2016-02-29 16:30:02 +00:00
|
|
|
Feature: carddav
|
|
|
|
Scenario: Accessing a not existing addressbook of another user
|
|
|
|
Given user "user0" exists
|
2017-02-10 13:01:26 +00:00
|
|
|
When "admin" requests addressbook "user0/MyAddressbook" with statuscode "404" on the endpoint "/remote.php/dav/addressbooks/users/"
|
2016-02-29 16:30:02 +00:00
|
|
|
And The CardDAV exception is "Sabre\DAV\Exception\NotFound"
|
|
|
|
And The CardDAV error message is "Addressbook with name 'MyAddressbook' could not be found"
|
|
|
|
|
|
|
|
Scenario: Accessing a not shared addressbook of another user
|
|
|
|
Given user "user0" exists
|
|
|
|
Given "admin" creates an addressbook named "MyAddressbook" with statuscode "201"
|
2017-02-10 13:01:26 +00:00
|
|
|
When "user0" requests addressbook "admin/MyAddressbook" with statuscode "404" on the endpoint "/remote.php/dav/addressbooks/users/"
|
|
|
|
And The CardDAV exception is "Sabre\DAV\Exception\NotFound"
|
|
|
|
And The CardDAV error message is "Addressbook with name 'MyAddressbook' could not be found"
|
|
|
|
|
|
|
|
Scenario: Accessing a not existing addressbook of another user via legacy endpoint
|
|
|
|
Given user "user0" exists
|
|
|
|
When "admin" requests addressbook "user0/MyAddressbook" with statuscode "404" on the endpoint "/remote.php/carddav/addressbooks/"
|
|
|
|
And The CardDAV exception is "Sabre\DAV\Exception\NotFound"
|
|
|
|
And The CardDAV error message is "Addressbook with name 'MyAddressbook' could not be found"
|
|
|
|
|
|
|
|
Scenario: Accessing a not shared addressbook of another user via legacy endpoint
|
|
|
|
Given user "user0" exists
|
|
|
|
Given "admin" creates an addressbook named "MyAddressbook" with statuscode "201"
|
|
|
|
When "user0" requests addressbook "admin/MyAddressbook" with statuscode "404" on the endpoint "/remote.php/carddav/addressbooks/"
|
2016-02-29 16:30:02 +00:00
|
|
|
And The CardDAV exception is "Sabre\DAV\Exception\NotFound"
|
|
|
|
And The CardDAV error message is "Addressbook with name 'MyAddressbook' could not be found"
|
|
|
|
|
|
|
|
Scenario: Accessing a not existing addressbook of myself
|
|
|
|
Given user "user0" exists
|
2017-02-10 13:01:26 +00:00
|
|
|
When "user0" requests addressbook "admin/MyAddressbook" with statuscode "404" on the endpoint "/remote.php/dav/addressbooks/users/"
|
2016-02-29 16:30:02 +00:00
|
|
|
And The CardDAV exception is "Sabre\DAV\Exception\NotFound"
|
|
|
|
And The CardDAV error message is "Addressbook with name 'MyAddressbook' could not be found"
|
|
|
|
|
|
|
|
Scenario: Creating a new addressbook
|
|
|
|
When "admin" creates an addressbook named "MyAddressbook" with statuscode "201"
|
2017-02-10 13:01:26 +00:00
|
|
|
Then "admin" requests addressbook "admin/MyAddressbook" with statuscode "207" on the endpoint "/remote.php/dav/addressbooks/users/"
|
2016-12-14 16:35:27 +00:00
|
|
|
|
|
|
|
Scenario: Accessing ones own contact
|
|
|
|
Given "admin" creates an addressbook named "MyAddressbook" with statuscode "201"
|
|
|
|
Given "admin" uploads the contact "bjoern.vcf" to the addressbook "MyAddressbook"
|
|
|
|
When Downloading the contact "bjoern.vcf" from addressbook "MyAddressbook" as user "admin"
|
|
|
|
Then The following HTTP headers should be set
|
|
|
|
|Content-Disposition|attachment; filename*=UTF-8''bjoern.vcf; filename="bjoern.vcf"|
|
|
|
|
|Content-Type|text/vcard; charset=utf-8|
|
|
|
|
|Content-Security-Policy|default-src 'none';|
|
|
|
|
|X-Content-Type-Options |nosniff|
|
|
|
|
|X-Download-Options|noopen|
|
2017-04-12 10:37:32 +00:00
|
|
|
|X-Frame-Options|SAMEORIGIN|
|
2016-12-14 16:35:27 +00:00
|
|
|
|X-Permitted-Cross-Domain-Policies|none|
|
|
|
|
|X-Robots-Tag|none|
|
|
|
|
|X-XSS-Protection|1; mode=block|
|
|
|
|
|
|
|
|
Scenario: Exporting the picture of ones own contact
|
|
|
|
Given "admin" creates an addressbook named "MyAddressbook" with statuscode "201"
|
|
|
|
Given "admin" uploads the contact "bjoern.vcf" to the addressbook "MyAddressbook"
|
|
|
|
When Exporting the picture of contact "bjoern.vcf" from addressbook "MyAddressbook" as user "admin"
|
|
|
|
Then The following HTTP headers should be set
|
|
|
|
|Content-Disposition|attachment|
|
|
|
|
|Content-Type|image/jpeg|
|
|
|
|
|Content-Security-Policy|default-src 'none';|
|
|
|
|
|X-Content-Type-Options |nosniff|
|
|
|
|
|X-Download-Options|noopen|
|
2017-04-12 10:37:32 +00:00
|
|
|
|X-Frame-Options|SAMEORIGIN|
|
2016-12-14 16:35:27 +00:00
|
|
|
|X-Permitted-Cross-Domain-Policies|none|
|
|
|
|
|X-Robots-Tag|none|
|
|
|
|
|X-XSS-Protection|1; mode=block|
|