.com'] }) .end(function (err, res) { expect(res.statusCode).to.equal(400); done(); }); }); it('can add domain', function (done) { superagent.post(SERVER_URL + '/api/v1/mail') .query({ access_token: token }) .send({ domain: DOMAIN_0.domain }) .end(function (err, res) { expect(res.statusCode).to.equal(201); done(); }); }); it('cannot add domain twice', function (done) { superagent.post(SERVER_URL + '/api/v1/mail') .query({ access_token: token }) .send({ domain: DOMAIN_0.domain }) .end(function (err, res) { expect(res.statusCode).to.equal(409); done(); }); }); it('cannot get non-existing domain', function (done) { superagent.get(SERVER_URL + '/api/v1/mail/doesnotexist.com') .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(404); done(); }); }); it('can get domain', function (done) { superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(200); expect(res.body.domain).to.equal(DOMAIN_0.domain); expect(res.body.enabled).to.equal(false); expect(res.body.mailFromValidation).to.equal(true); expect(res.body.catchAll).to.be.an(Array); expect(res.body.catchAll.length).to.equal(0); expect(res.body.relay).to.be.an('object'); expect(res.body.relay.provider).to.equal('cloudron-smtp'); done(); }); }); it('cannot delete non-existing domain', function (done) { superagent.del(SERVER_URL + '/api/v1/mail/doesnotexist.com') .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(404); done(); }); }); it('cannot delete admin mail domain', function (done) { superagent.del(SERVER_URL + '/api/v1/mail/' + ADMIN_DOMAIN.domain) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(409); done(); }); }); it('can delete admin mail domain', function (done) { superagent.del(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(204); done(); }); }); }); describe('status', function () { var resolve = null; var dnsAnswerQueue = []; var dkimDomain, spfDomain, mxDomain, dmarcDomain; before(function (done) { var dns = require('../../native-dns.js'); // replace dns resolveTxt() resolve = dns.resolve; dns.resolve = function (hostname, type, options, callback) { expect(hostname).to.be.a('string'); expect(callback).to.be.a('function'); if (!dnsAnswerQueue[hostname] || !(type in dnsAnswerQueue[hostname])) return callback(new Error('no mock answer')); if (dnsAnswerQueue[hostname][type] === null) return callback(new Error({ code: 'ENODATA'} )); callback(null, dnsAnswerQueue[hostname][type]); }; dkimDomain = 'cloudron-admincom._domainkey.' + DOMAIN_0.domain; spfDomain = DOMAIN_0.domain; mxDomain = DOMAIN_0.domain; dmarcDomain = '_dmarc.' + DOMAIN_0.domain; superagent.post(SERVER_URL + '/api/v1/mail') .query({ access_token: token }) .send({ domain: DOMAIN_0.domain }) .end(function (err, res) { expect(res.statusCode).to.equal(201); superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/enable') .query({ access_token: token }) .send({ enabled: true }) .end(function (err, res) { expect(res.statusCode).to.equal(202); done(); }); }); }); after(function (done) { var dns = require('../../native-dns.js'); dns.resolve = resolve; superagent.del(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(204); done(); }); }); it('does not fail when dns errors', function (done) { superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/status') .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(200); done(); }); }); function clearDnsAnswerQueue() { dnsAnswerQueue = { }; dnsAnswerQueue[dkimDomain] = { }; dnsAnswerQueue[spfDomain] = { }; dnsAnswerQueue[mxDomain] = { }; dnsAnswerQueue[dmarcDomain] = { }; } it('succeeds with dns errors', function (done) { clearDnsAnswerQueue(); superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/status') .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(200); expect(res.body.dns.dkim).to.be.an('object'); expect(res.body.dns.dkim.domain).to.eql(dkimDomain); expect(res.body.dns.dkim.type).to.eql('TXT'); expect(res.body.dns.dkim.value).to.eql(null); expect(res.body.dns.dkim.expected).to.eql('v=DKIM1; t=s; p=' + mail._readDkimPublicKeySync(DOMAIN_0.domain)); expect(res.body.dns.dkim.status).to.eql(false); expect(res.body.dns.spf).to.be.an('object'); expect(res.body.dns.spf.domain).to.eql(spfDomain); expect(res.body.dns.spf.type).to.eql('TXT'); expect(res.body.dns.spf.value).to.eql(null); expect(res.body.dns.spf.expected).to.eql('v=spf1 a:' + settings.adminFqdn() + ' ~all'); expect(res.body.dns.spf.status).to.eql(false); expect(res.body.dns.dmarc).to.be.an('object'); expect(res.body.dns.dmarc.type).to.eql('TXT'); expect(res.body.dns.dmarc.value).to.eql(null); expect(res.body.dns.dmarc.expected).to.eql('v=DMARC1; p=reject; pct=100'); expect(res.body.dns.dmarc.status).to.eql(false); expect(res.body.dns.mx).to.be.an('object'); expect(res.body.dns.mx.type).to.eql('MX'); expect(res.body.dns.mx.value).to.eql(null); expect(res.body.dns.mx.expected).to.eql('10 ' + settings.mailFqdn() + '.'); expect(res.body.dns.mx.status).to.eql(false); expect(res.body.dns.ptr).to.be.an('object'); expect(res.body.dns.ptr.type).to.eql('PTR'); // expect(res.body.ptr.value).to.eql(null); this will be anything random expect(res.body.dns.ptr.expected).to.eql(settings.mailFqdn()); expect(res.body.dns.ptr.status).to.eql(false); done(); }); }); it('succeeds with "undefined" spf, dkim, dmarc, mx, ptr records', function (done) { clearDnsAnswerQueue(); dnsAnswerQueue[dkimDomain].TXT = null; dnsAnswerQueue[spfDomain].TXT = null; dnsAnswerQueue[mxDomain].MX = null; dnsAnswerQueue[dmarcDomain].TXT = null; superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/status') .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(200); expect(res.body.dns.spf).to.be.an('object'); expect(res.body.dns.spf.expected).to.eql('v=spf1 a:' + settings.adminFqdn() + ' ~all'); expect(res.body.dns.spf.status).to.eql(false); expect(res.body.dns.spf.value).to.eql(null); expect(res.body.dns.dkim).to.be.an('object'); expect(res.body.dns.dkim.expected).to.eql('v=DKIM1; t=s; p=' + mail._readDkimPublicKeySync(DOMAIN_0.domain)); expect(res.body.dns.dkim.status).to.eql(false); expect(res.body.dns.dkim.value).to.eql(null); expect(res.body.dns.dmarc).to.be.an('object'); expect(res.body.dns.dmarc.expected).to.eql('v=DMARC1; p=reject; pct=100'); expect(res.body.dns.dmarc.status).to.eql(false); expect(res.body.dns.dmarc.value).to.eql(null); expect(res.body.dns.mx).to.be.an('object'); expect(res.body.dns.mx.status).to.eql(false); expect(res.body.dns.mx.expected).to.eql('10 ' + settings.mailFqdn() + '.'); expect(res.body.dns.mx.value).to.eql(null); expect(res.body.dns.ptr).to.be.an('object'); expect(res.body.dns.ptr.expected).to.eql(settings.mailFqdn()); expect(res.body.dns.ptr.status).to.eql(false); // expect(res.body.ptr.value).to.eql(null); this will be anything random done(); }); }); it('succeeds with all different spf, dkim, dmarc, mx, ptr records', function (done) { clearDnsAnswerQueue(); dnsAnswerQueue[mxDomain].MX = [ { priority: '20', exchange: settings.mailFqdn() }, { priority: '30', exchange: settings.mailFqdn() } ]; dnsAnswerQueue[dmarcDomain].TXT = [['v=DMARC2; p=reject; pct=100']]; dnsAnswerQueue[dkimDomain].TXT = [['v=DKIM2; t=s; p=' + mail._readDkimPublicKeySync(DOMAIN_0.domain)]]; dnsAnswerQueue[spfDomain].TXT = [['v=spf1 a:random.com ~all']]; superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/status') .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(200); expect(res.body.dns.spf).to.be.an('object'); expect(res.body.dns.spf.expected).to.eql('v=spf1 a:' + settings.adminFqdn() + ' a:random.com ~all'); expect(res.body.dns.spf.status).to.eql(false); expect(res.body.dns.spf.value).to.eql('v=spf1 a:random.com ~all'); expect(res.body.dns.dkim).to.be.an('object'); expect(res.body.dns.dkim.expected).to.eql('v=DKIM1; t=s; p=' + mail._readDkimPublicKeySync(DOMAIN_0.domain)); expect(res.body.dns.dkim.status).to.eql(false); expect(res.body.dns.dkim.value).to.eql('v=DKIM2; t=s; p=' + mail._readDkimPublicKeySync(DOMAIN_0.domain)); expect(res.body.dns.dmarc).to.be.an('object'); expect(res.body.dns.dmarc.expected).to.eql('v=DMARC1; p=reject; pct=100'); expect(res.body.dns.dmarc.status).to.eql(false); expect(res.body.dns.dmarc.value).to.eql('v=DMARC2; p=reject; pct=100'); expect(res.body.dns.mx).to.be.an('object'); expect(res.body.dns.mx.status).to.eql(false); expect(res.body.dns.mx.expected).to.eql('10 ' + settings.mailFqdn() + '.'); expect(res.body.dns.mx.value).to.eql('20 ' + settings.mailFqdn() + '. 30 ' + settings.mailFqdn() + '.'); expect(res.body.dns.ptr).to.be.an('object'); expect(res.body.dns.ptr.expected).to.eql(settings.mailFqdn()); expect(res.body.dns.ptr.status).to.eql(false); // expect(res.body.ptr.value).to.eql(null); this will be anything random expect(res.body.relay).to.be.an('object'); done(); }); }); it('succeeds with existing embedded spf', function (done) { clearDnsAnswerQueue(); dnsAnswerQueue[spfDomain].TXT = [['v=spf1 a:example.com a:' + settings.mailFqdn() + ' ~all']]; superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/status') .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(200); expect(res.body.dns.spf).to.be.an('object'); expect(res.body.dns.spf.domain).to.eql(spfDomain); expect(res.body.dns.spf.type).to.eql('TXT'); expect(res.body.dns.spf.value).to.eql('v=spf1 a:example.com a:' + settings.mailFqdn() + ' ~all'); expect(res.body.dns.spf.expected).to.eql('v=spf1 a:example.com a:' + settings.mailFqdn() + ' ~all'); expect(res.body.dns.spf.status).to.eql(true); done(); }); }); it('succeeds with modified DMARC1 values', function (done) { clearDnsAnswerQueue(); dnsAnswerQueue[dmarcDomain].TXT = [['v=DMARC1; p=reject; rua=mailto:rua@example.com; pct=100']]; superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/status') .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(200); expect(res.body.dns.dmarc).to.be.an('object'); expect(res.body.dns.dmarc.expected).to.eql('v=DMARC1; p=reject; pct=100'); expect(res.body.dns.dmarc.status).to.eql(true); expect(res.body.dns.dmarc.value).to.eql('v=DMARC1; p=reject; rua=mailto:rua@example.com; pct=100'); done(); }); }); it('succeeds with all correct records', function (done) { clearDnsAnswerQueue(); dnsAnswerQueue[mxDomain].MX = [ { priority: '10', exchange: settings.mailFqdn() } ]; dnsAnswerQueue[dmarcDomain].TXT = [['v=DMARC1; p=reject; pct=100']]; dnsAnswerQueue[dkimDomain].TXT = [['v=DKIM1; t=s; p=', mail._readDkimPublicKeySync(DOMAIN_0.domain) ]]; dnsAnswerQueue[spfDomain].TXT = [['v=spf1 a:' + settings.adminFqdn() + ' ~all']]; superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/status') .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(200); expect(res.body.dns.dkim).to.be.an('object'); expect(res.body.dns.dkim.domain).to.eql(dkimDomain); expect(res.body.dns.dkim.type).to.eql('TXT'); expect(res.body.dns.dkim.value).to.eql('v=DKIM1; t=s; p=' + mail._readDkimPublicKeySync(DOMAIN_0.domain)); expect(res.body.dns.dkim.expected).to.eql('v=DKIM1; t=s; p=' + mail._readDkimPublicKeySync(DOMAIN_0.domain)); expect(res.body.dns.dkim.status).to.eql(true); expect(res.body.dns.spf).to.be.an('object'); expect(res.body.dns.spf.domain).to.eql(spfDomain); expect(res.body.dns.spf.type).to.eql('TXT'); expect(res.body.dns.spf.value).to.eql('v=spf1 a:' + settings.adminFqdn() + ' ~all'); expect(res.body.dns.spf.expected).to.eql('v=spf1 a:' + settings.adminFqdn() + ' ~all'); expect(res.body.dns.spf.status).to.eql(true); expect(res.body.dns.dmarc).to.be.an('object'); expect(res.body.dns.dmarc.expected).to.eql('v=DMARC1; p=reject; pct=100'); expect(res.body.dns.dmarc.status).to.eql(true); expect(res.body.dns.dmarc.value).to.eql('v=DMARC1; p=reject; pct=100'); expect(res.body.dns.mx).to.be.an('object'); expect(res.body.dns.mx.status).to.eql(true); expect(res.body.dns.mx.expected).to.eql('10 ' + settings.mailFqdn() + '.'); expect(res.body.dns.mx.value).to.eql('10 ' + settings.mailFqdn() + '.'); done(); }); }); }); describe('mail from validation', function () { before(function (done) { superagent.post(SERVER_URL + '/api/v1/mail') .query({ access_token: token }) .send({ domain: DOMAIN_0.domain }) .end(function (err, res) { expect(res.statusCode).to.equal(201); done(); }); }); after(function (done) { superagent.del(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(204); done(); }); }); it('get mail from validation succeeds', function (done) { superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(200); expect(res.body.mailFromValidation).to.eql(true); done(); }); }); it('cannot set without enabled field', function (done) { superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mail_from_validation') .query({ access_token: token }) .send({ }) .end(function (err, res) { expect(res.statusCode).to.equal(400); done(); }); }); it('can set with enabled field', function (done) { superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mail_from_validation') .query({ access_token: token }) .send({ enabled: false }) .end(function (err, res) { expect(res.statusCode).to.equal(202); done(); }); }); }); describe('catch_all', function () { before(function (done) { superagent.post(SERVER_URL + '/api/v1/mail') .query({ access_token: token }) .send({ domain: DOMAIN_0.domain }) .end(function (err, res) { expect(res.statusCode).to.equal(201); done(); }); }); after(function (done) { superagent.del(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(204); done(); }); }); it('get catch_all succeeds', function (done) { superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(200); expect(res.body.catchAll).to.eql([ ]); done(); }); }); it('cannot set without addresses field', function (done) { superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/catch_all') .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(400); done(); }); }); it('cannot set with bad addresses field', function (done) { superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/catch_all') .query({ access_token: token }) .send({ addresses: [ 'user1', 123 ] }) .end(function (err, res) { expect(res.statusCode).to.equal(400); done(); }); }); it('set succeeds', function (done) { superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/catch_all') .query({ access_token: token }) .send({ addresses: [ 'user1' ] }) .end(function (err, res) { expect(res.statusCode).to.equal(202); done(); }); }); it('get succeeds', function (done) { superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(200); expect(res.body.catchAll).to.eql([ 'user1' ]); done(); }); }); }); describe('mail relay', function () { before(function (done) { superagent.post(SERVER_URL + '/api/v1/mail') .query({ access_token: token }) .send({ domain: DOMAIN_0.domain }) .end(function (err, res) { expect(res.statusCode).to.equal(201); done(); }); }); after(function (done) { superagent.del(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(204); done(); }); }); it('get mail relay succeeds', function (done) { superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(200); expect(res.body.relay).to.eql({ provider: 'cloudron-smtp' }); done(); }); }); it('cannot set without provider field', function (done) { superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/relay') .query({ access_token: token }) .send({ }) .end(function (err, res) { expect(res.statusCode).to.equal(400); done(); }); }); it('cannot set with bad host', function (done) { superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/relay') .query({ access_token: token }) .send({ provider: 'external-smtp', host: true }) .end(function (err, res) { expect(res.statusCode).to.equal(400); done(); }); }); it('set fails because mail server is unreachable', function (done) { superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/relay') .query({ access_token: token }) .send({ provider: 'external-smtp', host: 'host', port: 25, username: 'u', password: 'p', tls: true }) .end(function (err, res) { expect(res.statusCode).to.equal(400); done(); }); }); it('get succeeds', function (done) { var relay = { provider: 'external-smtp', host: 'host', port: 25, username: 'u', password: 'p', tls: true }; maildb.update(DOMAIN_0.domain, { relay: relay }, function (error) { // skip the mail server verify() expect(error).to.not.be.ok(); superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(200); expect(_.omit(res.body.relay, 'password')).to.eql(_.omit(relay, 'password')); done(); }); }); }); }); describe('mailboxes', function () { before(function (done) { superagent.post(SERVER_URL + '/api/v1/mail') .query({ access_token: token }) .send({ domain: DOMAIN_0.domain }) .end(function (err, res) { expect(res.statusCode).to.equal(201); done(); }); }); after(function (done) { superagent.del(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(204); done(); }); }); it('add succeeds', function (done) { superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes') .send({ name: MAILBOX_NAME, userId: userId }) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(201); done(); }); }); it('cannot add again', function (done) { superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes') .send({ name: MAILBOX_NAME, userId: userId }) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(409); done(); }); }); it('get fails if not exist', function (done) { superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes/' + 'someuserdoesnotexist') .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(404); done(); }); }); it('get succeeds', function (done) { superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes/' + MAILBOX_NAME) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(200); expect(res.body.mailbox).to.be.an('object'); expect(res.body.mailbox.name).to.equal(MAILBOX_NAME); expect(res.body.mailbox.ownerId).to.equal(userId); expect(res.body.mailbox.aliasTarget).to.equal(null); expect(res.body.mailbox.domain).to.equal(DOMAIN_0.domain); done(); }); }); it('listing succeeds', function (done) { superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes') .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(200); expect(res.body.mailboxes.length).to.eql(1); expect(res.body.mailboxes[0]).to.be.an('object'); expect(res.body.mailboxes[0].name).to.equal(MAILBOX_NAME); expect(res.body.mailboxes[0].ownerId).to.equal(userId); expect(res.body.mailboxes[0].aliasTarget).to.equal(null); expect(res.body.mailboxes[0].domain).to.equal(DOMAIN_0.domain); done(); }); }); it('disable fails even if not exist', function (done) { superagent.del(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes/' + 'someuserdoesnotexist') .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(404); done(); }); }); it('disable succeeds', function (done) { superagent.del(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes/' + MAILBOX_NAME) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(201); superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes/' + MAILBOX_NAME) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(404); done(); }); }); }); }); describe('aliases', function () { before(function (done) { superagent.post(SERVER_URL + '/api/v1/mail') .query({ access_token: token }) .send({ domain: DOMAIN_0.domain }) .end(function (err, res) { expect(res.statusCode).to.equal(201); done(); }); }); after(function (done) { mail.removeMailboxes(DOMAIN_0.domain, function (error) { if (error) return done(error); superagent.del(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(204); done(); }); }); }); it('set fails if aliases is missing', function (done) { superagent.put(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/aliases/' + MAILBOX_NAME) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(400); done(); }); }); it('set fails if user does not exist', function (done) { superagent.put(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/aliases/' + 'someuserdoesnotexist') .send({ aliases: ['hello', 'there'] }) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(404); done(); }); }); it('set fails if aliases is the wrong type', function (done) { superagent.put(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/aliases/' + MAILBOX_NAME) .send({ aliases: 'hello, there' }) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(400); done(); }); }); it('set fails if user is not enabled', function (done) { superagent.put(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/aliases/' + MAILBOX_NAME) .send({ aliases: ['hello', 'there'] }) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(404); done(); }); }); it('now add the mailbox', function (done) { superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/mailboxes') .send({ name: MAILBOX_NAME, userId: userId }) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(201); done(); }); }); it('set succeeds', function (done) { superagent.put(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/aliases/' + MAILBOX_NAME) .send({ aliases: ['hello', 'there'] }) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(202); done(); }); }); it('get succeeds', function (done) { superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/aliases/' + MAILBOX_NAME) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(200); expect(res.body.aliases).to.eql(['hello', 'there']); done(); }); }); it('listing succeeds', function (done) { superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/aliases') .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(200); expect(res.body.aliases.length).to.eql(2); expect(res.body.aliases[0].name).to.equal('hello'); expect(res.body.aliases[0].ownerId).to.equal(userId); expect(res.body.aliases[0].aliasTarget).to.equal(MAILBOX_NAME); expect(res.body.aliases[0].domain).to.equal(DOMAIN_0.domain); expect(res.body.aliases[1].name).to.equal('there'); expect(res.body.aliases[1].ownerId).to.equal(userId); expect(res.body.aliases[1].aliasTarget).to.equal(MAILBOX_NAME); expect(res.body.aliases[1].domain).to.equal(DOMAIN_0.domain); done(); }); }); it('get fails if mailbox does not exist', function (done) { superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/aliases/' + 'someuserdoesnotexist') .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(404); done(); }); }); }); describe('mailinglists', function () { before(function (done) { async.series([ function (done) { superagent.post(SERVER_URL + '/api/v1/mail') .query({ access_token: token }) .send({ domain: DOMAIN_0.domain }) .end(function (err, res) { expect(res.statusCode).to.equal(201); done(); }); } ], done); }); after(function (done) { mail.removeMailboxes(DOMAIN_0.domain, function (error) { if (error) return done(error); superagent.del(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(204); done(); }); }); }); it('add fails without groupId', function (done) { superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/lists') .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(400); done(); }); }); it('add fails with invalid groupId', function (done) { superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/lists') .send({ groupId: {} }) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(400); done(); }); }); it('add fails without members array', function (done) { superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/lists') .send({ name: LIST_NAME }) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(400); done(); }); }); it('add succeeds', function (done) { superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/lists') .send({ name: LIST_NAME, members: [ 'admin2', USERNAME ]}) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(201); done(); }); }); it('add twice fails', function (done) { superagent.post(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/lists') .send({ name: LIST_NAME, members: [ 'admin2', USERNAME ] }) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(409); done(); }); }); it('get fails if not exist', function (done) { superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/lists/' + 'doesnotexist') .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(404); done(); }); }); it('get succeeds', function (done) { superagent.get(SERVER_URL + `/api/v1/mail/${DOMAIN_0.domain}/lists/${LIST_NAME}`) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(200); expect(res.body.list).to.be.an('object'); expect(res.body.list.name).to.equal(LIST_NAME); expect(res.body.list.ownerId).to.equal('admin'); expect(res.body.list.aliasTarget).to.equal(null); expect(res.body.list.domain).to.equal(DOMAIN_0.domain); expect(res.body.list.members).to.eql([ 'admin2', 'superadmin' ]); done(); }); }); it('get all succeeds', function (done) { superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/lists') .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(200); expect(res.body.lists).to.be.an(Array); expect(res.body.lists.length).to.equal(1); expect(res.body.lists[0].name).to.equal(LIST_NAME); expect(res.body.lists[0].ownerId).to.equal('admin'); expect(res.body.lists[0].aliasTarget).to.equal(null); expect(res.body.lists[0].domain).to.equal(DOMAIN_0.domain); expect(res.body.lists[0].members).to.eql([ 'admin2', 'superadmin' ]); done(); }); }); it('del fails if list does not exist', function (done) { superagent.del(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/lists/' + 'doesnotexist') .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(404); done(); }); }); it('del succeeds', function (done) { superagent.del(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/lists/' + LIST_NAME) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(204); superagent.get(SERVER_URL + '/api/v1/mail/' + DOMAIN_0.domain + '/lists/' + LIST_NAME) .query({ access_token: token }) .end(function (err, res) { expect(res.statusCode).to.equal(404); done(); }); }); }); }); });