1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2018 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
5 defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
6 use Pleroma.Web.ConnCase
8 alias Pleroma.Web.ActivityPub.{UserView, ObjectView}
9 alias Pleroma.{Object, Repo, User}
10 alias Pleroma.Activity
13 Tesla.Mock.mock_global(fn env -> apply(HttpRequestMock, :request, [env]) end)
18 test "with the relay active, it returns the relay user", %{conn: conn} do
21 |> get(activity_pub_path(conn, :relay))
24 assert res["id"] =~ "/relay"
27 test "with the relay disabled, it returns 404", %{conn: conn} do
28 Pleroma.Config.put([:instance, :allow_relay], false)
31 |> get(activity_pub_path(conn, :relay))
35 Pleroma.Config.put([:instance, :allow_relay], true)
39 describe "/users/:nickname" do
40 test "it returns a json representation of the user", %{conn: conn} do
45 |> put_req_header("accept", "application/activity+json")
46 |> get("/users/#{user.nickname}")
48 user = Repo.get(User, user.id)
50 assert json_response(conn, 200) == UserView.render("user.json", %{user: user})
54 describe "/object/:uuid" do
55 test "it returns a json representation of the object", %{conn: conn} do
57 uuid = String.split(note.data["id"], "/") |> List.last()
61 |> put_req_header("accept", "application/activity+json")
62 |> get("/objects/#{uuid}")
64 assert json_response(conn, 200) == ObjectView.render("object.json", %{object: note})
67 test "it returns 404 for non-public messages", %{conn: conn} do
68 note = insert(:direct_note)
69 uuid = String.split(note.data["id"], "/") |> List.last()
73 |> put_req_header("accept", "application/activity+json")
74 |> get("/objects/#{uuid}")
76 assert json_response(conn, 404)
79 test "it returns 404 for tombstone objects", %{conn: conn} do
80 tombstone = insert(:tombstone)
81 uuid = String.split(tombstone.data["id"], "/") |> List.last()
85 |> put_req_header("accept", "application/activity+json")
86 |> get("/objects/#{uuid}")
88 assert json_response(conn, 404)
92 describe "/object/:uuid/likes" do
93 test "it returns the like activities in a collection", %{conn: conn} do
94 like = insert(:like_activity)
95 uuid = String.split(like.data["object"], "/") |> List.last()
99 |> put_req_header("accept", "application/activity+json")
100 |> get("/objects/#{uuid}/likes")
101 |> json_response(200)
103 assert List.first(result["first"]["orderedItems"])["id"] == like.data["id"]
107 describe "/activities/:uuid" do
108 test "it returns a json representation of the activity", %{conn: conn} do
109 activity = insert(:note_activity)
110 uuid = String.split(activity.data["id"], "/") |> List.last()
114 |> put_req_header("accept", "application/activity+json")
115 |> get("/activities/#{uuid}")
117 assert json_response(conn, 200) == ObjectView.render("object.json", %{object: activity})
120 test "it returns 404 for non-public activities", %{conn: conn} do
121 activity = insert(:direct_note_activity)
122 uuid = String.split(activity.data["id"], "/") |> List.last()
126 |> put_req_header("accept", "application/activity+json")
127 |> get("/activities/#{uuid}")
129 assert json_response(conn, 404)
134 test "it inserts an incoming activity into the database", %{conn: conn} do
135 data = File.read!("test/fixtures/mastodon-post-activity.json") |> Poison.decode!()
139 |> assign(:valid_signature, true)
140 |> put_req_header("content-type", "application/activity+json")
141 |> post("/inbox", data)
143 assert "ok" == json_response(conn, 200)
145 assert Activity.get_by_ap_id(data["id"])
149 describe "/users/:nickname/inbox" do
150 test "it inserts an incoming activity into the database", %{conn: conn} do
154 File.read!("test/fixtures/mastodon-post-activity.json")
156 |> Map.put("bcc", [user.ap_id])
160 |> assign(:valid_signature, true)
161 |> put_req_header("content-type", "application/activity+json")
162 |> post("/users/#{user.nickname}/inbox", data)
164 assert "ok" == json_response(conn, 200)
166 assert Activity.get_by_ap_id(data["id"])
169 test "it rejects reads from other users", %{conn: conn} do
171 otheruser = insert(:user)
175 |> assign(:user, otheruser)
176 |> put_req_header("accept", "application/activity+json")
177 |> get("/users/#{user.nickname}/inbox")
179 assert json_response(conn, 403)
182 test "it returns a note activity in a collection", %{conn: conn} do
183 note_activity = insert(:direct_note_activity)
184 user = User.get_cached_by_ap_id(hd(note_activity.data["to"]))
188 |> assign(:user, user)
189 |> put_req_header("accept", "application/activity+json")
190 |> get("/users/#{user.nickname}/inbox")
192 assert response(conn, 200) =~ note_activity.data["object"]["content"]
196 describe "/users/:nickname/outbox" do
197 test "it returns a note activity in a collection", %{conn: conn} do
198 note_activity = insert(:note_activity)
199 user = User.get_cached_by_ap_id(note_activity.data["actor"])
203 |> put_req_header("accept", "application/activity+json")
204 |> get("/users/#{user.nickname}/outbox")
206 assert response(conn, 200) =~ note_activity.data["object"]["content"]
209 test "it returns an announce activity in a collection", %{conn: conn} do
210 announce_activity = insert(:announce_activity)
211 user = User.get_cached_by_ap_id(announce_activity.data["actor"])
215 |> put_req_header("accept", "application/activity+json")
216 |> get("/users/#{user.nickname}/outbox")
218 assert response(conn, 200) =~ announce_activity.data["object"]
221 test "it rejects posts from other users", %{conn: conn} do
222 data = File.read!("test/fixtures/activitypub-client-post-activity.json") |> Poison.decode!()
224 otheruser = insert(:user)
228 |> assign(:user, otheruser)
229 |> put_req_header("content-type", "application/activity+json")
230 |> post("/users/#{user.nickname}/outbox", data)
232 assert json_response(conn, 403)
235 test "it inserts an incoming create activity into the database", %{conn: conn} do
236 data = File.read!("test/fixtures/activitypub-client-post-activity.json") |> Poison.decode!()
241 |> assign(:user, user)
242 |> put_req_header("content-type", "application/activity+json")
243 |> post("/users/#{user.nickname}/outbox", data)
245 result = json_response(conn, 201)
246 assert Activity.get_by_ap_id(result["id"])
249 test "it rejects an incoming activity with bogus type", %{conn: conn} do
250 data = File.read!("test/fixtures/activitypub-client-post-activity.json") |> Poison.decode!()
255 |> Map.put("type", "BadType")
259 |> assign(:user, user)
260 |> put_req_header("content-type", "application/activity+json")
261 |> post("/users/#{user.nickname}/outbox", data)
263 assert json_response(conn, 400)
266 test "it erects a tombstone when receiving a delete activity", %{conn: conn} do
267 note_activity = insert(:note_activity)
268 user = User.get_cached_by_ap_id(note_activity.data["actor"])
273 id: note_activity.data["object"]["id"]
279 |> assign(:user, user)
280 |> put_req_header("content-type", "application/activity+json")
281 |> post("/users/#{user.nickname}/outbox", data)
283 result = json_response(conn, 201)
284 assert Activity.get_by_ap_id(result["id"])
286 object = Object.get_by_ap_id(note_activity.data["object"]["id"])
288 assert object.data["type"] == "Tombstone"
291 test "it rejects delete activity of object from other actor", %{conn: conn} do
292 note_activity = insert(:note_activity)
298 id: note_activity.data["object"]["id"]
304 |> assign(:user, user)
305 |> put_req_header("content-type", "application/activity+json")
306 |> post("/users/#{user.nickname}/outbox", data)
308 assert json_response(conn, 400)
311 test "it increases like count when receiving a like action", %{conn: conn} do
312 note_activity = insert(:note_activity)
313 user = User.get_cached_by_ap_id(note_activity.data["actor"])
318 id: note_activity.data["object"]["id"]
324 |> assign(:user, user)
325 |> put_req_header("content-type", "application/activity+json")
326 |> post("/users/#{user.nickname}/outbox", data)
328 result = json_response(conn, 201)
329 assert Activity.get_by_ap_id(result["id"])
331 object = Object.get_by_ap_id(note_activity.data["object"]["id"])
333 assert object.data["like_count"] == 1
337 describe "/users/:nickname/followers" do
338 test "it returns the followers in a collection", %{conn: conn} do
340 user_two = insert(:user)
341 User.follow(user, user_two)
345 |> get("/users/#{user_two.nickname}/followers")
346 |> json_response(200)
348 assert result["first"]["orderedItems"] == [user.ap_id]
351 test "it returns returns empty if the user has 'hide_network' set", %{conn: conn} do
353 user_two = insert(:user, %{info: %{hide_network: true}})
354 User.follow(user, user_two)
358 |> get("/users/#{user_two.nickname}/followers")
359 |> json_response(200)
361 assert result["first"]["orderedItems"] == []
362 assert result["totalItems"] == 1
365 test "it works for more than 10 users", %{conn: conn} do
368 Enum.each(1..15, fn _ ->
369 other_user = insert(:user)
370 User.follow(other_user, user)
375 |> get("/users/#{user.nickname}/followers")
376 |> json_response(200)
378 assert length(result["first"]["orderedItems"]) == 10
379 assert result["first"]["totalItems"] == 15
380 assert result["totalItems"] == 15
384 |> get("/users/#{user.nickname}/followers?page=2")
385 |> json_response(200)
387 assert length(result["orderedItems"]) == 5
388 assert result["totalItems"] == 15
392 describe "/users/:nickname/following" do
393 test "it returns the following in a collection", %{conn: conn} do
395 user_two = insert(:user)
396 User.follow(user, user_two)
400 |> get("/users/#{user.nickname}/following")
401 |> json_response(200)
403 assert result["first"]["orderedItems"] == [user_two.ap_id]
406 test "it returns returns empty if the user has 'hide_network' set", %{conn: conn} do
407 user = insert(:user, %{info: %{hide_network: true}})
408 user_two = insert(:user)
409 User.follow(user, user_two)
413 |> get("/users/#{user.nickname}/following")
414 |> json_response(200)
416 assert result["first"]["orderedItems"] == []
417 assert result["totalItems"] == 1
420 test "it works for more than 10 users", %{conn: conn} do
423 Enum.each(1..15, fn _ ->
424 user = Repo.get(User, user.id)
425 other_user = insert(:user)
426 User.follow(user, other_user)
431 |> get("/users/#{user.nickname}/following")
432 |> json_response(200)
434 assert length(result["first"]["orderedItems"]) == 10
435 assert result["first"]["totalItems"] == 15
436 assert result["totalItems"] == 15
440 |> get("/users/#{user.nickname}/following?page=2")
441 |> json_response(200)
443 assert length(result["orderedItems"]) == 5
444 assert result["totalItems"] == 15