1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2019 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
5 defmodule Pleroma.Web.AdminAPI.AdminAPIControllerTest do
6 use Pleroma.Web.ConnCase
7 use Oban.Testing, repo: Pleroma.Repo
10 alias Pleroma.ConfigDB
12 alias Pleroma.ModerationLog
14 alias Pleroma.ReportNote
15 alias Pleroma.Tests.ObanHelpers
17 alias Pleroma.UserInviteToken
18 alias Pleroma.Web.ActivityPub.Relay
19 alias Pleroma.Web.CommonAPI
20 alias Pleroma.Web.MastodonAPI.StatusView
21 alias Pleroma.Web.MediaProxy
22 import Pleroma.Factory
25 Tesla.Mock.mock_global(fn env -> apply(HttpRequestMock, :request, [env]) end)
31 admin = insert(:user, is_admin: true)
32 token = insert(:oauth_admin_token, user: admin)
36 |> assign(:user, admin)
37 |> assign(:token, token)
39 {:ok, %{admin: admin, token: token, conn: conn}}
42 describe "with [:auth, :enforce_oauth_admin_scope_usage]," do
43 clear_config([:auth, :enforce_oauth_admin_scope_usage]) do
44 Pleroma.Config.put([:auth, :enforce_oauth_admin_scope_usage], true)
47 test "GET /api/pleroma/admin/users/:nickname requires admin:read:accounts or broader scope",
50 url = "/api/pleroma/admin/users/#{user.nickname}"
52 good_token1 = insert(:oauth_token, user: admin, scopes: ["admin"])
53 good_token2 = insert(:oauth_token, user: admin, scopes: ["admin:read"])
54 good_token3 = insert(:oauth_token, user: admin, scopes: ["admin:read:accounts"])
56 bad_token1 = insert(:oauth_token, user: admin, scopes: ["read:accounts"])
57 bad_token2 = insert(:oauth_token, user: admin, scopes: ["admin:read:accounts:partial"])
60 for good_token <- [good_token1, good_token2, good_token3] do
63 |> assign(:user, admin)
64 |> assign(:token, good_token)
67 assert json_response(conn, 200)
70 for good_token <- [good_token1, good_token2, good_token3] do
74 |> assign(:token, good_token)
77 assert json_response(conn, :forbidden)
80 for bad_token <- [bad_token1, bad_token2, bad_token3] do
83 |> assign(:user, admin)
84 |> assign(:token, bad_token)
87 assert json_response(conn, :forbidden)
92 describe "unless [:auth, :enforce_oauth_admin_scope_usage]," do
93 clear_config([:auth, :enforce_oauth_admin_scope_usage]) do
94 Pleroma.Config.put([:auth, :enforce_oauth_admin_scope_usage], false)
97 test "GET /api/pleroma/admin/users/:nickname requires " <>
98 "read:accounts or admin:read:accounts or broader scope",
101 url = "/api/pleroma/admin/users/#{user.nickname}"
103 good_token1 = insert(:oauth_token, user: admin, scopes: ["admin"])
104 good_token2 = insert(:oauth_token, user: admin, scopes: ["admin:read"])
105 good_token3 = insert(:oauth_token, user: admin, scopes: ["admin:read:accounts"])
106 good_token4 = insert(:oauth_token, user: admin, scopes: ["read:accounts"])
107 good_token5 = insert(:oauth_token, user: admin, scopes: ["read"])
109 good_tokens = [good_token1, good_token2, good_token3, good_token4, good_token5]
111 bad_token1 = insert(:oauth_token, user: admin, scopes: ["read:accounts:partial"])
112 bad_token2 = insert(:oauth_token, user: admin, scopes: ["admin:read:accounts:partial"])
115 for good_token <- good_tokens do
118 |> assign(:user, admin)
119 |> assign(:token, good_token)
122 assert json_response(conn, 200)
125 for good_token <- good_tokens do
128 |> assign(:user, nil)
129 |> assign(:token, good_token)
132 assert json_response(conn, :forbidden)
135 for bad_token <- [bad_token1, bad_token2, bad_token3] do
138 |> assign(:user, admin)
139 |> assign(:token, bad_token)
142 assert json_response(conn, :forbidden)
147 describe "DELETE /api/pleroma/admin/users" do
148 test "single user", %{admin: admin, conn: conn} do
153 |> put_req_header("accept", "application/json")
154 |> delete("/api/pleroma/admin/users?nickname=#{user.nickname}")
156 log_entry = Repo.one(ModerationLog)
158 assert ModerationLog.get_log_entry_message(log_entry) ==
159 "@#{admin.nickname} deleted users: @#{user.nickname}"
161 assert json_response(conn, 200) == user.nickname
164 test "multiple users", %{admin: admin, conn: conn} do
165 user_one = insert(:user)
166 user_two = insert(:user)
170 |> put_req_header("accept", "application/json")
171 |> delete("/api/pleroma/admin/users", %{
172 nicknames: [user_one.nickname, user_two.nickname]
175 log_entry = Repo.one(ModerationLog)
177 assert ModerationLog.get_log_entry_message(log_entry) ==
178 "@#{admin.nickname} deleted users: @#{user_one.nickname}, @#{user_two.nickname}"
180 response = json_response(conn, 200)
181 assert response -- [user_one.nickname, user_two.nickname] == []
185 describe "/api/pleroma/admin/users" do
186 test "Create", %{conn: conn} do
189 |> put_req_header("accept", "application/json")
190 |> post("/api/pleroma/admin/users", %{
193 "nickname" => "lain",
194 "email" => "lain@example.org",
198 "nickname" => "lain2",
199 "email" => "lain2@example.org",
205 response = json_response(conn, 200) |> Enum.map(&Map.get(&1, "type"))
206 assert response == ["success", "success"]
208 log_entry = Repo.one(ModerationLog)
210 assert ["lain", "lain2"] -- Enum.map(log_entry.data["subjects"], & &1["nickname"]) == []
213 test "Cannot create user with existing email", %{conn: conn} do
218 |> put_req_header("accept", "application/json")
219 |> post("/api/pleroma/admin/users", %{
222 "nickname" => "lain",
223 "email" => user.email,
229 assert json_response(conn, 409) == [
233 "email" => user.email,
236 "error" => "email has already been taken",
242 test "Cannot create user with existing nickname", %{conn: conn} do
247 |> put_req_header("accept", "application/json")
248 |> post("/api/pleroma/admin/users", %{
251 "nickname" => user.nickname,
252 "email" => "someuser@plerama.social",
258 assert json_response(conn, 409) == [
262 "email" => "someuser@plerama.social",
263 "nickname" => user.nickname
265 "error" => "nickname has already been taken",
271 test "Multiple user creation works in transaction", %{conn: conn} do
276 |> put_req_header("accept", "application/json")
277 |> post("/api/pleroma/admin/users", %{
280 "nickname" => "newuser",
281 "email" => "newuser@pleroma.social",
285 "nickname" => "lain",
286 "email" => user.email,
292 assert json_response(conn, 409) == [
296 "email" => user.email,
299 "error" => "email has already been taken",
305 "email" => "newuser@pleroma.social",
306 "nickname" => "newuser"
313 assert User.get_by_nickname("newuser") === nil
317 describe "/api/pleroma/admin/users/:nickname" do
318 test "Show", %{conn: conn} do
321 conn = get(conn, "/api/pleroma/admin/users/#{user.nickname}")
324 "deactivated" => false,
325 "id" => to_string(user.id),
327 "nickname" => user.nickname,
328 "roles" => %{"admin" => false, "moderator" => false},
330 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
331 "display_name" => HTML.strip_tags(user.name || user.nickname),
332 "confirmation_pending" => false
335 assert expected == json_response(conn, 200)
338 test "when the user doesn't exist", %{conn: conn} do
341 conn = get(conn, "/api/pleroma/admin/users/#{user.nickname}")
343 assert "Not found" == json_response(conn, 404)
347 describe "/api/pleroma/admin/users/follow" do
348 test "allows to force-follow another user", %{admin: admin, conn: conn} do
350 follower = insert(:user)
353 |> put_req_header("accept", "application/json")
354 |> post("/api/pleroma/admin/users/follow", %{
355 "follower" => follower.nickname,
356 "followed" => user.nickname
359 user = User.get_cached_by_id(user.id)
360 follower = User.get_cached_by_id(follower.id)
362 assert User.following?(follower, user)
364 log_entry = Repo.one(ModerationLog)
366 assert ModerationLog.get_log_entry_message(log_entry) ==
367 "@#{admin.nickname} made @#{follower.nickname} follow @#{user.nickname}"
371 describe "/api/pleroma/admin/users/unfollow" do
372 test "allows to force-unfollow another user", %{admin: admin, conn: conn} do
374 follower = insert(:user)
376 User.follow(follower, user)
379 |> put_req_header("accept", "application/json")
380 |> post("/api/pleroma/admin/users/unfollow", %{
381 "follower" => follower.nickname,
382 "followed" => user.nickname
385 user = User.get_cached_by_id(user.id)
386 follower = User.get_cached_by_id(follower.id)
388 refute User.following?(follower, user)
390 log_entry = Repo.one(ModerationLog)
392 assert ModerationLog.get_log_entry_message(log_entry) ==
393 "@#{admin.nickname} made @#{follower.nickname} unfollow @#{user.nickname}"
397 describe "PUT /api/pleroma/admin/users/tag" do
398 setup %{conn: conn} do
399 user1 = insert(:user, %{tags: ["x"]})
400 user2 = insert(:user, %{tags: ["y"]})
401 user3 = insert(:user, %{tags: ["unchanged"]})
405 |> put_req_header("accept", "application/json")
407 "/api/pleroma/admin/users/tag?nicknames[]=#{user1.nickname}&nicknames[]=" <>
408 "#{user2.nickname}&tags[]=foo&tags[]=bar"
411 %{conn: conn, user1: user1, user2: user2, user3: user3}
414 test "it appends specified tags to users with specified nicknames", %{
420 assert json_response(conn, :no_content)
421 assert User.get_cached_by_id(user1.id).tags == ["x", "foo", "bar"]
422 assert User.get_cached_by_id(user2.id).tags == ["y", "foo", "bar"]
424 log_entry = Repo.one(ModerationLog)
427 [user1.nickname, user2.nickname]
428 |> Enum.map(&"@#{&1}")
431 tags = ["foo", "bar"] |> Enum.join(", ")
433 assert ModerationLog.get_log_entry_message(log_entry) ==
434 "@#{admin.nickname} added tags: #{tags} to users: #{users}"
437 test "it does not modify tags of not specified users", %{conn: conn, user3: user3} do
438 assert json_response(conn, :no_content)
439 assert User.get_cached_by_id(user3.id).tags == ["unchanged"]
443 describe "DELETE /api/pleroma/admin/users/tag" do
444 setup %{conn: conn} do
445 user1 = insert(:user, %{tags: ["x"]})
446 user2 = insert(:user, %{tags: ["y", "z"]})
447 user3 = insert(:user, %{tags: ["unchanged"]})
451 |> put_req_header("accept", "application/json")
453 "/api/pleroma/admin/users/tag?nicknames[]=#{user1.nickname}&nicknames[]=" <>
454 "#{user2.nickname}&tags[]=x&tags[]=z"
457 %{conn: conn, user1: user1, user2: user2, user3: user3}
460 test "it removes specified tags from users with specified nicknames", %{
466 assert json_response(conn, :no_content)
467 assert User.get_cached_by_id(user1.id).tags == []
468 assert User.get_cached_by_id(user2.id).tags == ["y"]
470 log_entry = Repo.one(ModerationLog)
473 [user1.nickname, user2.nickname]
474 |> Enum.map(&"@#{&1}")
477 tags = ["x", "z"] |> Enum.join(", ")
479 assert ModerationLog.get_log_entry_message(log_entry) ==
480 "@#{admin.nickname} removed tags: #{tags} from users: #{users}"
483 test "it does not modify tags of not specified users", %{conn: conn, user3: user3} do
484 assert json_response(conn, :no_content)
485 assert User.get_cached_by_id(user3.id).tags == ["unchanged"]
489 describe "/api/pleroma/admin/users/:nickname/permission_group" do
490 test "GET is giving user_info", %{admin: admin, conn: conn} do
493 |> put_req_header("accept", "application/json")
494 |> get("/api/pleroma/admin/users/#{admin.nickname}/permission_group/")
496 assert json_response(conn, 200) == %{
498 "is_moderator" => false
502 test "/:right POST, can add to a permission group", %{admin: admin, conn: conn} do
507 |> put_req_header("accept", "application/json")
508 |> post("/api/pleroma/admin/users/#{user.nickname}/permission_group/admin")
510 assert json_response(conn, 200) == %{
514 log_entry = Repo.one(ModerationLog)
516 assert ModerationLog.get_log_entry_message(log_entry) ==
517 "@#{admin.nickname} made @#{user.nickname} admin"
520 test "/:right POST, can add to a permission group (multiple)", %{admin: admin, conn: conn} do
521 user_one = insert(:user)
522 user_two = insert(:user)
526 |> put_req_header("accept", "application/json")
527 |> post("/api/pleroma/admin/users/permission_group/admin", %{
528 nicknames: [user_one.nickname, user_two.nickname]
531 assert json_response(conn, 200) == %{"is_admin" => true}
533 log_entry = Repo.one(ModerationLog)
535 assert ModerationLog.get_log_entry_message(log_entry) ==
536 "@#{admin.nickname} made @#{user_one.nickname}, @#{user_two.nickname} admin"
539 test "/:right DELETE, can remove from a permission group", %{admin: admin, conn: conn} do
540 user = insert(:user, is_admin: true)
544 |> put_req_header("accept", "application/json")
545 |> delete("/api/pleroma/admin/users/#{user.nickname}/permission_group/admin")
547 assert json_response(conn, 200) == %{"is_admin" => false}
549 log_entry = Repo.one(ModerationLog)
551 assert ModerationLog.get_log_entry_message(log_entry) ==
552 "@#{admin.nickname} revoked admin role from @#{user.nickname}"
555 test "/:right DELETE, can remove from a permission group (multiple)", %{
559 user_one = insert(:user, is_admin: true)
560 user_two = insert(:user, is_admin: true)
564 |> put_req_header("accept", "application/json")
565 |> delete("/api/pleroma/admin/users/permission_group/admin", %{
566 nicknames: [user_one.nickname, user_two.nickname]
569 assert json_response(conn, 200) == %{"is_admin" => false}
571 log_entry = Repo.one(ModerationLog)
573 assert ModerationLog.get_log_entry_message(log_entry) ==
574 "@#{admin.nickname} revoked admin role from @#{user_one.nickname}, @#{
580 describe "POST /api/pleroma/admin/email_invite, with valid config" do
581 clear_config([:instance, :registrations_open]) do
582 Pleroma.Config.put([:instance, :registrations_open], false)
585 clear_config([:instance, :invites_enabled]) do
586 Pleroma.Config.put([:instance, :invites_enabled], true)
589 test "sends invitation and returns 204", %{admin: admin, conn: conn} do
590 recipient_email = "foo@bar.com"
591 recipient_name = "J. D."
596 "/api/pleroma/admin/users/email_invite?email=#{recipient_email}&name=#{recipient_name}"
599 assert json_response(conn, :no_content)
601 token_record = List.last(Repo.all(Pleroma.UserInviteToken))
603 refute token_record.used
605 notify_email = Pleroma.Config.get([:instance, :notify_email])
606 instance_name = Pleroma.Config.get([:instance, :name])
609 Pleroma.Emails.UserEmail.user_invitation_email(
616 Swoosh.TestAssertions.assert_email_sent(
617 from: {instance_name, notify_email},
618 to: {recipient_name, recipient_email},
619 html_body: email.html_body
623 test "it returns 403 if requested by a non-admin" do
624 non_admin_user = insert(:user)
625 token = insert(:oauth_token, user: non_admin_user)
629 |> assign(:user, non_admin_user)
630 |> assign(:token, token)
631 |> post("/api/pleroma/admin/users/email_invite?email=foo@bar.com&name=JD")
633 assert json_response(conn, :forbidden)
637 describe "POST /api/pleroma/admin/users/email_invite, with invalid config" do
638 clear_config([:instance, :registrations_open])
639 clear_config([:instance, :invites_enabled])
641 test "it returns 500 if `invites_enabled` is not enabled", %{conn: conn} do
642 Pleroma.Config.put([:instance, :registrations_open], false)
643 Pleroma.Config.put([:instance, :invites_enabled], false)
645 conn = post(conn, "/api/pleroma/admin/users/email_invite?email=foo@bar.com&name=JD")
647 assert json_response(conn, :internal_server_error)
650 test "it returns 500 if `registrations_open` is enabled", %{conn: conn} do
651 Pleroma.Config.put([:instance, :registrations_open], true)
652 Pleroma.Config.put([:instance, :invites_enabled], true)
654 conn = post(conn, "/api/pleroma/admin/users/email_invite?email=foo@bar.com&name=JD")
656 assert json_response(conn, :internal_server_error)
660 test "/api/pleroma/admin/users/:nickname/password_reset", %{conn: conn} do
665 |> put_req_header("accept", "application/json")
666 |> get("/api/pleroma/admin/users/#{user.nickname}/password_reset")
668 resp = json_response(conn, 200)
670 assert Regex.match?(~r/(http:\/\/|https:\/\/)/, resp["link"])
673 describe "GET /api/pleroma/admin/users" do
674 test "renders users array for the first page", %{conn: conn, admin: admin} do
675 user = insert(:user, local: false, tags: ["foo", "bar"])
676 conn = get(conn, "/api/pleroma/admin/users?page=1")
681 "deactivated" => admin.deactivated,
683 "nickname" => admin.nickname,
684 "roles" => %{"admin" => true, "moderator" => false},
687 "avatar" => User.avatar_url(admin) |> MediaProxy.url(),
688 "display_name" => HTML.strip_tags(admin.name || admin.nickname),
689 "confirmation_pending" => false
692 "deactivated" => user.deactivated,
694 "nickname" => user.nickname,
695 "roles" => %{"admin" => false, "moderator" => false},
697 "tags" => ["foo", "bar"],
698 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
699 "display_name" => HTML.strip_tags(user.name || user.nickname),
700 "confirmation_pending" => false
703 |> Enum.sort_by(& &1["nickname"])
705 assert json_response(conn, 200) == %{
712 test "renders empty array for the second page", %{conn: conn} do
715 conn = get(conn, "/api/pleroma/admin/users?page=2")
717 assert json_response(conn, 200) == %{
724 test "regular search", %{conn: conn} do
725 user = insert(:user, nickname: "bob")
727 conn = get(conn, "/api/pleroma/admin/users?query=bo")
729 assert json_response(conn, 200) == %{
734 "deactivated" => user.deactivated,
736 "nickname" => user.nickname,
737 "roles" => %{"admin" => false, "moderator" => false},
740 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
741 "display_name" => HTML.strip_tags(user.name || user.nickname),
742 "confirmation_pending" => false
748 test "search by domain", %{conn: conn} do
749 user = insert(:user, nickname: "nickname@domain.com")
752 conn = get(conn, "/api/pleroma/admin/users?query=domain.com")
754 assert json_response(conn, 200) == %{
759 "deactivated" => user.deactivated,
761 "nickname" => user.nickname,
762 "roles" => %{"admin" => false, "moderator" => false},
765 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
766 "display_name" => HTML.strip_tags(user.name || user.nickname),
767 "confirmation_pending" => false
773 test "search by full nickname", %{conn: conn} do
774 user = insert(:user, nickname: "nickname@domain.com")
777 conn = get(conn, "/api/pleroma/admin/users?query=nickname@domain.com")
779 assert json_response(conn, 200) == %{
784 "deactivated" => user.deactivated,
786 "nickname" => user.nickname,
787 "roles" => %{"admin" => false, "moderator" => false},
790 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
791 "display_name" => HTML.strip_tags(user.name || user.nickname),
792 "confirmation_pending" => false
798 test "search by display name", %{conn: conn} do
799 user = insert(:user, name: "Display name")
802 conn = get(conn, "/api/pleroma/admin/users?name=display")
804 assert json_response(conn, 200) == %{
809 "deactivated" => user.deactivated,
811 "nickname" => user.nickname,
812 "roles" => %{"admin" => false, "moderator" => false},
815 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
816 "display_name" => HTML.strip_tags(user.name || user.nickname),
817 "confirmation_pending" => false
823 test "search by email", %{conn: conn} do
824 user = insert(:user, email: "email@example.com")
827 conn = get(conn, "/api/pleroma/admin/users?email=email@example.com")
829 assert json_response(conn, 200) == %{
834 "deactivated" => user.deactivated,
836 "nickname" => user.nickname,
837 "roles" => %{"admin" => false, "moderator" => false},
840 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
841 "display_name" => HTML.strip_tags(user.name || user.nickname),
842 "confirmation_pending" => false
848 test "regular search with page size", %{conn: conn} do
849 user = insert(:user, nickname: "aalice")
850 user2 = insert(:user, nickname: "alice")
852 conn1 = get(conn, "/api/pleroma/admin/users?query=a&page_size=1&page=1")
854 assert json_response(conn1, 200) == %{
859 "deactivated" => user.deactivated,
861 "nickname" => user.nickname,
862 "roles" => %{"admin" => false, "moderator" => false},
865 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
866 "display_name" => HTML.strip_tags(user.name || user.nickname),
867 "confirmation_pending" => false
872 conn2 = get(conn, "/api/pleroma/admin/users?query=a&page_size=1&page=2")
874 assert json_response(conn2, 200) == %{
879 "deactivated" => user2.deactivated,
881 "nickname" => user2.nickname,
882 "roles" => %{"admin" => false, "moderator" => false},
885 "avatar" => User.avatar_url(user2) |> MediaProxy.url(),
886 "display_name" => HTML.strip_tags(user2.name || user2.nickname),
887 "confirmation_pending" => false
893 test "only local users" do
894 admin = insert(:user, is_admin: true, nickname: "john")
895 token = insert(:oauth_admin_token, user: admin)
896 user = insert(:user, nickname: "bob")
898 insert(:user, nickname: "bobb", local: false)
902 |> assign(:user, admin)
903 |> assign(:token, token)
904 |> get("/api/pleroma/admin/users?query=bo&filters=local")
906 assert json_response(conn, 200) == %{
911 "deactivated" => user.deactivated,
913 "nickname" => user.nickname,
914 "roles" => %{"admin" => false, "moderator" => false},
917 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
918 "display_name" => HTML.strip_tags(user.name || user.nickname),
919 "confirmation_pending" => false
925 test "only local users with no query", %{conn: conn, admin: old_admin} do
926 admin = insert(:user, is_admin: true, nickname: "john")
927 user = insert(:user, nickname: "bob")
929 insert(:user, nickname: "bobb", local: false)
931 conn = get(conn, "/api/pleroma/admin/users?filters=local")
936 "deactivated" => user.deactivated,
938 "nickname" => user.nickname,
939 "roles" => %{"admin" => false, "moderator" => false},
942 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
943 "display_name" => HTML.strip_tags(user.name || user.nickname),
944 "confirmation_pending" => false
947 "deactivated" => admin.deactivated,
949 "nickname" => admin.nickname,
950 "roles" => %{"admin" => true, "moderator" => false},
953 "avatar" => User.avatar_url(admin) |> MediaProxy.url(),
954 "display_name" => HTML.strip_tags(admin.name || admin.nickname),
955 "confirmation_pending" => false
958 "deactivated" => false,
959 "id" => old_admin.id,
961 "nickname" => old_admin.nickname,
962 "roles" => %{"admin" => true, "moderator" => false},
964 "avatar" => User.avatar_url(old_admin) |> MediaProxy.url(),
965 "display_name" => HTML.strip_tags(old_admin.name || old_admin.nickname),
966 "confirmation_pending" => false
969 |> Enum.sort_by(& &1["nickname"])
971 assert json_response(conn, 200) == %{
978 test "load only admins", %{conn: conn, admin: admin} do
979 second_admin = insert(:user, is_admin: true)
983 conn = get(conn, "/api/pleroma/admin/users?filters=is_admin")
988 "deactivated" => false,
990 "nickname" => admin.nickname,
991 "roles" => %{"admin" => true, "moderator" => false},
992 "local" => admin.local,
994 "avatar" => User.avatar_url(admin) |> MediaProxy.url(),
995 "display_name" => HTML.strip_tags(admin.name || admin.nickname),
996 "confirmation_pending" => false
999 "deactivated" => false,
1000 "id" => second_admin.id,
1001 "nickname" => second_admin.nickname,
1002 "roles" => %{"admin" => true, "moderator" => false},
1003 "local" => second_admin.local,
1005 "avatar" => User.avatar_url(second_admin) |> MediaProxy.url(),
1006 "display_name" => HTML.strip_tags(second_admin.name || second_admin.nickname),
1007 "confirmation_pending" => false
1010 |> Enum.sort_by(& &1["nickname"])
1012 assert json_response(conn, 200) == %{
1019 test "load only moderators", %{conn: conn} do
1020 moderator = insert(:user, is_moderator: true)
1024 conn = get(conn, "/api/pleroma/admin/users?filters=is_moderator")
1026 assert json_response(conn, 200) == %{
1031 "deactivated" => false,
1032 "id" => moderator.id,
1033 "nickname" => moderator.nickname,
1034 "roles" => %{"admin" => false, "moderator" => true},
1035 "local" => moderator.local,
1037 "avatar" => User.avatar_url(moderator) |> MediaProxy.url(),
1038 "display_name" => HTML.strip_tags(moderator.name || moderator.nickname),
1039 "confirmation_pending" => false
1045 test "load users with tags list", %{conn: conn} do
1046 user1 = insert(:user, tags: ["first"])
1047 user2 = insert(:user, tags: ["second"])
1051 conn = get(conn, "/api/pleroma/admin/users?tags[]=first&tags[]=second")
1056 "deactivated" => false,
1058 "nickname" => user1.nickname,
1059 "roles" => %{"admin" => false, "moderator" => false},
1060 "local" => user1.local,
1061 "tags" => ["first"],
1062 "avatar" => User.avatar_url(user1) |> MediaProxy.url(),
1063 "display_name" => HTML.strip_tags(user1.name || user1.nickname),
1064 "confirmation_pending" => false
1067 "deactivated" => false,
1069 "nickname" => user2.nickname,
1070 "roles" => %{"admin" => false, "moderator" => false},
1071 "local" => user2.local,
1072 "tags" => ["second"],
1073 "avatar" => User.avatar_url(user2) |> MediaProxy.url(),
1074 "display_name" => HTML.strip_tags(user2.name || user2.nickname),
1075 "confirmation_pending" => false
1078 |> Enum.sort_by(& &1["nickname"])
1080 assert json_response(conn, 200) == %{
1087 test "it works with multiple filters" do
1088 admin = insert(:user, nickname: "john", is_admin: true)
1089 token = insert(:oauth_admin_token, user: admin)
1090 user = insert(:user, nickname: "bob", local: false, deactivated: true)
1092 insert(:user, nickname: "ken", local: true, deactivated: true)
1093 insert(:user, nickname: "bobb", local: false, deactivated: false)
1097 |> assign(:user, admin)
1098 |> assign(:token, token)
1099 |> get("/api/pleroma/admin/users?filters=deactivated,external")
1101 assert json_response(conn, 200) == %{
1106 "deactivated" => user.deactivated,
1108 "nickname" => user.nickname,
1109 "roles" => %{"admin" => false, "moderator" => false},
1110 "local" => user.local,
1112 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
1113 "display_name" => HTML.strip_tags(user.name || user.nickname),
1114 "confirmation_pending" => false
1120 test "it omits relay user", %{admin: admin, conn: conn} do
1121 assert %User{} = Relay.get_actor()
1123 conn = get(conn, "/api/pleroma/admin/users")
1125 assert json_response(conn, 200) == %{
1130 "deactivated" => admin.deactivated,
1132 "nickname" => admin.nickname,
1133 "roles" => %{"admin" => true, "moderator" => false},
1136 "avatar" => User.avatar_url(admin) |> MediaProxy.url(),
1137 "display_name" => HTML.strip_tags(admin.name || admin.nickname),
1138 "confirmation_pending" => false
1145 test "PATCH /api/pleroma/admin/users/activate", %{admin: admin, conn: conn} do
1146 user_one = insert(:user, deactivated: true)
1147 user_two = insert(:user, deactivated: true)
1152 "/api/pleroma/admin/users/activate",
1153 %{nicknames: [user_one.nickname, user_two.nickname]}
1156 response = json_response(conn, 200)
1157 assert Enum.map(response["users"], & &1["deactivated"]) == [false, false]
1159 log_entry = Repo.one(ModerationLog)
1161 assert ModerationLog.get_log_entry_message(log_entry) ==
1162 "@#{admin.nickname} activated users: @#{user_one.nickname}, @#{user_two.nickname}"
1165 test "PATCH /api/pleroma/admin/users/deactivate", %{admin: admin, conn: conn} do
1166 user_one = insert(:user, deactivated: false)
1167 user_two = insert(:user, deactivated: false)
1172 "/api/pleroma/admin/users/deactivate",
1173 %{nicknames: [user_one.nickname, user_two.nickname]}
1176 response = json_response(conn, 200)
1177 assert Enum.map(response["users"], & &1["deactivated"]) == [true, true]
1179 log_entry = Repo.one(ModerationLog)
1181 assert ModerationLog.get_log_entry_message(log_entry) ==
1182 "@#{admin.nickname} deactivated users: @#{user_one.nickname}, @#{user_two.nickname}"
1185 test "PATCH /api/pleroma/admin/users/:nickname/toggle_activation", %{admin: admin, conn: conn} do
1186 user = insert(:user)
1188 conn = patch(conn, "/api/pleroma/admin/users/#{user.nickname}/toggle_activation")
1190 assert json_response(conn, 200) ==
1192 "deactivated" => !user.deactivated,
1194 "nickname" => user.nickname,
1195 "roles" => %{"admin" => false, "moderator" => false},
1198 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
1199 "display_name" => HTML.strip_tags(user.name || user.nickname),
1200 "confirmation_pending" => false
1203 log_entry = Repo.one(ModerationLog)
1205 assert ModerationLog.get_log_entry_message(log_entry) ==
1206 "@#{admin.nickname} deactivated users: @#{user.nickname}"
1209 describe "POST /api/pleroma/admin/users/invite_token" do
1210 test "without options", %{conn: conn} do
1211 conn = post(conn, "/api/pleroma/admin/users/invite_token")
1213 invite_json = json_response(conn, 200)
1214 invite = UserInviteToken.find_by_token!(invite_json["token"])
1216 refute invite.expires_at
1217 refute invite.max_use
1218 assert invite.invite_type == "one_time"
1221 test "with expires_at", %{conn: conn} do
1223 post(conn, "/api/pleroma/admin/users/invite_token", %{
1224 "expires_at" => Date.to_string(Date.utc_today())
1227 invite_json = json_response(conn, 200)
1228 invite = UserInviteToken.find_by_token!(invite_json["token"])
1231 assert invite.expires_at == Date.utc_today()
1232 refute invite.max_use
1233 assert invite.invite_type == "date_limited"
1236 test "with max_use", %{conn: conn} do
1237 conn = post(conn, "/api/pleroma/admin/users/invite_token", %{"max_use" => 150})
1239 invite_json = json_response(conn, 200)
1240 invite = UserInviteToken.find_by_token!(invite_json["token"])
1242 refute invite.expires_at
1243 assert invite.max_use == 150
1244 assert invite.invite_type == "reusable"
1247 test "with max use and expires_at", %{conn: conn} do
1249 post(conn, "/api/pleroma/admin/users/invite_token", %{
1251 "expires_at" => Date.to_string(Date.utc_today())
1254 invite_json = json_response(conn, 200)
1255 invite = UserInviteToken.find_by_token!(invite_json["token"])
1257 assert invite.expires_at == Date.utc_today()
1258 assert invite.max_use == 150
1259 assert invite.invite_type == "reusable_date_limited"
1263 describe "GET /api/pleroma/admin/users/invites" do
1264 test "no invites", %{conn: conn} do
1265 conn = get(conn, "/api/pleroma/admin/users/invites")
1267 assert json_response(conn, 200) == %{"invites" => []}
1270 test "with invite", %{conn: conn} do
1271 {:ok, invite} = UserInviteToken.create_invite()
1273 conn = get(conn, "/api/pleroma/admin/users/invites")
1275 assert json_response(conn, 200) == %{
1278 "expires_at" => nil,
1280 "invite_type" => "one_time",
1282 "token" => invite.token,
1291 describe "POST /api/pleroma/admin/users/revoke_invite" do
1292 test "with token", %{conn: conn} do
1293 {:ok, invite} = UserInviteToken.create_invite()
1295 conn = post(conn, "/api/pleroma/admin/users/revoke_invite", %{"token" => invite.token})
1297 assert json_response(conn, 200) == %{
1298 "expires_at" => nil,
1300 "invite_type" => "one_time",
1302 "token" => invite.token,
1308 test "with invalid token", %{conn: conn} do
1309 conn = post(conn, "/api/pleroma/admin/users/revoke_invite", %{"token" => "foo"})
1311 assert json_response(conn, :not_found) == "Not found"
1315 describe "GET /api/pleroma/admin/reports/:id" do
1316 test "returns report by its id", %{conn: conn} do
1317 [reporter, target_user] = insert_pair(:user)
1318 activity = insert(:note_activity, user: target_user)
1320 {:ok, %{id: report_id}} =
1321 CommonAPI.report(reporter, %{
1322 "account_id" => target_user.id,
1323 "comment" => "I feel offended",
1324 "status_ids" => [activity.id]
1329 |> get("/api/pleroma/admin/reports/#{report_id}")
1330 |> json_response(:ok)
1332 assert response["id"] == report_id
1335 test "returns 404 when report id is invalid", %{conn: conn} do
1336 conn = get(conn, "/api/pleroma/admin/reports/test")
1338 assert json_response(conn, :not_found) == "Not found"
1342 describe "PATCH /api/pleroma/admin/reports" do
1344 [reporter, target_user] = insert_pair(:user)
1345 activity = insert(:note_activity, user: target_user)
1347 {:ok, %{id: report_id}} =
1348 CommonAPI.report(reporter, %{
1349 "account_id" => target_user.id,
1350 "comment" => "I feel offended",
1351 "status_ids" => [activity.id]
1354 {:ok, %{id: second_report_id}} =
1355 CommonAPI.report(reporter, %{
1356 "account_id" => target_user.id,
1357 "comment" => "I feel very offended",
1358 "status_ids" => [activity.id]
1363 second_report_id: second_report_id
1367 test "mark report as resolved", %{conn: conn, id: id, admin: admin} do
1369 |> patch("/api/pleroma/admin/reports", %{
1371 %{"state" => "resolved", "id" => id}
1374 |> json_response(:no_content)
1376 activity = Activity.get_by_id(id)
1377 assert activity.data["state"] == "resolved"
1379 log_entry = Repo.one(ModerationLog)
1381 assert ModerationLog.get_log_entry_message(log_entry) ==
1382 "@#{admin.nickname} updated report ##{id} with 'resolved' state"
1385 test "closes report", %{conn: conn, id: id, admin: admin} do
1387 |> patch("/api/pleroma/admin/reports", %{
1389 %{"state" => "closed", "id" => id}
1392 |> json_response(:no_content)
1394 activity = Activity.get_by_id(id)
1395 assert activity.data["state"] == "closed"
1397 log_entry = Repo.one(ModerationLog)
1399 assert ModerationLog.get_log_entry_message(log_entry) ==
1400 "@#{admin.nickname} updated report ##{id} with 'closed' state"
1403 test "returns 400 when state is unknown", %{conn: conn, id: id} do
1406 |> patch("/api/pleroma/admin/reports", %{
1408 %{"state" => "test", "id" => id}
1412 assert hd(json_response(conn, :bad_request))["error"] == "Unsupported state"
1415 test "returns 404 when report is not exist", %{conn: conn} do
1418 |> patch("/api/pleroma/admin/reports", %{
1420 %{"state" => "closed", "id" => "test"}
1424 assert hd(json_response(conn, :bad_request))["error"] == "not_found"
1427 test "updates state of multiple reports", %{
1431 second_report_id: second_report_id
1434 |> patch("/api/pleroma/admin/reports", %{
1436 %{"state" => "resolved", "id" => id},
1437 %{"state" => "closed", "id" => second_report_id}
1440 |> json_response(:no_content)
1442 activity = Activity.get_by_id(id)
1443 second_activity = Activity.get_by_id(second_report_id)
1444 assert activity.data["state"] == "resolved"
1445 assert second_activity.data["state"] == "closed"
1447 [first_log_entry, second_log_entry] = Repo.all(ModerationLog)
1449 assert ModerationLog.get_log_entry_message(first_log_entry) ==
1450 "@#{admin.nickname} updated report ##{id} with 'resolved' state"
1452 assert ModerationLog.get_log_entry_message(second_log_entry) ==
1453 "@#{admin.nickname} updated report ##{second_report_id} with 'closed' state"
1457 describe "GET /api/pleroma/admin/reports" do
1458 test "returns empty response when no reports created", %{conn: conn} do
1461 |> get("/api/pleroma/admin/reports")
1462 |> json_response(:ok)
1464 assert Enum.empty?(response["reports"])
1465 assert response["total"] == 0
1468 test "returns reports", %{conn: conn} do
1469 [reporter, target_user] = insert_pair(:user)
1470 activity = insert(:note_activity, user: target_user)
1472 {:ok, %{id: report_id}} =
1473 CommonAPI.report(reporter, %{
1474 "account_id" => target_user.id,
1475 "comment" => "I feel offended",
1476 "status_ids" => [activity.id]
1481 |> get("/api/pleroma/admin/reports")
1482 |> json_response(:ok)
1484 [report] = response["reports"]
1486 assert length(response["reports"]) == 1
1487 assert report["id"] == report_id
1489 assert response["total"] == 1
1492 test "returns reports with specified state", %{conn: conn} do
1493 [reporter, target_user] = insert_pair(:user)
1494 activity = insert(:note_activity, user: target_user)
1496 {:ok, %{id: first_report_id}} =
1497 CommonAPI.report(reporter, %{
1498 "account_id" => target_user.id,
1499 "comment" => "I feel offended",
1500 "status_ids" => [activity.id]
1503 {:ok, %{id: second_report_id}} =
1504 CommonAPI.report(reporter, %{
1505 "account_id" => target_user.id,
1506 "comment" => "I don't like this user"
1509 CommonAPI.update_report_state(second_report_id, "closed")
1513 |> get("/api/pleroma/admin/reports", %{
1516 |> json_response(:ok)
1518 [open_report] = response["reports"]
1520 assert length(response["reports"]) == 1
1521 assert open_report["id"] == first_report_id
1523 assert response["total"] == 1
1527 |> get("/api/pleroma/admin/reports", %{
1530 |> json_response(:ok)
1532 [closed_report] = response["reports"]
1534 assert length(response["reports"]) == 1
1535 assert closed_report["id"] == second_report_id
1537 assert response["total"] == 1
1541 |> get("/api/pleroma/admin/reports", %{
1542 "state" => "resolved"
1544 |> json_response(:ok)
1546 assert Enum.empty?(response["reports"])
1547 assert response["total"] == 0
1550 test "returns 403 when requested by a non-admin" do
1551 user = insert(:user)
1552 token = insert(:oauth_token, user: user)
1556 |> assign(:user, user)
1557 |> assign(:token, token)
1558 |> get("/api/pleroma/admin/reports")
1560 assert json_response(conn, :forbidden) ==
1561 %{"error" => "User is not an admin or OAuth admin scope is not granted."}
1564 test "returns 403 when requested by anonymous" do
1565 conn = get(build_conn(), "/api/pleroma/admin/reports")
1567 assert json_response(conn, :forbidden) == %{"error" => "Invalid credentials."}
1571 describe "GET /api/pleroma/admin/grouped_reports" do
1573 [reporter, target_user] = insert_pair(:user)
1575 date1 = (DateTime.to_unix(DateTime.utc_now()) + 1000) |> DateTime.from_unix!()
1576 date2 = (DateTime.to_unix(DateTime.utc_now()) + 2000) |> DateTime.from_unix!()
1577 date3 = (DateTime.to_unix(DateTime.utc_now()) + 3000) |> DateTime.from_unix!()
1580 insert(:note_activity, user: target_user, data_attrs: %{"published" => date1})
1583 insert(:note_activity, user: target_user, data_attrs: %{"published" => date2})
1586 insert(:note_activity, user: target_user, data_attrs: %{"published" => date3})
1588 {:ok, first_report} =
1589 CommonAPI.report(reporter, %{
1590 "account_id" => target_user.id,
1591 "status_ids" => [first_status.id, second_status.id, third_status.id]
1594 {:ok, second_report} =
1595 CommonAPI.report(reporter, %{
1596 "account_id" => target_user.id,
1597 "status_ids" => [first_status.id, second_status.id]
1600 {:ok, third_report} =
1601 CommonAPI.report(reporter, %{
1602 "account_id" => target_user.id,
1603 "status_ids" => [first_status.id]
1607 first_status: Activity.get_by_ap_id_with_object(first_status.data["id"]),
1608 second_status: Activity.get_by_ap_id_with_object(second_status.data["id"]),
1609 third_status: Activity.get_by_ap_id_with_object(third_status.data["id"]),
1610 first_report: first_report,
1611 first_status_reports: [first_report, second_report, third_report],
1612 second_status_reports: [first_report, second_report],
1613 third_status_reports: [first_report],
1614 target_user: target_user,
1619 test "returns reports grouped by status", %{
1621 first_status: first_status,
1622 second_status: second_status,
1623 third_status: third_status,
1624 first_status_reports: first_status_reports,
1625 second_status_reports: second_status_reports,
1626 third_status_reports: third_status_reports,
1627 target_user: target_user,
1632 |> get("/api/pleroma/admin/grouped_reports")
1633 |> json_response(:ok)
1635 assert length(response["reports"]) == 3
1637 first_group = Enum.find(response["reports"], &(&1["status"]["id"] == first_status.id))
1639 second_group = Enum.find(response["reports"], &(&1["status"]["id"] == second_status.id))
1641 third_group = Enum.find(response["reports"], &(&1["status"]["id"] == third_status.id))
1643 assert length(first_group["reports"]) == 3
1644 assert length(second_group["reports"]) == 2
1645 assert length(third_group["reports"]) == 1
1647 assert first_group["date"] ==
1648 Enum.max_by(first_status_reports, fn act ->
1649 NaiveDateTime.from_iso8601!(act.data["published"])
1650 end).data["published"]
1652 assert first_group["status"] ==
1654 stringify_keys(StatusView.render("show.json", %{activity: first_status})),
1659 assert(first_group["account"]["id"] == target_user.id)
1661 assert length(first_group["actors"]) == 1
1662 assert hd(first_group["actors"])["id"] == reporter.id
1664 assert Enum.map(first_group["reports"], & &1["id"]) --
1665 Enum.map(first_status_reports, & &1.id) == []
1667 assert second_group["date"] ==
1668 Enum.max_by(second_status_reports, fn act ->
1669 NaiveDateTime.from_iso8601!(act.data["published"])
1670 end).data["published"]
1672 assert second_group["status"] ==
1674 stringify_keys(StatusView.render("show.json", %{activity: second_status})),
1679 assert second_group["account"]["id"] == target_user.id
1681 assert length(second_group["actors"]) == 1
1682 assert hd(second_group["actors"])["id"] == reporter.id
1684 assert Enum.map(second_group["reports"], & &1["id"]) --
1685 Enum.map(second_status_reports, & &1.id) == []
1687 assert third_group["date"] ==
1688 Enum.max_by(third_status_reports, fn act ->
1689 NaiveDateTime.from_iso8601!(act.data["published"])
1690 end).data["published"]
1692 assert third_group["status"] ==
1694 stringify_keys(StatusView.render("show.json", %{activity: third_status})),
1699 assert third_group["account"]["id"] == target_user.id
1701 assert length(third_group["actors"]) == 1
1702 assert hd(third_group["actors"])["id"] == reporter.id
1704 assert Enum.map(third_group["reports"], & &1["id"]) --
1705 Enum.map(third_status_reports, & &1.id) == []
1708 test "reopened report renders status data", %{
1710 first_report: first_report,
1711 first_status: first_status
1713 {:ok, _} = CommonAPI.update_report_state(first_report.id, "resolved")
1717 |> get("/api/pleroma/admin/grouped_reports")
1718 |> json_response(:ok)
1720 first_group = Enum.find(response["reports"], &(&1["status"]["id"] == first_status.id))
1722 assert first_group["status"] ==
1724 stringify_keys(StatusView.render("show.json", %{activity: first_status})),
1730 test "reopened report does not render status data if status has been deleted", %{
1732 first_report: first_report,
1733 first_status: first_status,
1734 target_user: target_user
1736 {:ok, _} = CommonAPI.update_report_state(first_report.id, "resolved")
1737 {:ok, _} = CommonAPI.delete(first_status.id, target_user)
1739 refute Activity.get_by_ap_id(first_status.id)
1743 |> get("/api/pleroma/admin/grouped_reports")
1744 |> json_response(:ok)
1746 assert Enum.find(response["reports"], &(&1["status"]["deleted"] == true))["status"][
1750 assert length(Enum.filter(response["reports"], &(&1["status"]["deleted"] == false))) == 2
1753 test "account not empty if status was deleted", %{
1755 first_report: first_report,
1756 first_status: first_status,
1757 target_user: target_user
1759 {:ok, _} = CommonAPI.update_report_state(first_report.id, "resolved")
1760 {:ok, _} = CommonAPI.delete(first_status.id, target_user)
1762 refute Activity.get_by_ap_id(first_status.id)
1766 |> get("/api/pleroma/admin/grouped_reports")
1767 |> json_response(:ok)
1769 assert Enum.find(response["reports"], &(&1["status"]["deleted"] == true))["account"]
1773 describe "PUT /api/pleroma/admin/statuses/:id" do
1775 activity = insert(:note_activity)
1780 test "toggle sensitive flag", %{conn: conn, id: id, admin: admin} do
1783 |> put("/api/pleroma/admin/statuses/#{id}", %{"sensitive" => "true"})
1784 |> json_response(:ok)
1786 assert response["sensitive"]
1788 log_entry = Repo.one(ModerationLog)
1790 assert ModerationLog.get_log_entry_message(log_entry) ==
1791 "@#{admin.nickname} updated status ##{id}, set sensitive: 'true'"
1795 |> put("/api/pleroma/admin/statuses/#{id}", %{"sensitive" => "false"})
1796 |> json_response(:ok)
1798 refute response["sensitive"]
1801 test "change visibility flag", %{conn: conn, id: id, admin: admin} do
1804 |> put("/api/pleroma/admin/statuses/#{id}", %{"visibility" => "public"})
1805 |> json_response(:ok)
1807 assert response["visibility"] == "public"
1809 log_entry = Repo.one(ModerationLog)
1811 assert ModerationLog.get_log_entry_message(log_entry) ==
1812 "@#{admin.nickname} updated status ##{id}, set visibility: 'public'"
1816 |> put("/api/pleroma/admin/statuses/#{id}", %{"visibility" => "private"})
1817 |> json_response(:ok)
1819 assert response["visibility"] == "private"
1823 |> put("/api/pleroma/admin/statuses/#{id}", %{"visibility" => "unlisted"})
1824 |> json_response(:ok)
1826 assert response["visibility"] == "unlisted"
1829 test "returns 400 when visibility is unknown", %{conn: conn, id: id} do
1830 conn = put(conn, "/api/pleroma/admin/statuses/#{id}", %{"visibility" => "test"})
1832 assert json_response(conn, :bad_request) == "Unsupported visibility"
1836 describe "DELETE /api/pleroma/admin/statuses/:id" do
1838 activity = insert(:note_activity)
1843 test "deletes status", %{conn: conn, id: id, admin: admin} do
1845 |> delete("/api/pleroma/admin/statuses/#{id}")
1846 |> json_response(:ok)
1848 refute Activity.get_by_id(id)
1850 log_entry = Repo.one(ModerationLog)
1852 assert ModerationLog.get_log_entry_message(log_entry) ==
1853 "@#{admin.nickname} deleted status ##{id}"
1856 test "returns error when status is not exist", %{conn: conn} do
1857 conn = delete(conn, "/api/pleroma/admin/statuses/test")
1859 assert json_response(conn, :bad_request) == "Could not delete"
1863 describe "GET /api/pleroma/admin/config" do
1864 clear_config(:configurable_from_database) do
1865 Pleroma.Config.put(:configurable_from_database, true)
1868 test "when configuration from database is off", %{conn: conn} do
1869 initial = Pleroma.Config.get(:configurable_from_database)
1870 Pleroma.Config.put(:configurable_from_database, false)
1871 on_exit(fn -> Pleroma.Config.put(:configurable_from_database, initial) end)
1872 conn = get(conn, "/api/pleroma/admin/config")
1874 assert json_response(conn, 400) ==
1875 "To use this endpoint you need to enable configuration from database."
1878 test "without any settings in db", %{conn: conn} do
1879 conn = get(conn, "/api/pleroma/admin/config")
1881 assert json_response(conn, 400) ==
1882 "To use configuration from database migrate your settings to database."
1885 test "with settings only in db", %{conn: conn} do
1886 config1 = insert(:config)
1887 config2 = insert(:config)
1889 conn = get(conn, "/api/pleroma/admin/config", %{"only_db" => true})
1894 "group" => ":pleroma",
1899 "group" => ":pleroma",
1904 } = json_response(conn, 200)
1906 assert key1 == config1.key
1907 assert key2 == config2.key
1910 test "merged default setting with db settings", %{conn: conn} do
1911 config1 = insert(:config)
1912 config2 = insert(:config)
1916 value: ConfigDB.to_binary(k1: :v1, k2: :v2)
1919 conn = get(conn, "/api/pleroma/admin/config")
1921 %{"configs" => configs} = json_response(conn, 200)
1923 assert length(configs) > 3
1926 Enum.filter(configs, fn %{"group" => group, "key" => key} ->
1927 group == ":pleroma" and key in [config1.key, config2.key, config3.key]
1930 assert length(received_configs) == 3
1934 |> ConfigDB.from_binary()
1936 |> ConfigDB.convert()
1938 Enum.each(received_configs, fn %{"value" => value, "db" => db} ->
1939 assert db in [config1.key, config2.key, db_keys]
1942 ConfigDB.from_binary_with_convert(config1.value),
1943 ConfigDB.from_binary_with_convert(config2.value),
1944 ConfigDB.from_binary_with_convert(config3.value)
1950 test "POST /api/pleroma/admin/config error", %{conn: conn} do
1951 conn = post(conn, "/api/pleroma/admin/config", %{"configs" => []})
1953 assert json_response(conn, 400) ==
1954 "To use this endpoint you need to enable configuration from database."
1957 describe "POST /api/pleroma/admin/config" do
1959 http = Application.get_env(:pleroma, :http)
1962 Application.delete_env(:pleroma, :key1)
1963 Application.delete_env(:pleroma, :key2)
1964 Application.delete_env(:pleroma, :key3)
1965 Application.delete_env(:pleroma, :key4)
1966 Application.delete_env(:pleroma, :keyaa1)
1967 Application.delete_env(:pleroma, :keyaa2)
1968 Application.delete_env(:pleroma, Pleroma.Web.Endpoint.NotReal)
1969 Application.delete_env(:pleroma, Pleroma.Captcha.NotReal)
1970 Application.put_env(:pleroma, :http, http)
1971 Application.put_env(:tesla, :adapter, Tesla.Mock)
1972 :ok = File.rm("config/test.exported_from_db.secret.exs")
1976 clear_config(:configurable_from_database) do
1977 Pleroma.Config.put(:configurable_from_database, true)
1980 @tag capture_log: true
1981 test "create new config setting in db", %{conn: conn} do
1983 post(conn, "/api/pleroma/admin/config", %{
1985 %{group: ":pleroma", key: ":key1", value: "value1"},
1987 group: ":ueberauth",
1988 key: "Ueberauth.Strategy.Twitter.OAuth",
1989 value: [%{"tuple" => [":consumer_secret", "aaaa"]}]
1995 ":nested_1" => "nested_value1",
1997 %{":nested_22" => "nested_value222"},
1998 %{":nested_33" => %{":nested_44" => "nested_444"}}
2006 %{"nested_3" => ":nested_3", "nested_33" => "nested_33"},
2007 %{"nested_4" => true}
2013 value: %{":nested_5" => ":upload", "endpoint" => "https://example.com"}
2018 value: %{"tuple" => ["string", "Pleroma.Captcha.NotReal", []]}
2023 assert json_response(conn, 200) == %{
2026 "group" => ":pleroma",
2031 "group" => ":ueberauth",
2032 "key" => "Ueberauth.Strategy.Twitter.OAuth",
2033 "value" => [%{"tuple" => [":consumer_secret", "aaaa"]}]
2036 "group" => ":pleroma",
2039 ":nested_1" => "nested_value1",
2041 %{":nested_22" => "nested_value222"},
2042 %{":nested_33" => %{":nested_44" => "nested_444"}}
2047 "group" => ":pleroma",
2050 %{"nested_3" => ":nested_3", "nested_33" => "nested_33"},
2051 %{"nested_4" => true}
2055 "group" => ":pleroma",
2057 "value" => %{"endpoint" => "https://example.com", ":nested_5" => ":upload"}
2062 "value" => %{"tuple" => ["string", "Pleroma.Captcha.NotReal", []]}
2067 assert Application.get_env(:pleroma, :key1) == "value1"
2069 assert Application.get_env(:pleroma, :key2) == %{
2070 nested_1: "nested_value1",
2072 %{nested_22: "nested_value222"},
2073 %{nested_33: %{nested_44: "nested_444"}}
2077 assert Application.get_env(:pleroma, :key3) == [
2078 %{"nested_3" => :nested_3, "nested_33" => "nested_33"},
2079 %{"nested_4" => true}
2082 assert Application.get_env(:pleroma, :key4) == %{
2083 "endpoint" => "https://example.com",
2087 assert Application.get_env(:idna, :key5) == {"string", Pleroma.Captcha.NotReal, []}
2090 test "save config setting without key", %{conn: conn} do
2091 level = Application.get_env(:quack, :level)
2092 meta = Application.get_env(:quack, :meta)
2093 webhook_url = Application.get_env(:quack, :webhook_url)
2096 Application.put_env(:quack, :level, level)
2097 Application.put_env(:quack, :meta, meta)
2098 Application.put_env(:quack, :webhook_url, webhook_url)
2102 post(conn, "/api/pleroma/admin/config", %{
2116 key: ":webhook_url",
2117 value: "https://hooks.slack.com/services/KEY"
2122 assert json_response(conn, 200) == %{
2124 %{"group" => ":quack", "key" => ":level", "value" => ":info"},
2125 %{"group" => ":quack", "key" => ":meta", "value" => [":none"]},
2127 "group" => ":quack",
2128 "key" => ":webhook_url",
2129 "value" => "https://hooks.slack.com/services/KEY"
2134 assert Application.get_env(:quack, :level) == :info
2135 assert Application.get_env(:quack, :meta) == [:none]
2136 assert Application.get_env(:quack, :webhook_url) == "https://hooks.slack.com/services/KEY"
2139 test "saving config with partial update", %{conn: conn} do
2140 config = insert(:config, key: ":key1", value: :erlang.term_to_binary(key1: 1, key2: 2))
2143 post(conn, "/api/pleroma/admin/config", %{
2145 %{group: config.group, key: config.key, value: [%{"tuple" => [":key3", 3]}]}
2149 assert json_response(conn, 200) == %{
2152 "group" => ":pleroma",
2155 %{"tuple" => [":key1", 1]},
2156 %{"tuple" => [":key2", 2]},
2157 %{"tuple" => [":key3", 3]}
2164 test "saving config with nested merge", %{conn: conn} do
2166 insert(:config, key: ":key1", value: :erlang.term_to_binary(key1: 1, key2: [k1: 1, k2: 2]))
2169 post(conn, "/api/pleroma/admin/config", %{
2172 group: config.group,
2175 %{"tuple" => [":key3", 3]},
2180 %{"tuple" => [":k2", 1]},
2181 %{"tuple" => [":k3", 3]}
2190 assert json_response(conn, 200) == %{
2193 "group" => ":pleroma",
2196 %{"tuple" => [":key1", 1]},
2197 %{"tuple" => [":key3", 3]},
2202 %{"tuple" => [":k1", 1]},
2203 %{"tuple" => [":k2", 1]},
2204 %{"tuple" => [":k3", 3]}
2214 test "saving special atoms", %{conn: conn} do
2216 post(conn, "/api/pleroma/admin/config", %{
2219 "group" => ":pleroma",
2225 [%{"tuple" => [":versions", [":tlsv1", ":tlsv1.1", ":tlsv1.2"]]}]
2233 assert json_response(conn, 200) == %{
2236 "group" => ":pleroma",
2242 [%{"tuple" => [":versions", [":tlsv1", ":tlsv1.1", ":tlsv1.2"]]}]
2250 assert Application.get_env(:pleroma, :key1) == [
2251 ssl_options: [versions: [:tlsv1, :"tlsv1.1", :"tlsv1.2"]]
2255 test "saving full setting if value is in full_key_update list", %{conn: conn} do
2256 backends = Application.get_env(:logger, :backends)
2257 on_exit(fn -> Application.put_env(:logger, :backends, backends) end)
2263 value: :erlang.term_to_binary([])
2267 post(conn, "/api/pleroma/admin/config", %{
2270 group: config.group,
2272 value: [":console", %{"tuple" => ["ExSyslogger", ":ex_syslogger"]}]
2277 assert json_response(conn, 200) == %{
2280 "group" => ":logger",
2281 "key" => ":backends",
2284 %{"tuple" => ["ExSyslogger", ":ex_syslogger"]}
2290 assert Application.get_env(:logger, :backends) == [
2292 {ExSyslogger, :ex_syslogger}
2295 ExUnit.CaptureLog.capture_log(fn ->
2297 Logger.warn("Ooops...")
2301 test "saving full setting if value is not keyword", %{conn: conn} do
2306 value: :erlang.term_to_binary(Tesla.Adapter.Hackey)
2310 post(conn, "/api/pleroma/admin/config", %{
2312 %{group: config.group, key: config.key, value: "Tesla.Adapter.Httpc"}
2316 assert json_response(conn, 200) == %{
2319 "group" => ":tesla",
2320 "key" => ":adapter",
2321 "value" => "Tesla.Adapter.Httpc"
2327 test "update config setting & delete", %{conn: conn} do
2328 config1 = insert(:config, key: ":keyaa1")
2329 config2 = insert(:config, key: ":keyaa2")
2333 key: "Ueberauth.Strategy.Microsoft.OAuth"
2337 post(conn, "/api/pleroma/admin/config", %{
2339 %{group: config1.group, key: config1.key, value: "another_value"},
2340 %{group: config2.group, key: config2.key, delete: true},
2343 key: "Ueberauth.Strategy.Microsoft.OAuth",
2349 assert json_response(conn, 200) == %{
2352 "group" => ":pleroma",
2353 "key" => config1.key,
2354 "value" => "another_value"
2359 assert Application.get_env(:pleroma, :keyaa1) == "another_value"
2360 refute Application.get_env(:pleroma, :keyaa2)
2363 test "common config example", %{conn: conn} do
2364 adapter = Application.get_env(:tesla, :adapter)
2365 on_exit(fn -> Application.put_env(:tesla, :adapter, adapter) end)
2368 post(conn, "/api/pleroma/admin/config", %{
2371 "group" => ":pleroma",
2372 "key" => "Pleroma.Captcha.NotReal",
2374 %{"tuple" => [":enabled", false]},
2375 %{"tuple" => [":method", "Pleroma.Captcha.Kocaptcha"]},
2376 %{"tuple" => [":seconds_valid", 60]},
2377 %{"tuple" => [":path", ""]},
2378 %{"tuple" => [":key1", nil]},
2379 %{"tuple" => [":partial_chain", "&:hackney_connect.partial_chain/1"]},
2380 %{"tuple" => [":regex1", "~r/https:\/\/example.com/"]},
2381 %{"tuple" => [":regex2", "~r/https:\/\/example.com/u"]},
2382 %{"tuple" => [":regex3", "~r/https:\/\/example.com/i"]},
2383 %{"tuple" => [":regex4", "~r/https:\/\/example.com/s"]},
2384 %{"tuple" => [":name", "Pleroma"]}
2387 %{"group" => ":tesla", "key" => ":adapter", "value" => "Tesla.Adapter.Httpc"}
2391 assert Application.get_env(:tesla, :adapter) == Tesla.Adapter.Httpc
2392 assert Pleroma.Config.get([Pleroma.Captcha.NotReal, :name]) == "Pleroma"
2394 assert json_response(conn, 200) == %{
2397 "group" => ":pleroma",
2398 "key" => "Pleroma.Captcha.NotReal",
2400 %{"tuple" => [":enabled", false]},
2401 %{"tuple" => [":method", "Pleroma.Captcha.Kocaptcha"]},
2402 %{"tuple" => [":seconds_valid", 60]},
2403 %{"tuple" => [":path", ""]},
2404 %{"tuple" => [":key1", nil]},
2405 %{"tuple" => [":partial_chain", "&:hackney_connect.partial_chain/1"]},
2406 %{"tuple" => [":regex1", "~r/https:\\/\\/example.com/"]},
2407 %{"tuple" => [":regex2", "~r/https:\\/\\/example.com/u"]},
2408 %{"tuple" => [":regex3", "~r/https:\\/\\/example.com/i"]},
2409 %{"tuple" => [":regex4", "~r/https:\\/\\/example.com/s"]},
2410 %{"tuple" => [":name", "Pleroma"]}
2413 %{"group" => ":tesla", "key" => ":adapter", "value" => "Tesla.Adapter.Httpc"}
2418 test "tuples with more than two values", %{conn: conn} do
2420 post(conn, "/api/pleroma/admin/config", %{
2423 "group" => ":pleroma",
2424 "key" => "Pleroma.Web.Endpoint.NotReal",
2440 "/api/v1/streaming",
2441 "Pleroma.Web.MastodonAPI.WebsocketHandler",
2448 "Phoenix.Endpoint.CowboyWebSocket",
2451 "Phoenix.Transports.WebSocket",
2454 "Pleroma.Web.Endpoint",
2455 "Pleroma.Web.UserSocket",
2466 "Phoenix.Endpoint.Cowboy2Handler",
2467 %{"tuple" => ["Pleroma.Web.Endpoint", []]}
2484 assert json_response(conn, 200) == %{
2487 "group" => ":pleroma",
2488 "key" => "Pleroma.Web.Endpoint.NotReal",
2504 "/api/v1/streaming",
2505 "Pleroma.Web.MastodonAPI.WebsocketHandler",
2512 "Phoenix.Endpoint.CowboyWebSocket",
2515 "Phoenix.Transports.WebSocket",
2518 "Pleroma.Web.Endpoint",
2519 "Pleroma.Web.UserSocket",
2530 "Phoenix.Endpoint.Cowboy2Handler",
2531 %{"tuple" => ["Pleroma.Web.Endpoint", []]}
2549 test "settings with nesting map", %{conn: conn} do
2551 post(conn, "/api/pleroma/admin/config", %{
2554 "group" => ":pleroma",
2557 %{"tuple" => [":key2", "some_val"]},
2562 ":max_options" => 20,
2563 ":max_option_chars" => 200,
2564 ":min_expiration" => 0,
2565 ":max_expiration" => 31_536_000,
2567 ":max_options" => 20,
2568 ":max_option_chars" => 200,
2569 ":min_expiration" => 0,
2570 ":max_expiration" => 31_536_000
2580 assert json_response(conn, 200) ==
2584 "group" => ":pleroma",
2587 %{"tuple" => [":key2", "some_val"]},
2592 ":max_expiration" => 31_536_000,
2593 ":max_option_chars" => 200,
2594 ":max_options" => 20,
2595 ":min_expiration" => 0,
2597 ":max_expiration" => 31_536_000,
2598 ":max_option_chars" => 200,
2599 ":max_options" => 20,
2600 ":min_expiration" => 0
2611 test "value as map", %{conn: conn} do
2613 post(conn, "/api/pleroma/admin/config", %{
2616 "group" => ":pleroma",
2618 "value" => %{"key" => "some_val"}
2623 assert json_response(conn, 200) ==
2627 "group" => ":pleroma",
2629 "value" => %{"key" => "some_val"}
2635 test "dispatch setting", %{conn: conn} do
2637 post(conn, "/api/pleroma/admin/config", %{
2640 "group" => ":pleroma",
2641 "key" => "Pleroma.Web.Endpoint.NotReal",
2647 %{"tuple" => [":ip", %{"tuple" => [127, 0, 0, 1]}]},
2648 %{"tuple" => [":dispatch", ["{:_,
2650 {\"/api/v1/streaming\", Pleroma.Web.MastodonAPI.WebsocketHandler, []},
2651 {\"/websocket\", Phoenix.Endpoint.CowboyWebSocket,
2652 {Phoenix.Transports.WebSocket,
2653 {Pleroma.Web.Endpoint, Pleroma.Web.UserSocket, [path: \"/websocket\"]}}},
2654 {:_, Phoenix.Endpoint.Cowboy2Handler, {Pleroma.Web.Endpoint, []}}
2665 "{:_, [{\"/api/v1/streaming\", Pleroma.Web.MastodonAPI.WebsocketHandler, []}, " <>
2666 "{\"/websocket\", Phoenix.Endpoint.CowboyWebSocket, {Phoenix.Transports.WebSocket, " <>
2667 "{Pleroma.Web.Endpoint, Pleroma.Web.UserSocket, [path: \"/websocket\"]}}}, " <>
2668 "{:_, Phoenix.Endpoint.Cowboy2Handler, {Pleroma.Web.Endpoint, []}}]}"
2670 assert json_response(conn, 200) == %{
2673 "group" => ":pleroma",
2674 "key" => "Pleroma.Web.Endpoint.NotReal",
2680 %{"tuple" => [":ip", %{"tuple" => [127, 0, 0, 1]}]},
2698 test "queues key as atom", %{conn: conn} do
2700 post(conn, "/api/pleroma/admin/config", %{
2706 %{"tuple" => [":federator_incoming", 50]},
2707 %{"tuple" => [":federator_outgoing", 50]},
2708 %{"tuple" => [":web_push", 50]},
2709 %{"tuple" => [":mailer", 10]},
2710 %{"tuple" => [":transmogrifier", 20]},
2711 %{"tuple" => [":scheduled_activities", 10]},
2712 %{"tuple" => [":background", 5]}
2718 assert json_response(conn, 200) == %{
2724 %{"tuple" => [":federator_incoming", 50]},
2725 %{"tuple" => [":federator_outgoing", 50]},
2726 %{"tuple" => [":web_push", 50]},
2727 %{"tuple" => [":mailer", 10]},
2728 %{"tuple" => [":transmogrifier", 20]},
2729 %{"tuple" => [":scheduled_activities", 10]},
2730 %{"tuple" => [":background", 5]}
2737 test "delete part of settings by atom subkeys", %{conn: conn} do
2741 value: :erlang.term_to_binary(subkey1: "val1", subkey2: "val2", subkey3: "val3")
2745 post(conn, "/api/pleroma/admin/config", %{
2748 group: config.group,
2750 subkeys: [":subkey1", ":subkey3"],
2756 assert json_response(conn, 200) == %{
2759 "group" => ":pleroma",
2761 "value" => [%{"tuple" => [":subkey2", "val2"]}]
2767 test "proxy tuple localhost", %{conn: conn} do
2769 post(conn, "/api/pleroma/admin/config", %{
2775 %{"tuple" => [":proxy_url", %{"tuple" => [":socks5", "localhost", 1234]}]},
2776 %{"tuple" => [":send_user_agent", false]}
2782 assert json_response(conn, 200) == %{
2785 "group" => ":pleroma",
2788 %{"tuple" => [":proxy_url", %{"tuple" => [":socks5", "localhost", 1234]}]},
2789 %{"tuple" => [":send_user_agent", false]}
2796 test "proxy tuple domain", %{conn: conn} do
2798 post(conn, "/api/pleroma/admin/config", %{
2804 %{"tuple" => [":proxy_url", %{"tuple" => [":socks5", "domain.com", 1234]}]},
2805 %{"tuple" => [":send_user_agent", false]}
2811 assert json_response(conn, 200) == %{
2814 "group" => ":pleroma",
2817 %{"tuple" => [":proxy_url", %{"tuple" => [":socks5", "domain.com", 1234]}]},
2818 %{"tuple" => [":send_user_agent", false]}
2825 test "proxy tuple ip", %{conn: conn} do
2827 post(conn, "/api/pleroma/admin/config", %{
2833 %{"tuple" => [":proxy_url", %{"tuple" => [":socks5", "127.0.0.1", 1234]}]},
2834 %{"tuple" => [":send_user_agent", false]}
2840 assert json_response(conn, 200) == %{
2843 "group" => ":pleroma",
2846 %{"tuple" => [":proxy_url", %{"tuple" => [":socks5", "127.0.0.1", 1234]}]},
2847 %{"tuple" => [":send_user_agent", false]}
2855 describe "config mix tasks run" do
2857 Mix.shell(Mix.Shell.Quiet)
2860 Mix.shell(Mix.Shell.IO)
2866 clear_config(:configurable_from_database) do
2867 Pleroma.Config.put(:configurable_from_database, true)
2870 clear_config([:feed, :post_title]) do
2871 Pleroma.Config.put([:feed, :post_title], %{max_length: 100, omission: "…"})
2874 test "transfer settings to DB and to file", %{conn: conn} do
2875 assert Repo.all(Pleroma.ConfigDB) == []
2876 Mix.Tasks.Pleroma.Config.migrate_to_db("test/fixtures/config/temp.secret.exs")
2877 assert Repo.aggregate(Pleroma.ConfigDB, :count, :id) > 0
2879 conn = get(conn, "/api/pleroma/admin/config/migrate_from_db")
2881 assert json_response(conn, 200) == %{}
2882 assert Repo.all(Pleroma.ConfigDB) == []
2885 test "returns error if configuration from database is off", %{conn: conn} do
2886 initial = Pleroma.Config.get(:configurable_from_database)
2887 on_exit(fn -> Pleroma.Config.put(:configurable_from_database, initial) end)
2888 Pleroma.Config.put(:configurable_from_database, false)
2890 conn = get(conn, "/api/pleroma/admin/config/migrate_from_db")
2892 assert json_response(conn, 400) ==
2893 "To use this endpoint you need to enable configuration from database."
2895 assert Repo.all(Pleroma.ConfigDB) == []
2899 describe "GET /api/pleroma/admin/users/:nickname/statuses" do
2901 user = insert(:user)
2903 date1 = (DateTime.to_unix(DateTime.utc_now()) + 2000) |> DateTime.from_unix!()
2904 date2 = (DateTime.to_unix(DateTime.utc_now()) + 1000) |> DateTime.from_unix!()
2905 date3 = (DateTime.to_unix(DateTime.utc_now()) + 3000) |> DateTime.from_unix!()
2907 insert(:note_activity, user: user, published: date1)
2908 insert(:note_activity, user: user, published: date2)
2909 insert(:note_activity, user: user, published: date3)
2914 test "renders user's statuses", %{conn: conn, user: user} do
2915 conn = get(conn, "/api/pleroma/admin/users/#{user.nickname}/statuses")
2917 assert json_response(conn, 200) |> length() == 3
2920 test "renders user's statuses with a limit", %{conn: conn, user: user} do
2921 conn = get(conn, "/api/pleroma/admin/users/#{user.nickname}/statuses?page_size=2")
2923 assert json_response(conn, 200) |> length() == 2
2926 test "doesn't return private statuses by default", %{conn: conn, user: user} do
2927 {:ok, _private_status} =
2928 CommonAPI.post(user, %{"status" => "private", "visibility" => "private"})
2930 {:ok, _public_status} =
2931 CommonAPI.post(user, %{"status" => "public", "visibility" => "public"})
2933 conn = get(conn, "/api/pleroma/admin/users/#{user.nickname}/statuses")
2935 assert json_response(conn, 200) |> length() == 4
2938 test "returns private statuses with godmode on", %{conn: conn, user: user} do
2939 {:ok, _private_status} =
2940 CommonAPI.post(user, %{"status" => "private", "visibility" => "private"})
2942 {:ok, _public_status} =
2943 CommonAPI.post(user, %{"status" => "public", "visibility" => "public"})
2945 conn = get(conn, "/api/pleroma/admin/users/#{user.nickname}/statuses?godmode=true")
2947 assert json_response(conn, 200) |> length() == 5
2951 describe "GET /api/pleroma/admin/moderation_log" do
2953 moderator = insert(:user, is_moderator: true)
2955 %{moderator: moderator}
2958 test "returns the log", %{conn: conn, admin: admin} do
2959 Repo.insert(%ModerationLog{
2963 "nickname" => admin.nickname,
2966 action: "relay_follow",
2967 target: "https://example.org/relay"
2969 inserted_at: NaiveDateTime.truncate(~N[2017-08-15 15:47:06.597036], :second)
2972 Repo.insert(%ModerationLog{
2976 "nickname" => admin.nickname,
2979 action: "relay_unfollow",
2980 target: "https://example.org/relay"
2982 inserted_at: NaiveDateTime.truncate(~N[2017-08-16 15:47:06.597036], :second)
2985 conn = get(conn, "/api/pleroma/admin/moderation_log")
2987 response = json_response(conn, 200)
2988 [first_entry, second_entry] = response["items"]
2990 assert response["total"] == 2
2991 assert first_entry["data"]["action"] == "relay_unfollow"
2993 assert first_entry["message"] ==
2994 "@#{admin.nickname} unfollowed relay: https://example.org/relay"
2996 assert second_entry["data"]["action"] == "relay_follow"
2998 assert second_entry["message"] ==
2999 "@#{admin.nickname} followed relay: https://example.org/relay"
3002 test "returns the log with pagination", %{conn: conn, admin: admin} do
3003 Repo.insert(%ModerationLog{
3007 "nickname" => admin.nickname,
3010 action: "relay_follow",
3011 target: "https://example.org/relay"
3013 inserted_at: NaiveDateTime.truncate(~N[2017-08-15 15:47:06.597036], :second)
3016 Repo.insert(%ModerationLog{
3020 "nickname" => admin.nickname,
3023 action: "relay_unfollow",
3024 target: "https://example.org/relay"
3026 inserted_at: NaiveDateTime.truncate(~N[2017-08-16 15:47:06.597036], :second)
3029 conn1 = get(conn, "/api/pleroma/admin/moderation_log?page_size=1&page=1")
3031 response1 = json_response(conn1, 200)
3032 [first_entry] = response1["items"]
3034 assert response1["total"] == 2
3035 assert response1["items"] |> length() == 1
3036 assert first_entry["data"]["action"] == "relay_unfollow"
3038 assert first_entry["message"] ==
3039 "@#{admin.nickname} unfollowed relay: https://example.org/relay"
3041 conn2 = get(conn, "/api/pleroma/admin/moderation_log?page_size=1&page=2")
3043 response2 = json_response(conn2, 200)
3044 [second_entry] = response2["items"]
3046 assert response2["total"] == 2
3047 assert response2["items"] |> length() == 1
3048 assert second_entry["data"]["action"] == "relay_follow"
3050 assert second_entry["message"] ==
3051 "@#{admin.nickname} followed relay: https://example.org/relay"
3054 test "filters log by date", %{conn: conn, admin: admin} do
3055 first_date = "2017-08-15T15:47:06Z"
3056 second_date = "2017-08-20T15:47:06Z"
3058 Repo.insert(%ModerationLog{
3062 "nickname" => admin.nickname,
3065 action: "relay_follow",
3066 target: "https://example.org/relay"
3068 inserted_at: NaiveDateTime.from_iso8601!(first_date)
3071 Repo.insert(%ModerationLog{
3075 "nickname" => admin.nickname,
3078 action: "relay_unfollow",
3079 target: "https://example.org/relay"
3081 inserted_at: NaiveDateTime.from_iso8601!(second_date)
3087 "/api/pleroma/admin/moderation_log?start_date=#{second_date}"
3090 response1 = json_response(conn1, 200)
3091 [first_entry] = response1["items"]
3093 assert response1["total"] == 1
3094 assert first_entry["data"]["action"] == "relay_unfollow"
3096 assert first_entry["message"] ==
3097 "@#{admin.nickname} unfollowed relay: https://example.org/relay"
3100 test "returns log filtered by user", %{conn: conn, admin: admin, moderator: moderator} do
3101 Repo.insert(%ModerationLog{
3105 "nickname" => admin.nickname,
3108 action: "relay_follow",
3109 target: "https://example.org/relay"
3113 Repo.insert(%ModerationLog{
3116 "id" => moderator.id,
3117 "nickname" => moderator.nickname,
3120 action: "relay_unfollow",
3121 target: "https://example.org/relay"
3125 conn1 = get(conn, "/api/pleroma/admin/moderation_log?user_id=#{moderator.id}")
3127 response1 = json_response(conn1, 200)
3128 [first_entry] = response1["items"]
3130 assert response1["total"] == 1
3131 assert get_in(first_entry, ["data", "actor", "id"]) == moderator.id
3134 test "returns log filtered by search", %{conn: conn, moderator: moderator} do
3135 ModerationLog.insert_log(%{
3137 action: "relay_follow",
3138 target: "https://example.org/relay"
3141 ModerationLog.insert_log(%{
3143 action: "relay_unfollow",
3144 target: "https://example.org/relay"
3147 conn1 = get(conn, "/api/pleroma/admin/moderation_log?search=unfo")
3149 response1 = json_response(conn1, 200)
3150 [first_entry] = response1["items"]
3152 assert response1["total"] == 1
3154 assert get_in(first_entry, ["data", "message"]) ==
3155 "@#{moderator.nickname} unfollowed relay: https://example.org/relay"
3159 describe "PATCH /users/:nickname/force_password_reset" do
3160 test "sets password_reset_pending to true", %{conn: conn} do
3161 user = insert(:user)
3162 assert user.password_reset_pending == false
3165 patch(conn, "/api/pleroma/admin/users/force_password_reset", %{nicknames: [user.nickname]})
3167 assert json_response(conn, 204) == ""
3169 ObanHelpers.perform_all()
3171 assert User.get_by_id(user.id).password_reset_pending == true
3175 describe "relays" do
3176 test "POST /relay", %{conn: conn, admin: admin} do
3178 post(conn, "/api/pleroma/admin/relay", %{
3179 relay_url: "http://mastodon.example.org/users/admin"
3182 assert json_response(conn, 200) == "http://mastodon.example.org/users/admin"
3184 log_entry = Repo.one(ModerationLog)
3186 assert ModerationLog.get_log_entry_message(log_entry) ==
3187 "@#{admin.nickname} followed relay: http://mastodon.example.org/users/admin"
3190 test "GET /relay", %{conn: conn} do
3191 relay_user = Pleroma.Web.ActivityPub.Relay.get_actor()
3193 ["http://mastodon.example.org/users/admin", "https://mstdn.io/users/mayuutann"]
3194 |> Enum.each(fn ap_id ->
3195 {:ok, user} = User.get_or_fetch_by_ap_id(ap_id)
3196 User.follow(relay_user, user)
3199 conn = get(conn, "/api/pleroma/admin/relay")
3201 assert json_response(conn, 200)["relays"] -- ["mastodon.example.org", "mstdn.io"] == []
3204 test "DELETE /relay", %{conn: conn, admin: admin} do
3205 post(conn, "/api/pleroma/admin/relay", %{
3206 relay_url: "http://mastodon.example.org/users/admin"
3210 delete(conn, "/api/pleroma/admin/relay", %{
3211 relay_url: "http://mastodon.example.org/users/admin"
3214 assert json_response(conn, 200) == "http://mastodon.example.org/users/admin"
3216 [log_entry_one, log_entry_two] = Repo.all(ModerationLog)
3218 assert ModerationLog.get_log_entry_message(log_entry_one) ==
3219 "@#{admin.nickname} followed relay: http://mastodon.example.org/users/admin"
3221 assert ModerationLog.get_log_entry_message(log_entry_two) ==
3222 "@#{admin.nickname} unfollowed relay: http://mastodon.example.org/users/admin"
3226 describe "instances" do
3227 test "GET /instances/:instance/statuses", %{conn: conn} do
3228 user = insert(:user, local: false, nickname: "archaeme@archae.me")
3229 user2 = insert(:user, local: false, nickname: "test@test.com")
3230 insert_pair(:note_activity, user: user)
3231 insert(:note_activity, user: user2)
3233 ret_conn = get(conn, "/api/pleroma/admin/instances/archae.me/statuses")
3235 response = json_response(ret_conn, 200)
3237 assert length(response) == 2
3239 ret_conn = get(conn, "/api/pleroma/admin/instances/test.com/statuses")
3241 response = json_response(ret_conn, 200)
3243 assert length(response) == 1
3245 ret_conn = get(conn, "/api/pleroma/admin/instances/nonexistent.com/statuses")
3247 response = json_response(ret_conn, 200)
3249 assert length(response) == 0
3253 describe "PATCH /confirm_email" do
3254 test "it confirms emails of two users", %{conn: conn, admin: admin} do
3255 [first_user, second_user] = insert_pair(:user, confirmation_pending: true)
3257 assert first_user.confirmation_pending == true
3258 assert second_user.confirmation_pending == true
3261 patch(conn, "/api/pleroma/admin/users/confirm_email", %{
3263 first_user.nickname,
3264 second_user.nickname
3268 assert ret_conn.status == 200
3270 assert first_user.confirmation_pending == true
3271 assert second_user.confirmation_pending == true
3273 log_entry = Repo.one(ModerationLog)
3275 assert ModerationLog.get_log_entry_message(log_entry) ==
3276 "@#{admin.nickname} confirmed email for users: @#{first_user.nickname}, @#{
3277 second_user.nickname
3282 describe "PATCH /resend_confirmation_email" do
3283 test "it resend emails for two users", %{conn: conn, admin: admin} do
3284 [first_user, second_user] = insert_pair(:user, confirmation_pending: true)
3287 patch(conn, "/api/pleroma/admin/users/resend_confirmation_email", %{
3289 first_user.nickname,
3290 second_user.nickname
3294 assert ret_conn.status == 200
3296 log_entry = Repo.one(ModerationLog)
3298 assert ModerationLog.get_log_entry_message(log_entry) ==
3299 "@#{admin.nickname} re-sent confirmation email for users: @#{first_user.nickname}, @#{
3300 second_user.nickname
3305 describe "POST /reports/:id/notes" do
3306 setup %{conn: conn, admin: admin} do
3307 [reporter, target_user] = insert_pair(:user)
3308 activity = insert(:note_activity, user: target_user)
3310 {:ok, %{id: report_id}} =
3311 CommonAPI.report(reporter, %{
3312 "account_id" => target_user.id,
3313 "comment" => "I feel offended",
3314 "status_ids" => [activity.id]
3317 post(conn, "/api/pleroma/admin/reports/#{report_id}/notes", %{
3318 content: "this is disgusting!"
3321 post(conn, "/api/pleroma/admin/reports/#{report_id}/notes", %{
3322 content: "this is disgusting2!"
3327 report_id: report_id
3331 test "it creates report note", %{admin_id: admin_id, report_id: report_id} do
3332 [note, _] = Repo.all(ReportNote)
3335 activity_id: ^report_id,
3336 content: "this is disgusting!",
3341 test "it returns reports with notes", %{conn: conn, admin: admin} do
3342 conn = get(conn, "/api/pleroma/admin/reports")
3344 response = json_response(conn, 200)
3345 notes = hd(response["reports"])["notes"]
3348 assert note["user"]["nickname"] == admin.nickname
3349 assert note["content"] == "this is disgusting!"
3350 assert note["created_at"]
3351 assert response["total"] == 1
3354 test "it deletes the note", %{conn: conn, report_id: report_id} do
3355 assert ReportNote |> Repo.all() |> length() == 2
3357 [note, _] = Repo.all(ReportNote)
3359 delete(conn, "/api/pleroma/admin/reports/#{report_id}/notes/#{note.id}")
3361 assert ReportNote |> Repo.all() |> length() == 1
3365 test "GET /api/pleroma/admin/config/descriptions", %{conn: conn} do
3366 admin = insert(:user, is_admin: true)
3369 assign(conn, :user, admin)
3370 |> get("/api/pleroma/admin/config/descriptions")
3372 assert [child | _others] = json_response(conn, 200)
3374 assert child["children"]
3376 assert String.starts_with?(child["group"], ":")
3377 assert child["description"]
3381 # Needed for testing
3382 defmodule Pleroma.Web.Endpoint.NotReal do
3385 defmodule Pleroma.Captcha.NotReal do