closed-social
/
mastodon
3
0
Fork 2
Code Issues 5 Pull Requests 0 Projects 0 Releases 3 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
10750 Commits
4 Branches
567 MiB
Branch: closed-social-v3
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'closed-social-v3'
${ noResults }
mastodon/spec/lib/proof_provider/keybase/verifier_spec.rb

82 lines
2.9 KiB
Raw Permalink Normal View History

Add Keybase integration (#10297) * create account_identity_proofs table * add endpoint for keybase to check local proofs * add async task to update validity and liveness of proofs from keybase * first pass keybase proof CRUD * second pass keybase proof creation * clean up proof list and add badges * add avatar url to keybase api * Always highlight the “Identity Proofs” navigation item when interacting with proofs. * Update translations. * Add profile URL. * Reorder proofs. * Add proofs to bio. * Update settings/identity_proofs front-end. * Use `link_to`. * Only encode query params if they exist. URLs without params had a trailing `?`. * Only show live proofs. * change valid to active in proof list and update liveness before displaying * minor fixes * add keybase config at well-known path * extremely naive feature flagging off the identity proof UI * fixes for rubocop * make identity proofs page resilient to potential keybase issues * normalize i18n * tweaks for brakeman * remove two unused translations * cleanup and add more localizations * make keybase_contacts an admin setting * fix ExternalProofService my_domain * use Addressable::URI in identity proofs * use active model serializer for keybase proof config * more cleanup of keybase proof config * rename proof is_valid and is_live to proof_valid and proof_live * cleanup * assorted tweaks for more robust communication with keybase * Clean up * Small fixes * Display verified identity identically to verified links * Clean up unused CSS * Add caching for Keybase avatar URLs * Remove keybase_contacts setting
5 years ago
Fix Keybase verification using wrong domain for remote accounts (#10547)
5 years ago
Add Keybase integration (#10297) * create account_identity_proofs table * add endpoint for keybase to check local proofs * add async task to update validity and liveness of proofs from keybase * first pass keybase proof CRUD * second pass keybase proof creation * clean up proof list and add badges * add avatar url to keybase api * Always highlight the “Identity Proofs” navigation item when interacting with proofs. * Update translations. * Add profile URL. * Reorder proofs. * Add proofs to bio. * Update settings/identity_proofs front-end. * Use `link_to`. * Only encode query params if they exist. URLs without params had a trailing `?`. * Only show live proofs. * change valid to active in proof list and update liveness before displaying * minor fixes * add keybase config at well-known path * extremely naive feature flagging off the identity proof UI * fixes for rubocop * make identity proofs page resilient to potential keybase issues * normalize i18n * tweaks for brakeman * remove two unused translations * cleanup and add more localizations * make keybase_contacts an admin setting * fix ExternalProofService my_domain * use Addressable::URI in identity proofs * use active model serializer for keybase proof config * more cleanup of keybase proof config * rename proof is_valid and is_live to proof_valid and proof_live * cleanup * assorted tweaks for more robust communication with keybase * Clean up * Small fixes * Display verified identity identically to verified links * Clean up unused CSS * Add caching for Keybase avatar URLs * Remove keybase_contacts setting
5 years ago
 
  1. require 'rails_helper'
  2. 

  3. describe ProofProvider::Keybase::Verifier do
  4.   let(:my_domain) { Rails.configuration.x.local_domain }
  5. 

  6.   let(:keybase_proof) do
  7.     local_proof = AccountIdentityProof.new(
  8.       provider: 'Keybase',
  9.       provider_username: 'cryptoalice',
  10.       token: '11111111111111111111111111'
  11.     )
  12. 

  13.     described_class.new('alice', 'cryptoalice', '11111111111111111111111111', my_domain)
  14.   end
  15. 

  16.   let(:query_params) do
  17.     "domain=#{my_domain}&kb_username=cryptoalice&sig_hash=11111111111111111111111111&username=alice"
  18.   end
  19. 

  20.   describe '#valid?' do
  21.     let(:base_url) { 'https://keybase.io/_/api/1.0/sig/proof_valid.json' }
  22. 

  23.     context 'when valid' do
  24.       before do
  25.         json_response_body = '{"status":{"code":0,"name":"OK"},"proof_valid":true}'
  26.         stub_request(:get, "#{base_url}?#{query_params}").to_return(status: 200, body: json_response_body)
  27.       end
  28. 

  29.       it 'calls out to keybase and returns true' do
  30.         expect(keybase_proof.valid?).to eq true
  31.       end
  32.     end
  33. 

  34.     context 'when invalid' do
  35.       before do
  36.         json_response_body = '{"status":{"code":0,"name":"OK"},"proof_valid":false}'
  37.         stub_request(:get, "#{base_url}?#{query_params}").to_return(status: 200, body: json_response_body)
  38.       end
  39. 

  40.       it 'calls out to keybase and returns false' do
  41.         expect(keybase_proof.valid?).to eq false
  42.       end
  43.     end
  44. 

  45.     context 'with an unexpected api response' do
  46.       before do
  47.         json_response_body = '{"status":{"code":100,"desc":"wrong size hex_id","fields":{"sig_hash":"wrong size hex_id"},"name":"INPUT_ERROR"}}'
  48.         stub_request(:get, "#{base_url}?#{query_params}").to_return(status: 200, body: json_response_body)
  49.       end
  50. 

  51.       it 'swallows the error and returns false' do
  52.         expect(keybase_proof.valid?).to eq false
  53.       end
  54.     end
  55.   end
  56. 

  57.   describe '#status' do
  58.     let(:base_url) { 'https://keybase.io/_/api/1.0/sig/proof_live.json' }
  59. 

  60.     context 'with a normal response' do
  61.       before do
  62.         json_response_body = '{"status":{"code":0,"name":"OK"},"proof_live":false,"proof_valid":true}'
  63.         stub_request(:get, "#{base_url}?#{query_params}").to_return(status: 200, body: json_response_body)
  64.       end
  65. 

  66.       it 'calls out to keybase and returns the status fields as proof_valid and proof_live' do
  67.         expect(keybase_proof.status).to include({ 'proof_valid' => true, 'proof_live' => false })
  68.       end
  69.     end
  70. 

  71.     context 'with an unexpected keybase response' do
  72.       before do
  73.         json_response_body = '{"status":{"code":100,"desc":"missing non-optional field sig_hash","fields":{"sig_hash":"missing non-optional field sig_hash"},"name":"INPUT_ERROR"}}'
  74.         stub_request(:get, "#{base_url}?#{query_params}").to_return(status: 200, body: json_response_body)
  75.       end
  76. 

  77.       it 'raises a ProofProvider::Keybase::UnexpectedResponseError' do
  78.         expect { keybase_proof.status }.to raise_error ProofProvider::Keybase::UnexpectedResponseError
  79.       end
  80.     end
  81.   end
  82. end