squeegily
/
pleroma
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 42 Wiki Activity
Browse Source

Merge remote-tracking branch 'remotes/origin/develop' into 1364-notifications-sending-control

feature/add-subject-to-text-search
Ivan Tashkinov 4 years ago
parent
e743c22329 8eebc75c15
commit
012d428e1f
100 changed files with 1430 additions and 436 deletions
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. +15
    -13
      .gitlab-ci.yml
  2. +12
    -0
      CHANGELOG.md
  3. +5
    -0
      config/config.exs
  4. +60
    -0
      config/description.exs
  5. +77
    -0
      docs/API/admin_api.md
  6. +1
    -1
      docs/API/differences_in_mastoapi_responses.md
  7. +20
    -1
      docs/configuration/cheatsheet.md
  8. +11
    -0
      lib/pleroma/moderation_log.ex
  9. +0
    -9
      lib/pleroma/notification.ex
  10. +96
    -21
      lib/pleroma/user.ex
  11. +11
    -2
      lib/pleroma/web/activity_pub/activity_pub.ex
  12. +1
    -4
      lib/pleroma/web/activity_pub/utils.ex
  13. +11
    -3
      lib/pleroma/web/activity_pub/visibility.ex
  14. +49
    -2
      lib/pleroma/web/admin_api/admin_api_controller.ex
  15. +40
    -0
      lib/pleroma/web/admin_api/views/account_view.ex
  16. +4
    -3
      lib/pleroma/web/controller_helper.ex
  17. +3
    -3
      lib/pleroma/web/feed/tag_controller.ex
  18. +13
    -4
      lib/pleroma/web/feed/user_controller.ex
  19. +16
    -51
      lib/pleroma/web/mastodon_api/controllers/account_controller.ex
  20. +1
    -1
      lib/pleroma/web/mastodon_api/controllers/status_controller.ex
  21. +24
    -11
      lib/pleroma/web/mastodon_api/controllers/timeline_controller.ex
  22. +16
    -7
      lib/pleroma/web/mastodon_api/mastodon_api.ex
  23. +4
    -11
      lib/pleroma/web/mastodon_api/views/account_view.ex
  24. +1
    -0
      lib/pleroma/web/nodeinfo/nodeinfo_controller.ex
  25. +3
    -1
      lib/pleroma/web/router.ex
  26. +3
    -1
      lib/pleroma/web/static_fe/static_fe_controller.ex
  27. +0
    -0
      lib/pleroma/web/templates/feed/feed/_activity.atom.eex
  28. +49
    -0
      lib/pleroma/web/templates/feed/feed/_activity.rss.eex
  29. +0
    -0
      lib/pleroma/web/templates/feed/feed/_author.atom.eex
  30. +17
    -0
      lib/pleroma/web/templates/feed/feed/_author.rss.eex
  31. +2
    -2
      lib/pleroma/web/templates/feed/feed/user.atom.eex
  32. +20
    -0
      lib/pleroma/web/templates/feed/feed/user.rss.eex
  33. +1
    -1
      mix.exs
  34. +7
    -0
      priv/static/static/static-fe.css
  35. +1
    -1
      test/activity_expiration_test.exs
  36. +1
    -1
      test/activity_test.exs
  37. +1
    -2
      test/captcha_test.exs
  38. +1
    -3
      test/config/transfer_task_test.exs
  39. +1
    -3
      test/conversation_test.exs
  40. +1
    -2
      test/emails/mailer_test.exs
  41. +2
    -2
      test/http/request_builder_test.exs
  42. +2
    -6
      test/notification_test.exs
  43. +2
    -3
      test/object/fetcher_test.exs
  44. +2
    -2
      test/object_test.exs
  45. +1
    -1
      test/plugs/admin_secret_authentication_plug_test.exs
  46. +1
    -1
      test/plugs/ensure_public_or_authenticated_plug_test.exs
  47. +3
    -3
      test/plugs/http_security_plug_test.exs
  48. +1
    -3
      test/plugs/instance_static_test.exs
  49. +1
    -1
      test/plugs/oauth_scopes_plug_test.exs
  50. +3
    -5
      test/plugs/rate_limiter_test.exs
  51. +1
    -2
      test/plugs/remote_ip_test.exs
  52. +1
    -1
      test/plugs/user_enabled_plug_test.exs
  53. +2
    -6
      test/plugs/user_is_admin_plug_test.exs
  54. +1
    -1
      test/repo_test.exs
  55. +1
    -1
      test/scheduled_activity_test.exs
  56. +8
    -28
      test/support/helpers.ex
  57. +1
    -3
      test/tasks/config_test.exs
  58. +1
    -1
      test/tasks/robots_txt_test.exs
  59. +1
    -1
      test/upload/filter/anonymize_filename_test.exs
  60. +1
    -1
      test/upload/filter/mogrify_test.exs
  61. +1
    -1
      test/upload/filter_test.exs
  62. +1
    -3
      test/upload_test.exs
  63. +5
    -6
      test/uploaders/s3_test.exs
  64. +1
    -1
      test/user_search_test.exs
  65. +13
    -18
      test/user_test.exs
  66. +4
    -6
      test/web/activity_pub/activity_pub_controller_test.exs
  67. +11
    -7
      test/web/activity_pub/activity_pub_test.exs
  68. +1
    -1
      test/web/activity_pub/mrf/hellthread_policy_test.exs
  69. +1
    -1
      test/web/activity_pub/mrf/keyword_policy_test.exs
  70. +1
    -1
      test/web/activity_pub/mrf/mention_policy_test.exs
  71. +1
    -1
      test/web/activity_pub/mrf/mrf_test.exs
  72. +5
    -6
      test/web/activity_pub/mrf/object_age_policy_test.exs
  73. +1
    -1
      test/web/activity_pub/mrf/reject_non_public_test.exs
  74. +11
    -12
      test/web/activity_pub/mrf/simple_policy_test.exs
  75. +1
    -2
      test/web/activity_pub/mrf/subchain_policy_test.exs
  76. +1
    -1
      test/web/activity_pub/mrf/user_allowlist_policy_test.exs
  77. +2
    -2
      test/web/activity_pub/mrf/vocabulary_policy_test.exs
  78. +1
    -3
      test/web/activity_pub/publisher_test.exs
  79. +1
    -1
      test/web/activity_pub/relay_test.exs
  80. +1
    -1
      test/web/activity_pub/transmogrifier/follow_handling_test.exs
  81. +7
    -15
      test/web/activity_pub/transmogrifier_test.exs
  82. +1
    -3
      test/web/activity_pub/views/object_view_test.exs
  83. +78
    -24
      test/web/admin_api/admin_api_controller_test.exs
  84. +1
    -1
      test/web/chat_channel_test.exs
  85. +3
    -3
      test/web/common_api/common_api_test.exs
  86. +4
    -7
      test/web/federator_test.exs
  87. +46
    -16
      test/web/feed/tag_controller_test.exs
  88. +84
    -7
      test/web/feed/user_controller_test.exs
  89. +1
    -3
      test/web/instances/instance_test.exs
  90. +1
    -3
      test/web/instances/instances_test.exs
  91. +1
    -1
      test/web/masto_fe_controller_test.exs
  92. +4
    -3
      test/web/mastodon_api/controllers/account_controller/update_credentials_test.exs
  93. +196
    -9
      test/web/mastodon_api/controllers/account_controller_test.exs
  94. +2
    -2
      test/web/mastodon_api/controllers/media_controller_test.exs
  95. +47
    -6
      test/web/mastodon_api/controllers/notification_controller_test.exs
  96. +1
    -1
      test/web/mastodon_api/controllers/scheduled_activity_controller_test.exs
  97. +157
    -6
      test/web/mastodon_api/controllers/status_controller_test.exs
  98. +92
    -11
      test/web/mastodon_api/controllers/timeline_controller_test.exs
  99. +4
    -3
      test/web/mastodon_api/views/account_view_test.exs
  100. +1
    -1
      test/web/mastodon_api/views/notification_view_test.exs

+ 15
- 13
.gitlab-ci.yml View File

@@ -62,19 +62,21 @@ unit-testing:
- mix ecto.migrate
- mix coveralls --preload-modules

federated-testing:
stage: test
cache: *testing_cache_policy
services:
- name: minibikini/postgres-with-rum:12
alias: postgres
command: ["postgres", "-c", "fsync=off", "-c", "synchronous_commit=off", "-c", "full_page_writes=off"]
script:
- mix deps.get
- mix ecto.create
- mix ecto.migrate
- epmd -daemon
- mix test --trace --only federated
# Removed to fix CI issue. In this early state it wasn't adding much value anyway.
# TODO Fix and reinstate federated testing
# federated-testing:
# stage: test
# cache: *testing_cache_policy
# services:
# - name: minibikini/postgres-with-rum:12
# alias: postgres
# command: ["postgres", "-c", "fsync=off", "-c", "synchronous_commit=off", "-c", "full_page_writes=off"]
# script:
# - mix deps.get
# - mix ecto.create
# - mix ecto.migrate
# - epmd -daemon
# - mix test --trace --only federated

unit-testing-rum:
stage: test


+ 12
- 0
CHANGELOG.md View File

@@ -7,6 +7,17 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/).
### Changed
- **Breaking:** BBCode and Markdown formatters will no longer return any `\n` and only use `<br/>` for newlines

### Removed
- **Breaking:** removed `with_move` parameter from notifications timeline.

### Added
- NodeInfo: `pleroma:api/v1/notifications:include_types_filter` to the `features` list.
- Configuration: `:restrict_unauthenticated` setting, restrict access for unauthenticated users to timelines (public and federate), user profiles and statuses.
<details>
<summary>API Changes</summary>
- Mastodon API: Support for `include_types` in `/api/v1/notifications`.
</details>

## [2.0.0] - 2019-03-08
### Security
- Mastodon API: Fix being able to request enourmous amount of statuses in timelines leading to DoS. Now limited to 40 per request.
@@ -67,6 +78,7 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/).
- Mastodon API: User timelines will now respect blocks, unless you are getting the user timeline of somebody you blocked (which would be empty otherwise).
- Mastodon API: Favoriting / Repeating a post multiple times will now return the identical response every time. Before, executing that action twice would return an error ("already favorited") on the second try.
- Mastodon API: Limit timeline requests to 3 per timeline per 500ms per user/ip by default.
- Admin API: `PATCH /api/pleroma/admin/users/:nickname/credentials` and `GET /api/pleroma/admin/users/:nickname/credentials`
</details>

### Added


+ 5
- 0
config/config.exs View File

@@ -624,6 +624,11 @@ config :pleroma, Pleroma.Repo,
parameters: [gin_fuzzy_search_limit: "500"],
prepare: :unnamed

config :pleroma, :restrict_unauthenticated,
timelines: %{local: false, federated: false},
profiles: %{local: false, remote: false},
activities: %{local: false, remote: false}

# Import environment specific config. This must remain at the bottom
# of this file so it overrides the configuration defined above.
import_config "#{Mix.env()}.exs"

+ 60
- 0
config/description.exs View File

@@ -2915,5 +2915,65 @@ config :pleroma, :config_description, [
suggestions: [2]
}
]
},
%{
group: :pleroma,
key: :restrict_unauthenticated,
type: :group,
description:
"Disallow viewing timelines, user profiles and statuses for unauthenticated users.",
children: [
%{
key: :timelines,
type: :map,
description: "Settings for public and federated timelines.",
children: [
%{
key: :local,
type: :boolean,
description: "Disallow view public timeline."
},
%{
key: :federated,
type: :boolean,
description: "Disallow view federated timeline."
}
]
},
%{
key: :profiles,
type: :map,
description: "Settings for user profiles.",
children: [
%{
key: :local,
type: :boolean,
description: "Disallow view local user profiles."
},
%{
key: :remote,
type: :boolean,
description: "Disallow view remote user profiles."
}
]
},
%{
key: :activities,
type: :map,
description: "Settings for statuses.",
children: [
%{
key: :local,
type: :boolean,
description: "Disallow view local statuses."
},
%{
key: :remote,
type: :boolean,
description: "Disallow view remote statuses."
}
]
}
]
}
]

+ 77
- 0
docs/API/admin_api.md View File

@@ -414,6 +414,83 @@ Note: Available `:permission_group` is currently moderator and admin. 404 is ret
- `nicknames`
- Response: none (code `204`)

## `GET /api/pleroma/admin/users/:nickname/credentials`

### Get the user's email, password, display and settings-related fields

- Params:
- `nickname`

- Response:

```json
{
"actor_type": "Person",
"allow_following_move": true,
"avatar": "https://pleroma.social/media/7e8e7508fd545ef580549b6881d80ec0ff2c81ed9ad37b9bdbbdf0e0d030159d.jpg",
"background": "https://pleroma.social/media/4de34c0bd10970d02cbdef8972bef0ebbf55f43cadc449554d4396156162fe9a.jpg",
"banner": "https://pleroma.social/media/8d92ba2bd244b613520abf557dd448adcd30f5587022813ee9dd068945986946.jpg",
"bio": "bio",
"default_scope": "public",
"discoverable": false,
"email": "user@example.com",
"fields": [
{
"name": "example",
"value": "<a href=\"https://example.com\" rel=\"ugc\">https://example.com</a>"
}
],
"hide_favorites": false,
"hide_followers": false,
"hide_followers_count": false,
"hide_follows": false,
"hide_follows_count": false,
"id": "9oouHaEEUR54hls968",
"locked": true,
"name": "user",
"no_rich_text": true,
"pleroma_settings_store": {},
"raw_fields": [
{
"id": 1,
"name": "example",
"value": "https://example.com"
},
],
"show_role": true,
"skip_thread_containment": false
}
```

## `PATCH /api/pleroma/admin/users/:nickname/credentials`

### Change the user's email, password, display and settings-related fields

- Params:
- `email`
- `password`
- `name`
- `bio`
- `avatar`
- `locked`
- `no_rich_text`
- `default_scope`
- `banner`
- `hide_follows`
- `hide_followers`
- `hide_followers_count`
- `hide_follows_count`
- `hide_favorites`
- `allow_following_move`
- `background`
- `show_role`
- `skip_thread_containment`
- `fields`
- `discoverable`
- `actor_type`

- Response: none (code `200`)

## `GET /api/pleroma/admin/reports`

### Get a list of reports


+ 1
- 1
docs/API/differences_in_mastoapi_responses.md View File

@@ -117,7 +117,7 @@ The `type` value is `pleroma:emoji_reaction`. Has these fields:
Accepts additional parameters:

- `exclude_visibilities`: will exclude the notifications for activities with the given visibilities. The parameter accepts an array of visibility types (`public`, `unlisted`, `private`, `direct`). Usage example: `GET /api/v1/notifications?exclude_visibilities[]=direct&exclude_visibilities[]=private`.
- `with_move`: boolean, when set to `true` will include Move notifications. `false` by default.
- `include_types`: will include the notifications for activities with the given types. The parameter accepts an array of types (`mention`, `follow`, `reblog`, `favourite`, `move`, `pleroma:emoji_reaction`). Usage example: `GET /api/v1/notifications?include_types[]=mention&include_types[]=reblog`.

## POST `/api/v1/statuses`



+ 20
- 1
docs/configuration/cheatsheet.md View File

@@ -138,7 +138,8 @@ config :pleroma, :mrf_user_allowlist,
```

#### :mrf_object_age
* `threshold`: Required age (in seconds) of a post before actions are taken.
* `threshold`: Required time offset (in seconds) compared to your server clock of an incoming post before actions are taken.
e.g., A value of 900 results in any post with a timestamp older than 15 minutes will be acted upon.
* `actions`: A list of actions to apply to the post:
* `:delist` removes the post from public timelines
* `:strip_followers` removes followers from the ActivityPub recipient list, ensuring they won't be delivered to home timelines
@@ -871,3 +872,21 @@ config :auto_linker,
## :configurable_from_database

Boolean, enables/disables in-database configuration. Read [Transfering the config to/from the database](../administration/CLI_tasks/config.md) for more information.



## Restrict entities access for unauthenticated users

### :restrict_unauthenticated

Restrict access for unauthenticated users to timelines (public and federate), user profiles and statuses.

* `timelines` - public and federated timelines
* `local` - public timeline
* `federated`
* `profiles` - user profiles
* `local`
* `remote`
* `activities` - statuses
* `local`
* `remote`

+ 11
- 0
lib/pleroma/moderation_log.ex View File

@@ -605,6 +605,17 @@ defmodule Pleroma.ModerationLog do
}"
end

@spec get_log_entry_message(ModerationLog) :: String.t()
def get_log_entry_message(%ModerationLog{
data: %{
"actor" => %{"nickname" => actor_nickname},
"action" => "updated_users",
"subject" => subjects
}
}) do
"@#{actor_nickname} updated users: #{users_to_nicknames_string(subjects)}"
end

defp nicknames_to_string(nicknames) do
nicknames
|> Enum.map(&"@#{&1}")


+ 0
- 9
lib/pleroma/notification.ex View File

@@ -79,7 +79,6 @@ defmodule Pleroma.Notification do
|> exclude_notification_muted(user, exclude_notification_muted_opts)
|> exclude_blocked(user, exclude_blocked_opts)
|> exclude_visibility(opts)
|> exclude_move(opts)
end

defp exclude_blocked(query, user, opts) do
@@ -109,14 +108,6 @@ defmodule Pleroma.Notification do
|> where([n, a, o, tm], is_nil(tm.user_id))
end

defp exclude_move(query, %{with_move: true}) do
query
end

defp exclude_move(query, _opts) do
where(query, [n, a], fragment("?->>'type' != 'Move'", a.data))
end

@valid_visibilities ~w[direct unlisted public private]

defp exclude_visibility(query, %{exclude_visibilities: visibility})


+ 96
- 21
lib/pleroma/user.ex View File

@@ -245,7 +245,18 @@ defmodule Pleroma.User do

def visible_for?(%User{invisible: true}, _), do: false

def visible_for?(%User{id: user_id}, %User{id: for_id}) when user_id == for_id, do: true
def visible_for?(%User{id: user_id}, %User{id: user_id}), do: true

def visible_for?(%User{local: local} = user, nil) do
cfg_key =
if local,
do: :local,
else: :remote

if Config.get([:restrict_unauthenticated, :profiles, cfg_key]),
do: false,
else: account_status(user) == :active
end

def visible_for?(%User{} = user, for_user) do
account_status(user) == :active || superuser?(for_user)
@@ -289,24 +300,6 @@ defmodule Pleroma.User do
def ap_following(%User{following_address: fa}) when is_binary(fa), do: fa
def ap_following(%User{} = user), do: "#{ap_id(user)}/following"

def follow_state(%User{} = user, %User{} = target) do
case Utils.fetch_latest_follow(user, target) do
%{data: %{"state" => state}} -> state
# Ideally this would be nil, but then Cachex does not commit the value
_ -> false
end
end

def get_cached_follow_state(user, target) do
key = "follow_state:#{user.ap_id}|#{target.ap_id}"
Cachex.fetch!(:user_cache, key, fn _ -> {:commit, follow_state(user, target)} end)
end

@spec set_follow_state_cache(String.t(), String.t(), String.t()) :: {:ok | :error, boolean()}
def set_follow_state_cache(user_ap_id, target_ap_id, state) do
Cachex.put(:user_cache, "follow_state:#{user_ap_id}|#{target_ap_id}", state)
end

@spec restrict_deactivated(Ecto.Query.t()) :: Ecto.Query.t()
def restrict_deactivated(query) do
from(u in query, where: u.deactivated != ^true)
@@ -425,9 +418,55 @@ defmodule Pleroma.User do
|> validate_format(:nickname, local_nickname_regex())
|> validate_length(:bio, max: bio_limit)
|> validate_length(:name, min: 1, max: name_limit)
|> put_fields()
|> put_change_if_present(:bio, &{:ok, parse_bio(&1, struct)})
|> put_change_if_present(:avatar, &put_upload(&1, :avatar))
|> put_change_if_present(:banner, &put_upload(&1, :banner))
|> put_change_if_present(:background, &put_upload(&1, :background))
|> put_change_if_present(
:pleroma_settings_store,
&{:ok, Map.merge(struct.pleroma_settings_store, &1)}
)
|> validate_fields(false)
end

defp put_fields(changeset) do
if raw_fields = get_change(changeset, :raw_fields) do
raw_fields =
raw_fields
|> Enum.filter(fn %{"name" => n} -> n != "" end)

fields =
raw_fields
|> Enum.map(fn f -> Map.update!(f, "value", &AutoLinker.link(&1)) end)

changeset
|> put_change(:raw_fields, raw_fields)
|> put_change(:fields, fields)
else
changeset
end
end

defp put_change_if_present(changeset, map_field, value_function) do
if value = get_change(changeset, map_field) do
with {:ok, new_value} <- value_function.(value) do
put_change(changeset, map_field, new_value)
else
_ -> changeset
end
else
changeset
end
end

defp put_upload(value, type) do
with %Plug.Upload{} <- value,
{:ok, object} <- ActivityPub.upload(value, type: type) do
{:ok, object.data}
end
end

def upgrade_changeset(struct, params \\ %{}, remote? \\ false) do
bio_limit = Pleroma.Config.get([:instance, :user_bio_length], 5000)
name_limit = Pleroma.Config.get([:instance, :user_name_length], 100)
@@ -471,6 +510,27 @@ defmodule Pleroma.User do
|> validate_fields(remote?)
end

def update_as_admin_changeset(struct, params) do
struct
|> update_changeset(params)
|> cast(params, [:email])
|> delete_change(:also_known_as)
|> unique_constraint(:email)
|> validate_format(:email, @email_regex)
end

@spec update_as_admin(%User{}, map) :: {:ok, User.t()} | {:error, Ecto.Changeset.t()}
def update_as_admin(user, params) do
params = Map.put(params, "password_confirmation", params["password"])
changeset = update_as_admin_changeset(user, params)

if params["password"] do
reset_password(user, changeset, params)
else
User.update_and_set_cache(changeset)
end
end

def password_update_changeset(struct, params) do
struct
|> cast(params, [:password, :password_confirmation])
@@ -481,10 +541,14 @@ defmodule Pleroma.User do
end

@spec reset_password(User.t(), map) :: {:ok, User.t()} | {:error, Ecto.Changeset.t()}
def reset_password(%User{id: user_id} = user, data) do
def reset_password(%User{} = user, params) do
reset_password(user, user, params)
end

def reset_password(%User{id: user_id} = user, struct, params) do
multi =
Multi.new()
|> Multi.update(:user, password_update_changeset(user, data))
|> Multi.update(:user, password_update_changeset(struct, params))
|> Multi.delete_all(:tokens, OAuth.Token.Query.get_by_user(user_id))
|> Multi.delete_all(:auth, OAuth.Authorization.delete_by_user_query(user))

@@ -1890,6 +1954,17 @@ defmodule Pleroma.User do

def fields(%{fields: fields}), do: fields

def sanitized_fields(%User{} = user) do
user
|> User.fields()
|> Enum.map(fn %{"name" => name, "value" => value} ->
%{
"name" => name,
"value" => Pleroma.HTML.filter_tags(value, Pleroma.HTML.Scrubber.LinksOnly)
}
end)
end

def validate_fields(changeset, remote? \\ false) do
limit_name = if remote?, do: :max_remote_account_fields, else: :max_account_fields
limit = Pleroma.Config.get([:instance, limit_name], 0)


+ 11
- 2
lib/pleroma/web/activity_pub/activity_pub.ex View File

@@ -503,8 +503,7 @@ defmodule Pleroma.Web.ActivityPub.ActivityPub do
defp do_follow(follower, followed, activity_id, local) do
with data <- make_follow_data(follower, followed, activity_id),
{:ok, activity} <- insert(data, local),
:ok <- maybe_federate(activity),
_ <- User.set_follow_state_cache(follower.ap_id, followed.ap_id, activity.data["state"]) do
:ok <- maybe_federate(activity) do
{:ok, activity}
else
{:error, error} -> Repo.rollback(error)
@@ -584,6 +583,16 @@ defmodule Pleroma.Web.ActivityPub.ActivityPub do
end
end

defp do_delete(%Object{data: %{"type" => "Tombstone", "id" => ap_id}}, _) do
activity =
ap_id
|> Activity.Queries.by_object_id()
|> Activity.Queries.by_type("Delete")
|> Repo.one()

{:ok, activity}
end

@spec block(User.t(), User.t(), String.t() | nil, boolean()) ::
{:ok, Activity.t()} | {:error, any()}
def block(blocker, blocked, activity_id \\ nil, local \\ true) do


+ 1
- 4
lib/pleroma/web/activity_pub/utils.ex View File

@@ -440,22 +440,19 @@ defmodule Pleroma.Web.ActivityPub.Utils do
|> update(set: [data: fragment("jsonb_set(data, '{state}', ?)", ^state)])
|> Repo.update_all([])

User.set_follow_state_cache(actor, object, state)

activity = Activity.get_by_id(activity.id)

{:ok, activity}
end

def update_follow_state(
%Activity{data: %{"actor" => actor, "object" => object}} = activity,
%Activity{} = activity,
state
) do
new_data = Map.put(activity.data, "state", state)
changeset = Changeset.change(activity, data: new_data)

with {:ok, activity} <- Repo.update(changeset) do
User.set_follow_state_cache(actor, object, state)
{:ok, activity}
end
end


+ 11
- 3
lib/pleroma/web/activity_pub/visibility.ex View File

@@ -44,6 +44,7 @@ defmodule Pleroma.Web.ActivityPub.Visibility do
def is_list?(%{data: %{"listMessage" => _}}), do: true
def is_list?(_), do: false

@spec visible_for_user?(Activity.t(), User.t() | nil) :: boolean()
def visible_for_user?(%{actor: ap_id}, %User{ap_id: ap_id}), do: true

def visible_for_user?(%{data: %{"listMessage" => list_ap_id}} = activity, %User{} = user) do
@@ -55,14 +56,21 @@ defmodule Pleroma.Web.ActivityPub.Visibility do

def visible_for_user?(%{data: %{"listMessage" => _}}, nil), do: false

def visible_for_user?(activity, nil) do
is_public?(activity)
def visible_for_user?(%{local: local} = activity, nil) do
cfg_key =
if local,
do: :local,
else: :remote

if Pleroma.Config.get([:restrict_unauthenticated, :activities, cfg_key]),
do: false,
else: is_public?(activity)
end

def visible_for_user?(activity, user) do
x = [user.ap_id | User.following(user)]
y = [activity.actor] ++ activity.data["to"] ++ (activity.data["cc"] || [])
visible_for_user?(activity, nil) || Enum.any?(x, &(&1 in y))
is_public?(activity) || Enum.any?(x, &(&1 in y))
end

def entire_thread_visible_for_user?(%Activity{} = activity, %User{} = user) do


+ 49
- 2
lib/pleroma/web/admin_api/admin_api_controller.ex View File

@@ -38,7 +38,7 @@ defmodule Pleroma.Web.AdminAPI.AdminAPIController do
plug(
OAuthScopesPlug,
%{scopes: ["read:accounts"], admin: true}
when action in [:list_users, :user_show, :right_get]
when action in [:list_users, :user_show, :right_get, :show_user_credentials]
)

plug(
@@ -54,7 +54,8 @@ defmodule Pleroma.Web.AdminAPI.AdminAPIController do
:tag_users,
:untag_users,
:right_add,
:right_delete
:right_delete,
:update_user_credentials
]
)

@@ -658,6 +659,52 @@ defmodule Pleroma.Web.AdminAPI.AdminAPIController do
json_response(conn, :no_content, "")
end

@doc "Show a given user's credentials"
def show_user_credentials(%{assigns: %{user: admin}} = conn, %{"nickname" => nickname}) do
with %User{} = user <- User.get_cached_by_nickname_or_id(nickname) do
conn
|> put_view(AccountView)
|> render("credentials.json", %{user: user, for: admin})
else
_ -> {:error, :not_found}
end
end

@doc "Updates a given user"
def update_user_credentials(
%{assigns: %{user: admin}} = conn,
%{"nickname" => nickname} = params
) do
with {_, user} <- {:user, User.get_cached_by_nickname(nickname)},
{:ok, _user} <-
User.update_as_admin(user, params) do
ModerationLog.insert_log(%{
actor: admin,
subject: [user],
action: "updated_users"
})

if params["password"] do
User.force_password_reset_async(user)
end

ModerationLog.insert_log(%{
actor: admin,
subject: [user],
action: "force_password_reset"
})

json(conn, %{status: "success"})
else
{:error, changeset} ->
{_, {error, _}} = Enum.at(changeset.errors, 0)
json(conn, %{error: "New password #{error}."})

_ ->
json(conn, %{error: "Unable to change password."})
end
end

def list_reports(conn, params) do
{page, page_size} = page_params(params)



+ 40
- 0
lib/pleroma/web/admin_api/views/account_view.ex View File

@@ -23,6 +23,43 @@ defmodule Pleroma.Web.AdminAPI.AccountView do
}
end

def render("credentials.json", %{user: user, for: for_user}) do
user = User.sanitize_html(user, User.html_filter_policy(for_user))
avatar = User.avatar_url(user) |> MediaProxy.url()
banner = User.banner_url(user) |> MediaProxy.url()
background = image_url(user.background) |> MediaProxy.url()

user
|> Map.take([
:id,
:bio,
:email,
:fields,
:name,
:nickname,
:locked,
:no_rich_text,
:default_scope,
:hide_follows,
:hide_followers_count,
:hide_follows_count,
:hide_followers,
:hide_favorites,
:allow_following_move,
:show_role,
:skip_thread_containment,
:pleroma_settings_store,
:raw_fields,
:discoverable,
:actor_type
])
|> Map.merge(%{
"avatar" => avatar,
"banner" => banner,
"background" => background
})
end

def render("show.json", %{user: user}) do
avatar = User.avatar_url(user) |> MediaProxy.url()
display_name = Pleroma.HTML.strip_tags(user.name || user.nickname)
@@ -104,4 +141,7 @@ defmodule Pleroma.Web.AdminAPI.AccountView do
""
end
end

defp image_url(%{"url" => [%{"href" => href} | _]}), do: href
defp image_url(_), do: nil
end

+ 4
- 3
lib/pleroma/web/controller_helper.ex View File

@@ -87,7 +87,8 @@ defmodule Pleroma.Web.ControllerHelper do
render_error(conn, :not_implemented, "Can't display this activity")
end

@spec put_in_if_exist(map(), atom() | String.t(), any) :: map()
def put_in_if_exist(map, _key, nil), do: map
def put_in_if_exist(map, key, value), do: put_in(map, key, value)
@spec put_if_exist(map(), atom() | String.t(), any) :: map()
def put_if_exist(map, _key, nil), do: map

def put_if_exist(map, key, value), do: Map.put(map, key, value)
end

+ 3
- 3
lib/pleroma/web/feed/tag_controller.ex View File

@@ -9,18 +9,18 @@ defmodule Pleroma.Web.Feed.TagController do
alias Pleroma.Web.ActivityPub.ActivityPub
alias Pleroma.Web.Feed.FeedView

import Pleroma.Web.ControllerHelper, only: [put_in_if_exist: 3]
import Pleroma.Web.ControllerHelper, only: [put_if_exist: 3]

def feed(conn, %{"tag" => raw_tag} = params) do
{format, tag} = parse_tag(raw_tag)

activities =
%{"type" => ["Create"], "tag" => tag}
|> put_in_if_exist("max_id", params["max_id"])
|> put_if_exist("max_id", params["max_id"])
|> ActivityPub.fetch_public_activities()

conn
|> put_resp_content_type("application/atom+xml")
|> put_resp_content_type("application/#{format}+xml")
|> put_view(FeedView)
|> render("tag.#{format}",
activities: activities,


+ 13
- 4
lib/pleroma/web/feed/user_controller.ex View File

@@ -11,7 +11,7 @@ defmodule Pleroma.Web.Feed.UserController do
alias Pleroma.Web.ActivityPub.ActivityPubController
alias Pleroma.Web.Feed.FeedView

import Pleroma.Web.ControllerHelper, only: [put_in_if_exist: 3]
import Pleroma.Web.ControllerHelper, only: [put_if_exist: 3]

plug(Pleroma.Plugs.SetFormatPlug when action in [:feed_redirect])

@@ -40,19 +40,28 @@ defmodule Pleroma.Web.Feed.UserController do
end

def feed(conn, %{"nickname" => nickname} = params) do
format = get_format(conn)

format =
if format in ["rss", "atom"] do
format
else
"atom"
end

with {_, %User{} = user} <- {:fetch_user, User.get_cached_by_nickname(nickname)} do
activities =
%{
"type" => ["Create"],
"actor_id" => user.ap_id
}
|> put_in_if_exist("max_id", params["max_id"])
|> put_if_exist("max_id", params["max_id"])
|> ActivityPub.fetch_public_activities()

conn
|> put_resp_content_type("application/atom+xml")
|> put_resp_content_type("application/#{format}+xml")
|> put_view(FeedView)
|> render("user.xml",
|> render("user.#{format}",
user: user,
activities: activities,
feed_config: Pleroma.Config.get([:feed])


+ 16
- 51
lib/pleroma/web/mastodon_api/controllers/account_controller.ex View File

@@ -8,7 +8,6 @@ defmodule Pleroma.Web.MastodonAPI.AccountController do
import Pleroma.Web.ControllerHelper,
only: [add_link_headers: 2, truthy_param?: 1, assign_account_by_id: 2, json_response: 3]

alias Pleroma.Emoji
alias Pleroma.Plugs.OAuthScopesPlug
alias Pleroma.Plugs.RateLimiter
alias Pleroma.User
@@ -60,7 +59,7 @@ defmodule Pleroma.Web.MastodonAPI.AccountController do

plug(
Pleroma.Plugs.EnsurePublicOrAuthenticatedPlug
when action != :create
when action not in [:create, :show, :statuses]
)

@relationship_actions [:follow, :unfollow]
@@ -144,17 +143,6 @@ defmodule Pleroma.Web.MastodonAPI.AccountController do
def update_credentials(%{assigns: %{user: original_user}} = conn, params) do
user = original_user

params =
if Map.has_key?(params, "fields_attributes") do
Map.update!(params, "fields_attributes", fn fields ->
fields
|> normalize_fields_attributes()
|> Enum.filter(fn %{"name" => n} -> n != "" end)
end)
else
params
end

user_params =
[
:no_rich_text,
@@ -173,46 +161,20 @@ defmodule Pleroma.Web.MastodonAPI.AccountController do
add_if_present(acc, params, to_string(key), key, &{:ok, truthy_param?(&1)})
end)
|> add_if_present(params, "display_name", :name)
|> add_if_present(params, "note", :bio, fn value -> {:ok, User.parse_bio(value, user)} end)
|> add_if_present(params, "avatar", :avatar, fn value ->
with %Plug.Upload{} <- value,
{:ok, object} <- ActivityPub.upload(value, type: :avatar) do
{:ok, object.data}
end
end)
|> add_if_present(params, "header", :banner, fn value ->
with %Plug.Upload{} <- value,
{:ok, object} <- ActivityPub.upload(value, type: :banner) do
{:ok, object.data}
end
end)
|> add_if_present(params, "pleroma_background_image", :background, fn value ->
with %Plug.Upload{} <- value,
{:ok, object} <- ActivityPub.upload(value, type: :background) do
{:ok, object.data}
end
end)
|> add_if_present(params, "fields_attributes", :fields, fn fields ->
fields = Enum.map(fields, fn f -> Map.update!(f, "value", &AutoLinker.link(&1)) end)

{:ok, fields}
end)
|> add_if_present(params, "fields_attributes", :raw_fields)
|> add_if_present(params, "pleroma_settings_store", :pleroma_settings_store, fn value ->
{:ok, Map.merge(user.pleroma_settings_store, value)}
end)
|> add_if_present(params, "note", :bio)
|> add_if_present(params, "avatar", :avatar)
|> add_if_present(params, "header", :banner)
|> add_if_present(params, "pleroma_background_image", :background)
|> add_if_present(
params,
"fields_attributes",
:raw_fields,
&{:ok, normalize_fields_attributes(&1)}
)
|> add_if_present(params, "pleroma_settings_store", :pleroma_settings_store)
|> add_if_present(params, "default_scope", :default_scope)
|> add_if_present(params, "actor_type", :actor_type)

emojis_text = (user_params["display_name"] || "") <> (user_params["note"] || "")

user_emojis =
user
|> Map.get(:emoji, [])
|> Enum.concat(Emoji.Formatter.get_emoji_map(emojis_text))
|> Enum.dedup()

user_params = Map.put(user_params, :emoji, user_emojis)
changeset = User.update_changeset(user, user_params)

with {:ok, user} <- User.update_and_set_cache(changeset) do
@@ -263,7 +225,8 @@ defmodule Pleroma.Web.MastodonAPI.AccountController do

@doc "GET /api/v1/accounts/:id/statuses"
def statuses(%{assigns: %{user: reading_user}} = conn, params) do
with %User{} = user <- User.get_cached_by_nickname_or_id(params["id"], for: reading_user) do
with %User{} = user <- User.get_cached_by_nickname_or_id(params["id"], for: reading_user),
true <- User.visible_for?(user, reading_user) do
params =
params
|> Map.put("tag", params["tagged"])
@@ -275,6 +238,8 @@ defmodule Pleroma.Web.MastodonAPI.AccountController do
|> add_link_headers(activities)
|> put_view(StatusView)
|> render("index.json", activities: activities, for: reading_user, as: :activity)
else
_e -> render_error(conn, :not_found, "Can't find user")
end
end



+ 1
- 1
lib/pleroma/web/mastodon_api/controllers/status_controller.ex View File

@@ -76,7 +76,7 @@ defmodule Pleroma.Web.MastodonAPI.StatusController do
%{scopes: ["write:bookmarks"]} when action in [:bookmark, :unbookmark]
)

plug(Pleroma.Plugs.EnsurePublicOrAuthenticatedPlug)
plug(Pleroma.Plugs.EnsurePublicOrAuthenticatedPlug when action not in [:index, :show])

@rate_limited_status_actions ~w(reblog unreblog favourite unfavourite create delete)a



+ 24
- 11
lib/pleroma/web/mastodon_api/controllers/timeline_controller.ex View File

@@ -27,7 +27,7 @@ defmodule Pleroma.Web.MastodonAPI.TimelineController do
plug(OAuthScopesPlug, %{scopes: ["read:statuses"]} when action in [:home, :direct])
plug(OAuthScopesPlug, %{scopes: ["read:lists"]} when action == :list)

plug(Pleroma.Plugs.EnsurePublicOrAuthenticatedPlug)
plug(Pleroma.Plugs.EnsurePublicOrAuthenticatedPlug when action != :public)

plug(:put_view, Pleroma.Web.MastodonAPI.StatusView)

@@ -75,17 +75,30 @@ defmodule Pleroma.Web.MastodonAPI.TimelineController do
def public(%{assigns: %{user: user}} = conn, params) do
local_only = truthy_param?(params["local"])

activities =
params
|> Map.put("type", ["Create", "Announce"])
|> Map.put("local_only", local_only)
|> Map.put("blocking_user", user)
|> Map.put("muting_user", user)
|> ActivityPub.fetch_public_activities()
cfg_key =
if local_only do
:local
else
:federated
end

conn
|> add_link_headers(activities, %{"local" => local_only})
|> render("index.json", activities: activities, for: user, as: :activity)
restrict? = Pleroma.Config.get([:restrict_unauthenticated, :timelines, cfg_key])

if not (restrict? and is_nil(user)) do
activities =
params
|> Map.put("type", ["Create", "Announce"])
|> Map.put("local_only", local_only)
|> Map.put("blocking_user", user)
|> Map.put("muting_user", user)
|> ActivityPub.fetch_public_activities()

conn
|> add_link_headers(activities, %{"local" => local_only})
|> render("index.json", activities: activities, for: user, as: :activity)
else
render_error(conn, :unauthorized, "authorization required for timeline view")
end
end

def hashtag_fetching(params, user, local_only) do


+ 16
- 7
lib/pleroma/web/mastodon_api/mastodon_api.ex View File

@@ -55,6 +55,7 @@ defmodule Pleroma.Web.MastodonAPI.MastodonAPI do

user
|> Notification.for_user_query(options)
|> restrict(:include_types, options)
|> restrict(:exclude_types, options)
|> restrict(:account_ap_id, options)
|> Pagination.fetch_paginated(params)
@@ -69,10 +70,10 @@ defmodule Pleroma.Web.MastodonAPI.MastodonAPI do
defp cast_params(params) do
param_types = %{
exclude_types: {:array, :string},
include_types: {:array, :string},
exclude_visibilities: {:array, :string},
reblogs: :boolean,
with_muted: :boolean,
with_move: :boolean,
account_ap_id: :string
}

@@ -80,14 +81,16 @@ defmodule Pleroma.Web.MastodonAPI.MastodonAPI do
changeset.changes
end

defp restrict(query, :include_types, %{include_types: mastodon_types = [_ | _]}) do
ap_types = convert_and_filter_mastodon_types(mastodon_types)

where(query, [q, a], fragment("? @> ARRAY[?->>'type']::varchar[]", ^ap_types, a.data))
end

defp restrict(query, :exclude_types, %{exclude_types: mastodon_types = [_ | _]}) do
ap_types =
mastodon_types
|> Enum.map(&Activity.from_mastodon_notification_type/1)
|> Enum.filter(& &1)
ap_types = convert_and_filter_mastodon_types(mastodon_types)

query
|> where([q, a], not fragment("? @> ARRAY[?->>'type']::varchar[]", ^ap_types, a.data))
where(query, [q, a], not fragment("? @> ARRAY[?->>'type']::varchar[]", ^ap_types, a.data))
end

defp restrict(query, :account_ap_id, %{account_ap_id: account_ap_id}) do
@@ -95,4 +98,10 @@ defmodule Pleroma.Web.MastodonAPI.MastodonAPI do
end

defp restrict(query, _, _), do: query

defp convert_and_filter_mastodon_types(types) do
types
|> Enum.map(&Activity.from_mastodon_notification_type/1)
|> Enum.filter(& &1)
end
end

+ 4
- 11
lib/pleroma/web/mastodon_api/views/account_view.ex View File

@@ -36,25 +36,18 @@ defmodule Pleroma.Web.MastodonAPI.AccountView do
end

def render("relationship.json", %{user: %User{} = user, target: %User{} = target}) do
follow_state = User.get_cached_follow_state(user, target)

requested =
if follow_state && !User.following?(user, target) do
follow_state == "pending"
else
false
end
follow_state = User.get_follow_state(user, target)

%{
id: to_string(target.id),
following: User.following?(user, target),
following: follow_state == "accept",
followed_by: User.following?(target, user),
blocking: User.blocks_user?(user, target),
blocked_by: User.blocks_user?(target, user),
muting: User.mutes?(user, target),
muting_notifications: User.muted_notifications?(user, target),
subscribing: User.subscribed_to?(user, target),
requested: requested,
requested: follow_state == "pending",
domain_blocking: User.blocks_domain?(user, target),
showing_reblogs: User.showing_reblogs?(user, target),
endorsed: false
@@ -122,7 +115,7 @@ defmodule Pleroma.Web.MastodonAPI.AccountView do
fields: user.fields,
bot: bot,
source: %{
note: Pleroma.HTML.strip_tags((user.bio || "") |> String.replace("<br>", "\n")),
note: (user.bio || "") |> String.replace(~r(<br */?>), "\n") |> Pleroma.HTML.strip_tags(),
sensitive: false,
fields: user.raw_fields,
pleroma: %{


+ 1
- 0
lib/pleroma/web/nodeinfo/nodeinfo_controller.ex View File

@@ -60,6 +60,7 @@ defmodule Pleroma.Web.Nodeinfo.NodeinfoController do
"pleroma_explicit_addressing",
"shareable_emoji_packs",
"multifetch",
"pleroma:api/v1/notifications:include_types_filter",
if Config.get([:media_proxy, :enabled]) do
"media_proxy"
end,


+ 3
- 1
lib/pleroma/web/router.ex View File

@@ -173,6 +173,8 @@ defmodule Pleroma.Web.Router do

get("/users/:nickname/password_reset", AdminAPIController, :get_password_reset)
patch("/users/force_password_reset", AdminAPIController, :force_password_reset)
get("/users/:nickname/credentials", AdminAPIController, :show_user_credentials)
patch("/users/:nickname/credentials", AdminAPIController, :update_user_credentials)

get("/users", AdminAPIController, :list_users)
get("/users/:nickname", AdminAPIController, :user_show)
@@ -513,7 +515,7 @@ defmodule Pleroma.Web.Router do
end

pipeline :ostatus do
plug(:accepts, ["html", "xml", "atom", "activity+json", "json"])
plug(:accepts, ["html", "xml", "rss", "atom", "activity+json", "json"])
plug(Pleroma.Plugs.StaticFEPlug)
end



+ 3
- 1
lib/pleroma/web/static_fe/static_fe_controller.ex View File

@@ -60,7 +60,9 @@ defmodule Pleroma.Web.StaticFE.StaticFEController do

content =
if data["content"] do
Pleroma.HTML.filter_tags(data["content"])
data["content"]
|> Pleroma.HTML.filter_tags()
|> Pleroma.Emoji.Formatter.emojify(Map.get(data, "emoji", %{}))
else
nil
end


lib/pleroma/web/templates/feed/feed/_activity.xml.eex → lib/pleroma/web/templates/feed/feed/_activity.atom.eex View File


+ 49
- 0
lib/pleroma/web/templates/feed/feed/_activity.rss.eex View File

@@ -0,0 +1,49 @@
<item>
<activity:object-type>http://activitystrea.ms/schema/1.0/note</activity:object-type>
<activity:verb>http://activitystrea.ms/schema/1.0/post</activity:verb>
<guid><%= @data["id"] %></guid>
<title><%= activity_title(@object, Keyword.get(@feed_config, :post_title, %{})) %></title>
<description><%= activity_content(@object) %></description>
<pubDate><%= @data["published"] %></pubDate>
<updated><%= @data["published"] %></updated>
<ostatus:conversation ref="<%= activity_context(@activity) %>">
<%= activity_context(@activity) %>
</ostatus:conversation>
<link rel="ostatus:conversation"><%= activity_context(@activity) %></link>

<%= if @data["summary"] do %>
<description><%= @data["summary"] %></description>
<% end %>

<%= if @activity.local do %>
<link><%= @data["id"] %></link>
<% else %>
<link><%= @data["external_url"] %></link>
<% end %>

<%= for tag <- @data["tag"] || [] do %>
<category term="<%= tag %>"></category>
<% end %>

<%= for attachment <- @data["attachment"] || [] do %>
<link type="<%= attachment_type(attachment) %>"><%= attachment_href(attachment) %></link>
<% end %>

<%= if @data["inReplyTo"] do %>
<thr:in-reply-to ref='<%= @data["inReplyTo"] %>' href='<%= get_href(@data["inReplyTo"]) %>'/>
<% end %>

<%= for id <- @activity.recipients do %>
<%= if id == Pleroma.Constants.as_public() do %>
<link rel="mentioned" ostatus:object-type="http://activitystrea.ms/schema/1.0/collection">http://activityschema.org/collection/public</link>
<% else %>
<%= unless Regex.match?(~r/^#{Pleroma.Web.base_url()}.+followers$/, id) do %>
<link rel="mentioned" ostatus:object-type="http://activitystrea.ms/schema/1.0/person"><%= id %></link>
<% end %>
<% end %>
<% end %>

<%= for {emoji, file} <- @data["emoji"] || %{} do %>
<link name="<%= emoji %>" rel="emoji"><%= file %></link>
<% end %>
</item>

lib/pleroma/web/templates/feed/feed/_author.xml.eex → lib/pleroma/web/templates/feed/feed/_author.atom.eex View File


+ 17
- 0
lib/pleroma/web/templates/feed/feed/_author.rss.eex View File

@@ -0,0 +1,17 @@
<managingEditor>
<guid><%= @user.ap_id %></guid>
<activity:object>http://activitystrea.ms/schema/1.0/person</activity:object>
<uri><%= @user.ap_id %></uri>
<poco:preferredUsername><%= @user.nickname %></poco:preferredUsername>
<poco:displayName><%= @user.name %></poco:displayName>
<poco:note><%= escape(@user.bio) %></poco:note>
<description><%= escape(@user.bio) %></description>
<name><%= @user.nickname %></name>
<link rel="avatar"><%= User.avatar_url(@user) %></link>
<%= if User.banner_url(@user) do %>
<link rel="header"><%= User.banner_url(@user) %></link>
<% end %>
<%= if @user.local do %>
<ap_enabled>true</ap_enabled>
<% end %>
</managingEditor>

lib/pleroma/web/templates/feed/feed/user.xml.eex → lib/pleroma/web/templates/feed/feed/user.atom.eex View File

@@ -12,13 +12,13 @@
<logo><%= logo(@user) %></logo>
<link rel="self" href="<%= '#{user_feed_url(@conn, :feed, @user.nickname)}.atom' %>" type="application/atom+xml"/>

<%= render @view_module, "_author.xml", assigns %>
<%= render @view_module, "_author.atom", assigns %>

<%= if last_activity(@activities) do %>
<link rel="next" href="<%= '#{user_feed_url(@conn, :feed, @user.nickname)}.atom?max_id=#{last_activity(@activities).id}' %>" type="application/atom+xml"/>
<% end %>

<%= for activity <- @activities do %>
<%= render @view_module, "_activity.xml", Map.merge(assigns, prepare_activity(activity)) %>
<%= render @view_module, "_activity.atom", Map.merge(assigns, prepare_activity(activity)) %>
<% end %>
</feed>

+ 20
- 0
lib/pleroma/web/templates/feed/feed/user.rss.eex View File

@@ -0,0 +1,20 @@
<?xml version="1.0" encoding="UTF-8" ?>
<rss version="2.0">
<channel>
<guid><%= user_feed_url(@conn, :feed, @user.nickname) <> ".rss" %></guid>
<title><%= @user.nickname <> "'s timeline" %></title>
<updated><%= most_recent_update(@activities, @user) %></updated>
<image><%= logo(@user) %></image>
<link><%= '#{user_feed_url(@conn, :feed, @user.nickname)}.rss' %></link>

<%= render @view_module, "_author.rss", assigns %>

<%= if last_activity(@activities) do %>
<link rel="next"><%= '#{user_feed_url(@conn, :feed, @user.nickname)}.rss?max_id=#{last_activity(@activities).id}' %></link>
<% end %>

<%= for activity <- @activities do %>
<%= render @view_module, "_activity.rss", Map.merge(assigns, prepare_activity(activity)) %>
<% end %>
</channel>
</rss>

+ 1
- 1
mix.exs View File

@@ -63,7 +63,7 @@ defmodule Pleroma.Mixfile do
def application do
[
mod: {Pleroma.Application, []},
extra_applications: [:logger, :runtime_tools, :comeonin, :quack, :fast_sanitize],
extra_applications: [:logger, :runtime_tools, :comeonin, :quack, :fast_sanitize, :ssl],
included_applications: [:ex_syslogger]
]
end


+ 7
- 0
priv/static/static/static-fe.css View File

@@ -174,3 +174,10 @@ button {
font-weight: 500;
font-size: 16px;
}

img.emoji {
width: 32px;
height: 32px;
padding: 0;
vertical-align: middle;
}

+ 1
- 1
test/activity_expiration_test.exs View File

@@ -7,7 +7,7 @@ defmodule Pleroma.ActivityExpirationTest do
alias Pleroma.ActivityExpiration
import Pleroma.Factory

clear_config([ActivityExpiration, :enabled])
setup do: clear_config([ActivityExpiration, :enabled])

test "finds activities due to be deleted only" do
activity = insert(:note_activity)


+ 1
- 1
test/activity_test.exs View File

@@ -138,7 +138,7 @@ defmodule Pleroma.ActivityTest do
}
end

clear_config([:instance, :limit_to_local_content])
setup do: clear_config([:instance, :limit_to_local_content])

test "finds utf8 text in statuses", %{
japanese_activity: japanese_activity,


+ 1
- 2
test/captcha_test.exs View File

@@ -12,8 +12,7 @@ defmodule Pleroma.CaptchaTest do
alias Pleroma.Captcha.Native

@ets_options [:ordered_set, :private, :named_table, {:read_concurrency, true}]

clear_config([Pleroma.Captcha, :enabled])
setup do: clear_config([Pleroma.Captcha, :enabled])

describe "Kocaptcha" do
setup do


+ 1
- 3
test/config/transfer_task_test.exs View File

@@ -10,9 +10,7 @@ defmodule Pleroma.Config.TransferTaskTest do
alias Pleroma.Config.TransferTask
alias Pleroma.ConfigDB

clear_config(:configurable_from_database) do
Pleroma.Config.put(:configurable_from_database, true)
end
setup do: clear_config(:configurable_from_database, true)

test "transfer config values from db to env" do
refute Application.get_env(:pleroma, :test_key)


+ 1
- 3
test/conversation_test.exs View File

@@ -11,9 +11,7 @@ defmodule Pleroma.ConversationTest do

import Pleroma.Factory

clear_config_all([:instance, :federating]) do
Pleroma.Config.put([:instance, :federating], true)
end
setup_all do: clear_config([:instance, :federating], true)

test "it goes through old direct conversations" do
user = insert(:user)


+ 1
- 2
test/emails/mailer_test.exs View File

@@ -14,8 +14,7 @@ defmodule Pleroma.Emails.MailerTest do
subject: "Pleroma test email",
to: [{"Test User", "user1@example.com"}]
}

clear_config([Pleroma.Emails.Mailer, :enabled])
setup do: clear_config([Pleroma.Emails.Mailer, :enabled])

test "not send email when mailer is disabled" do
Pleroma.Config.put([Pleroma.Emails.Mailer, :enabled], false)


+ 2
- 2
test/http/request_builder_test.exs View File

@@ -8,8 +8,8 @@ defmodule Pleroma.HTTP.RequestBuilderTest do
alias Pleroma.HTTP.RequestBuilder

describe "headers/2" do
clear_config([:http, :send_user_agent])
clear_config([:http, :user_agent])
setup do: clear_config([:http, :send_user_agent])
setup do: clear_config([:http, :user_agent])

test "don't send pleroma user agent" do
assert RequestBuilder.headers(%{}, []) == %{headers: []}


+ 2
- 6
test/notification_test.exs View File

@@ -802,17 +802,13 @@ defmodule Pleroma.NotificationTest do
Pleroma.Web.ActivityPub.ActivityPub.move(old_user, new_user)
ObanHelpers.perform_all()

assert [] = Notification.for_user(follower)

assert [
%{
activity: %{
data: %{"type" => "Move", "actor" => ^old_ap_id, "target" => ^new_ap_id}
}
}
] = Notification.for_user(follower, %{with_move: true})

assert [] = Notification.for_user(other_follower)
] = Notification.for_user(follower)

assert [
%{
@@ -820,7 +816,7 @@ defmodule Pleroma.NotificationTest do
data: %{"type" => "Move", "actor" => ^old_ap_id, "target" => ^new_ap_id}
}
}
] = Notification.for_user(other_follower, %{with_move: true})
] = Notification.for_user(other_follower)
end
end



+ 2
- 3
test/object/fetcher_test.exs View File

@@ -28,8 +28,7 @@ defmodule Pleroma.Object.FetcherTest do

describe "max thread distance restriction" do
@ap_id "http://mastodon.example.org/@admin/99541947525187367"

clear_config([:instance, :federation_incoming_replies_max_depth])
setup do: clear_config([:instance, :federation_incoming_replies_max_depth])

test "it returns thread depth exceeded error if thread depth is exceeded" do
Pleroma.Config.put([:instance, :federation_incoming_replies_max_depth], 0)
@@ -160,7 +159,7 @@ defmodule Pleroma.Object.FetcherTest do
end

describe "signed fetches" do
clear_config([:activitypub, :sign_object_fetches])
setup do: clear_config([:activitypub, :sign_object_fetches])

test_with_mock "it signs fetches when configured to do so",
Pleroma.Signature,


+ 2
- 2
test/object_test.exs View File

@@ -74,8 +74,8 @@ defmodule Pleroma.ObjectTest do
end

describe "delete attachments" do
clear_config([Pleroma.Upload])
clear_config([:instance, :cleanup_attachments])
setup do: clear_config([Pleroma.Upload])
setup do: clear_config([:instance, :cleanup_attachments])

test "Disabled via config" do
Pleroma.Config.put([Pleroma.Upload, :uploader], Pleroma.Uploaders.Local)


+ 1
- 1
test/plugs/admin_secret_authentication_plug_test.exs View File

@@ -23,7 +23,7 @@ defmodule Pleroma.Plugs.AdminSecretAuthenticationPlugTest do
end

describe "when secret set it assigns an admin user" do
clear_config([:admin_token])
setup do: clear_config([:admin_token])

test "with `admin_token` query parameter", %{conn: conn} do
Pleroma.Config.put(:admin_token, "password123")


+ 1
- 1
test/plugs/ensure_public_or_authenticated_plug_test.exs View File

@@ -9,7 +9,7 @@ defmodule Pleroma.Plugs.EnsurePublicOrAuthenticatedPlugTest do
alias Pleroma.Plugs.EnsurePublicOrAuthenticatedPlug
alias Pleroma.User

clear_config([:instance, :public])
setup do: clear_config([:instance, :public])

test "it halts if not public and no user is assigned", %{conn: conn} do
Config.put([:instance, :public], false)


+ 3
- 3
test/plugs/http_security_plug_test.exs View File

@@ -7,9 +7,9 @@ defmodule Pleroma.Web.Plugs.HTTPSecurityPlugTest do
alias Pleroma.Config
alias Plug.Conn

clear_config([:http_securiy, :enabled])
clear_config([:http_security, :sts])
clear_config([:http_security, :referrer_policy])
setup do: clear_config([:http_securiy, :enabled])
setup do: clear_config([:http_security, :sts])
setup do: clear_config([:http_security, :referrer_policy])

describe "http security enabled" do
setup do


+ 1
- 3
test/plugs/instance_static_test.exs View File

@@ -12,9 +12,7 @@ defmodule Pleroma.Web.RuntimeStaticPlugTest do
on_exit(fn -> File.rm_rf(@dir) end)
end

clear_config([:instance, :static_dir]) do
Pleroma.Config.put([:instance, :static_dir], @dir)
end
setup do: clear_config([:instance, :static_dir], @dir)

test "overrides index" do
bundled_index = get(build_conn(), "/")


+ 1
- 1
test/plugs/oauth_scopes_plug_test.exs View File

@@ -193,7 +193,7 @@ defmodule Pleroma.Plugs.OAuthScopesPlugTest do
end

describe "transform_scopes/2" do
clear_config([:auth, :enforce_oauth_admin_scope_usage])
setup do: clear_config([:auth, :enforce_oauth_admin_scope_usage])

setup do
{:ok, %{f: &OAuthScopesPlug.transform_scopes/2}}


+ 3
- 5
test/plugs/rate_limiter_test.exs View File

@@ -12,14 +12,12 @@ defmodule Pleroma.Plugs.RateLimiterTest do
import Pleroma.Tests.Helpers, only: [clear_config: 1, clear_config: 2]

# Note: each example must work with separate buckets in order to prevent concurrency issues

clear_config([Pleroma.Web.Endpoint, :http, :ip])
clear_config(:rate_limit)
setup do: clear_config([Pleroma.Web.Endpoint, :http, :ip])
setup do: clear_config(:rate_limit)

describe "config" do
@limiter_name :test_init

clear_config([Pleroma.Plugs.RemoteIp, :enabled])
setup do: clear_config([Pleroma.Plugs.RemoteIp, :enabled])

test "config is required for plug to work" do
Config.put([:rate_limit, @limiter_name], {1, 1})


+ 1
- 2
test/plugs/remote_ip_test.exs View File

@@ -9,8 +9,7 @@ defmodule Pleroma.Plugs.RemoteIpTest do
alias Pleroma.Plugs.RemoteIp

import Pleroma.Tests.Helpers, only: [clear_config: 1, clear_config: 2]

clear_config(RemoteIp)
setup do: clear_config(RemoteIp)

test "disabled" do
Pleroma.Config.put(RemoteIp, enabled: false)


+ 1
- 1
test/plugs/user_enabled_plug_test.exs View File

@@ -8,7 +8,7 @@ defmodule Pleroma.Plugs.UserEnabledPlugTest do
alias Pleroma.Plugs.UserEnabledPlug
import Pleroma.Factory

clear_config([:instance, :account_activation_required])
setup do: clear_config([:instance, :account_activation_required])

test "doesn't do anything if the user isn't set", %{conn: conn} do
ret_conn =


+ 2
- 6
test/plugs/user_is_admin_plug_test.exs View File

@@ -9,9 +9,7 @@ defmodule Pleroma.Plugs.UserIsAdminPlugTest do
import Pleroma.Factory

describe "unless [:auth, :enforce_oauth_admin_scope_usage]," do
clear_config([:auth, :enforce_oauth_admin_scope_usage]) do
Pleroma.Config.put([:auth, :enforce_oauth_admin_scope_usage], false)
end
setup do: clear_config([:auth, :enforce_oauth_admin_scope_usage], false)

test "accepts a user that is an admin" do
user = insert(:user, is_admin: true)
@@ -42,9 +40,7 @@ defmodule Pleroma.Plugs.UserIsAdminPlugTest do
end

describe "with [:auth, :enforce_oauth_admin_scope_usage]," do
clear_config([:auth, :enforce_oauth_admin_scope_usage]) do
Pleroma.Config.put([:auth, :enforce_oauth_admin_scope_usage], true)
end
setup do: clear_config([:auth, :enforce_oauth_admin_scope_usage], true)

setup do
admin_user = insert(:user, is_admin: true)


+ 1
- 1
test/repo_test.exs View File

@@ -67,7 +67,7 @@ defmodule Pleroma.RepoTest do
:ok
end

clear_config([:i_am_aware_this_may_cause_data_loss, :disable_migration_check])
setup do: clear_config([:i_am_aware_this_may_cause_data_loss, :disable_migration_check])

test "raises if it detects unapplied migrations" do
assert_raise Pleroma.Repo.UnappliedMigrationsError, fn ->


+ 1
- 1
test/scheduled_activity_test.exs View File

@@ -8,7 +8,7 @@ defmodule Pleroma.ScheduledActivityTest do
alias Pleroma.ScheduledActivity
import Pleroma.Factory

clear_config([ScheduledActivity, :enabled])
setup do: clear_config([ScheduledActivity, :enabled])

setup context do
DataCase.ensure_local_uploader(context)


+ 8
- 28
test/support/helpers.ex View File

@@ -17,35 +17,17 @@ defmodule Pleroma.Tests.Helpers do

defmacro clear_config(config_path, do: yield) do
quote do
setup do
initial_setting = Config.get(unquote(config_path))
unquote(yield)
on_exit(fn -> Config.put(unquote(config_path), initial_setting) end)
:ok
end
end
end

@doc "Stores initial config value and restores it after *all* test examples are executed."
defmacro clear_config_all(config_path) do
quote do
clear_config_all(unquote(config_path)) do
end
initial_setting = Config.get(unquote(config_path))
unquote(yield)
on_exit(fn -> Config.put(unquote(config_path), initial_setting) end)
:ok
end
end

@doc """
Stores initial config value and restores it after *all* test examples are executed.
Only use if *all* test examples should work with the same stubbed value
(*no* examples set a different value).
"""
defmacro clear_config_all(config_path, do: yield) do
defmacro clear_config(config_path, temp_setting) do
quote do
setup_all do
initial_setting = Config.get(unquote(config_path))
unquote(yield)
on_exit(fn -> Config.put(unquote(config_path), initial_setting) end)
:ok
clear_config(unquote(config_path)) do
Config.put(unquote(config_path), unquote(temp_setting))
end
end
end
@@ -55,9 +37,7 @@ defmodule Pleroma.Tests.Helpers do
import Pleroma.Tests.Helpers,
only: [
clear_config: 1,
clear_config: 2,
clear_config_all: 1,
clear_config_all: 2
clear_config: 2
]

def to_datetime(naive_datetime) do


+ 1
- 3
test/tasks/config_test.exs View File

@@ -20,9 +20,7 @@ defmodule Mix.Tasks.Pleroma.ConfigTest do
:ok
end

clear_config_all(:configurable_from_database) do
Pleroma.Config.put(:configurable_from_database, true)
end
setup_all do: clear_config(:configurable_from_database, true)

test "error if file with custom settings doesn't exist" do
Mix.Tasks.Pleroma.Config.migrate_to_db("config/not_existance_config_file.exs")


+ 1
- 1
test/tasks/robots_txt_test.exs View File

@@ -7,7 +7,7 @@ defmodule Mix.Tasks.Pleroma.RobotsTxtTest do
use Pleroma.Tests.Helpers
alias Mix.Tasks.Pleroma.RobotsTxt

clear_config([:instance, :static_dir])
setup do: clear_config([:instance, :static_dir])

test "creates new dir" do
path = "test/fixtures/new_dir/"


+ 1
- 1
test/upload/filter/anonymize_filename_test.exs View File

@@ -18,7 +18,7 @@ defmodule Pleroma.Upload.Filter.AnonymizeFilenameTest do
%{upload_file: upload_file}
end

clear_config([Pleroma.Upload.Filter.AnonymizeFilename, :text])
setup do: clear_config([Pleroma.Upload.Filter.AnonymizeFilename, :text])

test "it replaces filename on pre-defined text", %{upload_file: upload_file} do
Config.put([Upload.Filter.AnonymizeFilename, :text], "custom-file.png")


+ 1
- 1
test/upload/filter/mogrify_test.exs View File

@@ -10,7 +10,7 @@ defmodule Pleroma.Upload.Filter.MogrifyTest do
alias Pleroma.Upload
alias Pleroma.Upload.Filter

clear_config([Filter.Mogrify, :args])
setup do: clear_config([Filter.Mogrify, :args])

test "apply mogrify filter" do
Config.put([Filter.Mogrify, :args], [{"tint", "40"}])


+ 1
- 1
test/upload/filter_test.exs View File

@@ -8,7 +8,7 @@ defmodule Pleroma.Upload.FilterTest do
alias Pleroma.Config
alias Pleroma.Upload.Filter

clear_config([Pleroma.Upload.Filter.AnonymizeFilename, :text])
setup do: clear_config([Pleroma.Upload.Filter.AnonymizeFilename, :text])

test "applies filters" do
Config.put([Pleroma.Upload.Filter.AnonymizeFilename, :text], "custom-file.png")


+ 1
- 3
test/upload_test.exs View File

@@ -250,9 +250,7 @@ defmodule Pleroma.UploadTest do
end

describe "Setting a custom base_url for uploaded media" do
clear_config([Pleroma.Upload, :base_url]) do
Pleroma.Config.put([Pleroma.Upload, :base_url], "https://cache.pleroma.social")
end
setup do: clear_config([Pleroma.Upload, :base_url], "https://cache.pleroma.social")

test "returns a media url with configured base_url" do
base_url = Pleroma.Config.get([Pleroma.Upload, :base_url])


+ 5
- 6
test/uploaders/s3_test.exs View File

@@ -11,12 +11,11 @@ defmodule Pleroma.Uploaders.S3Test do
import Mock
import ExUnit.CaptureLog

clear_config([Pleroma.Uploaders.S3]) do
Config.put([Pleroma.Uploaders.S3],
bucket: "test_bucket",
public_endpoint: "https://s3.amazonaws.com"
)
end
setup do:
clear_config(Pleroma.Uploaders.S3,
bucket: "test_bucket",
public_endpoint: "https://s3.amazonaws.com"
)

describe "get_file/1" do
test "it returns path to local folder for files" do


+ 1
- 1
test/user_search_test.exs View File

@@ -15,7 +15,7 @@ defmodule Pleroma.UserSearchTest do
end

describe "User.search" do
clear_config([:instance, :limit_to_local_content])
setup do: clear_config([:instance, :limit_to_local_content])

test "excluded invisible users from results" do
user = insert(:user, %{nickname: "john t1000"})


+ 13
- 18
test/user_test.exs View File

@@ -24,7 +24,7 @@ defmodule Pleroma.UserTest do
:ok
end

clear_config([:instance, :account_activation_required])
setup do: clear_config([:instance, :account_activation_required])

describe "service actors" do
test "returns updated invisible actor" do
@@ -297,7 +297,7 @@ defmodule Pleroma.UserTest do
end

describe "unfollow/2" do
clear_config([:instance, :external_user_synchronization])
setup do: clear_config([:instance, :external_user_synchronization])

test "unfollow with syncronizes external user" do
Pleroma.Config.put([:instance, :external_user_synchronization], true)
@@ -375,10 +375,9 @@ defmodule Pleroma.UserTest do
password_confirmation: "test",
email: "email@example.com"
}

clear_config([:instance, :autofollowed_nicknames])
clear_config([:instance, :welcome_message])
clear_config([:instance, :welcome_user_nickname])
setup do: clear_config([:instance, :autofollowed_nicknames])
setup do: clear_config([:instance, :welcome_message])
setup do: clear_config([:instance, :welcome_user_nickname])

test "it autofollows accounts that are set for it" do
user = insert(:user)
@@ -412,7 +411,7 @@ defmodule Pleroma.UserTest do
assert activity.actor == welcome_user.ap_id
end

clear_config([:instance, :account_activation_required])
setup do: clear_config([:instance, :account_activation_required])

test "it requires an email, name, nickname and password, bio is optional when account_activation_required is enabled" do
Pleroma.Config.put([:instance, :account_activation_required], true)
@@ -475,10 +474,7 @@ defmodule Pleroma.UserTest do
password_confirmation: "test",
email: "email@example.com"
}

clear_config([:instance, :account_activation_required]) do
Pleroma.Config.put([:instance, :account_activation_required], true)
end
setup do: clear_config([:instance, :account_activation_required], true)

test "it creates unconfirmed user" do
changeset = User.register_changeset(%User{}, @full_user_data)
@@ -621,9 +617,8 @@ defmodule Pleroma.UserTest do
ap_id: "http...",
avatar: %{some: "avatar"}
}

clear_config([:instance, :user_bio_length])
clear_config([:instance, :user_name_length])
setup do: clear_config([:instance, :user_bio_length])
setup do: clear_config([:instance, :user_name_length])

test "it confirms validity" do
cs = User.remote_user_creation(@valid_remote)
@@ -1116,7 +1111,7 @@ defmodule Pleroma.UserTest do
[user: user]
end

clear_config([:instance, :federating])
setup do: clear_config([:instance, :federating])

test ".delete_user_activities deletes all create activities", %{user: user} do
{:ok, activity} = CommonAPI.post(user, %{"status" => "2hu"})
@@ -1297,7 +1292,7 @@ defmodule Pleroma.UserTest do
end

describe "account_status/1" do
clear_config([:instance, :account_activation_required])
setup do: clear_config([:instance, :account_activation_required])

test "return confirmation_pending for unconfirm user" do
Pleroma.Config.put([:instance, :account_activation_required], true)
@@ -1665,7 +1660,7 @@ defmodule Pleroma.UserTest do
end

describe "following/followers synchronization" do
clear_config([:instance, :external_user_synchronization])
setup do: clear_config([:instance, :external_user_synchronization])

test "updates the counters normally on following/getting a follow when disabled" do
Pleroma.Config.put([:instance, :external_user_synchronization], false)
@@ -1770,7 +1765,7 @@ defmodule Pleroma.UserTest do
[local_user: local_user, remote_user: remote_user]
end

clear_config([:instance, :limit_to_local_content])
setup do: clear_config([:instance, :limit_to_local_content])

test "allows getting remote users by id no matter what :limit_to_local_content is set to", %{
remote_user: remote_user


+ 4
- 6
test/web/activity_pub/activity_pub_controller_test.exs View File

@@ -26,12 +26,10 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
:ok
end

clear_config([:instance, :federating]) do
Config.put([:instance, :federating], true)
end
setup do: clear_config([:instance, :federating], true)

describe "/relay" do
clear_config([:instance, :allow_relay])
setup do: clear_config([:instance, :allow_relay])

test "with the relay active, it returns the relay user", %{conn: conn} do
res =
@@ -1227,8 +1225,8 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|> json_response(403)
end

clear_config([:media_proxy])
clear_config([Pleroma.Upload])
setup do: clear_config([:media_proxy])
setup do: clear_config([Pleroma.Upload])

test "POST /api/ap/upload_media", %{conn: conn} do
user = insert(:user)


+ 11
- 7
test/web/activity_pub/activity_pub_test.exs View File

@@ -27,7 +27,7 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubTest do
:ok
end

clear_config([:instance, :federating])
setup do: clear_config([:instance, :federating])

describe "streaming out participations" do
test "it streams them out" do
@@ -1396,7 +1396,7 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubTest do
end

describe "deletion" do
clear_config([:instance, :rewrite_policy])
setup do: clear_config([:instance, :rewrite_policy])

test "it reverts deletion on error" do
note = insert(:note_activity)
@@ -1425,6 +1425,12 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubTest do
assert Repo.get(Object, object.id).data["type"] == "Tombstone"
end

test "it doesn't fail when an activity was already deleted" do
{:ok, delete} = insert(:note_activity) |> Object.normalize() |> ActivityPub.delete()

assert {:ok, ^delete} = delete |> Object.normalize() |> ActivityPub.delete()
end

test "decrements user note count only for public activities" do
user = insert(:user, note_count: 10)

@@ -1580,7 +1586,7 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubTest do
end

describe "update" do
clear_config([:instance, :max_pinned_statuses])
setup do: clear_config([:instance, :max_pinned_statuses])

test "it creates an update activity with the new user data" do
user = insert(:user)
@@ -1955,11 +1961,9 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubTest do

activity = %Activity{activity | object: nil}

assert [%Notification{activity: ^activity}] =
Notification.for_user(follower, %{with_move: true})
assert [%Notification{activity: ^activity}] = Notification.for_user(follower)

assert [%Notification{activity: ^activity}] =
Notification.for_user(follower_move_opted_out, %{with_move: true})
assert [%Notification{activity: ^activity}] = Notification.for_user(follower_move_opted_out)
end

test "old user must be in the new user's `also_known_as` list" do


+ 1
- 1
test/web/activity_pub/mrf/hellthread_policy_test.exs View File

@@ -26,7 +26,7 @@ defmodule Pleroma.Web.ActivityPub.MRF.HellthreadPolicyTest do
[user: user, message: message]
end

clear_config(:mrf_hellthread)
setup do: clear_config(:mrf_hellthread)

describe "reject" do
test "rejects the message if the recipient count is above reject_threshold", %{


+ 1
- 1
test/web/activity_pub/mrf/keyword_policy_test.exs View File

@@ -7,7 +7,7 @@ defmodule Pleroma.Web.ActivityPub.MRF.KeywordPolicyTest do

alias Pleroma.Web.ActivityPub.MRF.KeywordPolicy

clear_config(:mrf_keyword)
setup do: clear_config(:mrf_keyword)

setup do
Pleroma.Config.put([:mrf_keyword], %{reject: [], federated_timeline_removal: [], replace: []})


+ 1
- 1
test/web/activity_pub/mrf/mention_policy_test.exs View File

@@ -7,7 +7,7 @@ defmodule Pleroma.Web.ActivityPub.MRF.MentionPolicyTest do

alias Pleroma.Web.ActivityPub.MRF.MentionPolicy

clear_config(:mrf_mention)
setup do: clear_config(:mrf_mention)

test "pass filter if allow list is empty" do
Pleroma.Config.delete([:mrf_mention])


+ 1
- 1
test/web/activity_pub/mrf/mrf_test.exs View File

@@ -60,7 +60,7 @@ defmodule Pleroma.Web.ActivityPub.MRFTest do
end

describe "describe/0" do
clear_config([:instance, :rewrite_policy])
setup do: clear_config([:instance, :rewrite_policy])

test "it works as expected with noop policy" do
expected = %{


+ 5
- 6
test/web/activity_pub/mrf/object_age_policy_test.exs View File

@@ -9,12 +9,11 @@ defmodule Pleroma.Web.ActivityPub.MRF.ObjectAgePolicyTest do
alias Pleroma.Web.ActivityPub.MRF.ObjectAgePolicy
alias Pleroma.Web.ActivityPub.Visibility

clear_config([:mrf_object_age]) do
Config.put(:mrf_object_age,
threshold: 172_800,
actions: [:delist, :strip_followers]
)
end
setup do:
clear_config(:mrf_object_age,
threshold: 172_800,
actions: [:delist, :strip_followers]
)

setup_all do
Tesla.Mock.mock_global(fn env -> apply(HttpRequestMock, :request, [env]) end)


+ 1
- 1
test/web/activity_pub/mrf/reject_non_public_test.exs View File

@@ -8,7 +8,7 @@ defmodule Pleroma.Web.ActivityPub.MRF.RejectNonPublicTest do

alias Pleroma.Web.ActivityPub.MRF.RejectNonPublic

clear_config([:mrf_rejectnonpublic])
setup do: clear_config([:mrf_rejectnonpublic])

describe "public message" do
test "it's allowed when address is public" do


+ 11
- 12
test/web/activity_pub/mrf/simple_policy_test.exs View File

@@ -8,18 +8,17 @@ defmodule Pleroma.Web.ActivityPub.MRF.SimplePolicyTest do
alias Pleroma.Config
alias Pleroma.Web.ActivityPub.MRF.SimplePolicy

clear_config([:mrf_simple]) do
Config.put(:mrf_simple,
media_removal: [],
media_nsfw: [],
federated_timeline_removal: [],
report_removal: [],
reject: [],
accept: [],
avatar_removal: [],
banner_removal: []
)
end
setup do:
clear_config(:mrf_simple,
media_removal: [],
media_nsfw: [],
federated_timeline_removal: [],
report_removal: [],
reject: [],
accept: [],
avatar_removal: [],
banner_removal: []
)

describe "when :media_removal" do
test "is empty" do


+ 1
- 2
test/web/activity_pub/mrf/subchain_policy_test.exs View File

@@ -13,8 +13,7 @@ defmodule Pleroma.Web.ActivityPub.MRF.SubchainPolicyTest do
"type" => "Create",
"object" => %{"content" => "hi"}
}

clear_config([:mrf_subchain, :match_actor])
setup do: clear_config([:mrf_subchain, :match_actor])

test "it matches and processes subchains when the actor matches a configured target" do
Pleroma.Config.put([:mrf_subchain, :match_actor], %{


+ 1
- 1
test/web/activity_pub/mrf/user_allowlist_policy_test.exs View File

@@ -7,7 +7,7 @@ defmodule Pleroma.Web.ActivityPub.MRF.UserAllowListPolicyTest do

alias Pleroma.Web.ActivityPub.MRF.UserAllowListPolicy

clear_config([:mrf_user_allowlist, :localhost])
setup do: clear_config([:mrf_user_allowlist, :localhost])

test "pass filter if allow list is empty" do
actor = insert(:user)


+ 2
- 2
test/web/activity_pub/mrf/vocabulary_policy_test.exs View File

@@ -8,7 +8,7 @@ defmodule Pleroma.Web.ActivityPub.MRF.VocabularyPolicyTest do
alias Pleroma.Web.ActivityPub.MRF.VocabularyPolicy

describe "accept" do
clear_config([:mrf_vocabulary, :accept])
setup do: clear_config([:mrf_vocabulary, :accept])

test "it accepts based on parent activity type" do
Pleroma.Config.put([:mrf_vocabulary, :accept], ["Like"])
@@ -65,7 +65,7 @@ defmodule Pleroma.Web.ActivityPub.MRF.VocabularyPolicyTest do
end

describe "reject" do
clear_config([:mrf_vocabulary, :reject])
setup do: clear_config([:mrf_vocabulary, :reject])

test "it rejects based on parent activity type" do
Pleroma.Config.put([:mrf_vocabulary, :reject], ["Like"])


+ 1
- 3
test/web/activity_pub/publisher_test.exs View File

@@ -23,9 +23,7 @@ defmodule Pleroma.Web.ActivityPub.PublisherTest do
:ok
end

clear_config_all([:instance, :federating]) do
Pleroma.Config.put([:instance, :federating], true)
end
setup_all do: clear_config([:instance, :federating], true)

describe "gather_webfinger_links/1" do
test "it returns links" do


+ 1
- 1
test/web/activity_pub/relay_test.exs View File

@@ -68,7 +68,7 @@ defmodule Pleroma.Web.ActivityPub.RelayTest do
end

describe "publish/1" do
clear_config([:instance, :federating])
setup do: clear_config([:instance, :federating])

test "returns error when activity not `Create` type" do
activity = insert(:like_activity)


+ 1
- 1
test/web/activity_pub/transmogrifier/follow_handling_test.exs View File

@@ -19,7 +19,7 @@ defmodule Pleroma.Web.ActivityPub.Transmogrifier.FollowHandlingTest do
end

describe "handle_incoming" do
clear_config([:user, :deny_follow_blocked])
setup do: clear_config([:user, :deny_follow_blocked])

test "it works for osada follow request" do
user = insert(:user)


+ 7
- 15
test/web/activity_pub/transmogrifier_test.exs View File

@@ -25,7 +25,7 @@ defmodule Pleroma.Web.ActivityPub.TransmogrifierTest do
:ok
end

clear_config([:instance, :max_remote_account_fields])
setup do: clear_config([:instance, :max_remote_account_fields])

describe "handle_incoming" do
test "it ignores an incoming notice if we already have it" do
@@ -1351,11 +1351,8 @@ defmodule Pleroma.Web.ActivityPub.TransmogrifierTest do
end

describe "`handle_incoming/2`, Mastodon format `replies` handling" do
clear_config([:activitypub, :note_replies_output_limit]) do
Pleroma.Config.put([:activitypub, :note_replies_output_limit], 5)
end

clear_config([:instance, :federation_incoming_replies_max_depth])
setup do: clear_config([:activitypub, :note_replies_output_limit], 5)
setup do: clear_config([:instance, :federation_incoming_replies_max_depth])

setup do
data =
@@ -1394,11 +1391,8 @@ defmodule Pleroma.Web.ActivityPub.TransmogrifierTest do
end

describe "`handle_incoming/2`, Pleroma format `replies` handling" do
clear_config([:activitypub, :note_replies_output_limit]) do
Pleroma.Config.put([:activitypub, :note_replies_output_limit], 5)
end

clear_config([:instance, :federation_incoming_replies_max_depth])
setup do: clear_config([:activitypub, :note_replies_output_limit], 5)
setup do: clear_config([:instance, :federation_incoming_replies_max_depth])

setup do
user = insert(:user)
@@ -1882,7 +1876,7 @@ defmodule Pleroma.Web.ActivityPub.TransmogrifierTest do
end

describe "fix_in_reply_to/2" do
clear_config([:instance, :federation_incoming_replies_max_depth])
setup do: clear_config([:instance, :federation_incoming_replies_max_depth])

setup do
data = Poison.decode!(File.read!("test/fixtures/mastodon-post-activity.json"))
@@ -2145,9 +2139,7 @@ defmodule Pleroma.Web.ActivityPub.TransmogrifierTest do
end

describe "set_replies/1" do
clear_config([:activitypub, :note_replies_output_limit]) do
Pleroma.Config.put([:activitypub, :note_replies_output_limit], 2)
end
setup do: clear_config([:activitypub, :note_replies_output_limit], 2)

test "returns unmodified object if activity doesn't have self-replies" do
data = Poison.decode!(File.read!("test/fixtures/mastodon-post-activity.json"))


+ 1
- 3
test/web/activity_pub/views/object_view_test.exs View File

@@ -37,9 +37,7 @@ defmodule Pleroma.Web.ActivityPub.ObjectViewTest do
end

describe "note activity's `replies` collection rendering" do
clear_config([:activitypub, :note_replies_output_limit]) do
Pleroma.Config.put([:activitypub, :note_replies_output_limit], 5)
end
setup do: clear_config([:activitypub, :note_replies_output_limit], 5)

test "renders `replies` collection for a note activity" do
user = insert(:user)


+ 78
- 24
test/web/admin_api/admin_api_controller_test.exs View File

@@ -43,9 +43,7 @@ defmodule Pleroma.Web.AdminAPI.AdminAPIControllerTest do
end

describe "with [:auth, :enforce_oauth_admin_scope_usage]," do
clear_config([:auth, :enforce_oauth_admin_scope_usage]) do
Config.put([:auth, :enforce_oauth_admin_scope_usage], true)
end
setup do: clear_config([:auth, :enforce_oauth_admin_scope_usage], true)

test "GET /api/pleroma/admin/users/:nickname requires admin:read:accounts or broader scope",
%{admin: admin} do
@@ -93,9 +91,7 @@ defmodule Pleroma.Web.AdminAPI.AdminAPIControllerTest do
end

describe "unless [:auth, :enforce_oauth_admin_scope_usage]," do
clear_config([:auth, :enforce_oauth_admin_scope_usage]) do
Config.put([:auth, :enforce_oauth_admin_scope_usage], false)
end
setup do: clear_config([:auth, :enforce_oauth_admin_scope_usage], false)

test "GET /api/pleroma/admin/users/:nickname requires " <>
"read:accounts or admin:read:accounts or broader scope",
@@ -581,13 +577,8 @@ defmodule Pleroma.Web.AdminAPI.AdminAPIControllerTest do
end

describe "POST /api/pleroma/admin/email_invite, with valid config" do
clear_config([:instance, :registrations_open]) do
Config.put([:instance, :registrations_open], false)
end

clear_config([:instance, :invites_enabled]) do
Config.put([:instance, :invites_enabled], true)
end
setup do: clear_config([:instance, :registrations_open], false)
setup do: clear_config([:instance, :invites_enabled], true)

test "sends invitation and returns 204", %{admin: admin, conn: conn} do
recipient_email = "foo@bar.com"
@@ -638,8 +629,8 @@ defmodule Pleroma.Web.AdminAPI.AdminAPIControllerTest do
end

describe "POST /api/pleroma/admin/users/email_invite, with invalid config" do
clear_config([:instance, :registrations_open])
clear_config([:instance, :invites_enabled])
setup do: clear_config([:instance, :registrations_open])
setup do: clear_config([:instance, :invites_enabled])

test "it returns 500 if `invites_enabled` is not enabled", %{conn: conn} do
Config.put([:instance, :registrations_open], false)
@@ -1888,9 +1879,7 @@ defmodule Pleroma.Web.AdminAPI.AdminAPIControllerTest do
end

describe "GET /api/pleroma/admin/config" do
clear_config(:configurable_from_database) do
Config.put(:configurable_from_database, true)
end
setup do: clear_config(:configurable_from_database, true)

test "when configuration from database is off", %{conn: conn} do
Config.put(:configurable_from_database, false)
@@ -2041,9 +2030,7 @@ defmodule Pleroma.Web.AdminAPI.AdminAPIControllerTest do
end)
end

clear_config(:configurable_from_database) do
Config.put(:configurable_from_database, true)
end
setup do: clear_config(:configurable_from_database, true)

@tag capture_log: true
test "create new config setting in db", %{conn: conn} do
@@ -3052,9 +3039,7 @@ defmodule Pleroma.Web.AdminAPI.AdminAPIControllerTest do
end

describe "GET /api/pleroma/admin/restart" do
clear_config(:configurable_from_database) do
Config.put(:configurable_from_database, true)
end
setup do: clear_config(:configurable_from_database, true)

test "pleroma restarts", %{conn: conn} do
capture_log(fn ->
@@ -3389,6 +3374,75 @@ defmodule Pleroma.Web.AdminAPI.AdminAPIControllerTest do
end
end

describe "GET /users/:nickname/credentials" do
test "gets the user credentials", %{conn: conn} do
user = insert(:user)
conn = get(conn, "/api/pleroma/admin/users/#{user.nickname}/credentials")

response = assert json_response(conn, 200)
assert response["email"] == user.email
end

test "returns 403 if requested by a non-admin" do
user = insert(:user)

conn =
build_conn()
|> assign(:user, user)
|> get("/api/pleroma/admin/users/#{user.nickname}/credentials")

assert json_response(conn, :forbidden)
end
end

describe "PATCH /users/:nickname/credentials" do
test "changes password and email", %{conn: conn, admin: admin} do
user = insert(:user)
assert user.password_reset_pending == false

conn =
patch(conn, "/api/pleroma/admin/users/#{user.nickname}/credentials", %{
"password" => "new_password",
"email" => "new_email@example.com",
"name" => "new_name"
})

assert json_response(conn, 200) == %{"status" => "success"}

ObanHelpers.perform_all()

updated_user = User.get_by_id(user.id)

assert updated_user.email == "new_email@example.com"
assert updated_user.name == "new_name"
assert updated_user.password_hash != user.password_hash
assert updated_user.password_reset_pending == true

[log_entry2, log_entry1] = ModerationLog |> Repo.all() |> Enum.sort()

assert ModerationLog.get_log_entry_message(log_entry1) ==
"@#{admin.nickname} updated users: @#{user.nickname}"

assert ModerationLog.get_log_entry_message(log_entry2) ==
"@#{admin.nickname} forced password reset for users: @#{user.nickname}"
end

test "returns 403 if requested by a non-admin" do
user = insert(:user)

conn =
build_conn()
|> assign(:user, user)
|> patch("/api/pleroma/admin/users/#{user.nickname}/credentials", %{
"password" => "new_password",
"email" => "new_email@example.com",
"name" => "new_name"
})

assert json_response(conn, :forbidden)
end
end

describe "PATCH /users/:nickname/force_password_reset" do
test "sets password_reset_pending to true", %{conn: conn} do
user = insert(:user)


+ 1
- 1
test/web/chat_channel_test.exs View File

@@ -21,7 +21,7 @@ defmodule Pleroma.Web.ChatChannelTest do
end

describe "message lengths" do
clear_config([:instance, :chat_limit])
setup do: clear_config([:instance, :chat_limit])

test "it ignores messages of length zero", %{socket: socket} do
push(socket, "new_msg", %{"text" => ""})


+ 3
- 3
test/web/common_api/common_api_test.exs View File

@@ -17,9 +17,9 @@ defmodule Pleroma.Web.CommonAPITest do

require Pleroma.Constants

clear_config([:instance, :safe_dm_mentions])
clear_config([:instance, :limit])
clear_config([:instance, :max_pinned_statuses])
setup do: clear_config([:instance, :safe_dm_mentions])
setup do: clear_config([:instance, :limit])
setup do: clear_config([:instance, :max_pinned_statuses])

test "when replying to a conversation / participation, it will set the correct context id even if no explicit reply_to is given" do
user = insert(:user)


+ 4
- 7
test/web/federator_test.exs View File

@@ -21,13 +21,10 @@ defmodule Pleroma.Web.FederatorTest do
:ok
end

clear_config_all([:instance, :federating]) do
Pleroma.Config.put([:instance, :federating], true)
end

clear_config([:instance, :allow_relay])
clear_config([:instance, :rewrite_policy])
clear_config([:mrf_keyword])
setup_all do: clear_config([:instance, :federating], true)
setup do: clear_config([:instance, :allow_relay])
setup do: clear_config([:instance, :rewrite_policy])
setup do: clear_config([:mrf_keyword])

describe "Publish an activity" do
setup do


+ 46
- 16
test/web/feed/tag_controller_test.exs View File

@@ -8,9 +8,11 @@ defmodule Pleroma.Web.Feed.TagControllerTest do
import Pleroma.Factory
import SweetXml

alias Pleroma.Object
alias Pleroma.Web.CommonAPI
alias Pleroma.Web.Feed.FeedView

clear_config([:feed])
setup do: clear_config([:feed])

test "gets a feed (ATOM)", %{conn: conn} do
Pleroma.Config.put(
@@ -19,9 +21,9 @@ defmodule Pleroma.Web.Feed.TagControllerTest do
)

user = insert(:user)
{:ok, activity1} = Pleroma.Web.CommonAPI.post(user, %{"status" => "yeah #PleromaArt"})
{:ok, activity1} = CommonAPI.post(user, %{"status" => "yeah #PleromaArt"})

object = Pleroma.Object.normalize(activity1)
object = Object.normalize(activity1)

object_data =
Map.put(object.data, "attachment", [
@@ -41,14 +43,13 @@ defmodule Pleroma.Web.Feed.TagControllerTest do
|> Ecto.Changeset.change(data: object_data)
|> Pleroma.Repo.update()

{:ok, _activity2} =
Pleroma.Web.CommonAPI.post(user, %{"status" => "42 This is :moominmamma #PleromaArt"})
{:ok, activity2} = CommonAPI.post(user, %{"status" => "42 This is :moominmamma #PleromaArt"})

{:ok, _activity3} = Pleroma.Web.CommonAPI.post(user, %{"status" => "This is :moominmamma"})
{:ok, _activity3} = CommonAPI.post(user, %{"status" => "This is :moominmamma"})

response =
conn
|> put_req_header("content-type", "application/atom+xml")
|> put_req_header("accept", "application/atom+xml")
|> get(tag_feed_path(conn, :feed, "pleromaart.atom"))
|> response(200)

@@ -63,6 +64,21 @@ defmodule Pleroma.Web.Feed.TagControllerTest do

assert xpath(xml, ~x"//feed/entry/author/name/text()"ls) == [user.nickname, user.nickname]
assert xpath(xml, ~x"//feed/entry/author/id/text()"ls) == [user.ap_id, user.ap_id]

conn =
conn
|> put_req_header("accept", "application/atom+xml")
|> get("/tags/pleromaart.atom", %{"max_id" => activity2.id})

assert get_resp_header(conn, "content-type") == ["application/atom+xml; charset=utf-8"]
resp = response(conn, 200)
xml = parse(resp)

assert xpath(xml, ~x"//feed/title/text()") == '#pleromaart'

assert xpath(xml, ~x"//feed/entry/title/text()"l) == [
'yeah #PleromaArt'
]
end

test "gets a feed (RSS)", %{conn: conn} do
@@ -72,9 +88,9 @@ defmodule Pleroma.Web.Feed.TagControllerTest do
)

user = insert(:user)
{:ok, activity1} = Pleroma.Web.CommonAPI.post(user, %{"status" => "yeah #PleromaArt"})
{:ok, activity1} = CommonAPI.post(user, %{"status" => "yeah #PleromaArt"})

object = Pleroma.Object.normalize(activity1)
object = Object.normalize(activity1)

object_data =
Map.put(object.data, "attachment", [
@@ -94,14 +110,13 @@ defmodule Pleroma.Web.Feed.TagControllerTest do
|> Ecto.Changeset.change(data: object_data)
|> Pleroma.Repo.update()

{:ok, activity2} =
Pleroma.Web.CommonAPI.post(user, %{"status" => "42 This is :moominmamma #PleromaArt"})
{:ok, activity2} = CommonAPI.post(user, %{"status" => "42 This is :moominmamma #PleromaArt"})

{:ok, _activity3} = Pleroma.Web.CommonAPI.post(user, %{"status" => "This is :moominmamma"})
{:ok, _activity3} = CommonAPI.post(user, %{"status" => "This is :moominmamma"})

response =
conn
|> put_req_header("content-type", "application/rss+xml")
|> put_req_header("accept", "application/rss+xml")
|> get(tag_feed_path(conn, :feed, "pleromaart.rss"))
|> response(200)

@@ -131,8 +146,8 @@ defmodule Pleroma.Web.Feed.TagControllerTest do
"https://peertube.moe/static/webseed/df5f464b-be8d-46fb-ad81-2d4c2d1630e3-480.mp4"
]

obj1 = Pleroma.Object.normalize(activity1)
obj2 = Pleroma.Object.normalize(activity2)
obj1 = Object.normalize(activity1)
obj2 = Object.normalize(activity2)

assert xpath(xml, ~x"//channel/item/description/text()"sl) == [
HtmlEntities.decode(FeedView.activity_content(obj2)),
@@ -141,7 +156,7 @@ defmodule Pleroma.Web.Feed.TagControllerTest do

response =
conn
|> put_req_header("content-type", "application/atom+xml")
|> put_req_header("accept", "application/rss+xml")
|> get(tag_feed_path(conn, :feed, "pleromaart"))
|> response(200)

@@ -150,5 +165,20 @@ defmodule Pleroma.Web.Feed.TagControllerTest do

assert xpath(xml, ~x"//channel/description/text()"s) ==
"These are public toots tagged with #pleromaart. You can interact with them if you have an account anywhere in the fediverse."

conn =
conn
|> put_req_header("accept", "application/rss+xml")
|> get("/tags/pleromaart.rss", %{"max_id" => activity2.id})

assert get_resp_header(conn, "content-type") == ["application/rss+xml; charset=utf-8"]
resp = response(conn, 200)
xml = parse(resp)

assert xpath(xml, ~x"//channel/title/text()") == '#pleromaart'

assert xpath(xml, ~x"//channel/item/title/text()"l) == [
'yeah #PleromaArt'
]
end
end

+ 84
- 7
test/web/feed/user_controller_test.exs View File

@@ -12,12 +12,10 @@ defmodule Pleroma.Web.Feed.UserControllerTest do
alias Pleroma.Object
alias Pleroma.User

clear_config([:instance, :federating]) do
Config.put([:instance, :federating], true)
end
setup do: clear_config([:instance, :federating], true)

describe "feed" do
clear_config([:feed])
setup do: clear_config([:feed])

test "gets a feed", %{conn: conn} do
Config.put(
@@ -54,12 +52,12 @@ defmodule Pleroma.Web.Feed.UserControllerTest do
}
)

_note_activity2 = insert(:note_activity, note: note2)
note_activity2 = insert(:note_activity, note: note2)
object = Object.normalize(note_activity)

resp =
conn
|> put_req_header("content-type", "application/atom+xml")
|> put_req_header("accept", "application/atom+xml")
|> get(user_feed_path(conn, :feed, user.nickname))
|> response(200)

@@ -70,12 +68,91 @@ defmodule Pleroma.Web.Feed.UserControllerTest do

assert activity_titles == ['42 This...', 'This is...']
assert resp =~ object.data["content"]

resp =
conn
|> put_req_header("accept", "application/atom+xml")
|> get("/users/#{user.nickname}/feed", %{"max_id" => note_activity2.id})
|> response(200)

activity_titles =
resp
|> SweetXml.parse()
|> SweetXml.xpath(~x"//entry/title/text()"l)

assert activity_titles == ['This is...']
end

test "gets a rss feed", %{conn: conn} do
Pleroma.Config.put(
[:feed, :post_title],
%{max_length: 10, omission: "..."}
)

activity = insert(:note_activity)

note =
insert(:note,
data: %{
"content" => "This is :moominmamma: note ",
"attachment" => [
%{
"url" => [
%{"mediaType" => "image/png", "href" => "https://pleroma.gov/image.png"}
]
}
],
"inReplyTo" => activity.data["id"]
}
)

note_activity = insert(:note_activity, note: note)
user = User.get_cached_by_ap_id(note_activity.data["actor"])

note2 =
insert(:note,
user: user,
data: %{
"content" => "42 This is :moominmamma: note ",
"inReplyTo" => activity.data["id"]
}
)

note_activity2 = insert(:note_activity, note: note2)
object = Object.normalize(note_activity)

resp =
conn
|> put_req_header("accept", "application/rss+xml")
|> get("/users/#{user.nickname}/feed.rss")
|> response(200)

activity_titles =
resp
|> SweetXml.parse()
|> SweetXml.xpath(~x"//item/title/text()"l)

assert activity_titles == ['42 This...', 'This is...']
assert resp =~ object.data["content"]

resp =
conn
|> put_req_header("accept", "application/rss+xml")
|> get("/users/#{user.nickname}/feed.rss", %{"max_id" => note_activity2.id})
|> response(200)

activity_titles =
resp
|> SweetXml.parse()
|> SweetXml.xpath(~x"//item/title/text()"l)

assert activity_titles == ['This is...']
end

test "returns 404 for a missing feed", %{conn: conn} do
conn =
conn
|> put_req_header("content-type", "application/atom+xml")
|> put_req_header("accept", "application/atom+xml")
|> get(user_feed_path(conn, :feed, "nonexisting"))

assert response(conn, 404)


+ 1
- 3
test/web/instances/instance_test.exs View File

@@ -10,9 +10,7 @@ defmodule Pleroma.Instances.InstanceTest do

import Pleroma.Factory

clear_config_all([:instance, :federation_reachability_timeout_days]) do
Pleroma.Config.put([:instance, :federation_reachability_timeout_days], 1)
end
setup_all do: clear_config([:instance, :federation_reachability_timeout_days], 1)

describe "set_reachable/1" do
test "clears `unreachable_since` of existing matching Instance record having non-nil `unreachable_since`" do


+ 1
- 3
test/web/instances/instances_test.exs View File

@@ -7,9 +7,7 @@ defmodule Pleroma.InstancesTest do

use Pleroma.DataCase

clear_config_all([:instance, :federation_reachability_timeout_days]) do
Pleroma.Config.put([:instance, :federation_reachability_timeout_days], 1)
end
setup_all do: clear_config([:instance, :federation_reachability_timeout_days], 1)

describe "reachable?/1" do
test "returns `true` for host / url with unknown reachability status" do


+ 1
- 1
test/web/masto_fe_controller_test.exs View File

@@ -10,7 +10,7 @@ defmodule Pleroma.Web.MastodonAPI.MastoFEController do

import Pleroma.Factory

clear_config([:instance, :public])
setup do: clear_config([:instance, :public])

test "put settings", %{conn: conn} do
user = insert(:user)


+ 4
- 3
test/web/mastodon_api/controllers/account_controller/update_credentials_test.exs View File

@@ -9,7 +9,8 @@ defmodule Pleroma.Web.MastodonAPI.MastodonAPIController.UpdateCredentialsTest do
use Pleroma.Web.ConnCase

import Pleroma.Factory
clear_config([:instance, :max_account_fields])

setup do: clear_config([:instance, :max_account_fields])

describe "updating credentials" do
setup do: oauth_access(["write:accounts"])
@@ -75,7 +76,7 @@ defmodule Pleroma.Web.MastodonAPI.MastodonAPIController.UpdateCredentialsTest do

conn =
patch(conn, "/api/v1/accounts/update_credentials", %{
"note" => "I drink #cofe with @#{user2.nickname}"
"note" => "I drink #cofe with @#{user2.nickname}\n\nsuya.."
})

assert user_data = json_response(conn, 200)
@@ -83,7 +84,7 @@ defmodule Pleroma.Web.MastodonAPI.MastodonAPIController.UpdateCredentialsTest do
assert user_data["note"] ==
~s(I drink <a class="hashtag" data-tag="cofe" href="http://localhost:4001/tag/cofe">#cofe</a> with <span class="h-card"><a data-user="#{
user2.id
}" class="u-url mention" href="#{user2.ap_id}" rel="ugc">@<span>#{user2.nickname}</span></a></span>)
}" class="u-url mention" href="#{user2.ap_id}" rel="ugc">@<span>#{user2.nickname}</span></a></span><br/><br/>suya..)
end

test "updates the user's locking status", %{conn: conn} do


+ 196
- 9
test/web/mastodon_api/controllers/account_controller_test.exs View File

@@ -5,6 +5,7 @@
defmodule Pleroma.Web.MastodonAPI.AccountControllerTest do
use Pleroma.Web.ConnCase

alias Pleroma.Config
alias Pleroma.Repo
alias Pleroma.User
alias Pleroma.Web.ActivityPub.ActivityPub
@@ -15,7 +16,7 @@ defmodule Pleroma.Web.MastodonAPI.AccountControllerTest do
import Pleroma.Factory

describe "account fetching" do
clear_config([:instance, :limit_to_local_content])
setup do: clear_config([:instance, :limit_to_local_content])

test "works by id" do
user = insert(:user)
@@ -46,7 +47,7 @@ defmodule Pleroma.Web.MastodonAPI.AccountControllerTest do
end

test "works by nickname for remote users" do
Pleroma.Config.put([:instance, :limit_to_local_content], false)
Config.put([:instance, :limit_to_local_content], false)
user = insert(:user, nickname: "user@example.com", local: false)

conn =
@@ -58,7 +59,7 @@ defmodule Pleroma.Web.MastodonAPI.AccountControllerTest do
end

test "respects limit_to_local_content == :all for remote user nicknames" do
Pleroma.Config.put([:instance, :limit_to_local_content], :all)
Config.put([:instance, :limit_to_local_content], :all)

user = insert(:user, nickname: "user@example.com", local: false)

@@ -70,7 +71,7 @@ defmodule Pleroma.Web.MastodonAPI.AccountControllerTest do
end

test "respects limit_to_local_content == :unauthenticated for remote user nicknames" do
Pleroma.Config.put([:instance, :limit_to_local_content], :unauthenticated)
Config.put([:instance, :limit_to_local_content], :unauthenticated)

user = insert(:user, nickname: "user@example.com", local: false)
reading_user = insert(:user)
@@ -140,6 +141,98 @@ defmodule Pleroma.Web.MastodonAPI.AccountControllerTest do
end
end

defp local_and_remote_users do
local = insert(:user)
remote = insert(:user, local: false)
{:ok, local: local, remote: remote}
end

describe "user fetching with restrict unauthenticated profiles for local and remote" do
setup do: local_and_remote_users()

setup do: clear_config([:restrict_unauthenticated, :profiles, :local], true)

setup do: clear_config([:restrict_unauthenticated, :profiles, :remote], true)

test "if user is unauthenticated", %{conn: conn, local: local, remote: remote} do
res_conn = get(conn, "/api/v1/accounts/#{local.id}")

assert json_response(res_conn, :not_found) == %{
"error" => "Can't find user"
}

res_conn = get(conn, "/api/v1/accounts/#{remote.id}")

assert json_response(res_conn, :not_found) == %{
"error" => "Can't find user"
}
end

test "if user is authenticated", %{local: local, remote: remote} do
%{conn: conn} = oauth_access(["read"])

res_conn = get(conn, "/api/v1/accounts/#{local.id}")
assert %{"id" => _} = json_response(res_conn, 200)

res_conn = get(conn, "/api/v1/accounts/#{remote.id}")
assert %{"id" => _} = json_response(res_conn, 200)
end
end

describe "user fetching with restrict unauthenticated profiles for local" do
setup do: local_and_remote_users()

setup do: clear_config([:restrict_unauthenticated, :profiles, :local], true)

test "if user is unauthenticated", %{conn: conn, local: local, remote: remote} do
res_conn = get(conn, "/api/v1/accounts/#{local.id}")

assert json_response(res_conn, :not_found) == %{
"error" => "Can't find user"
}

res_conn = get(conn, "/api/v1/accounts/#{remote.id}")
assert %{"id" => _} = json_response(res_conn, 200)
end

test "if user is authenticated", %{local: local, remote: remote} do
%{conn: conn} = oauth_access(["read"])

res_conn = get(conn, "/api/v1/accounts/#{local.id}")
assert %{"id" => _} = json_response(res_conn, 200)

res_conn = get(conn, "/api/v1/accounts/#{remote.id}")
assert %{"id" => _} = json_response(res_conn, 200)
end
end

describe "user fetching with restrict unauthenticated profiles for remote" do
setup do: local_and_remote_users()

setup do: clear_config([:restrict_unauthenticated, :profiles, :remote], true)

test "if user is unauthenticated", %{conn: conn, local: local, remote: remote} do
res_conn = get(conn, "/api/v1/accounts/#{local.id}")
assert %{"id" => _} = json_response(res_conn, 200)

res_conn = get(conn, "/api/v1/accounts/#{remote.id}")

assert json_response(res_conn, :not_found) == %{
"error" => "Can't find user"
}
end

test "if user is authenticated", %{local: local, remote: remote} do
%{conn: conn} = oauth_access(["read"])

res_conn = get(conn, "/api/v1/accounts/#{local.id}")
assert %{"id" => _} = json_response(res_conn, 200)

res_conn = get(conn, "/api/v1/accounts/#{remote.id}")
assert %{"id" => _} = json_response(res_conn, 200)
end
end

describe "user timelines" do
setup do: oauth_access(["read:statuses"])

@@ -293,6 +386,102 @@ defmodule Pleroma.Web.MastodonAPI.AccountControllerTest do
end
end

defp local_and_remote_activities(%{local: local, remote: remote}) do
insert(:note_activity, user: local)
insert(:note_activity, user: remote, local: false)

:ok
end

describe "statuses with restrict unauthenticated profiles for local and remote" do
setup do: local_and_remote_users()
setup :local_and_remote_activities

setup do: clear_config([:restrict_unauthenticated, :profiles, :local], true)

setup do: clear_config([:restrict_unauthenticated, :profiles, :remote], true)

test "if user is unauthenticated", %{conn: conn, local: local, remote: remote} do
res_conn = get(conn, "/api/v1/accounts/#{local.id}/statuses")

assert json_response(res_conn, :not_found) == %{
"error" => "Can't find user"
}

res_conn = get(conn, "/api/v1/accounts/#{remote.id}/statuses")

assert json_response(res_conn, :not_found) == %{
"error" => "Can't find user"
}
end

test "if user is authenticated", %{local: local, remote: remote} do
%{conn: conn} = oauth_access(["read"])

res_conn = get(conn, "/api/v1/accounts/#{local.id}/statuses")
assert length(json_response(res_conn, 200)) == 1

res_conn = get(conn, "/api/v1/accounts/#{remote.id}/statuses")
assert length(json_response(res_conn, 200)) == 1
end
end

describe "statuses with restrict unauthenticated profiles for local" do
setup do: local_and_remote_users()
setup :local_and_remote_activities

setup do: clear_config([:restrict_unauthenticated, :profiles, :local], true)

test "if user is unauthenticated", %{conn: conn, local: local, remote: remote} do
res_conn = get(conn, "/api/v1/accounts/#{local.id}/statuses")

assert json_response(res_conn, :not_found) == %{
"error" => "Can't find user"
}

res_conn = get(conn, "/api/v1/accounts/#{remote.id}/statuses")
assert length(json_response(res_conn, 200)) == 1
end

test "if user is authenticated", %{local: local, remote: remote} do
%{conn: conn} = oauth_access(["read"])

res_conn = get(conn, "/api/v1/accounts/#{local.id}/statuses")
assert length(json_response(res_conn, 200)) == 1

res_conn = get(conn, "/api/v1/accounts/#{remote.id}/statuses")
assert length(json_response(res_conn, 200)) == 1
end
end

describe "statuses with restrict unauthenticated profiles for remote" do
setup do: local_and_remote_users()
setup :local_and_remote_activities

setup do: clear_config([:restrict_unauthenticated, :profiles, :remote], true)

test "if user is unauthenticated", %{conn: conn, local: local, remote: remote} do
res_conn = get(conn, "/api/v1/accounts/#{local.id}/statuses")
assert length(json_response(res_conn, 200)) == 1

res_conn = get(conn, "/api/v1/accounts/#{remote.id}/statuses")

assert json_response(res_conn, :not_found) == %{
"error" => "Can't find user"
}
end

test "if user is authenticated", %{local: local, remote: remote} do
%{conn: conn} = oauth_access(["read"])

res_conn = get(conn, "/api/v1/accounts/#{local.id}/statuses")
assert length(json_response(res_conn, 200)) == 1

res_conn = get(conn, "/api/v1/accounts/#{remote.id}/statuses")
assert length(json_response(res_conn, 200)) == 1
end
end

describe "followers" do
setup do: oauth_access(["read:accounts"])

@@ -601,7 +790,7 @@ defmodule Pleroma.Web.MastodonAPI.AccountControllerTest do
[valid_params: valid_params]
end

clear_config([:instance, :account_activation_required])
setup do: clear_config([:instance, :account_activation_required])

test "Account registration via Application", %{conn: conn} do
conn =
@@ -699,7 +888,7 @@ defmodule Pleroma.Web.MastodonAPI.AccountControllerTest do
end)
end

clear_config([:instance, :account_activation_required])
setup do: clear_config([:instance, :account_activation_required])

test "returns bad_request if missing email params when :account_activation_required is enabled",
%{conn: conn, valid_params: valid_params} do
@@ -756,9 +945,7 @@ defmodule Pleroma.Web.MastodonAPI.AccountControllerTest do
end

describe "create account by app / rate limit" do
clear_config([:rate_limit, :app_account_creation]) do
Pleroma.Config.put([:rate_limit, :app_account_creation], {10_000, 2})
end
setup do: clear_config([:rate_limit, :app_account_creation], {10_000, 2})

test "respects rate limit setting", %{conn: conn} do
app_token = insert(:oauth_token, user: nil)


+ 2
- 2
test/web/mastodon_api/controllers/media_controller_test.exs View File

@@ -22,8 +22,8 @@ defmodule Pleroma.Web.MastodonAPI.MediaControllerTest do
[image: image]
end

clear_config([:media_proxy])
clear_config([Pleroma.Upload])
setup do: clear_config([:media_proxy])
setup do: clear_config([Pleroma.Upload])

test "returns uploaded image", %{conn: conn, image: image} do
desc = "Description of the image"


+ 47
- 6
test/web/mastodon_api/controllers/notification_controller_test.exs View File

@@ -304,6 +304,51 @@ defmodule Pleroma.Web.MastodonAPI.NotificationControllerTest do
assert [%{"id" => ^reblog_notification_id}] = json_response(conn_res, 200)
end

test "filters notifications using include_types" do
%{user: user, conn: conn} = oauth_access(["read:notifications"])
other_user = insert(:user)

{:ok, mention_activity} = CommonAPI.post(other_user, %{"status" => "hey @#{user.nickname}"})
{:ok, create_activity} = CommonAPI.post(user, %{"status" => "hey"})
{:ok, favorite_activity, _} = CommonAPI.favorite(create_activity.id, other_user)
{:ok, reblog_activity, _} = CommonAPI.repeat(create_activity.id, other_user)
{:ok, _, _, follow_activity} = CommonAPI.follow(other_user, user)

mention_notification_id = get_notification_id_by_activity(mention_activity)
favorite_notification_id = get_notification_id_by_activity(favorite_activity)
reblog_notification_id = get_notification_id_by_activity(reblog_activity)
follow_notification_id = get_notification_id_by_activity(follow_activity)

conn_res = get(conn, "/api/v1/notifications", %{include_types: ["follow"]})

assert [%{"id" => ^follow_notification_id}] = json_response(conn_res, 200)

conn_res = get(conn, "/api/v1/notifications", %{include_types: ["mention"]})

assert [%{"id" => ^mention_notification_id}] = json_response(conn_res, 200)

conn_res = get(conn, "/api/v1/notifications", %{include_types: ["favourite"]})

assert [%{"id" => ^favorite_notification_id}] = json_response(conn_res, 200)

conn_res = get(conn, "/api/v1/notifications", %{include_types: ["reblog"]})

assert [%{"id" => ^reblog_notification_id}] = json_response(conn_res, 200)

result = conn |> get("/api/v1/notifications") |> json_response(200)

assert length(result) == 4

result =
conn
|> get("/api/v1/notifications", %{
include_types: ["follow", "mention", "favourite", "reblog"]
})
|> json_response(200)

assert length(result) == 4
end

test "destroy multiple" do
%{user: user, conn: conn} = oauth_access(["read:notifications", "write:notifications"])
other_user = insert(:user)
@@ -407,7 +452,7 @@ defmodule Pleroma.Web.MastodonAPI.NotificationControllerTest do
assert length(json_response(conn, 200)) == 1
end

test "see move notifications with `with_move` parameter" do
test "see move notifications" do
old_user = insert(:user)
new_user = insert(:user, also_known_as: [old_user.ap_id])
%{user: follower, conn: conn} = oauth_access(["read:notifications"])
@@ -416,11 +461,7 @@ defmodule Pleroma.Web.MastodonAPI.NotificationControllerTest do
Pleroma.Web.ActivityPub.ActivityPub.move(old_user, new_user)
Pleroma.Tests.ObanHelpers.perform_all()

ret_conn = get(conn, "/api/v1/notifications")

assert json_response(ret_conn, 200) == []

conn = get(conn, "/api/v1/notifications", %{"with_move" => "true"})
conn = get(conn, "/api/v1/notifications")

assert length(json_response(conn, 200)) == 1
end


+ 1
- 1
test/web/mastodon_api/controllers/scheduled_activity_controller_test.exs View File

@@ -11,7 +11,7 @@ defmodule Pleroma.Web.MastodonAPI.ScheduledActivityControllerTest do
import Pleroma.Factory
import Ecto.Query

clear_config([ScheduledActivity, :enabled])
setup do: clear_config([ScheduledActivity, :enabled])

test "shows scheduled activities" do
%{user: user, conn: conn} = oauth_access(["read:statuses"])


+ 157
- 6
test/web/mastodon_api/controllers/status_controller_test.exs View File

@@ -19,9 +19,9 @@ defmodule Pleroma.Web.MastodonAPI.StatusControllerTest do

import Pleroma.Factory

clear_config([:instance, :federating])
clear_config([:instance, :allow_relay])
clear_config([:rich_media, :enabled])
setup do: clear_config([:instance, :federating])
setup do: clear_config([:instance, :allow_relay])
setup do: clear_config([:rich_media, :enabled])

describe "posting statuses" do
setup do: oauth_access(["write:statuses"])
@@ -476,6 +476,95 @@ defmodule Pleroma.Web.MastodonAPI.StatusControllerTest do
assert id == to_string(activity.id)
end

defp local_and_remote_activities do
local = insert(:note_activity)
remote = insert(:note_activity, local: false)
{:ok, local: local, remote: remote}
end

describe "status with restrict unauthenticated activities for local and remote" do
setup do: local_and_remote_activities()

setup do: clear_config([:restrict_unauthenticated, :activities, :local], true)

setup do: clear_config([:restrict_unauthenticated, :activities, :remote], true)

test "if user is unauthenticated", %{conn: conn, local: local, remote: remote} do
res_conn = get(conn, "/api/v1/statuses/#{local.id}")

assert json_response(res_conn, :not_found) == %{
"error" => "Record not found"
}

res_conn = get(conn, "/api/v1/statuses/#{remote.id}")

assert json_response(res_conn, :not_found) == %{
"error" => "Record not found"
}
end

test "if user is authenticated", %{local: local, remote: remote} do
%{conn: conn} = oauth_access(["read"])
res_conn = get(conn, "/api/v1/statuses/#{local.id}")
assert %{"id" => _} = json_response(res_conn, 200)

res_conn = get(conn, "/api/v1/statuses/#{remote.id}")
assert %{"id" => _} = json_response(res_conn, 200)
end
end

describe "status with restrict unauthenticated activities for local" do
setup do: local_and_remote_activities()

setup do: clear_config([:restrict_unauthenticated, :activities, :local], true)

test "if user is unauthenticated", %{conn: conn, local: local, remote: remote} do
res_conn = get(conn, "/api/v1/statuses/#{local.id}")

assert json_response(res_conn, :not_found) == %{
"error" => "Record not found"
}

res_conn = get(conn, "/api/v1/statuses/#{remote.id}")
assert %{"id" => _} = json_response(res_conn, 200)
end

test "if user is authenticated", %{local: local, remote: remote} do
%{conn: conn} = oauth_access(["read"])
res_conn = get(conn, "/api/v1/statuses/#{local.id}")
assert %{"id" => _} = json_response(res_conn, 200)

res_conn = get(conn, "/api/v1/statuses/#{remote.id}")
assert %{"id" => _} = json_response(res_conn, 200)
end
end

describe "status with restrict unauthenticated activities for remote" do
setup do: local_and_remote_activities()

setup do: clear_config([:restrict_unauthenticated, :activities, :remote], true)

test "if user is unauthenticated", %{conn: conn, local: local, remote: remote} do
res_conn = get(conn, "/api/v1/statuses/#{local.id}")
assert %{"id" => _} = json_response(res_conn, 200)

res_conn = get(conn, "/api/v1/statuses/#{remote.id}")

assert json_response(res_conn, :not_found) == %{
"error" => "Record not found"
}
end

test "if user is authenticated", %{local: local, remote: remote} do
%{conn: conn} = oauth_access(["read"])
res_conn = get(conn, "/api/v1/statuses/#{local.id}")
assert %{"id" => _} = json_response(res_conn, 200)

res_conn = get(conn, "/api/v1/statuses/#{remote.id}")
assert %{"id" => _} = json_response(res_conn, 200)
end
end

test "getting a status that doesn't exist returns 404" do
%{conn: conn} = oauth_access(["read:statuses"])
activity = insert(:note_activity)
@@ -514,6 +603,70 @@ defmodule Pleroma.Web.MastodonAPI.StatusControllerTest do
assert [%{"id" => ^id1}, %{"id" => ^id2}] = Enum.sort_by(json_response(conn, :ok), & &1["id"])
end

describe "getting statuses by ids with restricted unauthenticated for local and remote" do
setup do: local_and_remote_activities()

setup do: clear_config([:restrict_unauthenticated, :activities, :local], true)

setup do: clear_config([:restrict_unauthenticated, :activities, :remote], true)

test "if user is unauthenticated", %{conn: conn, local: local, remote: remote} do
res_conn = get(conn, "/api/v1/statuses", %{ids: [local.id, remote.id]})

assert json_response(res_conn, 200) == []
end

test "if user is authenticated", %{local: local, remote: remote} do
%{conn: conn} = oauth_access(["read"])

res_conn = get(conn, "/api/v1/statuses", %{ids: [local.id, remote.id]})

assert length(json_response(res_conn, 200)) == 2
end
end

describe "getting statuses by ids with restricted unauthenticated for local" do
setup do: local_and_remote_activities()

setup do: clear_config([:restrict_unauthenticated, :activities, :local], true)

test "if user is unauthenticated", %{conn: conn, local: local, remote: remote} do
res_conn = get(conn, "/api/v1/statuses", %{ids: [local.id, remote.id]})

remote_id = remote.id
assert [%{"id" => ^remote_id}] = json_response(res_conn, 200)
end

test "if user is authenticated", %{local: local, remote: remote} do
%{conn: conn} = oauth_access(["read"])

res_conn = get(conn, "/api/v1/statuses", %{ids: [local.id, remote.id]})

assert length(json_response(res_conn, 200)) == 2
end
end

describe "getting statuses by ids with restricted unauthenticated for remote" do
setup do: local_and_remote_activities()

setup do: clear_config([:restrict_unauthenticated, :activities, :remote], true)

test "if user is unauthenticated", %{conn: conn, local: local, remote: remote} do
res_conn = get(conn, "/api/v1/statuses", %{ids: [local.id, remote.id]})

local_id = local.id
assert [%{"id" => ^local_id}] = json_response(res_conn, 200)
end

test "if user is authenticated", %{local: local, remote: remote} do
%{conn: conn} = oauth_access(["read"])

res_conn = get(conn, "/api/v1/statuses", %{ids: [local.id, remote.id]})

assert length(json_response(res_conn, 200)) == 2
end
end

describe "deleting a status" do
test "when you created it" do
%{user: author, conn: conn} = oauth_access(["write:statuses"])
@@ -739,9 +892,7 @@ defmodule Pleroma.Web.MastodonAPI.StatusControllerTest do
%{activity: activity}
end

clear_config([:instance, :max_pinned_statuses]) do
Config.put([:instance, :max_pinned_statuses], 1)
end
setup do: clear_config([:instance, :max_pinned_statuses], 1)

test "pin status", %{conn: conn, user: user, activity: activity} do
id_str = to_string(activity.id)


+ 92
- 11
test/web/mastodon_api/controllers/timeline_controller_test.exs View File

@@ -12,8 +12,6 @@ defmodule Pleroma.Web.MastodonAPI.TimelineControllerTest do
alias Pleroma.User
alias Pleroma.Web.CommonAPI

clear_config([:instance, :public])

setup do
mock(fn env -> apply(HttpRequestMock, :request, [env]) end)
:ok
@@ -80,15 +78,6 @@ defmodule Pleroma.Web.MastodonAPI.TimelineControllerTest do
assert [%{"content" => "test"}] = json_response(conn, :ok)
end

test "the public timeline when public is set to false", %{conn: conn} do
Config.put([:instance, :public], false)

assert %{"error" => "This resource requires authentication."} ==
conn
|> get("/api/v1/timelines/public", %{"local" => "False"})
|> json_response(:forbidden)
end

test "the public timeline includes only public statuses for an authenticated user" do
%{user: user, conn: conn} = oauth_access(["read:statuses"])

@@ -102,6 +91,98 @@ defmodule Pleroma.Web.MastodonAPI.TimelineControllerTest do
end
end

defp local_and_remote_activities do
insert(:note_activity)
insert(:note_activity, local: false)
:ok
end

describe "public with restrict unauthenticated timeline for local and federated timelines" do
setup do: local_and_remote_activities()

setup do: clear_config([:restrict_unauthenticated, :timelines, :local], true)

setup do: clear_config([:restrict_unauthenticated, :timelines, :federated], true)

test "if user is unauthenticated", %{conn: conn} do
res_conn = get(conn, "/api/v1/timelines/public", %{"local" => "true"})

assert json_response(res_conn, :unauthorized) == %{
"error" => "authorization required for timeline view"
}

res_conn = get(conn, "/api/v1/timelines/public", %{"local" => "false"})

assert json_response(res_conn, :unauthorized) == %{
"error" => "authorization required for timeline view"
}
end

test "if user is authenticated" do
%{conn: conn} = oauth_access(["read:statuses"])

res_conn = get(conn, "/api/v1/timelines/public", %{"local" => "true"})
assert length(json_response(res_conn, 200)) == 1

res_conn = get(conn, "/api/v1/timelines/public", %{"local" => "false"})
assert length(json_response(res_conn, 200)) == 2
end
end

describe "public with restrict unauthenticated timeline for local" do
setup do: local_and_remote_activities()

setup do: clear_config([:restrict_unauthenticated, :timelines, :local], true)

test "if user is unauthenticated", %{conn: conn} do
res_conn = get(conn, "/api/v1/timelines/public", %{"local" => "true"})

assert json_response(res_conn, :unauthorized) == %{
"error" => "authorization required for timeline view"
}

res_conn = get(conn, "/api/v1/timelines/public", %{"local" => "false"})
assert length(json_response(res_conn, 200)) == 2
end

test "if user is authenticated", %{conn: _conn} do
%{conn: conn} = oauth_access(["read:statuses"])

res_conn = get(conn, "/api/v1/timelines/public", %{"local" => "true"})
assert length(json_response(res_conn, 200)) == 1

res_conn = get(conn, "/api/v1/timelines/public", %{"local" => "false"})
assert length(json_response(res_conn, 200)) == 2
end
end

describe "public with restrict unauthenticated timeline for remote" do
setup do: local_and_remote_activities()

setup do: clear_config([:restrict_unauthenticated, :timelines, :federated], true)

test "if user is unauthenticated", %{conn: conn} do
res_conn = get(conn, "/api/v1/timelines/public", %{"local" => "true"})
assert length(json_response(res_conn, 200)) == 1

res_conn = get(conn, "/api/v1/timelines/public", %{"local" => "false"})

assert json_response(res_conn, :unauthorized) == %{
"error" => "authorization required for timeline view"
}
end

test "if user is authenticated", %{conn: _conn} do
%{conn: conn} = oauth_access(["read:statuses"])

res_conn = get(conn, "/api/v1/timelines/public", %{"local" => "true"})
assert length(json_response(res_conn, 200)) == 1

res_conn = get(conn, "/api/v1/timelines/public", %{"local" => "false"})
assert length(json_response(res_conn, 200)) == 2
end
end

describe "direct" do
test "direct timeline", %{conn: conn} do
user_one = insert(:user)


+ 4
- 3
test/web/mastodon_api/views/account_view_test.exs View File

@@ -32,7 +32,8 @@ defmodule Pleroma.Web.MastodonAPI.AccountViewTest do
background: background_image,
nickname: "shp@shitposter.club",
name: ":karjalanpiirakka: shp",
bio: "<script src=\"invalid-html\"></script><span>valid html</span>",
bio:
"<script src=\"invalid-html\"></script><span>valid html</span>. a<br>b<br/>c<br >d<br />f",
inserted_at: ~N[2017-08-15 15:47:06.597036]
})

@@ -46,7 +47,7 @@ defmodule Pleroma.Web.MastodonAPI.AccountViewTest do
followers_count: 3,
following_count: 0,
statuses_count: 5,
note: "<span>valid html</span>",
note: "<span>valid html</span>. a<br/>b<br/>c<br/>d<br/>f",
url: user.ap_id,
avatar: "http://localhost:4001/images/avi.png",
avatar_static: "http://localhost:4001/images/avi.png",
@@ -63,7 +64,7 @@ defmodule Pleroma.Web.MastodonAPI.AccountViewTest do
fields: [],
bot: false,
source: %{
note: "valid html",
note: "valid html. a\nb\nc\nd\nf",
sensitive: false,
pleroma: %{
actor_type: "Person",


+ 1
- 1
test/web/mastodon_api/views/notification_view_test.exs View File

@@ -120,7 +120,7 @@ defmodule Pleroma.Web.MastodonAPI.NotificationViewTest do
old_user = refresh_record(old_user)
new_user = refresh_record(new_user)

[notification] = Notification.for_user(follower, %{with_move: true})
[notification] = Notification.for_user(follower)

expected = %{
id: to_string(notification.id),


Some files were not shown because too many files changed in this diff

Write Preview
Loading…
Cancel
Save