projects / akkoma / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
full update for some subkeys
[akkoma] / test / web / admin_api / admin_api_controller_test.exs
1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2019 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
4
5 defmodule Pleroma.Web.AdminAPI.AdminAPIControllerTest do
6 use Pleroma.Web.ConnCase
7 use Oban.Testing, repo: Pleroma.Repo
8
9 alias Pleroma.Activity
10 alias Pleroma.ConfigDB
11 alias Pleroma.HTML
12 alias Pleroma.ModerationLog
13 alias Pleroma.Repo
14 alias Pleroma.ReportNote
15 alias Pleroma.Tests.ObanHelpers
16 alias Pleroma.User
17 alias Pleroma.UserInviteToken
18 alias Pleroma.Web.ActivityPub.Relay
19 alias Pleroma.Web.CommonAPI
20 alias Pleroma.Web.MastodonAPI.StatusView
21 alias Pleroma.Web.MediaProxy
22 import Pleroma.Factory
23
24 setup_all do
25 Tesla.Mock.mock_global(fn env -> apply(HttpRequestMock, :request, [env]) end)
26
27 :ok
28 end
29
30 setup do
31 admin = insert(:user, is_admin: true)
32 token = insert(:oauth_admin_token, user: admin)
33
34 conn =
35 build_conn()
36 |> assign(:user, admin)
37 |> assign(:token, token)
38
39 {:ok, %{admin: admin, token: token, conn: conn}}
40 end
41
42 describe "with [:auth, :enforce_oauth_admin_scope_usage]," do
43 clear_config([:auth, :enforce_oauth_admin_scope_usage]) do
44 Pleroma.Config.put([:auth, :enforce_oauth_admin_scope_usage], true)
45 end
46
47 test "GET /api/pleroma/admin/users/:nickname requires admin:read:accounts or broader scope",
48 %{admin: admin} do
49 user = insert(:user)
50 url = "/api/pleroma/admin/users/#{user.nickname}"
51
52 good_token1 = insert(:oauth_token, user: admin, scopes: ["admin"])
53 good_token2 = insert(:oauth_token, user: admin, scopes: ["admin:read"])
54 good_token3 = insert(:oauth_token, user: admin, scopes: ["admin:read:accounts"])
55
56 bad_token1 = insert(:oauth_token, user: admin, scopes: ["read:accounts"])
57 bad_token2 = insert(:oauth_token, user: admin, scopes: ["admin:read:accounts:partial"])
58 bad_token3 = nil
59
60 for good_token <- [good_token1, good_token2, good_token3] do
61 conn =
62 build_conn()
63 |> assign(:user, admin)
64 |> assign(:token, good_token)
65 |> get(url)
66
67 assert json_response(conn, 200)
68 end
69
70 for good_token <- [good_token1, good_token2, good_token3] do
71 conn =
72 build_conn()
73 |> assign(:user, nil)
74 |> assign(:token, good_token)
75 |> get(url)
76
77 assert json_response(conn, :forbidden)
78 end
79
80 for bad_token <- [bad_token1, bad_token2, bad_token3] do
81 conn =
82 build_conn()
83 |> assign(:user, admin)
84 |> assign(:token, bad_token)
85 |> get(url)
86
87 assert json_response(conn, :forbidden)
88 end
89 end
90 end
91
92 describe "unless [:auth, :enforce_oauth_admin_scope_usage]," do
93 clear_config([:auth, :enforce_oauth_admin_scope_usage]) do
94 Pleroma.Config.put([:auth, :enforce_oauth_admin_scope_usage], false)
95 end
96
97 test "GET /api/pleroma/admin/users/:nickname requires " <>
98 "read:accounts or admin:read:accounts or broader scope",
99 %{admin: admin} do
100 user = insert(:user)
101 url = "/api/pleroma/admin/users/#{user.nickname}"
102
103 good_token1 = insert(:oauth_token, user: admin, scopes: ["admin"])
104 good_token2 = insert(:oauth_token, user: admin, scopes: ["admin:read"])
105 good_token3 = insert(:oauth_token, user: admin, scopes: ["admin:read:accounts"])
106 good_token4 = insert(:oauth_token, user: admin, scopes: ["read:accounts"])
107 good_token5 = insert(:oauth_token, user: admin, scopes: ["read"])
108
109 good_tokens = [good_token1, good_token2, good_token3, good_token4, good_token5]
110
111 bad_token1 = insert(:oauth_token, user: admin, scopes: ["read:accounts:partial"])
112 bad_token2 = insert(:oauth_token, user: admin, scopes: ["admin:read:accounts:partial"])
113 bad_token3 = nil
114
115 for good_token <- good_tokens do
116 conn =
117 build_conn()
118 |> assign(:user, admin)
119 |> assign(:token, good_token)
120 |> get(url)
121
122 assert json_response(conn, 200)
123 end
124
125 for good_token <- good_tokens do
126 conn =
127 build_conn()
128 |> assign(:user, nil)
129 |> assign(:token, good_token)
130 |> get(url)
131
132 assert json_response(conn, :forbidden)
133 end
134
135 for bad_token <- [bad_token1, bad_token2, bad_token3] do
136 conn =
137 build_conn()
138 |> assign(:user, admin)
139 |> assign(:token, bad_token)
140 |> get(url)
141
142 assert json_response(conn, :forbidden)
143 end
144 end
145 end
146
147 describe "DELETE /api/pleroma/admin/users" do
148 test "single user", %{admin: admin, conn: conn} do
149 user = insert(:user)
150
151 conn =
152 conn
153 |> put_req_header("accept", "application/json")
154 |> delete("/api/pleroma/admin/users?nickname=#{user.nickname}")
155
156 log_entry = Repo.one(ModerationLog)
157
158 assert ModerationLog.get_log_entry_message(log_entry) ==
159 "@#{admin.nickname} deleted users: @#{user.nickname}"
160
161 assert json_response(conn, 200) == user.nickname
162 end
163
164 test "multiple users", %{admin: admin, conn: conn} do
165 user_one = insert(:user)
166 user_two = insert(:user)
167
168 conn =
169 conn
170 |> put_req_header("accept", "application/json")
171 |> delete("/api/pleroma/admin/users", %{
172 nicknames: [user_one.nickname, user_two.nickname]
173 })
174
175 log_entry = Repo.one(ModerationLog)
176
177 assert ModerationLog.get_log_entry_message(log_entry) ==
178 "@#{admin.nickname} deleted users: @#{user_one.nickname}, @#{user_two.nickname}"
179
180 response = json_response(conn, 200)
181 assert response -- [user_one.nickname, user_two.nickname] == []
182 end
183 end
184
185 describe "/api/pleroma/admin/users" do
186 test "Create", %{conn: conn} do
187 conn =
188 conn
189 |> put_req_header("accept", "application/json")
190 |> post("/api/pleroma/admin/users", %{
191 "users" => [
192 %{
193 "nickname" => "lain",
194 "email" => "lain@example.org",
195 "password" => "test"
196 },
197 %{
198 "nickname" => "lain2",
199 "email" => "lain2@example.org",
200 "password" => "test"
201 }
202 ]
203 })
204
205 response = json_response(conn, 200) |> Enum.map(&Map.get(&1, "type"))
206 assert response == ["success", "success"]
207
208 log_entry = Repo.one(ModerationLog)
209
210 assert ["lain", "lain2"] -- Enum.map(log_entry.data["subjects"], & &1["nickname"]) == []
211 end
212
213 test "Cannot create user with existing email", %{conn: conn} do
214 user = insert(:user)
215
216 conn =
217 conn
218 |> put_req_header("accept", "application/json")
219 |> post("/api/pleroma/admin/users", %{
220 "users" => [
221 %{
222 "nickname" => "lain",
223 "email" => user.email,
224 "password" => "test"
225 }
226 ]
227 })
228
229 assert json_response(conn, 409) == [
230 %{
231 "code" => 409,
232 "data" => %{
233 "email" => user.email,
234 "nickname" => "lain"
235 },
236 "error" => "email has already been taken",
237 "type" => "error"
238 }
239 ]
240 end
241
242 test "Cannot create user with existing nickname", %{conn: conn} do
243 user = insert(:user)
244
245 conn =
246 conn
247 |> put_req_header("accept", "application/json")
248 |> post("/api/pleroma/admin/users", %{
249 "users" => [
250 %{
251 "nickname" => user.nickname,
252 "email" => "someuser@plerama.social",
253 "password" => "test"
254 }
255 ]
256 })
257
258 assert json_response(conn, 409) == [
259 %{
260 "code" => 409,
261 "data" => %{
262 "email" => "someuser@plerama.social",
263 "nickname" => user.nickname
264 },
265 "error" => "nickname has already been taken",
266 "type" => "error"
267 }
268 ]
269 end
270
271 test "Multiple user creation works in transaction", %{conn: conn} do
272 user = insert(:user)
273
274 conn =
275 conn
276 |> put_req_header("accept", "application/json")
277 |> post("/api/pleroma/admin/users", %{
278 "users" => [
279 %{
280 "nickname" => "newuser",
281 "email" => "newuser@pleroma.social",
282 "password" => "test"
283 },
284 %{
285 "nickname" => "lain",
286 "email" => user.email,
287 "password" => "test"
288 }
289 ]
290 })
291
292 assert json_response(conn, 409) == [
293 %{
294 "code" => 409,
295 "data" => %{
296 "email" => user.email,
297 "nickname" => "lain"
298 },
299 "error" => "email has already been taken",
300 "type" => "error"
301 },
302 %{
303 "code" => 409,
304 "data" => %{
305 "email" => "newuser@pleroma.social",
306 "nickname" => "newuser"
307 },
308 "error" => "",
309 "type" => "error"
310 }
311 ]
312
313 assert User.get_by_nickname("newuser") === nil
314 end
315 end
316
317 describe "/api/pleroma/admin/users/:nickname" do
318 test "Show", %{conn: conn} do
319 user = insert(:user)
320
321 conn = get(conn, "/api/pleroma/admin/users/#{user.nickname}")
322
323 expected = %{
324 "deactivated" => false,
325 "id" => to_string(user.id),
326 "local" => true,
327 "nickname" => user.nickname,
328 "roles" => %{"admin" => false, "moderator" => false},
329 "tags" => [],
330 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
331 "display_name" => HTML.strip_tags(user.name || user.nickname),
332 "confirmation_pending" => false
333 }
334
335 assert expected == json_response(conn, 200)
336 end
337
338 test "when the user doesn't exist", %{conn: conn} do
339 user = build(:user)
340
341 conn = get(conn, "/api/pleroma/admin/users/#{user.nickname}")
342
343 assert "Not found" == json_response(conn, 404)
344 end
345 end
346
347 describe "/api/pleroma/admin/users/follow" do
348 test "allows to force-follow another user", %{admin: admin, conn: conn} do
349 user = insert(:user)
350 follower = insert(:user)
351
352 conn
353 |> put_req_header("accept", "application/json")
354 |> post("/api/pleroma/admin/users/follow", %{
355 "follower" => follower.nickname,
356 "followed" => user.nickname
357 })
358
359 user = User.get_cached_by_id(user.id)
360 follower = User.get_cached_by_id(follower.id)
361
362 assert User.following?(follower, user)
363
364 log_entry = Repo.one(ModerationLog)
365
366 assert ModerationLog.get_log_entry_message(log_entry) ==
367 "@#{admin.nickname} made @#{follower.nickname} follow @#{user.nickname}"
368 end
369 end
370
371 describe "/api/pleroma/admin/users/unfollow" do
372 test "allows to force-unfollow another user", %{admin: admin, conn: conn} do
373 user = insert(:user)
374 follower = insert(:user)
375
376 User.follow(follower, user)
377
378 conn
379 |> put_req_header("accept", "application/json")
380 |> post("/api/pleroma/admin/users/unfollow", %{
381 "follower" => follower.nickname,
382 "followed" => user.nickname
383 })
384
385 user = User.get_cached_by_id(user.id)
386 follower = User.get_cached_by_id(follower.id)
387
388 refute User.following?(follower, user)
389
390 log_entry = Repo.one(ModerationLog)
391
392 assert ModerationLog.get_log_entry_message(log_entry) ==
393 "@#{admin.nickname} made @#{follower.nickname} unfollow @#{user.nickname}"
394 end
395 end
396
397 describe "PUT /api/pleroma/admin/users/tag" do
398 setup %{conn: conn} do
399 user1 = insert(:user, %{tags: ["x"]})
400 user2 = insert(:user, %{tags: ["y"]})
401 user3 = insert(:user, %{tags: ["unchanged"]})
402
403 conn =
404 conn
405 |> put_req_header("accept", "application/json")
406 |> put(
407 "/api/pleroma/admin/users/tag?nicknames[]=#{user1.nickname}&nicknames[]=" <>
408 "#{user2.nickname}&tags[]=foo&tags[]=bar"
409 )
410
411 %{conn: conn, user1: user1, user2: user2, user3: user3}
412 end
413
414 test "it appends specified tags to users with specified nicknames", %{
415 conn: conn,
416 admin: admin,
417 user1: user1,
418 user2: user2
419 } do
420 assert json_response(conn, :no_content)
421 assert User.get_cached_by_id(user1.id).tags == ["x", "foo", "bar"]
422 assert User.get_cached_by_id(user2.id).tags == ["y", "foo", "bar"]
423
424 log_entry = Repo.one(ModerationLog)
425
426 users =
427 [user1.nickname, user2.nickname]
428 |> Enum.map(&"@#{&1}")
429 |> Enum.join(", ")
430
431 tags = ["foo", "bar"] |> Enum.join(", ")
432
433 assert ModerationLog.get_log_entry_message(log_entry) ==
434 "@#{admin.nickname} added tags: #{tags} to users: #{users}"
435 end
436
437 test "it does not modify tags of not specified users", %{conn: conn, user3: user3} do
438 assert json_response(conn, :no_content)
439 assert User.get_cached_by_id(user3.id).tags == ["unchanged"]
440 end
441 end
442
443 describe "DELETE /api/pleroma/admin/users/tag" do
444 setup %{conn: conn} do
445 user1 = insert(:user, %{tags: ["x"]})
446 user2 = insert(:user, %{tags: ["y", "z"]})
447 user3 = insert(:user, %{tags: ["unchanged"]})
448
449 conn =
450 conn
451 |> put_req_header("accept", "application/json")
452 |> delete(
453 "/api/pleroma/admin/users/tag?nicknames[]=#{user1.nickname}&nicknames[]=" <>
454 "#{user2.nickname}&tags[]=x&tags[]=z"
455 )
456
457 %{conn: conn, user1: user1, user2: user2, user3: user3}
458 end
459
460 test "it removes specified tags from users with specified nicknames", %{
461 conn: conn,
462 admin: admin,
463 user1: user1,
464 user2: user2
465 } do
466 assert json_response(conn, :no_content)
467 assert User.get_cached_by_id(user1.id).tags == []
468 assert User.get_cached_by_id(user2.id).tags == ["y"]
469
470 log_entry = Repo.one(ModerationLog)
471
472 users =
473 [user1.nickname, user2.nickname]
474 |> Enum.map(&"@#{&1}")
475 |> Enum.join(", ")
476
477 tags = ["x", "z"] |> Enum.join(", ")
478
479 assert ModerationLog.get_log_entry_message(log_entry) ==
480 "@#{admin.nickname} removed tags: #{tags} from users: #{users}"
481 end
482
483 test "it does not modify tags of not specified users", %{conn: conn, user3: user3} do
484 assert json_response(conn, :no_content)
485 assert User.get_cached_by_id(user3.id).tags == ["unchanged"]
486 end
487 end
488
489 describe "/api/pleroma/admin/users/:nickname/permission_group" do
490 test "GET is giving user_info", %{admin: admin, conn: conn} do
491 conn =
492 conn
493 |> put_req_header("accept", "application/json")
494 |> get("/api/pleroma/admin/users/#{admin.nickname}/permission_group/")
495
496 assert json_response(conn, 200) == %{
497 "is_admin" => true,
498 "is_moderator" => false
499 }
500 end
501
502 test "/:right POST, can add to a permission group", %{admin: admin, conn: conn} do
503 user = insert(:user)
504
505 conn =
506 conn
507 |> put_req_header("accept", "application/json")
508 |> post("/api/pleroma/admin/users/#{user.nickname}/permission_group/admin")
509
510 assert json_response(conn, 200) == %{
511 "is_admin" => true
512 }
513
514 log_entry = Repo.one(ModerationLog)
515
516 assert ModerationLog.get_log_entry_message(log_entry) ==
517 "@#{admin.nickname} made @#{user.nickname} admin"
518 end
519
520 test "/:right POST, can add to a permission group (multiple)", %{admin: admin, conn: conn} do
521 user_one = insert(:user)
522 user_two = insert(:user)
523
524 conn =
525 conn
526 |> put_req_header("accept", "application/json")
527 |> post("/api/pleroma/admin/users/permission_group/admin", %{
528 nicknames: [user_one.nickname, user_two.nickname]
529 })
530
531 assert json_response(conn, 200) == %{"is_admin" => true}
532
533 log_entry = Repo.one(ModerationLog)
534
535 assert ModerationLog.get_log_entry_message(log_entry) ==
536 "@#{admin.nickname} made @#{user_one.nickname}, @#{user_two.nickname} admin"
537 end
538
539 test "/:right DELETE, can remove from a permission group", %{admin: admin, conn: conn} do
540 user = insert(:user, is_admin: true)
541
542 conn =
543 conn
544 |> put_req_header("accept", "application/json")
545 |> delete("/api/pleroma/admin/users/#{user.nickname}/permission_group/admin")
546
547 assert json_response(conn, 200) == %{"is_admin" => false}
548
549 log_entry = Repo.one(ModerationLog)
550
551 assert ModerationLog.get_log_entry_message(log_entry) ==
552 "@#{admin.nickname} revoked admin role from @#{user.nickname}"
553 end
554
555 test "/:right DELETE, can remove from a permission group (multiple)", %{
556 admin: admin,
557 conn: conn
558 } do
559 user_one = insert(:user, is_admin: true)
560 user_two = insert(:user, is_admin: true)
561
562 conn =
563 conn
564 |> put_req_header("accept", "application/json")
565 |> delete("/api/pleroma/admin/users/permission_group/admin", %{
566 nicknames: [user_one.nickname, user_two.nickname]
567 })
568
569 assert json_response(conn, 200) == %{"is_admin" => false}
570
571 log_entry = Repo.one(ModerationLog)
572
573 assert ModerationLog.get_log_entry_message(log_entry) ==
574 "@#{admin.nickname} revoked admin role from @#{user_one.nickname}, @#{
575 user_two.nickname
576 }"
577 end
578 end
579
580 describe "POST /api/pleroma/admin/email_invite, with valid config" do
581 clear_config([:instance, :registrations_open]) do
582 Pleroma.Config.put([:instance, :registrations_open], false)
583 end
584
585 clear_config([:instance, :invites_enabled]) do
586 Pleroma.Config.put([:instance, :invites_enabled], true)
587 end
588
589 test "sends invitation and returns 204", %{admin: admin, conn: conn} do
590 recipient_email = "foo@bar.com"
591 recipient_name = "J. D."
592
593 conn =
594 post(
595 conn,
596 "/api/pleroma/admin/users/email_invite?email=#{recipient_email}&name=#{recipient_name}"
597 )
598
599 assert json_response(conn, :no_content)
600
601 token_record = List.last(Repo.all(Pleroma.UserInviteToken))
602 assert token_record
603 refute token_record.used
604
605 notify_email = Pleroma.Config.get([:instance, :notify_email])
606 instance_name = Pleroma.Config.get([:instance, :name])
607
608 email =
609 Pleroma.Emails.UserEmail.user_invitation_email(
610 admin,
611 token_record,
612 recipient_email,
613 recipient_name
614 )
615
616 Swoosh.TestAssertions.assert_email_sent(
617 from: {instance_name, notify_email},
618 to: {recipient_name, recipient_email},
619 html_body: email.html_body
620 )
621 end
622
623 test "it returns 403 if requested by a non-admin" do
624 non_admin_user = insert(:user)
625 token = insert(:oauth_token, user: non_admin_user)
626
627 conn =
628 build_conn()
629 |> assign(:user, non_admin_user)
630 |> assign(:token, token)
631 |> post("/api/pleroma/admin/users/email_invite?email=foo@bar.com&name=JD")
632
633 assert json_response(conn, :forbidden)
634 end
635 end
636
637 describe "POST /api/pleroma/admin/users/email_invite, with invalid config" do
638 clear_config([:instance, :registrations_open])
639 clear_config([:instance, :invites_enabled])
640
641 test "it returns 500 if `invites_enabled` is not enabled", %{conn: conn} do
642 Pleroma.Config.put([:instance, :registrations_open], false)
643 Pleroma.Config.put([:instance, :invites_enabled], false)
644
645 conn = post(conn, "/api/pleroma/admin/users/email_invite?email=foo@bar.com&name=JD")
646
647 assert json_response(conn, :internal_server_error)
648 end
649
650 test "it returns 500 if `registrations_open` is enabled", %{conn: conn} do
651 Pleroma.Config.put([:instance, :registrations_open], true)
652 Pleroma.Config.put([:instance, :invites_enabled], true)
653
654 conn = post(conn, "/api/pleroma/admin/users/email_invite?email=foo@bar.com&name=JD")
655
656 assert json_response(conn, :internal_server_error)
657 end
658 end
659
660 test "/api/pleroma/admin/users/:nickname/password_reset", %{conn: conn} do
661 user = insert(:user)
662
663 conn =
664 conn
665 |> put_req_header("accept", "application/json")
666 |> get("/api/pleroma/admin/users/#{user.nickname}/password_reset")
667
668 resp = json_response(conn, 200)
669
670 assert Regex.match?(~r/(http:\/\/|https:\/\/)/, resp["link"])
671 end
672
673 describe "GET /api/pleroma/admin/users" do
674 test "renders users array for the first page", %{conn: conn, admin: admin} do
675 user = insert(:user, local: false, tags: ["foo", "bar"])
676 conn = get(conn, "/api/pleroma/admin/users?page=1")
677
678 users =
679 [
680 %{
681 "deactivated" => admin.deactivated,
682 "id" => admin.id,
683 "nickname" => admin.nickname,
684 "roles" => %{"admin" => true, "moderator" => false},
685 "local" => true,
686 "tags" => [],
687 "avatar" => User.avatar_url(admin) |> MediaProxy.url(),
688 "display_name" => HTML.strip_tags(admin.name || admin.nickname),
689 "confirmation_pending" => false
690 },
691 %{
692 "deactivated" => user.deactivated,
693 "id" => user.id,
694 "nickname" => user.nickname,
695 "roles" => %{"admin" => false, "moderator" => false},
696 "local" => false,
697 "tags" => ["foo", "bar"],
698 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
699 "display_name" => HTML.strip_tags(user.name || user.nickname),
700 "confirmation_pending" => false
701 }
702 ]
703 |> Enum.sort_by(& &1["nickname"])
704
705 assert json_response(conn, 200) == %{
706 "count" => 2,
707 "page_size" => 50,
708 "users" => users
709 }
710 end
711
712 test "renders empty array for the second page", %{conn: conn} do
713 insert(:user)
714
715 conn = get(conn, "/api/pleroma/admin/users?page=2")
716
717 assert json_response(conn, 200) == %{
718 "count" => 2,
719 "page_size" => 50,
720 "users" => []
721 }
722 end
723
724 test "regular search", %{conn: conn} do
725 user = insert(:user, nickname: "bob")
726
727 conn = get(conn, "/api/pleroma/admin/users?query=bo")
728
729 assert json_response(conn, 200) == %{
730 "count" => 1,
731 "page_size" => 50,
732 "users" => [
733 %{
734 "deactivated" => user.deactivated,
735 "id" => user.id,
736 "nickname" => user.nickname,
737 "roles" => %{"admin" => false, "moderator" => false},
738 "local" => true,
739 "tags" => [],
740 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
741 "display_name" => HTML.strip_tags(user.name || user.nickname),
742 "confirmation_pending" => false
743 }
744 ]
745 }
746 end
747
748 test "search by domain", %{conn: conn} do
749 user = insert(:user, nickname: "nickname@domain.com")
750 insert(:user)
751
752 conn = get(conn, "/api/pleroma/admin/users?query=domain.com")
753
754 assert json_response(conn, 200) == %{
755 "count" => 1,
756 "page_size" => 50,
757 "users" => [
758 %{
759 "deactivated" => user.deactivated,
760 "id" => user.id,
761 "nickname" => user.nickname,
762 "roles" => %{"admin" => false, "moderator" => false},
763 "local" => true,
764 "tags" => [],
765 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
766 "display_name" => HTML.strip_tags(user.name || user.nickname),
767 "confirmation_pending" => false
768 }
769 ]
770 }
771 end
772
773 test "search by full nickname", %{conn: conn} do
774 user = insert(:user, nickname: "nickname@domain.com")
775 insert(:user)
776
777 conn = get(conn, "/api/pleroma/admin/users?query=nickname@domain.com")
778
779 assert json_response(conn, 200) == %{
780 "count" => 1,
781 "page_size" => 50,
782 "users" => [
783 %{
784 "deactivated" => user.deactivated,
785 "id" => user.id,
786 "nickname" => user.nickname,
787 "roles" => %{"admin" => false, "moderator" => false},
788 "local" => true,
789 "tags" => [],
790 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
791 "display_name" => HTML.strip_tags(user.name || user.nickname),
792 "confirmation_pending" => false
793 }
794 ]
795 }
796 end
797
798 test "search by display name", %{conn: conn} do
799 user = insert(:user, name: "Display name")
800 insert(:user)
801
802 conn = get(conn, "/api/pleroma/admin/users?name=display")
803
804 assert json_response(conn, 200) == %{
805 "count" => 1,
806 "page_size" => 50,
807 "users" => [
808 %{
809 "deactivated" => user.deactivated,
810 "id" => user.id,
811 "nickname" => user.nickname,
812 "roles" => %{"admin" => false, "moderator" => false},
813 "local" => true,
814 "tags" => [],
815 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
816 "display_name" => HTML.strip_tags(user.name || user.nickname),
817 "confirmation_pending" => false
818 }
819 ]
820 }
821 end
822
823 test "search by email", %{conn: conn} do
824 user = insert(:user, email: "email@example.com")
825 insert(:user)
826
827 conn = get(conn, "/api/pleroma/admin/users?email=email@example.com")
828
829 assert json_response(conn, 200) == %{
830 "count" => 1,
831 "page_size" => 50,
832 "users" => [
833 %{
834 "deactivated" => user.deactivated,
835 "id" => user.id,
836 "nickname" => user.nickname,
837 "roles" => %{"admin" => false, "moderator" => false},
838 "local" => true,
839 "tags" => [],
840 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
841 "display_name" => HTML.strip_tags(user.name || user.nickname),
842 "confirmation_pending" => false
843 }
844 ]
845 }
846 end
847
848 test "regular search with page size", %{conn: conn} do
849 user = insert(:user, nickname: "aalice")
850 user2 = insert(:user, nickname: "alice")
851
852 conn1 = get(conn, "/api/pleroma/admin/users?query=a&page_size=1&page=1")
853
854 assert json_response(conn1, 200) == %{
855 "count" => 2,
856 "page_size" => 1,
857 "users" => [
858 %{
859 "deactivated" => user.deactivated,
860 "id" => user.id,
861 "nickname" => user.nickname,
862 "roles" => %{"admin" => false, "moderator" => false},
863 "local" => true,
864 "tags" => [],
865 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
866 "display_name" => HTML.strip_tags(user.name || user.nickname),
867 "confirmation_pending" => false
868 }
869 ]
870 }
871
872 conn2 = get(conn, "/api/pleroma/admin/users?query=a&page_size=1&page=2")
873
874 assert json_response(conn2, 200) == %{
875 "count" => 2,
876 "page_size" => 1,
877 "users" => [
878 %{
879 "deactivated" => user2.deactivated,
880 "id" => user2.id,
881 "nickname" => user2.nickname,
882 "roles" => %{"admin" => false, "moderator" => false},
883 "local" => true,
884 "tags" => [],
885 "avatar" => User.avatar_url(user2) |> MediaProxy.url(),
886 "display_name" => HTML.strip_tags(user2.name || user2.nickname),
887 "confirmation_pending" => false
888 }
889 ]
890 }
891 end
892
893 test "only local users" do
894 admin = insert(:user, is_admin: true, nickname: "john")
895 token = insert(:oauth_admin_token, user: admin)
896 user = insert(:user, nickname: "bob")
897
898 insert(:user, nickname: "bobb", local: false)
899
900 conn =
901 build_conn()
902 |> assign(:user, admin)
903 |> assign(:token, token)
904 |> get("/api/pleroma/admin/users?query=bo&filters=local")
905
906 assert json_response(conn, 200) == %{
907 "count" => 1,
908 "page_size" => 50,
909 "users" => [
910 %{
911 "deactivated" => user.deactivated,
912 "id" => user.id,
913 "nickname" => user.nickname,
914 "roles" => %{"admin" => false, "moderator" => false},
915 "local" => true,
916 "tags" => [],
917 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
918 "display_name" => HTML.strip_tags(user.name || user.nickname),
919 "confirmation_pending" => false
920 }
921 ]
922 }
923 end
924
925 test "only local users with no query", %{conn: conn, admin: old_admin} do
926 admin = insert(:user, is_admin: true, nickname: "john")
927 user = insert(:user, nickname: "bob")
928
929 insert(:user, nickname: "bobb", local: false)
930
931 conn = get(conn, "/api/pleroma/admin/users?filters=local")
932
933 users =
934 [
935 %{
936 "deactivated" => user.deactivated,
937 "id" => user.id,
938 "nickname" => user.nickname,
939 "roles" => %{"admin" => false, "moderator" => false},
940 "local" => true,
941 "tags" => [],
942 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
943 "display_name" => HTML.strip_tags(user.name || user.nickname),
944 "confirmation_pending" => false
945 },
946 %{
947 "deactivated" => admin.deactivated,
948 "id" => admin.id,
949 "nickname" => admin.nickname,
950 "roles" => %{"admin" => true, "moderator" => false},
951 "local" => true,
952 "tags" => [],
953 "avatar" => User.avatar_url(admin) |> MediaProxy.url(),
954 "display_name" => HTML.strip_tags(admin.name || admin.nickname),
955 "confirmation_pending" => false
956 },
957 %{
958 "deactivated" => false,
959 "id" => old_admin.id,
960 "local" => true,
961 "nickname" => old_admin.nickname,
962 "roles" => %{"admin" => true, "moderator" => false},
963 "tags" => [],
964 "avatar" => User.avatar_url(old_admin) |> MediaProxy.url(),
965 "display_name" => HTML.strip_tags(old_admin.name || old_admin.nickname),
966 "confirmation_pending" => false
967 }
968 ]
969 |> Enum.sort_by(& &1["nickname"])
970
971 assert json_response(conn, 200) == %{
972 "count" => 3,
973 "page_size" => 50,
974 "users" => users
975 }
976 end
977
978 test "load only admins", %{conn: conn, admin: admin} do
979 second_admin = insert(:user, is_admin: true)
980 insert(:user)
981 insert(:user)
982
983 conn = get(conn, "/api/pleroma/admin/users?filters=is_admin")
984
985 users =
986 [
987 %{
988 "deactivated" => false,
989 "id" => admin.id,
990 "nickname" => admin.nickname,
991 "roles" => %{"admin" => true, "moderator" => false},
992 "local" => admin.local,
993 "tags" => [],
994 "avatar" => User.avatar_url(admin) |> MediaProxy.url(),
995 "display_name" => HTML.strip_tags(admin.name || admin.nickname),
996 "confirmation_pending" => false
997 },
998 %{
999 "deactivated" => false,
1000 "id" => second_admin.id,
1001 "nickname" => second_admin.nickname,
1002 "roles" => %{"admin" => true, "moderator" => false},
1003 "local" => second_admin.local,
1004 "tags" => [],
1005 "avatar" => User.avatar_url(second_admin) |> MediaProxy.url(),
1006 "display_name" => HTML.strip_tags(second_admin.name || second_admin.nickname),
1007 "confirmation_pending" => false
1008 }
1009 ]
1010 |> Enum.sort_by(& &1["nickname"])
1011
1012 assert json_response(conn, 200) == %{
1013 "count" => 2,
1014 "page_size" => 50,
1015 "users" => users
1016 }
1017 end
1018
1019 test "load only moderators", %{conn: conn} do
1020 moderator = insert(:user, is_moderator: true)
1021 insert(:user)
1022 insert(:user)
1023
1024 conn = get(conn, "/api/pleroma/admin/users?filters=is_moderator")
1025
1026 assert json_response(conn, 200) == %{
1027 "count" => 1,
1028 "page_size" => 50,
1029 "users" => [
1030 %{
1031 "deactivated" => false,
1032 "id" => moderator.id,
1033 "nickname" => moderator.nickname,
1034 "roles" => %{"admin" => false, "moderator" => true},
1035 "local" => moderator.local,
1036 "tags" => [],
1037 "avatar" => User.avatar_url(moderator) |> MediaProxy.url(),
1038 "display_name" => HTML.strip_tags(moderator.name || moderator.nickname),
1039 "confirmation_pending" => false
1040 }
1041 ]
1042 }
1043 end
1044
1045 test "load users with tags list", %{conn: conn} do
1046 user1 = insert(:user, tags: ["first"])
1047 user2 = insert(:user, tags: ["second"])
1048 insert(:user)
1049 insert(:user)
1050
1051 conn = get(conn, "/api/pleroma/admin/users?tags[]=first&tags[]=second")
1052
1053 users =
1054 [
1055 %{
1056 "deactivated" => false,
1057 "id" => user1.id,
1058 "nickname" => user1.nickname,
1059 "roles" => %{"admin" => false, "moderator" => false},
1060 "local" => user1.local,
1061 "tags" => ["first"],
1062 "avatar" => User.avatar_url(user1) |> MediaProxy.url(),
1063 "display_name" => HTML.strip_tags(user1.name || user1.nickname),
1064 "confirmation_pending" => false
1065 },
1066 %{
1067 "deactivated" => false,
1068 "id" => user2.id,
1069 "nickname" => user2.nickname,
1070 "roles" => %{"admin" => false, "moderator" => false},
1071 "local" => user2.local,
1072 "tags" => ["second"],
1073 "avatar" => User.avatar_url(user2) |> MediaProxy.url(),
1074 "display_name" => HTML.strip_tags(user2.name || user2.nickname),
1075 "confirmation_pending" => false
1076 }
1077 ]
1078 |> Enum.sort_by(& &1["nickname"])
1079
1080 assert json_response(conn, 200) == %{
1081 "count" => 2,
1082 "page_size" => 50,
1083 "users" => users
1084 }
1085 end
1086
1087 test "it works with multiple filters" do
1088 admin = insert(:user, nickname: "john", is_admin: true)
1089 token = insert(:oauth_admin_token, user: admin)
1090 user = insert(:user, nickname: "bob", local: false, deactivated: true)
1091
1092 insert(:user, nickname: "ken", local: true, deactivated: true)
1093 insert(:user, nickname: "bobb", local: false, deactivated: false)
1094
1095 conn =
1096 build_conn()
1097 |> assign(:user, admin)
1098 |> assign(:token, token)
1099 |> get("/api/pleroma/admin/users?filters=deactivated,external")
1100
1101 assert json_response(conn, 200) == %{
1102 "count" => 1,
1103 "page_size" => 50,
1104 "users" => [
1105 %{
1106 "deactivated" => user.deactivated,
1107 "id" => user.id,
1108 "nickname" => user.nickname,
1109 "roles" => %{"admin" => false, "moderator" => false},
1110 "local" => user.local,
1111 "tags" => [],
1112 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
1113 "display_name" => HTML.strip_tags(user.name || user.nickname),
1114 "confirmation_pending" => false
1115 }
1116 ]
1117 }
1118 end
1119
1120 test "it omits relay user", %{admin: admin, conn: conn} do
1121 assert %User{} = Relay.get_actor()
1122
1123 conn = get(conn, "/api/pleroma/admin/users")
1124
1125 assert json_response(conn, 200) == %{
1126 "count" => 1,
1127 "page_size" => 50,
1128 "users" => [
1129 %{
1130 "deactivated" => admin.deactivated,
1131 "id" => admin.id,
1132 "nickname" => admin.nickname,
1133 "roles" => %{"admin" => true, "moderator" => false},
1134 "local" => true,
1135 "tags" => [],
1136 "avatar" => User.avatar_url(admin) |> MediaProxy.url(),
1137 "display_name" => HTML.strip_tags(admin.name || admin.nickname),
1138 "confirmation_pending" => false
1139 }
1140 ]
1141 }
1142 end
1143 end
1144
1145 test "PATCH /api/pleroma/admin/users/activate", %{admin: admin, conn: conn} do
1146 user_one = insert(:user, deactivated: true)
1147 user_two = insert(:user, deactivated: true)
1148
1149 conn =
1150 patch(
1151 conn,
1152 "/api/pleroma/admin/users/activate",
1153 %{nicknames: [user_one.nickname, user_two.nickname]}
1154 )
1155
1156 response = json_response(conn, 200)
1157 assert Enum.map(response["users"], & &1["deactivated"]) == [false, false]
1158
1159 log_entry = Repo.one(ModerationLog)
1160
1161 assert ModerationLog.get_log_entry_message(log_entry) ==
1162 "@#{admin.nickname} activated users: @#{user_one.nickname}, @#{user_two.nickname}"
1163 end
1164
1165 test "PATCH /api/pleroma/admin/users/deactivate", %{admin: admin, conn: conn} do
1166 user_one = insert(:user, deactivated: false)
1167 user_two = insert(:user, deactivated: false)
1168
1169 conn =
1170 patch(
1171 conn,
1172 "/api/pleroma/admin/users/deactivate",
1173 %{nicknames: [user_one.nickname, user_two.nickname]}
1174 )
1175
1176 response = json_response(conn, 200)
1177 assert Enum.map(response["users"], & &1["deactivated"]) == [true, true]
1178
1179 log_entry = Repo.one(ModerationLog)
1180
1181 assert ModerationLog.get_log_entry_message(log_entry) ==
1182 "@#{admin.nickname} deactivated users: @#{user_one.nickname}, @#{user_two.nickname}"
1183 end
1184
1185 test "PATCH /api/pleroma/admin/users/:nickname/toggle_activation", %{admin: admin, conn: conn} do
1186 user = insert(:user)
1187
1188 conn = patch(conn, "/api/pleroma/admin/users/#{user.nickname}/toggle_activation")
1189
1190 assert json_response(conn, 200) ==
1191 %{
1192 "deactivated" => !user.deactivated,
1193 "id" => user.id,
1194 "nickname" => user.nickname,
1195 "roles" => %{"admin" => false, "moderator" => false},
1196 "local" => true,
1197 "tags" => [],
1198 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
1199 "display_name" => HTML.strip_tags(user.name || user.nickname),
1200 "confirmation_pending" => false
1201 }
1202
1203 log_entry = Repo.one(ModerationLog)
1204
1205 assert ModerationLog.get_log_entry_message(log_entry) ==
1206 "@#{admin.nickname} deactivated users: @#{user.nickname}"
1207 end
1208
1209 describe "POST /api/pleroma/admin/users/invite_token" do
1210 test "without options", %{conn: conn} do
1211 conn = post(conn, "/api/pleroma/admin/users/invite_token")
1212
1213 invite_json = json_response(conn, 200)
1214 invite = UserInviteToken.find_by_token!(invite_json["token"])
1215 refute invite.used
1216 refute invite.expires_at
1217 refute invite.max_use
1218 assert invite.invite_type == "one_time"
1219 end
1220
1221 test "with expires_at", %{conn: conn} do
1222 conn =
1223 post(conn, "/api/pleroma/admin/users/invite_token", %{
1224 "expires_at" => Date.to_string(Date.utc_today())
1225 })
1226
1227 invite_json = json_response(conn, 200)
1228 invite = UserInviteToken.find_by_token!(invite_json["token"])
1229
1230 refute invite.used
1231 assert invite.expires_at == Date.utc_today()
1232 refute invite.max_use
1233 assert invite.invite_type == "date_limited"
1234 end
1235
1236 test "with max_use", %{conn: conn} do
1237 conn = post(conn, "/api/pleroma/admin/users/invite_token", %{"max_use" => 150})
1238
1239 invite_json = json_response(conn, 200)
1240 invite = UserInviteToken.find_by_token!(invite_json["token"])
1241 refute invite.used
1242 refute invite.expires_at
1243 assert invite.max_use == 150
1244 assert invite.invite_type == "reusable"
1245 end
1246
1247 test "with max use and expires_at", %{conn: conn} do
1248 conn =
1249 post(conn, "/api/pleroma/admin/users/invite_token", %{
1250 "max_use" => 150,
1251 "expires_at" => Date.to_string(Date.utc_today())
1252 })
1253
1254 invite_json = json_response(conn, 200)
1255 invite = UserInviteToken.find_by_token!(invite_json["token"])
1256 refute invite.used
1257 assert invite.expires_at == Date.utc_today()
1258 assert invite.max_use == 150
1259 assert invite.invite_type == "reusable_date_limited"
1260 end
1261 end
1262
1263 describe "GET /api/pleroma/admin/users/invites" do
1264 test "no invites", %{conn: conn} do
1265 conn = get(conn, "/api/pleroma/admin/users/invites")
1266
1267 assert json_response(conn, 200) == %{"invites" => []}
1268 end
1269
1270 test "with invite", %{conn: conn} do
1271 {:ok, invite} = UserInviteToken.create_invite()
1272
1273 conn = get(conn, "/api/pleroma/admin/users/invites")
1274
1275 assert json_response(conn, 200) == %{
1276 "invites" => [
1277 %{
1278 "expires_at" => nil,
1279 "id" => invite.id,
1280 "invite_type" => "one_time",
1281 "max_use" => nil,
1282 "token" => invite.token,
1283 "used" => false,
1284 "uses" => 0
1285 }
1286 ]
1287 }
1288 end
1289 end
1290
1291 describe "POST /api/pleroma/admin/users/revoke_invite" do
1292 test "with token", %{conn: conn} do
1293 {:ok, invite} = UserInviteToken.create_invite()
1294
1295 conn = post(conn, "/api/pleroma/admin/users/revoke_invite", %{"token" => invite.token})
1296
1297 assert json_response(conn, 200) == %{
1298 "expires_at" => nil,
1299 "id" => invite.id,
1300 "invite_type" => "one_time",
1301 "max_use" => nil,
1302 "token" => invite.token,
1303 "used" => true,
1304 "uses" => 0
1305 }
1306 end
1307
1308 test "with invalid token", %{conn: conn} do
1309 conn = post(conn, "/api/pleroma/admin/users/revoke_invite", %{"token" => "foo"})
1310
1311 assert json_response(conn, :not_found) == "Not found"
1312 end
1313 end
1314
1315 describe "GET /api/pleroma/admin/reports/:id" do
1316 test "returns report by its id", %{conn: conn} do
1317 [reporter, target_user] = insert_pair(:user)
1318 activity = insert(:note_activity, user: target_user)
1319
1320 {:ok, %{id: report_id}} =
1321 CommonAPI.report(reporter, %{
1322 "account_id" => target_user.id,
1323 "comment" => "I feel offended",
1324 "status_ids" => [activity.id]
1325 })
1326
1327 response =
1328 conn
1329 |> get("/api/pleroma/admin/reports/#{report_id}")
1330 |> json_response(:ok)
1331
1332 assert response["id"] == report_id
1333 end
1334
1335 test "returns 404 when report id is invalid", %{conn: conn} do
1336 conn = get(conn, "/api/pleroma/admin/reports/test")
1337
1338 assert json_response(conn, :not_found) == "Not found"
1339 end
1340 end
1341
1342 describe "PATCH /api/pleroma/admin/reports" do
1343 setup do
1344 [reporter, target_user] = insert_pair(:user)
1345 activity = insert(:note_activity, user: target_user)
1346
1347 {:ok, %{id: report_id}} =
1348 CommonAPI.report(reporter, %{
1349 "account_id" => target_user.id,
1350 "comment" => "I feel offended",
1351 "status_ids" => [activity.id]
1352 })
1353
1354 {:ok, %{id: second_report_id}} =
1355 CommonAPI.report(reporter, %{
1356 "account_id" => target_user.id,
1357 "comment" => "I feel very offended",
1358 "status_ids" => [activity.id]
1359 })
1360
1361 %{
1362 id: report_id,
1363 second_report_id: second_report_id
1364 }
1365 end
1366
1367 test "mark report as resolved", %{conn: conn, id: id, admin: admin} do
1368 conn
1369 |> patch("/api/pleroma/admin/reports", %{
1370 "reports" => [
1371 %{"state" => "resolved", "id" => id}
1372 ]
1373 })
1374 |> json_response(:no_content)
1375
1376 activity = Activity.get_by_id(id)
1377 assert activity.data["state"] == "resolved"
1378
1379 log_entry = Repo.one(ModerationLog)
1380
1381 assert ModerationLog.get_log_entry_message(log_entry) ==
1382 "@#{admin.nickname} updated report ##{id} with 'resolved' state"
1383 end
1384
1385 test "closes report", %{conn: conn, id: id, admin: admin} do
1386 conn
1387 |> patch("/api/pleroma/admin/reports", %{
1388 "reports" => [
1389 %{"state" => "closed", "id" => id}
1390 ]
1391 })
1392 |> json_response(:no_content)
1393
1394 activity = Activity.get_by_id(id)
1395 assert activity.data["state"] == "closed"
1396
1397 log_entry = Repo.one(ModerationLog)
1398
1399 assert ModerationLog.get_log_entry_message(log_entry) ==
1400 "@#{admin.nickname} updated report ##{id} with 'closed' state"
1401 end
1402
1403 test "returns 400 when state is unknown", %{conn: conn, id: id} do
1404 conn =
1405 conn
1406 |> patch("/api/pleroma/admin/reports", %{
1407 "reports" => [
1408 %{"state" => "test", "id" => id}
1409 ]
1410 })
1411
1412 assert hd(json_response(conn, :bad_request))["error"] == "Unsupported state"
1413 end
1414
1415 test "returns 404 when report is not exist", %{conn: conn} do
1416 conn =
1417 conn
1418 |> patch("/api/pleroma/admin/reports", %{
1419 "reports" => [
1420 %{"state" => "closed", "id" => "test"}
1421 ]
1422 })
1423
1424 assert hd(json_response(conn, :bad_request))["error"] == "not_found"
1425 end
1426
1427 test "updates state of multiple reports", %{
1428 conn: conn,
1429 id: id,
1430 admin: admin,
1431 second_report_id: second_report_id
1432 } do
1433 conn
1434 |> patch("/api/pleroma/admin/reports", %{
1435 "reports" => [
1436 %{"state" => "resolved", "id" => id},
1437 %{"state" => "closed", "id" => second_report_id}
1438 ]
1439 })
1440 |> json_response(:no_content)
1441
1442 activity = Activity.get_by_id(id)
1443 second_activity = Activity.get_by_id(second_report_id)
1444 assert activity.data["state"] == "resolved"
1445 assert second_activity.data["state"] == "closed"
1446
1447 [first_log_entry, second_log_entry] = Repo.all(ModerationLog)
1448
1449 assert ModerationLog.get_log_entry_message(first_log_entry) ==
1450 "@#{admin.nickname} updated report ##{id} with 'resolved' state"
1451
1452 assert ModerationLog.get_log_entry_message(second_log_entry) ==
1453 "@#{admin.nickname} updated report ##{second_report_id} with 'closed' state"
1454 end
1455 end
1456
1457 describe "GET /api/pleroma/admin/reports" do
1458 test "returns empty response when no reports created", %{conn: conn} do
1459 response =
1460 conn
1461 |> get("/api/pleroma/admin/reports")
1462 |> json_response(:ok)
1463
1464 assert Enum.empty?(response["reports"])
1465 assert response["total"] == 0
1466 end
1467
1468 test "returns reports", %{conn: conn} do
1469 [reporter, target_user] = insert_pair(:user)
1470 activity = insert(:note_activity, user: target_user)
1471
1472 {:ok, %{id: report_id}} =
1473 CommonAPI.report(reporter, %{
1474 "account_id" => target_user.id,
1475 "comment" => "I feel offended",
1476 "status_ids" => [activity.id]
1477 })
1478
1479 response =
1480 conn
1481 |> get("/api/pleroma/admin/reports")
1482 |> json_response(:ok)
1483
1484 [report] = response["reports"]
1485
1486 assert length(response["reports"]) == 1
1487 assert report["id"] == report_id
1488
1489 assert response["total"] == 1
1490 end
1491
1492 test "returns reports with specified state", %{conn: conn} do
1493 [reporter, target_user] = insert_pair(:user)
1494 activity = insert(:note_activity, user: target_user)
1495
1496 {:ok, %{id: first_report_id}} =
1497 CommonAPI.report(reporter, %{
1498 "account_id" => target_user.id,
1499 "comment" => "I feel offended",
1500 "status_ids" => [activity.id]
1501 })
1502
1503 {:ok, %{id: second_report_id}} =
1504 CommonAPI.report(reporter, %{
1505 "account_id" => target_user.id,
1506 "comment" => "I don't like this user"
1507 })
1508
1509 CommonAPI.update_report_state(second_report_id, "closed")
1510
1511 response =
1512 conn
1513 |> get("/api/pleroma/admin/reports", %{
1514 "state" => "open"
1515 })
1516 |> json_response(:ok)
1517
1518 [open_report] = response["reports"]
1519
1520 assert length(response["reports"]) == 1
1521 assert open_report["id"] == first_report_id
1522
1523 assert response["total"] == 1
1524
1525 response =
1526 conn
1527 |> get("/api/pleroma/admin/reports", %{
1528 "state" => "closed"
1529 })
1530 |> json_response(:ok)
1531
1532 [closed_report] = response["reports"]
1533
1534 assert length(response["reports"]) == 1
1535 assert closed_report["id"] == second_report_id
1536
1537 assert response["total"] == 1
1538
1539 response =
1540 conn
1541 |> get("/api/pleroma/admin/reports", %{
1542 "state" => "resolved"
1543 })
1544 |> json_response(:ok)
1545
1546 assert Enum.empty?(response["reports"])
1547 assert response["total"] == 0
1548 end
1549
1550 test "returns 403 when requested by a non-admin" do
1551 user = insert(:user)
1552 token = insert(:oauth_token, user: user)
1553
1554 conn =
1555 build_conn()
1556 |> assign(:user, user)
1557 |> assign(:token, token)
1558 |> get("/api/pleroma/admin/reports")
1559
1560 assert json_response(conn, :forbidden) ==
1561 %{"error" => "User is not an admin or OAuth admin scope is not granted."}
1562 end
1563
1564 test "returns 403 when requested by anonymous" do
1565 conn = get(build_conn(), "/api/pleroma/admin/reports")
1566
1567 assert json_response(conn, :forbidden) == %{"error" => "Invalid credentials."}
1568 end
1569 end
1570
1571 describe "GET /api/pleroma/admin/grouped_reports" do
1572 setup do
1573 [reporter, target_user] = insert_pair(:user)
1574
1575 date1 = (DateTime.to_unix(DateTime.utc_now()) + 1000) |> DateTime.from_unix!()
1576 date2 = (DateTime.to_unix(DateTime.utc_now()) + 2000) |> DateTime.from_unix!()
1577 date3 = (DateTime.to_unix(DateTime.utc_now()) + 3000) |> DateTime.from_unix!()
1578
1579 first_status =
1580 insert(:note_activity, user: target_user, data_attrs: %{"published" => date1})
1581
1582 second_status =
1583 insert(:note_activity, user: target_user, data_attrs: %{"published" => date2})
1584
1585 third_status =
1586 insert(:note_activity, user: target_user, data_attrs: %{"published" => date3})
1587
1588 {:ok, first_report} =
1589 CommonAPI.report(reporter, %{
1590 "account_id" => target_user.id,
1591 "status_ids" => [first_status.id, second_status.id, third_status.id]
1592 })
1593
1594 {:ok, second_report} =
1595 CommonAPI.report(reporter, %{
1596 "account_id" => target_user.id,
1597 "status_ids" => [first_status.id, second_status.id]
1598 })
1599
1600 {:ok, third_report} =
1601 CommonAPI.report(reporter, %{
1602 "account_id" => target_user.id,
1603 "status_ids" => [first_status.id]
1604 })
1605
1606 %{
1607 first_status: Activity.get_by_ap_id_with_object(first_status.data["id"]),
1608 second_status: Activity.get_by_ap_id_with_object(second_status.data["id"]),
1609 third_status: Activity.get_by_ap_id_with_object(third_status.data["id"]),
1610 first_report: first_report,
1611 first_status_reports: [first_report, second_report, third_report],
1612 second_status_reports: [first_report, second_report],
1613 third_status_reports: [first_report],
1614 target_user: target_user,
1615 reporter: reporter
1616 }
1617 end
1618
1619 test "returns reports grouped by status", %{
1620 conn: conn,
1621 first_status: first_status,
1622 second_status: second_status,
1623 third_status: third_status,
1624 first_status_reports: first_status_reports,
1625 second_status_reports: second_status_reports,
1626 third_status_reports: third_status_reports,
1627 target_user: target_user,
1628 reporter: reporter
1629 } do
1630 response =
1631 conn
1632 |> get("/api/pleroma/admin/grouped_reports")
1633 |> json_response(:ok)
1634
1635 assert length(response["reports"]) == 3
1636
1637 first_group = Enum.find(response["reports"], &(&1["status"]["id"] == first_status.id))
1638
1639 second_group = Enum.find(response["reports"], &(&1["status"]["id"] == second_status.id))
1640
1641 third_group = Enum.find(response["reports"], &(&1["status"]["id"] == third_status.id))
1642
1643 assert length(first_group["reports"]) == 3
1644 assert length(second_group["reports"]) == 2
1645 assert length(third_group["reports"]) == 1
1646
1647 assert first_group["date"] ==
1648 Enum.max_by(first_status_reports, fn act ->
1649 NaiveDateTime.from_iso8601!(act.data["published"])
1650 end).data["published"]
1651
1652 assert first_group["status"] ==
1653 Map.put(
1654 stringify_keys(StatusView.render("show.json", %{activity: first_status})),
1655 "deleted",
1656 false
1657 )
1658
1659 assert(first_group["account"]["id"] == target_user.id)
1660
1661 assert length(first_group["actors"]) == 1
1662 assert hd(first_group["actors"])["id"] == reporter.id
1663
1664 assert Enum.map(first_group["reports"], & &1["id"]) --
1665 Enum.map(first_status_reports, & &1.id) == []
1666
1667 assert second_group["date"] ==
1668 Enum.max_by(second_status_reports, fn act ->
1669 NaiveDateTime.from_iso8601!(act.data["published"])
1670 end).data["published"]
1671
1672 assert second_group["status"] ==
1673 Map.put(
1674 stringify_keys(StatusView.render("show.json", %{activity: second_status})),
1675 "deleted",
1676 false
1677 )
1678
1679 assert second_group["account"]["id"] == target_user.id
1680
1681 assert length(second_group["actors"]) == 1
1682 assert hd(second_group["actors"])["id"] == reporter.id
1683
1684 assert Enum.map(second_group["reports"], & &1["id"]) --
1685 Enum.map(second_status_reports, & &1.id) == []
1686
1687 assert third_group["date"] ==
1688 Enum.max_by(third_status_reports, fn act ->
1689 NaiveDateTime.from_iso8601!(act.data["published"])
1690 end).data["published"]
1691
1692 assert third_group["status"] ==
1693 Map.put(
1694 stringify_keys(StatusView.render("show.json", %{activity: third_status})),
1695 "deleted",
1696 false
1697 )
1698
1699 assert third_group["account"]["id"] == target_user.id
1700
1701 assert length(third_group["actors"]) == 1
1702 assert hd(third_group["actors"])["id"] == reporter.id
1703
1704 assert Enum.map(third_group["reports"], & &1["id"]) --
1705 Enum.map(third_status_reports, & &1.id) == []
1706 end
1707
1708 test "reopened report renders status data", %{
1709 conn: conn,
1710 first_report: first_report,
1711 first_status: first_status
1712 } do
1713 {:ok, _} = CommonAPI.update_report_state(first_report.id, "resolved")
1714
1715 response =
1716 conn
1717 |> get("/api/pleroma/admin/grouped_reports")
1718 |> json_response(:ok)
1719
1720 first_group = Enum.find(response["reports"], &(&1["status"]["id"] == first_status.id))
1721
1722 assert first_group["status"] ==
1723 Map.put(
1724 stringify_keys(StatusView.render("show.json", %{activity: first_status})),
1725 "deleted",
1726 false
1727 )
1728 end
1729
1730 test "reopened report does not render status data if status has been deleted", %{
1731 conn: conn,
1732 first_report: first_report,
1733 first_status: first_status,
1734 target_user: target_user
1735 } do
1736 {:ok, _} = CommonAPI.update_report_state(first_report.id, "resolved")
1737 {:ok, _} = CommonAPI.delete(first_status.id, target_user)
1738
1739 refute Activity.get_by_ap_id(first_status.id)
1740
1741 response =
1742 conn
1743 |> get("/api/pleroma/admin/grouped_reports")
1744 |> json_response(:ok)
1745
1746 assert Enum.find(response["reports"], &(&1["status"]["deleted"] == true))["status"][
1747 "deleted"
1748 ] == true
1749
1750 assert length(Enum.filter(response["reports"], &(&1["status"]["deleted"] == false))) == 2
1751 end
1752
1753 test "account not empty if status was deleted", %{
1754 conn: conn,
1755 first_report: first_report,
1756 first_status: first_status,
1757 target_user: target_user
1758 } do
1759 {:ok, _} = CommonAPI.update_report_state(first_report.id, "resolved")
1760 {:ok, _} = CommonAPI.delete(first_status.id, target_user)
1761
1762 refute Activity.get_by_ap_id(first_status.id)
1763
1764 response =
1765 conn
1766 |> get("/api/pleroma/admin/grouped_reports")
1767 |> json_response(:ok)
1768
1769 assert Enum.find(response["reports"], &(&1["status"]["deleted"] == true))["account"]
1770 end
1771 end
1772
1773 describe "PUT /api/pleroma/admin/statuses/:id" do
1774 setup do
1775 activity = insert(:note_activity)
1776
1777 %{id: activity.id}
1778 end
1779
1780 test "toggle sensitive flag", %{conn: conn, id: id, admin: admin} do
1781 response =
1782 conn
1783 |> put("/api/pleroma/admin/statuses/#{id}", %{"sensitive" => "true"})
1784 |> json_response(:ok)
1785
1786 assert response["sensitive"]
1787
1788 log_entry = Repo.one(ModerationLog)
1789
1790 assert ModerationLog.get_log_entry_message(log_entry) ==
1791 "@#{admin.nickname} updated status ##{id}, set sensitive: 'true'"
1792
1793 response =
1794 conn
1795 |> put("/api/pleroma/admin/statuses/#{id}", %{"sensitive" => "false"})
1796 |> json_response(:ok)
1797
1798 refute response["sensitive"]
1799 end
1800
1801 test "change visibility flag", %{conn: conn, id: id, admin: admin} do
1802 response =
1803 conn
1804 |> put("/api/pleroma/admin/statuses/#{id}", %{"visibility" => "public"})
1805 |> json_response(:ok)
1806
1807 assert response["visibility"] == "public"
1808
1809 log_entry = Repo.one(ModerationLog)
1810
1811 assert ModerationLog.get_log_entry_message(log_entry) ==
1812 "@#{admin.nickname} updated status ##{id}, set visibility: 'public'"
1813
1814 response =
1815 conn
1816 |> put("/api/pleroma/admin/statuses/#{id}", %{"visibility" => "private"})
1817 |> json_response(:ok)
1818
1819 assert response["visibility"] == "private"
1820
1821 response =
1822 conn
1823 |> put("/api/pleroma/admin/statuses/#{id}", %{"visibility" => "unlisted"})
1824 |> json_response(:ok)
1825
1826 assert response["visibility"] == "unlisted"
1827 end
1828
1829 test "returns 400 when visibility is unknown", %{conn: conn, id: id} do
1830 conn = put(conn, "/api/pleroma/admin/statuses/#{id}", %{"visibility" => "test"})
1831
1832 assert json_response(conn, :bad_request) == "Unsupported visibility"
1833 end
1834 end
1835
1836 describe "DELETE /api/pleroma/admin/statuses/:id" do
1837 setup do
1838 activity = insert(:note_activity)
1839
1840 %{id: activity.id}
1841 end
1842
1843 test "deletes status", %{conn: conn, id: id, admin: admin} do
1844 conn
1845 |> delete("/api/pleroma/admin/statuses/#{id}")
1846 |> json_response(:ok)
1847
1848 refute Activity.get_by_id(id)
1849
1850 log_entry = Repo.one(ModerationLog)
1851
1852 assert ModerationLog.get_log_entry_message(log_entry) ==
1853 "@#{admin.nickname} deleted status ##{id}"
1854 end
1855
1856 test "returns error when status is not exist", %{conn: conn} do
1857 conn = delete(conn, "/api/pleroma/admin/statuses/test")
1858
1859 assert json_response(conn, :bad_request) == "Could not delete"
1860 end
1861 end
1862
1863 describe "GET /api/pleroma/admin/config" do
1864 clear_config(:configurable_from_database) do
1865 Pleroma.Config.put(:configurable_from_database, true)
1866 end
1867
1868 test "when configuration from database is off", %{conn: conn} do
1869 initial = Pleroma.Config.get(:configurable_from_database)
1870 Pleroma.Config.put(:configurable_from_database, false)
1871 on_exit(fn -> Pleroma.Config.put(:configurable_from_database, initial) end)
1872 conn = get(conn, "/api/pleroma/admin/config")
1873
1874 assert json_response(conn, 400) ==
1875 "To use this endpoint you need to enable configuration from database."
1876 end
1877
1878 test "without any settings in db", %{conn: conn} do
1879 conn = get(conn, "/api/pleroma/admin/config")
1880
1881 assert json_response(conn, 400) ==
1882 "To use configuration from database migrate your settings to database."
1883 end
1884
1885 test "with settings only in db", %{conn: conn} do
1886 config1 = insert(:config)
1887 config2 = insert(:config)
1888
1889 conn = get(conn, "/api/pleroma/admin/config", %{"only_db" => true})
1890
1891 %{
1892 "configs" => [
1893 %{
1894 "group" => ":pleroma",
1895 "key" => key1,
1896 "value" => _
1897 },
1898 %{
1899 "group" => ":pleroma",
1900 "key" => key2,
1901 "value" => _
1902 }
1903 ]
1904 } = json_response(conn, 200)
1905
1906 assert key1 == config1.key
1907 assert key2 == config2.key
1908 end
1909
1910 test "merged default setting with db settings", %{conn: conn} do
1911 config1 = insert(:config)
1912 config2 = insert(:config)
1913
1914 config3 =
1915 insert(:config,
1916 value: ConfigDB.to_binary(k1: :v1, k2: :v2)
1917 )
1918
1919 %{"configs" => configs} =
1920 conn
1921 |> get("/api/pleroma/admin/config")
1922 |> json_response(200)
1923
1924 assert length(configs) > 3
1925
1926 received_configs =
1927 Enum.filter(configs, fn %{"group" => group, "key" => key} ->
1928 group == ":pleroma" and key in [config1.key, config2.key, config3.key]
1929 end)
1930
1931 assert length(received_configs) == 3
1932
1933 db_keys =
1934 config3.value
1935 |> ConfigDB.from_binary()
1936 |> Keyword.keys()
1937 |> ConfigDB.convert()
1938
1939 Enum.each(received_configs, fn %{"value" => value, "db" => db} ->
1940 assert db in [[config1.key], [config2.key], db_keys]
1941
1942 assert value in [
1943 ConfigDB.from_binary_with_convert(config1.value),
1944 ConfigDB.from_binary_with_convert(config2.value),
1945 ConfigDB.from_binary_with_convert(config3.value)
1946 ]
1947 end)
1948 end
1949
1950 test "subkeys with full update right merge", %{conn: conn} do
1951 config1 =
1952 insert(:config,
1953 key: ":emoji",
1954 value: ConfigDB.to_binary(groups: [a: 1, b: 2], key: [a: 1])
1955 )
1956
1957 config2 =
1958 insert(:config,
1959 key: ":assets",
1960 value: ConfigDB.to_binary(mascots: [a: 1, b: 2], key: [a: 1])
1961 )
1962
1963 %{"configs" => configs} =
1964 conn
1965 |> get("/api/pleroma/admin/config")
1966 |> json_response(200)
1967
1968 [%{"key" => ":emoji", "value" => emoji_val}, %{"key" => ":assets", "value" => assets_val}] =
1969 Enum.filter(configs, fn %{"group" => group, "key" => key} ->
1970 group == ":pleroma" and key in [config1.key, config2.key]
1971 end)
1972
1973 emoji_val = ConfigDB.transform_with_out_binary(emoji_val)
1974 assets_val = ConfigDB.transform_with_out_binary(assets_val)
1975
1976 assert emoji_val[:groups] == [a: 1, b: 2]
1977 assert assets_val[:mascots] == [a: 1, b: 2]
1978 end
1979 end
1980
1981 test "POST /api/pleroma/admin/config error", %{conn: conn} do
1982 conn = post(conn, "/api/pleroma/admin/config", %{"configs" => []})
1983
1984 assert json_response(conn, 400) ==
1985 "To use this endpoint you need to enable configuration from database."
1986 end
1987
1988 describe "POST /api/pleroma/admin/config" do
1989 setup do
1990 http = Application.get_env(:pleroma, :http)
1991
1992 on_exit(fn ->
1993 Application.delete_env(:pleroma, :key1)
1994 Application.delete_env(:pleroma, :key2)
1995 Application.delete_env(:pleroma, :key3)
1996 Application.delete_env(:pleroma, :key4)
1997 Application.delete_env(:pleroma, :keyaa1)
1998 Application.delete_env(:pleroma, :keyaa2)
1999 Application.delete_env(:pleroma, Pleroma.Web.Endpoint.NotReal)
2000 Application.delete_env(:pleroma, Pleroma.Captcha.NotReal)
2001 Application.put_env(:pleroma, :http, http)
2002 Application.put_env(:tesla, :adapter, Tesla.Mock)
2003 :ok = File.rm("config/test.exported_from_db.secret.exs")
2004 end)
2005 end
2006
2007 clear_config(:configurable_from_database) do
2008 Pleroma.Config.put(:configurable_from_database, true)
2009 end
2010
2011 @tag capture_log: true
2012 test "create new config setting in db", %{conn: conn} do
2013 conn =
2014 post(conn, "/api/pleroma/admin/config", %{
2015 configs: [
2016 %{group: ":pleroma", key: ":key1", value: "value1"},
2017 %{
2018 group: ":ueberauth",
2019 key: "Ueberauth",
2020 value: [%{"tuple" => [":consumer_secret", "aaaa"]}]
2021 },
2022 %{
2023 group: ":pleroma",
2024 key: ":key2",
2025 value: %{
2026 ":nested_1" => "nested_value1",
2027 ":nested_2" => [
2028 %{":nested_22" => "nested_value222"},
2029 %{":nested_33" => %{":nested_44" => "nested_444"}}
2030 ]
2031 }
2032 },
2033 %{
2034 group: ":pleroma",
2035 key: ":key3",
2036 value: [
2037 %{"nested_3" => ":nested_3", "nested_33" => "nested_33"},
2038 %{"nested_4" => true}
2039 ]
2040 },
2041 %{
2042 group: ":pleroma",
2043 key: ":key4",
2044 value: %{":nested_5" => ":upload", "endpoint" => "https://example.com"}
2045 },
2046 %{
2047 group: ":idna",
2048 key: ":key5",
2049 value: %{"tuple" => ["string", "Pleroma.Captcha.NotReal", []]}
2050 }
2051 ]
2052 })
2053
2054 assert json_response(conn, 200) == %{
2055 "configs" => [
2056 %{
2057 "group" => ":pleroma",
2058 "key" => ":key1",
2059 "value" => "value1",
2060 "db" => [":key1"]
2061 },
2062 %{
2063 "group" => ":ueberauth",
2064 "key" => "Ueberauth",
2065 "value" => [%{"tuple" => [":consumer_secret", "aaaa"]}],
2066 "db" => [":consumer_secret"]
2067 },
2068 %{
2069 "group" => ":pleroma",
2070 "key" => ":key2",
2071 "value" => %{
2072 ":nested_1" => "nested_value1",
2073 ":nested_2" => [
2074 %{":nested_22" => "nested_value222"},
2075 %{":nested_33" => %{":nested_44" => "nested_444"}}
2076 ]
2077 },
2078 "db" => [":key2"]
2079 },
2080 %{
2081 "group" => ":pleroma",
2082 "key" => ":key3",
2083 "value" => [
2084 %{"nested_3" => ":nested_3", "nested_33" => "nested_33"},
2085 %{"nested_4" => true}
2086 ],
2087 "db" => [":key3"]
2088 },
2089 %{
2090 "group" => ":pleroma",
2091 "key" => ":key4",
2092 "value" => %{"endpoint" => "https://example.com", ":nested_5" => ":upload"},
2093 "db" => [":key4"]
2094 },
2095 %{
2096 "group" => ":idna",
2097 "key" => ":key5",
2098 "value" => %{"tuple" => ["string", "Pleroma.Captcha.NotReal", []]},
2099 "db" => [":key5"]
2100 }
2101 ]
2102 }
2103
2104 assert Application.get_env(:pleroma, :key1) == "value1"
2105
2106 assert Application.get_env(:pleroma, :key2) == %{
2107 nested_1: "nested_value1",
2108 nested_2: [
2109 %{nested_22: "nested_value222"},
2110 %{nested_33: %{nested_44: "nested_444"}}
2111 ]
2112 }
2113
2114 assert Application.get_env(:pleroma, :key3) == [
2115 %{"nested_3" => :nested_3, "nested_33" => "nested_33"},
2116 %{"nested_4" => true}
2117 ]
2118
2119 assert Application.get_env(:pleroma, :key4) == %{
2120 "endpoint" => "https://example.com",
2121 nested_5: :upload
2122 }
2123
2124 assert Application.get_env(:idna, :key5) == {"string", Pleroma.Captcha.NotReal, []}
2125 end
2126
2127 test "save config setting without key", %{conn: conn} do
2128 level = Application.get_env(:quack, :level)
2129 meta = Application.get_env(:quack, :meta)
2130 webhook_url = Application.get_env(:quack, :webhook_url)
2131
2132 on_exit(fn ->
2133 Application.put_env(:quack, :level, level)
2134 Application.put_env(:quack, :meta, meta)
2135 Application.put_env(:quack, :webhook_url, webhook_url)
2136 end)
2137
2138 conn =
2139 post(conn, "/api/pleroma/admin/config", %{
2140 configs: [
2141 %{
2142 group: ":quack",
2143 key: ":level",
2144 value: ":info"
2145 },
2146 %{
2147 group: ":quack",
2148 key: ":meta",
2149 value: [":none"]
2150 },
2151 %{
2152 group: ":quack",
2153 key: ":webhook_url",
2154 value: "https://hooks.slack.com/services/KEY"
2155 }
2156 ]
2157 })
2158
2159 assert json_response(conn, 200) == %{
2160 "configs" => [
2161 %{
2162 "group" => ":quack",
2163 "key" => ":level",
2164 "value" => ":info",
2165 "db" => [":level"]
2166 },
2167 %{
2168 "group" => ":quack",
2169 "key" => ":meta",
2170 "value" => [":none"],
2171 "db" => [":meta"]
2172 },
2173 %{
2174 "group" => ":quack",
2175 "key" => ":webhook_url",
2176 "value" => "https://hooks.slack.com/services/KEY",
2177 "db" => [":webhook_url"]
2178 }
2179 ]
2180 }
2181
2182 assert Application.get_env(:quack, :level) == :info
2183 assert Application.get_env(:quack, :meta) == [:none]
2184 assert Application.get_env(:quack, :webhook_url) == "https://hooks.slack.com/services/KEY"
2185 end
2186
2187 test "saving config with partial update", %{conn: conn} do
2188 config = insert(:config, key: ":key1", value: :erlang.term_to_binary(key1: 1, key2: 2))
2189
2190 conn =
2191 post(conn, "/api/pleroma/admin/config", %{
2192 configs: [
2193 %{group: config.group, key: config.key, value: [%{"tuple" => [":key3", 3]}]}
2194 ]
2195 })
2196
2197 assert json_response(conn, 200) == %{
2198 "configs" => [
2199 %{
2200 "group" => ":pleroma",
2201 "key" => ":key1",
2202 "value" => [
2203 %{"tuple" => [":key1", 1]},
2204 %{"tuple" => [":key2", 2]},
2205 %{"tuple" => [":key3", 3]}
2206 ],
2207 "db" => [":key1", ":key2", ":key3"]
2208 }
2209 ]
2210 }
2211 end
2212
2213 test "saving config with nested merge", %{conn: conn} do
2214 config =
2215 insert(:config, key: ":key1", value: :erlang.term_to_binary(key1: 1, key2: [k1: 1, k2: 2]))
2216
2217 conn =
2218 post(conn, "/api/pleroma/admin/config", %{
2219 configs: [
2220 %{
2221 group: config.group,
2222 key: config.key,
2223 value: [
2224 %{"tuple" => [":key3", 3]},
2225 %{
2226 "tuple" => [
2227 ":key2",
2228 [
2229 %{"tuple" => [":k2", 1]},
2230 %{"tuple" => [":k3", 3]}
2231 ]
2232 ]
2233 }
2234 ]
2235 }
2236 ]
2237 })
2238
2239 assert json_response(conn, 200) == %{
2240 "configs" => [
2241 %{
2242 "group" => ":pleroma",
2243 "key" => ":key1",
2244 "value" => [
2245 %{"tuple" => [":key1", 1]},
2246 %{"tuple" => [":key3", 3]},
2247 %{
2248 "tuple" => [
2249 ":key2",
2250 [
2251 %{"tuple" => [":k1", 1]},
2252 %{"tuple" => [":k2", 1]},
2253 %{"tuple" => [":k3", 3]}
2254 ]
2255 ]
2256 }
2257 ],
2258 "db" => [":key1", ":key3", ":key2"]
2259 }
2260 ]
2261 }
2262 end
2263
2264 test "saving special atoms", %{conn: conn} do
2265 conn =
2266 post(conn, "/api/pleroma/admin/config", %{
2267 "configs" => [
2268 %{
2269 "group" => ":pleroma",
2270 "key" => ":key1",
2271 "value" => [
2272 %{
2273 "tuple" => [
2274 ":ssl_options",
2275 [%{"tuple" => [":versions", [":tlsv1", ":tlsv1.1", ":tlsv1.2"]]}]
2276 ]
2277 }
2278 ]
2279 }
2280 ]
2281 })
2282
2283 assert json_response(conn, 200) == %{
2284 "configs" => [
2285 %{
2286 "group" => ":pleroma",
2287 "key" => ":key1",
2288 "value" => [
2289 %{
2290 "tuple" => [
2291 ":ssl_options",
2292 [%{"tuple" => [":versions", [":tlsv1", ":tlsv1.1", ":tlsv1.2"]]}]
2293 ]
2294 }
2295 ],
2296 "db" => [":ssl_options"]
2297 }
2298 ]
2299 }
2300
2301 assert Application.get_env(:pleroma, :key1) == [
2302 ssl_options: [versions: [:tlsv1, :"tlsv1.1", :"tlsv1.2"]]
2303 ]
2304 end
2305
2306 test "saving full setting if value is in full_key_update list", %{conn: conn} do
2307 backends = Application.get_env(:logger, :backends)
2308 on_exit(fn -> Application.put_env(:logger, :backends, backends) end)
2309
2310 config =
2311 insert(:config,
2312 group: ":logger",
2313 key: ":backends",
2314 value: :erlang.term_to_binary([])
2315 )
2316
2317 conn =
2318 post(conn, "/api/pleroma/admin/config", %{
2319 configs: [
2320 %{
2321 group: config.group,
2322 key: config.key,
2323 value: [":console", %{"tuple" => ["ExSyslogger", ":ex_syslogger"]}]
2324 }
2325 ]
2326 })
2327
2328 assert json_response(conn, 200) == %{
2329 "configs" => [
2330 %{
2331 "group" => ":logger",
2332 "key" => ":backends",
2333 "value" => [
2334 ":console",
2335 %{"tuple" => ["ExSyslogger", ":ex_syslogger"]}
2336 ],
2337 "db" => [":backends"]
2338 }
2339 ]
2340 }
2341
2342 assert Application.get_env(:logger, :backends) == [
2343 :console,
2344 {ExSyslogger, :ex_syslogger}
2345 ]
2346
2347 ExUnit.CaptureLog.capture_log(fn ->
2348 require Logger
2349 Logger.warn("Ooops...")
2350 end) =~ "Ooops..."
2351 end
2352
2353 test "saving full setting if value is not keyword", %{conn: conn} do
2354 config =
2355 insert(:config,
2356 group: ":tesla",
2357 key: ":adapter",
2358 value: :erlang.term_to_binary(Tesla.Adapter.Hackey)
2359 )
2360
2361 conn =
2362 post(conn, "/api/pleroma/admin/config", %{
2363 configs: [
2364 %{group: config.group, key: config.key, value: "Tesla.Adapter.Httpc"}
2365 ]
2366 })
2367
2368 assert json_response(conn, 200) == %{
2369 "configs" => [
2370 %{
2371 "group" => ":tesla",
2372 "key" => ":adapter",
2373 "value" => "Tesla.Adapter.Httpc",
2374 "db" => [":adapter"]
2375 }
2376 ]
2377 }
2378 end
2379
2380 test "update config setting & delete", %{conn: conn} do
2381 config1 = insert(:config, key: ":keyaa1")
2382 config2 = insert(:config, key: ":keyaa2")
2383
2384 insert(:config,
2385 group: "ueberauth",
2386 key: "Ueberauth.Strategy.Microsoft.OAuth"
2387 )
2388
2389 conn =
2390 post(conn, "/api/pleroma/admin/config", %{
2391 configs: [
2392 %{group: config1.group, key: config1.key, value: "another_value"},
2393 %{group: config2.group, key: config2.key, delete: true},
2394 %{
2395 group: "ueberauth",
2396 key: "Ueberauth.Strategy.Microsoft.OAuth",
2397 delete: true
2398 }
2399 ]
2400 })
2401
2402 assert json_response(conn, 200) == %{
2403 "configs" => [
2404 %{
2405 "group" => ":pleroma",
2406 "key" => config1.key,
2407 "value" => "another_value",
2408 "db" => [":keyaa1"]
2409 }
2410 ]
2411 }
2412
2413 assert Application.get_env(:pleroma, :keyaa1) == "another_value"
2414 refute Application.get_env(:pleroma, :keyaa2)
2415 end
2416
2417 test "common config example", %{conn: conn} do
2418 adapter = Application.get_env(:tesla, :adapter)
2419 on_exit(fn -> Application.put_env(:tesla, :adapter, adapter) end)
2420
2421 conn =
2422 post(conn, "/api/pleroma/admin/config", %{
2423 configs: [
2424 %{
2425 "group" => ":pleroma",
2426 "key" => "Pleroma.Captcha.NotReal",
2427 "value" => [
2428 %{"tuple" => [":enabled", false]},
2429 %{"tuple" => [":method", "Pleroma.Captcha.Kocaptcha"]},
2430 %{"tuple" => [":seconds_valid", 60]},
2431 %{"tuple" => [":path", ""]},
2432 %{"tuple" => [":key1", nil]},
2433 %{"tuple" => [":partial_chain", "&:hackney_connect.partial_chain/1"]},
2434 %{"tuple" => [":regex1", "~r/https:\/\/example.com/"]},
2435 %{"tuple" => [":regex2", "~r/https:\/\/example.com/u"]},
2436 %{"tuple" => [":regex3", "~r/https:\/\/example.com/i"]},
2437 %{"tuple" => [":regex4", "~r/https:\/\/example.com/s"]},
2438 %{"tuple" => [":name", "Pleroma"]}
2439 ]
2440 },
2441 %{
2442 "group" => ":tesla",
2443 "key" => ":adapter",
2444 "value" => "Tesla.Adapter.Httpc"
2445 }
2446 ]
2447 })
2448
2449 assert Application.get_env(:tesla, :adapter) == Tesla.Adapter.Httpc
2450 assert Pleroma.Config.get([Pleroma.Captcha.NotReal, :name]) == "Pleroma"
2451
2452 assert json_response(conn, 200) == %{
2453 "configs" => [
2454 %{
2455 "group" => ":pleroma",
2456 "key" => "Pleroma.Captcha.NotReal",
2457 "value" => [
2458 %{"tuple" => [":enabled", false]},
2459 %{"tuple" => [":method", "Pleroma.Captcha.Kocaptcha"]},
2460 %{"tuple" => [":seconds_valid", 60]},
2461 %{"tuple" => [":path", ""]},
2462 %{"tuple" => [":key1", nil]},
2463 %{"tuple" => [":partial_chain", "&:hackney_connect.partial_chain/1"]},
2464 %{"tuple" => [":regex1", "~r/https:\\/\\/example.com/"]},
2465 %{"tuple" => [":regex2", "~r/https:\\/\\/example.com/u"]},
2466 %{"tuple" => [":regex3", "~r/https:\\/\\/example.com/i"]},
2467 %{"tuple" => [":regex4", "~r/https:\\/\\/example.com/s"]},
2468 %{"tuple" => [":name", "Pleroma"]}
2469 ],
2470 "db" => [
2471 ":enabled",
2472 ":method",
2473 ":seconds_valid",
2474 ":path",
2475 ":key1",
2476 ":partial_chain",
2477 ":regex1",
2478 ":regex2",
2479 ":regex3",
2480 ":regex4",
2481 ":name"
2482 ]
2483 },
2484 %{
2485 "group" => ":tesla",
2486 "key" => ":adapter",
2487 "value" => "Tesla.Adapter.Httpc",
2488 "db" => [":adapter"]
2489 }
2490 ]
2491 }
2492 end
2493
2494 test "tuples with more than two values", %{conn: conn} do
2495 conn =
2496 post(conn, "/api/pleroma/admin/config", %{
2497 configs: [
2498 %{
2499 "group" => ":pleroma",
2500 "key" => "Pleroma.Web.Endpoint.NotReal",
2501 "value" => [
2502 %{
2503 "tuple" => [
2504 ":http",
2505 [
2506 %{
2507 "tuple" => [
2508 ":key2",
2509 [
2510 %{
2511 "tuple" => [
2512 ":_",
2513 [
2514 %{
2515 "tuple" => [
2516 "/api/v1/streaming",
2517 "Pleroma.Web.MastodonAPI.WebsocketHandler",
2518 []
2519 ]
2520 },
2521 %{
2522 "tuple" => [
2523 "/websocket",
2524 "Phoenix.Endpoint.CowboyWebSocket",
2525 %{
2526 "tuple" => [
2527 "Phoenix.Transports.WebSocket",
2528 %{
2529 "tuple" => [
2530 "Pleroma.Web.Endpoint",
2531 "Pleroma.Web.UserSocket",
2532 []
2533 ]
2534 }
2535 ]
2536 }
2537 ]
2538 },
2539 %{
2540 "tuple" => [
2541 ":_",
2542 "Phoenix.Endpoint.Cowboy2Handler",
2543 %{"tuple" => ["Pleroma.Web.Endpoint", []]}
2544 ]
2545 }
2546 ]
2547 ]
2548 }
2549 ]
2550 ]
2551 }
2552 ]
2553 ]
2554 }
2555 ]
2556 }
2557 ]
2558 })
2559
2560 assert json_response(conn, 200) == %{
2561 "configs" => [
2562 %{
2563 "group" => ":pleroma",
2564 "key" => "Pleroma.Web.Endpoint.NotReal",
2565 "value" => [
2566 %{
2567 "tuple" => [
2568 ":http",
2569 [
2570 %{
2571 "tuple" => [
2572 ":key2",
2573 [
2574 %{
2575 "tuple" => [
2576 ":_",
2577 [
2578 %{
2579 "tuple" => [
2580 "/api/v1/streaming",
2581 "Pleroma.Web.MastodonAPI.WebsocketHandler",
2582 []
2583 ]
2584 },
2585 %{
2586 "tuple" => [
2587 "/websocket",
2588 "Phoenix.Endpoint.CowboyWebSocket",
2589 %{
2590 "tuple" => [
2591 "Phoenix.Transports.WebSocket",
2592 %{
2593 "tuple" => [
2594 "Pleroma.Web.Endpoint",
2595 "Pleroma.Web.UserSocket",
2596 []
2597 ]
2598 }
2599 ]
2600 }
2601 ]
2602 },
2603 %{
2604 "tuple" => [
2605 ":_",
2606 "Phoenix.Endpoint.Cowboy2Handler",
2607 %{"tuple" => ["Pleroma.Web.Endpoint", []]}
2608 ]
2609 }
2610 ]
2611 ]
2612 }
2613 ]
2614 ]
2615 }
2616 ]
2617 ]
2618 }
2619 ],
2620 "db" => [":http"]
2621 }
2622 ]
2623 }
2624 end
2625
2626 test "settings with nesting map", %{conn: conn} do
2627 conn =
2628 post(conn, "/api/pleroma/admin/config", %{
2629 configs: [
2630 %{
2631 "group" => ":pleroma",
2632 "key" => ":key1",
2633 "value" => [
2634 %{"tuple" => [":key2", "some_val"]},
2635 %{
2636 "tuple" => [
2637 ":key3",
2638 %{
2639 ":max_options" => 20,
2640 ":max_option_chars" => 200,
2641 ":min_expiration" => 0,
2642 ":max_expiration" => 31_536_000,
2643 "nested" => %{
2644 ":max_options" => 20,
2645 ":max_option_chars" => 200,
2646 ":min_expiration" => 0,
2647 ":max_expiration" => 31_536_000
2648 }
2649 }
2650 ]
2651 }
2652 ]
2653 }
2654 ]
2655 })
2656
2657 assert json_response(conn, 200) ==
2658 %{
2659 "configs" => [
2660 %{
2661 "group" => ":pleroma",
2662 "key" => ":key1",
2663 "value" => [
2664 %{"tuple" => [":key2", "some_val"]},
2665 %{
2666 "tuple" => [
2667 ":key3",
2668 %{
2669 ":max_expiration" => 31_536_000,
2670 ":max_option_chars" => 200,
2671 ":max_options" => 20,
2672 ":min_expiration" => 0,
2673 "nested" => %{
2674 ":max_expiration" => 31_536_000,
2675 ":max_option_chars" => 200,
2676 ":max_options" => 20,
2677 ":min_expiration" => 0
2678 }
2679 }
2680 ]
2681 }
2682 ],
2683 "db" => [":key2", ":key3"]
2684 }
2685 ]
2686 }
2687 end
2688
2689 test "value as map", %{conn: conn} do
2690 conn =
2691 post(conn, "/api/pleroma/admin/config", %{
2692 configs: [
2693 %{
2694 "group" => ":pleroma",
2695 "key" => ":key1",
2696 "value" => %{"key" => "some_val"}
2697 }
2698 ]
2699 })
2700
2701 assert json_response(conn, 200) ==
2702 %{
2703 "configs" => [
2704 %{
2705 "group" => ":pleroma",
2706 "key" => ":key1",
2707 "value" => %{"key" => "some_val"},
2708 "db" => [":key1"]
2709 }
2710 ]
2711 }
2712 end
2713
2714 test "queues key as atom", %{conn: conn} do
2715 conn =
2716 post(conn, "/api/pleroma/admin/config", %{
2717 configs: [
2718 %{
2719 "group" => ":oban",
2720 "key" => ":queues",
2721 "value" => [
2722 %{"tuple" => [":federator_incoming", 50]},
2723 %{"tuple" => [":federator_outgoing", 50]},
2724 %{"tuple" => [":web_push", 50]},
2725 %{"tuple" => [":mailer", 10]},
2726 %{"tuple" => [":transmogrifier", 20]},
2727 %{"tuple" => [":scheduled_activities", 10]},
2728 %{"tuple" => [":background", 5]}
2729 ]
2730 }
2731 ]
2732 })
2733
2734 assert json_response(conn, 200) == %{
2735 "configs" => [
2736 %{
2737 "group" => ":oban",
2738 "key" => ":queues",
2739 "value" => [
2740 %{"tuple" => [":federator_incoming", 50]},
2741 %{"tuple" => [":federator_outgoing", 50]},
2742 %{"tuple" => [":web_push", 50]},
2743 %{"tuple" => [":mailer", 10]},
2744 %{"tuple" => [":transmogrifier", 20]},
2745 %{"tuple" => [":scheduled_activities", 10]},
2746 %{"tuple" => [":background", 5]}
2747 ],
2748 "db" => [
2749 ":federator_incoming",
2750 ":federator_outgoing",
2751 ":web_push",
2752 ":mailer",
2753 ":transmogrifier",
2754 ":scheduled_activities",
2755 ":background"
2756 ]
2757 }
2758 ]
2759 }
2760 end
2761
2762 test "delete part of settings by atom subkeys", %{conn: conn} do
2763 config =
2764 insert(:config,
2765 key: ":keyaa1",
2766 value: :erlang.term_to_binary(subkey1: "val1", subkey2: "val2", subkey3: "val3")
2767 )
2768
2769 conn =
2770 post(conn, "/api/pleroma/admin/config", %{
2771 configs: [
2772 %{
2773 group: config.group,
2774 key: config.key,
2775 subkeys: [":subkey1", ":subkey3"],
2776 delete: true
2777 }
2778 ]
2779 })
2780
2781 assert json_response(conn, 200) == %{
2782 "configs" => [
2783 %{
2784 "group" => ":pleroma",
2785 "key" => ":keyaa1",
2786 "value" => [%{"tuple" => [":subkey2", "val2"]}],
2787 "db" => [":subkey2"]
2788 }
2789 ]
2790 }
2791 end
2792
2793 test "proxy tuple localhost", %{conn: conn} do
2794 conn =
2795 post(conn, "/api/pleroma/admin/config", %{
2796 configs: [
2797 %{
2798 group: ":pleroma",
2799 key: ":http",
2800 value: [
2801 %{"tuple" => [":proxy_url", %{"tuple" => [":socks5", "localhost", 1234]}]},
2802 %{"tuple" => [":send_user_agent", false]}
2803 ]
2804 }
2805 ]
2806 })
2807
2808 assert json_response(conn, 200) == %{
2809 "configs" => [
2810 %{
2811 "group" => ":pleroma",
2812 "key" => ":http",
2813 "value" => [
2814 %{"tuple" => [":proxy_url", %{"tuple" => [":socks5", "localhost", 1234]}]},
2815 %{"tuple" => [":send_user_agent", false]}
2816 ],
2817 "db" => [":proxy_url", ":send_user_agent"]
2818 }
2819 ]
2820 }
2821 end
2822
2823 test "proxy tuple domain", %{conn: conn} do
2824 conn =
2825 post(conn, "/api/pleroma/admin/config", %{
2826 configs: [
2827 %{
2828 group: ":pleroma",
2829 key: ":http",
2830 value: [
2831 %{"tuple" => [":proxy_url", %{"tuple" => [":socks5", "domain.com", 1234]}]},
2832 %{"tuple" => [":send_user_agent", false]}
2833 ]
2834 }
2835 ]
2836 })
2837
2838 assert json_response(conn, 200) == %{
2839 "configs" => [
2840 %{
2841 "group" => ":pleroma",
2842 "key" => ":http",
2843 "value" => [
2844 %{"tuple" => [":proxy_url", %{"tuple" => [":socks5", "domain.com", 1234]}]},
2845 %{"tuple" => [":send_user_agent", false]}
2846 ],
2847 "db" => [":proxy_url", ":send_user_agent"]
2848 }
2849 ]
2850 }
2851 end
2852
2853 test "proxy tuple ip", %{conn: conn} do
2854 conn =
2855 post(conn, "/api/pleroma/admin/config", %{
2856 configs: [
2857 %{
2858 group: ":pleroma",
2859 key: ":http",
2860 value: [
2861 %{"tuple" => [":proxy_url", %{"tuple" => [":socks5", "127.0.0.1", 1234]}]},
2862 %{"tuple" => [":send_user_agent", false]}
2863 ]
2864 }
2865 ]
2866 })
2867
2868 assert json_response(conn, 200) == %{
2869 "configs" => [
2870 %{
2871 "group" => ":pleroma",
2872 "key" => ":http",
2873 "value" => [
2874 %{"tuple" => [":proxy_url", %{"tuple" => [":socks5", "127.0.0.1", 1234]}]},
2875 %{"tuple" => [":send_user_agent", false]}
2876 ],
2877 "db" => [":proxy_url", ":send_user_agent"]
2878 }
2879 ]
2880 }
2881 end
2882 end
2883
2884 describe "config mix tasks run" do
2885 setup do
2886 Mix.shell(Mix.Shell.Quiet)
2887
2888 on_exit(fn ->
2889 Mix.shell(Mix.Shell.IO)
2890 end)
2891
2892 :ok
2893 end
2894
2895 clear_config(:configurable_from_database) do
2896 Pleroma.Config.put(:configurable_from_database, true)
2897 end
2898
2899 clear_config([:feed, :post_title]) do
2900 Pleroma.Config.put([:feed, :post_title], %{max_length: 100, omission: "…"})
2901 end
2902
2903 test "transfer settings to DB and to file", %{conn: conn} do
2904 assert Repo.all(Pleroma.ConfigDB) == []
2905 Mix.Tasks.Pleroma.Config.migrate_to_db("test/fixtures/config/temp.secret.exs")
2906 assert Repo.aggregate(Pleroma.ConfigDB, :count, :id) > 0
2907
2908 conn = get(conn, "/api/pleroma/admin/config/migrate_from_db")
2909
2910 assert json_response(conn, 200) == %{}
2911 assert Repo.all(Pleroma.ConfigDB) == []
2912 end
2913
2914 test "returns error if configuration from database is off", %{conn: conn} do
2915 initial = Pleroma.Config.get(:configurable_from_database)
2916 on_exit(fn -> Pleroma.Config.put(:configurable_from_database, initial) end)
2917 Pleroma.Config.put(:configurable_from_database, false)
2918
2919 conn = get(conn, "/api/pleroma/admin/config/migrate_from_db")
2920
2921 assert json_response(conn, 400) ==
2922 "To use this endpoint you need to enable configuration from database."
2923
2924 assert Repo.all(Pleroma.ConfigDB) == []
2925 end
2926 end
2927
2928 describe "GET /api/pleroma/admin/users/:nickname/statuses" do
2929 setup do
2930 user = insert(:user)
2931
2932 date1 = (DateTime.to_unix(DateTime.utc_now()) + 2000) |> DateTime.from_unix!()
2933 date2 = (DateTime.to_unix(DateTime.utc_now()) + 1000) |> DateTime.from_unix!()
2934 date3 = (DateTime.to_unix(DateTime.utc_now()) + 3000) |> DateTime.from_unix!()
2935
2936 insert(:note_activity, user: user, published: date1)
2937 insert(:note_activity, user: user, published: date2)
2938 insert(:note_activity, user: user, published: date3)
2939
2940 %{user: user}
2941 end
2942
2943 test "renders user's statuses", %{conn: conn, user: user} do
2944 conn = get(conn, "/api/pleroma/admin/users/#{user.nickname}/statuses")
2945
2946 assert json_response(conn, 200) |> length() == 3
2947 end
2948
2949 test "renders user's statuses with a limit", %{conn: conn, user: user} do
2950 conn = get(conn, "/api/pleroma/admin/users/#{user.nickname}/statuses?page_size=2")
2951
2952 assert json_response(conn, 200) |> length() == 2
2953 end
2954
2955 test "doesn't return private statuses by default", %{conn: conn, user: user} do
2956 {:ok, _private_status} =
2957 CommonAPI.post(user, %{"status" => "private", "visibility" => "private"})
2958
2959 {:ok, _public_status} =
2960 CommonAPI.post(user, %{"status" => "public", "visibility" => "public"})
2961
2962 conn = get(conn, "/api/pleroma/admin/users/#{user.nickname}/statuses")
2963
2964 assert json_response(conn, 200) |> length() == 4
2965 end
2966
2967 test "returns private statuses with godmode on", %{conn: conn, user: user} do
2968 {:ok, _private_status} =
2969 CommonAPI.post(user, %{"status" => "private", "visibility" => "private"})
2970
2971 {:ok, _public_status} =
2972 CommonAPI.post(user, %{"status" => "public", "visibility" => "public"})
2973
2974 conn = get(conn, "/api/pleroma/admin/users/#{user.nickname}/statuses?godmode=true")
2975
2976 assert json_response(conn, 200) |> length() == 5
2977 end
2978 end
2979
2980 describe "GET /api/pleroma/admin/moderation_log" do
2981 setup do
2982 moderator = insert(:user, is_moderator: true)
2983
2984 %{moderator: moderator}
2985 end
2986
2987 test "returns the log", %{conn: conn, admin: admin} do
2988 Repo.insert(%ModerationLog{
2989 data: %{
2990 actor: %{
2991 "id" => admin.id,
2992 "nickname" => admin.nickname,
2993 "type" => "user"
2994 },
2995 action: "relay_follow",
2996 target: "https://example.org/relay"
2997 },
2998 inserted_at: NaiveDateTime.truncate(~N[2017-08-15 15:47:06.597036], :second)
2999 })
3000
3001 Repo.insert(%ModerationLog{
3002 data: %{
3003 actor: %{
3004 "id" => admin.id,
3005 "nickname" => admin.nickname,
3006 "type" => "user"
3007 },
3008 action: "relay_unfollow",
3009 target: "https://example.org/relay"
3010 },
3011 inserted_at: NaiveDateTime.truncate(~N[2017-08-16 15:47:06.597036], :second)
3012 })
3013
3014 conn = get(conn, "/api/pleroma/admin/moderation_log")
3015
3016 response = json_response(conn, 200)
3017 [first_entry, second_entry] = response["items"]
3018
3019 assert response["total"] == 2
3020 assert first_entry["data"]["action"] == "relay_unfollow"
3021
3022 assert first_entry["message"] ==
3023 "@#{admin.nickname} unfollowed relay: https://example.org/relay"
3024
3025 assert second_entry["data"]["action"] == "relay_follow"
3026
3027 assert second_entry["message"] ==
3028 "@#{admin.nickname} followed relay: https://example.org/relay"
3029 end
3030
3031 test "returns the log with pagination", %{conn: conn, admin: admin} do
3032 Repo.insert(%ModerationLog{
3033 data: %{
3034 actor: %{
3035 "id" => admin.id,
3036 "nickname" => admin.nickname,
3037 "type" => "user"
3038 },
3039 action: "relay_follow",
3040 target: "https://example.org/relay"
3041 },
3042 inserted_at: NaiveDateTime.truncate(~N[2017-08-15 15:47:06.597036], :second)
3043 })
3044
3045 Repo.insert(%ModerationLog{
3046 data: %{
3047 actor: %{
3048 "id" => admin.id,
3049 "nickname" => admin.nickname,
3050 "type" => "user"
3051 },
3052 action: "relay_unfollow",
3053 target: "https://example.org/relay"
3054 },
3055 inserted_at: NaiveDateTime.truncate(~N[2017-08-16 15:47:06.597036], :second)
3056 })
3057
3058 conn1 = get(conn, "/api/pleroma/admin/moderation_log?page_size=1&page=1")
3059
3060 response1 = json_response(conn1, 200)
3061 [first_entry] = response1["items"]
3062
3063 assert response1["total"] == 2
3064 assert response1["items"] |> length() == 1
3065 assert first_entry["data"]["action"] == "relay_unfollow"
3066
3067 assert first_entry["message"] ==
3068 "@#{admin.nickname} unfollowed relay: https://example.org/relay"
3069
3070 conn2 = get(conn, "/api/pleroma/admin/moderation_log?page_size=1&page=2")
3071
3072 response2 = json_response(conn2, 200)
3073 [second_entry] = response2["items"]
3074
3075 assert response2["total"] == 2
3076 assert response2["items"] |> length() == 1
3077 assert second_entry["data"]["action"] == "relay_follow"
3078
3079 assert second_entry["message"] ==
3080 "@#{admin.nickname} followed relay: https://example.org/relay"
3081 end
3082
3083 test "filters log by date", %{conn: conn, admin: admin} do
3084 first_date = "2017-08-15T15:47:06Z"
3085 second_date = "2017-08-20T15:47:06Z"
3086
3087 Repo.insert(%ModerationLog{
3088 data: %{
3089 actor: %{
3090 "id" => admin.id,
3091 "nickname" => admin.nickname,
3092 "type" => "user"
3093 },
3094 action: "relay_follow",
3095 target: "https://example.org/relay"
3096 },
3097 inserted_at: NaiveDateTime.from_iso8601!(first_date)
3098 })
3099
3100 Repo.insert(%ModerationLog{
3101 data: %{
3102 actor: %{
3103 "id" => admin.id,
3104 "nickname" => admin.nickname,
3105 "type" => "user"
3106 },
3107 action: "relay_unfollow",
3108 target: "https://example.org/relay"
3109 },
3110 inserted_at: NaiveDateTime.from_iso8601!(second_date)
3111 })
3112
3113 conn1 =
3114 get(
3115 conn,
3116 "/api/pleroma/admin/moderation_log?start_date=#{second_date}"
3117 )
3118
3119 response1 = json_response(conn1, 200)
3120 [first_entry] = response1["items"]
3121
3122 assert response1["total"] == 1
3123 assert first_entry["data"]["action"] == "relay_unfollow"
3124
3125 assert first_entry["message"] ==
3126 "@#{admin.nickname} unfollowed relay: https://example.org/relay"
3127 end
3128
3129 test "returns log filtered by user", %{conn: conn, admin: admin, moderator: moderator} do
3130 Repo.insert(%ModerationLog{
3131 data: %{
3132 actor: %{
3133 "id" => admin.id,
3134 "nickname" => admin.nickname,
3135 "type" => "user"
3136 },
3137 action: "relay_follow",
3138 target: "https://example.org/relay"
3139 }
3140 })
3141
3142 Repo.insert(%ModerationLog{
3143 data: %{
3144 actor: %{
3145 "id" => moderator.id,
3146 "nickname" => moderator.nickname,
3147 "type" => "user"
3148 },
3149 action: "relay_unfollow",
3150 target: "https://example.org/relay"
3151 }
3152 })
3153
3154 conn1 = get(conn, "/api/pleroma/admin/moderation_log?user_id=#{moderator.id}")
3155
3156 response1 = json_response(conn1, 200)
3157 [first_entry] = response1["items"]
3158
3159 assert response1["total"] == 1
3160 assert get_in(first_entry, ["data", "actor", "id"]) == moderator.id
3161 end
3162
3163 test "returns log filtered by search", %{conn: conn, moderator: moderator} do
3164 ModerationLog.insert_log(%{
3165 actor: moderator,
3166 action: "relay_follow",
3167 target: "https://example.org/relay"
3168 })
3169
3170 ModerationLog.insert_log(%{
3171 actor: moderator,
3172 action: "relay_unfollow",
3173 target: "https://example.org/relay"
3174 })
3175
3176 conn1 = get(conn, "/api/pleroma/admin/moderation_log?search=unfo")
3177
3178 response1 = json_response(conn1, 200)
3179 [first_entry] = response1["items"]
3180
3181 assert response1["total"] == 1
3182
3183 assert get_in(first_entry, ["data", "message"]) ==
3184 "@#{moderator.nickname} unfollowed relay: https://example.org/relay"
3185 end
3186 end
3187
3188 describe "PATCH /users/:nickname/force_password_reset" do
3189 test "sets password_reset_pending to true", %{conn: conn} do
3190 user = insert(:user)
3191 assert user.password_reset_pending == false
3192
3193 conn =
3194 patch(conn, "/api/pleroma/admin/users/force_password_reset", %{nicknames: [user.nickname]})
3195
3196 assert json_response(conn, 204) == ""
3197
3198 ObanHelpers.perform_all()
3199
3200 assert User.get_by_id(user.id).password_reset_pending == true
3201 end
3202 end
3203
3204 describe "relays" do
3205 test "POST /relay", %{conn: conn, admin: admin} do
3206 conn =
3207 post(conn, "/api/pleroma/admin/relay", %{
3208 relay_url: "http://mastodon.example.org/users/admin"
3209 })
3210
3211 assert json_response(conn, 200) == "http://mastodon.example.org/users/admin"
3212
3213 log_entry = Repo.one(ModerationLog)
3214
3215 assert ModerationLog.get_log_entry_message(log_entry) ==
3216 "@#{admin.nickname} followed relay: http://mastodon.example.org/users/admin"
3217 end
3218
3219 test "GET /relay", %{conn: conn} do
3220 relay_user = Pleroma.Web.ActivityPub.Relay.get_actor()
3221
3222 ["http://mastodon.example.org/users/admin", "https://mstdn.io/users/mayuutann"]
3223 |> Enum.each(fn ap_id ->
3224 {:ok, user} = User.get_or_fetch_by_ap_id(ap_id)
3225 User.follow(relay_user, user)
3226 end)
3227
3228 conn = get(conn, "/api/pleroma/admin/relay")
3229
3230 assert json_response(conn, 200)["relays"] -- ["mastodon.example.org", "mstdn.io"] == []
3231 end
3232
3233 test "DELETE /relay", %{conn: conn, admin: admin} do
3234 post(conn, "/api/pleroma/admin/relay", %{
3235 relay_url: "http://mastodon.example.org/users/admin"
3236 })
3237
3238 conn =
3239 delete(conn, "/api/pleroma/admin/relay", %{
3240 relay_url: "http://mastodon.example.org/users/admin"
3241 })
3242
3243 assert json_response(conn, 200) == "http://mastodon.example.org/users/admin"
3244
3245 [log_entry_one, log_entry_two] = Repo.all(ModerationLog)
3246
3247 assert ModerationLog.get_log_entry_message(log_entry_one) ==
3248 "@#{admin.nickname} followed relay: http://mastodon.example.org/users/admin"
3249
3250 assert ModerationLog.get_log_entry_message(log_entry_two) ==
3251 "@#{admin.nickname} unfollowed relay: http://mastodon.example.org/users/admin"
3252 end
3253 end
3254
3255 describe "instances" do
3256 test "GET /instances/:instance/statuses", %{conn: conn} do
3257 user = insert(:user, local: false, nickname: "archaeme@archae.me")
3258 user2 = insert(:user, local: false, nickname: "test@test.com")
3259 insert_pair(:note_activity, user: user)
3260 insert(:note_activity, user: user2)
3261
3262 ret_conn = get(conn, "/api/pleroma/admin/instances/archae.me/statuses")
3263
3264 response = json_response(ret_conn, 200)
3265
3266 assert length(response) == 2
3267
3268 ret_conn = get(conn, "/api/pleroma/admin/instances/test.com/statuses")
3269
3270 response = json_response(ret_conn, 200)
3271
3272 assert length(response) == 1
3273
3274 ret_conn = get(conn, "/api/pleroma/admin/instances/nonexistent.com/statuses")
3275
3276 response = json_response(ret_conn, 200)
3277
3278 assert length(response) == 0
3279 end
3280 end
3281
3282 describe "PATCH /confirm_email" do
3283 test "it confirms emails of two users", %{conn: conn, admin: admin} do
3284 [first_user, second_user] = insert_pair(:user, confirmation_pending: true)
3285
3286 assert first_user.confirmation_pending == true
3287 assert second_user.confirmation_pending == true
3288
3289 ret_conn =
3290 patch(conn, "/api/pleroma/admin/users/confirm_email", %{
3291 nicknames: [
3292 first_user.nickname,
3293 second_user.nickname
3294 ]
3295 })
3296
3297 assert ret_conn.status == 200
3298
3299 assert first_user.confirmation_pending == true
3300 assert second_user.confirmation_pending == true
3301
3302 log_entry = Repo.one(ModerationLog)
3303
3304 assert ModerationLog.get_log_entry_message(log_entry) ==
3305 "@#{admin.nickname} confirmed email for users: @#{first_user.nickname}, @#{
3306 second_user.nickname
3307 }"
3308 end
3309 end
3310
3311 describe "PATCH /resend_confirmation_email" do
3312 test "it resend emails for two users", %{conn: conn, admin: admin} do
3313 [first_user, second_user] = insert_pair(:user, confirmation_pending: true)
3314
3315 ret_conn =
3316 patch(conn, "/api/pleroma/admin/users/resend_confirmation_email", %{
3317 nicknames: [
3318 first_user.nickname,
3319 second_user.nickname
3320 ]
3321 })
3322
3323 assert ret_conn.status == 200
3324
3325 log_entry = Repo.one(ModerationLog)
3326
3327 assert ModerationLog.get_log_entry_message(log_entry) ==
3328 "@#{admin.nickname} re-sent confirmation email for users: @#{first_user.nickname}, @#{
3329 second_user.nickname
3330 }"
3331 end
3332 end
3333
3334 describe "POST /reports/:id/notes" do
3335 setup %{conn: conn, admin: admin} do
3336 [reporter, target_user] = insert_pair(:user)
3337 activity = insert(:note_activity, user: target_user)
3338
3339 {:ok, %{id: report_id}} =
3340 CommonAPI.report(reporter, %{
3341 "account_id" => target_user.id,
3342 "comment" => "I feel offended",
3343 "status_ids" => [activity.id]
3344 })
3345
3346 post(conn, "/api/pleroma/admin/reports/#{report_id}/notes", %{
3347 content: "this is disgusting!"
3348 })
3349
3350 post(conn, "/api/pleroma/admin/reports/#{report_id}/notes", %{
3351 content: "this is disgusting2!"
3352 })
3353
3354 %{
3355 admin_id: admin.id,
3356 report_id: report_id
3357 }
3358 end
3359
3360 test "it creates report note", %{admin_id: admin_id, report_id: report_id} do
3361 [note, _] = Repo.all(ReportNote)
3362
3363 assert %{
3364 activity_id: ^report_id,
3365 content: "this is disgusting!",
3366 user_id: ^admin_id
3367 } = note
3368 end
3369
3370 test "it returns reports with notes", %{conn: conn, admin: admin} do
3371 conn = get(conn, "/api/pleroma/admin/reports")
3372
3373 response = json_response(conn, 200)
3374 notes = hd(response["reports"])["notes"]
3375 [note, _] = notes
3376
3377 assert note["user"]["nickname"] == admin.nickname
3378 assert note["content"] == "this is disgusting!"
3379 assert note["created_at"]
3380 assert response["total"] == 1
3381 end
3382
3383 test "it deletes the note", %{conn: conn, report_id: report_id} do
3384 assert ReportNote |> Repo.all() |> length() == 2
3385
3386 [note, _] = Repo.all(ReportNote)
3387
3388 delete(conn, "/api/pleroma/admin/reports/#{report_id}/notes/#{note.id}")
3389
3390 assert ReportNote |> Repo.all() |> length() == 1
3391 end
3392 end
3393
3394 test "GET /api/pleroma/admin/config/descriptions", %{conn: conn} do
3395 admin = insert(:user, is_admin: true)
3396
3397 conn =
3398 assign(conn, :user, admin)
3399 |> get("/api/pleroma/admin/config/descriptions")
3400
3401 assert [child | _others] = json_response(conn, 200)
3402
3403 assert child["children"]
3404 assert child["key"]
3405 assert String.starts_with?(child["group"], ":")
3406 assert child["description"]
3407 end
3408 end
3409
3410 # Needed for testing
3411 defmodule Pleroma.Web.Endpoint.NotReal do
3412 end
3413
3414 defmodule Pleroma.Captcha.NotReal do
3415 end
Fork of https://akkoma.dev/AkkomaGang/akkoma.git