1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2019 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
5 defmodule Pleroma.Web.AdminAPI.AdminAPIControllerTest do
6 use Pleroma.Web.ConnCase
7 use Oban.Testing, repo: Pleroma.Repo
11 alias Pleroma.ModerationLog
13 alias Pleroma.Tests.ObanHelpers
15 alias Pleroma.UserInviteToken
16 alias Pleroma.Web.ActivityPub.Relay
17 alias Pleroma.Web.CommonAPI
18 alias Pleroma.Web.MastodonAPI.StatusView
19 alias Pleroma.Web.MediaProxy
20 import Pleroma.Factory
23 Tesla.Mock.mock_global(fn env -> apply(HttpRequestMock, :request, [env]) end)
28 describe "DELETE /api/pleroma/admin/users" do
30 admin = insert(:user, is_admin: true)
35 |> assign(:user, admin)
36 |> put_req_header("accept", "application/json")
37 |> delete("/api/pleroma/admin/users?nickname=#{user.nickname}")
39 log_entry = Repo.one(ModerationLog)
41 assert ModerationLog.get_log_entry_message(log_entry) ==
42 "@#{admin.nickname} deleted users: @#{user.nickname}"
44 assert json_response(conn, 200) == user.nickname
47 test "multiple users" do
48 admin = insert(:user, is_admin: true)
49 user_one = insert(:user)
50 user_two = insert(:user)
54 |> assign(:user, admin)
55 |> put_req_header("accept", "application/json")
56 |> delete("/api/pleroma/admin/users", %{
57 nicknames: [user_one.nickname, user_two.nickname]
60 log_entry = Repo.one(ModerationLog)
62 assert ModerationLog.get_log_entry_message(log_entry) ==
63 "@#{admin.nickname} deleted users: @#{user_one.nickname}, @#{user_two.nickname}"
65 response = json_response(conn, 200)
66 assert response -- [user_one.nickname, user_two.nickname] == []
70 describe "/api/pleroma/admin/users" do
72 admin = insert(:user, is_admin: true)
76 |> assign(:user, admin)
77 |> put_req_header("accept", "application/json")
78 |> post("/api/pleroma/admin/users", %{
82 "email" => "lain@example.org",
86 "nickname" => "lain2",
87 "email" => "lain2@example.org",
93 response = json_response(conn, 200) |> Enum.map(&Map.get(&1, "type"))
94 assert response == ["success", "success"]
96 log_entry = Repo.one(ModerationLog)
98 assert ["lain", "lain2"] -- Enum.map(log_entry.data["subjects"], & &1["nickname"]) == []
101 test "Cannot create user with exisiting email" do
102 admin = insert(:user, is_admin: true)
107 |> assign(:user, admin)
108 |> put_req_header("accept", "application/json")
109 |> post("/api/pleroma/admin/users", %{
112 "nickname" => "lain",
113 "email" => user.email,
119 assert json_response(conn, 409) == [
123 "email" => user.email,
126 "error" => "email has already been taken",
132 test "Cannot create user with exisiting nickname" do
133 admin = insert(:user, is_admin: true)
138 |> assign(:user, admin)
139 |> put_req_header("accept", "application/json")
140 |> post("/api/pleroma/admin/users", %{
143 "nickname" => user.nickname,
144 "email" => "someuser@plerama.social",
150 assert json_response(conn, 409) == [
154 "email" => "someuser@plerama.social",
155 "nickname" => user.nickname
157 "error" => "nickname has already been taken",
163 test "Multiple user creation works in transaction" do
164 admin = insert(:user, is_admin: true)
169 |> assign(:user, admin)
170 |> put_req_header("accept", "application/json")
171 |> post("/api/pleroma/admin/users", %{
174 "nickname" => "newuser",
175 "email" => "newuser@pleroma.social",
179 "nickname" => "lain",
180 "email" => user.email,
186 assert json_response(conn, 409) == [
190 "email" => user.email,
193 "error" => "email has already been taken",
199 "email" => "newuser@pleroma.social",
200 "nickname" => "newuser"
207 assert User.get_by_nickname("newuser") === nil
211 describe "/api/pleroma/admin/users/:nickname" do
212 test "Show", %{conn: conn} do
213 admin = insert(:user, is_admin: true)
218 |> assign(:user, admin)
219 |> get("/api/pleroma/admin/users/#{user.nickname}")
222 "deactivated" => false,
223 "id" => to_string(user.id),
225 "nickname" => user.nickname,
226 "roles" => %{"admin" => false, "moderator" => false},
228 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
229 "display_name" => HTML.strip_tags(user.name || user.nickname)
232 assert expected == json_response(conn, 200)
235 test "when the user doesn't exist", %{conn: conn} do
236 admin = insert(:user, is_admin: true)
241 |> assign(:user, admin)
242 |> get("/api/pleroma/admin/users/#{user.nickname}")
244 assert "Not found" == json_response(conn, 404)
248 describe "/api/pleroma/admin/users/follow" do
249 test "allows to force-follow another user" do
250 admin = insert(:user, is_admin: true)
252 follower = insert(:user)
255 |> assign(:user, admin)
256 |> put_req_header("accept", "application/json")
257 |> post("/api/pleroma/admin/users/follow", %{
258 "follower" => follower.nickname,
259 "followed" => user.nickname
262 user = User.get_cached_by_id(user.id)
263 follower = User.get_cached_by_id(follower.id)
265 assert User.following?(follower, user)
267 log_entry = Repo.one(ModerationLog)
269 assert ModerationLog.get_log_entry_message(log_entry) ==
270 "@#{admin.nickname} made @#{follower.nickname} follow @#{user.nickname}"
274 describe "/api/pleroma/admin/users/unfollow" do
275 test "allows to force-unfollow another user" do
276 admin = insert(:user, is_admin: true)
278 follower = insert(:user)
280 User.follow(follower, user)
283 |> assign(:user, admin)
284 |> put_req_header("accept", "application/json")
285 |> post("/api/pleroma/admin/users/unfollow", %{
286 "follower" => follower.nickname,
287 "followed" => user.nickname
290 user = User.get_cached_by_id(user.id)
291 follower = User.get_cached_by_id(follower.id)
293 refute User.following?(follower, user)
295 log_entry = Repo.one(ModerationLog)
297 assert ModerationLog.get_log_entry_message(log_entry) ==
298 "@#{admin.nickname} made @#{follower.nickname} unfollow @#{user.nickname}"
302 describe "PUT /api/pleroma/admin/users/tag" do
304 admin = insert(:user, is_admin: true)
305 user1 = insert(:user, %{tags: ["x"]})
306 user2 = insert(:user, %{tags: ["y"]})
307 user3 = insert(:user, %{tags: ["unchanged"]})
311 |> assign(:user, admin)
312 |> put_req_header("accept", "application/json")
314 "/api/pleroma/admin/users/tag?nicknames[]=#{user1.nickname}&nicknames[]=#{
316 }&tags[]=foo&tags[]=bar"
319 %{conn: conn, admin: admin, user1: user1, user2: user2, user3: user3}
322 test "it appends specified tags to users with specified nicknames", %{
328 assert json_response(conn, :no_content)
329 assert User.get_cached_by_id(user1.id).tags == ["x", "foo", "bar"]
330 assert User.get_cached_by_id(user2.id).tags == ["y", "foo", "bar"]
332 log_entry = Repo.one(ModerationLog)
335 [user1.nickname, user2.nickname]
336 |> Enum.map(&"@#{&1}")
339 tags = ["foo", "bar"] |> Enum.join(", ")
341 assert ModerationLog.get_log_entry_message(log_entry) ==
342 "@#{admin.nickname} added tags: #{tags} to users: #{users}"
345 test "it does not modify tags of not specified users", %{conn: conn, user3: user3} do
346 assert json_response(conn, :no_content)
347 assert User.get_cached_by_id(user3.id).tags == ["unchanged"]
351 describe "DELETE /api/pleroma/admin/users/tag" do
353 admin = insert(:user, is_admin: true)
354 user1 = insert(:user, %{tags: ["x"]})
355 user2 = insert(:user, %{tags: ["y", "z"]})
356 user3 = insert(:user, %{tags: ["unchanged"]})
360 |> assign(:user, admin)
361 |> put_req_header("accept", "application/json")
363 "/api/pleroma/admin/users/tag?nicknames[]=#{user1.nickname}&nicknames[]=#{
368 %{conn: conn, admin: admin, user1: user1, user2: user2, user3: user3}
371 test "it removes specified tags from users with specified nicknames", %{
377 assert json_response(conn, :no_content)
378 assert User.get_cached_by_id(user1.id).tags == []
379 assert User.get_cached_by_id(user2.id).tags == ["y"]
381 log_entry = Repo.one(ModerationLog)
384 [user1.nickname, user2.nickname]
385 |> Enum.map(&"@#{&1}")
388 tags = ["x", "z"] |> Enum.join(", ")
390 assert ModerationLog.get_log_entry_message(log_entry) ==
391 "@#{admin.nickname} removed tags: #{tags} from users: #{users}"
394 test "it does not modify tags of not specified users", %{conn: conn, user3: user3} do
395 assert json_response(conn, :no_content)
396 assert User.get_cached_by_id(user3.id).tags == ["unchanged"]
400 describe "/api/pleroma/admin/users/:nickname/permission_group" do
401 test "GET is giving user_info" do
402 admin = insert(:user, is_admin: true)
406 |> assign(:user, admin)
407 |> put_req_header("accept", "application/json")
408 |> get("/api/pleroma/admin/users/#{admin.nickname}/permission_group/")
410 assert json_response(conn, 200) == %{
412 "is_moderator" => false
416 test "/:right POST, can add to a permission group" do
417 admin = insert(:user, is_admin: true)
422 |> assign(:user, admin)
423 |> put_req_header("accept", "application/json")
424 |> post("/api/pleroma/admin/users/#{user.nickname}/permission_group/admin")
426 assert json_response(conn, 200) == %{
430 log_entry = Repo.one(ModerationLog)
432 assert ModerationLog.get_log_entry_message(log_entry) ==
433 "@#{admin.nickname} made @#{user.nickname} admin"
436 test "/:right POST, can add to a permission group (multiple)" do
437 admin = insert(:user, is_admin: true)
438 user_one = insert(:user)
439 user_two = insert(:user)
443 |> assign(:user, admin)
444 |> put_req_header("accept", "application/json")
445 |> post("/api/pleroma/admin/users/permission_group/admin", %{
446 nicknames: [user_one.nickname, user_two.nickname]
449 assert json_response(conn, 200) == %{
453 log_entry = Repo.one(ModerationLog)
455 assert ModerationLog.get_log_entry_message(log_entry) ==
456 "@#{admin.nickname} made @#{user_one.nickname}, @#{user_two.nickname} admin"
459 test "/:right DELETE, can remove from a permission group" do
460 admin = insert(:user, is_admin: true)
461 user = insert(:user, is_admin: true)
465 |> assign(:user, admin)
466 |> put_req_header("accept", "application/json")
467 |> delete("/api/pleroma/admin/users/#{user.nickname}/permission_group/admin")
469 assert json_response(conn, 200) == %{
473 log_entry = Repo.one(ModerationLog)
475 assert ModerationLog.get_log_entry_message(log_entry) ==
476 "@#{admin.nickname} revoked admin role from @#{user.nickname}"
479 test "/:right DELETE, can remove from a permission group (multiple)" do
480 admin = insert(:user, is_admin: true)
481 user_one = insert(:user, is_admin: true)
482 user_two = insert(:user, is_admin: true)
486 |> assign(:user, admin)
487 |> put_req_header("accept", "application/json")
488 |> delete("/api/pleroma/admin/users/permission_group/admin", %{
489 nicknames: [user_one.nickname, user_two.nickname]
492 assert json_response(conn, 200) == %{
496 log_entry = Repo.one(ModerationLog)
498 assert ModerationLog.get_log_entry_message(log_entry) ==
499 "@#{admin.nickname} revoked admin role from @#{user_one.nickname}, @#{
505 describe "POST /api/pleroma/admin/email_invite, with valid config" do
507 [user: insert(:user, is_admin: true)]
510 clear_config([:instance, :registrations_open]) do
511 Pleroma.Config.put([:instance, :registrations_open], false)
514 clear_config([:instance, :invites_enabled]) do
515 Pleroma.Config.put([:instance, :invites_enabled], true)
518 test "sends invitation and returns 204", %{conn: conn, user: user} do
519 recipient_email = "foo@bar.com"
520 recipient_name = "J. D."
524 |> assign(:user, user)
526 "/api/pleroma/admin/users/email_invite?email=#{recipient_email}&name=#{recipient_name}"
529 assert json_response(conn, :no_content)
531 token_record = List.last(Pleroma.Repo.all(Pleroma.UserInviteToken))
533 refute token_record.used
535 notify_email = Pleroma.Config.get([:instance, :notify_email])
536 instance_name = Pleroma.Config.get([:instance, :name])
539 Pleroma.Emails.UserEmail.user_invitation_email(
546 Swoosh.TestAssertions.assert_email_sent(
547 from: {instance_name, notify_email},
548 to: {recipient_name, recipient_email},
549 html_body: email.html_body
553 test "it returns 403 if requested by a non-admin", %{conn: conn} do
554 non_admin_user = insert(:user)
558 |> assign(:user, non_admin_user)
559 |> post("/api/pleroma/admin/users/email_invite?email=foo@bar.com&name=JD")
561 assert json_response(conn, :forbidden)
565 describe "POST /api/pleroma/admin/users/email_invite, with invalid config" do
567 [user: insert(:user, is_admin: true)]
570 clear_config([:instance, :registrations_open])
571 clear_config([:instance, :invites_enabled])
573 test "it returns 500 if `invites_enabled` is not enabled", %{conn: conn, user: user} do
574 Pleroma.Config.put([:instance, :registrations_open], false)
575 Pleroma.Config.put([:instance, :invites_enabled], false)
579 |> assign(:user, user)
580 |> post("/api/pleroma/admin/users/email_invite?email=foo@bar.com&name=JD")
582 assert json_response(conn, :internal_server_error)
585 test "it returns 500 if `registrations_open` is enabled", %{conn: conn, user: user} do
586 Pleroma.Config.put([:instance, :registrations_open], true)
587 Pleroma.Config.put([:instance, :invites_enabled], true)
591 |> assign(:user, user)
592 |> post("/api/pleroma/admin/users/email_invite?email=foo@bar.com&name=JD")
594 assert json_response(conn, :internal_server_error)
598 test "/api/pleroma/admin/users/:nickname/password_reset" do
599 admin = insert(:user, is_admin: true)
604 |> assign(:user, admin)
605 |> put_req_header("accept", "application/json")
606 |> get("/api/pleroma/admin/users/#{user.nickname}/password_reset")
608 resp = json_response(conn, 200)
610 assert Regex.match?(~r/(http:\/\/|https:\/\/)/, resp["link"])
613 describe "GET /api/pleroma/admin/users" do
615 admin = insert(:user, is_admin: true)
619 |> assign(:user, admin)
621 {:ok, conn: conn, admin: admin}
624 test "renders users array for the first page", %{conn: conn, admin: admin} do
625 user = insert(:user, local: false, tags: ["foo", "bar"])
626 conn = get(conn, "/api/pleroma/admin/users?page=1")
631 "deactivated" => admin.deactivated,
633 "nickname" => admin.nickname,
634 "roles" => %{"admin" => true, "moderator" => false},
637 "avatar" => User.avatar_url(admin) |> MediaProxy.url(),
638 "display_name" => HTML.strip_tags(admin.name || admin.nickname)
641 "deactivated" => user.deactivated,
643 "nickname" => user.nickname,
644 "roles" => %{"admin" => false, "moderator" => false},
646 "tags" => ["foo", "bar"],
647 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
648 "display_name" => HTML.strip_tags(user.name || user.nickname)
651 |> Enum.sort_by(& &1["nickname"])
653 assert json_response(conn, 200) == %{
660 test "renders empty array for the second page", %{conn: conn} do
663 conn = get(conn, "/api/pleroma/admin/users?page=2")
665 assert json_response(conn, 200) == %{
672 test "regular search", %{conn: conn} do
673 user = insert(:user, nickname: "bob")
675 conn = get(conn, "/api/pleroma/admin/users?query=bo")
677 assert json_response(conn, 200) == %{
682 "deactivated" => user.deactivated,
684 "nickname" => user.nickname,
685 "roles" => %{"admin" => false, "moderator" => false},
688 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
689 "display_name" => HTML.strip_tags(user.name || user.nickname)
695 test "search by domain", %{conn: conn} do
696 user = insert(:user, nickname: "nickname@domain.com")
699 conn = get(conn, "/api/pleroma/admin/users?query=domain.com")
701 assert json_response(conn, 200) == %{
706 "deactivated" => user.deactivated,
708 "nickname" => user.nickname,
709 "roles" => %{"admin" => false, "moderator" => false},
712 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
713 "display_name" => HTML.strip_tags(user.name || user.nickname)
719 test "search by full nickname", %{conn: conn} do
720 user = insert(:user, nickname: "nickname@domain.com")
723 conn = get(conn, "/api/pleroma/admin/users?query=nickname@domain.com")
725 assert json_response(conn, 200) == %{
730 "deactivated" => user.deactivated,
732 "nickname" => user.nickname,
733 "roles" => %{"admin" => false, "moderator" => false},
736 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
737 "display_name" => HTML.strip_tags(user.name || user.nickname)
743 test "search by display name", %{conn: conn} do
744 user = insert(:user, name: "Display name")
747 conn = get(conn, "/api/pleroma/admin/users?name=display")
749 assert json_response(conn, 200) == %{
754 "deactivated" => user.deactivated,
756 "nickname" => user.nickname,
757 "roles" => %{"admin" => false, "moderator" => false},
760 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
761 "display_name" => HTML.strip_tags(user.name || user.nickname)
767 test "search by email", %{conn: conn} do
768 user = insert(:user, email: "email@example.com")
771 conn = get(conn, "/api/pleroma/admin/users?email=email@example.com")
773 assert json_response(conn, 200) == %{
778 "deactivated" => user.deactivated,
780 "nickname" => user.nickname,
781 "roles" => %{"admin" => false, "moderator" => false},
784 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
785 "display_name" => HTML.strip_tags(user.name || user.nickname)
791 test "regular search with page size", %{conn: conn} do
792 user = insert(:user, nickname: "aalice")
793 user2 = insert(:user, nickname: "alice")
795 conn1 = get(conn, "/api/pleroma/admin/users?query=a&page_size=1&page=1")
797 assert json_response(conn1, 200) == %{
802 "deactivated" => user.deactivated,
804 "nickname" => user.nickname,
805 "roles" => %{"admin" => false, "moderator" => false},
808 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
809 "display_name" => HTML.strip_tags(user.name || user.nickname)
814 conn2 = get(conn, "/api/pleroma/admin/users?query=a&page_size=1&page=2")
816 assert json_response(conn2, 200) == %{
821 "deactivated" => user2.deactivated,
823 "nickname" => user2.nickname,
824 "roles" => %{"admin" => false, "moderator" => false},
827 "avatar" => User.avatar_url(user2) |> MediaProxy.url(),
828 "display_name" => HTML.strip_tags(user2.name || user2.nickname)
834 test "only local users" do
835 admin = insert(:user, is_admin: true, nickname: "john")
836 user = insert(:user, nickname: "bob")
838 insert(:user, nickname: "bobb", local: false)
842 |> assign(:user, admin)
843 |> get("/api/pleroma/admin/users?query=bo&filters=local")
845 assert json_response(conn, 200) == %{
850 "deactivated" => user.deactivated,
852 "nickname" => user.nickname,
853 "roles" => %{"admin" => false, "moderator" => false},
856 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
857 "display_name" => HTML.strip_tags(user.name || user.nickname)
863 test "only local users with no query", %{admin: old_admin} do
864 admin = insert(:user, is_admin: true, nickname: "john")
865 user = insert(:user, nickname: "bob")
867 insert(:user, nickname: "bobb", local: false)
871 |> assign(:user, admin)
872 |> get("/api/pleroma/admin/users?filters=local")
877 "deactivated" => user.deactivated,
879 "nickname" => user.nickname,
880 "roles" => %{"admin" => false, "moderator" => false},
883 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
884 "display_name" => HTML.strip_tags(user.name || user.nickname)
887 "deactivated" => admin.deactivated,
889 "nickname" => admin.nickname,
890 "roles" => %{"admin" => true, "moderator" => false},
893 "avatar" => User.avatar_url(admin) |> MediaProxy.url(),
894 "display_name" => HTML.strip_tags(admin.name || admin.nickname)
897 "deactivated" => false,
898 "id" => old_admin.id,
900 "nickname" => old_admin.nickname,
901 "roles" => %{"admin" => true, "moderator" => false},
903 "avatar" => User.avatar_url(old_admin) |> MediaProxy.url(),
904 "display_name" => HTML.strip_tags(old_admin.name || old_admin.nickname)
907 |> Enum.sort_by(& &1["nickname"])
909 assert json_response(conn, 200) == %{
916 test "load only admins", %{conn: conn, admin: admin} do
917 second_admin = insert(:user, is_admin: true)
921 conn = get(conn, "/api/pleroma/admin/users?filters=is_admin")
926 "deactivated" => false,
928 "nickname" => admin.nickname,
929 "roles" => %{"admin" => true, "moderator" => false},
930 "local" => admin.local,
932 "avatar" => User.avatar_url(admin) |> MediaProxy.url(),
933 "display_name" => HTML.strip_tags(admin.name || admin.nickname)
936 "deactivated" => false,
937 "id" => second_admin.id,
938 "nickname" => second_admin.nickname,
939 "roles" => %{"admin" => true, "moderator" => false},
940 "local" => second_admin.local,
942 "avatar" => User.avatar_url(second_admin) |> MediaProxy.url(),
943 "display_name" => HTML.strip_tags(second_admin.name || second_admin.nickname)
946 |> Enum.sort_by(& &1["nickname"])
948 assert json_response(conn, 200) == %{
955 test "load only moderators", %{conn: conn} do
956 moderator = insert(:user, is_moderator: true)
960 conn = get(conn, "/api/pleroma/admin/users?filters=is_moderator")
962 assert json_response(conn, 200) == %{
967 "deactivated" => false,
968 "id" => moderator.id,
969 "nickname" => moderator.nickname,
970 "roles" => %{"admin" => false, "moderator" => true},
971 "local" => moderator.local,
973 "avatar" => User.avatar_url(moderator) |> MediaProxy.url(),
974 "display_name" => HTML.strip_tags(moderator.name || moderator.nickname)
980 test "load users with tags list", %{conn: conn} do
981 user1 = insert(:user, tags: ["first"])
982 user2 = insert(:user, tags: ["second"])
986 conn = get(conn, "/api/pleroma/admin/users?tags[]=first&tags[]=second")
991 "deactivated" => false,
993 "nickname" => user1.nickname,
994 "roles" => %{"admin" => false, "moderator" => false},
995 "local" => user1.local,
997 "avatar" => User.avatar_url(user1) |> MediaProxy.url(),
998 "display_name" => HTML.strip_tags(user1.name || user1.nickname)
1001 "deactivated" => false,
1003 "nickname" => user2.nickname,
1004 "roles" => %{"admin" => false, "moderator" => false},
1005 "local" => user2.local,
1006 "tags" => ["second"],
1007 "avatar" => User.avatar_url(user2) |> MediaProxy.url(),
1008 "display_name" => HTML.strip_tags(user2.name || user2.nickname)
1011 |> Enum.sort_by(& &1["nickname"])
1013 assert json_response(conn, 200) == %{
1020 test "it works with multiple filters" do
1021 admin = insert(:user, nickname: "john", is_admin: true)
1022 user = insert(:user, nickname: "bob", local: false, deactivated: true)
1024 insert(:user, nickname: "ken", local: true, deactivated: true)
1025 insert(:user, nickname: "bobb", local: false, deactivated: false)
1029 |> assign(:user, admin)
1030 |> get("/api/pleroma/admin/users?filters=deactivated,external")
1032 assert json_response(conn, 200) == %{
1037 "deactivated" => user.deactivated,
1039 "nickname" => user.nickname,
1040 "roles" => %{"admin" => false, "moderator" => false},
1041 "local" => user.local,
1043 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
1044 "display_name" => HTML.strip_tags(user.name || user.nickname)
1050 test "it omits relay user", %{admin: admin} do
1051 assert %User{} = Relay.get_actor()
1055 |> assign(:user, admin)
1056 |> get("/api/pleroma/admin/users")
1058 assert json_response(conn, 200) == %{
1063 "deactivated" => admin.deactivated,
1065 "nickname" => admin.nickname,
1066 "roles" => %{"admin" => true, "moderator" => false},
1069 "avatar" => User.avatar_url(admin) |> MediaProxy.url(),
1070 "display_name" => HTML.strip_tags(admin.name || admin.nickname)
1077 test "PATCH /api/pleroma/admin/users/activate" do
1078 admin = insert(:user, is_admin: true)
1079 user_one = insert(:user, deactivated: true)
1080 user_two = insert(:user, deactivated: true)
1084 |> assign(:user, admin)
1086 "/api/pleroma/admin/users/activate",
1087 %{nicknames: [user_one.nickname, user_two.nickname]}
1090 response = json_response(conn, 200)
1091 assert Enum.map(response["users"], & &1["deactivated"]) == [false, false]
1093 log_entry = Repo.one(ModerationLog)
1095 assert ModerationLog.get_log_entry_message(log_entry) ==
1096 "@#{admin.nickname} activated users: @#{user_one.nickname}, @#{user_two.nickname}"
1099 test "PATCH /api/pleroma/admin/users/deactivate" do
1100 admin = insert(:user, is_admin: true)
1101 user_one = insert(:user, deactivated: false)
1102 user_two = insert(:user, deactivated: false)
1106 |> assign(:user, admin)
1108 "/api/pleroma/admin/users/deactivate",
1109 %{nicknames: [user_one.nickname, user_two.nickname]}
1112 response = json_response(conn, 200)
1113 assert Enum.map(response["users"], & &1["deactivated"]) == [true, true]
1115 log_entry = Repo.one(ModerationLog)
1117 assert ModerationLog.get_log_entry_message(log_entry) ==
1118 "@#{admin.nickname} deactivated users: @#{user_one.nickname}, @#{user_two.nickname}"
1121 test "PATCH /api/pleroma/admin/users/:nickname/toggle_activation" do
1122 admin = insert(:user, is_admin: true)
1123 user = insert(:user)
1127 |> assign(:user, admin)
1128 |> patch("/api/pleroma/admin/users/#{user.nickname}/toggle_activation")
1130 assert json_response(conn, 200) ==
1132 "deactivated" => !user.deactivated,
1134 "nickname" => user.nickname,
1135 "roles" => %{"admin" => false, "moderator" => false},
1138 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
1139 "display_name" => HTML.strip_tags(user.name || user.nickname)
1142 log_entry = Repo.one(ModerationLog)
1144 assert ModerationLog.get_log_entry_message(log_entry) ==
1145 "@#{admin.nickname} deactivated users: @#{user.nickname}"
1148 describe "POST /api/pleroma/admin/users/invite_token" do
1150 admin = insert(:user, is_admin: true)
1154 |> assign(:user, admin)
1159 test "without options", %{conn: conn} do
1160 conn = post(conn, "/api/pleroma/admin/users/invite_token")
1162 invite_json = json_response(conn, 200)
1163 invite = UserInviteToken.find_by_token!(invite_json["token"])
1165 refute invite.expires_at
1166 refute invite.max_use
1167 assert invite.invite_type == "one_time"
1170 test "with expires_at", %{conn: conn} do
1172 post(conn, "/api/pleroma/admin/users/invite_token", %{
1173 "expires_at" => Date.to_string(Date.utc_today())
1176 invite_json = json_response(conn, 200)
1177 invite = UserInviteToken.find_by_token!(invite_json["token"])
1180 assert invite.expires_at == Date.utc_today()
1181 refute invite.max_use
1182 assert invite.invite_type == "date_limited"
1185 test "with max_use", %{conn: conn} do
1186 conn = post(conn, "/api/pleroma/admin/users/invite_token", %{"max_use" => 150})
1188 invite_json = json_response(conn, 200)
1189 invite = UserInviteToken.find_by_token!(invite_json["token"])
1191 refute invite.expires_at
1192 assert invite.max_use == 150
1193 assert invite.invite_type == "reusable"
1196 test "with max use and expires_at", %{conn: conn} do
1198 post(conn, "/api/pleroma/admin/users/invite_token", %{
1200 "expires_at" => Date.to_string(Date.utc_today())
1203 invite_json = json_response(conn, 200)
1204 invite = UserInviteToken.find_by_token!(invite_json["token"])
1206 assert invite.expires_at == Date.utc_today()
1207 assert invite.max_use == 150
1208 assert invite.invite_type == "reusable_date_limited"
1212 describe "GET /api/pleroma/admin/users/invites" do
1214 admin = insert(:user, is_admin: true)
1218 |> assign(:user, admin)
1223 test "no invites", %{conn: conn} do
1224 conn = get(conn, "/api/pleroma/admin/users/invites")
1226 assert json_response(conn, 200) == %{"invites" => []}
1229 test "with invite", %{conn: conn} do
1230 {:ok, invite} = UserInviteToken.create_invite()
1232 conn = get(conn, "/api/pleroma/admin/users/invites")
1234 assert json_response(conn, 200) == %{
1237 "expires_at" => nil,
1239 "invite_type" => "one_time",
1241 "token" => invite.token,
1250 describe "POST /api/pleroma/admin/users/revoke_invite" do
1251 test "with token" do
1252 admin = insert(:user, is_admin: true)
1253 {:ok, invite} = UserInviteToken.create_invite()
1257 |> assign(:user, admin)
1258 |> post("/api/pleroma/admin/users/revoke_invite", %{"token" => invite.token})
1260 assert json_response(conn, 200) == %{
1261 "expires_at" => nil,
1263 "invite_type" => "one_time",
1265 "token" => invite.token,
1271 test "with invalid token" do
1272 admin = insert(:user, is_admin: true)
1276 |> assign(:user, admin)
1277 |> post("/api/pleroma/admin/users/revoke_invite", %{"token" => "foo"})
1279 assert json_response(conn, :not_found) == "Not found"
1283 describe "GET /api/pleroma/admin/reports/:id" do
1284 setup %{conn: conn} do
1285 admin = insert(:user, is_admin: true)
1287 %{conn: assign(conn, :user, admin)}
1290 test "returns report by its id", %{conn: conn} do
1291 [reporter, target_user] = insert_pair(:user)
1292 activity = insert(:note_activity, user: target_user)
1294 {:ok, %{id: report_id}} =
1295 CommonAPI.report(reporter, %{
1296 "account_id" => target_user.id,
1297 "comment" => "I feel offended",
1298 "status_ids" => [activity.id]
1303 |> get("/api/pleroma/admin/reports/#{report_id}")
1304 |> json_response(:ok)
1306 assert response["id"] == report_id
1309 test "returns 404 when report id is invalid", %{conn: conn} do
1310 conn = get(conn, "/api/pleroma/admin/reports/test")
1312 assert json_response(conn, :not_found) == "Not found"
1316 describe "PATCH /api/pleroma/admin/reports" do
1317 setup %{conn: conn} do
1318 admin = insert(:user, is_admin: true)
1319 [reporter, target_user] = insert_pair(:user)
1320 activity = insert(:note_activity, user: target_user)
1322 {:ok, %{id: report_id}} =
1323 CommonAPI.report(reporter, %{
1324 "account_id" => target_user.id,
1325 "comment" => "I feel offended",
1326 "status_ids" => [activity.id]
1329 {:ok, %{id: second_report_id}} =
1330 CommonAPI.report(reporter, %{
1331 "account_id" => target_user.id,
1332 "comment" => "I feel very offended",
1333 "status_ids" => [activity.id]
1337 conn: assign(conn, :user, admin),
1340 second_report_id: second_report_id
1344 test "mark report as resolved", %{conn: conn, id: id, admin: admin} do
1346 |> patch("/api/pleroma/admin/reports", %{
1348 %{"state" => "resolved", "id" => id}
1351 |> json_response(:no_content)
1353 activity = Activity.get_by_id(id)
1354 assert activity.data["state"] == "resolved"
1356 log_entry = Repo.one(ModerationLog)
1358 assert ModerationLog.get_log_entry_message(log_entry) ==
1359 "@#{admin.nickname} updated report ##{id} with 'resolved' state"
1362 test "closes report", %{conn: conn, id: id, admin: admin} do
1364 |> patch("/api/pleroma/admin/reports", %{
1366 %{"state" => "closed", "id" => id}
1369 |> json_response(:no_content)
1371 activity = Activity.get_by_id(id)
1372 assert activity.data["state"] == "closed"
1374 log_entry = Repo.one(ModerationLog)
1376 assert ModerationLog.get_log_entry_message(log_entry) ==
1377 "@#{admin.nickname} updated report ##{id} with 'closed' state"
1380 test "returns 400 when state is unknown", %{conn: conn, id: id} do
1383 |> patch("/api/pleroma/admin/reports", %{
1385 %{"state" => "test", "id" => id}
1389 assert hd(json_response(conn, :bad_request))["error"] == "Unsupported state"
1392 test "returns 404 when report is not exist", %{conn: conn} do
1395 |> patch("/api/pleroma/admin/reports", %{
1397 %{"state" => "closed", "id" => "test"}
1401 assert hd(json_response(conn, :bad_request))["error"] == "not_found"
1404 test "updates state of multiple reports", %{
1408 second_report_id: second_report_id
1411 |> patch("/api/pleroma/admin/reports", %{
1413 %{"state" => "resolved", "id" => id},
1414 %{"state" => "closed", "id" => second_report_id}
1417 |> json_response(:no_content)
1419 activity = Activity.get_by_id(id)
1420 second_activity = Activity.get_by_id(second_report_id)
1421 assert activity.data["state"] == "resolved"
1422 assert second_activity.data["state"] == "closed"
1424 [first_log_entry, second_log_entry] = Repo.all(ModerationLog)
1426 assert ModerationLog.get_log_entry_message(first_log_entry) ==
1427 "@#{admin.nickname} updated report ##{id} with 'resolved' state"
1429 assert ModerationLog.get_log_entry_message(second_log_entry) ==
1430 "@#{admin.nickname} updated report ##{second_report_id} with 'closed' state"
1434 describe "GET /api/pleroma/admin/reports" do
1435 setup %{conn: conn} do
1436 admin = insert(:user, is_admin: true)
1438 %{conn: assign(conn, :user, admin)}
1441 test "returns empty response when no reports created", %{conn: conn} do
1444 |> get("/api/pleroma/admin/reports")
1445 |> json_response(:ok)
1447 assert Enum.empty?(response["reports"])
1448 assert response["total"] == 0
1451 test "returns reports", %{conn: conn} do
1452 [reporter, target_user] = insert_pair(:user)
1453 activity = insert(:note_activity, user: target_user)
1455 {:ok, %{id: report_id}} =
1456 CommonAPI.report(reporter, %{
1457 "account_id" => target_user.id,
1458 "comment" => "I feel offended",
1459 "status_ids" => [activity.id]
1464 |> get("/api/pleroma/admin/reports")
1465 |> json_response(:ok)
1467 [report] = response["reports"]
1469 assert length(response["reports"]) == 1
1470 assert report["id"] == report_id
1472 assert response["total"] == 1
1475 test "returns reports with specified state", %{conn: conn} do
1476 [reporter, target_user] = insert_pair(:user)
1477 activity = insert(:note_activity, user: target_user)
1479 {:ok, %{id: first_report_id}} =
1480 CommonAPI.report(reporter, %{
1481 "account_id" => target_user.id,
1482 "comment" => "I feel offended",
1483 "status_ids" => [activity.id]
1486 {:ok, %{id: second_report_id}} =
1487 CommonAPI.report(reporter, %{
1488 "account_id" => target_user.id,
1489 "comment" => "I don't like this user"
1492 CommonAPI.update_report_state(second_report_id, "closed")
1496 |> get("/api/pleroma/admin/reports", %{
1499 |> json_response(:ok)
1501 [open_report] = response["reports"]
1503 assert length(response["reports"]) == 1
1504 assert open_report["id"] == first_report_id
1506 assert response["total"] == 1
1510 |> get("/api/pleroma/admin/reports", %{
1513 |> json_response(:ok)
1515 [closed_report] = response["reports"]
1517 assert length(response["reports"]) == 1
1518 assert closed_report["id"] == second_report_id
1520 assert response["total"] == 1
1524 |> get("/api/pleroma/admin/reports", %{
1525 "state" => "resolved"
1527 |> json_response(:ok)
1529 assert Enum.empty?(response["reports"])
1530 assert response["total"] == 0
1533 test "returns 403 when requested by a non-admin" do
1534 user = insert(:user)
1538 |> assign(:user, user)
1539 |> get("/api/pleroma/admin/reports")
1541 assert json_response(conn, :forbidden) == %{"error" => "User is not admin."}
1544 test "returns 403 when requested by anonymous" do
1547 |> get("/api/pleroma/admin/reports")
1549 assert json_response(conn, :forbidden) == %{"error" => "Invalid credentials."}
1553 describe "GET /api/pleroma/admin/grouped_reports" do
1554 setup %{conn: conn} do
1555 admin = insert(:user, is_admin: true)
1556 [reporter, target_user] = insert_pair(:user)
1558 date1 = (DateTime.to_unix(DateTime.utc_now()) + 1000) |> DateTime.from_unix!()
1559 date2 = (DateTime.to_unix(DateTime.utc_now()) + 2000) |> DateTime.from_unix!()
1560 date3 = (DateTime.to_unix(DateTime.utc_now()) + 3000) |> DateTime.from_unix!()
1563 insert(:note_activity, user: target_user, data_attrs: %{"published" => date1})
1566 insert(:note_activity, user: target_user, data_attrs: %{"published" => date2})
1569 insert(:note_activity, user: target_user, data_attrs: %{"published" => date3})
1571 {:ok, first_report} =
1572 CommonAPI.report(reporter, %{
1573 "account_id" => target_user.id,
1574 "status_ids" => [first_status.id, second_status.id, third_status.id]
1577 {:ok, second_report} =
1578 CommonAPI.report(reporter, %{
1579 "account_id" => target_user.id,
1580 "status_ids" => [first_status.id, second_status.id]
1583 {:ok, third_report} =
1584 CommonAPI.report(reporter, %{
1585 "account_id" => target_user.id,
1586 "status_ids" => [first_status.id]
1590 conn: assign(conn, :user, admin),
1591 first_status: Activity.get_by_ap_id_with_object(first_status.data["id"]),
1592 second_status: Activity.get_by_ap_id_with_object(second_status.data["id"]),
1593 third_status: Activity.get_by_ap_id_with_object(third_status.data["id"]),
1594 first_status_reports: [first_report, second_report, third_report],
1595 second_status_reports: [first_report, second_report],
1596 third_status_reports: [first_report],
1597 target_user: target_user,
1602 test "returns reports grouped by status", %{
1604 first_status: first_status,
1605 second_status: second_status,
1606 third_status: third_status,
1607 first_status_reports: first_status_reports,
1608 second_status_reports: second_status_reports,
1609 third_status_reports: third_status_reports,
1610 target_user: target_user,
1615 |> get("/api/pleroma/admin/grouped_reports")
1616 |> json_response(:ok)
1618 assert length(response["reports"]) == 3
1620 first_group = Enum.find(response["reports"], &(&1["status"]["id"] == first_status.id))
1622 second_group = Enum.find(response["reports"], &(&1["status"]["id"] == second_status.id))
1624 third_group = Enum.find(response["reports"], &(&1["status"]["id"] == third_status.id))
1626 assert length(first_group["reports"]) == 3
1627 assert length(second_group["reports"]) == 2
1628 assert length(third_group["reports"]) == 1
1630 assert first_group["date"] ==
1631 Enum.max_by(first_status_reports, fn act ->
1632 NaiveDateTime.from_iso8601!(act.data["published"])
1633 end).data["published"]
1635 assert first_group["status"] == StatusView.render("show.json", %{activity: first_status})
1637 assert first_group["account"]["id"] == target_user.id
1639 assert length(first_group["actors"]) == 1
1640 assert hd(first_group["actors"])["id"] == reporter.id
1642 assert Enum.map(first_group["reports"], & &1["id"]) --
1643 Enum.map(first_status_reports, & &1.id) == []
1645 assert second_group["date"] ==
1646 Enum.max_by(second_status_reports, fn act ->
1647 NaiveDateTime.from_iso8601!(act.data["published"])
1648 end).data["published"]
1650 assert second_group["status"] == %{
1651 "id" => second_status.data["id"],
1652 "content" => second_status.object.data["content"],
1653 "published" => second_status.object.data["published"]
1656 assert second_group["account"]["id"] == target_user.id
1658 assert length(second_group["actors"]) == 1
1659 assert hd(second_group["actors"])["id"] == reporter.id
1661 assert Enum.map(second_group["reports"], & &1["id"]) --
1662 Enum.map(second_status_reports, & &1.id) == []
1664 assert third_group["date"] ==
1665 Enum.max_by(third_status_reports, fn act ->
1666 NaiveDateTime.from_iso8601!(act.data["published"])
1667 end).data["published"]
1669 assert third_group["status"] == %{
1670 "id" => third_status.data["id"],
1671 "content" => third_status.object.data["content"],
1672 "published" => third_status.object.data["published"]
1675 assert third_group["account"]["id"] == target_user.id
1677 assert length(third_group["actors"]) == 1
1678 assert hd(third_group["actors"])["id"] == reporter.id
1680 assert Enum.map(third_group["reports"], & &1["id"]) --
1681 Enum.map(third_status_reports, & &1.id) == []
1685 describe "POST /api/pleroma/admin/reports/:id/respond" do
1686 setup %{conn: conn} do
1687 admin = insert(:user, is_admin: true)
1689 %{conn: assign(conn, :user, admin), admin: admin}
1692 test "returns created dm", %{conn: conn, admin: admin} do
1693 [reporter, target_user] = insert_pair(:user)
1694 activity = insert(:note_activity, user: target_user)
1696 {:ok, %{id: report_id}} =
1697 CommonAPI.report(reporter, %{
1698 "account_id" => target_user.id,
1699 "comment" => "I feel offended",
1700 "status_ids" => [activity.id]
1705 |> post("/api/pleroma/admin/reports/#{report_id}/respond", %{
1706 "status" => "I will check it out"
1708 |> json_response(:ok)
1710 recipients = Enum.map(response["mentions"], & &1["username"])
1712 assert reporter.nickname in recipients
1713 assert response["content"] == "I will check it out"
1714 assert response["visibility"] == "direct"
1716 log_entry = Repo.one(ModerationLog)
1718 assert ModerationLog.get_log_entry_message(log_entry) ==
1719 "@#{admin.nickname} responded with 'I will check it out' to report ##{
1724 test "returns 400 when status is missing", %{conn: conn} do
1725 conn = post(conn, "/api/pleroma/admin/reports/test/respond")
1727 assert json_response(conn, :bad_request) == "Invalid parameters"
1730 test "returns 404 when report id is invalid", %{conn: conn} do
1732 post(conn, "/api/pleroma/admin/reports/test/respond", %{
1736 assert json_response(conn, :not_found) == "Not found"
1740 describe "PUT /api/pleroma/admin/statuses/:id" do
1741 setup %{conn: conn} do
1742 admin = insert(:user, is_admin: true)
1743 activity = insert(:note_activity)
1745 %{conn: assign(conn, :user, admin), id: activity.id, admin: admin}
1748 test "toggle sensitive flag", %{conn: conn, id: id, admin: admin} do
1751 |> put("/api/pleroma/admin/statuses/#{id}", %{"sensitive" => "true"})
1752 |> json_response(:ok)
1754 assert response["sensitive"]
1756 log_entry = Repo.one(ModerationLog)
1758 assert ModerationLog.get_log_entry_message(log_entry) ==
1759 "@#{admin.nickname} updated status ##{id}, set sensitive: 'true'"
1763 |> put("/api/pleroma/admin/statuses/#{id}", %{"sensitive" => "false"})
1764 |> json_response(:ok)
1766 refute response["sensitive"]
1769 test "change visibility flag", %{conn: conn, id: id, admin: admin} do
1772 |> put("/api/pleroma/admin/statuses/#{id}", %{"visibility" => "public"})
1773 |> json_response(:ok)
1775 assert response["visibility"] == "public"
1777 log_entry = Repo.one(ModerationLog)
1779 assert ModerationLog.get_log_entry_message(log_entry) ==
1780 "@#{admin.nickname} updated status ##{id}, set visibility: 'public'"
1784 |> put("/api/pleroma/admin/statuses/#{id}", %{"visibility" => "private"})
1785 |> json_response(:ok)
1787 assert response["visibility"] == "private"
1791 |> put("/api/pleroma/admin/statuses/#{id}", %{"visibility" => "unlisted"})
1792 |> json_response(:ok)
1794 assert response["visibility"] == "unlisted"
1797 test "returns 400 when visibility is unknown", %{conn: conn, id: id} do
1800 |> put("/api/pleroma/admin/statuses/#{id}", %{"visibility" => "test"})
1802 assert json_response(conn, :bad_request) == "Unsupported visibility"
1806 describe "DELETE /api/pleroma/admin/statuses/:id" do
1807 setup %{conn: conn} do
1808 admin = insert(:user, is_admin: true)
1809 activity = insert(:note_activity)
1811 %{conn: assign(conn, :user, admin), id: activity.id, admin: admin}
1814 test "deletes status", %{conn: conn, id: id, admin: admin} do
1816 |> delete("/api/pleroma/admin/statuses/#{id}")
1817 |> json_response(:ok)
1819 refute Activity.get_by_id(id)
1821 log_entry = Repo.one(ModerationLog)
1823 assert ModerationLog.get_log_entry_message(log_entry) ==
1824 "@#{admin.nickname} deleted status ##{id}"
1827 test "returns error when status is not exist", %{conn: conn} do
1830 |> delete("/api/pleroma/admin/statuses/test")
1832 assert json_response(conn, :bad_request) == "Could not delete"
1836 describe "GET /api/pleroma/admin/config" do
1837 setup %{conn: conn} do
1838 admin = insert(:user, is_admin: true)
1840 %{conn: assign(conn, :user, admin)}
1843 test "without any settings in db", %{conn: conn} do
1844 conn = get(conn, "/api/pleroma/admin/config")
1846 assert json_response(conn, 200) == %{"configs" => []}
1849 test "with settings in db", %{conn: conn} do
1850 config1 = insert(:config)
1851 config2 = insert(:config)
1853 conn = get(conn, "/api/pleroma/admin/config")
1866 } = json_response(conn, 200)
1868 assert key1 == config1.key
1869 assert key2 == config2.key
1873 describe "POST /api/pleroma/admin/config" do
1874 setup %{conn: conn} do
1875 admin = insert(:user, is_admin: true)
1877 temp_file = "config/test.exported_from_db.secret.exs"
1880 Application.delete_env(:pleroma, :key1)
1881 Application.delete_env(:pleroma, :key2)
1882 Application.delete_env(:pleroma, :key3)
1883 Application.delete_env(:pleroma, :key4)
1884 Application.delete_env(:pleroma, :keyaa1)
1885 Application.delete_env(:pleroma, :keyaa2)
1886 Application.delete_env(:pleroma, Pleroma.Web.Endpoint.NotReal)
1887 Application.delete_env(:pleroma, Pleroma.Captcha.NotReal)
1888 :ok = File.rm(temp_file)
1891 %{conn: assign(conn, :user, admin)}
1894 clear_config([:instance, :dynamic_configuration]) do
1895 Pleroma.Config.put([:instance, :dynamic_configuration], true)
1898 test "create new config setting in db", %{conn: conn} do
1900 post(conn, "/api/pleroma/admin/config", %{
1902 %{group: "pleroma", key: "key1", value: "value1"},
1905 key: "Ueberauth.Strategy.Twitter.OAuth",
1906 value: [%{"tuple" => [":consumer_secret", "aaaa"]}]
1912 ":nested_1" => "nested_value1",
1914 %{":nested_22" => "nested_value222"},
1915 %{":nested_33" => %{":nested_44" => "nested_444"}}
1923 %{"nested_3" => ":nested_3", "nested_33" => "nested_33"},
1924 %{"nested_4" => true}
1930 value: %{":nested_5" => ":upload", "endpoint" => "https://example.com"}
1935 value: %{"tuple" => ["string", "Pleroma.Captcha.NotReal", []]}
1940 assert json_response(conn, 200) == %{
1943 "group" => "pleroma",
1948 "group" => "ueberauth",
1949 "key" => "Ueberauth.Strategy.Twitter.OAuth",
1950 "value" => [%{"tuple" => [":consumer_secret", "aaaa"]}]
1953 "group" => "pleroma",
1956 ":nested_1" => "nested_value1",
1958 %{":nested_22" => "nested_value222"},
1959 %{":nested_33" => %{":nested_44" => "nested_444"}}
1964 "group" => "pleroma",
1967 %{"nested_3" => ":nested_3", "nested_33" => "nested_33"},
1968 %{"nested_4" => true}
1972 "group" => "pleroma",
1974 "value" => %{"endpoint" => "https://example.com", ":nested_5" => ":upload"}
1979 "value" => %{"tuple" => ["string", "Pleroma.Captcha.NotReal", []]}
1984 assert Application.get_env(:pleroma, :key1) == "value1"
1986 assert Application.get_env(:pleroma, :key2) == %{
1987 nested_1: "nested_value1",
1989 %{nested_22: "nested_value222"},
1990 %{nested_33: %{nested_44: "nested_444"}}
1994 assert Application.get_env(:pleroma, :key3) == [
1995 %{"nested_3" => :nested_3, "nested_33" => "nested_33"},
1996 %{"nested_4" => true}
1999 assert Application.get_env(:pleroma, :key4) == %{
2000 "endpoint" => "https://example.com",
2004 assert Application.get_env(:idna, :key5) == {"string", Pleroma.Captcha.NotReal, []}
2007 test "update config setting & delete", %{conn: conn} do
2008 config1 = insert(:config, key: "keyaa1")
2009 config2 = insert(:config, key: "keyaa2")
2013 key: "Ueberauth.Strategy.Microsoft.OAuth",
2014 value: :erlang.term_to_binary([])
2018 post(conn, "/api/pleroma/admin/config", %{
2020 %{group: config1.group, key: config1.key, value: "another_value"},
2021 %{group: config2.group, key: config2.key, delete: "true"},
2024 key: "Ueberauth.Strategy.Microsoft.OAuth",
2030 assert json_response(conn, 200) == %{
2033 "group" => "pleroma",
2034 "key" => config1.key,
2035 "value" => "another_value"
2040 assert Application.get_env(:pleroma, :keyaa1) == "another_value"
2041 refute Application.get_env(:pleroma, :keyaa2)
2044 test "common config example", %{conn: conn} do
2046 post(conn, "/api/pleroma/admin/config", %{
2049 "group" => "pleroma",
2050 "key" => "Pleroma.Captcha.NotReal",
2052 %{"tuple" => [":enabled", false]},
2053 %{"tuple" => [":method", "Pleroma.Captcha.Kocaptcha"]},
2054 %{"tuple" => [":seconds_valid", 60]},
2055 %{"tuple" => [":path", ""]},
2056 %{"tuple" => [":key1", nil]},
2057 %{"tuple" => [":partial_chain", "&:hackney_connect.partial_chain/1"]},
2058 %{"tuple" => [":regex1", "~r/https:\/\/example.com/"]},
2059 %{"tuple" => [":regex2", "~r/https:\/\/example.com/u"]},
2060 %{"tuple" => [":regex3", "~r/https:\/\/example.com/i"]},
2061 %{"tuple" => [":regex4", "~r/https:\/\/example.com/s"]}
2067 assert json_response(conn, 200) == %{
2070 "group" => "pleroma",
2071 "key" => "Pleroma.Captcha.NotReal",
2073 %{"tuple" => [":enabled", false]},
2074 %{"tuple" => [":method", "Pleroma.Captcha.Kocaptcha"]},
2075 %{"tuple" => [":seconds_valid", 60]},
2076 %{"tuple" => [":path", ""]},
2077 %{"tuple" => [":key1", nil]},
2078 %{"tuple" => [":partial_chain", "&:hackney_connect.partial_chain/1"]},
2079 %{"tuple" => [":regex1", "~r/https:\\/\\/example.com/"]},
2080 %{"tuple" => [":regex2", "~r/https:\\/\\/example.com/u"]},
2081 %{"tuple" => [":regex3", "~r/https:\\/\\/example.com/i"]},
2082 %{"tuple" => [":regex4", "~r/https:\\/\\/example.com/s"]}
2089 test "tuples with more than two values", %{conn: conn} do
2091 post(conn, "/api/pleroma/admin/config", %{
2094 "group" => "pleroma",
2095 "key" => "Pleroma.Web.Endpoint.NotReal",
2111 "/api/v1/streaming",
2112 "Pleroma.Web.MastodonAPI.WebsocketHandler",
2119 "Phoenix.Endpoint.CowboyWebSocket",
2122 "Phoenix.Transports.WebSocket",
2125 "Pleroma.Web.Endpoint",
2126 "Pleroma.Web.UserSocket",
2137 "Phoenix.Endpoint.Cowboy2Handler",
2138 %{"tuple" => ["Pleroma.Web.Endpoint", []]}
2155 assert json_response(conn, 200) == %{
2158 "group" => "pleroma",
2159 "key" => "Pleroma.Web.Endpoint.NotReal",
2175 "/api/v1/streaming",
2176 "Pleroma.Web.MastodonAPI.WebsocketHandler",
2183 "Phoenix.Endpoint.CowboyWebSocket",
2186 "Phoenix.Transports.WebSocket",
2189 "Pleroma.Web.Endpoint",
2190 "Pleroma.Web.UserSocket",
2201 "Phoenix.Endpoint.Cowboy2Handler",
2202 %{"tuple" => ["Pleroma.Web.Endpoint", []]}
2220 test "settings with nesting map", %{conn: conn} do
2222 post(conn, "/api/pleroma/admin/config", %{
2225 "group" => "pleroma",
2228 %{"tuple" => [":key2", "some_val"]},
2233 ":max_options" => 20,
2234 ":max_option_chars" => 200,
2235 ":min_expiration" => 0,
2236 ":max_expiration" => 31_536_000,
2238 ":max_options" => 20,
2239 ":max_option_chars" => 200,
2240 ":min_expiration" => 0,
2241 ":max_expiration" => 31_536_000
2251 assert json_response(conn, 200) ==
2255 "group" => "pleroma",
2258 %{"tuple" => [":key2", "some_val"]},
2263 ":max_expiration" => 31_536_000,
2264 ":max_option_chars" => 200,
2265 ":max_options" => 20,
2266 ":min_expiration" => 0,
2268 ":max_expiration" => 31_536_000,
2269 ":max_option_chars" => 200,
2270 ":max_options" => 20,
2271 ":min_expiration" => 0
2282 test "value as map", %{conn: conn} do
2284 post(conn, "/api/pleroma/admin/config", %{
2287 "group" => "pleroma",
2289 "value" => %{"key" => "some_val"}
2294 assert json_response(conn, 200) ==
2298 "group" => "pleroma",
2300 "value" => %{"key" => "some_val"}
2306 test "dispatch setting", %{conn: conn} do
2308 post(conn, "/api/pleroma/admin/config", %{
2311 "group" => "pleroma",
2312 "key" => "Pleroma.Web.Endpoint.NotReal",
2318 %{"tuple" => [":ip", %{"tuple" => [127, 0, 0, 1]}]},
2319 %{"tuple" => [":dispatch", ["{:_,
2321 {\"/api/v1/streaming\", Pleroma.Web.MastodonAPI.WebsocketHandler, []},
2322 {\"/websocket\", Phoenix.Endpoint.CowboyWebSocket,
2323 {Phoenix.Transports.WebSocket,
2324 {Pleroma.Web.Endpoint, Pleroma.Web.UserSocket, [path: \"/websocket\"]}}},
2325 {:_, Phoenix.Endpoint.Cowboy2Handler, {Pleroma.Web.Endpoint, []}}
2336 "{:_, [{\"/api/v1/streaming\", Pleroma.Web.MastodonAPI.WebsocketHandler, []}, " <>
2337 "{\"/websocket\", Phoenix.Endpoint.CowboyWebSocket, {Phoenix.Transports.WebSocket, " <>
2338 "{Pleroma.Web.Endpoint, Pleroma.Web.UserSocket, [path: \"/websocket\"]}}}, " <>
2339 "{:_, Phoenix.Endpoint.Cowboy2Handler, {Pleroma.Web.Endpoint, []}}]}"
2341 assert json_response(conn, 200) == %{
2344 "group" => "pleroma",
2345 "key" => "Pleroma.Web.Endpoint.NotReal",
2351 %{"tuple" => [":ip", %{"tuple" => [127, 0, 0, 1]}]},
2369 test "queues key as atom", %{conn: conn} do
2371 post(conn, "/api/pleroma/admin/config", %{
2377 %{"tuple" => [":federator_incoming", 50]},
2378 %{"tuple" => [":federator_outgoing", 50]},
2379 %{"tuple" => [":web_push", 50]},
2380 %{"tuple" => [":mailer", 10]},
2381 %{"tuple" => [":transmogrifier", 20]},
2382 %{"tuple" => [":scheduled_activities", 10]},
2383 %{"tuple" => [":background", 5]}
2389 assert json_response(conn, 200) == %{
2395 %{"tuple" => [":federator_incoming", 50]},
2396 %{"tuple" => [":federator_outgoing", 50]},
2397 %{"tuple" => [":web_push", 50]},
2398 %{"tuple" => [":mailer", 10]},
2399 %{"tuple" => [":transmogrifier", 20]},
2400 %{"tuple" => [":scheduled_activities", 10]},
2401 %{"tuple" => [":background", 5]}
2408 test "delete part of settings by atom subkeys", %{conn: conn} do
2412 value: :erlang.term_to_binary(subkey1: "val1", subkey2: "val2", subkey3: "val3")
2416 post(conn, "/api/pleroma/admin/config", %{
2419 group: config.group,
2421 subkeys: [":subkey1", ":subkey3"],
2428 json_response(conn, 200) == %{
2431 "group" => "pleroma",
2433 "value" => [%{"tuple" => [":subkey2", "val2"]}]
2441 describe "config mix tasks run" do
2442 setup %{conn: conn} do
2443 admin = insert(:user, is_admin: true)
2445 temp_file = "config/test.exported_from_db.secret.exs"
2447 Mix.shell(Mix.Shell.Quiet)
2450 Mix.shell(Mix.Shell.IO)
2451 :ok = File.rm(temp_file)
2454 %{conn: assign(conn, :user, admin), admin: admin}
2457 clear_config([:instance, :dynamic_configuration]) do
2458 Pleroma.Config.put([:instance, :dynamic_configuration], true)
2461 clear_config([:feed, :post_title]) do
2462 Pleroma.Config.put([:feed, :post_title], %{max_length: 100, omission: "…"})
2465 test "transfer settings to DB and to file", %{conn: conn, admin: admin} do
2466 assert Pleroma.Repo.all(Pleroma.Web.AdminAPI.Config) == []
2467 conn = get(conn, "/api/pleroma/admin/config/migrate_to_db")
2468 assert json_response(conn, 200) == %{}
2469 assert Pleroma.Repo.all(Pleroma.Web.AdminAPI.Config) > 0
2473 |> assign(:user, admin)
2474 |> get("/api/pleroma/admin/config/migrate_from_db")
2476 assert json_response(conn, 200) == %{}
2477 assert Pleroma.Repo.all(Pleroma.Web.AdminAPI.Config) == []
2481 describe "GET /api/pleroma/admin/users/:nickname/statuses" do
2483 admin = insert(:user, is_admin: true)
2484 user = insert(:user)
2486 date1 = (DateTime.to_unix(DateTime.utc_now()) + 2000) |> DateTime.from_unix!()
2487 date2 = (DateTime.to_unix(DateTime.utc_now()) + 1000) |> DateTime.from_unix!()
2488 date3 = (DateTime.to_unix(DateTime.utc_now()) + 3000) |> DateTime.from_unix!()
2490 insert(:note_activity, user: user, published: date1)
2491 insert(:note_activity, user: user, published: date2)
2492 insert(:note_activity, user: user, published: date3)
2496 |> assign(:user, admin)
2498 {:ok, conn: conn, user: user}
2501 test "renders user's statuses", %{conn: conn, user: user} do
2502 conn = get(conn, "/api/pleroma/admin/users/#{user.nickname}/statuses")
2504 assert json_response(conn, 200) |> length() == 3
2507 test "renders user's statuses with a limit", %{conn: conn, user: user} do
2508 conn = get(conn, "/api/pleroma/admin/users/#{user.nickname}/statuses?page_size=2")
2510 assert json_response(conn, 200) |> length() == 2
2513 test "doesn't return private statuses by default", %{conn: conn, user: user} do
2514 {:ok, _private_status} =
2515 CommonAPI.post(user, %{"status" => "private", "visibility" => "private"})
2517 {:ok, _public_status} =
2518 CommonAPI.post(user, %{"status" => "public", "visibility" => "public"})
2520 conn = get(conn, "/api/pleroma/admin/users/#{user.nickname}/statuses")
2522 assert json_response(conn, 200) |> length() == 4
2525 test "returns private statuses with godmode on", %{conn: conn, user: user} do
2526 {:ok, _private_status} =
2527 CommonAPI.post(user, %{"status" => "private", "visibility" => "private"})
2529 {:ok, _public_status} =
2530 CommonAPI.post(user, %{"status" => "public", "visibility" => "public"})
2532 conn = get(conn, "/api/pleroma/admin/users/#{user.nickname}/statuses?godmode=true")
2534 assert json_response(conn, 200) |> length() == 5
2538 describe "GET /api/pleroma/admin/moderation_log" do
2539 setup %{conn: conn} do
2540 admin = insert(:user, is_admin: true)
2541 moderator = insert(:user, is_moderator: true)
2543 %{conn: assign(conn, :user, admin), admin: admin, moderator: moderator}
2546 test "returns the log", %{conn: conn, admin: admin} do
2547 Repo.insert(%ModerationLog{
2551 "nickname" => admin.nickname,
2554 action: "relay_follow",
2555 target: "https://example.org/relay"
2557 inserted_at: NaiveDateTime.truncate(~N[2017-08-15 15:47:06.597036], :second)
2560 Repo.insert(%ModerationLog{
2564 "nickname" => admin.nickname,
2567 action: "relay_unfollow",
2568 target: "https://example.org/relay"
2570 inserted_at: NaiveDateTime.truncate(~N[2017-08-16 15:47:06.597036], :second)
2573 conn = get(conn, "/api/pleroma/admin/moderation_log")
2575 response = json_response(conn, 200)
2576 [first_entry, second_entry] = response["items"]
2578 assert response["total"] == 2
2579 assert first_entry["data"]["action"] == "relay_unfollow"
2581 assert first_entry["message"] ==
2582 "@#{admin.nickname} unfollowed relay: https://example.org/relay"
2584 assert second_entry["data"]["action"] == "relay_follow"
2586 assert second_entry["message"] ==
2587 "@#{admin.nickname} followed relay: https://example.org/relay"
2590 test "returns the log with pagination", %{conn: conn, admin: admin} do
2591 Repo.insert(%ModerationLog{
2595 "nickname" => admin.nickname,
2598 action: "relay_follow",
2599 target: "https://example.org/relay"
2601 inserted_at: NaiveDateTime.truncate(~N[2017-08-15 15:47:06.597036], :second)
2604 Repo.insert(%ModerationLog{
2608 "nickname" => admin.nickname,
2611 action: "relay_unfollow",
2612 target: "https://example.org/relay"
2614 inserted_at: NaiveDateTime.truncate(~N[2017-08-16 15:47:06.597036], :second)
2617 conn1 = get(conn, "/api/pleroma/admin/moderation_log?page_size=1&page=1")
2619 response1 = json_response(conn1, 200)
2620 [first_entry] = response1["items"]
2622 assert response1["total"] == 2
2623 assert response1["items"] |> length() == 1
2624 assert first_entry["data"]["action"] == "relay_unfollow"
2626 assert first_entry["message"] ==
2627 "@#{admin.nickname} unfollowed relay: https://example.org/relay"
2629 conn2 = get(conn, "/api/pleroma/admin/moderation_log?page_size=1&page=2")
2631 response2 = json_response(conn2, 200)
2632 [second_entry] = response2["items"]
2634 assert response2["total"] == 2
2635 assert response2["items"] |> length() == 1
2636 assert second_entry["data"]["action"] == "relay_follow"
2638 assert second_entry["message"] ==
2639 "@#{admin.nickname} followed relay: https://example.org/relay"
2642 test "filters log by date", %{conn: conn, admin: admin} do
2643 first_date = "2017-08-15T15:47:06Z"
2644 second_date = "2017-08-20T15:47:06Z"
2646 Repo.insert(%ModerationLog{
2650 "nickname" => admin.nickname,
2653 action: "relay_follow",
2654 target: "https://example.org/relay"
2656 inserted_at: NaiveDateTime.from_iso8601!(first_date)
2659 Repo.insert(%ModerationLog{
2663 "nickname" => admin.nickname,
2666 action: "relay_unfollow",
2667 target: "https://example.org/relay"
2669 inserted_at: NaiveDateTime.from_iso8601!(second_date)
2675 "/api/pleroma/admin/moderation_log?start_date=#{second_date}"
2678 response1 = json_response(conn1, 200)
2679 [first_entry] = response1["items"]
2681 assert response1["total"] == 1
2682 assert first_entry["data"]["action"] == "relay_unfollow"
2684 assert first_entry["message"] ==
2685 "@#{admin.nickname} unfollowed relay: https://example.org/relay"
2688 test "returns log filtered by user", %{conn: conn, admin: admin, moderator: moderator} do
2689 Repo.insert(%ModerationLog{
2693 "nickname" => admin.nickname,
2696 action: "relay_follow",
2697 target: "https://example.org/relay"
2701 Repo.insert(%ModerationLog{
2704 "id" => moderator.id,
2705 "nickname" => moderator.nickname,
2708 action: "relay_unfollow",
2709 target: "https://example.org/relay"
2713 conn1 = get(conn, "/api/pleroma/admin/moderation_log?user_id=#{moderator.id}")
2715 response1 = json_response(conn1, 200)
2716 [first_entry] = response1["items"]
2718 assert response1["total"] == 1
2719 assert get_in(first_entry, ["data", "actor", "id"]) == moderator.id
2722 test "returns log filtered by search", %{conn: conn, moderator: moderator} do
2723 ModerationLog.insert_log(%{
2725 action: "relay_follow",
2726 target: "https://example.org/relay"
2729 ModerationLog.insert_log(%{
2731 action: "relay_unfollow",
2732 target: "https://example.org/relay"
2735 conn1 = get(conn, "/api/pleroma/admin/moderation_log?search=unfo")
2737 response1 = json_response(conn1, 200)
2738 [first_entry] = response1["items"]
2740 assert response1["total"] == 1
2742 assert get_in(first_entry, ["data", "message"]) ==
2743 "@#{moderator.nickname} unfollowed relay: https://example.org/relay"
2747 describe "PATCH /users/:nickname/force_password_reset" do
2748 setup %{conn: conn} do
2749 admin = insert(:user, is_admin: true)
2750 user = insert(:user)
2752 %{conn: assign(conn, :user, admin), admin: admin, user: user}
2755 test "sets password_reset_pending to true", %{admin: admin, user: user} do
2756 assert user.password_reset_pending == false
2760 |> assign(:user, admin)
2761 |> patch("/api/pleroma/admin/users/force_password_reset", %{nicknames: [user.nickname]})
2763 assert json_response(conn, 204) == ""
2765 ObanHelpers.perform_all()
2767 assert User.get_by_id(user.id).password_reset_pending == true
2771 describe "relays" do
2772 setup %{conn: conn} do
2773 admin = insert(:user, is_admin: true)
2775 %{conn: assign(conn, :user, admin), admin: admin}
2778 test "POST /relay", %{admin: admin} do
2781 |> assign(:user, admin)
2782 |> post("/api/pleroma/admin/relay", %{
2783 relay_url: "http://mastodon.example.org/users/admin"
2786 assert json_response(conn, 200) == "http://mastodon.example.org/users/admin"
2788 log_entry = Repo.one(ModerationLog)
2790 assert ModerationLog.get_log_entry_message(log_entry) ==
2791 "@#{admin.nickname} followed relay: http://mastodon.example.org/users/admin"
2794 test "GET /relay", %{admin: admin} do
2795 relay_user = Pleroma.Web.ActivityPub.Relay.get_actor()
2797 ["http://mastodon.example.org/users/admin", "https://mstdn.io/users/mayuutann"]
2798 |> Enum.each(fn ap_id ->
2799 {:ok, user} = User.get_or_fetch_by_ap_id(ap_id)
2800 User.follow(relay_user, user)
2805 |> assign(:user, admin)
2806 |> get("/api/pleroma/admin/relay")
2808 assert json_response(conn, 200)["relays"] -- ["mastodon.example.org", "mstdn.io"] == []
2811 test "DELETE /relay", %{admin: admin} do
2813 |> assign(:user, admin)
2814 |> post("/api/pleroma/admin/relay", %{
2815 relay_url: "http://mastodon.example.org/users/admin"
2820 |> assign(:user, admin)
2821 |> delete("/api/pleroma/admin/relay", %{
2822 relay_url: "http://mastodon.example.org/users/admin"
2825 assert json_response(conn, 200) == "http://mastodon.example.org/users/admin"
2827 [log_entry_one, log_entry_two] = Repo.all(ModerationLog)
2829 assert ModerationLog.get_log_entry_message(log_entry_one) ==
2830 "@#{admin.nickname} followed relay: http://mastodon.example.org/users/admin"
2832 assert ModerationLog.get_log_entry_message(log_entry_two) ==
2833 "@#{admin.nickname} unfollowed relay: http://mastodon.example.org/users/admin"
2838 # Needed for testing
2839 defmodule Pleroma.Web.Endpoint.NotReal do
2842 defmodule Pleroma.Captcha.NotReal do