1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2021 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
5 defmodule Pleroma.Web.MastodonAPI.NotificationControllerTest do
6 use Pleroma.Web.ConnCase
8 alias Pleroma.Notification
11 alias Pleroma.Web.CommonAPI
13 import Pleroma.Factory
15 test "does NOT render account/pleroma/relationship by default" do
16 %{user: user, conn: conn} = oauth_access(["read:notifications"])
17 other_user = insert(:user)
19 {:ok, activity} = CommonAPI.post(other_user, %{status: "hi @#{user.nickname}"})
20 {:ok, [_notification]} = Notification.create_notifications(activity)
24 |> assign(:user, user)
25 |> get("/api/v1/notifications")
26 |> json_response_and_validate_schema(200)
28 assert Enum.all?(response, fn n ->
29 get_in(n, ["account", "pleroma", "relationship"]) == %{}
33 test "list of notifications" do
34 %{user: user, conn: conn} = oauth_access(["read:notifications"])
35 other_user = insert(:user)
37 {:ok, activity} = CommonAPI.post(other_user, %{status: "hi @#{user.nickname}"})
39 {:ok, [_notification]} = Notification.create_notifications(activity)
43 |> assign(:user, user)
44 |> get("/api/v1/notifications")
47 "hi <span class=\"h-card\"><a class=\"u-url mention\" data-user=\"#{user.id}\" href=\"#{user.ap_id}\" rel=\"ugc\">@<span>#{user.nickname}</span></a></span>"
49 assert [%{"status" => %{"content" => response}} | _rest] =
50 json_response_and_validate_schema(conn, 200)
52 assert response == expected_response
55 test "by default, does not contain pleroma:chat_mention" do
56 %{user: user, conn: conn} = oauth_access(["read:notifications"])
57 other_user = insert(:user)
59 {:ok, _activity} = CommonAPI.post_chat_message(other_user, user, "hey")
63 |> get("/api/v1/notifications")
64 |> json_response_and_validate_schema(200)
70 |> get("/api/v1/notifications?include_types[]=pleroma:chat_mention")
71 |> json_response_and_validate_schema(200)
76 test "by default, does not contain pleroma:report" do
77 %{user: user, conn: conn} = oauth_access(["read:notifications"])
78 other_user = insert(:user)
79 third_user = insert(:user)
82 |> User.admin_api_update(%{is_moderator: true})
84 {:ok, activity} = CommonAPI.post(other_user, %{status: "hey"})
87 CommonAPI.report(third_user, %{account_id: other_user.id, status_ids: [activity.id]})
91 |> get("/api/v1/notifications")
92 |> json_response_and_validate_schema(200)
98 |> get("/api/v1/notifications?include_types[]=pleroma:report")
99 |> json_response_and_validate_schema(200)
104 test "excludes mentions from blockers when blockers_visible is false" do
105 clear_config([:activitypub, :blockers_visible], false)
107 %{user: user, conn: conn} = oauth_access(["read:notifications"])
108 blocker = insert(:user)
110 {:ok, _} = CommonAPI.block(blocker, user)
111 {:ok, activity} = CommonAPI.post(blocker, %{status: "hi @#{user.nickname}"})
113 {:ok, [_notification]} = Notification.create_notifications(activity)
117 |> assign(:user, user)
118 |> get("/api/v1/notifications")
120 assert [] == json_response_and_validate_schema(conn, 200)
123 test "getting a single notification" do
124 %{user: user, conn: conn} = oauth_access(["read:notifications"])
125 other_user = insert(:user)
127 {:ok, activity} = CommonAPI.post(other_user, %{status: "hi @#{user.nickname}"})
129 {:ok, [notification]} = Notification.create_notifications(activity)
131 conn = get(conn, "/api/v1/notifications/#{notification.id}")
134 "hi <span class=\"h-card\"><a class=\"u-url mention\" data-user=\"#{user.id}\" href=\"#{user.ap_id}\" rel=\"ugc\">@<span>#{user.nickname}</span></a></span>"
136 assert %{"status" => %{"content" => response}} = json_response_and_validate_schema(conn, 200)
137 assert response == expected_response
140 test "dismissing a single notification" do
141 %{user: user, conn: conn} = oauth_access(["write:notifications"])
142 other_user = insert(:user)
144 {:ok, activity} = CommonAPI.post(other_user, %{status: "hi @#{user.nickname}"})
146 {:ok, [notification]} = Notification.create_notifications(activity)
150 |> assign(:user, user)
151 |> post("/api/v1/notifications/#{notification.id}/dismiss")
153 assert %{} = json_response_and_validate_schema(conn, 200)
156 test "clearing all notifications" do
157 %{user: user, conn: conn} = oauth_access(["write:notifications", "read:notifications"])
158 other_user = insert(:user)
160 {:ok, activity} = CommonAPI.post(other_user, %{status: "hi @#{user.nickname}"})
162 {:ok, [_notification]} = Notification.create_notifications(activity)
164 ret_conn = post(conn, "/api/v1/notifications/clear")
166 assert %{} = json_response_and_validate_schema(ret_conn, 200)
168 ret_conn = get(conn, "/api/v1/notifications")
170 assert all = json_response_and_validate_schema(ret_conn, 200)
174 test "paginates notifications using min_id, since_id, max_id, and limit" do
175 %{user: user, conn: conn} = oauth_access(["read:notifications"])
176 other_user = insert(:user)
178 {:ok, activity1} = CommonAPI.post(other_user, %{status: "hi @#{user.nickname}"})
179 {:ok, activity2} = CommonAPI.post(other_user, %{status: "hi @#{user.nickname}"})
180 {:ok, activity3} = CommonAPI.post(other_user, %{status: "hi @#{user.nickname}"})
181 {:ok, activity4} = CommonAPI.post(other_user, %{status: "hi @#{user.nickname}"})
183 notification1_id = get_notification_id_by_activity(activity1)
184 notification2_id = get_notification_id_by_activity(activity2)
185 notification3_id = get_notification_id_by_activity(activity3)
186 notification4_id = get_notification_id_by_activity(activity4)
188 conn = assign(conn, :user, user)
193 |> get("/api/v1/notifications?limit=2&min_id=#{notification1_id}")
194 |> json_response_and_validate_schema(:ok)
196 assert [%{"id" => ^notification3_id}, %{"id" => ^notification2_id}] = result
201 |> get("/api/v1/notifications?limit=2&since_id=#{notification1_id}")
202 |> json_response_and_validate_schema(:ok)
204 assert [%{"id" => ^notification4_id}, %{"id" => ^notification3_id}] = result
209 |> get("/api/v1/notifications?limit=2&max_id=#{notification4_id}")
210 |> json_response_and_validate_schema(:ok)
212 assert [%{"id" => ^notification3_id}, %{"id" => ^notification2_id}] = result
215 describe "exclude_visibilities" do
216 test "filters notifications for mentions" do
217 %{user: user, conn: conn} = oauth_access(["read:notifications"])
218 other_user = insert(:user)
220 {:ok, public_activity} =
221 CommonAPI.post(other_user, %{status: "@#{user.nickname}", visibility: "public"})
223 {:ok, direct_activity} =
224 CommonAPI.post(other_user, %{status: "@#{user.nickname}", visibility: "direct"})
226 {:ok, unlisted_activity} =
227 CommonAPI.post(other_user, %{status: "@#{user.nickname}", visibility: "unlisted"})
229 {:ok, private_activity} =
230 CommonAPI.post(other_user, %{status: "@#{user.nickname}", visibility: "private"})
232 query = params_to_query(%{exclude_visibilities: ["public", "unlisted", "private"]})
233 conn_res = get(conn, "/api/v1/notifications?" <> query)
235 assert [%{"status" => %{"id" => id}}] = json_response_and_validate_schema(conn_res, 200)
236 assert id == direct_activity.id
238 query = params_to_query(%{exclude_visibilities: ["public", "unlisted", "direct"]})
239 conn_res = get(conn, "/api/v1/notifications?" <> query)
241 assert [%{"status" => %{"id" => id}}] = json_response_and_validate_schema(conn_res, 200)
242 assert id == private_activity.id
244 query = params_to_query(%{exclude_visibilities: ["public", "private", "direct"]})
245 conn_res = get(conn, "/api/v1/notifications?" <> query)
247 assert [%{"status" => %{"id" => id}}] = json_response_and_validate_schema(conn_res, 200)
248 assert id == unlisted_activity.id
250 query = params_to_query(%{exclude_visibilities: ["unlisted", "private", "direct"]})
251 conn_res = get(conn, "/api/v1/notifications?" <> query)
253 assert [%{"status" => %{"id" => id}}] = json_response_and_validate_schema(conn_res, 200)
254 assert id == public_activity.id
257 test "filters notifications for Like activities" do
259 %{user: other_user, conn: conn} = oauth_access(["read:notifications"])
261 {:ok, public_activity} = CommonAPI.post(other_user, %{status: ".", visibility: "public"})
263 {:ok, direct_activity} =
264 CommonAPI.post(other_user, %{status: "@#{user.nickname}", visibility: "direct"})
266 {:ok, unlisted_activity} =
267 CommonAPI.post(other_user, %{status: ".", visibility: "unlisted"})
269 {:ok, private_activity} = CommonAPI.post(other_user, %{status: ".", visibility: "private"})
271 {:ok, _} = CommonAPI.favorite(user, public_activity.id)
272 {:ok, _} = CommonAPI.favorite(user, direct_activity.id)
273 {:ok, _} = CommonAPI.favorite(user, unlisted_activity.id)
274 {:ok, _} = CommonAPI.favorite(user, private_activity.id)
278 |> get("/api/v1/notifications?exclude_visibilities[]=direct")
279 |> json_response_and_validate_schema(200)
280 |> Enum.map(& &1["status"]["id"])
282 assert public_activity.id in activity_ids
283 assert unlisted_activity.id in activity_ids
284 assert private_activity.id in activity_ids
285 refute direct_activity.id in activity_ids
289 |> get("/api/v1/notifications?exclude_visibilities[]=unlisted")
290 |> json_response_and_validate_schema(200)
291 |> Enum.map(& &1["status"]["id"])
293 assert public_activity.id in activity_ids
294 refute unlisted_activity.id in activity_ids
295 assert private_activity.id in activity_ids
296 assert direct_activity.id in activity_ids
300 |> get("/api/v1/notifications?exclude_visibilities[]=private")
301 |> json_response_and_validate_schema(200)
302 |> Enum.map(& &1["status"]["id"])
304 assert public_activity.id in activity_ids
305 assert unlisted_activity.id in activity_ids
306 refute private_activity.id in activity_ids
307 assert direct_activity.id in activity_ids
311 |> get("/api/v1/notifications?exclude_visibilities[]=public")
312 |> json_response_and_validate_schema(200)
313 |> Enum.map(& &1["status"]["id"])
315 refute public_activity.id in activity_ids
316 assert unlisted_activity.id in activity_ids
317 assert private_activity.id in activity_ids
318 assert direct_activity.id in activity_ids
321 test "filters notifications for Announce activities" do
323 %{user: other_user, conn: conn} = oauth_access(["read:notifications"])
325 {:ok, public_activity} = CommonAPI.post(other_user, %{status: ".", visibility: "public"})
327 {:ok, unlisted_activity} =
328 CommonAPI.post(other_user, %{status: ".", visibility: "unlisted"})
330 {:ok, _} = CommonAPI.repeat(public_activity.id, user)
331 {:ok, _} = CommonAPI.repeat(unlisted_activity.id, user)
335 |> get("/api/v1/notifications?exclude_visibilities[]=unlisted")
336 |> json_response_and_validate_schema(200)
337 |> Enum.map(& &1["status"]["id"])
339 assert public_activity.id in activity_ids
340 refute unlisted_activity.id in activity_ids
343 test "doesn't return less than the requested amount of records when the user's reply is liked" do
345 %{user: other_user, conn: conn} = oauth_access(["read:notifications"])
348 CommonAPI.post(user, %{status: "@#{other_user.nickname}", visibility: "public"})
350 {:ok, activity} = CommonAPI.post(user, %{status: ".", visibility: "public"})
353 CommonAPI.post(other_user, %{
355 visibility: "public",
356 in_reply_to_status_id: activity.id
359 {:ok, _favorite} = CommonAPI.favorite(user, reply.id)
363 |> get("/api/v1/notifications?exclude_visibilities[]=direct&limit=2")
364 |> json_response_and_validate_schema(200)
365 |> Enum.map(& &1["status"]["id"])
367 assert [reply.id, mention.id] == activity_ids
371 test "filters notifications using exclude_types" do
372 %{user: user, conn: conn} = oauth_access(["read:notifications"])
373 other_user = insert(:user)
375 {:ok, mention_activity} = CommonAPI.post(other_user, %{status: "hey @#{user.nickname}"})
376 {:ok, create_activity} = CommonAPI.post(user, %{status: "hey"})
377 {:ok, favorite_activity} = CommonAPI.favorite(other_user, create_activity.id)
378 {:ok, reblog_activity} = CommonAPI.repeat(create_activity.id, other_user)
379 {:ok, _, _, follow_activity} = CommonAPI.follow(other_user, user)
381 mention_notification_id = get_notification_id_by_activity(mention_activity)
382 favorite_notification_id = get_notification_id_by_activity(favorite_activity)
383 reblog_notification_id = get_notification_id_by_activity(reblog_activity)
384 follow_notification_id = get_notification_id_by_activity(follow_activity)
386 query = params_to_query(%{exclude_types: ["mention", "favourite", "reblog"]})
387 conn_res = get(conn, "/api/v1/notifications?" <> query)
389 assert [%{"id" => ^follow_notification_id}] = json_response_and_validate_schema(conn_res, 200)
391 query = params_to_query(%{exclude_types: ["favourite", "reblog", "follow"]})
392 conn_res = get(conn, "/api/v1/notifications?" <> query)
394 assert [%{"id" => ^mention_notification_id}] =
395 json_response_and_validate_schema(conn_res, 200)
397 query = params_to_query(%{exclude_types: ["reblog", "follow", "mention"]})
398 conn_res = get(conn, "/api/v1/notifications?" <> query)
400 assert [%{"id" => ^favorite_notification_id}] =
401 json_response_and_validate_schema(conn_res, 200)
403 query = params_to_query(%{exclude_types: ["follow", "mention", "favourite"]})
404 conn_res = get(conn, "/api/v1/notifications?" <> query)
406 assert [%{"id" => ^reblog_notification_id}] = json_response_and_validate_schema(conn_res, 200)
409 test "filters notifications using include_types" do
410 %{user: user, conn: conn} = oauth_access(["read:notifications"])
411 other_user = insert(:user)
413 {:ok, mention_activity} = CommonAPI.post(other_user, %{status: "hey @#{user.nickname}"})
414 {:ok, create_activity} = CommonAPI.post(user, %{status: "hey"})
415 {:ok, favorite_activity} = CommonAPI.favorite(other_user, create_activity.id)
416 {:ok, reblog_activity} = CommonAPI.repeat(create_activity.id, other_user)
417 {:ok, _, _, follow_activity} = CommonAPI.follow(other_user, user)
419 mention_notification_id = get_notification_id_by_activity(mention_activity)
420 favorite_notification_id = get_notification_id_by_activity(favorite_activity)
421 reblog_notification_id = get_notification_id_by_activity(reblog_activity)
422 follow_notification_id = get_notification_id_by_activity(follow_activity)
424 conn_res = get(conn, "/api/v1/notifications?include_types[]=follow")
426 assert [%{"id" => ^follow_notification_id}] = json_response_and_validate_schema(conn_res, 200)
428 conn_res = get(conn, "/api/v1/notifications?include_types[]=mention")
430 assert [%{"id" => ^mention_notification_id}] =
431 json_response_and_validate_schema(conn_res, 200)
433 conn_res = get(conn, "/api/v1/notifications?include_types[]=favourite")
435 assert [%{"id" => ^favorite_notification_id}] =
436 json_response_and_validate_schema(conn_res, 200)
438 conn_res = get(conn, "/api/v1/notifications?include_types[]=reblog")
440 assert [%{"id" => ^reblog_notification_id}] = json_response_and_validate_schema(conn_res, 200)
442 result = conn |> get("/api/v1/notifications") |> json_response_and_validate_schema(200)
444 assert length(result) == 4
446 query = params_to_query(%{include_types: ["follow", "mention", "favourite", "reblog"]})
450 |> get("/api/v1/notifications?" <> query)
451 |> json_response_and_validate_schema(200)
453 assert length(result) == 4
456 test "destroy multiple" do
457 %{user: user, conn: conn} = oauth_access(["read:notifications", "write:notifications"])
458 other_user = insert(:user)
460 {:ok, activity1} = CommonAPI.post(other_user, %{status: "hi @#{user.nickname}"})
461 {:ok, activity2} = CommonAPI.post(other_user, %{status: "hi @#{user.nickname}"})
462 {:ok, activity3} = CommonAPI.post(user, %{status: "hi @#{other_user.nickname}"})
463 {:ok, activity4} = CommonAPI.post(user, %{status: "hi @#{other_user.nickname}"})
465 notification1_id = get_notification_id_by_activity(activity1)
466 notification2_id = get_notification_id_by_activity(activity2)
467 notification3_id = get_notification_id_by_activity(activity3)
468 notification4_id = get_notification_id_by_activity(activity4)
472 |> get("/api/v1/notifications")
473 |> json_response_and_validate_schema(:ok)
475 assert [%{"id" => ^notification2_id}, %{"id" => ^notification1_id}] = result
479 |> assign(:user, other_user)
480 |> assign(:token, insert(:oauth_token, user: other_user, scopes: ["read:notifications"]))
484 |> get("/api/v1/notifications")
485 |> json_response_and_validate_schema(:ok)
487 assert [%{"id" => ^notification4_id}, %{"id" => ^notification3_id}] = result
489 query = params_to_query(%{ids: [notification1_id, notification2_id]})
490 conn_destroy = delete(conn, "/api/v1/notifications/destroy_multiple?" <> query)
492 assert json_response_and_validate_schema(conn_destroy, 200) == %{}
496 |> get("/api/v1/notifications")
497 |> json_response_and_validate_schema(:ok)
499 assert [%{"id" => ^notification4_id}, %{"id" => ^notification3_id}] = result
502 test "doesn't see notifications after muting user with notifications" do
503 %{user: user, conn: conn} = oauth_access(["read:notifications"])
504 user2 = insert(:user)
506 {:ok, _, _, _} = CommonAPI.follow(user, user2)
507 {:ok, _} = CommonAPI.post(user2, %{status: "hey @#{user.nickname}"})
509 ret_conn = get(conn, "/api/v1/notifications")
511 assert length(json_response_and_validate_schema(ret_conn, 200)) == 1
513 {:ok, _user_relationships} = User.mute(user, user2)
515 conn = get(conn, "/api/v1/notifications")
517 assert json_response_and_validate_schema(conn, 200) == []
520 test "see notifications after muting user without notifications" do
521 %{user: user, conn: conn} = oauth_access(["read:notifications"])
522 user2 = insert(:user)
524 {:ok, _, _, _} = CommonAPI.follow(user, user2)
525 {:ok, _} = CommonAPI.post(user2, %{status: "hey @#{user.nickname}"})
527 ret_conn = get(conn, "/api/v1/notifications")
529 assert length(json_response_and_validate_schema(ret_conn, 200)) == 1
531 {:ok, _user_relationships} = User.mute(user, user2, %{notifications: false})
533 conn = get(conn, "/api/v1/notifications")
535 assert length(json_response_and_validate_schema(conn, 200)) == 1
538 test "see notifications after muting user with notifications and with_muted parameter" do
539 %{user: user, conn: conn} = oauth_access(["read:notifications"])
540 user2 = insert(:user)
542 {:ok, _, _, _} = CommonAPI.follow(user, user2)
543 {:ok, _} = CommonAPI.post(user2, %{status: "hey @#{user.nickname}"})
545 ret_conn = get(conn, "/api/v1/notifications")
547 assert length(json_response_and_validate_schema(ret_conn, 200)) == 1
549 {:ok, _user_relationships} = User.mute(user, user2)
551 conn = get(conn, "/api/v1/notifications?with_muted=true")
553 assert length(json_response_and_validate_schema(conn, 200)) == 1
556 test "see move notifications" do
557 old_user = insert(:user)
558 new_user = insert(:user, also_known_as: [old_user.ap_id])
559 %{user: follower, conn: conn} = oauth_access(["read:notifications"])
561 User.follow(follower, old_user)
562 Pleroma.Web.ActivityPub.ActivityPub.move(old_user, new_user)
563 Pleroma.Tests.ObanHelpers.perform_all()
565 conn = get(conn, "/api/v1/notifications")
567 assert length(json_response_and_validate_schema(conn, 200)) == 1
570 describe "link headers" do
571 test "preserves parameters in link headers" do
572 %{user: user, conn: conn} = oauth_access(["read:notifications"])
573 other_user = insert(:user)
576 CommonAPI.post(other_user, %{
577 status: "hi @#{user.nickname}",
582 CommonAPI.post(other_user, %{
583 status: "hi @#{user.nickname}",
587 notification1 = Repo.get_by(Notification, activity_id: activity1.id)
588 notification2 = Repo.get_by(Notification, activity_id: activity2.id)
592 |> assign(:user, user)
593 |> get("/api/v1/notifications?limit=5")
595 assert [link_header] = get_resp_header(conn, "link")
596 assert link_header =~ ~r/limit=5/
597 assert link_header =~ ~r/min_id=#{notification2.id}/
598 assert link_header =~ ~r/max_id=#{notification1.id}/
602 describe "from specified user" do
604 %{user: user, conn: conn} = oauth_access(["read:notifications"])
606 %{id: account_id} = other_user1 = insert(:user)
607 other_user2 = insert(:user)
609 {:ok, _activity} = CommonAPI.post(other_user1, %{status: "hi @#{user.nickname}"})
610 {:ok, _activity} = CommonAPI.post(other_user2, %{status: "bye @#{user.nickname}"})
612 assert [%{"account" => %{"id" => ^account_id}}] =
614 |> assign(:user, user)
615 |> get("/api/v1/notifications?account_id=#{account_id}")
616 |> json_response_and_validate_schema(200)
618 assert %{"error" => "Account is not found"} =
620 |> assign(:user, user)
621 |> get("/api/v1/notifications?account_id=cofe")
622 |> json_response_and_validate_schema(404)
626 defp get_notification_id_by_activity(%{id: id}) do
628 |> Repo.get_by(activity_id: id)
633 defp params_to_query(%{} = params) do
634 Enum.map_join(params, "&", fn
635 {k, v} when is_list(v) -> Enum.map_join(v, "&", &"#{k}[]=#{&1}")
636 {k, v} -> k <> "=" <> v