closed-social
/
mastodon
3
0
Fork 2
Code Issues 5 Pull Requests 0 Projects 0 Releases 3 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
9995 Commits
4 Branches
567 MiB
Tree: 7cb72956a6
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '7cb72956a6'
${ noResults }
mastodon/spec/services/resolve_account_service_spe...

192 lines
7.7 KiB
Raw Normal View History

Adding a Mention model, test stubs
8 years ago
Slightly reduce RAM usage (#7301) * No need to re-require sidekiq plugins, they are required via Gemfile * Add derailed_benchmarks tool, no need to require TTY gems in Gemfile * Replace ruby-oembed with FetchOEmbedService Reduce startup by 45382 allocated objects * Remove preloaded JSON-LD in favour of caching HTTP responses Reduce boot RAM by about 6 MiB * Fix tests * Fix test suite by stubbing out JSON-LD contexts
6 years ago
ActivityPub delivery (#4566) * Deliver ActivityPub Like * Deliver ActivityPub Undo-Like * Deliver ActivityPub Create/Announce activities * Deliver ActivityPub creates from mentions * Deliver ActivityPub Block/Undo-Block * Deliver ActivityPub Accept/Reject-Follow * Deliver ActivityPub Undo-Follow * Deliver ActivityPub Follow * Deliver ActivityPub Delete activities Incidentally fix #889 * Adjust BatchedRemoveStatusService for ActivityPub * Add tests for ActivityPub workers * Add tests for FollowService * Add tests for FavouriteService, UnfollowService and PostStatusService * Add tests for ReblogService, BlockService, UnblockService, ProcessMentionsService * Add tests for AuthorizeFollowService, RejectFollowService, RemoveStatusService * Add tests for BatchedRemoveStatusService * Deliver updates to a local account to ActivityPub followers * Minor adjustments
6 years ago
Fixing some bugs, adding pending test examples
8 years ago
Fix possibility of unrightful webfinger redirect (#2147) * Fix possibility of unrightful webfinger redirect * Add more tests for FollowRemoteAccountService
7 years ago
Remove Salmon and PubSubHubbub (#11205) * Remove Salmon and PubSubHubbub endpoints * Add error when trying to follow OStatus accounts * Fix new accounts not being created in ResolveAccountService
5 years ago
Add support for reversible suspensions through ActivityPub (#14989)
3 years ago
Fix possibility of unrightful webfinger redirect (#2147) * Fix possibility of unrightful webfinger redirect * Add more tests for FollowRemoteAccountService
7 years ago
Fix webfinger redirect handling in ResolveAccountService (#15187) * Fix webfinger redirect handling in ResolveAccountService ResolveAccountService#process_webfinger! handled a one-step webfinger redirection, but only accepting the result if it matched the exact URI passed as input, defeating the point of a redirection check. Instead, use the same logic as in `ActivityPub::FetchRemoteAccountService`, updating the resulting `acct:` URI with the result of the first webfinger query. * Add tests
3 years ago
Fix possibility of unrightful webfinger redirect (#2147) * Fix possibility of unrightful webfinger redirect * Add more tests for FollowRemoteAccountService
7 years ago
Fix webfinger redirect handling in ResolveAccountService (#15187) * Fix webfinger redirect handling in ResolveAccountService ResolveAccountService#process_webfinger! handled a one-step webfinger redirection, but only accepting the result if it matched the exact URI passed as input, defeating the point of a redirection check. Instead, use the same logic as in `ActivityPub::FetchRemoteAccountService`, updating the resulting `acct:` URI with the result of the first webfinger query. * Add tests
3 years ago
Fix possibility of unrightful webfinger redirect (#2147) * Fix possibility of unrightful webfinger redirect * Add more tests for FollowRemoteAccountService
7 years ago
Add support for reversible suspensions through ActivityPub (#14989)
3 years ago
Fix webfinger redirect handling in ResolveAccountService (#15187) * Fix webfinger redirect handling in ResolveAccountService ResolveAccountService#process_webfinger! handled a one-step webfinger redirection, but only accepting the result if it matched the exact URI passed as input, defeating the point of a redirection check. Instead, use the same logic as in `ActivityPub::FetchRemoteAccountService`, updating the resulting `acct:` URI with the result of the first webfinger query. * Add tests
3 years ago
Fix resolving accounts sometimes creating duplicate records for a given AP id (#15364) * Fix ResolveAccountService accepting mismatching acct: URI * Set attributes that should be updated regardless of suspension * Fix key fetching * Automatically merge remote accounts with duplicate `uri` * Add tests * Add "tootctl accounts fix-duplicates" Finds duplicate accounts sharing a same ActivityPub `id`, re-fetch them and merge them under the canonical `acct:` URI. Co-authored-by: Claire <claire.github-309c@sitedethib.com>
3 years ago
Fix webfinger redirect handling in ResolveAccountService (#15187) * Fix webfinger redirect handling in ResolveAccountService ResolveAccountService#process_webfinger! handled a one-step webfinger redirection, but only accepting the result if it matched the exact URI passed as input, defeating the point of a redirection check. Instead, use the same logic as in `ActivityPub::FetchRemoteAccountService`, updating the resulting `acct:` URI with the result of the first webfinger query. * Add tests
3 years ago
Fix resolving accounts sometimes creating duplicate records for a given AP id (#15364) * Fix ResolveAccountService accepting mismatching acct: URI * Set attributes that should be updated regardless of suspension * Fix key fetching * Automatically merge remote accounts with duplicate `uri` * Add tests * Add "tootctl accounts fix-duplicates" Finds duplicate accounts sharing a same ActivityPub `id`, re-fetch them and merge them under the canonical `acct:` URI. Co-authored-by: Claire <claire.github-309c@sitedethib.com>
3 years ago
Fix webfinger redirect handling in ResolveAccountService (#15187) * Fix webfinger redirect handling in ResolveAccountService ResolveAccountService#process_webfinger! handled a one-step webfinger redirection, but only accepting the result if it matched the exact URI passed as input, defeating the point of a redirection check. Instead, use the same logic as in `ActivityPub::FetchRemoteAccountService`, updating the resulting `acct:` URI with the result of the first webfinger query. * Add tests
3 years ago
Fix resolving accounts sometimes creating duplicate records for a given AP id (#15364) * Fix ResolveAccountService accepting mismatching acct: URI * Set attributes that should be updated regardless of suspension * Fix key fetching * Automatically merge remote accounts with duplicate `uri` * Add tests * Add "tootctl accounts fix-duplicates" Finds duplicate accounts sharing a same ActivityPub `id`, re-fetch them and merge them under the canonical `acct:` URI. Co-authored-by: Claire <claire.github-309c@sitedethib.com>
3 years ago
Fix webfinger redirect handling in ResolveAccountService (#15187) * Fix webfinger redirect handling in ResolveAccountService ResolveAccountService#process_webfinger! handled a one-step webfinger redirection, but only accepting the result if it matched the exact URI passed as input, defeating the point of a redirection check. Instead, use the same logic as in `ActivityPub::FetchRemoteAccountService`, updating the resulting `acct:` URI with the result of the first webfinger query. * Add tests
3 years ago
ActivityPub delivery (#4566) * Deliver ActivityPub Like * Deliver ActivityPub Undo-Like * Deliver ActivityPub Create/Announce activities * Deliver ActivityPub creates from mentions * Deliver ActivityPub Block/Undo-Block * Deliver ActivityPub Accept/Reject-Follow * Deliver ActivityPub Undo-Follow * Deliver ActivityPub Follow * Deliver ActivityPub Delete activities Incidentally fix #889 * Adjust BatchedRemoveStatusService for ActivityPub * Add tests for ActivityPub workers * Add tests for FollowService * Add tests for FavouriteService, UnfollowService and PostStatusService * Add tests for ReblogService, BlockService, UnblockService, ProcessMentionsService * Add tests for AuthorizeFollowService, RejectFollowService, RemoveStatusService * Add tests for BatchedRemoveStatusService * Deliver updates to a local account to ActivityPub followers * Minor adjustments
6 years ago
Fix an error when actor json couldn't be fetched in ResolveRemoteAccountService (#4979) * Fix an error when actor json couldn't be fetched in ResolveRemoteAccountService * Add specs
6 years ago
Support Actors/Statuses with multiple types (#7305) * Add equals_or_includes_any? helper in JsonLdHelper * Support arrays in JSON-LD type fields for actors/tags/objects. * Spec for resolving accounts with extension types * Style tweaks for codeclimate
6 years ago
Take the first recognized actor_type. (#7410)
6 years ago
Support Actors/Statuses with multiple types (#7305) * Add equals_or_includes_any? helper in JsonLdHelper * Support arrays in JSON-LD type fields for actors/tags/objects. * Spec for resolving accounts with extension types * Style tweaks for codeclimate
6 years ago
Additional specs for URI handling (#2759)
7 years ago
Refactor ResolveRemoteAccountService (#4258) * Refactor ResolveRemoteAccountService * Remove trailing whitespace * Use redis locks around critical ResolveRemoteAccountService code * Add test for race condition of lock
7 years ago
Fix resolving accounts sometimes creating duplicate records for a given AP id (#15364) * Fix ResolveAccountService accepting mismatching acct: URI * Set attributes that should be updated regardless of suspension * Fix key fetching * Automatically merge remote accounts with duplicate `uri` * Add tests * Add "tootctl accounts fix-duplicates" Finds duplicate accounts sharing a same ActivityPub `id`, re-fetch them and merge them under the canonical `acct:` URI. Co-authored-by: Claire <claire.github-309c@sitedethib.com>
3 years ago
Refactor ResolveRemoteAccountService (#4258) * Refactor ResolveRemoteAccountService * Remove trailing whitespace * Use redis locks around critical ResolveRemoteAccountService code * Add test for race condition of lock
7 years ago
Remove Salmon and PubSubHubbub (#11205) * Remove Salmon and PubSubHubbub endpoints * Add error when trying to follow OStatus accounts * Fix new accounts not being created in ResolveAccountService
5 years ago
Refactor ResolveRemoteAccountService (#4258) * Refactor ResolveRemoteAccountService * Remove trailing whitespace * Use redis locks around critical ResolveRemoteAccountService code * Add test for race condition of lock
7 years ago
Refactor domain block checks (#11268)
5 years ago
Refactor ResolveRemoteAccountService (#4258) * Refactor ResolveRemoteAccountService * Remove trailing whitespace * Use redis locks around critical ResolveRemoteAccountService code * Add test for race condition of lock
7 years ago
Remove Salmon and PubSubHubbub (#11205) * Remove Salmon and PubSubHubbub endpoints * Add error when trying to follow OStatus accounts * Fix new accounts not being created in ResolveAccountService
5 years ago
Refactor ResolveRemoteAccountService (#4258) * Refactor ResolveRemoteAccountService * Remove trailing whitespace * Use redis locks around critical ResolveRemoteAccountService code * Add test for race condition of lock
7 years ago
Remove Salmon and PubSubHubbub (#11205) * Remove Salmon and PubSubHubbub endpoints * Add error when trying to follow OStatus accounts * Fix new accounts not being created in ResolveAccountService
5 years ago
Refactor ResolveRemoteAccountService (#4258) * Refactor ResolveRemoteAccountService * Remove trailing whitespace * Use redis locks around critical ResolveRemoteAccountService code * Add test for race condition of lock
7 years ago
Adding a Mention model, test stubs
8 years ago
 
  1. require 'rails_helper'
  2. 

  3. RSpec.describe ResolveAccountService, type: :service do
  4.   subject { described_class.new }
  5. 

  6.   before do
  7.     stub_request(:get, "https://example.com/.well-known/host-meta").to_return(status: 404)
  8.     stub_request(:get, "https://quitter.no/avatar/7477-300-20160211190340.png").to_return(request_fixture('avatar.txt'))
  9.     stub_request(:get, "https://ap.example.com/.well-known/webfinger?resource=acct:foo@ap.example.com").to_return(request_fixture('activitypub-webfinger.txt'))
  10.     stub_request(:get, "https://ap.example.com/users/foo").to_return(request_fixture('activitypub-actor.txt'))
  11.     stub_request(:get, "https://ap.example.com/users/foo.atom").to_return(request_fixture('activitypub-feed.txt'))
  12.     stub_request(:get, %r{https://ap.example.com/users/foo/\w+}).to_return(status: 404)
  13.     stub_request(:get, 'https://example.com/.well-known/webfinger?resource=acct:hoge@example.com').to_return(status: 410)
  14.   end
  15. 

  16.   context 'when there is an LRDD endpoint but no resolvable account' do
  17.     before do
  18.       stub_request(:get, "https://quitter.no/.well-known/host-meta").to_return(request_fixture('.host-meta.txt'))
  19.       stub_request(:get, "https://quitter.no/.well-known/webfinger?resource=acct:catsrgr8@quitter.no").to_return(status: 404)
  20.     end
  21. 

  22.     it 'returns nil' do
  23.       expect(subject.call('catsrgr8@quitter.no')).to be_nil
  24.     end
  25.   end
  26. 

  27.   context 'when there is no LRDD endpoint nor resolvable account' do
  28.     before do
  29.       stub_request(:get, "https://example.com/.well-known/webfinger?resource=acct:catsrgr8@example.com").to_return(status: 404)
  30.     end
  31. 

  32.     it 'returns nil' do
  33.       expect(subject.call('catsrgr8@example.com')).to be_nil
  34.     end
  35.   end
  36. 

  37.   context 'when webfinger returns http gone' do
  38.     context 'for a previously known account' do
  39.       before do
  40.         Fabricate(:account, username: 'hoge', domain: 'example.com', last_webfingered_at: nil)
  41.         allow(AccountDeletionWorker).to receive(:perform_async)
  42.       end
  43. 

  44.       it 'returns nil' do
  45.         expect(subject.call('hoge@example.com')).to be_nil
  46.       end
  47. 

  48.       it 'queues account deletion worker' do
  49.         subject.call('hoge@example.com')
  50.         expect(AccountDeletionWorker).to have_received(:perform_async)
  51.       end
  52.     end
  53. 

  54.     context 'for a previously unknown account' do
  55.       it 'returns nil' do
  56.         expect(subject.call('hoge@example.com')).to be_nil
  57.       end
  58.     end
  59.   end
  60. 

  61.   context 'with a legitimate webfinger redirection' do
  62.     before do
  63.       webfinger = { subject: 'acct:foo@ap.example.com', links: [{ rel: 'self', href: 'https://ap.example.com/users/foo', type: 'application/activity+json' }] }
  64.       stub_request(:get, 'https://redirected.example.com/.well-known/webfinger?resource=acct:Foo@redirected.example.com').to_return(body: Oj.dump(webfinger), headers: { 'Content-Type': 'application/jrd+json' })
  65.     end
  66. 

  67.     it 'returns new remote account' do
  68.       account = subject.call('Foo@redirected.example.com')
  69. 

  70.       expect(account.activitypub?).to eq true
  71.       expect(account.acct).to eq 'foo@ap.example.com'
  72.       expect(account.inbox_url).to eq 'https://ap.example.com/users/foo/inbox'
  73.     end
  74.   end
  75. 

  76.   context 'with a misconfigured redirection' do
  77.     before do
  78.       webfinger = { subject: 'acct:Foo@redirected.example.com', links: [{ rel: 'self', href: 'https://ap.example.com/users/foo', type: 'application/activity+json' }] }
  79.       stub_request(:get, 'https://redirected.example.com/.well-known/webfinger?resource=acct:Foo@redirected.example.com').to_return(body: Oj.dump(webfinger), headers: { 'Content-Type': 'application/jrd+json' })
  80.     end
  81. 

  82.     it 'returns new remote account' do
  83.       account = subject.call('Foo@redirected.example.com')
  84. 

  85.       expect(account.activitypub?).to eq true
  86.       expect(account.acct).to eq 'foo@ap.example.com'
  87.       expect(account.inbox_url).to eq 'https://ap.example.com/users/foo/inbox'
  88.     end
  89.   end
  90. 

  91.   context 'with too many webfinger redirections' do
  92.     before do
  93.       webfinger = { subject: 'acct:foo@evil.example.com', links: [{ rel: 'self', href: 'https://ap.example.com/users/foo', type: 'application/activity+json' }] }
  94.       stub_request(:get, 'https://redirected.example.com/.well-known/webfinger?resource=acct:Foo@redirected.example.com').to_return(body: Oj.dump(webfinger), headers: { 'Content-Type': 'application/jrd+json' })
  95.       webfinger2 = { subject: 'acct:foo@ap.example.com', links: [{ rel: 'self', href: 'https://ap.example.com/users/foo', type: 'application/activity+json' }] }
  96.       stub_request(:get, 'https://evil.example.com/.well-known/webfinger?resource=acct:foo@evil.example.com').to_return(body: Oj.dump(webfinger2), headers: { 'Content-Type': 'application/jrd+json' })
  97.     end
  98. 

  99.     it 'returns new remote account' do
  100.       expect { subject.call('Foo@redirected.example.com') }.to raise_error Webfinger::RedirectError
  101.     end
  102.   end
  103. 

  104.   context 'with an ActivityPub account' do
  105.     it 'returns new remote account' do
  106.       account = subject.call('foo@ap.example.com')
  107. 

  108.       expect(account.activitypub?).to eq true
  109.       expect(account.domain).to eq 'ap.example.com'
  110.       expect(account.inbox_url).to eq 'https://ap.example.com/users/foo/inbox'
  111.     end
  112. 

  113.     context 'with multiple types' do
  114.       before do
  115.         stub_request(:get, "https://ap.example.com/users/foo").to_return(request_fixture('activitypub-actor-individual.txt'))
  116.       end
  117. 

  118.       it 'returns new remote account' do
  119.         account = subject.call('foo@ap.example.com')
  120. 

  121.         expect(account.activitypub?).to eq true
  122.         expect(account.domain).to eq 'ap.example.com'
  123.         expect(account.inbox_url).to eq 'https://ap.example.com/users/foo/inbox'
  124.         expect(account.actor_type).to eq 'Person'
  125.       end
  126.     end
  127.   end
  128. 

  129.   context 'with an already-known actor changing acct: URI' do
  130.     let!(:duplicate) { Fabricate(:account, username: 'foo', domain: 'old.example.com', uri: 'https://ap.example.com/users/foo') }
  131.     let!(:status)    { Fabricate(:status, account: duplicate, text: 'foo') }
  132. 

  133.     it 'returns new remote account' do
  134.       account = subject.call('foo@ap.example.com')
  135. 

  136.       expect(account.activitypub?).to eq true
  137.       expect(account.domain).to eq 'ap.example.com'
  138.       expect(account.inbox_url).to eq 'https://ap.example.com/users/foo/inbox'
  139.       expect(account.uri).to eq 'https://ap.example.com/users/foo'
  140.     end
  141. 

  142.     it 'merges accounts' do
  143.       account = subject.call('foo@ap.example.com')
  144. 

  145.       expect(status.reload.account_id).to eq account.id
  146.       expect(Account.where(uri: account.uri).count).to eq 1

  147.     end
  148.   end
  149. 

  150.   context 'with an already-known acct: URI changing ActivityPub id' do
  151.     let!(:old_account) { Fabricate(:account, username: 'foo', domain: 'ap.example.com', uri: 'https://old.example.com/users/foo', last_webfingered_at: nil) }
  152.     let!(:status)    { Fabricate(:status, account: old_account, text: 'foo') }
  153. 

  154.     it 'returns new remote account' do
  155.       account = subject.call('foo@ap.example.com')
  156. 

  157.       expect(account.activitypub?).to eq true
  158.       expect(account.domain).to eq 'ap.example.com'
  159.       expect(account.inbox_url).to eq 'https://ap.example.com/users/foo/inbox'
  160.       expect(account.uri).to eq 'https://ap.example.com/users/foo'
  161.     end
  162.   end
  163. 

  164.   it 'processes one remote account at a time using locks' do
  165.     wait_for_start = true
  166.     fail_occurred  = false
  167.     return_values  = Concurrent::Array.new
  168. 

  169.     # Preload classes that throw circular dependency errors in threads
  170.     Account
  171.     TagManager
  172.     DomainBlock
  173. 

  174.     threads = Array.new(5) do
  175.       Thread.new do
  176.         true while wait_for_start
  177. 

  178.         begin
  179.           return_values << described_class.new.call('foo@ap.example.com')
  180.         rescue ActiveRecord::RecordNotUnique
  181.           fail_occurred = true
  182.         end
  183.       end
  184.     end
  185. 

  186.     wait_for_start = false
  187.     threads.each(&:join)
  188. 

  189.     expect(fail_occurred).to be false
  190.     expect(return_values).to_not include(nil)
  191.   end
  192. end