closed-social
/
mastodon
3
0
Fork 2
Code Issues 5 Pull Requests 0 Projects 0 Releases 3 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8862 Commits
4 Branches
567 MiB
Tree: 27ea57c109
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '27ea57c109'
${ noResults }
mastodon/spec/controllers/activitypub/replies_controller_spec.rb

196 lines
6.3 KiB
Raw Normal View History

Add more tests for ActivityPub controllers (#13585)
4 years ago
 
  1. # frozen_string_literal: true
  2. 

  3. require 'rails_helper'
  4. 

  5. RSpec.describe ActivityPub::RepliesController, type: :controller do
  6.   let(:status) { Fabricate(:status, visibility: parent_visibility) }
  7.   let(:remote_account) { nil }
  8. 

  9.   before do
  10.     allow(controller).to receive(:signed_request_account).and_return(remote_account)
  11. 

  12.     Fabricate(:status, thread: status, visibility: :public)
  13.     Fabricate(:status, thread: status, visibility: :public)
  14.     Fabricate(:status, thread: status, visibility: :private)
  15.     Fabricate(:status, account: status.account, thread: status, visibility: :public)
  16.     Fabricate(:status, account: status.account, thread: status, visibility: :private)
  17.   end
  18. 

  19.   describe 'GET #index' do
  20.     context 'with no signature' do
  21.       before do
  22.         get :index, params: { account_username: status.account.username, status_id: status.id }
  23.       end
  24. 

  25.       context 'when status is public' do
  26.         let(:parent_visibility) { :public }
  27. 

  28.         it 'returns http success' do
  29.           expect(response).to have_http_status(200)
  30.         end
  31. 

  32.         it 'returns application/activity+json' do
  33.           expect(response.content_type).to eq 'application/activity+json'
  34.         end
  35. 

  36.         it 'returns public Cache-Control header' do
  37.           expect(response.headers['Cache-Control']).to include 'public'
  38.         end
  39. 

  40.         it 'returns items with account\'s own replies' do
  41.           json = body_as_json
  42. 

  43.           expect(json[:first]).to be_a Hash
  44.           expect(json[:first][:items]).to be_an Array
  45.           expect(json[:first][:items].size).to eq 1

  46.           expect(json[:first][:items].all? { |item| item[:to].include?(ActivityPub::TagManager::COLLECTIONS[:public]) || item[:cc].include?(ActivityPub::TagManager::COLLECTIONS[:public]) }).to be true
  47.         end
  48.       end
  49. 

  50.       context 'when status is private' do
  51.         let(:parent_visibility) { :private }
  52. 

  53.         it 'returns http not found' do
  54.           expect(response).to have_http_status(404)
  55.         end
  56.       end
  57. 

  58.       context 'when status is direct' do
  59.         let(:parent_visibility) { :direct }
  60. 

  61.         it 'returns http not found' do
  62.           expect(response).to have_http_status(404)
  63.         end
  64.       end
  65.     end
  66. 

  67.     context 'with signature' do
  68.       let(:remote_account) { Fabricate(:account, domain: 'example.com') }
  69.       let(:only_other_accounts) { nil }
  70. 

  71.       context do
  72.         before do
  73.           get :index, params: { account_username: status.account.username, status_id: status.id, only_other_accounts: only_other_accounts }
  74.         end
  75. 

  76.         context 'when status is public' do
  77.           let(:parent_visibility) { :public }
  78. 

  79.           it 'returns http success' do
  80.             expect(response).to have_http_status(200)
  81.           end
  82. 

  83.           it 'returns application/activity+json' do
  84.             expect(response.content_type).to eq 'application/activity+json'
  85.           end
  86. 

  87.           it 'returns public Cache-Control header' do
  88.             expect(response.headers['Cache-Control']).to include 'public'
  89.           end
  90. 

  91.           context 'without only_other_accounts' do
  92.             it 'returns items with account\'s own replies' do
  93.               json = body_as_json
  94. 

  95.               expect(json[:first]).to be_a Hash
  96.               expect(json[:first][:items]).to be_an Array
  97.               expect(json[:first][:items].size).to eq 1

  98.               expect(json[:first][:items].all? { |item| item[:to].include?(ActivityPub::TagManager::COLLECTIONS[:public]) || item[:cc].include?(ActivityPub::TagManager::COLLECTIONS[:public]) }).to be true
  99.             end
  100.           end
  101. 

  102.           context 'with only_other_accounts' do
  103.             let(:only_other_accounts) { 'true' }
  104. 

  105.             it 'returns items with other public or unlisted replies' do
  106.               json = body_as_json
  107. 

  108.               expect(json[:first]).to be_a Hash
  109.               expect(json[:first][:items]).to be_an Array
  110.               expect(json[:first][:items].size).to eq 2

  111.               expect(json[:first][:items].all? { |item| item[:to].include?(ActivityPub::TagManager::COLLECTIONS[:public]) || item[:cc].include?(ActivityPub::TagManager::COLLECTIONS[:public]) }).to be true
  112.             end
  113.           end
  114.         end
  115. 

  116.         context 'when status is private' do
  117.           let(:parent_visibility) { :private }
  118. 

  119.           it 'returns http not found' do
  120.             expect(response).to have_http_status(404)
  121.           end
  122.         end
  123. 

  124.         context 'when status is direct' do
  125.           let(:parent_visibility) { :direct }
  126. 

  127.           it 'returns http not found' do
  128.             expect(response).to have_http_status(404)
  129.           end
  130.         end
  131.       end
  132. 

  133.       context 'when signed request account is blocked' do
  134.         before do
  135.           status.account.block!(remote_account)
  136.           get :index, params: { account_username: status.account.username, status_id: status.id }
  137.         end
  138. 

  139.         context 'when status is public' do
  140.           let(:parent_visibility) { :public }
  141. 

  142.           it 'returns http not found' do
  143.             expect(response).to have_http_status(404)
  144.           end
  145.         end
  146. 

  147.         context 'when status is private' do
  148.           let(:parent_visibility) { :private }
  149. 

  150.           it 'returns http not found' do
  151.             expect(response).to have_http_status(404)
  152.           end
  153.         end
  154. 

  155.         context 'when status is direct' do
  156.           let(:parent_visibility) { :direct }
  157. 

  158.           it 'returns http not found' do
  159.             expect(response).to have_http_status(404)
  160.           end
  161.         end
  162.       end
  163. 

  164.       context 'when signed request account is domain blocked' do
  165.         before do
  166.           status.account.block_domain!(remote_account.domain)
  167.           get :index, params: { account_username: status.account.username, status_id: status.id }
  168.         end
  169. 

  170.         context 'when status is public' do
  171.           let(:parent_visibility) { :public }
  172. 

  173.           it 'returns http not found' do
  174.             expect(response).to have_http_status(404)
  175.           end
  176.         end
  177. 

  178.         context 'when status is private' do
  179.           let(:parent_visibility) { :private }
  180. 

  181.           it 'returns http not found' do
  182.             expect(response).to have_http_status(404)
  183.           end
  184.         end
  185. 

  186.         context 'when status is direct' do
  187.           let(:parent_visibility) { :direct }
  188. 

  189.           it 'returns http not found' do
  190.             expect(response).to have_http_status(404)
  191.           end
  192.         end
  193.       end
  194.     end
  195.   end
  196. end