|
|
|
@ -8,6 +8,7 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
|
|
|
|
|
import Pleroma.Factory
|
|
|
|
|
alias Pleroma.Activity
|
|
|
|
|
alias Pleroma.Config
|
|
|
|
|
alias Pleroma.Delivery
|
|
|
|
|
alias Pleroma.Instances
|
|
|
|
|
alias Pleroma.Object
|
|
|
|
@ -25,8 +26,8 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
:ok
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
clear_config_all([:instance, :federating]) do
|
|
|
|
|
Pleroma.Config.put([:instance, :federating], true)
|
|
|
|
|
clear_config([:instance, :federating]) do
|
|
|
|
|
Config.put([:instance, :federating], true)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe "/relay" do
|
|
|
|
@ -42,12 +43,21 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
test "with the relay disabled, it returns 404", %{conn: conn} do
|
|
|
|
|
Pleroma.Config.put([:instance, :allow_relay], false)
|
|
|
|
|
Config.put([:instance, :allow_relay], false)
|
|
|
|
|
|
|
|
|
|
conn
|
|
|
|
|
|> get(activity_pub_path(conn, :relay))
|
|
|
|
|
|> json_response(404)
|
|
|
|
|
|> assert
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
test "on non-federating instance, it returns 404", %{conn: conn} do
|
|
|
|
|
Config.put([:instance, :federating], false)
|
|
|
|
|
user = insert(:user)
|
|
|
|
|
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:user, user)
|
|
|
|
|
|> get(activity_pub_path(conn, :relay))
|
|
|
|
|
|> json_response(404)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
@ -60,6 +70,16 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
|
|
|
|
|
assert res["id"] =~ "/fetch"
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
test "on non-federating instance, it returns 404", %{conn: conn} do
|
|
|
|
|
Config.put([:instance, :federating], false)
|
|
|
|
|
user = insert(:user)
|
|
|
|
|
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:user, user)
|
|
|
|
|
|> get(activity_pub_path(conn, :internal_fetch))
|
|
|
|
|
|> json_response(404)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe "/users/:nickname" do
|
|
|
|
@ -123,9 +143,34 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
|
|
|
|
|
assert json_response(conn, 404)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
test "it returns error when user is not found", %{conn: conn} do
|
|
|
|
|
response =
|
|
|
|
|
conn
|
|
|
|
|
|> put_req_header("accept", "application/json")
|
|
|
|
|
|> get("/users/jimm")
|
|
|
|
|
|> json_response(404)
|
|
|
|
|
|
|
|
|
|
assert response == "Not found"
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
test "it requires authentication if instance is NOT federating", %{
|
|
|
|
|
conn: conn
|
|
|
|
|
} do
|
|
|
|
|
user = insert(:user)
|
|
|
|
|
|
|
|
|
|
conn =
|
|
|
|
|
put_req_header(
|
|
|
|
|
conn,
|
|
|
|
|
"accept",
|
|
|
|
|
"application/ld+json; profile=\"https://www.w3.org/ns/activitystreams\""
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
ensure_federating_or_authenticated(conn, "/users/#{user.nickname}.json", user)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe "/object/:uuid" do
|
|
|
|
|
describe "/objects/:uuid" do
|
|
|
|
|
test "it returns a json representation of the object with accept application/json", %{
|
|
|
|
|
conn: conn
|
|
|
|
|
} do
|
|
|
|
@ -236,6 +281,18 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
|
|
|
|
|
assert "Not found" == json_response(conn2, :not_found)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
test "it requires authentication if instance is NOT federating", %{
|
|
|
|
|
conn: conn
|
|
|
|
|
} do
|
|
|
|
|
user = insert(:user)
|
|
|
|
|
note = insert(:note)
|
|
|
|
|
uuid = String.split(note.data["id"], "/") |> List.last()
|
|
|
|
|
|
|
|
|
|
conn = put_req_header(conn, "accept", "application/activity+json")
|
|
|
|
|
|
|
|
|
|
ensure_federating_or_authenticated(conn, "/objects/#{uuid}", user)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe "/activities/:uuid" do
|
|
|
|
@ -307,6 +364,18 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
|
|
|
|
|
assert "Not found" == json_response(conn2, :not_found)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
test "it requires authentication if instance is NOT federating", %{
|
|
|
|
|
conn: conn
|
|
|
|
|
} do
|
|
|
|
|
user = insert(:user)
|
|
|
|
|
activity = insert(:note_activity)
|
|
|
|
|
uuid = String.split(activity.data["id"], "/") |> List.last()
|
|
|
|
|
|
|
|
|
|
conn = put_req_header(conn, "accept", "application/activity+json")
|
|
|
|
|
|
|
|
|
|
ensure_federating_or_authenticated(conn, "/activities/#{uuid}", user)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe "/inbox" do
|
|
|
|
@ -341,6 +410,34 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
assert "ok" == json_response(conn, 200)
|
|
|
|
|
assert Instances.reachable?(sender_url)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
test "without valid signature, " <>
|
|
|
|
|
"it only accepts Create activities and requires enabled federation",
|
|
|
|
|
%{conn: conn} do
|
|
|
|
|
data = File.read!("test/fixtures/mastodon-post-activity.json") |> Poison.decode!()
|
|
|
|
|
non_create_data = File.read!("test/fixtures/mastodon-announce.json") |> Poison.decode!()
|
|
|
|
|
|
|
|
|
|
conn = put_req_header(conn, "content-type", "application/activity+json")
|
|
|
|
|
|
|
|
|
|
Config.put([:instance, :federating], false)
|
|
|
|
|
|
|
|
|
|
conn
|
|
|
|
|
|> post("/inbox", data)
|
|
|
|
|
|> json_response(403)
|
|
|
|
|
|
|
|
|
|
conn
|
|
|
|
|
|> post("/inbox", non_create_data)
|
|
|
|
|
|> json_response(403)
|
|
|
|
|
|
|
|
|
|
Config.put([:instance, :federating], true)
|
|
|
|
|
|
|
|
|
|
ret_conn = post(conn, "/inbox", data)
|
|
|
|
|
assert "ok" == json_response(ret_conn, 200)
|
|
|
|
|
|
|
|
|
|
conn
|
|
|
|
|
|> post("/inbox", non_create_data)
|
|
|
|
|
|> json_response(400)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe "/users/:nickname/inbox" do
|
|
|
|
@ -479,22 +576,11 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
|
|
|
|
|
test "it rejects reads from other users", %{conn: conn} do
|
|
|
|
|
user = insert(:user)
|
|
|
|
|
otheruser = insert(:user)
|
|
|
|
|
|
|
|
|
|
conn =
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:user, otheruser)
|
|
|
|
|
|> put_req_header("accept", "application/activity+json")
|
|
|
|
|
|> get("/users/#{user.nickname}/inbox")
|
|
|
|
|
|
|
|
|
|
assert json_response(conn, 403)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
test "it doesn't crash without an authenticated user", %{conn: conn} do
|
|
|
|
|
user = insert(:user)
|
|
|
|
|
other_user = insert(:user)
|
|
|
|
|
|
|
|
|
|
conn =
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:user, other_user)
|
|
|
|
|
|> put_req_header("accept", "application/activity+json")
|
|
|
|
|
|> get("/users/#{user.nickname}/inbox")
|
|
|
|
|
|
|
|
|
@ -575,14 +661,30 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
refute recipient.follower_address in activity.data["cc"]
|
|
|
|
|
refute recipient.follower_address in activity.data["to"]
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
test "it requires authentication", %{conn: conn} do
|
|
|
|
|
user = insert(:user)
|
|
|
|
|
conn = put_req_header(conn, "accept", "application/activity+json")
|
|
|
|
|
|
|
|
|
|
ret_conn = get(conn, "/users/#{user.nickname}/inbox")
|
|
|
|
|
assert json_response(ret_conn, 403)
|
|
|
|
|
|
|
|
|
|
ret_conn =
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:user, user)
|
|
|
|
|
|> get("/users/#{user.nickname}/inbox")
|
|
|
|
|
|
|
|
|
|
assert json_response(ret_conn, 200)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe "GET /users/:nickname/outbox" do
|
|
|
|
|
test "it will not bomb when there is no activity", %{conn: conn} do
|
|
|
|
|
test "it returns 200 even if there're no activities", %{conn: conn} do
|
|
|
|
|
user = insert(:user)
|
|
|
|
|
|
|
|
|
|
conn =
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:user, user)
|
|
|
|
|
|> put_req_header("accept", "application/activity+json")
|
|
|
|
|
|> get("/users/#{user.nickname}/outbox")
|
|
|
|
|
|
|
|
|
@ -597,6 +699,7 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
|
|
|
|
|
conn =
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:user, user)
|
|
|
|
|
|> put_req_header("accept", "application/activity+json")
|
|
|
|
|
|> get("/users/#{user.nickname}/outbox?page=true")
|
|
|
|
|
|
|
|
|
@ -609,26 +712,38 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
|
|
|
|
|
conn =
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:user, user)
|
|
|
|
|
|> put_req_header("accept", "application/activity+json")
|
|
|
|
|
|> get("/users/#{user.nickname}/outbox?page=true")
|
|
|
|
|
|
|
|
|
|
assert response(conn, 200) =~ announce_activity.data["object"]
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
test "it requires authentication if instance is NOT federating", %{
|
|
|
|
|
conn: conn
|
|
|
|
|
} do
|
|
|
|
|
user = insert(:user)
|
|
|
|
|
conn = put_req_header(conn, "accept", "application/activity+json")
|
|
|
|
|
|
|
|
|
|
ensure_federating_or_authenticated(conn, "/users/#{user.nickname}/outbox", user)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe "POST /users/:nickname/outbox" do
|
|
|
|
|
test "it rejects posts from other users", %{conn: conn} do
|
|
|
|
|
test "it rejects posts from other users / unauuthenticated users", %{conn: conn} do
|
|
|
|
|
data = File.read!("test/fixtures/activitypub-client-post-activity.json") |> Poison.decode!()
|
|
|
|
|
user = insert(:user)
|
|
|
|
|
otheruser = insert(:user)
|
|
|
|
|
other_user = insert(:user)
|
|
|
|
|
conn = put_req_header(conn, "content-type", "application/activity+json")
|
|
|
|
|
|
|
|
|
|
conn =
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:user, otheruser)
|
|
|
|
|
|> put_req_header("content-type", "application/activity+json")
|
|
|
|
|
|> post("/users/#{user.nickname}/outbox", data)
|
|
|
|
|
conn
|
|
|
|
|
|> post("/users/#{user.nickname}/outbox", data)
|
|
|
|
|
|> json_response(403)
|
|
|
|
|
|
|
|
|
|
assert json_response(conn, 403)
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:user, other_user)
|
|
|
|
|
|> post("/users/#{user.nickname}/outbox", data)
|
|
|
|
|
|> json_response(403)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
test "it inserts an incoming create activity into the database", %{conn: conn} do
|
|
|
|
@ -743,24 +858,42 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
|
|
|
|
|
result =
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:relay, true)
|
|
|
|
|
|> get("/relay/followers")
|
|
|
|
|
|> json_response(200)
|
|
|
|
|
|
|
|
|
|
assert result["first"]["orderedItems"] == [user.ap_id]
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
test "on non-federating instance, it returns 404", %{conn: conn} do
|
|
|
|
|
Config.put([:instance, :federating], false)
|
|
|
|
|
user = insert(:user)
|
|
|
|
|
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:user, user)
|
|
|
|
|
|> get("/relay/followers")
|
|
|
|
|
|> json_response(404)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe "/relay/following" do
|
|
|
|
|
test "it returns relay following", %{conn: conn} do
|
|
|
|
|
result =
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:relay, true)
|
|
|
|
|
|> get("/relay/following")
|
|
|
|
|
|> json_response(200)
|
|
|
|
|
|
|
|
|
|
assert result["first"]["orderedItems"] == []
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
test "on non-federating instance, it returns 404", %{conn: conn} do
|
|
|
|
|
Config.put([:instance, :federating], false)
|
|
|
|
|
user = insert(:user)
|
|
|
|
|
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:user, user)
|
|
|
|
|
|> get("/relay/following")
|
|
|
|
|
|> json_response(404)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe "/users/:nickname/followers" do
|
|
|
|
@ -771,6 +904,7 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
|
|
|
|
|
result =
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:user, user_two)
|
|
|
|
|
|> get("/users/#{user_two.nickname}/followers")
|
|
|
|
|
|> json_response(200)
|
|
|
|
|
|
|
|
|
@ -784,19 +918,22 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
|
|
|
|
|
result =
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:user, user)
|
|
|
|
|
|> get("/users/#{user_two.nickname}/followers")
|
|
|
|
|
|> json_response(200)
|
|
|
|
|
|
|
|
|
|
assert is_binary(result["first"])
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
test "it returns a 403 error on pages, if the user has 'hide_followers' set and the request is not authenticated",
|
|
|
|
|
test "it returns a 403 error on pages, if the user has 'hide_followers' set and the request is from another user",
|
|
|
|
|
%{conn: conn} do
|
|
|
|
|
user = insert(:user, hide_followers: true)
|
|
|
|
|
user = insert(:user)
|
|
|
|
|
other_user = insert(:user, hide_followers: true)
|
|
|
|
|
|
|
|
|
|
result =
|
|
|
|
|
conn
|
|
|
|
|
|> get("/users/#{user.nickname}/followers?page=1")
|
|
|
|
|
|> assign(:user, user)
|
|
|
|
|
|> get("/users/#{other_user.nickname}/followers?page=1")
|
|
|
|
|
|
|
|
|
|
assert result.status == 403
|
|
|
|
|
assert result.resp_body == ""
|
|
|
|
@ -828,6 +965,7 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
|
|
|
|
|
result =
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:user, user)
|
|
|
|
|
|> get("/users/#{user.nickname}/followers")
|
|
|
|
|
|> json_response(200)
|
|
|
|
|
|
|
|
|
@ -837,12 +975,21 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
|
|
|
|
|
result =
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:user, user)
|
|
|
|
|
|> get("/users/#{user.nickname}/followers?page=2")
|
|
|
|
|
|> json_response(200)
|
|
|
|
|
|
|
|
|
|
assert length(result["orderedItems"]) == 5
|
|
|
|
|
assert result["totalItems"] == 15
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
test "returns 403 if requester is not logged in", %{conn: conn} do
|
|
|
|
|
user = insert(:user)
|
|
|
|
|
|
|
|
|
|
conn
|
|
|
|
|
|> get("/users/#{user.nickname}/followers")
|
|
|
|
|
|> json_response(403)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe "/users/:nickname/following" do
|
|
|
|
@ -853,6 +1000,7 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
|
|
|
|
|
result =
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:user, user)
|
|
|
|
|
|> get("/users/#{user.nickname}/following")
|
|
|
|
|
|> json_response(200)
|
|
|
|
|
|
|
|
|
@ -860,25 +1008,28 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
test "it returns a uri if the user has 'hide_follows' set", %{conn: conn} do
|
|
|
|
|
user = insert(:user, hide_follows: true)
|
|
|
|
|
user_two = insert(:user)
|
|
|
|
|
user = insert(:user)
|
|
|
|
|
user_two = insert(:user, hide_follows: true)
|
|
|
|
|
User.follow(user, user_two)
|
|
|
|
|
|
|
|
|
|
result =
|
|
|
|
|
conn
|
|
|
|
|
|> get("/users/#{user.nickname}/following")
|
|
|
|
|
|> assign(:user, user)
|
|
|
|
|
|> get("/users/#{user_two.nickname}/following")
|
|
|
|
|
|> json_response(200)
|
|
|
|
|
|
|
|
|
|
assert is_binary(result["first"])
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
test "it returns a 403 error on pages, if the user has 'hide_follows' set and the request is not authenticated",
|
|
|
|
|
test "it returns a 403 error on pages, if the user has 'hide_follows' set and the request is from another user",
|
|
|
|
|
%{conn: conn} do
|
|
|
|
|
user = insert(:user, hide_follows: true)
|
|
|
|
|
user = insert(:user)
|
|
|
|
|
user_two = insert(:user, hide_follows: true)
|
|
|
|
|
|
|
|
|
|
result =
|
|
|
|
|
conn
|
|
|
|
|
|> get("/users/#{user.nickname}/following?page=1")
|
|
|
|
|
|> assign(:user, user)
|
|
|
|
|
|> get("/users/#{user_two.nickname}/following?page=1")
|
|
|
|
|
|
|
|
|
|
assert result.status == 403
|
|
|
|
|
assert result.resp_body == ""
|
|
|
|
@ -911,6 +1062,7 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
|
|
|
|
|
result =
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:user, user)
|
|
|
|
|
|> get("/users/#{user.nickname}/following")
|
|
|
|
|
|> json_response(200)
|
|
|
|
|
|
|
|
|
@ -920,12 +1072,21 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
|
|
|
|
|
result =
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:user, user)
|
|
|
|
|
|> get("/users/#{user.nickname}/following?page=2")
|
|
|
|
|
|> json_response(200)
|
|
|
|
|
|
|
|
|
|
assert length(result["orderedItems"]) == 5
|
|
|
|
|
assert result["totalItems"] == 15
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
test "returns 403 if requester is not logged in", %{conn: conn} do
|
|
|
|
|
user = insert(:user)
|
|
|
|
|
|
|
|
|
|
conn
|
|
|
|
|
|> get("/users/#{user.nickname}/following")
|
|
|
|
|
|> json_response(403)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe "delivery tracking" do
|
|
|
|
@ -1011,7 +1172,7 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe "Additional ActivityPub C2S endpoints" do
|
|
|
|
|
test "/api/ap/whoami", %{conn: conn} do
|
|
|
|
|
test "GET /api/ap/whoami", %{conn: conn} do
|
|
|
|
|
user = insert(:user)
|
|
|
|
|
|
|
|
|
|
conn =
|
|
|
|
@ -1022,12 +1183,16 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
user = User.get_cached_by_id(user.id)
|
|
|
|
|
|
|
|
|
|
assert UserView.render("user.json", %{user: user}) == json_response(conn, 200)
|
|
|
|
|
|
|
|
|
|
conn
|
|
|
|
|
|> get("/api/ap/whoami")
|
|
|
|
|
|> json_response(403)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
clear_config([:media_proxy])
|
|
|
|
|
clear_config([Pleroma.Upload])
|
|
|
|
|
|
|
|
|
|
test "uploadMedia", %{conn: conn} do
|
|
|
|
|
test "POST /api/ap/upload_media", %{conn: conn} do
|
|
|
|
|
user = insert(:user)
|
|
|
|
|
|
|
|
|
|
desc = "Description of the image"
|
|
|
|
@ -1047,67 +1212,10 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
|
|
|
|
assert object["name"] == desc
|
|
|
|
|
assert object["type"] == "Document"
|
|
|
|
|
assert object["actor"] == user.ap_id
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
describe "when instance is not federating," do
|
|
|
|
|
clear_config([:instance, :federating]) do
|
|
|
|
|
Pleroma.Config.put([:instance, :federating], false)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
test "returns 404 for GET routes", %{conn: conn} do
|
|
|
|
|
user = insert(:user)
|
|
|
|
|
conn = put_req_header(conn, "accept", "application/json")
|
|
|
|
|
|
|
|
|
|
get_uris = [
|
|
|
|
|
"/users/#{user.nickname}",
|
|
|
|
|
"/internal/fetch",
|
|
|
|
|
"/relay",
|
|
|
|
|
"/relay/following",
|
|
|
|
|
"/relay/followers"
|
|
|
|
|
]
|
|
|
|
|
|
|
|
|
|
for get_uri <- get_uris do
|
|
|
|
|
conn
|
|
|
|
|
|> get(get_uri)
|
|
|
|
|
|> json_response(404)
|
|
|
|
|
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:user, user)
|
|
|
|
|
|> get(get_uri)
|
|
|
|
|
|> json_response(404)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
test "returns 404 for activity-related POST routes", %{conn: conn} do
|
|
|
|
|
user = insert(:user)
|
|
|
|
|
|
|
|
|
|
conn =
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:valid_signature, true)
|
|
|
|
|
|> put_req_header("content-type", "application/activity+json")
|
|
|
|
|
|
|
|
|
|
post_activity_data =
|
|
|
|
|
"test/fixtures/mastodon-post-activity.json"
|
|
|
|
|
|> File.read!()
|
|
|
|
|
|> Poison.decode!()
|
|
|
|
|
|
|
|
|
|
post_activity_uris = [
|
|
|
|
|
"/inbox",
|
|
|
|
|
"/relay/inbox",
|
|
|
|
|
"/users/#{user.nickname}/inbox"
|
|
|
|
|
]
|
|
|
|
|
|
|
|
|
|
for post_activity_uri <- post_activity_uris do
|
|
|
|
|
conn
|
|
|
|
|
|> post(post_activity_uri, post_activity_data)
|
|
|
|
|
|> json_response(404)
|
|
|
|
|
|
|
|
|
|
conn
|
|
|
|
|
|> assign(:user, user)
|
|
|
|
|
|> post(post_activity_uri, post_activity_data)
|
|
|
|
|
|> json_response(404)
|
|
|
|
|
end
|
|
|
|
|
conn
|
|
|
|
|
|> post("/api/ap/upload_media", %{"file" => image, "description" => desc})
|
|
|
|
|
|> json_response(403)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|