2023-09-11 17:56:38 +02:00
|
|
|
import { AlbumResponseDto, LoginResponseDto } from '@app/domain';
|
2023-10-06 23:32:28 +02:00
|
|
|
import { AlbumController } from '@app/immich';
|
2023-09-11 17:56:38 +02:00
|
|
|
import { AssetFileUploadResponseDto } from '@app/immich/api-v1/asset/response-dto/asset-file-upload-response.dto';
|
2023-08-01 17:49:50 +02:00
|
|
|
import { SharedLinkType } from '@app/infra/entities';
|
2023-11-15 02:31:06 +01:00
|
|
|
import { errorStub, userDto, uuidStub } from '@test/fixtures';
|
2023-08-01 17:49:50 +02:00
|
|
|
import request from 'supertest';
|
2024-01-24 23:24:53 +01:00
|
|
|
import { api } from '../../client';
|
2024-01-10 05:04:16 +01:00
|
|
|
import { testApp } from '../utils';
|
2023-08-01 17:49:50 +02:00
|
|
|
|
|
|
|
|
const user1SharedUser = 'user1SharedUser';
|
|
|
|
|
const user1SharedLink = 'user1SharedLink';
|
|
|
|
|
const user1NotShared = 'user1NotShared';
|
|
|
|
|
const user2SharedUser = 'user2SharedUser';
|
|
|
|
|
const user2SharedLink = 'user2SharedLink';
|
|
|
|
|
const user2NotShared = 'user2NotShared';
|
|
|
|
|
|
|
|
|
|
describe(`${AlbumController.name} (e2e)`, () => {
|
|
|
|
|
let server: any;
|
2023-09-18 17:56:50 +02:00
|
|
|
let admin: LoginResponseDto;
|
2023-08-01 17:49:50 +02:00
|
|
|
let user1: LoginResponseDto;
|
2023-09-11 17:56:38 +02:00
|
|
|
let user1Asset: AssetFileUploadResponseDto;
|
|
|
|
|
let user1Albums: AlbumResponseDto[];
|
2023-08-01 17:49:50 +02:00
|
|
|
let user2: LoginResponseDto;
|
2023-09-11 17:56:38 +02:00
|
|
|
let user2Albums: AlbumResponseDto[];
|
2023-08-01 17:49:50 +02:00
|
|
|
|
|
|
|
|
beforeAll(async () => {
|
2023-12-19 03:29:26 +01:00
|
|
|
server = (await testApp.create()).getHttpServer();
|
2023-10-19 00:02:42 +02:00
|
|
|
});
|
2023-08-01 17:49:50 +02:00
|
|
|
|
2023-10-19 00:02:42 +02:00
|
|
|
afterAll(async () => {
|
|
|
|
|
await testApp.teardown();
|
2023-08-01 17:49:50 +02:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
beforeEach(async () => {
|
2023-11-15 02:31:06 +01:00
|
|
|
await testApp.reset();
|
2023-09-11 17:56:38 +02:00
|
|
|
await api.authApi.adminSignUp(server);
|
2023-09-18 17:56:50 +02:00
|
|
|
admin = await api.authApi.adminLogin(server);
|
2023-08-01 17:49:50 +02:00
|
|
|
|
2023-10-19 00:02:42 +02:00
|
|
|
await Promise.all([
|
2023-11-15 02:31:06 +01:00
|
|
|
api.userApi.create(server, admin.accessToken, userDto.user1),
|
|
|
|
|
api.userApi.create(server, admin.accessToken, userDto.user2),
|
2023-10-19 00:02:42 +02:00
|
|
|
]);
|
2023-08-01 17:49:50 +02:00
|
|
|
|
2023-10-19 00:02:42 +02:00
|
|
|
[user1, user2] = await Promise.all([
|
2023-11-15 02:31:06 +01:00
|
|
|
api.authApi.login(server, userDto.user1),
|
|
|
|
|
api.authApi.login(server, userDto.user2),
|
2023-10-19 00:02:42 +02:00
|
|
|
]);
|
2023-08-01 17:49:50 +02:00
|
|
|
|
2023-09-11 17:56:38 +02:00
|
|
|
user1Asset = await api.assetApi.upload(server, user1.accessToken, 'example');
|
2023-10-19 00:02:42 +02:00
|
|
|
|
|
|
|
|
const albums = await Promise.all([
|
|
|
|
|
// user 1
|
2023-08-01 17:49:50 +02:00
|
|
|
api.albumApi.create(server, user1.accessToken, {
|
|
|
|
|
albumName: user1SharedUser,
|
|
|
|
|
sharedWithUserIds: [user2.userId],
|
2023-09-11 17:56:38 +02:00
|
|
|
assetIds: [user1Asset.id],
|
2023-08-01 17:49:50 +02:00
|
|
|
}),
|
2023-09-11 17:56:38 +02:00
|
|
|
api.albumApi.create(server, user1.accessToken, { albumName: user1SharedLink, assetIds: [user1Asset.id] }),
|
|
|
|
|
api.albumApi.create(server, user1.accessToken, { albumName: user1NotShared, assetIds: [user1Asset.id] }),
|
2023-08-01 17:49:50 +02:00
|
|
|
|
2023-10-19 00:02:42 +02:00
|
|
|
// user 2
|
2023-08-01 17:49:50 +02:00
|
|
|
api.albumApi.create(server, user2.accessToken, {
|
|
|
|
|
albumName: user2SharedUser,
|
|
|
|
|
sharedWithUserIds: [user1.userId],
|
2023-09-11 17:56:38 +02:00
|
|
|
assetIds: [user1Asset.id],
|
2023-08-01 17:49:50 +02:00
|
|
|
}),
|
|
|
|
|
api.albumApi.create(server, user2.accessToken, { albumName: user2SharedLink }),
|
|
|
|
|
api.albumApi.create(server, user2.accessToken, { albumName: user2NotShared }),
|
|
|
|
|
]);
|
|
|
|
|
|
2023-10-19 00:02:42 +02:00
|
|
|
user1Albums = albums.slice(0, 3);
|
|
|
|
|
user2Albums = albums.slice(3);
|
2023-08-01 17:49:50 +02:00
|
|
|
|
2023-10-19 00:02:42 +02:00
|
|
|
await Promise.all([
|
|
|
|
|
// add shared link to user1SharedLink album
|
|
|
|
|
api.sharedLinkApi.create(server, user1.accessToken, {
|
|
|
|
|
type: SharedLinkType.ALBUM,
|
|
|
|
|
albumId: user1Albums[1].id,
|
|
|
|
|
}),
|
|
|
|
|
|
|
|
|
|
// add shared link to user2SharedLink album
|
|
|
|
|
api.sharedLinkApi.create(server, user2.accessToken, {
|
|
|
|
|
type: SharedLinkType.ALBUM,
|
|
|
|
|
albumId: user2Albums[1].id,
|
|
|
|
|
}),
|
|
|
|
|
]);
|
2023-08-01 17:49:50 +02:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
describe('GET /album', () => {
|
|
|
|
|
it('should require authentication', async () => {
|
|
|
|
|
const { status, body } = await request(server).get('/album');
|
|
|
|
|
expect(status).toBe(401);
|
|
|
|
|
expect(body).toEqual(errorStub.unauthorized);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should reject an invalid shared param', async () => {
|
|
|
|
|
const { status, body } = await request(server)
|
|
|
|
|
.get('/album?shared=invalid')
|
|
|
|
|
.set('Authorization', `Bearer ${user1.accessToken}`);
|
2023-09-20 13:16:33 +02:00
|
|
|
expect(status).toEqual(400);
|
|
|
|
|
expect(body).toEqual(errorStub.badRequest(['shared must be a boolean value']));
|
2023-08-01 17:49:50 +02:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should reject an invalid assetId param', async () => {
|
|
|
|
|
const { status, body } = await request(server)
|
|
|
|
|
.get('/album?assetId=invalid')
|
|
|
|
|
.set('Authorization', `Bearer ${user1.accessToken}`);
|
2023-09-20 13:16:33 +02:00
|
|
|
expect(status).toEqual(400);
|
|
|
|
|
expect(body).toEqual(errorStub.badRequest(['assetId must be a UUID']));
|
2023-08-01 17:49:50 +02:00
|
|
|
});
|
|
|
|
|
|
2023-09-18 17:56:50 +02:00
|
|
|
it('should not return shared albums with a deleted owner', async () => {
|
|
|
|
|
await api.userApi.delete(server, admin.accessToken, user1.userId);
|
|
|
|
|
const { status, body } = await request(server)
|
|
|
|
|
.get('/album?shared=true')
|
|
|
|
|
.set('Authorization', `Bearer ${user2.accessToken}`);
|
|
|
|
|
|
|
|
|
|
expect(status).toBe(200);
|
|
|
|
|
expect(body).toHaveLength(1);
|
|
|
|
|
expect(body).toEqual(
|
|
|
|
|
expect.arrayContaining([
|
|
|
|
|
expect.objectContaining({ ownerId: user2.userId, albumName: user2SharedLink, shared: true }),
|
|
|
|
|
]),
|
|
|
|
|
);
|
|
|
|
|
});
|
|
|
|
|
|
2023-08-01 17:49:50 +02:00
|
|
|
it('should return the album collection including owned and shared', async () => {
|
|
|
|
|
const { status, body } = await request(server).get('/album').set('Authorization', `Bearer ${user1.accessToken}`);
|
2023-09-18 17:56:50 +02:00
|
|
|
expect(status).toBe(200);
|
2023-08-01 17:49:50 +02:00
|
|
|
expect(body).toHaveLength(3);
|
|
|
|
|
expect(body).toEqual(
|
|
|
|
|
expect.arrayContaining([
|
|
|
|
|
expect.objectContaining({ ownerId: user1.userId, albumName: user1SharedUser, shared: true }),
|
|
|
|
|
expect.objectContaining({ ownerId: user1.userId, albumName: user1SharedLink, shared: true }),
|
|
|
|
|
expect.objectContaining({ ownerId: user1.userId, albumName: user1NotShared, shared: false }),
|
|
|
|
|
]),
|
|
|
|
|
);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should return the album collection filtered by shared', async () => {
|
|
|
|
|
const { status, body } = await request(server)
|
|
|
|
|
.get('/album?shared=true')
|
|
|
|
|
.set('Authorization', `Bearer ${user1.accessToken}`);
|
2023-09-18 17:56:50 +02:00
|
|
|
expect(status).toBe(200);
|
2023-08-01 17:49:50 +02:00
|
|
|
expect(body).toHaveLength(3);
|
|
|
|
|
expect(body).toEqual(
|
|
|
|
|
expect.arrayContaining([
|
|
|
|
|
expect.objectContaining({ ownerId: user1.userId, albumName: user1SharedUser, shared: true }),
|
|
|
|
|
expect.objectContaining({ ownerId: user1.userId, albumName: user1SharedLink, shared: true }),
|
|
|
|
|
expect.objectContaining({ ownerId: user2.userId, albumName: user2SharedUser, shared: true }),
|
|
|
|
|
]),
|
|
|
|
|
);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should return the album collection filtered by NOT shared', async () => {
|
|
|
|
|
const { status, body } = await request(server)
|
|
|
|
|
.get('/album?shared=false')
|
|
|
|
|
.set('Authorization', `Bearer ${user1.accessToken}`);
|
2023-09-18 17:56:50 +02:00
|
|
|
expect(status).toBe(200);
|
2023-08-01 17:49:50 +02:00
|
|
|
expect(body).toHaveLength(1);
|
|
|
|
|
expect(body).toEqual(
|
|
|
|
|
expect.arrayContaining([
|
|
|
|
|
expect.objectContaining({ ownerId: user1.userId, albumName: user1NotShared, shared: false }),
|
|
|
|
|
]),
|
|
|
|
|
);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should return the album collection filtered by assetId', async () => {
|
2023-09-11 17:56:38 +02:00
|
|
|
const asset = await api.assetApi.upload(server, user1.accessToken, 'example2');
|
|
|
|
|
await api.albumApi.addAssets(server, user1.accessToken, user1Albums[0].id, { ids: [asset.id] });
|
2023-08-01 17:49:50 +02:00
|
|
|
const { status, body } = await request(server)
|
2023-09-11 17:56:38 +02:00
|
|
|
.get(`/album?assetId=${asset.id}`)
|
2023-08-01 17:49:50 +02:00
|
|
|
.set('Authorization', `Bearer ${user1.accessToken}`);
|
2023-09-18 17:56:50 +02:00
|
|
|
expect(status).toBe(200);
|
2023-09-11 17:56:38 +02:00
|
|
|
expect(body).toHaveLength(1);
|
2023-08-01 17:49:50 +02:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should return the album collection filtered by assetId and ignores shared=true', async () => {
|
|
|
|
|
const { status, body } = await request(server)
|
2023-09-11 17:56:38 +02:00
|
|
|
.get(`/album?shared=true&assetId=${user1Asset.id}`)
|
2023-08-01 17:49:50 +02:00
|
|
|
.set('Authorization', `Bearer ${user1.accessToken}`);
|
2023-09-18 17:56:50 +02:00
|
|
|
expect(status).toBe(200);
|
2023-09-11 17:56:38 +02:00
|
|
|
expect(body).toHaveLength(4);
|
2023-08-01 17:49:50 +02:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should return the album collection filtered by assetId and ignores shared=false', async () => {
|
|
|
|
|
const { status, body } = await request(server)
|
2023-09-11 17:56:38 +02:00
|
|
|
.get(`/album?shared=false&assetId=${user1Asset.id}`)
|
2023-08-01 17:49:50 +02:00
|
|
|
.set('Authorization', `Bearer ${user1.accessToken}`);
|
2023-09-18 17:56:50 +02:00
|
|
|
expect(status).toBe(200);
|
2023-09-11 17:56:38 +02:00
|
|
|
expect(body).toHaveLength(4);
|
2023-08-01 17:49:50 +02:00
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
describe('POST /album', () => {
|
|
|
|
|
it('should require authentication', async () => {
|
|
|
|
|
const { status, body } = await request(server).post('/album').send({ albumName: 'New album' });
|
|
|
|
|
expect(status).toBe(401);
|
|
|
|
|
expect(body).toEqual(errorStub.unauthorized);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should create an album', async () => {
|
|
|
|
|
const body = await api.albumApi.create(server, user1.accessToken, { albumName: 'New album' });
|
|
|
|
|
expect(body).toEqual({
|
|
|
|
|
id: expect.any(String),
|
|
|
|
|
createdAt: expect.any(String),
|
|
|
|
|
updatedAt: expect.any(String),
|
|
|
|
|
ownerId: user1.userId,
|
|
|
|
|
albumName: 'New album',
|
2023-08-06 04:43:26 +02:00
|
|
|
description: '',
|
2023-08-01 17:49:50 +02:00
|
|
|
albumThumbnailAssetId: null,
|
|
|
|
|
shared: false,
|
|
|
|
|
sharedUsers: [],
|
2023-08-11 18:00:51 +02:00
|
|
|
hasSharedLink: false,
|
2023-08-01 17:49:50 +02:00
|
|
|
assets: [],
|
|
|
|
|
assetCount: 0,
|
|
|
|
|
owner: expect.objectContaining({ email: user1.userEmail }),
|
2023-11-07 05:37:21 +01:00
|
|
|
isActivityEnabled: true,
|
2023-08-01 17:49:50 +02:00
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
});
|
2023-08-06 04:43:26 +02:00
|
|
|
|
2023-09-11 17:56:38 +02:00
|
|
|
describe('GET /album/count', () => {
|
|
|
|
|
it('should require authentication', async () => {
|
|
|
|
|
const { status, body } = await request(server).get('/album/count');
|
|
|
|
|
expect(status).toBe(401);
|
|
|
|
|
expect(body).toEqual(errorStub.unauthorized);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should return total count of albums the user has access to', async () => {
|
|
|
|
|
const { status, body } = await request(server)
|
|
|
|
|
.get('/album/count')
|
|
|
|
|
.set('Authorization', `Bearer ${user1.accessToken}`);
|
|
|
|
|
|
|
|
|
|
expect(status).toBe(200);
|
|
|
|
|
expect(body).toEqual({ owned: 3, shared: 3, notShared: 1 });
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
describe('GET /album/:id', () => {
|
|
|
|
|
it('should require authentication', async () => {
|
|
|
|
|
const { status, body } = await request(server).get(`/album/${user1Albums[0].id}`);
|
|
|
|
|
expect(status).toBe(401);
|
|
|
|
|
expect(body).toEqual(errorStub.unauthorized);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should return album info for own album', async () => {
|
|
|
|
|
const { status, body } = await request(server)
|
2023-11-26 16:23:43 +01:00
|
|
|
.get(`/album/${user1Albums[0].id}?withoutAssets=false`)
|
2023-09-11 17:56:38 +02:00
|
|
|
.set('Authorization', `Bearer ${user1.accessToken}`);
|
|
|
|
|
|
|
|
|
|
expect(status).toBe(200);
|
2024-01-13 01:43:36 +01:00
|
|
|
expect(body).toEqual({ ...user1Albums[0], assets: [expect.objectContaining(user1Albums[0].assets[0])] });
|
2023-09-11 17:56:38 +02:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should return album info for shared album', async () => {
|
|
|
|
|
const { status, body } = await request(server)
|
2023-11-26 16:23:43 +01:00
|
|
|
.get(`/album/${user2Albums[0].id}?withoutAssets=false`)
|
2023-09-11 17:56:38 +02:00
|
|
|
.set('Authorization', `Bearer ${user1.accessToken}`);
|
|
|
|
|
|
|
|
|
|
expect(status).toBe(200);
|
2024-01-13 01:43:36 +01:00
|
|
|
expect(body).toEqual({ ...user2Albums[0], assets: [expect.objectContaining(user2Albums[0].assets[0])] });
|
2023-09-11 17:56:38 +02:00
|
|
|
});
|
2023-11-27 04:21:04 +01:00
|
|
|
|
|
|
|
|
it('should return album info with assets when withoutAssets is undefined', async () => {
|
|
|
|
|
const { status, body } = await request(server)
|
|
|
|
|
.get(`/album/${user1Albums[0].id}`)
|
|
|
|
|
.set('Authorization', `Bearer ${user1.accessToken}`);
|
|
|
|
|
|
|
|
|
|
expect(status).toBe(200);
|
2024-01-13 01:43:36 +01:00
|
|
|
expect(body).toEqual({ ...user1Albums[0], assets: [expect.objectContaining(user1Albums[0].assets[0])] });
|
2023-11-27 04:21:04 +01:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should return album info without assets when withoutAssets is true', async () => {
|
|
|
|
|
const { status, body } = await request(server)
|
|
|
|
|
.get(`/album/${user1Albums[0].id}?withoutAssets=true`)
|
|
|
|
|
.set('Authorization', `Bearer ${user1.accessToken}`);
|
|
|
|
|
|
|
|
|
|
expect(status).toBe(200);
|
|
|
|
|
expect(body).toEqual({
|
|
|
|
|
...user1Albums[0],
|
|
|
|
|
assets: [],
|
|
|
|
|
assetCount: 1,
|
|
|
|
|
});
|
|
|
|
|
});
|
2023-09-11 17:56:38 +02:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
describe('PUT /album/:id/assets', () => {
|
|
|
|
|
it('should require authentication', async () => {
|
|
|
|
|
const { status, body } = await request(server).put(`/album/${user1Albums[0].id}/assets`);
|
|
|
|
|
expect(status).toBe(401);
|
|
|
|
|
expect(body).toEqual(errorStub.unauthorized);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should be able to add own asset to own album', async () => {
|
|
|
|
|
const asset = await api.assetApi.upload(server, user1.accessToken, 'example1');
|
|
|
|
|
const { status, body } = await request(server)
|
|
|
|
|
.put(`/album/${user1Albums[0].id}/assets`)
|
|
|
|
|
.set('Authorization', `Bearer ${user1.accessToken}`)
|
|
|
|
|
.send({ ids: [asset.id] });
|
|
|
|
|
|
|
|
|
|
expect(status).toBe(200);
|
|
|
|
|
expect(body).toEqual([expect.objectContaining({ id: asset.id, success: true })]);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should be able to add own asset to shared album', async () => {
|
|
|
|
|
const asset = await api.assetApi.upload(server, user1.accessToken, 'example1');
|
|
|
|
|
const { status, body } = await request(server)
|
|
|
|
|
.put(`/album/${user2Albums[0].id}/assets`)
|
|
|
|
|
.set('Authorization', `Bearer ${user1.accessToken}`)
|
|
|
|
|
.send({ ids: [asset.id] });
|
|
|
|
|
|
|
|
|
|
expect(status).toBe(200);
|
|
|
|
|
expect(body).toEqual([expect.objectContaining({ id: asset.id, success: true })]);
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
|
2023-08-06 04:43:26 +02:00
|
|
|
describe('PATCH /album/:id', () => {
|
|
|
|
|
it('should require authentication', async () => {
|
|
|
|
|
const { status, body } = await request(server)
|
|
|
|
|
.patch(`/album/${uuidStub.notFound}`)
|
|
|
|
|
.send({ albumName: 'New album name' });
|
|
|
|
|
expect(status).toBe(401);
|
|
|
|
|
expect(body).toEqual(errorStub.unauthorized);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should update an album', async () => {
|
|
|
|
|
const album = await api.albumApi.create(server, user1.accessToken, { albumName: 'New album' });
|
|
|
|
|
const { status, body } = await request(server)
|
|
|
|
|
.patch(`/album/${album.id}`)
|
|
|
|
|
.set('Authorization', `Bearer ${user1.accessToken}`)
|
|
|
|
|
.send({
|
|
|
|
|
albumName: 'New album name',
|
|
|
|
|
description: 'An album description',
|
|
|
|
|
});
|
|
|
|
|
expect(status).toBe(200);
|
|
|
|
|
expect(body).toEqual({
|
|
|
|
|
...album,
|
|
|
|
|
updatedAt: expect.any(String),
|
|
|
|
|
albumName: 'New album name',
|
|
|
|
|
description: 'An album description',
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
});
|
2023-09-11 17:56:38 +02:00
|
|
|
|
|
|
|
|
describe('DELETE /album/:id/assets', () => {
|
|
|
|
|
it('should require authentication', async () => {
|
|
|
|
|
const { status, body } = await request(server)
|
|
|
|
|
.delete(`/album/${user1Albums[0].id}/assets`)
|
|
|
|
|
.send({ ids: [user1Asset.id] });
|
|
|
|
|
|
|
|
|
|
expect(status).toBe(401);
|
|
|
|
|
expect(body).toEqual(errorStub.unauthorized);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should be able to remove own asset from own album', async () => {
|
|
|
|
|
const { status, body } = await request(server)
|
|
|
|
|
.delete(`/album/${user1Albums[0].id}/assets`)
|
|
|
|
|
.set('Authorization', `Bearer ${user1.accessToken}`)
|
|
|
|
|
.send({ ids: [user1Asset.id] });
|
|
|
|
|
|
|
|
|
|
expect(status).toBe(200);
|
|
|
|
|
expect(body).toEqual([expect.objectContaining({ id: user1Asset.id, success: true })]);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should be able to remove own asset from shared album', async () => {
|
|
|
|
|
const { status, body } = await request(server)
|
|
|
|
|
.delete(`/album/${user2Albums[0].id}/assets`)
|
|
|
|
|
.set('Authorization', `Bearer ${user1.accessToken}`)
|
|
|
|
|
.send({ ids: [user1Asset.id] });
|
|
|
|
|
|
|
|
|
|
expect(status).toBe(200);
|
|
|
|
|
expect(body).toEqual([expect.objectContaining({ id: user1Asset.id, success: true })]);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should not be able to remove foreign asset from own album', async () => {
|
|
|
|
|
const { status, body } = await request(server)
|
|
|
|
|
.delete(`/album/${user2Albums[0].id}/assets`)
|
|
|
|
|
.set('Authorization', `Bearer ${user2.accessToken}`)
|
|
|
|
|
.send({ ids: [user1Asset.id] });
|
|
|
|
|
|
|
|
|
|
expect(status).toBe(200);
|
|
|
|
|
expect(body).toEqual([expect.objectContaining({ id: user1Asset.id, success: false, error: 'no_permission' })]);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should not be able to remove foreign asset from foreign album', async () => {
|
|
|
|
|
const { status, body } = await request(server)
|
|
|
|
|
.delete(`/album/${user1Albums[0].id}/assets`)
|
|
|
|
|
.set('Authorization', `Bearer ${user2.accessToken}`)
|
|
|
|
|
.send({ ids: [user1Asset.id] });
|
|
|
|
|
|
|
|
|
|
expect(status).toBe(200);
|
|
|
|
|
expect(body).toEqual([expect.objectContaining({ id: user1Asset.id, success: false, error: 'no_permission' })]);
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
describe('PUT :id/users', () => {
|
|
|
|
|
let album: AlbumResponseDto;
|
|
|
|
|
|
|
|
|
|
beforeEach(async () => {
|
|
|
|
|
album = await api.albumApi.create(server, user1.accessToken, { albumName: 'testAlbum' });
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should require authentication', async () => {
|
|
|
|
|
const { status, body } = await request(server)
|
|
|
|
|
.put(`/album/${user1Albums[0].id}/users`)
|
|
|
|
|
.send({ sharedUserIds: [] });
|
|
|
|
|
|
|
|
|
|
expect(status).toBe(401);
|
|
|
|
|
expect(body).toEqual(errorStub.unauthorized);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should be able to add user to own album', async () => {
|
|
|
|
|
const { status, body } = await request(server)
|
|
|
|
|
.put(`/album/${album.id}/users`)
|
|
|
|
|
.set('Authorization', `Bearer ${user1.accessToken}`)
|
|
|
|
|
.send({ sharedUserIds: [user2.userId] });
|
|
|
|
|
|
|
|
|
|
expect(status).toBe(200);
|
|
|
|
|
expect(body).toEqual(expect.objectContaining({ sharedUsers: [expect.objectContaining({ id: user2.userId })] }));
|
|
|
|
|
});
|
|
|
|
|
|
2023-09-18 17:56:50 +02:00
|
|
|
it('should not be able to share album with owner', async () => {
|
|
|
|
|
const { status, body } = await request(server)
|
|
|
|
|
.put(`/album/${album.id}/users`)
|
|
|
|
|
.set('Authorization', `Bearer ${user1.accessToken}`)
|
|
|
|
|
.send({ sharedUserIds: [user1.userId] });
|
2023-09-11 17:56:38 +02:00
|
|
|
|
2023-09-18 17:56:50 +02:00
|
|
|
expect(status).toBe(400);
|
2023-09-20 13:16:33 +02:00
|
|
|
expect(body).toEqual(errorStub.badRequest('Cannot be shared with owner'));
|
2023-09-18 17:56:50 +02:00
|
|
|
});
|
2023-09-11 17:56:38 +02:00
|
|
|
|
|
|
|
|
it('should not be able to add existing user to shared album', async () => {
|
|
|
|
|
await request(server)
|
|
|
|
|
.put(`/album/${album.id}/users`)
|
|
|
|
|
.set('Authorization', `Bearer ${user1.accessToken}`)
|
|
|
|
|
.send({ sharedUserIds: [user2.userId] });
|
|
|
|
|
|
|
|
|
|
const { status, body } = await request(server)
|
|
|
|
|
.put(`/album/${album.id}/users`)
|
|
|
|
|
.set('Authorization', `Bearer ${user1.accessToken}`)
|
|
|
|
|
.send({ sharedUserIds: [user2.userId] });
|
|
|
|
|
|
|
|
|
|
expect(status).toBe(400);
|
2023-09-20 13:16:33 +02:00
|
|
|
expect(body).toEqual(errorStub.badRequest('User already added'));
|
2023-09-11 17:56:38 +02:00
|
|
|
});
|
|
|
|
|
});
|
2023-08-01 17:49:50 +02:00
|
|
|
});
|
