closed-social
/
mastodon
3
0
Fork 2
Code Issues 5 Pull Requests 0 Projects 0 Releases 3 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
9303 Commits
4 Branches
567 MiB
Tree: 93dd413a47
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '93dd413a47'
${ noResults }
mastodon/spec/controllers/settings/identity_proofs_controller_...

186 lines
6.7 KiB
Raw Normal View History

Add Keybase integration (#10297) * create account_identity_proofs table * add endpoint for keybase to check local proofs * add async task to update validity and liveness of proofs from keybase * first pass keybase proof CRUD * second pass keybase proof creation * clean up proof list and add badges * add avatar url to keybase api * Always highlight the “Identity Proofs” navigation item when interacting with proofs. * Update translations. * Add profile URL. * Reorder proofs. * Add proofs to bio. * Update settings/identity_proofs front-end. * Use `link_to`. * Only encode query params if they exist. URLs without params had a trailing `?`. * Only show live proofs. * change valid to active in proof list and update liveness before displaying * minor fixes * add keybase config at well-known path * extremely naive feature flagging off the identity proof UI * fixes for rubocop * make identity proofs page resilient to potential keybase issues * normalize i18n * tweaks for brakeman * remove two unused translations * cleanup and add more localizations * make keybase_contacts an admin setting * fix ExternalProofService my_domain * use Addressable::URI in identity proofs * use active model serializer for keybase proof config * more cleanup of keybase proof config * rename proof is_valid and is_live to proof_valid and proof_live * cleanup * assorted tweaks for more robust communication with keybase * Clean up * Small fixes * Display verified identity identically to verified links * Clean up unused CSS * Add caching for Keybase avatar URLs * Remove keybase_contacts setting
5 years ago
squashed identity proof updates (#10375)
5 years ago
Add Keybase integration (#10297) * create account_identity_proofs table * add endpoint for keybase to check local proofs * add async task to update validity and liveness of proofs from keybase * first pass keybase proof CRUD * second pass keybase proof creation * clean up proof list and add badges * add avatar url to keybase api * Always highlight the “Identity Proofs” navigation item when interacting with proofs. * Update translations. * Add profile URL. * Reorder proofs. * Add proofs to bio. * Update settings/identity_proofs front-end. * Use `link_to`. * Only encode query params if they exist. URLs without params had a trailing `?`. * Only show live proofs. * change valid to active in proof list and update liveness before displaying * minor fixes * add keybase config at well-known path * extremely naive feature flagging off the identity proof UI * fixes for rubocop * make identity proofs page resilient to potential keybase issues * normalize i18n * tweaks for brakeman * remove two unused translations * cleanup and add more localizations * make keybase_contacts an admin setting * fix ExternalProofService my_domain * use Addressable::URI in identity proofs * use active model serializer for keybase proof config * more cleanup of keybase proof config * rename proof is_valid and is_live to proof_valid and proof_live * cleanup * assorted tweaks for more robust communication with keybase * Clean up * Small fixes * Display verified identity identically to verified links * Clean up unused CSS * Add caching for Keybase avatar URLs * Remove keybase_contacts setting
5 years ago
Bump faker from 1.9.6 to 2.1.0 and update faker api (#11489) * Bump faker from 1.9.6 to 2.1.0 Bumps [faker](https://github.com/stympy/faker) from 1.9.6 to 2.1.0. - [Release notes](https://github.com/stympy/faker/releases) - [Changelog](https://github.com/stympy/faker/blob/master/CHANGELOG.md) - [Commits](https://github.com/stympy/faker/compare/1.9.6...v2.1.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Use faker api v2 https://github.com/stympy/faker/releases/tag/2.0
4 years ago
squashed identity proof updates (#10375)
5 years ago
Add Keybase integration (#10297) * create account_identity_proofs table * add endpoint for keybase to check local proofs * add async task to update validity and liveness of proofs from keybase * first pass keybase proof CRUD * second pass keybase proof creation * clean up proof list and add badges * add avatar url to keybase api * Always highlight the “Identity Proofs” navigation item when interacting with proofs. * Update translations. * Add profile URL. * Reorder proofs. * Add proofs to bio. * Update settings/identity_proofs front-end. * Use `link_to`. * Only encode query params if they exist. URLs without params had a trailing `?`. * Only show live proofs. * change valid to active in proof list and update liveness before displaying * minor fixes * add keybase config at well-known path * extremely naive feature flagging off the identity proof UI * fixes for rubocop * make identity proofs page resilient to potential keybase issues * normalize i18n * tweaks for brakeman * remove two unused translations * cleanup and add more localizations * make keybase_contacts an admin setting * fix ExternalProofService my_domain * use Addressable::URI in identity proofs * use active model serializer for keybase proof config * more cleanup of keybase proof config * rename proof is_valid and is_live to proof_valid and proof_live * cleanup * assorted tweaks for more robust communication with keybase * Clean up * Small fixes * Display verified identity identically to verified links * Clean up unused CSS * Add caching for Keybase avatar URLs * Remove keybase_contacts setting
5 years ago
squashed identity proof updates (#10375)
5 years ago
Add Keybase integration (#10297) * create account_identity_proofs table * add endpoint for keybase to check local proofs * add async task to update validity and liveness of proofs from keybase * first pass keybase proof CRUD * second pass keybase proof creation * clean up proof list and add badges * add avatar url to keybase api * Always highlight the “Identity Proofs” navigation item when interacting with proofs. * Update translations. * Add profile URL. * Reorder proofs. * Add proofs to bio. * Update settings/identity_proofs front-end. * Use `link_to`. * Only encode query params if they exist. URLs without params had a trailing `?`. * Only show live proofs. * change valid to active in proof list and update liveness before displaying * minor fixes * add keybase config at well-known path * extremely naive feature flagging off the identity proof UI * fixes for rubocop * make identity proofs page resilient to potential keybase issues * normalize i18n * tweaks for brakeman * remove two unused translations * cleanup and add more localizations * make keybase_contacts an admin setting * fix ExternalProofService my_domain * use Addressable::URI in identity proofs * use active model serializer for keybase proof config * more cleanup of keybase proof config * rename proof is_valid and is_live to proof_valid and proof_live * cleanup * assorted tweaks for more robust communication with keybase * Clean up * Small fixes * Display verified identity identically to verified links * Clean up unused CSS * Add caching for Keybase avatar URLs * Remove keybase_contacts setting
5 years ago
squashed identity proof updates (#10375)
5 years ago
compare usernames case-insensitively on new proof creation flow (#10544) * compare usernames case-insensitively on new proof creation flow * Fix code style issue
5 years ago
squashed identity proof updates (#10375)
5 years ago
compare usernames case-insensitively on new proof creation flow (#10544) * compare usernames case-insensitively on new proof creation flow * Fix code style issue
5 years ago
squashed identity proof updates (#10375)
5 years ago
Add Keybase integration (#10297) * create account_identity_proofs table * add endpoint for keybase to check local proofs * add async task to update validity and liveness of proofs from keybase * first pass keybase proof CRUD * second pass keybase proof creation * clean up proof list and add badges * add avatar url to keybase api * Always highlight the “Identity Proofs” navigation item when interacting with proofs. * Update translations. * Add profile URL. * Reorder proofs. * Add proofs to bio. * Update settings/identity_proofs front-end. * Use `link_to`. * Only encode query params if they exist. URLs without params had a trailing `?`. * Only show live proofs. * change valid to active in proof list and update liveness before displaying * minor fixes * add keybase config at well-known path * extremely naive feature flagging off the identity proof UI * fixes for rubocop * make identity proofs page resilient to potential keybase issues * normalize i18n * tweaks for brakeman * remove two unused translations * cleanup and add more localizations * make keybase_contacts an admin setting * fix ExternalProofService my_domain * use Addressable::URI in identity proofs * use active model serializer for keybase proof config * more cleanup of keybase proof config * rename proof is_valid and is_live to proof_valid and proof_live * cleanup * assorted tweaks for more robust communication with keybase * Clean up * Small fixes * Display verified identity identically to verified links * Clean up unused CSS * Add caching for Keybase avatar URLs * Remove keybase_contacts setting
5 years ago
compare usernames case-insensitively on new proof creation flow (#10544) * compare usernames case-insensitively on new proof creation flow * Fix code style issue
5 years ago
Add Keybase integration (#10297) * create account_identity_proofs table * add endpoint for keybase to check local proofs * add async task to update validity and liveness of proofs from keybase * first pass keybase proof CRUD * second pass keybase proof creation * clean up proof list and add badges * add avatar url to keybase api * Always highlight the “Identity Proofs” navigation item when interacting with proofs. * Update translations. * Add profile URL. * Reorder proofs. * Add proofs to bio. * Update settings/identity_proofs front-end. * Use `link_to`. * Only encode query params if they exist. URLs without params had a trailing `?`. * Only show live proofs. * change valid to active in proof list and update liveness before displaying * minor fixes * add keybase config at well-known path * extremely naive feature flagging off the identity proof UI * fixes for rubocop * make identity proofs page resilient to potential keybase issues * normalize i18n * tweaks for brakeman * remove two unused translations * cleanup and add more localizations * make keybase_contacts an admin setting * fix ExternalProofService my_domain * use Addressable::URI in identity proofs * use active model serializer for keybase proof config * more cleanup of keybase proof config * rename proof is_valid and is_live to proof_valid and proof_live * cleanup * assorted tweaks for more robust communication with keybase * Clean up * Small fixes * Display verified identity identically to verified links * Clean up unused CSS * Add caching for Keybase avatar URLs * Remove keybase_contacts setting
5 years ago
squashed identity proof updates (#10375)
5 years ago
Add Keybase integration (#10297) * create account_identity_proofs table * add endpoint for keybase to check local proofs * add async task to update validity and liveness of proofs from keybase * first pass keybase proof CRUD * second pass keybase proof creation * clean up proof list and add badges * add avatar url to keybase api * Always highlight the “Identity Proofs” navigation item when interacting with proofs. * Update translations. * Add profile URL. * Reorder proofs. * Add proofs to bio. * Update settings/identity_proofs front-end. * Use `link_to`. * Only encode query params if they exist. URLs without params had a trailing `?`. * Only show live proofs. * change valid to active in proof list and update liveness before displaying * minor fixes * add keybase config at well-known path * extremely naive feature flagging off the identity proof UI * fixes for rubocop * make identity proofs page resilient to potential keybase issues * normalize i18n * tweaks for brakeman * remove two unused translations * cleanup and add more localizations * make keybase_contacts an admin setting * fix ExternalProofService my_domain * use Addressable::URI in identity proofs * use active model serializer for keybase proof config * more cleanup of keybase proof config * rename proof is_valid and is_live to proof_valid and proof_live * cleanup * assorted tweaks for more robust communication with keybase * Clean up * Small fixes * Display verified identity identically to verified links * Clean up unused CSS * Add caching for Keybase avatar URLs * Remove keybase_contacts setting
5 years ago
Add ability to remove identity proofs from account (#13682) Fix #12613
4 years ago
Add Keybase integration (#10297) * create account_identity_proofs table * add endpoint for keybase to check local proofs * add async task to update validity and liveness of proofs from keybase * first pass keybase proof CRUD * second pass keybase proof creation * clean up proof list and add badges * add avatar url to keybase api * Always highlight the “Identity Proofs” navigation item when interacting with proofs. * Update translations. * Add profile URL. * Reorder proofs. * Add proofs to bio. * Update settings/identity_proofs front-end. * Use `link_to`. * Only encode query params if they exist. URLs without params had a trailing `?`. * Only show live proofs. * change valid to active in proof list and update liveness before displaying * minor fixes * add keybase config at well-known path * extremely naive feature flagging off the identity proof UI * fixes for rubocop * make identity proofs page resilient to potential keybase issues * normalize i18n * tweaks for brakeman * remove two unused translations * cleanup and add more localizations * make keybase_contacts an admin setting * fix ExternalProofService my_domain * use Addressable::URI in identity proofs * use active model serializer for keybase proof config * more cleanup of keybase proof config * rename proof is_valid and is_live to proof_valid and proof_live * cleanup * assorted tweaks for more robust communication with keybase * Clean up * Small fixes * Display verified identity identically to verified links * Clean up unused CSS * Add caching for Keybase avatar URLs * Remove keybase_contacts setting
5 years ago
Add ability to remove identity proofs from account (#13682) Fix #12613
4 years ago
Add Keybase integration (#10297) * create account_identity_proofs table * add endpoint for keybase to check local proofs * add async task to update validity and liveness of proofs from keybase * first pass keybase proof CRUD * second pass keybase proof creation * clean up proof list and add badges * add avatar url to keybase api * Always highlight the “Identity Proofs” navigation item when interacting with proofs. * Update translations. * Add profile URL. * Reorder proofs. * Add proofs to bio. * Update settings/identity_proofs front-end. * Use `link_to`. * Only encode query params if they exist. URLs without params had a trailing `?`. * Only show live proofs. * change valid to active in proof list and update liveness before displaying * minor fixes * add keybase config at well-known path * extremely naive feature flagging off the identity proof UI * fixes for rubocop * make identity proofs page resilient to potential keybase issues * normalize i18n * tweaks for brakeman * remove two unused translations * cleanup and add more localizations * make keybase_contacts an admin setting * fix ExternalProofService my_domain * use Addressable::URI in identity proofs * use active model serializer for keybase proof config * more cleanup of keybase proof config * rename proof is_valid and is_live to proof_valid and proof_live * cleanup * assorted tweaks for more robust communication with keybase * Clean up * Small fixes * Display verified identity identically to verified links * Clean up unused CSS * Add caching for Keybase avatar URLs * Remove keybase_contacts setting
5 years ago
 
  1. require 'rails_helper'
  2. 

  3. describe Settings::IdentityProofsController do
  4.   include RoutingHelper
  5.   render_views
  6. 

  7.   let(:user) { Fabricate(:user) }
  8.   let(:valid_token) { '1'*66 }
  9.   let(:kbname) { 'kbuser' }
  10.   let(:provider) { 'keybase' }
  11.   let(:findable_id) { Faker::Number.number(digits: 5) }
  12.   let(:unfindable_id) { Faker::Number.number(digits: 5) }
  13.   let(:new_proof_params) do
  14.     { provider: provider, provider_username: kbname, token: valid_token, username: user.account.username }
  15.   end
  16.   let(:status_text) { "i just proved that i am also #{kbname} on #{provider}." }
  17.   let(:status_posting_params) do
  18.     { post_status: '0', status_text: status_text }
  19.   end
  20.   let(:postable_params) do
  21.     { account_identity_proof: new_proof_params.merge(status_posting_params) }
  22.   end
  23. 

  24.   before do
  25.     allow_any_instance_of(ProofProvider::Keybase::Verifier).to receive(:status) { { 'proof_valid' => true, 'proof_live' => true } }
  26.     sign_in user, scope: :user
  27.   end
  28. 

  29.   describe 'new proof creation' do
  30.     context 'GET #new' do
  31.       before do
  32.         allow_any_instance_of(ProofProvider::Keybase::Badge).to receive(:avatar_url) { full_pack_url('media/images/void.png') }
  33.       end
  34. 

  35.       context 'with all of the correct params' do
  36.         it 'renders the template' do
  37.           get :new, params: new_proof_params
  38.           expect(response).to render_template(:new)
  39.         end
  40.       end
  41. 

  42.       context 'without any params' do
  43.         it 'redirects to :index' do
  44.           get :new, params: {}
  45.           expect(response).to redirect_to settings_identity_proofs_path
  46.         end
  47.       end
  48. 

  49.       context 'with params to prove a different, not logged-in user' do
  50.         let(:wrong_user_params) { new_proof_params.merge(username: 'someone_else') }
  51. 

  52.         it 'shows a helpful alert' do
  53.           get :new, params: wrong_user_params
  54.           expect(flash[:alert]).to eq I18n.t('identity_proofs.errors.wrong_user', proving: 'someone_else', current: user.account.username)
  55.         end
  56.       end
  57. 

  58.       context 'with params to prove the same username cased differently' do
  59.         let(:capitalized_username) { new_proof_params.merge(username: user.account.username.upcase) }
  60. 

  61.         it 'renders the new template' do
  62.           get :new, params: capitalized_username
  63.           expect(response).to render_template(:new)
  64.         end
  65.       end
  66.     end
  67. 

  68.     context 'POST #create' do
  69.       context 'when saving works' do
  70.         before do
  71.           allow(ProofProvider::Keybase::Worker).to receive(:perform_async)
  72.           allow_any_instance_of(ProofProvider::Keybase::Verifier).to receive(:valid?) { true }
  73.           allow_any_instance_of(AccountIdentityProof).to receive(:on_success_path) { root_url }
  74.         end
  75. 

  76.         it 'serializes a ProofProvider::Keybase::Worker' do
  77.           expect(ProofProvider::Keybase::Worker).to receive(:perform_async)
  78.           post :create, params: postable_params
  79.         end
  80. 

  81.         it 'delegates redirection to the proof provider' do
  82.           expect_any_instance_of(AccountIdentityProof).to receive(:on_success_path)
  83.           post :create, params: postable_params
  84.           expect(response).to redirect_to root_url
  85.         end
  86. 

  87.         it 'does not post a status' do
  88.           expect(PostStatusService).not_to receive(:new)
  89.           post :create, params: postable_params
  90.         end
  91. 

  92.         context 'and the user has requested to post a status' do
  93.           let(:postable_params_with_status) do
  94.             postable_params.tap { |p| p[:account_identity_proof][:post_status] = '1' }
  95.           end
  96. 

  97.           it 'posts a status' do
  98.             expect_any_instance_of(PostStatusService).to receive(:call).with(user.account, text: status_text)
  99. 

  100.             post :create, params: postable_params_with_status
  101.           end
  102.         end
  103.       end
  104. 

  105.       context 'when saving fails' do
  106.         before do
  107.           allow_any_instance_of(ProofProvider::Keybase::Verifier).to receive(:valid?) { false }
  108.         end
  109. 

  110.         it 'redirects to :index' do
  111.           post :create, params: postable_params
  112.           expect(response).to redirect_to settings_identity_proofs_path
  113.         end
  114. 

  115.         it 'flashes a helpful message' do
  116.           post :create, params: postable_params
  117.           expect(flash[:alert]).to eq I18n.t('identity_proofs.errors.failed', provider: 'Keybase')
  118.         end
  119.       end
  120. 

  121.       context 'it can also do an update if the provider and username match an existing proof' do
  122.         before do
  123.           allow_any_instance_of(ProofProvider::Keybase::Verifier).to receive(:valid?) { true }
  124.           allow(ProofProvider::Keybase::Worker).to receive(:perform_async)
  125.           Fabricate(:account_identity_proof, account: user.account, provider: provider, provider_username: kbname)
  126.           allow_any_instance_of(AccountIdentityProof).to receive(:on_success_path) { root_url }
  127.         end
  128. 

  129.         it 'calls update with the new token' do
  130.           expect_any_instance_of(AccountIdentityProof).to receive(:save) do |proof|
  131.             expect(proof.token).to eq valid_token
  132.           end
  133. 

  134.           post :create, params: postable_params
  135.         end
  136.       end
  137.     end
  138.   end
  139. 

  140.   describe 'GET #index' do
  141.     context 'with no existing proofs' do
  142.       it 'shows the helpful explanation' do
  143.         get :index
  144.         expect(response.body).to match I18n.t('identity_proofs.explanation_html')
  145.       end
  146.     end
  147. 

  148.     context 'with two proofs' do
  149.       before do
  150.         allow_any_instance_of(ProofProvider::Keybase::Verifier).to receive(:valid?) { true }
  151.         @proof1 = Fabricate(:account_identity_proof, account: user.account)
  152.         @proof2 = Fabricate(:account_identity_proof, account: user.account)
  153.         allow_any_instance_of(AccountIdentityProof).to receive(:badge) { double(avatar_url: '', profile_url: '', proof_url: '') }
  154.         allow_any_instance_of(AccountIdentityProof).to receive(:refresh!) {}
  155.       end
  156. 

  157.       it 'has the first proof username on the page' do
  158.         get :index
  159.         expect(response.body).to match /#{Regexp.quote(@proof1.provider_username)}/
  160.       end
  161. 

  162.       it 'has the second proof username on the page' do
  163.         get :index
  164.         expect(response.body).to match /#{Regexp.quote(@proof2.provider_username)}/
  165.       end
  166.     end
  167.   end
  168. 

  169.   describe 'DELETE #destroy' do
  170.     before do
  171.       allow_any_instance_of(ProofProvider::Keybase::Verifier).to receive(:valid?) { true }
  172.       @proof1 = Fabricate(:account_identity_proof, account: user.account)
  173.       allow_any_instance_of(AccountIdentityProof).to receive(:badge) { double(avatar_url: '', profile_url: '', proof_url: '') }
  174.       allow_any_instance_of(AccountIdentityProof).to receive(:refresh!) {}
  175.       delete :destroy, params: { id: @proof1.id }
  176.     end
  177. 

  178.     it 'redirects to :index' do
  179.       expect(response).to redirect_to settings_identity_proofs_path
  180.     end
  181. 

  182.     it 'removes the proof' do
  183.       expect(AccountIdentityProof.where(id: @proof1.id).count).to eq 0

  184.     end
  185.   end
  186. end