2431 lines
69 KiB
Elixir
2431 lines
69 KiB
Elixir
# Pleroma: A lightweight social networking server
|
|
# Copyright © 2017-2019 Pleroma Authors <https://pleroma.social/>
|
|
# SPDX-License-Identifier: AGPL-3.0-only
|
|
|
|
defmodule Pleroma.Web.MastodonAPI.MastodonAPIControllerTest do
|
|
use Pleroma.Web.ConnCase
|
|
|
|
alias Ecto.Changeset
|
|
alias Pleroma.Activity
|
|
alias Pleroma.Config
|
|
alias Pleroma.Notification
|
|
alias Pleroma.Object
|
|
alias Pleroma.Repo
|
|
alias Pleroma.ScheduledActivity
|
|
alias Pleroma.Tests.ObanHelpers
|
|
alias Pleroma.User
|
|
alias Pleroma.Web.ActivityPub.ActivityPub
|
|
alias Pleroma.Web.CommonAPI
|
|
alias Pleroma.Web.MastodonAPI.FilterView
|
|
alias Pleroma.Web.OAuth.App
|
|
alias Pleroma.Web.OAuth.Token
|
|
alias Pleroma.Web.Push
|
|
|
|
import ExUnit.CaptureLog
|
|
import Pleroma.Factory
|
|
import Swoosh.TestAssertions
|
|
import Tesla.Mock
|
|
|
|
@image "data:image/gif;base64,R0lGODlhEAAQAMQAAORHHOVSKudfOulrSOp3WOyDZu6QdvCchPGolfO0o/XBs/fNwfjZ0frl3/zy7////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAkAABAALAAAAAAQABAAAAVVICSOZGlCQAosJ6mu7fiyZeKqNKToQGDsM8hBADgUXoGAiqhSvp5QAnQKGIgUhwFUYLCVDFCrKUE1lBavAViFIDlTImbKC5Gm2hB0SlBCBMQiB0UjIQA7"
|
|
|
|
setup do
|
|
mock(fn env -> apply(HttpRequestMock, :request, [env]) end)
|
|
:ok
|
|
end
|
|
|
|
clear_config([:instance, :public])
|
|
clear_config([:rich_media, :enabled])
|
|
|
|
test "Conversations", %{conn: conn} do
|
|
user_one = insert(:user)
|
|
user_two = insert(:user)
|
|
user_three = insert(:user)
|
|
|
|
{:ok, user_two} = User.follow(user_two, user_one)
|
|
|
|
{:ok, direct} =
|
|
CommonAPI.post(user_one, %{
|
|
"status" => "Hi @#{user_two.nickname}, @#{user_three.nickname}!",
|
|
"visibility" => "direct"
|
|
})
|
|
|
|
{:ok, _follower_only} =
|
|
CommonAPI.post(user_one, %{
|
|
"status" => "Hi @#{user_two.nickname}!",
|
|
"visibility" => "private"
|
|
})
|
|
|
|
res_conn =
|
|
conn
|
|
|> assign(:user, user_one)
|
|
|> get("/api/v1/conversations")
|
|
|
|
assert response = json_response(res_conn, 200)
|
|
|
|
assert [
|
|
%{
|
|
"id" => res_id,
|
|
"accounts" => res_accounts,
|
|
"last_status" => res_last_status,
|
|
"unread" => unread
|
|
}
|
|
] = response
|
|
|
|
account_ids = Enum.map(res_accounts, & &1["id"])
|
|
assert length(res_accounts) == 2
|
|
assert user_two.id in account_ids
|
|
assert user_three.id in account_ids
|
|
assert is_binary(res_id)
|
|
assert unread == true
|
|
assert res_last_status["id"] == direct.id
|
|
|
|
# Apparently undocumented API endpoint
|
|
res_conn =
|
|
conn
|
|
|> assign(:user, user_one)
|
|
|> post("/api/v1/conversations/#{res_id}/read")
|
|
|
|
assert response = json_response(res_conn, 200)
|
|
assert length(response["accounts"]) == 2
|
|
assert response["last_status"]["id"] == direct.id
|
|
assert response["unread"] == false
|
|
|
|
# (vanilla) Mastodon frontend behaviour
|
|
res_conn =
|
|
conn
|
|
|> assign(:user, user_one)
|
|
|> get("/api/v1/statuses/#{res_last_status["id"]}/context")
|
|
|
|
assert %{"ancestors" => [], "descendants" => []} == json_response(res_conn, 200)
|
|
end
|
|
|
|
test "verify_credentials", %{conn: conn} do
|
|
user = insert(:user)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/accounts/verify_credentials")
|
|
|
|
response = json_response(conn, 200)
|
|
|
|
assert %{"id" => id, "source" => %{"privacy" => "public"}} = response
|
|
assert response["pleroma"]["chat_token"]
|
|
assert id == to_string(user.id)
|
|
end
|
|
|
|
test "verify_credentials default scope unlisted", %{conn: conn} do
|
|
user = insert(:user, %{info: %User.Info{default_scope: "unlisted"}})
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/accounts/verify_credentials")
|
|
|
|
assert %{"id" => id, "source" => %{"privacy" => "unlisted"}} = json_response(conn, 200)
|
|
assert id == to_string(user.id)
|
|
end
|
|
|
|
test "apps/verify_credentials", %{conn: conn} do
|
|
token = insert(:oauth_token)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, token.user)
|
|
|> assign(:token, token)
|
|
|> get("/api/v1/apps/verify_credentials")
|
|
|
|
app = Repo.preload(token, :app).app
|
|
|
|
expected = %{
|
|
"name" => app.client_name,
|
|
"website" => app.website,
|
|
"vapid_key" => Push.vapid_config() |> Keyword.get(:public_key)
|
|
}
|
|
|
|
assert expected == json_response(conn, 200)
|
|
end
|
|
|
|
test "user avatar can be set", %{conn: conn} do
|
|
user = insert(:user)
|
|
avatar_image = File.read!("test/fixtures/avatar_data_uri")
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> patch("/api/v1/pleroma/accounts/update_avatar", %{img: avatar_image})
|
|
|
|
user = refresh_record(user)
|
|
|
|
assert %{
|
|
"name" => _,
|
|
"type" => _,
|
|
"url" => [
|
|
%{
|
|
"href" => _,
|
|
"mediaType" => _,
|
|
"type" => _
|
|
}
|
|
]
|
|
} = user.avatar
|
|
|
|
assert %{"url" => _} = json_response(conn, 200)
|
|
end
|
|
|
|
test "user avatar can be reset", %{conn: conn} do
|
|
user = insert(:user)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> patch("/api/v1/pleroma/accounts/update_avatar", %{img: ""})
|
|
|
|
user = User.get_cached_by_id(user.id)
|
|
|
|
assert user.avatar == nil
|
|
|
|
assert %{"url" => nil} = json_response(conn, 200)
|
|
end
|
|
|
|
test "can set profile banner", %{conn: conn} do
|
|
user = insert(:user)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> patch("/api/v1/pleroma/accounts/update_banner", %{"banner" => @image})
|
|
|
|
user = refresh_record(user)
|
|
assert user.info.banner["type"] == "Image"
|
|
|
|
assert %{"url" => _} = json_response(conn, 200)
|
|
end
|
|
|
|
test "can reset profile banner", %{conn: conn} do
|
|
user = insert(:user)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> patch("/api/v1/pleroma/accounts/update_banner", %{"banner" => ""})
|
|
|
|
user = refresh_record(user)
|
|
assert user.info.banner == %{}
|
|
|
|
assert %{"url" => nil} = json_response(conn, 200)
|
|
end
|
|
|
|
test "background image can be set", %{conn: conn} do
|
|
user = insert(:user)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> patch("/api/v1/pleroma/accounts/update_background", %{"img" => @image})
|
|
|
|
user = refresh_record(user)
|
|
assert user.info.background["type"] == "Image"
|
|
assert %{"url" => _} = json_response(conn, 200)
|
|
end
|
|
|
|
test "background image can be reset", %{conn: conn} do
|
|
user = insert(:user)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> patch("/api/v1/pleroma/accounts/update_background", %{"img" => ""})
|
|
|
|
user = refresh_record(user)
|
|
assert user.info.background == %{}
|
|
assert %{"url" => nil} = json_response(conn, 200)
|
|
end
|
|
|
|
test "creates an oauth app", %{conn: conn} do
|
|
user = insert(:user)
|
|
app_attrs = build(:oauth_app)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> post("/api/v1/apps", %{
|
|
client_name: app_attrs.client_name,
|
|
redirect_uris: app_attrs.redirect_uris
|
|
})
|
|
|
|
[app] = Repo.all(App)
|
|
|
|
expected = %{
|
|
"name" => app.client_name,
|
|
"website" => app.website,
|
|
"client_id" => app.client_id,
|
|
"client_secret" => app.client_secret,
|
|
"id" => app.id |> to_string(),
|
|
"redirect_uri" => app.redirect_uris,
|
|
"vapid_key" => Push.vapid_config() |> Keyword.get(:public_key)
|
|
}
|
|
|
|
assert expected == json_response(conn, 200)
|
|
end
|
|
|
|
describe "filters" do
|
|
test "creating a filter", %{conn: conn} do
|
|
user = insert(:user)
|
|
|
|
filter = %Pleroma.Filter{
|
|
phrase: "knights",
|
|
context: ["home"]
|
|
}
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> post("/api/v1/filters", %{"phrase" => filter.phrase, context: filter.context})
|
|
|
|
assert response = json_response(conn, 200)
|
|
assert response["phrase"] == filter.phrase
|
|
assert response["context"] == filter.context
|
|
assert response["irreversible"] == false
|
|
assert response["id"] != nil
|
|
assert response["id"] != ""
|
|
end
|
|
|
|
test "fetching a list of filters", %{conn: conn} do
|
|
user = insert(:user)
|
|
|
|
query_one = %Pleroma.Filter{
|
|
user_id: user.id,
|
|
filter_id: 1,
|
|
phrase: "knights",
|
|
context: ["home"]
|
|
}
|
|
|
|
query_two = %Pleroma.Filter{
|
|
user_id: user.id,
|
|
filter_id: 2,
|
|
phrase: "who",
|
|
context: ["home"]
|
|
}
|
|
|
|
{:ok, filter_one} = Pleroma.Filter.create(query_one)
|
|
{:ok, filter_two} = Pleroma.Filter.create(query_two)
|
|
|
|
response =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/filters")
|
|
|> json_response(200)
|
|
|
|
assert response ==
|
|
render_json(
|
|
FilterView,
|
|
"filters.json",
|
|
filters: [filter_two, filter_one]
|
|
)
|
|
end
|
|
|
|
test "get a filter", %{conn: conn} do
|
|
user = insert(:user)
|
|
|
|
query = %Pleroma.Filter{
|
|
user_id: user.id,
|
|
filter_id: 2,
|
|
phrase: "knight",
|
|
context: ["home"]
|
|
}
|
|
|
|
{:ok, filter} = Pleroma.Filter.create(query)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/filters/#{filter.filter_id}")
|
|
|
|
assert _response = json_response(conn, 200)
|
|
end
|
|
|
|
test "update a filter", %{conn: conn} do
|
|
user = insert(:user)
|
|
|
|
query = %Pleroma.Filter{
|
|
user_id: user.id,
|
|
filter_id: 2,
|
|
phrase: "knight",
|
|
context: ["home"]
|
|
}
|
|
|
|
{:ok, _filter} = Pleroma.Filter.create(query)
|
|
|
|
new = %Pleroma.Filter{
|
|
phrase: "nii",
|
|
context: ["home"]
|
|
}
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> put("/api/v1/filters/#{query.filter_id}", %{
|
|
phrase: new.phrase,
|
|
context: new.context
|
|
})
|
|
|
|
assert response = json_response(conn, 200)
|
|
assert response["phrase"] == new.phrase
|
|
assert response["context"] == new.context
|
|
end
|
|
|
|
test "delete a filter", %{conn: conn} do
|
|
user = insert(:user)
|
|
|
|
query = %Pleroma.Filter{
|
|
user_id: user.id,
|
|
filter_id: 2,
|
|
phrase: "knight",
|
|
context: ["home"]
|
|
}
|
|
|
|
{:ok, filter} = Pleroma.Filter.create(query)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> delete("/api/v1/filters/#{filter.filter_id}")
|
|
|
|
assert response = json_response(conn, 200)
|
|
assert response == %{}
|
|
end
|
|
end
|
|
|
|
describe "user timelines" do
|
|
test "gets a users statuses", %{conn: conn} do
|
|
user_one = insert(:user)
|
|
user_two = insert(:user)
|
|
user_three = insert(:user)
|
|
|
|
{:ok, user_three} = User.follow(user_three, user_one)
|
|
|
|
{:ok, activity} = CommonAPI.post(user_one, %{"status" => "HI!!!"})
|
|
|
|
{:ok, direct_activity} =
|
|
CommonAPI.post(user_one, %{
|
|
"status" => "Hi, @#{user_two.nickname}.",
|
|
"visibility" => "direct"
|
|
})
|
|
|
|
{:ok, private_activity} =
|
|
CommonAPI.post(user_one, %{"status" => "private", "visibility" => "private"})
|
|
|
|
resp =
|
|
conn
|
|
|> get("/api/v1/accounts/#{user_one.id}/statuses")
|
|
|
|
assert [%{"id" => id}] = json_response(resp, 200)
|
|
assert id == to_string(activity.id)
|
|
|
|
resp =
|
|
conn
|
|
|> assign(:user, user_two)
|
|
|> get("/api/v1/accounts/#{user_one.id}/statuses")
|
|
|
|
assert [%{"id" => id_one}, %{"id" => id_two}] = json_response(resp, 200)
|
|
assert id_one == to_string(direct_activity.id)
|
|
assert id_two == to_string(activity.id)
|
|
|
|
resp =
|
|
conn
|
|
|> assign(:user, user_three)
|
|
|> get("/api/v1/accounts/#{user_one.id}/statuses")
|
|
|
|
assert [%{"id" => id_one}, %{"id" => id_two}] = json_response(resp, 200)
|
|
assert id_one == to_string(private_activity.id)
|
|
assert id_two == to_string(activity.id)
|
|
end
|
|
|
|
test "unimplemented pinned statuses feature", %{conn: conn} do
|
|
note = insert(:note_activity)
|
|
user = User.get_cached_by_ap_id(note.data["actor"])
|
|
|
|
conn =
|
|
conn
|
|
|> get("/api/v1/accounts/#{user.id}/statuses?pinned=true")
|
|
|
|
assert json_response(conn, 200) == []
|
|
end
|
|
|
|
test "gets an users media", %{conn: conn} do
|
|
note = insert(:note_activity)
|
|
user = User.get_cached_by_ap_id(note.data["actor"])
|
|
|
|
file = %Plug.Upload{
|
|
content_type: "image/jpg",
|
|
path: Path.absname("test/fixtures/image.jpg"),
|
|
filename: "an_image.jpg"
|
|
}
|
|
|
|
{:ok, %{id: media_id}} = ActivityPub.upload(file, actor: user.ap_id)
|
|
|
|
{:ok, image_post} = CommonAPI.post(user, %{"status" => "cofe", "media_ids" => [media_id]})
|
|
|
|
conn =
|
|
conn
|
|
|> get("/api/v1/accounts/#{user.id}/statuses", %{"only_media" => "true"})
|
|
|
|
assert [%{"id" => id}] = json_response(conn, 200)
|
|
assert id == to_string(image_post.id)
|
|
|
|
conn =
|
|
build_conn()
|
|
|> get("/api/v1/accounts/#{user.id}/statuses", %{"only_media" => "1"})
|
|
|
|
assert [%{"id" => id}] = json_response(conn, 200)
|
|
assert id == to_string(image_post.id)
|
|
end
|
|
|
|
test "gets a user's statuses without reblogs", %{conn: conn} do
|
|
user = insert(:user)
|
|
{:ok, post} = CommonAPI.post(user, %{"status" => "HI!!!"})
|
|
{:ok, _, _} = CommonAPI.repeat(post.id, user)
|
|
|
|
conn =
|
|
conn
|
|
|> get("/api/v1/accounts/#{user.id}/statuses", %{"exclude_reblogs" => "true"})
|
|
|
|
assert [%{"id" => id}] = json_response(conn, 200)
|
|
assert id == to_string(post.id)
|
|
|
|
conn =
|
|
conn
|
|
|> get("/api/v1/accounts/#{user.id}/statuses", %{"exclude_reblogs" => "1"})
|
|
|
|
assert [%{"id" => id}] = json_response(conn, 200)
|
|
assert id == to_string(post.id)
|
|
end
|
|
|
|
test "filters user's statuses by a hashtag", %{conn: conn} do
|
|
user = insert(:user)
|
|
{:ok, post} = CommonAPI.post(user, %{"status" => "#hashtag"})
|
|
{:ok, _post} = CommonAPI.post(user, %{"status" => "hashtag"})
|
|
|
|
conn =
|
|
conn
|
|
|> get("/api/v1/accounts/#{user.id}/statuses", %{"tagged" => "hashtag"})
|
|
|
|
assert [%{"id" => id}] = json_response(conn, 200)
|
|
assert id == to_string(post.id)
|
|
end
|
|
end
|
|
|
|
describe "user relationships" do
|
|
test "returns the relationships for the current user", %{conn: conn} do
|
|
user = insert(:user)
|
|
other_user = insert(:user)
|
|
{:ok, user} = User.follow(user, other_user)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/accounts/relationships", %{"id" => [other_user.id]})
|
|
|
|
assert [relationship] = json_response(conn, 200)
|
|
|
|
assert to_string(other_user.id) == relationship["id"]
|
|
end
|
|
end
|
|
|
|
describe "media upload" do
|
|
setup do
|
|
user = insert(:user)
|
|
|
|
conn =
|
|
build_conn()
|
|
|> assign(:user, user)
|
|
|
|
image = %Plug.Upload{
|
|
content_type: "image/jpg",
|
|
path: Path.absname("test/fixtures/image.jpg"),
|
|
filename: "an_image.jpg"
|
|
}
|
|
|
|
[conn: conn, image: image]
|
|
end
|
|
|
|
clear_config([:media_proxy])
|
|
clear_config([Pleroma.Upload])
|
|
|
|
test "returns uploaded image", %{conn: conn, image: image} do
|
|
desc = "Description of the image"
|
|
|
|
media =
|
|
conn
|
|
|> post("/api/v1/media", %{"file" => image, "description" => desc})
|
|
|> json_response(:ok)
|
|
|
|
assert media["type"] == "image"
|
|
assert media["description"] == desc
|
|
assert media["id"]
|
|
|
|
object = Repo.get(Object, media["id"])
|
|
assert object.data["actor"] == User.ap_id(conn.assigns[:user])
|
|
end
|
|
end
|
|
|
|
describe "locked accounts" do
|
|
test "/api/v1/follow_requests works" do
|
|
user = insert(:user, %{info: %User.Info{locked: true}})
|
|
other_user = insert(:user)
|
|
|
|
{:ok, _activity} = ActivityPub.follow(other_user, user)
|
|
|
|
user = User.get_cached_by_id(user.id)
|
|
other_user = User.get_cached_by_id(other_user.id)
|
|
|
|
assert User.following?(other_user, user) == false
|
|
|
|
conn =
|
|
build_conn()
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/follow_requests")
|
|
|
|
assert [relationship] = json_response(conn, 200)
|
|
assert to_string(other_user.id) == relationship["id"]
|
|
end
|
|
|
|
test "/api/v1/follow_requests/:id/authorize works" do
|
|
user = insert(:user, %{info: %User.Info{locked: true}})
|
|
other_user = insert(:user)
|
|
|
|
{:ok, _activity} = ActivityPub.follow(other_user, user)
|
|
|
|
user = User.get_cached_by_id(user.id)
|
|
other_user = User.get_cached_by_id(other_user.id)
|
|
|
|
assert User.following?(other_user, user) == false
|
|
|
|
conn =
|
|
build_conn()
|
|
|> assign(:user, user)
|
|
|> post("/api/v1/follow_requests/#{other_user.id}/authorize")
|
|
|
|
assert relationship = json_response(conn, 200)
|
|
assert to_string(other_user.id) == relationship["id"]
|
|
|
|
user = User.get_cached_by_id(user.id)
|
|
other_user = User.get_cached_by_id(other_user.id)
|
|
|
|
assert User.following?(other_user, user) == true
|
|
end
|
|
|
|
test "verify_credentials", %{conn: conn} do
|
|
user = insert(:user, %{info: %User.Info{default_scope: "private"}})
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/accounts/verify_credentials")
|
|
|
|
assert %{"id" => id, "source" => %{"privacy" => "private"}} = json_response(conn, 200)
|
|
assert id == to_string(user.id)
|
|
end
|
|
|
|
test "/api/v1/follow_requests/:id/reject works" do
|
|
user = insert(:user, %{info: %User.Info{locked: true}})
|
|
other_user = insert(:user)
|
|
|
|
{:ok, _activity} = ActivityPub.follow(other_user, user)
|
|
|
|
user = User.get_cached_by_id(user.id)
|
|
|
|
conn =
|
|
build_conn()
|
|
|> assign(:user, user)
|
|
|> post("/api/v1/follow_requests/#{other_user.id}/reject")
|
|
|
|
assert relationship = json_response(conn, 200)
|
|
assert to_string(other_user.id) == relationship["id"]
|
|
|
|
user = User.get_cached_by_id(user.id)
|
|
other_user = User.get_cached_by_id(other_user.id)
|
|
|
|
assert User.following?(other_user, user) == false
|
|
end
|
|
end
|
|
|
|
describe "account fetching" do
|
|
test "works by id" do
|
|
user = insert(:user)
|
|
|
|
conn =
|
|
build_conn()
|
|
|> get("/api/v1/accounts/#{user.id}")
|
|
|
|
assert %{"id" => id} = json_response(conn, 200)
|
|
assert id == to_string(user.id)
|
|
|
|
conn =
|
|
build_conn()
|
|
|> get("/api/v1/accounts/-1")
|
|
|
|
assert %{"error" => "Can't find user"} = json_response(conn, 404)
|
|
end
|
|
|
|
test "works by nickname" do
|
|
user = insert(:user)
|
|
|
|
conn =
|
|
build_conn()
|
|
|> get("/api/v1/accounts/#{user.nickname}")
|
|
|
|
assert %{"id" => id} = json_response(conn, 200)
|
|
assert id == user.id
|
|
end
|
|
|
|
test "works by nickname for remote users" do
|
|
limit_to_local = Pleroma.Config.get([:instance, :limit_to_local_content])
|
|
Pleroma.Config.put([:instance, :limit_to_local_content], false)
|
|
user = insert(:user, nickname: "user@example.com", local: false)
|
|
|
|
conn =
|
|
build_conn()
|
|
|> get("/api/v1/accounts/#{user.nickname}")
|
|
|
|
Pleroma.Config.put([:instance, :limit_to_local_content], limit_to_local)
|
|
assert %{"id" => id} = json_response(conn, 200)
|
|
assert id == user.id
|
|
end
|
|
|
|
test "respects limit_to_local_content == :all for remote user nicknames" do
|
|
limit_to_local = Pleroma.Config.get([:instance, :limit_to_local_content])
|
|
Pleroma.Config.put([:instance, :limit_to_local_content], :all)
|
|
|
|
user = insert(:user, nickname: "user@example.com", local: false)
|
|
|
|
conn =
|
|
build_conn()
|
|
|> get("/api/v1/accounts/#{user.nickname}")
|
|
|
|
Pleroma.Config.put([:instance, :limit_to_local_content], limit_to_local)
|
|
assert json_response(conn, 404)
|
|
end
|
|
|
|
test "respects limit_to_local_content == :unauthenticated for remote user nicknames" do
|
|
limit_to_local = Pleroma.Config.get([:instance, :limit_to_local_content])
|
|
Pleroma.Config.put([:instance, :limit_to_local_content], :unauthenticated)
|
|
|
|
user = insert(:user, nickname: "user@example.com", local: false)
|
|
reading_user = insert(:user)
|
|
|
|
conn =
|
|
build_conn()
|
|
|> get("/api/v1/accounts/#{user.nickname}")
|
|
|
|
assert json_response(conn, 404)
|
|
|
|
conn =
|
|
build_conn()
|
|
|> assign(:user, reading_user)
|
|
|> get("/api/v1/accounts/#{user.nickname}")
|
|
|
|
Pleroma.Config.put([:instance, :limit_to_local_content], limit_to_local)
|
|
assert %{"id" => id} = json_response(conn, 200)
|
|
assert id == user.id
|
|
end
|
|
end
|
|
|
|
test "mascot upload", %{conn: conn} do
|
|
user = insert(:user)
|
|
|
|
non_image_file = %Plug.Upload{
|
|
content_type: "audio/mpeg",
|
|
path: Path.absname("test/fixtures/sound.mp3"),
|
|
filename: "sound.mp3"
|
|
}
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> put("/api/v1/pleroma/mascot", %{"file" => non_image_file})
|
|
|
|
assert json_response(conn, 415)
|
|
|
|
file = %Plug.Upload{
|
|
content_type: "image/jpg",
|
|
path: Path.absname("test/fixtures/image.jpg"),
|
|
filename: "an_image.jpg"
|
|
}
|
|
|
|
conn =
|
|
build_conn()
|
|
|> assign(:user, user)
|
|
|> put("/api/v1/pleroma/mascot", %{"file" => file})
|
|
|
|
assert %{"id" => _, "type" => image} = json_response(conn, 200)
|
|
end
|
|
|
|
test "mascot retrieving", %{conn: conn} do
|
|
user = insert(:user)
|
|
# When user hasn't set a mascot, we should just get pleroma tan back
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/pleroma/mascot")
|
|
|
|
assert %{"url" => url} = json_response(conn, 200)
|
|
assert url =~ "pleroma-fox-tan-smol"
|
|
|
|
# When a user sets their mascot, we should get that back
|
|
file = %Plug.Upload{
|
|
content_type: "image/jpg",
|
|
path: Path.absname("test/fixtures/image.jpg"),
|
|
filename: "an_image.jpg"
|
|
}
|
|
|
|
conn =
|
|
build_conn()
|
|
|> assign(:user, user)
|
|
|> put("/api/v1/pleroma/mascot", %{"file" => file})
|
|
|
|
assert json_response(conn, 200)
|
|
|
|
user = User.get_cached_by_id(user.id)
|
|
|
|
conn =
|
|
build_conn()
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/pleroma/mascot")
|
|
|
|
assert %{"url" => url, "type" => "image"} = json_response(conn, 200)
|
|
assert url =~ "an_image"
|
|
end
|
|
|
|
test "getting followers", %{conn: conn} do
|
|
user = insert(:user)
|
|
other_user = insert(:user)
|
|
{:ok, user} = User.follow(user, other_user)
|
|
|
|
conn =
|
|
conn
|
|
|> get("/api/v1/accounts/#{other_user.id}/followers")
|
|
|
|
assert [%{"id" => id}] = json_response(conn, 200)
|
|
assert id == to_string(user.id)
|
|
end
|
|
|
|
test "getting followers, hide_followers", %{conn: conn} do
|
|
user = insert(:user)
|
|
other_user = insert(:user, %{info: %{hide_followers: true}})
|
|
{:ok, _user} = User.follow(user, other_user)
|
|
|
|
conn =
|
|
conn
|
|
|> get("/api/v1/accounts/#{other_user.id}/followers")
|
|
|
|
assert [] == json_response(conn, 200)
|
|
end
|
|
|
|
test "getting followers, hide_followers, same user requesting", %{conn: conn} do
|
|
user = insert(:user)
|
|
other_user = insert(:user, %{info: %{hide_followers: true}})
|
|
{:ok, _user} = User.follow(user, other_user)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, other_user)
|
|
|> get("/api/v1/accounts/#{other_user.id}/followers")
|
|
|
|
refute [] == json_response(conn, 200)
|
|
end
|
|
|
|
test "getting followers, pagination", %{conn: conn} do
|
|
user = insert(:user)
|
|
follower1 = insert(:user)
|
|
follower2 = insert(:user)
|
|
follower3 = insert(:user)
|
|
{:ok, _} = User.follow(follower1, user)
|
|
{:ok, _} = User.follow(follower2, user)
|
|
{:ok, _} = User.follow(follower3, user)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|
|
res_conn =
|
|
conn
|
|
|> get("/api/v1/accounts/#{user.id}/followers?since_id=#{follower1.id}")
|
|
|
|
assert [%{"id" => id3}, %{"id" => id2}] = json_response(res_conn, 200)
|
|
assert id3 == follower3.id
|
|
assert id2 == follower2.id
|
|
|
|
res_conn =
|
|
conn
|
|
|> get("/api/v1/accounts/#{user.id}/followers?max_id=#{follower3.id}")
|
|
|
|
assert [%{"id" => id2}, %{"id" => id1}] = json_response(res_conn, 200)
|
|
assert id2 == follower2.id
|
|
assert id1 == follower1.id
|
|
|
|
res_conn =
|
|
conn
|
|
|> get("/api/v1/accounts/#{user.id}/followers?limit=1&max_id=#{follower3.id}")
|
|
|
|
assert [%{"id" => id2}] = json_response(res_conn, 200)
|
|
assert id2 == follower2.id
|
|
|
|
assert [link_header] = get_resp_header(res_conn, "link")
|
|
assert link_header =~ ~r/min_id=#{follower2.id}/
|
|
assert link_header =~ ~r/max_id=#{follower2.id}/
|
|
end
|
|
|
|
test "getting following", %{conn: conn} do
|
|
user = insert(:user)
|
|
other_user = insert(:user)
|
|
{:ok, user} = User.follow(user, other_user)
|
|
|
|
conn =
|
|
conn
|
|
|> get("/api/v1/accounts/#{user.id}/following")
|
|
|
|
assert [%{"id" => id}] = json_response(conn, 200)
|
|
assert id == to_string(other_user.id)
|
|
end
|
|
|
|
test "getting following, hide_follows", %{conn: conn} do
|
|
user = insert(:user, %{info: %{hide_follows: true}})
|
|
other_user = insert(:user)
|
|
{:ok, user} = User.follow(user, other_user)
|
|
|
|
conn =
|
|
conn
|
|
|> get("/api/v1/accounts/#{user.id}/following")
|
|
|
|
assert [] == json_response(conn, 200)
|
|
end
|
|
|
|
test "getting following, hide_follows, same user requesting", %{conn: conn} do
|
|
user = insert(:user, %{info: %{hide_follows: true}})
|
|
other_user = insert(:user)
|
|
{:ok, user} = User.follow(user, other_user)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/accounts/#{user.id}/following")
|
|
|
|
refute [] == json_response(conn, 200)
|
|
end
|
|
|
|
test "getting following, pagination", %{conn: conn} do
|
|
user = insert(:user)
|
|
following1 = insert(:user)
|
|
following2 = insert(:user)
|
|
following3 = insert(:user)
|
|
{:ok, _} = User.follow(user, following1)
|
|
{:ok, _} = User.follow(user, following2)
|
|
{:ok, _} = User.follow(user, following3)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|
|
res_conn =
|
|
conn
|
|
|> get("/api/v1/accounts/#{user.id}/following?since_id=#{following1.id}")
|
|
|
|
assert [%{"id" => id3}, %{"id" => id2}] = json_response(res_conn, 200)
|
|
assert id3 == following3.id
|
|
assert id2 == following2.id
|
|
|
|
res_conn =
|
|
conn
|
|
|> get("/api/v1/accounts/#{user.id}/following?max_id=#{following3.id}")
|
|
|
|
assert [%{"id" => id2}, %{"id" => id1}] = json_response(res_conn, 200)
|
|
assert id2 == following2.id
|
|
assert id1 == following1.id
|
|
|
|
res_conn =
|
|
conn
|
|
|> get("/api/v1/accounts/#{user.id}/following?limit=1&max_id=#{following3.id}")
|
|
|
|
assert [%{"id" => id2}] = json_response(res_conn, 200)
|
|
assert id2 == following2.id
|
|
|
|
assert [link_header] = get_resp_header(res_conn, "link")
|
|
assert link_header =~ ~r/min_id=#{following2.id}/
|
|
assert link_header =~ ~r/max_id=#{following2.id}/
|
|
end
|
|
|
|
test "following / unfollowing a user", %{conn: conn} do
|
|
user = insert(:user)
|
|
other_user = insert(:user)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> post("/api/v1/accounts/#{other_user.id}/follow")
|
|
|
|
assert %{"id" => _id, "following" => true} = json_response(conn, 200)
|
|
|
|
user = User.get_cached_by_id(user.id)
|
|
|
|
conn =
|
|
build_conn()
|
|
|> assign(:user, user)
|
|
|> post("/api/v1/accounts/#{other_user.id}/unfollow")
|
|
|
|
assert %{"id" => _id, "following" => false} = json_response(conn, 200)
|
|
|
|
user = User.get_cached_by_id(user.id)
|
|
|
|
conn =
|
|
build_conn()
|
|
|> assign(:user, user)
|
|
|> post("/api/v1/follows", %{"uri" => other_user.nickname})
|
|
|
|
assert %{"id" => id} = json_response(conn, 200)
|
|
assert id == to_string(other_user.id)
|
|
end
|
|
|
|
test "following without reblogs" do
|
|
follower = insert(:user)
|
|
followed = insert(:user)
|
|
other_user = insert(:user)
|
|
|
|
conn =
|
|
build_conn()
|
|
|> assign(:user, follower)
|
|
|> post("/api/v1/accounts/#{followed.id}/follow?reblogs=false")
|
|
|
|
assert %{"showing_reblogs" => false} = json_response(conn, 200)
|
|
|
|
{:ok, activity} = CommonAPI.post(other_user, %{"status" => "hey"})
|
|
{:ok, reblog, _} = CommonAPI.repeat(activity.id, followed)
|
|
|
|
conn =
|
|
build_conn()
|
|
|> assign(:user, User.get_cached_by_id(follower.id))
|
|
|> get("/api/v1/timelines/home")
|
|
|
|
assert [] == json_response(conn, 200)
|
|
|
|
conn =
|
|
build_conn()
|
|
|> assign(:user, follower)
|
|
|> post("/api/v1/accounts/#{followed.id}/follow?reblogs=true")
|
|
|
|
assert %{"showing_reblogs" => true} = json_response(conn, 200)
|
|
|
|
conn =
|
|
build_conn()
|
|
|> assign(:user, User.get_cached_by_id(follower.id))
|
|
|> get("/api/v1/timelines/home")
|
|
|
|
expected_activity_id = reblog.id
|
|
assert [%{"id" => ^expected_activity_id}] = json_response(conn, 200)
|
|
end
|
|
|
|
test "following / unfollowing errors" do
|
|
user = insert(:user)
|
|
|
|
conn =
|
|
build_conn()
|
|
|> assign(:user, user)
|
|
|
|
# self follow
|
|
conn_res = post(conn, "/api/v1/accounts/#{user.id}/follow")
|
|
assert %{"error" => "Record not found"} = json_response(conn_res, 404)
|
|
|
|
# self unfollow
|
|
user = User.get_cached_by_id(user.id)
|
|
conn_res = post(conn, "/api/v1/accounts/#{user.id}/unfollow")
|
|
assert %{"error" => "Record not found"} = json_response(conn_res, 404)
|
|
|
|
# self follow via uri
|
|
user = User.get_cached_by_id(user.id)
|
|
conn_res = post(conn, "/api/v1/follows", %{"uri" => user.nickname})
|
|
assert %{"error" => "Record not found"} = json_response(conn_res, 404)
|
|
|
|
# follow non existing user
|
|
conn_res = post(conn, "/api/v1/accounts/doesntexist/follow")
|
|
assert %{"error" => "Record not found"} = json_response(conn_res, 404)
|
|
|
|
# follow non existing user via uri
|
|
conn_res = post(conn, "/api/v1/follows", %{"uri" => "doesntexist"})
|
|
assert %{"error" => "Record not found"} = json_response(conn_res, 404)
|
|
|
|
# unfollow non existing user
|
|
conn_res = post(conn, "/api/v1/accounts/doesntexist/unfollow")
|
|
assert %{"error" => "Record not found"} = json_response(conn_res, 404)
|
|
end
|
|
|
|
describe "mute/unmute" do
|
|
test "with notifications", %{conn: conn} do
|
|
user = insert(:user)
|
|
other_user = insert(:user)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> post("/api/v1/accounts/#{other_user.id}/mute")
|
|
|
|
response = json_response(conn, 200)
|
|
|
|
assert %{"id" => _id, "muting" => true, "muting_notifications" => true} = response
|
|
user = User.get_cached_by_id(user.id)
|
|
|
|
conn =
|
|
build_conn()
|
|
|> assign(:user, user)
|
|
|> post("/api/v1/accounts/#{other_user.id}/unmute")
|
|
|
|
response = json_response(conn, 200)
|
|
assert %{"id" => _id, "muting" => false, "muting_notifications" => false} = response
|
|
end
|
|
|
|
test "without notifications", %{conn: conn} do
|
|
user = insert(:user)
|
|
other_user = insert(:user)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> post("/api/v1/accounts/#{other_user.id}/mute", %{"notifications" => "false"})
|
|
|
|
response = json_response(conn, 200)
|
|
|
|
assert %{"id" => _id, "muting" => true, "muting_notifications" => false} = response
|
|
user = User.get_cached_by_id(user.id)
|
|
|
|
conn =
|
|
build_conn()
|
|
|> assign(:user, user)
|
|
|> post("/api/v1/accounts/#{other_user.id}/unmute")
|
|
|
|
response = json_response(conn, 200)
|
|
assert %{"id" => _id, "muting" => false, "muting_notifications" => false} = response
|
|
end
|
|
end
|
|
|
|
test "subscribing / unsubscribing to a user", %{conn: conn} do
|
|
user = insert(:user)
|
|
subscription_target = insert(:user)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> post("/api/v1/pleroma/accounts/#{subscription_target.id}/subscribe")
|
|
|
|
assert %{"id" => _id, "subscribing" => true} = json_response(conn, 200)
|
|
|
|
conn =
|
|
build_conn()
|
|
|> assign(:user, user)
|
|
|> post("/api/v1/pleroma/accounts/#{subscription_target.id}/unsubscribe")
|
|
|
|
assert %{"id" => _id, "subscribing" => false} = json_response(conn, 200)
|
|
end
|
|
|
|
test "getting a list of mutes", %{conn: conn} do
|
|
user = insert(:user)
|
|
other_user = insert(:user)
|
|
|
|
{:ok, user} = User.mute(user, other_user)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/mutes")
|
|
|
|
other_user_id = to_string(other_user.id)
|
|
assert [%{"id" => ^other_user_id}] = json_response(conn, 200)
|
|
end
|
|
|
|
test "blocking / unblocking a user", %{conn: conn} do
|
|
user = insert(:user)
|
|
other_user = insert(:user)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> post("/api/v1/accounts/#{other_user.id}/block")
|
|
|
|
assert %{"id" => _id, "blocking" => true} = json_response(conn, 200)
|
|
|
|
user = User.get_cached_by_id(user.id)
|
|
|
|
conn =
|
|
build_conn()
|
|
|> assign(:user, user)
|
|
|> post("/api/v1/accounts/#{other_user.id}/unblock")
|
|
|
|
assert %{"id" => _id, "blocking" => false} = json_response(conn, 200)
|
|
end
|
|
|
|
test "getting a list of blocks", %{conn: conn} do
|
|
user = insert(:user)
|
|
other_user = insert(:user)
|
|
|
|
{:ok, user} = User.block(user, other_user)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/blocks")
|
|
|
|
other_user_id = to_string(other_user.id)
|
|
assert [%{"id" => ^other_user_id}] = json_response(conn, 200)
|
|
end
|
|
|
|
test "unimplemented follow_requests, blocks, domain blocks" do
|
|
user = insert(:user)
|
|
|
|
["blocks", "domain_blocks", "follow_requests"]
|
|
|> Enum.each(fn endpoint ->
|
|
conn =
|
|
build_conn()
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/#{endpoint}")
|
|
|
|
assert [] = json_response(conn, 200)
|
|
end)
|
|
end
|
|
|
|
test "returns the favorites of a user", %{conn: conn} do
|
|
user = insert(:user)
|
|
other_user = insert(:user)
|
|
|
|
{:ok, _} = CommonAPI.post(other_user, %{"status" => "bla"})
|
|
{:ok, activity} = CommonAPI.post(other_user, %{"status" => "traps are happy"})
|
|
|
|
{:ok, _, _} = CommonAPI.favorite(activity.id, user)
|
|
|
|
first_conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/favourites")
|
|
|
|
assert [status] = json_response(first_conn, 200)
|
|
assert status["id"] == to_string(activity.id)
|
|
|
|
assert [{"link", _link_header}] =
|
|
Enum.filter(first_conn.resp_headers, fn element -> match?({"link", _}, element) end)
|
|
|
|
# Honours query params
|
|
{:ok, second_activity} =
|
|
CommonAPI.post(other_user, %{
|
|
"status" =>
|
|
"Trees Are Never Sad Look At Them Every Once In Awhile They're Quite Beautiful."
|
|
})
|
|
|
|
{:ok, _, _} = CommonAPI.favorite(second_activity.id, user)
|
|
|
|
last_like = status["id"]
|
|
|
|
second_conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/favourites?since_id=#{last_like}")
|
|
|
|
assert [second_status] = json_response(second_conn, 200)
|
|
assert second_status["id"] == to_string(second_activity.id)
|
|
|
|
third_conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/favourites?limit=0")
|
|
|
|
assert [] = json_response(third_conn, 200)
|
|
end
|
|
|
|
describe "getting favorites timeline of specified user" do
|
|
setup do
|
|
[current_user, user] = insert_pair(:user, %{info: %{hide_favorites: false}})
|
|
[current_user: current_user, user: user]
|
|
end
|
|
|
|
test "returns list of statuses favorited by specified user", %{
|
|
conn: conn,
|
|
current_user: current_user,
|
|
user: user
|
|
} do
|
|
[activity | _] = insert_pair(:note_activity)
|
|
CommonAPI.favorite(activity.id, user)
|
|
|
|
response =
|
|
conn
|
|
|> assign(:user, current_user)
|
|
|> get("/api/v1/pleroma/accounts/#{user.id}/favourites")
|
|
|> json_response(:ok)
|
|
|
|
[like] = response
|
|
|
|
assert length(response) == 1
|
|
assert like["id"] == activity.id
|
|
end
|
|
|
|
test "returns favorites for specified user_id when user is not logged in", %{
|
|
conn: conn,
|
|
user: user
|
|
} do
|
|
activity = insert(:note_activity)
|
|
CommonAPI.favorite(activity.id, user)
|
|
|
|
response =
|
|
conn
|
|
|> get("/api/v1/pleroma/accounts/#{user.id}/favourites")
|
|
|> json_response(:ok)
|
|
|
|
assert length(response) == 1
|
|
end
|
|
|
|
test "returns favorited DM only when user is logged in and he is one of recipients", %{
|
|
conn: conn,
|
|
current_user: current_user,
|
|
user: user
|
|
} do
|
|
{:ok, direct} =
|
|
CommonAPI.post(current_user, %{
|
|
"status" => "Hi @#{user.nickname}!",
|
|
"visibility" => "direct"
|
|
})
|
|
|
|
CommonAPI.favorite(direct.id, user)
|
|
|
|
response =
|
|
conn
|
|
|> assign(:user, current_user)
|
|
|> get("/api/v1/pleroma/accounts/#{user.id}/favourites")
|
|
|> json_response(:ok)
|
|
|
|
assert length(response) == 1
|
|
|
|
anonymous_response =
|
|
conn
|
|
|> get("/api/v1/pleroma/accounts/#{user.id}/favourites")
|
|
|> json_response(:ok)
|
|
|
|
assert Enum.empty?(anonymous_response)
|
|
end
|
|
|
|
test "does not return others' favorited DM when user is not one of recipients", %{
|
|
conn: conn,
|
|
current_user: current_user,
|
|
user: user
|
|
} do
|
|
user_two = insert(:user)
|
|
|
|
{:ok, direct} =
|
|
CommonAPI.post(user_two, %{
|
|
"status" => "Hi @#{user.nickname}!",
|
|
"visibility" => "direct"
|
|
})
|
|
|
|
CommonAPI.favorite(direct.id, user)
|
|
|
|
response =
|
|
conn
|
|
|> assign(:user, current_user)
|
|
|> get("/api/v1/pleroma/accounts/#{user.id}/favourites")
|
|
|> json_response(:ok)
|
|
|
|
assert Enum.empty?(response)
|
|
end
|
|
|
|
test "paginates favorites using since_id and max_id", %{
|
|
conn: conn,
|
|
current_user: current_user,
|
|
user: user
|
|
} do
|
|
activities = insert_list(10, :note_activity)
|
|
|
|
Enum.each(activities, fn activity ->
|
|
CommonAPI.favorite(activity.id, user)
|
|
end)
|
|
|
|
third_activity = Enum.at(activities, 2)
|
|
seventh_activity = Enum.at(activities, 6)
|
|
|
|
response =
|
|
conn
|
|
|> assign(:user, current_user)
|
|
|> get("/api/v1/pleroma/accounts/#{user.id}/favourites", %{
|
|
since_id: third_activity.id,
|
|
max_id: seventh_activity.id
|
|
})
|
|
|> json_response(:ok)
|
|
|
|
assert length(response) == 3
|
|
refute third_activity in response
|
|
refute seventh_activity in response
|
|
end
|
|
|
|
test "limits favorites using limit parameter", %{
|
|
conn: conn,
|
|
current_user: current_user,
|
|
user: user
|
|
} do
|
|
7
|
|
|> insert_list(:note_activity)
|
|
|> Enum.each(fn activity ->
|
|
CommonAPI.favorite(activity.id, user)
|
|
end)
|
|
|
|
response =
|
|
conn
|
|
|> assign(:user, current_user)
|
|
|> get("/api/v1/pleroma/accounts/#{user.id}/favourites", %{limit: "3"})
|
|
|> json_response(:ok)
|
|
|
|
assert length(response) == 3
|
|
end
|
|
|
|
test "returns empty response when user does not have any favorited statuses", %{
|
|
conn: conn,
|
|
current_user: current_user,
|
|
user: user
|
|
} do
|
|
response =
|
|
conn
|
|
|> assign(:user, current_user)
|
|
|> get("/api/v1/pleroma/accounts/#{user.id}/favourites")
|
|
|> json_response(:ok)
|
|
|
|
assert Enum.empty?(response)
|
|
end
|
|
|
|
test "returns 404 error when specified user is not exist", %{conn: conn} do
|
|
conn = get(conn, "/api/v1/pleroma/accounts/test/favourites")
|
|
|
|
assert json_response(conn, 404) == %{"error" => "Record not found"}
|
|
end
|
|
|
|
test "returns 403 error when user has hidden own favorites", %{
|
|
conn: conn,
|
|
current_user: current_user
|
|
} do
|
|
user = insert(:user, %{info: %{hide_favorites: true}})
|
|
activity = insert(:note_activity)
|
|
CommonAPI.favorite(activity.id, user)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, current_user)
|
|
|> get("/api/v1/pleroma/accounts/#{user.id}/favourites")
|
|
|
|
assert json_response(conn, 403) == %{"error" => "Can't get favorites"}
|
|
end
|
|
|
|
test "hides favorites for new users by default", %{conn: conn, current_user: current_user} do
|
|
user = insert(:user)
|
|
activity = insert(:note_activity)
|
|
CommonAPI.favorite(activity.id, user)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, current_user)
|
|
|> get("/api/v1/pleroma/accounts/#{user.id}/favourites")
|
|
|
|
assert user.info.hide_favorites
|
|
assert json_response(conn, 403) == %{"error" => "Can't get favorites"}
|
|
end
|
|
end
|
|
|
|
test "get instance information", %{conn: conn} do
|
|
conn = get(conn, "/api/v1/instance")
|
|
assert result = json_response(conn, 200)
|
|
|
|
email = Config.get([:instance, :email])
|
|
# Note: not checking for "max_toot_chars" since it's optional
|
|
assert %{
|
|
"uri" => _,
|
|
"title" => _,
|
|
"description" => _,
|
|
"version" => _,
|
|
"email" => from_config_email,
|
|
"urls" => %{
|
|
"streaming_api" => _
|
|
},
|
|
"stats" => _,
|
|
"thumbnail" => _,
|
|
"languages" => _,
|
|
"registrations" => _,
|
|
"poll_limits" => _
|
|
} = result
|
|
|
|
assert email == from_config_email
|
|
end
|
|
|
|
test "get instance stats", %{conn: conn} do
|
|
user = insert(:user, %{local: true})
|
|
|
|
user2 = insert(:user, %{local: true})
|
|
{:ok, _user2} = User.deactivate(user2, !user2.info.deactivated)
|
|
|
|
insert(:user, %{local: false, nickname: "u@peer1.com"})
|
|
insert(:user, %{local: false, nickname: "u@peer2.com"})
|
|
|
|
{:ok, _} = CommonAPI.post(user, %{"status" => "cofe"})
|
|
|
|
# Stats should count users with missing or nil `info.deactivated` value
|
|
|
|
{:ok, _user} =
|
|
user.id
|
|
|> User.get_cached_by_id()
|
|
|> User.update_info(&Changeset.change(&1, %{deactivated: nil}))
|
|
|
|
Pleroma.Stats.force_update()
|
|
|
|
conn = get(conn, "/api/v1/instance")
|
|
|
|
assert result = json_response(conn, 200)
|
|
|
|
stats = result["stats"]
|
|
|
|
assert stats
|
|
assert stats["user_count"] == 1
|
|
assert stats["status_count"] == 1
|
|
assert stats["domain_count"] == 2
|
|
end
|
|
|
|
test "get peers", %{conn: conn} do
|
|
insert(:user, %{local: false, nickname: "u@peer1.com"})
|
|
insert(:user, %{local: false, nickname: "u@peer2.com"})
|
|
|
|
Pleroma.Stats.force_update()
|
|
|
|
conn = get(conn, "/api/v1/instance/peers")
|
|
|
|
assert result = json_response(conn, 200)
|
|
|
|
assert ["peer1.com", "peer2.com"] == Enum.sort(result)
|
|
end
|
|
|
|
test "put settings", %{conn: conn} do
|
|
user = insert(:user)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> put("/api/web/settings", %{"data" => %{"programming" => "socks"}})
|
|
|
|
assert _result = json_response(conn, 200)
|
|
|
|
user = User.get_cached_by_ap_id(user.ap_id)
|
|
assert user.info.settings == %{"programming" => "socks"}
|
|
end
|
|
|
|
describe "pinned statuses" do
|
|
setup do
|
|
user = insert(:user)
|
|
{:ok, activity} = CommonAPI.post(user, %{"status" => "HI!!!"})
|
|
|
|
[user: user, activity: activity]
|
|
end
|
|
|
|
test "returns pinned statuses", %{conn: conn, user: user, activity: activity} do
|
|
{:ok, _} = CommonAPI.pin(activity.id, user)
|
|
|
|
result =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/accounts/#{user.id}/statuses?pinned=true")
|
|
|> json_response(200)
|
|
|
|
id_str = to_string(activity.id)
|
|
|
|
assert [%{"id" => ^id_str, "pinned" => true}] = result
|
|
end
|
|
end
|
|
|
|
describe "reports" do
|
|
setup do
|
|
reporter = insert(:user)
|
|
target_user = insert(:user)
|
|
|
|
{:ok, activity} = CommonAPI.post(target_user, %{"status" => "foobar"})
|
|
|
|
[reporter: reporter, target_user: target_user, activity: activity]
|
|
end
|
|
|
|
test "submit a basic report", %{conn: conn, reporter: reporter, target_user: target_user} do
|
|
assert %{"action_taken" => false, "id" => _} =
|
|
conn
|
|
|> assign(:user, reporter)
|
|
|> post("/api/v1/reports", %{"account_id" => target_user.id})
|
|
|> json_response(200)
|
|
end
|
|
|
|
test "submit a report with statuses and comment", %{
|
|
conn: conn,
|
|
reporter: reporter,
|
|
target_user: target_user,
|
|
activity: activity
|
|
} do
|
|
assert %{"action_taken" => false, "id" => _} =
|
|
conn
|
|
|> assign(:user, reporter)
|
|
|> post("/api/v1/reports", %{
|
|
"account_id" => target_user.id,
|
|
"status_ids" => [activity.id],
|
|
"comment" => "bad status!",
|
|
"forward" => "false"
|
|
})
|
|
|> json_response(200)
|
|
end
|
|
|
|
test "account_id is required", %{
|
|
conn: conn,
|
|
reporter: reporter,
|
|
activity: activity
|
|
} do
|
|
assert %{"error" => "Valid `account_id` required"} =
|
|
conn
|
|
|> assign(:user, reporter)
|
|
|> post("/api/v1/reports", %{"status_ids" => [activity.id]})
|
|
|> json_response(400)
|
|
end
|
|
|
|
test "comment must be up to the size specified in the config", %{
|
|
conn: conn,
|
|
reporter: reporter,
|
|
target_user: target_user
|
|
} do
|
|
max_size = Config.get([:instance, :max_report_comment_size], 1000)
|
|
comment = String.pad_trailing("a", max_size + 1, "a")
|
|
|
|
error = %{"error" => "Comment must be up to #{max_size} characters"}
|
|
|
|
assert ^error =
|
|
conn
|
|
|> assign(:user, reporter)
|
|
|> post("/api/v1/reports", %{"account_id" => target_user.id, "comment" => comment})
|
|
|> json_response(400)
|
|
end
|
|
|
|
test "returns error when account is not exist", %{
|
|
conn: conn,
|
|
reporter: reporter,
|
|
activity: activity
|
|
} do
|
|
conn =
|
|
conn
|
|
|> assign(:user, reporter)
|
|
|> post("/api/v1/reports", %{"status_ids" => [activity.id], "account_id" => "foo"})
|
|
|
|
assert json_response(conn, 400) == %{"error" => "Account not found"}
|
|
end
|
|
end
|
|
|
|
describe "link headers" do
|
|
test "preserves parameters in link headers", %{conn: conn} do
|
|
user = insert(:user)
|
|
other_user = insert(:user)
|
|
|
|
{:ok, activity1} =
|
|
CommonAPI.post(other_user, %{
|
|
"status" => "hi @#{user.nickname}",
|
|
"visibility" => "public"
|
|
})
|
|
|
|
{:ok, activity2} =
|
|
CommonAPI.post(other_user, %{
|
|
"status" => "hi @#{user.nickname}",
|
|
"visibility" => "public"
|
|
})
|
|
|
|
notification1 = Repo.get_by(Notification, activity_id: activity1.id)
|
|
notification2 = Repo.get_by(Notification, activity_id: activity2.id)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/notifications", %{media_only: true})
|
|
|
|
assert [link_header] = get_resp_header(conn, "link")
|
|
assert link_header =~ ~r/media_only=true/
|
|
assert link_header =~ ~r/min_id=#{notification2.id}/
|
|
assert link_header =~ ~r/max_id=#{notification1.id}/
|
|
end
|
|
end
|
|
|
|
test "accounts fetches correct account for nicknames beginning with numbers", %{conn: conn} do
|
|
# Need to set an old-style integer ID to reproduce the problem
|
|
# (these are no longer assigned to new accounts but were preserved
|
|
# for existing accounts during the migration to flakeIDs)
|
|
user_one = insert(:user, %{id: 1212})
|
|
user_two = insert(:user, %{nickname: "#{user_one.id}garbage"})
|
|
|
|
resp_one =
|
|
conn
|
|
|> get("/api/v1/accounts/#{user_one.id}")
|
|
|
|
resp_two =
|
|
conn
|
|
|> get("/api/v1/accounts/#{user_two.nickname}")
|
|
|
|
resp_three =
|
|
conn
|
|
|> get("/api/v1/accounts/#{user_two.id}")
|
|
|
|
acc_one = json_response(resp_one, 200)
|
|
acc_two = json_response(resp_two, 200)
|
|
acc_three = json_response(resp_three, 200)
|
|
refute acc_one == acc_two
|
|
assert acc_two == acc_three
|
|
end
|
|
|
|
describe "custom emoji" do
|
|
test "with tags", %{conn: conn} do
|
|
[emoji | _body] =
|
|
conn
|
|
|> get("/api/v1/custom_emojis")
|
|
|> json_response(200)
|
|
|
|
assert Map.has_key?(emoji, "shortcode")
|
|
assert Map.has_key?(emoji, "static_url")
|
|
assert Map.has_key?(emoji, "tags")
|
|
assert is_list(emoji["tags"])
|
|
assert Map.has_key?(emoji, "category")
|
|
assert Map.has_key?(emoji, "url")
|
|
assert Map.has_key?(emoji, "visible_in_picker")
|
|
end
|
|
end
|
|
|
|
describe "index/2 redirections" do
|
|
setup %{conn: conn} do
|
|
session_opts = [
|
|
store: :cookie,
|
|
key: "_test",
|
|
signing_salt: "cooldude"
|
|
]
|
|
|
|
conn =
|
|
conn
|
|
|> Plug.Session.call(Plug.Session.init(session_opts))
|
|
|> fetch_session()
|
|
|
|
test_path = "/web/statuses/test"
|
|
%{conn: conn, path: test_path}
|
|
end
|
|
|
|
test "redirects not logged-in users to the login page", %{conn: conn, path: path} do
|
|
conn = get(conn, path)
|
|
|
|
assert conn.status == 302
|
|
assert redirected_to(conn) == "/web/login"
|
|
end
|
|
|
|
test "redirects not logged-in users to the login page on private instances", %{
|
|
conn: conn,
|
|
path: path
|
|
} do
|
|
Config.put([:instance, :public], false)
|
|
|
|
conn = get(conn, path)
|
|
|
|
assert conn.status == 302
|
|
assert redirected_to(conn) == "/web/login"
|
|
end
|
|
|
|
test "does not redirect logged in users to the login page", %{conn: conn, path: path} do
|
|
token = insert(:oauth_token)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, token.user)
|
|
|> put_session(:oauth_token, token.token)
|
|
|> get(path)
|
|
|
|
assert conn.status == 200
|
|
end
|
|
|
|
test "saves referer path to session", %{conn: conn, path: path} do
|
|
conn = get(conn, path)
|
|
return_to = Plug.Conn.get_session(conn, :return_to)
|
|
|
|
assert return_to == path
|
|
end
|
|
|
|
test "redirects to the saved path after log in", %{conn: conn, path: path} do
|
|
app = insert(:oauth_app, client_name: "Mastodon-Local", redirect_uris: ".")
|
|
auth = insert(:oauth_authorization, app: app)
|
|
|
|
conn =
|
|
conn
|
|
|> put_session(:return_to, path)
|
|
|> get("/web/login", %{code: auth.token})
|
|
|
|
assert conn.status == 302
|
|
assert redirected_to(conn) == path
|
|
end
|
|
|
|
test "redirects to the getting-started page when referer is not present", %{conn: conn} do
|
|
app = insert(:oauth_app, client_name: "Mastodon-Local", redirect_uris: ".")
|
|
auth = insert(:oauth_authorization, app: app)
|
|
|
|
conn = get(conn, "/web/login", %{code: auth.token})
|
|
|
|
assert conn.status == 302
|
|
assert redirected_to(conn) == "/web/getting-started"
|
|
end
|
|
end
|
|
|
|
describe "scheduled activities" do
|
|
test "creates a scheduled activity", %{conn: conn} do
|
|
user = insert(:user)
|
|
scheduled_at = NaiveDateTime.add(NaiveDateTime.utc_now(), :timer.minutes(120), :millisecond)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> post("/api/v1/statuses", %{
|
|
"status" => "scheduled",
|
|
"scheduled_at" => scheduled_at
|
|
})
|
|
|
|
assert %{"scheduled_at" => expected_scheduled_at} = json_response(conn, 200)
|
|
assert expected_scheduled_at == Pleroma.Web.CommonAPI.Utils.to_masto_date(scheduled_at)
|
|
assert [] == Repo.all(Activity)
|
|
end
|
|
|
|
test "creates a scheduled activity with a media attachment", %{conn: conn} do
|
|
user = insert(:user)
|
|
scheduled_at = NaiveDateTime.add(NaiveDateTime.utc_now(), :timer.minutes(120), :millisecond)
|
|
|
|
file = %Plug.Upload{
|
|
content_type: "image/jpg",
|
|
path: Path.absname("test/fixtures/image.jpg"),
|
|
filename: "an_image.jpg"
|
|
}
|
|
|
|
{:ok, upload} = ActivityPub.upload(file, actor: user.ap_id)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> post("/api/v1/statuses", %{
|
|
"media_ids" => [to_string(upload.id)],
|
|
"status" => "scheduled",
|
|
"scheduled_at" => scheduled_at
|
|
})
|
|
|
|
assert %{"media_attachments" => [media_attachment]} = json_response(conn, 200)
|
|
assert %{"type" => "image"} = media_attachment
|
|
end
|
|
|
|
test "skips the scheduling and creates the activity if scheduled_at is earlier than 5 minutes from now",
|
|
%{conn: conn} do
|
|
user = insert(:user)
|
|
|
|
scheduled_at =
|
|
NaiveDateTime.add(NaiveDateTime.utc_now(), :timer.minutes(5) - 1, :millisecond)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> post("/api/v1/statuses", %{
|
|
"status" => "not scheduled",
|
|
"scheduled_at" => scheduled_at
|
|
})
|
|
|
|
assert %{"content" => "not scheduled"} = json_response(conn, 200)
|
|
assert [] == Repo.all(ScheduledActivity)
|
|
end
|
|
|
|
test "returns error when daily user limit is exceeded", %{conn: conn} do
|
|
user = insert(:user)
|
|
|
|
today =
|
|
NaiveDateTime.utc_now()
|
|
|> NaiveDateTime.add(:timer.minutes(6), :millisecond)
|
|
|> NaiveDateTime.to_iso8601()
|
|
|
|
attrs = %{params: %{}, scheduled_at: today}
|
|
{:ok, _} = ScheduledActivity.create(user, attrs)
|
|
{:ok, _} = ScheduledActivity.create(user, attrs)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> post("/api/v1/statuses", %{"status" => "scheduled", "scheduled_at" => today})
|
|
|
|
assert %{"error" => "daily limit exceeded"} == json_response(conn, 422)
|
|
end
|
|
|
|
test "returns error when total user limit is exceeded", %{conn: conn} do
|
|
user = insert(:user)
|
|
|
|
today =
|
|
NaiveDateTime.utc_now()
|
|
|> NaiveDateTime.add(:timer.minutes(6), :millisecond)
|
|
|> NaiveDateTime.to_iso8601()
|
|
|
|
tomorrow =
|
|
NaiveDateTime.utc_now()
|
|
|> NaiveDateTime.add(:timer.hours(36), :millisecond)
|
|
|> NaiveDateTime.to_iso8601()
|
|
|
|
attrs = %{params: %{}, scheduled_at: today}
|
|
{:ok, _} = ScheduledActivity.create(user, attrs)
|
|
{:ok, _} = ScheduledActivity.create(user, attrs)
|
|
{:ok, _} = ScheduledActivity.create(user, %{params: %{}, scheduled_at: tomorrow})
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> post("/api/v1/statuses", %{"status" => "scheduled", "scheduled_at" => tomorrow})
|
|
|
|
assert %{"error" => "total limit exceeded"} == json_response(conn, 422)
|
|
end
|
|
|
|
test "shows scheduled activities", %{conn: conn} do
|
|
user = insert(:user)
|
|
scheduled_activity_id1 = insert(:scheduled_activity, user: user).id |> to_string()
|
|
scheduled_activity_id2 = insert(:scheduled_activity, user: user).id |> to_string()
|
|
scheduled_activity_id3 = insert(:scheduled_activity, user: user).id |> to_string()
|
|
scheduled_activity_id4 = insert(:scheduled_activity, user: user).id |> to_string()
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|
|
# min_id
|
|
conn_res =
|
|
conn
|
|
|> get("/api/v1/scheduled_statuses?limit=2&min_id=#{scheduled_activity_id1}")
|
|
|
|
result = json_response(conn_res, 200)
|
|
assert [%{"id" => ^scheduled_activity_id3}, %{"id" => ^scheduled_activity_id2}] = result
|
|
|
|
# since_id
|
|
conn_res =
|
|
conn
|
|
|> get("/api/v1/scheduled_statuses?limit=2&since_id=#{scheduled_activity_id1}")
|
|
|
|
result = json_response(conn_res, 200)
|
|
assert [%{"id" => ^scheduled_activity_id4}, %{"id" => ^scheduled_activity_id3}] = result
|
|
|
|
# max_id
|
|
conn_res =
|
|
conn
|
|
|> get("/api/v1/scheduled_statuses?limit=2&max_id=#{scheduled_activity_id4}")
|
|
|
|
result = json_response(conn_res, 200)
|
|
assert [%{"id" => ^scheduled_activity_id3}, %{"id" => ^scheduled_activity_id2}] = result
|
|
end
|
|
|
|
test "shows a scheduled activity", %{conn: conn} do
|
|
user = insert(:user)
|
|
scheduled_activity = insert(:scheduled_activity, user: user)
|
|
|
|
res_conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/scheduled_statuses/#{scheduled_activity.id}")
|
|
|
|
assert %{"id" => scheduled_activity_id} = json_response(res_conn, 200)
|
|
assert scheduled_activity_id == scheduled_activity.id |> to_string()
|
|
|
|
res_conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/scheduled_statuses/404")
|
|
|
|
assert %{"error" => "Record not found"} = json_response(res_conn, 404)
|
|
end
|
|
|
|
test "updates a scheduled activity", %{conn: conn} do
|
|
user = insert(:user)
|
|
scheduled_activity = insert(:scheduled_activity, user: user)
|
|
|
|
new_scheduled_at =
|
|
NaiveDateTime.add(NaiveDateTime.utc_now(), :timer.minutes(120), :millisecond)
|
|
|
|
res_conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> put("/api/v1/scheduled_statuses/#{scheduled_activity.id}", %{
|
|
scheduled_at: new_scheduled_at
|
|
})
|
|
|
|
assert %{"scheduled_at" => expected_scheduled_at} = json_response(res_conn, 200)
|
|
assert expected_scheduled_at == Pleroma.Web.CommonAPI.Utils.to_masto_date(new_scheduled_at)
|
|
|
|
res_conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> put("/api/v1/scheduled_statuses/404", %{scheduled_at: new_scheduled_at})
|
|
|
|
assert %{"error" => "Record not found"} = json_response(res_conn, 404)
|
|
end
|
|
|
|
test "deletes a scheduled activity", %{conn: conn} do
|
|
user = insert(:user)
|
|
scheduled_activity = insert(:scheduled_activity, user: user)
|
|
|
|
res_conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> delete("/api/v1/scheduled_statuses/#{scheduled_activity.id}")
|
|
|
|
assert %{} = json_response(res_conn, 200)
|
|
assert nil == Repo.get(ScheduledActivity, scheduled_activity.id)
|
|
|
|
res_conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> delete("/api/v1/scheduled_statuses/#{scheduled_activity.id}")
|
|
|
|
assert %{"error" => "Record not found"} = json_response(res_conn, 404)
|
|
end
|
|
end
|
|
|
|
describe "create account by app" do
|
|
test "Account registration via Application", %{conn: conn} do
|
|
conn =
|
|
conn
|
|
|> post("/api/v1/apps", %{
|
|
client_name: "client_name",
|
|
redirect_uris: "urn:ietf:wg:oauth:2.0:oob",
|
|
scopes: "read, write, follow"
|
|
})
|
|
|
|
%{
|
|
"client_id" => client_id,
|
|
"client_secret" => client_secret,
|
|
"id" => _,
|
|
"name" => "client_name",
|
|
"redirect_uri" => "urn:ietf:wg:oauth:2.0:oob",
|
|
"vapid_key" => _,
|
|
"website" => nil
|
|
} = json_response(conn, 200)
|
|
|
|
conn =
|
|
conn
|
|
|> post("/oauth/token", %{
|
|
grant_type: "client_credentials",
|
|
client_id: client_id,
|
|
client_secret: client_secret
|
|
})
|
|
|
|
assert %{"access_token" => token, "refresh_token" => refresh, "scope" => scope} =
|
|
json_response(conn, 200)
|
|
|
|
assert token
|
|
token_from_db = Repo.get_by(Token, token: token)
|
|
assert token_from_db
|
|
assert refresh
|
|
assert scope == "read write follow"
|
|
|
|
conn =
|
|
build_conn()
|
|
|> put_req_header("authorization", "Bearer " <> token)
|
|
|> post("/api/v1/accounts", %{
|
|
username: "lain",
|
|
email: "lain@example.org",
|
|
password: "PlzDontHackLain",
|
|
agreement: true
|
|
})
|
|
|
|
%{
|
|
"access_token" => token,
|
|
"created_at" => _created_at,
|
|
"scope" => _scope,
|
|
"token_type" => "Bearer"
|
|
} = json_response(conn, 200)
|
|
|
|
token_from_db = Repo.get_by(Token, token: token)
|
|
assert token_from_db
|
|
token_from_db = Repo.preload(token_from_db, :user)
|
|
assert token_from_db.user
|
|
|
|
assert token_from_db.user.info.confirmation_pending
|
|
end
|
|
|
|
test "rate limit", %{conn: conn} do
|
|
app_token = insert(:oauth_token, user: nil)
|
|
|
|
conn =
|
|
put_req_header(conn, "authorization", "Bearer " <> app_token.token)
|
|
|> Map.put(:remote_ip, {15, 15, 15, 15})
|
|
|
|
for i <- 1..5 do
|
|
conn =
|
|
conn
|
|
|> post("/api/v1/accounts", %{
|
|
username: "#{i}lain",
|
|
email: "#{i}lain@example.org",
|
|
password: "PlzDontHackLain",
|
|
agreement: true
|
|
})
|
|
|
|
%{
|
|
"access_token" => token,
|
|
"created_at" => _created_at,
|
|
"scope" => _scope,
|
|
"token_type" => "Bearer"
|
|
} = json_response(conn, 200)
|
|
|
|
token_from_db = Repo.get_by(Token, token: token)
|
|
assert token_from_db
|
|
token_from_db = Repo.preload(token_from_db, :user)
|
|
assert token_from_db.user
|
|
|
|
assert token_from_db.user.info.confirmation_pending
|
|
end
|
|
|
|
conn =
|
|
conn
|
|
|> post("/api/v1/accounts", %{
|
|
username: "6lain",
|
|
email: "6lain@example.org",
|
|
password: "PlzDontHackLain",
|
|
agreement: true
|
|
})
|
|
|
|
assert json_response(conn, :too_many_requests) == %{"error" => "Throttled"}
|
|
end
|
|
end
|
|
|
|
describe "GET /api/v1/polls/:id" do
|
|
test "returns poll entity for object id", %{conn: conn} do
|
|
user = insert(:user)
|
|
|
|
{:ok, activity} =
|
|
CommonAPI.post(user, %{
|
|
"status" => "Pleroma does",
|
|
"poll" => %{"options" => ["what Mastodon't", "n't what Mastodoes"], "expires_in" => 20}
|
|
})
|
|
|
|
object = Object.normalize(activity)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/polls/#{object.id}")
|
|
|
|
response = json_response(conn, 200)
|
|
id = to_string(object.id)
|
|
assert %{"id" => ^id, "expired" => false, "multiple" => false} = response
|
|
end
|
|
|
|
test "does not expose polls for private statuses", %{conn: conn} do
|
|
user = insert(:user)
|
|
other_user = insert(:user)
|
|
|
|
{:ok, activity} =
|
|
CommonAPI.post(user, %{
|
|
"status" => "Pleroma does",
|
|
"poll" => %{"options" => ["what Mastodon't", "n't what Mastodoes"], "expires_in" => 20},
|
|
"visibility" => "private"
|
|
})
|
|
|
|
object = Object.normalize(activity)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, other_user)
|
|
|> get("/api/v1/polls/#{object.id}")
|
|
|
|
assert json_response(conn, 404)
|
|
end
|
|
end
|
|
|
|
describe "POST /api/v1/polls/:id/votes" do
|
|
test "votes are added to the poll", %{conn: conn} do
|
|
user = insert(:user)
|
|
other_user = insert(:user)
|
|
|
|
{:ok, activity} =
|
|
CommonAPI.post(user, %{
|
|
"status" => "A very delicious sandwich",
|
|
"poll" => %{
|
|
"options" => ["Lettuce", "Grilled Bacon", "Tomato"],
|
|
"expires_in" => 20,
|
|
"multiple" => true
|
|
}
|
|
})
|
|
|
|
object = Object.normalize(activity)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, other_user)
|
|
|> post("/api/v1/polls/#{object.id}/votes", %{"choices" => [0, 1, 2]})
|
|
|
|
assert json_response(conn, 200)
|
|
object = Object.get_by_id(object.id)
|
|
|
|
assert Enum.all?(object.data["anyOf"], fn %{"replies" => %{"totalItems" => total_items}} ->
|
|
total_items == 1
|
|
end)
|
|
end
|
|
|
|
test "author can't vote", %{conn: conn} do
|
|
user = insert(:user)
|
|
|
|
{:ok, activity} =
|
|
CommonAPI.post(user, %{
|
|
"status" => "Am I cute?",
|
|
"poll" => %{"options" => ["Yes", "No"], "expires_in" => 20}
|
|
})
|
|
|
|
object = Object.normalize(activity)
|
|
|
|
assert conn
|
|
|> assign(:user, user)
|
|
|> post("/api/v1/polls/#{object.id}/votes", %{"choices" => [1]})
|
|
|> json_response(422) == %{"error" => "Poll's author can't vote"}
|
|
|
|
object = Object.get_by_id(object.id)
|
|
|
|
refute Enum.at(object.data["oneOf"], 1)["replies"]["totalItems"] == 1
|
|
end
|
|
|
|
test "does not allow multiple choices on a single-choice question", %{conn: conn} do
|
|
user = insert(:user)
|
|
other_user = insert(:user)
|
|
|
|
{:ok, activity} =
|
|
CommonAPI.post(user, %{
|
|
"status" => "The glass is",
|
|
"poll" => %{"options" => ["half empty", "half full"], "expires_in" => 20}
|
|
})
|
|
|
|
object = Object.normalize(activity)
|
|
|
|
assert conn
|
|
|> assign(:user, other_user)
|
|
|> post("/api/v1/polls/#{object.id}/votes", %{"choices" => [0, 1]})
|
|
|> json_response(422) == %{"error" => "Too many choices"}
|
|
|
|
object = Object.get_by_id(object.id)
|
|
|
|
refute Enum.any?(object.data["oneOf"], fn %{"replies" => %{"totalItems" => total_items}} ->
|
|
total_items == 1
|
|
end)
|
|
end
|
|
|
|
test "does not allow choice index to be greater than options count", %{conn: conn} do
|
|
user = insert(:user)
|
|
other_user = insert(:user)
|
|
|
|
{:ok, activity} =
|
|
CommonAPI.post(user, %{
|
|
"status" => "Am I cute?",
|
|
"poll" => %{"options" => ["Yes", "No"], "expires_in" => 20}
|
|
})
|
|
|
|
object = Object.normalize(activity)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, other_user)
|
|
|> post("/api/v1/polls/#{object.id}/votes", %{"choices" => [2]})
|
|
|
|
assert json_response(conn, 422) == %{"error" => "Invalid indices"}
|
|
end
|
|
|
|
test "returns 404 error when object is not exist", %{conn: conn} do
|
|
user = insert(:user)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> post("/api/v1/polls/1/votes", %{"choices" => [0]})
|
|
|
|
assert json_response(conn, 404) == %{"error" => "Record not found"}
|
|
end
|
|
|
|
test "returns 404 when poll is private and not available for user", %{conn: conn} do
|
|
user = insert(:user)
|
|
other_user = insert(:user)
|
|
|
|
{:ok, activity} =
|
|
CommonAPI.post(user, %{
|
|
"status" => "Am I cute?",
|
|
"poll" => %{"options" => ["Yes", "No"], "expires_in" => 20},
|
|
"visibility" => "private"
|
|
})
|
|
|
|
object = Object.normalize(activity)
|
|
|
|
conn =
|
|
conn
|
|
|> assign(:user, other_user)
|
|
|> post("/api/v1/polls/#{object.id}/votes", %{"choices" => [0]})
|
|
|
|
assert json_response(conn, 404) == %{"error" => "Record not found"}
|
|
end
|
|
end
|
|
|
|
describe "POST /auth/password, with valid parameters" do
|
|
setup %{conn: conn} do
|
|
user = insert(:user)
|
|
conn = post(conn, "/auth/password?email=#{user.email}")
|
|
%{conn: conn, user: user}
|
|
end
|
|
|
|
test "it returns 204", %{conn: conn} do
|
|
assert json_response(conn, :no_content)
|
|
end
|
|
|
|
test "it creates a PasswordResetToken record for user", %{user: user} do
|
|
token_record = Repo.get_by(Pleroma.PasswordResetToken, user_id: user.id)
|
|
assert token_record
|
|
end
|
|
|
|
test "it sends an email to user", %{user: user} do
|
|
ObanHelpers.perform_all()
|
|
token_record = Repo.get_by(Pleroma.PasswordResetToken, user_id: user.id)
|
|
|
|
email = Pleroma.Emails.UserEmail.password_reset_email(user, token_record.token)
|
|
notify_email = Config.get([:instance, :notify_email])
|
|
instance_name = Config.get([:instance, :name])
|
|
|
|
assert_email_sent(
|
|
from: {instance_name, notify_email},
|
|
to: {user.name, user.email},
|
|
html_body: email.html_body
|
|
)
|
|
end
|
|
end
|
|
|
|
describe "POST /auth/password, with invalid parameters" do
|
|
setup do
|
|
user = insert(:user)
|
|
{:ok, user: user}
|
|
end
|
|
|
|
test "it returns 404 when user is not found", %{conn: conn, user: user} do
|
|
conn = post(conn, "/auth/password?email=nonexisting_#{user.email}")
|
|
assert conn.status == 404
|
|
assert conn.resp_body == ""
|
|
end
|
|
|
|
test "it returns 400 when user is not local", %{conn: conn, user: user} do
|
|
{:ok, user} = Repo.update(Changeset.change(user, local: false))
|
|
conn = post(conn, "/auth/password?email=#{user.email}")
|
|
assert conn.status == 400
|
|
assert conn.resp_body == ""
|
|
end
|
|
end
|
|
|
|
describe "POST /api/v1/pleroma/accounts/confirmation_resend" do
|
|
setup do
|
|
{:ok, user} =
|
|
insert(:user)
|
|
|> User.change_info(&User.Info.confirmation_changeset(&1, need_confirmation: true))
|
|
|> Repo.update()
|
|
|
|
assert user.info.confirmation_pending
|
|
|
|
[user: user]
|
|
end
|
|
|
|
clear_config([:instance, :account_activation_required]) do
|
|
Config.put([:instance, :account_activation_required], true)
|
|
end
|
|
|
|
test "resend account confirmation email", %{conn: conn, user: user} do
|
|
conn
|
|
|> assign(:user, user)
|
|
|> post("/api/v1/pleroma/accounts/confirmation_resend?email=#{user.email}")
|
|
|> json_response(:no_content)
|
|
|
|
ObanHelpers.perform_all()
|
|
|
|
email = Pleroma.Emails.UserEmail.account_confirmation_email(user)
|
|
notify_email = Config.get([:instance, :notify_email])
|
|
instance_name = Config.get([:instance, :name])
|
|
|
|
assert_email_sent(
|
|
from: {instance_name, notify_email},
|
|
to: {user.name, user.email},
|
|
html_body: email.html_body
|
|
)
|
|
end
|
|
end
|
|
|
|
describe "GET /api/v1/suggestions" do
|
|
setup do
|
|
user = insert(:user)
|
|
other_user = insert(:user)
|
|
host = Config.get([Pleroma.Web.Endpoint, :url, :host])
|
|
url500 = "http://test500?#{host}&#{user.nickname}"
|
|
url200 = "http://test200?#{host}&#{user.nickname}"
|
|
|
|
mock(fn
|
|
%{method: :get, url: ^url500} ->
|
|
%Tesla.Env{status: 500, body: "bad request"}
|
|
|
|
%{method: :get, url: ^url200} ->
|
|
%Tesla.Env{
|
|
status: 200,
|
|
body:
|
|
~s([{"acct":"yj455","avatar":"https://social.heldscal.la/avatar/201.jpeg","avatar_static":"https://social.heldscal.la/avatar/s/201.jpeg"}, {"acct":"#{
|
|
other_user.ap_id
|
|
}","avatar":"https://social.heldscal.la/avatar/202.jpeg","avatar_static":"https://social.heldscal.la/avatar/s/202.jpeg"}])
|
|
}
|
|
end)
|
|
|
|
[user: user, other_user: other_user]
|
|
end
|
|
|
|
clear_config(:suggestions)
|
|
|
|
test "returns empty result when suggestions disabled", %{conn: conn, user: user} do
|
|
Config.put([:suggestions, :enabled], false)
|
|
|
|
res =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/suggestions")
|
|
|> json_response(200)
|
|
|
|
assert res == []
|
|
end
|
|
|
|
test "returns error", %{conn: conn, user: user} do
|
|
Config.put([:suggestions, :enabled], true)
|
|
Config.put([:suggestions, :third_party_engine], "http://test500?{{host}}&{{user}}")
|
|
|
|
assert capture_log(fn ->
|
|
res =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/suggestions")
|
|
|> json_response(500)
|
|
|
|
assert res == "Something went wrong"
|
|
end) =~ "Could not retrieve suggestions"
|
|
end
|
|
|
|
test "returns suggestions", %{conn: conn, user: user, other_user: other_user} do
|
|
Config.put([:suggestions, :enabled], true)
|
|
Config.put([:suggestions, :third_party_engine], "http://test200?{{host}}&{{user}}")
|
|
|
|
res =
|
|
conn
|
|
|> assign(:user, user)
|
|
|> get("/api/v1/suggestions")
|
|
|> json_response(200)
|
|
|
|
assert res == [
|
|
%{
|
|
"acct" => "yj455",
|
|
"avatar" => "https://social.heldscal.la/avatar/201.jpeg",
|
|
"avatar_static" => "https://social.heldscal.la/avatar/s/201.jpeg",
|
|
"id" => 0
|
|
},
|
|
%{
|
|
"acct" => other_user.ap_id,
|
|
"avatar" => "https://social.heldscal.la/avatar/202.jpeg",
|
|
"avatar_static" => "https://social.heldscal.la/avatar/s/202.jpeg",
|
|
"id" => other_user.id
|
|
}
|
|
]
|
|
end
|
|
end
|
|
end
|