1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2018 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
5 defmodule Pleroma.Web.ActivityPub.TransmogrifierTest do
7 alias Pleroma.Web.ActivityPub.Transmogrifier
8 alias Pleroma.Web.ActivityPub.Utils
9 alias Pleroma.Web.ActivityPub.ActivityPub
10 alias Pleroma.Web.OStatus
11 alias Pleroma.Activity
14 alias Pleroma.Web.Websub.WebsubClientSubscription
16 import Pleroma.Factory
17 alias Pleroma.Web.CommonAPI
20 Tesla.Mock.mock_global(fn env -> apply(HttpRequestMock, :request, [env]) end)
24 describe "handle_incoming" do
25 test "it ignores an incoming notice if we already have it" do
26 activity = insert(:note_activity)
29 File.read!("test/fixtures/mastodon-post-activity.json")
31 |> Map.put("object", activity.data["object"])
33 {:ok, returned_activity} = Transmogrifier.handle_incoming(data)
35 assert activity == returned_activity
38 test "it fetches replied-to activities if we don't have them" do
40 File.read!("test/fixtures/mastodon-post-activity.json")
45 |> Map.put("inReplyTo", "https://shitposter.club/notice/2827873")
49 |> Map.put("object", object)
51 {:ok, returned_activity} = Transmogrifier.handle_incoming(data)
54 Activity.get_create_by_object_ap_id(
55 "tag:shitposter.club,2017-05-05:noticeId=2827873:objectType=comment"
58 assert returned_activity.data["object"]["inReplyToAtomUri"] ==
59 "https://shitposter.club/notice/2827873"
61 assert returned_activity.data["object"]["inReplyToStatusId"] == activity.id
64 test "it works for incoming notices" do
65 data = File.read!("test/fixtures/mastodon-post-activity.json") |> Poison.decode!()
67 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(data)
70 "http://mastodon.example.org/users/admin/statuses/99512778738411822/activity"
72 assert data["context"] ==
73 "tag:mastodon.example.org,2018-02-12:objectId=20:objectType=Conversation"
75 assert data["to"] == ["https://www.w3.org/ns/activitystreams#Public"]
77 assert data["cc"] == [
78 "http://mastodon.example.org/users/admin/followers",
79 "http://localtesting.pleroma.lol/users/lain"
82 assert data["actor"] == "http://mastodon.example.org/users/admin"
84 object = data["object"]
85 assert object["id"] == "http://mastodon.example.org/users/admin/statuses/99512778738411822"
87 assert object["to"] == ["https://www.w3.org/ns/activitystreams#Public"]
89 assert object["cc"] == [
90 "http://mastodon.example.org/users/admin/followers",
91 "http://localtesting.pleroma.lol/users/lain"
94 assert object["actor"] == "http://mastodon.example.org/users/admin"
95 assert object["attributedTo"] == "http://mastodon.example.org/users/admin"
97 assert object["context"] ==
98 "tag:mastodon.example.org,2018-02-12:objectId=20:objectType=Conversation"
100 assert object["sensitive"] == true
102 user = User.get_by_ap_id(object["actor"])
104 assert user.info.note_count == 1
107 test "it works for incoming notices with hashtags" do
108 data = File.read!("test/fixtures/mastodon-post-activity-hashtag.json") |> Poison.decode!()
110 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(data)
111 assert Enum.at(data["object"]["tag"], 2) == "moo"
114 test "it works for incoming notices with contentMap" do
116 File.read!("test/fixtures/mastodon-post-activity-contentmap.json") |> Poison.decode!()
118 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(data)
120 assert data["object"]["content"] ==
121 "<p><span class=\"h-card\"><a href=\"http://localtesting.pleroma.lol/users/lain\" class=\"u-url mention\">@<span>lain</span></a></span></p>"
124 test "it works for incoming notices with to/cc not being an array (kroeg)" do
125 data = File.read!("test/fixtures/kroeg-post-activity.json") |> Poison.decode!()
127 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(data)
129 assert data["object"]["content"] ==
130 "<p>henlo from my Psion netBook</p><p>message sent from my Psion netBook</p>"
133 test "it works for incoming announces with actor being inlined (kroeg)" do
134 data = File.read!("test/fixtures/kroeg-announce-with-inline-actor.json") |> Poison.decode!()
136 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(data)
138 assert data["actor"] == "https://puckipedia.com/"
141 test "it works for incoming notices with tag not being an array (kroeg)" do
142 data = File.read!("test/fixtures/kroeg-array-less-emoji.json") |> Poison.decode!()
144 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(data)
146 assert data["object"]["emoji"] == %{
147 "icon_e_smile" => "https://puckipedia.com/forum/images/smilies/icon_e_smile.png"
150 data = File.read!("test/fixtures/kroeg-array-less-hashtag.json") |> Poison.decode!()
152 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(data)
154 assert "test" in data["object"]["tag"]
157 test "it works for incoming notices with url not being a string (prismo)" do
158 data = File.read!("test/fixtures/prismo-url-map.json") |> Poison.decode!()
160 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(data)
162 assert data["object"]["url"] == "https://prismo.news/posts/83"
165 test "it cleans up incoming notices which are not really DMs" do
167 other_user = insert(:user)
169 to = [user.ap_id, other_user.ap_id]
172 File.read!("test/fixtures/mastodon-post-activity.json")
182 data = Map.put(data, "object", object)
184 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(data)
186 assert data["to"] == []
187 assert data["cc"] == to
189 object = data["object"]
191 assert object["to"] == []
192 assert object["cc"] == to
195 test "it works for incoming follow requests" do
199 File.read!("test/fixtures/mastodon-follow-activity.json")
201 |> Map.put("object", user.ap_id)
203 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(data)
205 assert data["actor"] == "http://mastodon.example.org/users/admin"
206 assert data["type"] == "Follow"
207 assert data["id"] == "http://mastodon.example.org/users/admin#follows/2"
208 assert User.following?(User.get_by_ap_id(data["actor"]), user)
211 test "it works for incoming follow requests from hubzilla" do
215 File.read!("test/fixtures/hubzilla-follow-activity.json")
217 |> Map.put("object", user.ap_id)
218 |> Utils.normalize_params()
220 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(data)
222 assert data["actor"] == "https://hubzilla.example.org/channel/kaniini"
223 assert data["type"] == "Follow"
224 assert data["id"] == "https://hubzilla.example.org/channel/kaniini#follows/2"
225 assert User.following?(User.get_by_ap_id(data["actor"]), user)
228 test "it works for incoming likes" do
230 {:ok, activity} = CommonAPI.post(user, %{"status" => "hello"})
233 File.read!("test/fixtures/mastodon-like.json")
235 |> Map.put("object", activity.data["object"]["id"])
237 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(data)
239 assert data["actor"] == "http://mastodon.example.org/users/admin"
240 assert data["type"] == "Like"
241 assert data["id"] == "http://mastodon.example.org/users/admin#likes/2"
242 assert data["object"] == activity.data["object"]["id"]
245 test "it returns an error for incoming unlikes wihout a like activity" do
247 {:ok, activity} = CommonAPI.post(user, %{"status" => "leave a like pls"})
250 File.read!("test/fixtures/mastodon-undo-like.json")
252 |> Map.put("object", activity.data["object"]["id"])
254 assert Transmogrifier.handle_incoming(data) == :error
257 test "it works for incoming unlikes with an existing like activity" do
259 {:ok, activity} = CommonAPI.post(user, %{"status" => "leave a like pls"})
262 File.read!("test/fixtures/mastodon-like.json")
264 |> Map.put("object", activity.data["object"]["id"])
266 {:ok, %Activity{data: like_data, local: false}} = Transmogrifier.handle_incoming(like_data)
269 File.read!("test/fixtures/mastodon-undo-like.json")
271 |> Map.put("object", like_data)
272 |> Map.put("actor", like_data["actor"])
274 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(data)
276 assert data["actor"] == "http://mastodon.example.org/users/admin"
277 assert data["type"] == "Undo"
278 assert data["id"] == "http://mastodon.example.org/users/admin#likes/2/undo"
279 assert data["object"]["id"] == "http://mastodon.example.org/users/admin#likes/2"
282 test "it works for incoming announces" do
283 data = File.read!("test/fixtures/mastodon-announce.json") |> Poison.decode!()
285 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(data)
287 assert data["actor"] == "http://mastodon.example.org/users/admin"
288 assert data["type"] == "Announce"
291 "http://mastodon.example.org/users/admin/statuses/99542391527669785/activity"
293 assert data["object"] ==
294 "http://mastodon.example.org/users/admin/statuses/99541947525187367"
296 assert Activity.get_create_by_object_ap_id(data["object"])
299 test "it works for incoming announces with an existing activity" do
301 {:ok, activity} = CommonAPI.post(user, %{"status" => "hey"})
304 File.read!("test/fixtures/mastodon-announce.json")
306 |> Map.put("object", activity.data["object"]["id"])
308 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(data)
310 assert data["actor"] == "http://mastodon.example.org/users/admin"
311 assert data["type"] == "Announce"
314 "http://mastodon.example.org/users/admin/statuses/99542391527669785/activity"
316 assert data["object"] == activity.data["object"]["id"]
318 assert Activity.get_create_by_object_ap_id(data["object"]).id == activity.id
321 test "it does not clobber the addressing on announce activities" do
323 {:ok, activity} = CommonAPI.post(user, %{"status" => "hey"})
326 File.read!("test/fixtures/mastodon-announce.json")
328 |> Map.put("object", activity.data["object"]["id"])
329 |> Map.put("to", ["http://mastodon.example.org/users/admin/followers"])
332 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(data)
334 assert data["to"] == ["http://mastodon.example.org/users/admin/followers"]
337 test "it works for incoming update activities" do
338 data = File.read!("test/fixtures/mastodon-post-activity.json") |> Poison.decode!()
340 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(data)
341 update_data = File.read!("test/fixtures/mastodon-update.json") |> Poison.decode!()
344 update_data["object"]
345 |> Map.put("actor", data["actor"])
346 |> Map.put("id", data["actor"])
350 |> Map.put("actor", data["actor"])
351 |> Map.put("object", object)
353 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(update_data)
355 user = User.get_cached_by_ap_id(data["actor"])
356 assert user.name == "gargle"
358 assert user.avatar["url"] == [
361 "https://cd.niu.moe/accounts/avatars/000/033/323/original/fd7f8ae0b3ffedc9.jpeg"
365 assert user.info.banner["url"] == [
368 "https://cd.niu.moe/accounts/headers/000/033/323/original/850b3448fa5fd477.png"
372 assert user.bio == "<p>Some bio</p>"
375 test "it works for incoming update activities which lock the account" do
376 data = File.read!("test/fixtures/mastodon-post-activity.json") |> Poison.decode!()
378 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(data)
379 update_data = File.read!("test/fixtures/mastodon-update.json") |> Poison.decode!()
382 update_data["object"]
383 |> Map.put("actor", data["actor"])
384 |> Map.put("id", data["actor"])
385 |> Map.put("manuallyApprovesFollowers", true)
389 |> Map.put("actor", data["actor"])
390 |> Map.put("object", object)
392 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(update_data)
394 user = User.get_cached_by_ap_id(data["actor"])
395 assert user.info.locked == true
398 test "it works for incoming deletes" do
399 activity = insert(:note_activity)
402 File.read!("test/fixtures/mastodon-delete.json")
407 |> Map.put("id", activity.data["object"]["id"])
411 |> Map.put("object", object)
412 |> Map.put("actor", activity.data["actor"])
414 {:ok, %Activity{local: false}} = Transmogrifier.handle_incoming(data)
416 refute Repo.get(Activity, activity.id)
419 test "it fails for incoming deletes with spoofed origin" do
420 activity = insert(:note_activity)
423 File.read!("test/fixtures/mastodon-delete.json")
428 |> Map.put("id", activity.data["object"]["id"])
432 |> Map.put("object", object)
434 :error = Transmogrifier.handle_incoming(data)
436 assert Repo.get(Activity, activity.id)
439 test "it works for incoming unannounces with an existing notice" do
441 {:ok, activity} = CommonAPI.post(user, %{"status" => "hey"})
444 File.read!("test/fixtures/mastodon-announce.json")
446 |> Map.put("object", activity.data["object"]["id"])
448 {:ok, %Activity{data: announce_data, local: false}} =
449 Transmogrifier.handle_incoming(announce_data)
452 File.read!("test/fixtures/mastodon-undo-announce.json")
454 |> Map.put("object", announce_data)
455 |> Map.put("actor", announce_data["actor"])
457 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(data)
459 assert data["type"] == "Undo"
460 assert data["object"]["type"] == "Announce"
461 assert data["object"]["object"] == activity.data["object"]["id"]
463 assert data["object"]["id"] ==
464 "http://mastodon.example.org/users/admin/statuses/99542391527669785/activity"
467 test "it works for incomming unfollows with an existing follow" do
471 File.read!("test/fixtures/mastodon-follow-activity.json")
473 |> Map.put("object", user.ap_id)
475 {:ok, %Activity{data: _, local: false}} = Transmogrifier.handle_incoming(follow_data)
478 File.read!("test/fixtures/mastodon-unfollow-activity.json")
480 |> Map.put("object", follow_data)
482 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(data)
484 assert data["type"] == "Undo"
485 assert data["object"]["type"] == "Follow"
486 assert data["object"]["object"] == user.ap_id
487 assert data["actor"] == "http://mastodon.example.org/users/admin"
489 refute User.following?(User.get_by_ap_id(data["actor"]), user)
492 test "it works for incoming blocks" do
496 File.read!("test/fixtures/mastodon-block-activity.json")
498 |> Map.put("object", user.ap_id)
500 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(data)
502 assert data["type"] == "Block"
503 assert data["object"] == user.ap_id
504 assert data["actor"] == "http://mastodon.example.org/users/admin"
506 blocker = User.get_by_ap_id(data["actor"])
508 assert User.blocks?(blocker, user)
511 test "incoming blocks successfully tear down any follow relationship" do
512 blocker = insert(:user)
513 blocked = insert(:user)
516 File.read!("test/fixtures/mastodon-block-activity.json")
518 |> Map.put("object", blocked.ap_id)
519 |> Map.put("actor", blocker.ap_id)
521 {:ok, blocker} = User.follow(blocker, blocked)
522 {:ok, blocked} = User.follow(blocked, blocker)
524 assert User.following?(blocker, blocked)
525 assert User.following?(blocked, blocker)
527 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(data)
529 assert data["type"] == "Block"
530 assert data["object"] == blocked.ap_id
531 assert data["actor"] == blocker.ap_id
533 blocker = User.get_by_ap_id(data["actor"])
534 blocked = User.get_by_ap_id(data["object"])
536 assert User.blocks?(blocker, blocked)
538 refute User.following?(blocker, blocked)
539 refute User.following?(blocked, blocker)
542 test "it works for incoming unblocks with an existing block" do
546 File.read!("test/fixtures/mastodon-block-activity.json")
548 |> Map.put("object", user.ap_id)
550 {:ok, %Activity{data: _, local: false}} = Transmogrifier.handle_incoming(block_data)
553 File.read!("test/fixtures/mastodon-unblock-activity.json")
555 |> Map.put("object", block_data)
557 {:ok, %Activity{data: data, local: false}} = Transmogrifier.handle_incoming(data)
558 assert data["type"] == "Undo"
559 assert data["object"]["type"] == "Block"
560 assert data["object"]["object"] == user.ap_id
561 assert data["actor"] == "http://mastodon.example.org/users/admin"
563 blocker = User.get_by_ap_id(data["actor"])
565 refute User.blocks?(blocker, user)
568 test "it works for incoming accepts which were pre-accepted" do
569 follower = insert(:user)
570 followed = insert(:user)
572 {:ok, follower} = User.follow(follower, followed)
573 assert User.following?(follower, followed) == true
575 {:ok, follow_activity} = ActivityPub.follow(follower, followed)
578 File.read!("test/fixtures/mastodon-accept-activity.json")
580 |> Map.put("actor", followed.ap_id)
583 accept_data["object"]
584 |> Map.put("actor", follower.ap_id)
585 |> Map.put("id", follow_activity.data["id"])
587 accept_data = Map.put(accept_data, "object", object)
589 {:ok, activity} = Transmogrifier.handle_incoming(accept_data)
590 refute activity.local
592 assert activity.data["object"] == follow_activity.data["id"]
594 follower = Repo.get(User, follower.id)
596 assert User.following?(follower, followed) == true
599 test "it works for incoming accepts which were orphaned" do
600 follower = insert(:user)
601 followed = insert(:user, %{info: %User.Info{locked: true}})
603 {:ok, follow_activity} = ActivityPub.follow(follower, followed)
606 File.read!("test/fixtures/mastodon-accept-activity.json")
608 |> Map.put("actor", followed.ap_id)
611 Map.put(accept_data, "object", Map.put(accept_data["object"], "actor", follower.ap_id))
613 {:ok, activity} = Transmogrifier.handle_incoming(accept_data)
614 assert activity.data["object"] == follow_activity.data["id"]
616 follower = Repo.get(User, follower.id)
618 assert User.following?(follower, followed) == true
621 test "it works for incoming accepts which are referenced by IRI only" do
622 follower = insert(:user)
623 followed = insert(:user, %{info: %User.Info{locked: true}})
625 {:ok, follow_activity} = ActivityPub.follow(follower, followed)
628 File.read!("test/fixtures/mastodon-accept-activity.json")
630 |> Map.put("actor", followed.ap_id)
631 |> Map.put("object", follow_activity.data["id"])
633 {:ok, activity} = Transmogrifier.handle_incoming(accept_data)
634 assert activity.data["object"] == follow_activity.data["id"]
636 follower = Repo.get(User, follower.id)
638 assert User.following?(follower, followed) == true
641 test "it fails for incoming accepts which cannot be correlated" do
642 follower = insert(:user)
643 followed = insert(:user, %{info: %User.Info{locked: true}})
646 File.read!("test/fixtures/mastodon-accept-activity.json")
648 |> Map.put("actor", followed.ap_id)
651 Map.put(accept_data, "object", Map.put(accept_data["object"], "actor", follower.ap_id))
653 :error = Transmogrifier.handle_incoming(accept_data)
655 follower = Repo.get(User, follower.id)
657 refute User.following?(follower, followed) == true
660 test "it fails for incoming rejects which cannot be correlated" do
661 follower = insert(:user)
662 followed = insert(:user, %{info: %User.Info{locked: true}})
665 File.read!("test/fixtures/mastodon-reject-activity.json")
667 |> Map.put("actor", followed.ap_id)
670 Map.put(accept_data, "object", Map.put(accept_data["object"], "actor", follower.ap_id))
672 :error = Transmogrifier.handle_incoming(accept_data)
674 follower = Repo.get(User, follower.id)
676 refute User.following?(follower, followed) == true
679 test "it works for incoming rejects which are orphaned" do
680 follower = insert(:user)
681 followed = insert(:user, %{info: %User.Info{locked: true}})
683 {:ok, follower} = User.follow(follower, followed)
684 {:ok, _follow_activity} = ActivityPub.follow(follower, followed)
686 assert User.following?(follower, followed) == true
689 File.read!("test/fixtures/mastodon-reject-activity.json")
691 |> Map.put("actor", followed.ap_id)
694 Map.put(reject_data, "object", Map.put(reject_data["object"], "actor", follower.ap_id))
696 {:ok, activity} = Transmogrifier.handle_incoming(reject_data)
697 refute activity.local
699 follower = Repo.get(User, follower.id)
701 assert User.following?(follower, followed) == false
704 test "it works for incoming rejects which are referenced by IRI only" do
705 follower = insert(:user)
706 followed = insert(:user, %{info: %User.Info{locked: true}})
708 {:ok, follower} = User.follow(follower, followed)
709 {:ok, follow_activity} = ActivityPub.follow(follower, followed)
711 assert User.following?(follower, followed) == true
714 File.read!("test/fixtures/mastodon-reject-activity.json")
716 |> Map.put("actor", followed.ap_id)
717 |> Map.put("object", follow_activity.data["id"])
719 {:ok, %Activity{data: _}} = Transmogrifier.handle_incoming(reject_data)
721 follower = Repo.get(User, follower.id)
723 assert User.following?(follower, followed) == false
726 test "it rejects activities without a valid ID" do
730 File.read!("test/fixtures/mastodon-follow-activity.json")
732 |> Map.put("object", user.ap_id)
735 :error = Transmogrifier.handle_incoming(data)
738 test "it remaps video URLs as attachments if necessary" do
740 ActivityPub.fetch_object_from_id(
741 "https://peertube.moe/videos/watch/df5f464b-be8d-46fb-ad81-2d4c2d1630e3"
746 "mediaType" => "video/mp4",
748 "https://peertube.moe/static/webseed/df5f464b-be8d-46fb-ad81-2d4c2d1630e3-480.mp4",
749 "mimeType" => "video/mp4",
754 "https://peertube.moe/static/webseed/df5f464b-be8d-46fb-ad81-2d4c2d1630e3-480.mp4",
755 "mediaType" => "video/mp4",
762 assert object.data["url"] ==
763 "https://peertube.moe/videos/watch/df5f464b-be8d-46fb-ad81-2d4c2d1630e3"
765 assert object.data["attachment"] == [attachment]
769 describe "prepare outgoing" do
770 test "it turns mentions into tags" do
772 other_user = insert(:user)
775 CommonAPI.post(user, %{"status" => "hey, @#{other_user.nickname}, how are ya? #2hu"})
777 {:ok, modified} = Transmogrifier.prepare_outgoing(activity.data)
778 object = modified["object"]
780 expected_mention = %{
781 "href" => other_user.ap_id,
782 "name" => "@#{other_user.nickname}",
787 "href" => Pleroma.Web.Endpoint.url() <> "/tags/2hu",
792 assert Enum.member?(object["tag"], expected_tag)
793 assert Enum.member?(object["tag"], expected_mention)
796 test "it adds the sensitive property" do
799 {:ok, activity} = CommonAPI.post(user, %{"status" => "#nsfw hey"})
800 {:ok, modified} = Transmogrifier.prepare_outgoing(activity.data)
802 assert modified["object"]["sensitive"]
805 test "it adds the json-ld context and the conversation property" do
808 {:ok, activity} = CommonAPI.post(user, %{"status" => "hey"})
809 {:ok, modified} = Transmogrifier.prepare_outgoing(activity.data)
811 assert modified["@context"] ==
812 Pleroma.Web.ActivityPub.Utils.make_json_ld_header()["@context"]
814 assert modified["object"]["conversation"] == modified["context"]
817 test "it sets the 'attributedTo' property to the actor of the object if it doesn't have one" do
820 {:ok, activity} = CommonAPI.post(user, %{"status" => "hey"})
821 {:ok, modified} = Transmogrifier.prepare_outgoing(activity.data)
823 assert modified["object"]["actor"] == modified["object"]["attributedTo"]
826 test "it translates ostatus IDs to external URLs" do
827 incoming = File.read!("test/fixtures/incoming_note_activity.xml")
828 {:ok, [referent_activity]} = OStatus.handle_incoming(incoming)
832 {:ok, activity, _} = CommonAPI.favorite(referent_activity.id, user)
833 {:ok, modified} = Transmogrifier.prepare_outgoing(activity.data)
835 assert modified["object"] == "http://gs.example.org:4040/index.php/notice/29"
838 test "it translates ostatus reply_to IDs to external URLs" do
839 incoming = File.read!("test/fixtures/incoming_note_activity.xml")
840 {:ok, [referred_activity]} = OStatus.handle_incoming(incoming)
845 CommonAPI.post(user, %{"status" => "HI!", "in_reply_to_status_id" => referred_activity.id})
847 {:ok, modified} = Transmogrifier.prepare_outgoing(activity.data)
849 assert modified["object"]["inReplyTo"] == "http://gs.example.org:4040/index.php/notice/29"
852 test "it strips internal hashtag data" do
855 {:ok, activity} = CommonAPI.post(user, %{"status" => "#2hu"})
858 "href" => Pleroma.Web.Endpoint.url() <> "/tags/2hu",
863 {:ok, modified} = Transmogrifier.prepare_outgoing(activity.data)
865 assert modified["object"]["tag"] == [expected_tag]
868 test "it strips internal fields" do
871 {:ok, activity} = CommonAPI.post(user, %{"status" => "#2hu :moominmamma:"})
873 {:ok, modified} = Transmogrifier.prepare_outgoing(activity.data)
875 assert length(modified["object"]["tag"]) == 2
877 assert is_nil(modified["object"]["emoji"])
878 assert is_nil(modified["object"]["like_count"])
879 assert is_nil(modified["object"]["announcements"])
880 assert is_nil(modified["object"]["announcement_count"])
881 assert is_nil(modified["object"]["context_id"])
884 test "it strips internal fields of article" do
885 activity = insert(:article_activity)
887 {:ok, modified} = Transmogrifier.prepare_outgoing(activity.data)
889 assert length(modified["object"]["tag"]) == 2
891 assert is_nil(modified["object"]["emoji"])
892 assert is_nil(modified["object"]["like_count"])
893 assert is_nil(modified["object"]["announcements"])
894 assert is_nil(modified["object"]["announcement_count"])
895 assert is_nil(modified["object"]["context_id"])
898 test "it adds like collection to object" do
899 activity = insert(:note_activity)
900 {:ok, modified} = Transmogrifier.prepare_outgoing(activity.data)
902 assert modified["object"]["likes"]["type"] == "OrderedCollection"
903 assert modified["object"]["likes"]["totalItems"] == 0
906 test "the directMessage flag is present" do
908 other_user = insert(:user)
910 {:ok, activity} = CommonAPI.post(user, %{"status" => "2hu :moominmamma:"})
912 {:ok, modified} = Transmogrifier.prepare_outgoing(activity.data)
914 assert modified["directMessage"] == false
917 CommonAPI.post(user, %{"status" => "@#{other_user.nickname} :moominmamma:"})
919 {:ok, modified} = Transmogrifier.prepare_outgoing(activity.data)
921 assert modified["directMessage"] == false
924 CommonAPI.post(user, %{
925 "status" => "@#{other_user.nickname} :moominmamma:",
926 "visibility" => "direct"
929 {:ok, modified} = Transmogrifier.prepare_outgoing(activity.data)
931 assert modified["directMessage"] == true
935 describe "user upgrade" do
936 test "it upgrades a user to activitypub" do
939 nickname: "rye@niu.moe",
941 ap_id: "https://niu.moe/users/rye",
942 follower_address: User.ap_followers(%User{nickname: "rye@niu.moe"})
945 user_two = insert(:user, %{following: [user.follower_address]})
947 {:ok, activity} = CommonAPI.post(user, %{"status" => "test"})
948 {:ok, unrelated_activity} = CommonAPI.post(user_two, %{"status" => "test"})
949 assert "http://localhost:4001/users/rye@niu.moe/followers" in activity.recipients
951 user = Repo.get(User, user.id)
952 assert user.info.note_count == 1
954 {:ok, user} = Transmogrifier.upgrade_user_from_ap_id("https://niu.moe/users/rye")
955 assert user.info.ap_enabled
956 assert user.info.note_count == 1
957 assert user.follower_address == "https://niu.moe/users/rye/followers"
959 # Wait for the background task
962 user = Repo.get(User, user.id)
963 assert user.info.note_count == 1
965 activity = Repo.get(Activity, activity.id)
966 assert user.follower_address in activity.recipients
972 "https://cdn.niu.moe/accounts/avatars/000/033/323/original/fd7f8ae0b3ffedc9.jpeg"
981 "https://cdn.niu.moe/accounts/headers/000/033/323/original/850b3448fa5fd477.png"
986 refute "..." in activity.recipients
988 unrelated_activity = Repo.get(Activity, unrelated_activity.id)
989 refute user.follower_address in unrelated_activity.recipients
991 user_two = Repo.get(User, user_two.id)
992 assert user.follower_address in user_two.following
993 refute "..." in user_two.following
997 describe "maybe_retire_websub" do
998 test "it deletes all websub client subscripitions with the user as topic" do
999 subscription = %WebsubClientSubscription{topic: "https://niu.moe/users/rye.atom"}
1000 {:ok, ws} = Repo.insert(subscription)
1002 subscription = %WebsubClientSubscription{topic: "https://niu.moe/users/pasty.atom"}
1003 {:ok, ws2} = Repo.insert(subscription)
1005 Transmogrifier.maybe_retire_websub("https://niu.moe/users/rye")
1007 refute Repo.get(WebsubClientSubscription, ws.id)
1008 assert Repo.get(WebsubClientSubscription, ws2.id)
1012 describe "actor rewriting" do
1013 test "it fixes the actor URL property to be a proper URI" do
1015 "url" => %{"href" => "http://example.com"}
1018 rewritten = Transmogrifier.maybe_fix_user_object(data)
1019 assert rewritten["url"] == "http://example.com"
1023 describe "actor origin containment" do
1024 test "it rejects objects with a bogus origin" do
1025 {:error, _} = ActivityPub.fetch_object_from_id("https://info.pleroma.site/activity.json")
1028 test "it rejects activities which reference objects with bogus origins" do
1030 "@context" => "https://www.w3.org/ns/activitystreams",
1031 "id" => "http://mastodon.example.org/users/admin/activities/1234",
1032 "actor" => "http://mastodon.example.org/users/admin",
1033 "to" => ["https://www.w3.org/ns/activitystreams#Public"],
1034 "object" => "https://info.pleroma.site/activity.json",
1035 "type" => "Announce"
1038 :error = Transmogrifier.handle_incoming(data)
1041 test "it rejects objects when attributedTo is wrong (variant 1)" do
1042 {:error, _} = ActivityPub.fetch_object_from_id("https://info.pleroma.site/activity2.json")
1045 test "it rejects activities which reference objects that have an incorrect attribution (variant 1)" do
1047 "@context" => "https://www.w3.org/ns/activitystreams",
1048 "id" => "http://mastodon.example.org/users/admin/activities/1234",
1049 "actor" => "http://mastodon.example.org/users/admin",
1050 "to" => ["https://www.w3.org/ns/activitystreams#Public"],
1051 "object" => "https://info.pleroma.site/activity2.json",
1052 "type" => "Announce"
1055 :error = Transmogrifier.handle_incoming(data)
1058 test "it rejects objects when attributedTo is wrong (variant 2)" do
1059 {:error, _} = ActivityPub.fetch_object_from_id("https://info.pleroma.site/activity3.json")
1062 test "it rejects activities which reference objects that have an incorrect attribution (variant 2)" do
1064 "@context" => "https://www.w3.org/ns/activitystreams",
1065 "id" => "http://mastodon.example.org/users/admin/activities/1234",
1066 "actor" => "http://mastodon.example.org/users/admin",
1067 "to" => ["https://www.w3.org/ns/activitystreams#Public"],
1068 "object" => "https://info.pleroma.site/activity3.json",
1069 "type" => "Announce"
1072 :error = Transmogrifier.handle_incoming(data)
1076 describe "general origin containment" do
1077 test "contain_origin_from_id() catches obvious spoofing attempts" do
1079 "id" => "http://example.com/~alyssa/activities/1234.json"
1083 Transmogrifier.contain_origin_from_id(
1084 "http://example.org/~alyssa/activities/1234.json",
1089 test "contain_origin_from_id() allows alternate IDs within the same origin domain" do
1091 "id" => "http://example.com/~alyssa/activities/1234.json"
1095 Transmogrifier.contain_origin_from_id(
1096 "http://example.com/~alyssa/activities/1234",
1101 test "contain_origin_from_id() allows matching IDs" do
1103 "id" => "http://example.com/~alyssa/activities/1234.json"
1107 Transmogrifier.contain_origin_from_id(
1108 "http://example.com/~alyssa/activities/1234.json",
1113 test "users cannot be collided through fake direction spoofing attempts" do
1115 nickname: "rye@niu.moe",
1117 ap_id: "https://niu.moe/users/rye",
1118 follower_address: User.ap_followers(%User{nickname: "rye@niu.moe"})
1121 {:error, _} = User.get_or_fetch_by_ap_id("https://n1u.moe/users/rye")
1124 test "all objects with fake directions are rejected by the object fetcher" do
1126 ActivityPub.fetch_and_contain_remote_object_from_id(
1127 "https://info.pleroma.site/activity4.json"