Auth: Extend account settings with user details and avatar upload #98

Signed-off-by: Michael Mayer <michael@photoprism.app>
2025-12-12 00:34:13 +01:00 · 2022-10-17 19:07:38 +02:00
parent 2cf420d04a
commit 837669f796
93 changed files with 2634 additions and 1212 deletions
--- a/internal/api/users_update_test.go
+++ b/internal/api/users_update_test.go
@@ -0,0 +1,36 @@
+package api
+
+import (
+	"fmt"
+	"net/http"
+	"testing"
+
+	"github.com/stretchr/testify/assert"
+
+	"github.com/photoprism/photoprism/internal/config"
+	"github.com/photoprism/photoprism/internal/entity"
+)
+
+func TestUpdateUser(t *testing.T) {
+	t.Run("Alice", func(t *testing.T) {
+		app, router, conf := NewApiTest()
+		conf.SetAuthMode(config.AuthModePasswd)
+		defer conf.SetAuthMode(config.AuthModePublic)
+		UpdateUser(router)
+		sessId := AuthenticateUser(app, router, "alice", "Alice123!")
+		adminUid := entity.Admin.UserUID
+		reqUrl := fmt.Sprintf("/api/v1/users/%s", adminUid)
+		t.Logf("Request URL: %s", reqUrl)
+		r := AuthenticatedRequestWithBody(app, "PUT", reqUrl, "{Email:\"admin@example.com\",Details:{Location:\"WebStorm\"}}", sessId)
+		assert.Equal(t, http.StatusBadRequest, r.Code)
+	})
+
+	t.Run("Forbidden", func(t *testing.T) {
+		app, router, _ := NewApiTest()
+		adminUid := entity.Admin.UserUID
+		reqUrl := fmt.Sprintf("/api/v1/users/%s", adminUid)
+		UpdateUser(router)
+		r := PerformRequestWithBody(app, "PUT", reqUrl, "{foo:123}")
+		assert.Equal(t, http.StatusBadRequest, r.Code)
+	})
+}