require 'rails_helper' RSpec.describe 'Conversation Messages API', type: :request do let!(:account) { create(:account) } describe 'POST /api/v1/accounts/{account.id}/conversations//messages' do let!(:inbox) { create(:inbox, account: account) } let!(:conversation) { create(:conversation, inbox: inbox, account: account) } context 'when it is an unauthenticated user' do it 'returns unauthorized' do post api_v1_account_conversation_messages_url(account_id: account.id, conversation_id: conversation.display_id) expect(response).to have_http_status(:unauthorized) end end context 'when it is an authenticated user with access to conversation' do let(:agent) { create(:user, account: account, role: :agent) } before do create(:inbox_member, inbox: conversation.inbox, user: agent) end it 'creates a new outgoing message' do params = { content: 'test-message', private: true } post api_v1_account_conversation_messages_url(account_id: account.id, conversation_id: conversation.display_id), params: params, headers: agent.create_new_auth_token, as: :json expect(response).to have_http_status(:success) expect(conversation.messages.count).to eq(1) expect(conversation.messages.first.content).to eq(params[:content]) end it 'does not create the message' do params = { content: "#{'h' * 150 * 1000}a", private: true } post api_v1_account_conversation_messages_url(account_id: account.id, conversation_id: conversation.display_id), params: params, headers: agent.create_new_auth_token, as: :json expect(response).to have_http_status(:unprocessable_entity) json_response = JSON.parse(response.body) expect(json_response['error']).to eq('Validation failed: Content is too long (maximum is 150000 characters)') end it 'creates an outgoing text message with a specific bot sender' do agent_bot = create(:agent_bot) time_stamp = Time.now.utc.to_s params = { content: 'test-message', external_created_at: time_stamp, sender_type: 'AgentBot', sender_id: agent_bot.id } post api_v1_account_conversation_messages_url(account_id: account.id, conversation_id: conversation.display_id), params: params, headers: agent.create_new_auth_token, as: :json expect(response).to have_http_status(:success) response_data = JSON.parse(response.body) expect(response_data['content_attributes']['external_created_at']).to eq time_stamp expect(conversation.messages.count).to eq(1) expect(conversation.messages.last.sender_id).to eq(agent_bot.id) expect(conversation.messages.last.content_type).to eq('text') end it 'creates a new outgoing message with attachment' do file = fixture_file_upload(Rails.root.join('spec/assets/avatar.png'), 'image/png') params = { content: 'test-message', attachments: [file] } post api_v1_account_conversation_messages_url(account_id: account.id, conversation_id: conversation.display_id), params: params, headers: agent.create_new_auth_token expect(response).to have_http_status(:success) expect(conversation.messages.last.attachments.first.file.present?).to be(true) expect(conversation.messages.last.attachments.first.file_type).to eq('image') end end context 'when it is an authenticated agent bot' do let!(:agent_bot) { create(:agent_bot) } it 'creates a new outgoing message' do create(:agent_bot_inbox, inbox: inbox, agent_bot: agent_bot) params = { content: 'test-message' } post api_v1_account_conversation_messages_url(account_id: account.id, conversation_id: conversation.display_id), params: params, headers: { api_access_token: agent_bot.access_token.token }, as: :json expect(response).to have_http_status(:success) expect(conversation.messages.count).to eq(1) expect(conversation.messages.first.content).to eq(params[:content]) end it 'creates a new outgoing input select message' do create(:agent_bot_inbox, inbox: inbox, agent_bot: agent_bot) select_item1 = build(:bot_message_select) select_item2 = build(:bot_message_select) params = { content_type: 'input_select', content_attributes: { items: [select_item1, select_item2] } } post api_v1_account_conversation_messages_url(account_id: account.id, conversation_id: conversation.display_id), params: params, headers: { api_access_token: agent_bot.access_token.token }, as: :json expect(response).to have_http_status(:success) expect(conversation.messages.count).to eq(1) expect(conversation.messages.first.content_type).to eq(params[:content_type]) expect(conversation.messages.first.content).to be_nil end it 'creates a new outgoing cards message' do create(:agent_bot_inbox, inbox: inbox, agent_bot: agent_bot) card = build(:bot_message_card) params = { content_type: 'cards', content_attributes: { items: [card] } } post api_v1_account_conversation_messages_url(account_id: account.id, conversation_id: conversation.display_id), params: params, headers: { api_access_token: agent_bot.access_token.token }, as: :json expect(response).to have_http_status(:success) expect(conversation.messages.count).to eq(1) expect(conversation.messages.first.content_type).to eq(params[:content_type]) end end end describe 'GET /api/v1/accounts/{account.id}/conversations/:id/messages' do let(:conversation) { create(:conversation, account: account) } context 'when it is an unauthenticated user' do it 'returns unauthorized' do get "/api/v1/accounts/#{account.id}/conversations/#{conversation.display_id}/messages" expect(response).to have_http_status(:unauthorized) end end context 'when it is an authenticated user with access to conversation' do let(:agent) { create(:user, account: account, role: :agent) } before do create(:inbox_member, inbox: conversation.inbox, user: agent) end it 'shows the conversation' do get "/api/v1/accounts/#{account.id}/conversations/#{conversation.display_id}/messages", headers: agent.create_new_auth_token, as: :json expect(response).to have_http_status(:success) expect(JSON.parse(response.body, symbolize_names: true)[:meta][:contact][:id]).to eq(conversation.contact_id) end end end describe 'DELETE /api/v1/accounts/{account.id}/conversations/:conversation_id/messages/:id' do let(:message) { create(:message, account: account, content_attributes: { bcc_emails: ['hello@chatwoot.com'] }) } let(:conversation) { message.conversation } context 'when it is an unauthenticated user' do it 'returns unauthorized' do delete "/api/v1/accounts/#{account.id}/conversations/#{conversation.display_id}/messages/#{message.id}" expect(response).to have_http_status(:unauthorized) end end context 'when it is an authenticated user with access to conversation' do let(:agent) { create(:user, account: account, role: :agent) } before do create(:inbox_member, inbox: conversation.inbox, user: agent) end it 'deletes the message' do delete "/api/v1/accounts/#{account.id}/conversations/#{conversation.display_id}/messages/#{message.id}", headers: agent.create_new_auth_token, as: :json expect(response).to have_http_status(:success) expect(message.reload.content).to eq 'This message was deleted' expect(message.reload.deleted).to be true expect(message.reload.content_attributes['bcc_emails']).to be_nil end end context 'when the message id is invalid' do let(:agent) { create(:user, account: account, role: :agent) } before do create(:inbox_member, inbox: conversation.inbox, user: agent) end it 'returns not found error' do delete "/api/v1/accounts/#{account.id}/conversations/#{conversation.display_id}/messages/99999", headers: agent.create_new_auth_token, as: :json expect(response).to have_http_status(:not_found) end end end end