closed-social
/
mastodon
3
0
Fork 2
Code Issues 5 Pull Requests 0 Projects 0 Releases 3 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
9754 Commits
4 Branches
567 MiB
Tree: 3134691948
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '3134691948'
${ noResults }
mastodon/spec/controllers/activitypub/outboxes_controller_spec.rb

228 lines
7.2 KiB
Raw Normal View History

Add ActivityPub inbox (#4216) * Add ActivityPub inbox * Handle ActivityPub deletes * Handle ActivityPub creates * Handle ActivityPub announces * Stubs for handling all activities that need to be handled * Add ActivityPub actor resolving * Handle conversation URI passing in ActivityPub * Handle content language in ActivityPub * Send accept header when fetching actor, handle JSON parse errors * Test for ActivityPub::FetchRemoteAccountService * Handle public key and icon/image when embedded/as array/as resolvable URI * Implement ActivityPub::FetchRemoteStatusService * Add stubs for more interactions * Undo activities implemented * Handle out of order activities * Hook up ActivityPub to ResolveRemoteAccountService, handle Update Account activities * Add fragment IDs to all transient activity serializers * Add tests and fixes * Add stubs for missing tests * Add more tests * Add more tests
6 years ago
Fix RSS feeds not being cachable (#14368) * Add tests for some cachable responses This only covers responses that we should have managed to make cachable so far. It's not the case of all responses that should be cachable in the end. * Fix RSS feeds not being cachable
3 years ago
Add support for reversible suspensions through ActivityPub (#14989)
3 years ago
Fix RSS feeds not being cachable (#14368) * Add tests for some cachable responses This only covers responses that we should have managed to make cachable so far. It's not the case of all responses that should be cachable in the end. * Fix RSS feeds not being cachable
3 years ago
Add ActivityPub inbox (#4216) * Add ActivityPub inbox * Handle ActivityPub deletes * Handle ActivityPub creates * Handle ActivityPub announces * Stubs for handling all activities that need to be handled * Add ActivityPub actor resolving * Handle conversation URI passing in ActivityPub * Handle content language in ActivityPub * Send accept header when fetching actor, handle JSON parse errors * Test for ActivityPub::FetchRemoteAccountService * Handle public key and icon/image when embedded/as array/as resolvable URI * Implement ActivityPub::FetchRemoteStatusService * Add stubs for more interactions * Undo activities implemented * Handle out of order activities * Hook up ActivityPub to ResolveRemoteAccountService, handle Update Account activities * Add fragment IDs to all transient activity serializers * Add tests and fixes * Add stubs for missing tests * Add more tests * Add more tests
6 years ago
Add more tests for ActivityPub controllers (#13585)
4 years ago
Add ActivityPub inbox (#4216) * Add ActivityPub inbox * Handle ActivityPub deletes * Handle ActivityPub creates * Handle ActivityPub announces * Stubs for handling all activities that need to be handled * Add ActivityPub actor resolving * Handle conversation URI passing in ActivityPub * Handle content language in ActivityPub * Send accept header when fetching actor, handle JSON parse errors * Test for ActivityPub::FetchRemoteAccountService * Handle public key and icon/image when embedded/as array/as resolvable URI * Implement ActivityPub::FetchRemoteStatusService * Add stubs for more interactions * Undo activities implemented * Handle out of order activities * Hook up ActivityPub to ResolveRemoteAccountService, handle Update Account activities * Add fragment IDs to all transient activity serializers * Add tests and fixes * Add stubs for missing tests * Add more tests * Add more tests
6 years ago
Add more tests for ActivityPub controllers (#13585)
4 years ago
Add support for reversible suspensions through ActivityPub (#14989)
3 years ago
Add more tests for ActivityPub controllers (#13585)
4 years ago
Add support for reversible suspensions through ActivityPub (#14989)
3 years ago
Add more tests for ActivityPub controllers (#13585)
4 years ago
Add ActivityPub inbox (#4216) * Add ActivityPub inbox * Handle ActivityPub deletes * Handle ActivityPub creates * Handle ActivityPub announces * Stubs for handling all activities that need to be handled * Add ActivityPub actor resolving * Handle conversation URI passing in ActivityPub * Handle content language in ActivityPub * Send accept header when fetching actor, handle JSON parse errors * Test for ActivityPub::FetchRemoteAccountService * Handle public key and icon/image when embedded/as array/as resolvable URI * Implement ActivityPub::FetchRemoteStatusService * Add stubs for more interactions * Undo activities implemented * Handle out of order activities * Hook up ActivityPub to ResolveRemoteAccountService, handle Update Account activities * Add fragment IDs to all transient activity serializers * Add tests and fixes * Add stubs for missing tests * Add more tests * Add more tests
6 years ago
Fix RSS feeds not being cachable (#14368) * Add tests for some cachable responses This only covers responses that we should have managed to make cachable so far. It's not the case of all responses that should be cachable in the end. * Fix RSS feeds not being cachable
3 years ago
Add support for reversible suspensions through ActivityPub (#14989)
3 years ago
Add more tests for ActivityPub controllers (#13585)
4 years ago
Add support for reversible suspensions through ActivityPub (#14989)
3 years ago
Add more tests for ActivityPub controllers (#13585)
4 years ago
Fix RSS feeds not being cachable (#14368) * Add tests for some cachable responses This only covers responses that we should have managed to make cachable so far. It's not the case of all responses that should be cachable in the end. * Fix RSS feeds not being cachable
3 years ago
Add support for reversible suspensions through ActivityPub (#14989)
3 years ago
Add more tests for ActivityPub controllers (#13585)
4 years ago
Add ActivityPub inbox (#4216) * Add ActivityPub inbox * Handle ActivityPub deletes * Handle ActivityPub creates * Handle ActivityPub announces * Stubs for handling all activities that need to be handled * Add ActivityPub actor resolving * Handle conversation URI passing in ActivityPub * Handle content language in ActivityPub * Send accept header when fetching actor, handle JSON parse errors * Test for ActivityPub::FetchRemoteAccountService * Handle public key and icon/image when embedded/as array/as resolvable URI * Implement ActivityPub::FetchRemoteStatusService * Add stubs for more interactions * Undo activities implemented * Handle out of order activities * Hook up ActivityPub to ResolveRemoteAccountService, handle Update Account activities * Add fragment IDs to all transient activity serializers * Add tests and fixes * Add stubs for missing tests * Add more tests * Add more tests
6 years ago
Set correct content-type for ActivityPub JSON (#4592)
6 years ago
Add more tests for ActivityPub controllers (#13585)
4 years ago
Set correct content-type for ActivityPub JSON (#4592)
6 years ago
Add ActivityPub inbox (#4216) * Add ActivityPub inbox * Handle ActivityPub deletes * Handle ActivityPub creates * Handle ActivityPub announces * Stubs for handling all activities that need to be handled * Add ActivityPub actor resolving * Handle conversation URI passing in ActivityPub * Handle content language in ActivityPub * Send accept header when fetching actor, handle JSON parse errors * Test for ActivityPub::FetchRemoteAccountService * Handle public key and icon/image when embedded/as array/as resolvable URI * Implement ActivityPub::FetchRemoteStatusService * Add stubs for more interactions * Undo activities implemented * Handle out of order activities * Hook up ActivityPub to ResolveRemoteAccountService, handle Update Account activities * Add fragment IDs to all transient activity serializers * Add tests and fixes * Add stubs for missing tests * Add more tests * Add more tests
6 years ago
 
  1. require 'rails_helper'
  2. 

  3. RSpec.describe ActivityPub::OutboxesController, type: :controller do
  4.   let!(:account) { Fabricate(:account) }
  5. 

  6.   shared_examples 'cachable response' do
  7.     it 'does not set cookies' do
  8.       expect(response.cookies).to be_empty
  9.       expect(response.headers['Set-Cookies']).to be nil
  10.     end
  11. 

  12.     it 'does not set sessions' do
  13.       response
  14.       expect(session).to be_empty
  15.     end
  16. 

  17.     it 'returns public Cache-Control header' do
  18.       expect(response.headers['Cache-Control']).to include 'public'
  19.     end
  20.   end
  21. 

  22.   before do
  23.     Fabricate(:status, account: account, visibility: :public)
  24.     Fabricate(:status, account: account, visibility: :unlisted)
  25.     Fabricate(:status, account: account, visibility: :private)
  26.     Fabricate(:status, account: account, visibility: :direct)
  27.     Fabricate(:status, account: account, visibility: :limited)
  28.   end
  29. 

  30.   before do
  31.     allow(controller).to receive(:signed_request_account).and_return(remote_account)
  32.   end
  33. 

  34.   describe 'GET #show' do
  35.     context 'without signature' do
  36.       let(:remote_account) { nil }
  37. 

  38.       subject(:response) { get :show, params: { account_username: account.username, page: page } }
  39.       subject(:body) { body_as_json }
  40. 

  41.       context 'with page not requested' do
  42.         let(:page) { nil }
  43. 

  44.         it 'returns http success' do
  45.           expect(response).to have_http_status(200)
  46.         end
  47. 

  48.         it 'returns application/activity+json' do
  49.           expect(response.content_type).to eq 'application/activity+json'
  50.         end
  51. 

  52.         it 'returns totalItems' do
  53.           expect(body[:totalItems]).to eq 4

  54.         end
  55. 

  56.         it_behaves_like 'cachable response'
  57. 

  58.         context 'when account is permanently suspended' do
  59.           before do
  60.             account.suspend!
  61.             account.deletion_request.destroy
  62.           end
  63. 

  64.           it 'returns http gone' do
  65.             expect(response).to have_http_status(410)
  66.           end
  67.         end
  68. 

  69.         context 'when account is temporarily suspended' do
  70.           before do
  71.             account.suspend!
  72.           end
  73. 

  74.           it 'returns http forbidden' do
  75.             expect(response).to have_http_status(403)
  76.           end
  77.         end
  78.       end
  79. 

  80.       context 'with page requested' do
  81.         let(:page) { 'true' }
  82. 

  83.         it 'returns http success' do
  84.           expect(response).to have_http_status(200)
  85.         end
  86. 

  87.         it 'returns application/activity+json' do
  88.           expect(response.content_type).to eq 'application/activity+json'
  89.         end
  90. 

  91.         it 'returns orderedItems with public or unlisted statuses' do
  92.           expect(body[:orderedItems]).to be_an Array
  93.           expect(body[:orderedItems].size).to eq 2

  94.           expect(body[:orderedItems].all? { |item| item[:to].include?(ActivityPub::TagManager::COLLECTIONS[:public]) || item[:cc].include?(ActivityPub::TagManager::COLLECTIONS[:public]) }).to be true
  95.         end
  96. 

  97.         it_behaves_like 'cachable response'
  98. 

  99.         context 'when account is permanently suspended' do
  100.           before do
  101.             account.suspend!
  102.             account.deletion_request.destroy
  103.           end
  104. 

  105.           it 'returns http gone' do
  106.             expect(response).to have_http_status(410)
  107.           end
  108.         end
  109. 

  110.         context 'when account is temporarily suspended' do
  111.           before do
  112.             account.suspend!
  113.           end
  114. 

  115.           it 'returns http forbidden' do
  116.             expect(response).to have_http_status(403)
  117.           end
  118.         end
  119.       end
  120.     end
  121. 

  122.     context 'with signature' do
  123.       let(:remote_account) { Fabricate(:account, domain: 'example.com') }
  124.       let(:page) { 'true' }
  125. 

  126.       context 'when signed request account does not follow account' do
  127.         before do
  128.           get :show, params: { account_username: account.username, page: page }
  129.         end
  130. 

  131.         it 'returns http success' do
  132.           expect(response).to have_http_status(200)
  133.         end
  134. 

  135.         it 'returns application/activity+json' do
  136.           expect(response.content_type).to eq 'application/activity+json'
  137.         end
  138. 

  139.         it 'returns orderedItems with public or unlisted statuses' do
  140.           json = body_as_json
  141.           expect(json[:orderedItems]).to be_an Array
  142.           expect(json[:orderedItems].size).to eq 2

  143.           expect(json[:orderedItems].all? { |item| item[:to].include?(ActivityPub::TagManager::COLLECTIONS[:public]) || item[:cc].include?(ActivityPub::TagManager::COLLECTIONS[:public]) }).to be true
  144.         end
  145. 

  146.         it 'returns private Cache-Control header' do
  147.           expect(response.headers['Cache-Control']).to eq 'max-age=0, private'
  148.         end
  149.       end
  150. 

  151.       context 'when signed request account follows account' do
  152.         before do
  153.           remote_account.follow!(account)
  154.           get :show, params: { account_username: account.username, page: page }
  155.         end
  156. 

  157.         it 'returns http success' do
  158.           expect(response).to have_http_status(200)
  159.         end
  160. 

  161.         it 'returns application/activity+json' do
  162.           expect(response.content_type).to eq 'application/activity+json'
  163.         end
  164. 

  165.         it 'returns orderedItems with private statuses' do
  166.           json = body_as_json
  167.           expect(json[:orderedItems]).to be_an Array
  168.           expect(json[:orderedItems].size).to eq 3

  169.           expect(json[:orderedItems].all? { |item| item[:to].include?(ActivityPub::TagManager::COLLECTIONS[:public]) || item[:cc].include?(ActivityPub::TagManager::COLLECTIONS[:public]) || item[:to].include?(account_followers_url(account, ActionMailer::Base.default_url_options)) }).to be true
  170.         end
  171. 

  172.         it 'returns private Cache-Control header' do
  173.           expect(response.headers['Cache-Control']).to eq 'max-age=0, private'
  174.         end
  175.       end
  176. 

  177.       context 'when signed request account is blocked' do
  178.         before do
  179.           account.block!(remote_account)
  180.           get :show, params: { account_username: account.username, page: page }
  181.         end
  182. 

  183.         it 'returns http success' do
  184.           expect(response).to have_http_status(200)
  185.         end
  186. 

  187.         it 'returns application/activity+json' do
  188.           expect(response.content_type).to eq 'application/activity+json'
  189.         end
  190. 

  191.         it 'returns empty orderedItems' do
  192.           json = body_as_json
  193.           expect(json[:orderedItems]).to be_an Array
  194.           expect(json[:orderedItems].size).to eq 0

  195.         end
  196. 

  197.         it 'returns private Cache-Control header' do
  198.           expect(response.headers['Cache-Control']).to eq 'max-age=0, private'
  199.         end
  200.       end
  201. 

  202.       context 'when signed request account is domain blocked' do
  203.         before do
  204.           account.block_domain!(remote_account.domain)
  205.           get :show, params: { account_username: account.username, page: page }
  206.         end
  207. 

  208.         it 'returns http success' do
  209.           expect(response).to have_http_status(200)
  210.         end
  211. 

  212.         it 'returns application/activity+json' do
  213.           expect(response.content_type).to eq 'application/activity+json'
  214.         end
  215. 

  216.         it 'returns empty orderedItems' do
  217.           json = body_as_json
  218.           expect(json[:orderedItems]).to be_an Array
  219.           expect(json[:orderedItems].size).to eq 0

  220.         end
  221. 

  222.         it 'returns private Cache-Control header' do
  223.           expect(response.headers['Cache-Control']).to eq 'max-age=0, private'
  224.         end
  225.       end
  226.     end
  227.   end
  228. end