1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2018 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
5 defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
6 use Pleroma.Web.ConnCase
8 alias Pleroma.Web.ActivityPub.{UserView, ObjectView}
9 alias Pleroma.{Object, Repo, User}
10 alias Pleroma.Activity
13 Tesla.Mock.mock_global(fn env -> apply(HttpRequestMock, :request, [env]) end)
18 test "with the relay active, it returns the relay user", %{conn: conn} do
21 |> get(activity_pub_path(conn, :relay))
24 assert res["id"] =~ "/relay"
27 test "with the relay disabled, it returns 404", %{conn: conn} do
28 Pleroma.Config.put([:instance, :allow_relay], false)
31 |> get(activity_pub_path(conn, :relay))
35 Pleroma.Config.put([:instance, :allow_relay], true)
39 describe "/users/:nickname" do
40 test "it returns a json representation of the user", %{conn: conn} do
45 |> put_req_header("accept", "application/activity+json")
46 |> get("/users/#{user.nickname}")
48 user = Repo.get(User, user.id)
50 assert json_response(conn, 200) == UserView.render("user.json", %{user: user})
54 describe "/object/:uuid" do
55 test "it returns a json representation of the object", %{conn: conn} do
57 uuid = String.split(note.data["id"], "/") |> List.last()
61 |> put_req_header("accept", "application/activity+json")
62 |> get("/objects/#{uuid}")
64 assert json_response(conn, 200) == ObjectView.render("object.json", %{object: note})
67 test "it returns 404 for non-public messages", %{conn: conn} do
68 note = insert(:direct_note)
69 uuid = String.split(note.data["id"], "/") |> List.last()
73 |> put_req_header("accept", "application/activity+json")
74 |> get("/objects/#{uuid}")
76 assert json_response(conn, 404)
79 test "it returns 404 for tombstone objects", %{conn: conn} do
80 tombstone = insert(:tombstone)
81 uuid = String.split(tombstone.data["id"], "/") |> List.last()
85 |> put_req_header("accept", "application/activity+json")
86 |> get("/objects/#{uuid}")
88 assert json_response(conn, 404)
93 test "it inserts an incoming activity into the database", %{conn: conn} do
94 data = File.read!("test/fixtures/mastodon-post-activity.json") |> Poison.decode!()
98 |> assign(:valid_signature, true)
99 |> put_req_header("content-type", "application/activity+json")
100 |> post("/inbox", data)
102 assert "ok" == json_response(conn, 200)
104 assert Activity.get_by_ap_id(data["id"])
108 describe "/users/:nickname/inbox" do
109 test "it inserts an incoming activity into the database", %{conn: conn} do
113 File.read!("test/fixtures/mastodon-post-activity.json")
115 |> Map.put("bcc", [user.ap_id])
119 |> assign(:valid_signature, true)
120 |> put_req_header("content-type", "application/activity+json")
121 |> post("/users/#{user.nickname}/inbox", data)
123 assert "ok" == json_response(conn, 200)
125 assert Activity.get_by_ap_id(data["id"])
128 test "it rejects reads from other users", %{conn: conn} do
130 otheruser = insert(:user)
134 |> assign(:user, otheruser)
135 |> put_req_header("accept", "application/activity+json")
136 |> get("/users/#{user.nickname}/inbox")
138 assert json_response(conn, 403)
141 test "it returns a note activity in a collection", %{conn: conn} do
142 note_activity = insert(:direct_note_activity)
143 user = User.get_cached_by_ap_id(hd(note_activity.data["to"]))
147 |> assign(:user, user)
148 |> put_req_header("accept", "application/activity+json")
149 |> get("/users/#{user.nickname}/inbox")
151 assert response(conn, 200) =~ note_activity.data["object"]["content"]
155 describe "/users/:nickname/outbox" do
156 test "it returns a note activity in a collection", %{conn: conn} do
157 note_activity = insert(:note_activity)
158 user = User.get_cached_by_ap_id(note_activity.data["actor"])
162 |> put_req_header("accept", "application/activity+json")
163 |> get("/users/#{user.nickname}/outbox")
165 assert response(conn, 200) =~ note_activity.data["object"]["content"]
168 test "it returns an announce activity in a collection", %{conn: conn} do
169 announce_activity = insert(:announce_activity)
170 user = User.get_cached_by_ap_id(announce_activity.data["actor"])
174 |> put_req_header("accept", "application/activity+json")
175 |> get("/users/#{user.nickname}/outbox")
177 assert response(conn, 200) =~ announce_activity.data["object"]
180 test "it rejects posts from other users", %{conn: conn} do
181 data = File.read!("test/fixtures/activitypub-client-post-activity.json") |> Poison.decode!()
183 otheruser = insert(:user)
187 |> assign(:user, otheruser)
188 |> put_req_header("content-type", "application/activity+json")
189 |> post("/users/#{user.nickname}/outbox", data)
191 assert json_response(conn, 403)
194 test "it inserts an incoming create activity into the database", %{conn: conn} do
195 data = File.read!("test/fixtures/activitypub-client-post-activity.json") |> Poison.decode!()
200 |> assign(:user, user)
201 |> put_req_header("content-type", "application/activity+json")
202 |> post("/users/#{user.nickname}/outbox", data)
204 result = json_response(conn, 201)
205 assert Activity.get_by_ap_id(result["id"])
208 test "it rejects an incoming activity with bogus type", %{conn: conn} do
209 data = File.read!("test/fixtures/activitypub-client-post-activity.json") |> Poison.decode!()
214 |> Map.put("type", "BadType")
218 |> assign(:user, user)
219 |> put_req_header("content-type", "application/activity+json")
220 |> post("/users/#{user.nickname}/outbox", data)
222 assert json_response(conn, 400)
225 test "it erects a tombstone when receiving a delete activity", %{conn: conn} do
226 note_activity = insert(:note_activity)
227 user = User.get_cached_by_ap_id(note_activity.data["actor"])
232 id: note_activity.data["object"]["id"]
238 |> assign(:user, user)
239 |> put_req_header("content-type", "application/activity+json")
240 |> post("/users/#{user.nickname}/outbox", data)
242 result = json_response(conn, 201)
243 assert Activity.get_by_ap_id(result["id"])
245 object = Object.get_by_ap_id(note_activity.data["object"]["id"])
247 assert object.data["type"] == "Tombstone"
250 test "it rejects delete activity of object from other actor", %{conn: conn} do
251 note_activity = insert(:note_activity)
257 id: note_activity.data["object"]["id"]
263 |> assign(:user, user)
264 |> put_req_header("content-type", "application/activity+json")
265 |> post("/users/#{user.nickname}/outbox", data)
267 assert json_response(conn, 400)
271 describe "/users/:nickname/followers" do
272 test "it returns the followers in a collection", %{conn: conn} do
274 user_two = insert(:user)
275 User.follow(user, user_two)
279 |> get("/users/#{user_two.nickname}/followers")
280 |> json_response(200)
282 assert result["first"]["orderedItems"] == [user.ap_id]
285 test "it returns returns empty if the user has 'hide_network' set", %{conn: conn} do
287 user_two = insert(:user, %{info: %{hide_network: true}})
288 User.follow(user, user_two)
292 |> get("/users/#{user_two.nickname}/followers")
293 |> json_response(200)
295 assert result["first"]["orderedItems"] == []
296 assert result["totalItems"] == 1
299 test "it works for more than 10 users", %{conn: conn} do
302 Enum.each(1..15, fn _ ->
303 other_user = insert(:user)
304 User.follow(other_user, user)
309 |> get("/users/#{user.nickname}/followers")
310 |> json_response(200)
312 assert length(result["first"]["orderedItems"]) == 10
313 assert result["first"]["totalItems"] == 15
314 assert result["totalItems"] == 15
318 |> get("/users/#{user.nickname}/followers?page=2")
319 |> json_response(200)
321 assert length(result["orderedItems"]) == 5
322 assert result["totalItems"] == 15
326 describe "/users/:nickname/following" do
327 test "it returns the following in a collection", %{conn: conn} do
329 user_two = insert(:user)
330 User.follow(user, user_two)
334 |> get("/users/#{user.nickname}/following")
335 |> json_response(200)
337 assert result["first"]["orderedItems"] == [user_two.ap_id]
340 test "it returns returns empty if the user has 'hide_network' set", %{conn: conn} do
341 user = insert(:user, %{info: %{hide_network: true}})
342 user_two = insert(:user)
343 User.follow(user, user_two)
347 |> get("/users/#{user.nickname}/following")
348 |> json_response(200)
350 assert result["first"]["orderedItems"] == []
351 assert result["totalItems"] == 1
354 test "it works for more than 10 users", %{conn: conn} do
357 Enum.each(1..15, fn _ ->
358 user = Repo.get(User, user.id)
359 other_user = insert(:user)
360 User.follow(user, other_user)
365 |> get("/users/#{user.nickname}/following")
366 |> json_response(200)
368 assert length(result["first"]["orderedItems"]) == 10
369 assert result["first"]["totalItems"] == 15
370 assert result["totalItems"] == 15
374 |> get("/users/#{user.nickname}/following?page=2")
375 |> json_response(200)
377 assert length(result["orderedItems"]) == 5
378 assert result["totalItems"] == 15