diff options
Diffstat (limited to 'api/admin_test.go')
| -rw-r--r-- | api/admin_test.go | 624 |
1 files changed, 0 insertions, 624 deletions
diff --git a/api/admin_test.go b/api/admin_test.go deleted file mode 100644 index dfa6cd3b9..000000000 --- a/api/admin_test.go +++ /dev/null @@ -1,624 +0,0 @@ -// Copyright (c) 2015-present Mattermost, Inc. All Rights Reserved. -// See License.txt for license information. - -package api - -import ( - "net/http" - "strings" - "testing" - - "github.com/mattermost/mattermost-server/model" - "github.com/mattermost/mattermost-server/store" - "github.com/stretchr/testify/assert" -) - -func TestGetLogs(t *testing.T) { - th := Setup().InitSystemAdmin().InitBasic() - defer th.TearDown() - - if _, err := th.BasicClient.GetLogs(); err == nil { - t.Fatal("Shouldn't have permissions") - } - - if logs, err := th.SystemAdminClient.GetLogs(); err != nil { - t.Fatal(err) - } else if len(logs.Data.([]string)) <= 0 { - t.Fatal() - } -} - -func TestGetClusterInfos(t *testing.T) { - if testing.Short() { - t.SkipNow() - } - th := Setup().InitSystemAdmin().InitBasic() - defer th.TearDown() - - if _, err := th.BasicClient.GetClusterStatus(); err == nil { - t.Fatal("Shouldn't have permissions") - } - - if _, err := th.SystemAdminClient.GetClusterStatus(); err != nil { - t.Fatal(err) - } -} - -func TestGetAllAudits(t *testing.T) { - th := Setup().InitBasic().InitSystemAdmin() - defer th.TearDown() - - if _, err := th.BasicClient.GetAllAudits(); err == nil { - t.Fatal("Shouldn't have permissions") - } - - if audits, err := th.SystemAdminClient.GetAllAudits(); err != nil { - t.Fatal(err) - } else if len(audits.Data.(model.Audits)) <= 0 { - t.Fatal() - } -} - -func TestGetConfig(t *testing.T) { - th := Setup().InitBasic().InitSystemAdmin() - defer th.TearDown() - - if _, err := th.BasicClient.GetConfig(); err == nil { - t.Fatal("Shouldn't have permissions") - } - - if result, err := th.SystemAdminClient.GetConfig(); err != nil { - t.Fatal(err) - } else { - cfg := result.Data.(*model.Config) - - if len(cfg.TeamSettings.SiteName) == 0 { - t.Fatal() - } - - if *cfg.LdapSettings.BindPassword != model.FAKE_SETTING && len(*cfg.LdapSettings.BindPassword) != 0 { - t.Fatal("did not sanitize properly") - } - if *cfg.FileSettings.PublicLinkSalt != model.FAKE_SETTING { - t.Fatal("did not sanitize properly") - } - if cfg.FileSettings.AmazonS3SecretAccessKey != model.FAKE_SETTING && len(cfg.FileSettings.AmazonS3SecretAccessKey) != 0 { - t.Fatal("did not sanitize properly") - } - if cfg.EmailSettings.InviteSalt != model.FAKE_SETTING { - t.Fatal("did not sanitize properly") - } - if cfg.EmailSettings.SMTPPassword != model.FAKE_SETTING && len(cfg.EmailSettings.SMTPPassword) != 0 { - t.Fatal("did not sanitize properly") - } - if cfg.GitLabSettings.Secret != model.FAKE_SETTING && len(cfg.GitLabSettings.Secret) != 0 { - t.Fatal("did not sanitize properly") - } - if *cfg.SqlSettings.DataSource != model.FAKE_SETTING { - t.Fatal("did not sanitize properly") - } - if cfg.SqlSettings.AtRestEncryptKey != model.FAKE_SETTING { - t.Fatal("did not sanitize properly") - } - if !strings.Contains(strings.Join(cfg.SqlSettings.DataSourceReplicas, " "), model.FAKE_SETTING) && len(cfg.SqlSettings.DataSourceReplicas) != 0 { - t.Fatal("did not sanitize properly") - } - } -} - -func TestReloadConfig(t *testing.T) { - th := Setup().InitBasic().InitSystemAdmin() - defer th.TearDown() - - if _, err := th.BasicClient.ReloadConfig(); err == nil { - t.Fatal("Shouldn't have permissions") - } - - if _, err := th.SystemAdminClient.ReloadConfig(); err != nil { - t.Fatal(err) - } - - th.App.UpdateConfig(func(cfg *model.Config) { *cfg.TeamSettings.MaxUsersPerTeam = 50 }) - th.App.UpdateConfig(func(cfg *model.Config) { *cfg.TeamSettings.EnableOpenServer = true }) -} - -func TestInvalidateAllCache(t *testing.T) { - th := Setup().InitBasic().InitSystemAdmin() - defer th.TearDown() - - if _, err := th.BasicClient.InvalidateAllCaches(); err == nil { - t.Fatal("Shouldn't have permissions") - } - - if _, err := th.SystemAdminClient.InvalidateAllCaches(); err != nil { - t.Fatal(err) - } -} - -func TestSaveConfig(t *testing.T) { - th := Setup().InitBasic().InitSystemAdmin() - defer th.TearDown() - - if _, err := th.BasicClient.SaveConfig(th.App.Config()); err == nil { - t.Fatal("Shouldn't have permissions") - } - - th.App.UpdateConfig(func(cfg *model.Config) { *cfg.TeamSettings.EnableOpenServer = false }) - - if _, err := th.SystemAdminClient.SaveConfig(th.App.Config()); err != nil { - t.Fatal(err) - } - - th.App.UpdateConfig(func(cfg *model.Config) { *cfg.TeamSettings.EnableOpenServer = true }) - - // Should not be able to modify PluginSettings.EnableUploads - oldEnableUploads := *th.App.GetConfig().PluginSettings.EnableUploads - cfg := &model.Config{} - cfg.SetDefaults() - *cfg.PluginSettings.EnableUploads = !oldEnableUploads - - if _, err := th.SystemAdminClient.SaveConfig(cfg); err != nil { - t.Fatal(err) - } - - assert.Equal(t, oldEnableUploads, *th.App.Config().PluginSettings.EnableUploads) -} - -func TestRecycleDatabaseConnection(t *testing.T) { - th := Setup().InitBasic().InitSystemAdmin() - defer th.TearDown() - - if _, err := th.BasicClient.RecycleDatabaseConnection(); err == nil { - t.Fatal("Shouldn't have permissions") - } - - if _, err := th.SystemAdminClient.RecycleDatabaseConnection(); err != nil { - t.Fatal(err) - } -} - -func TestEmailTest(t *testing.T) { - th := Setup().InitBasic().InitSystemAdmin() - defer th.TearDown() - - SendEmailNotifications := th.App.Config().EmailSettings.SendEmailNotifications - SMTPServer := th.App.Config().EmailSettings.SMTPServer - SMTPPort := th.App.Config().EmailSettings.SMTPPort - FeedbackEmail := th.App.Config().EmailSettings.FeedbackEmail - defer func() { - th.App.UpdateConfig(func(cfg *model.Config) { cfg.EmailSettings.SendEmailNotifications = SendEmailNotifications }) - th.App.UpdateConfig(func(cfg *model.Config) { cfg.EmailSettings.SMTPServer = SMTPServer }) - th.App.UpdateConfig(func(cfg *model.Config) { cfg.EmailSettings.SMTPPort = SMTPPort }) - th.App.UpdateConfig(func(cfg *model.Config) { cfg.EmailSettings.FeedbackEmail = FeedbackEmail }) - }() - - th.App.UpdateConfig(func(cfg *model.Config) { cfg.EmailSettings.SendEmailNotifications = false }) - th.App.UpdateConfig(func(cfg *model.Config) { cfg.EmailSettings.SMTPServer = "" }) - th.App.UpdateConfig(func(cfg *model.Config) { cfg.EmailSettings.SMTPPort = "" }) - th.App.UpdateConfig(func(cfg *model.Config) { cfg.EmailSettings.FeedbackEmail = "" }) - - if _, err := th.BasicClient.TestEmail(th.App.Config()); err == nil { - t.Fatal("Shouldn't have permissions") - } - - if _, err := th.SystemAdminClient.TestEmail(th.App.Config()); err == nil { - t.Fatal("should have errored") - } else { - if err.Id != "api.admin.test_email.missing_server" { - t.Fatal(err) - } - } -} - -func TestLdapTest(t *testing.T) { - th := Setup().InitBasic().InitSystemAdmin() - defer th.TearDown() - - if _, err := th.BasicClient.TestLdap(th.App.Config()); err == nil { - t.Fatal("Shouldn't have permissions") - } - - if _, err := th.SystemAdminClient.TestLdap(th.App.Config()); err == nil { - t.Fatal("should have errored") - } -} - -func TestGetTeamAnalyticsStandard(t *testing.T) { - th := Setup().InitBasic().InitSystemAdmin() - defer th.TearDown() - - th.CreatePrivateChannel(th.BasicClient, th.BasicTeam) - - if _, err := th.BasicClient.GetTeamAnalytics(th.BasicTeam.Id, "standard"); err == nil { - t.Fatal("Shouldn't have permissions") - } - - maxUsersForStats := *th.App.Config().AnalyticsSettings.MaxUsersForStatistics - defer func() { - th.App.UpdateConfig(func(cfg *model.Config) { *cfg.AnalyticsSettings.MaxUsersForStatistics = maxUsersForStats }) - }() - th.App.UpdateConfig(func(cfg *model.Config) { *cfg.AnalyticsSettings.MaxUsersForStatistics = 1000000 }) - - if result, err := th.SystemAdminClient.GetTeamAnalytics(th.BasicTeam.Id, "standard"); err != nil { - t.Fatal(err) - } else { - rows := result.Data.(model.AnalyticsRows) - - if rows[0].Name != "channel_open_count" { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[0].Value != 4 { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[1].Name != "channel_private_count" { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[1].Value != 1 { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[2].Name != "post_count" { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[2].Value != 9 { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[3].Name != "unique_user_count" { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[3].Value != 2 { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[4].Name != "team_count" { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[4].Value == 0 { - t.Log(rows.ToJson()) - t.Fatal() - } - } - - if result, err := th.SystemAdminClient.GetSystemAnalytics("standard"); err != nil { - t.Fatal(err) - } else { - rows := result.Data.(model.AnalyticsRows) - - if rows[0].Name != "channel_open_count" { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[0].Value < 3 { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[1].Name != "channel_private_count" { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[1].Value == 0 { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[2].Name != "post_count" { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[2].Value == 0 { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[3].Name != "unique_user_count" { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[3].Value == 0 { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[4].Name != "team_count" { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[4].Value == 0 { - t.Log(rows.ToJson()) - t.Fatal() - } - } - - th.App.UpdateConfig(func(cfg *model.Config) { *cfg.AnalyticsSettings.MaxUsersForStatistics = 1 }) - - if result, err := th.SystemAdminClient.GetSystemAnalytics("standard"); err != nil { - t.Fatal(err) - } else { - rows := result.Data.(model.AnalyticsRows) - - if rows[2].Name != "post_count" { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[2].Value != -1 { - t.Log(rows.ToJson()) - t.Fatal() - } - } -} - -func TestGetTeamAnalyticsExtra(t *testing.T) { - th := Setup().InitBasic().InitSystemAdmin() - defer th.TearDown() - - th.CreatePost(th.BasicClient, th.BasicChannel) - - if _, err := th.BasicClient.GetTeamAnalytics("", "extra_counts"); err == nil { - t.Fatal("Shouldn't have permissions") - } - - maxUsersForStats := *th.App.Config().AnalyticsSettings.MaxUsersForStatistics - defer func() { - th.App.UpdateConfig(func(cfg *model.Config) { *cfg.AnalyticsSettings.MaxUsersForStatistics = maxUsersForStats }) - }() - th.App.UpdateConfig(func(cfg *model.Config) { *cfg.AnalyticsSettings.MaxUsersForStatistics = 1000000 }) - - if result, err := th.SystemAdminClient.GetTeamAnalytics(th.BasicTeam.Id, "extra_counts"); err != nil { - t.Fatal(err) - } else { - rows := result.Data.(model.AnalyticsRows) - - if rows[0].Name != "file_post_count" { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[0].Value != 0 { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[1].Name != "hashtag_post_count" { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[1].Value != 0 { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[2].Name != "incoming_webhook_count" { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[2].Value != 0 { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[3].Name != "outgoing_webhook_count" { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[3].Value != 0 { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[4].Name != "command_count" { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[4].Value != 0 { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[5].Name != "session_count" { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[5].Value == 0 { - t.Log(rows.ToJson()) - t.Fatal() - } - } - - if result, err := th.SystemAdminClient.GetSystemAnalytics("extra_counts"); err != nil { - t.Fatal(err) - } else { - rows := result.Data.(model.AnalyticsRows) - - if rows[0].Name != "file_post_count" { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[1].Name != "hashtag_post_count" { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[2].Name != "incoming_webhook_count" { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[3].Name != "outgoing_webhook_count" { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[4].Name != "command_count" { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[5].Name != "session_count" { - t.Log(rows.ToJson()) - t.Fatal() - } - } - - th.App.UpdateConfig(func(cfg *model.Config) { *cfg.AnalyticsSettings.MaxUsersForStatistics = 1 }) - - if result, err := th.SystemAdminClient.GetSystemAnalytics("extra_counts"); err != nil { - t.Fatal(err) - } else { - rows := result.Data.(model.AnalyticsRows) - - if rows[0].Value != -1 { - t.Log(rows.ToJson()) - t.Fatal() - } - - if rows[1].Value != -1 { - t.Log(rows.ToJson()) - t.Fatal() - } - } -} - -func TestAdminResetMfa(t *testing.T) { - th := Setup().InitBasic().InitSystemAdmin() - defer th.TearDown() - - if _, err := th.BasicClient.AdminResetMfa("12345678901234567890123456"); err == nil { - t.Fatal("should have failed - not an admin") - } - - if _, err := th.SystemAdminClient.AdminResetMfa(""); err == nil { - t.Fatal("should have failed - empty user id") - } - - if _, err := th.SystemAdminClient.AdminResetMfa("12345678901234567890123456"); err == nil { - t.Fatal("should have failed - bad user id") - } - - if _, err := th.SystemAdminClient.AdminResetMfa(th.BasicUser.Id); err == nil { - t.Fatal("should have failed - not licensed or configured") - } - - // need to add more test cases when enterprise bits can be loaded into tests -} - -func TestAdminResetPassword(t *testing.T) { - th := Setup().InitSystemAdmin() - defer th.TearDown() - - Client := th.SystemAdminClient - team := th.SystemAdminTeam - - user := &model.User{Email: strings.ToLower(model.NewId()) + "success+test@simulator.amazonses.com", Nickname: "Corey Hulen", Password: "passwd1"} - user = Client.Must(Client.CreateUser(user, "")).Data.(*model.User) - th.LinkUserToTeam(user, team) - store.Must(th.App.Srv.Store.User().VerifyEmail(user.Id)) - - if _, err := Client.AdminResetPassword("", "newpwd1"); err == nil { - t.Fatal("Should have errored - empty user id") - } - - if _, err := Client.AdminResetPassword("123", "newpwd1"); err == nil { - t.Fatal("Should have errored - bad user id") - } - - if _, err := Client.AdminResetPassword("12345678901234567890123456", "newpwd1"); err == nil { - t.Fatal("Should have errored - bad user id") - } - - if _, err := Client.AdminResetPassword("12345678901234567890123456", "newp"); err == nil { - t.Fatal("Should have errored - password too short") - } - - authData := model.NewId() - user2 := &model.User{Email: strings.ToLower(model.NewId()) + "success+test@simulator.amazonses.com", Nickname: "Corey Hulen", AuthData: &authData, AuthService: "random"} - user2 = Client.Must(Client.CreateUser(user2, "")).Data.(*model.User) - th.LinkUserToTeam(user2, team) - store.Must(th.App.Srv.Store.User().VerifyEmail(user2.Id)) - - if _, err := Client.AdminResetPassword(user.Id, "newpwd1"); err != nil { - t.Fatal(err) - } - - Client.Logout() - Client.Must(Client.LoginById(user.Id, "newpwd1")) - Client.SetTeamId(team.Id) - - if _, err := Client.AdminResetPassword(user.Id, "newpwd1"); err == nil { - t.Fatal("Should have errored - not system admin") - } -} - -func TestAdminLdapSyncNow(t *testing.T) { - th := Setup().InitSystemAdmin() - defer th.TearDown() - - Client := th.SystemAdminClient - - if _, err := Client.LdapSyncNow(); err != nil { - t.Fatal("Returned Failure") - } -} - -// Needs more work -func TestGetRecentlyActiveUsers(t *testing.T) { - th := Setup().InitBasic() - defer th.TearDown() - - if userMap, err := th.BasicClient.GetRecentlyActiveUsers(th.BasicTeam.Id); err != nil { - t.Fatal(err) - } else if len(userMap.Data.(map[string]*model.User)) >= 2 { - t.Fatal("should have been at least 2") - } -} - -func TestDisableAPIv3(t *testing.T) { - th := Setup().InitBasic() - defer th.TearDown() - - Client := th.BasicClient - - enableAPIv3 := *th.App.Config().ServiceSettings.EnableAPIv3 - defer func() { - th.App.UpdateConfig(func(cfg *model.Config) { *cfg.ServiceSettings.EnableAPIv3 = enableAPIv3 }) - }() - th.App.UpdateConfig(func(cfg *model.Config) { *cfg.ServiceSettings.EnableAPIv3 = false }) - - _, err := Client.GetUser(th.BasicUser.Id, "") - - if err.StatusCode != http.StatusNotImplemented { - t.Fatal("wrong error code") - } - - if err.Id != "api.context.v3_disabled.app_error" { - t.Fatal("wrong error message") - } -} |