projects / akkoma / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
releases support
[akkoma] / test / web / admin_api / admin_api_controller_test.exs
1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2019 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
4
5 defmodule Pleroma.Web.AdminAPI.AdminAPIControllerTest do
6 use Pleroma.Web.ConnCase
7 use Oban.Testing, repo: Pleroma.Repo
8
9 alias Pleroma.Activity
10 alias Pleroma.ConfigDB
11 alias Pleroma.HTML
12 alias Pleroma.ModerationLog
13 alias Pleroma.Repo
14 alias Pleroma.ReportNote
15 alias Pleroma.Tests.ObanHelpers
16 alias Pleroma.User
17 alias Pleroma.UserInviteToken
18 alias Pleroma.Web.ActivityPub.Relay
19 alias Pleroma.Web.CommonAPI
20 alias Pleroma.Web.MastodonAPI.StatusView
21 alias Pleroma.Web.MediaProxy
22 import Pleroma.Factory
23
24 setup_all do
25 Tesla.Mock.mock_global(fn env -> apply(HttpRequestMock, :request, [env]) end)
26
27 :ok
28 end
29
30 setup do
31 admin = insert(:user, is_admin: true)
32 token = insert(:oauth_admin_token, user: admin)
33
34 conn =
35 build_conn()
36 |> assign(:user, admin)
37 |> assign(:token, token)
38
39 {:ok, %{admin: admin, token: token, conn: conn}}
40 end
41
42 describe "with [:auth, :enforce_oauth_admin_scope_usage]," do
43 clear_config([:auth, :enforce_oauth_admin_scope_usage]) do
44 Pleroma.Config.put([:auth, :enforce_oauth_admin_scope_usage], true)
45 end
46
47 test "GET /api/pleroma/admin/users/:nickname requires admin:read:accounts or broader scope",
48 %{admin: admin} do
49 user = insert(:user)
50 url = "/api/pleroma/admin/users/#{user.nickname}"
51
52 good_token1 = insert(:oauth_token, user: admin, scopes: ["admin"])
53 good_token2 = insert(:oauth_token, user: admin, scopes: ["admin:read"])
54 good_token3 = insert(:oauth_token, user: admin, scopes: ["admin:read:accounts"])
55
56 bad_token1 = insert(:oauth_token, user: admin, scopes: ["read:accounts"])
57 bad_token2 = insert(:oauth_token, user: admin, scopes: ["admin:read:accounts:partial"])
58 bad_token3 = nil
59
60 for good_token <- [good_token1, good_token2, good_token3] do
61 conn =
62 build_conn()
63 |> assign(:user, admin)
64 |> assign(:token, good_token)
65 |> get(url)
66
67 assert json_response(conn, 200)
68 end
69
70 for good_token <- [good_token1, good_token2, good_token3] do
71 conn =
72 build_conn()
73 |> assign(:user, nil)
74 |> assign(:token, good_token)
75 |> get(url)
76
77 assert json_response(conn, :forbidden)
78 end
79
80 for bad_token <- [bad_token1, bad_token2, bad_token3] do
81 conn =
82 build_conn()
83 |> assign(:user, admin)
84 |> assign(:token, bad_token)
85 |> get(url)
86
87 assert json_response(conn, :forbidden)
88 end
89 end
90 end
91
92 describe "unless [:auth, :enforce_oauth_admin_scope_usage]," do
93 clear_config([:auth, :enforce_oauth_admin_scope_usage]) do
94 Pleroma.Config.put([:auth, :enforce_oauth_admin_scope_usage], false)
95 end
96
97 test "GET /api/pleroma/admin/users/:nickname requires " <>
98 "read:accounts or admin:read:accounts or broader scope",
99 %{admin: admin} do
100 user = insert(:user)
101 url = "/api/pleroma/admin/users/#{user.nickname}"
102
103 good_token1 = insert(:oauth_token, user: admin, scopes: ["admin"])
104 good_token2 = insert(:oauth_token, user: admin, scopes: ["admin:read"])
105 good_token3 = insert(:oauth_token, user: admin, scopes: ["admin:read:accounts"])
106 good_token4 = insert(:oauth_token, user: admin, scopes: ["read:accounts"])
107 good_token5 = insert(:oauth_token, user: admin, scopes: ["read"])
108
109 good_tokens = [good_token1, good_token2, good_token3, good_token4, good_token5]
110
111 bad_token1 = insert(:oauth_token, user: admin, scopes: ["read:accounts:partial"])
112 bad_token2 = insert(:oauth_token, user: admin, scopes: ["admin:read:accounts:partial"])
113 bad_token3 = nil
114
115 for good_token <- good_tokens do
116 conn =
117 build_conn()
118 |> assign(:user, admin)
119 |> assign(:token, good_token)
120 |> get(url)
121
122 assert json_response(conn, 200)
123 end
124
125 for good_token <- good_tokens do
126 conn =
127 build_conn()
128 |> assign(:user, nil)
129 |> assign(:token, good_token)
130 |> get(url)
131
132 assert json_response(conn, :forbidden)
133 end
134
135 for bad_token <- [bad_token1, bad_token2, bad_token3] do
136 conn =
137 build_conn()
138 |> assign(:user, admin)
139 |> assign(:token, bad_token)
140 |> get(url)
141
142 assert json_response(conn, :forbidden)
143 end
144 end
145 end
146
147 describe "DELETE /api/pleroma/admin/users" do
148 test "single user", %{admin: admin, conn: conn} do
149 user = insert(:user)
150
151 conn =
152 conn
153 |> put_req_header("accept", "application/json")
154 |> delete("/api/pleroma/admin/users?nickname=#{user.nickname}")
155
156 log_entry = Repo.one(ModerationLog)
157
158 assert ModerationLog.get_log_entry_message(log_entry) ==
159 "@#{admin.nickname} deleted users: @#{user.nickname}"
160
161 assert json_response(conn, 200) == user.nickname
162 end
163
164 test "multiple users", %{admin: admin, conn: conn} do
165 user_one = insert(:user)
166 user_two = insert(:user)
167
168 conn =
169 conn
170 |> put_req_header("accept", "application/json")
171 |> delete("/api/pleroma/admin/users", %{
172 nicknames: [user_one.nickname, user_two.nickname]
173 })
174
175 log_entry = Repo.one(ModerationLog)
176
177 assert ModerationLog.get_log_entry_message(log_entry) ==
178 "@#{admin.nickname} deleted users: @#{user_one.nickname}, @#{user_two.nickname}"
179
180 response = json_response(conn, 200)
181 assert response -- [user_one.nickname, user_two.nickname] == []
182 end
183 end
184
185 describe "/api/pleroma/admin/users" do
186 test "Create", %{conn: conn} do
187 conn =
188 conn
189 |> put_req_header("accept", "application/json")
190 |> post("/api/pleroma/admin/users", %{
191 "users" => [
192 %{
193 "nickname" => "lain",
194 "email" => "lain@example.org",
195 "password" => "test"
196 },
197 %{
198 "nickname" => "lain2",
199 "email" => "lain2@example.org",
200 "password" => "test"
201 }
202 ]
203 })
204
205 response = json_response(conn, 200) |> Enum.map(&Map.get(&1, "type"))
206 assert response == ["success", "success"]
207
208 log_entry = Repo.one(ModerationLog)
209
210 assert ["lain", "lain2"] -- Enum.map(log_entry.data["subjects"], & &1["nickname"]) == []
211 end
212
213 test "Cannot create user with existing email", %{conn: conn} do
214 user = insert(:user)
215
216 conn =
217 conn
218 |> put_req_header("accept", "application/json")
219 |> post("/api/pleroma/admin/users", %{
220 "users" => [
221 %{
222 "nickname" => "lain",
223 "email" => user.email,
224 "password" => "test"
225 }
226 ]
227 })
228
229 assert json_response(conn, 409) == [
230 %{
231 "code" => 409,
232 "data" => %{
233 "email" => user.email,
234 "nickname" => "lain"
235 },
236 "error" => "email has already been taken",
237 "type" => "error"
238 }
239 ]
240 end
241
242 test "Cannot create user with existing nickname", %{conn: conn} do
243 user = insert(:user)
244
245 conn =
246 conn
247 |> put_req_header("accept", "application/json")
248 |> post("/api/pleroma/admin/users", %{
249 "users" => [
250 %{
251 "nickname" => user.nickname,
252 "email" => "someuser@plerama.social",
253 "password" => "test"
254 }
255 ]
256 })
257
258 assert json_response(conn, 409) == [
259 %{
260 "code" => 409,
261 "data" => %{
262 "email" => "someuser@plerama.social",
263 "nickname" => user.nickname
264 },
265 "error" => "nickname has already been taken",
266 "type" => "error"
267 }
268 ]
269 end
270
271 test "Multiple user creation works in transaction", %{conn: conn} do
272 user = insert(:user)
273
274 conn =
275 conn
276 |> put_req_header("accept", "application/json")
277 |> post("/api/pleroma/admin/users", %{
278 "users" => [
279 %{
280 "nickname" => "newuser",
281 "email" => "newuser@pleroma.social",
282 "password" => "test"
283 },
284 %{
285 "nickname" => "lain",
286 "email" => user.email,
287 "password" => "test"
288 }
289 ]
290 })
291
292 assert json_response(conn, 409) == [
293 %{
294 "code" => 409,
295 "data" => %{
296 "email" => user.email,
297 "nickname" => "lain"
298 },
299 "error" => "email has already been taken",
300 "type" => "error"
301 },
302 %{
303 "code" => 409,
304 "data" => %{
305 "email" => "newuser@pleroma.social",
306 "nickname" => "newuser"
307 },
308 "error" => "",
309 "type" => "error"
310 }
311 ]
312
313 assert User.get_by_nickname("newuser") === nil
314 end
315 end
316
317 describe "/api/pleroma/admin/users/:nickname" do
318 test "Show", %{conn: conn} do
319 user = insert(:user)
320
321 conn = get(conn, "/api/pleroma/admin/users/#{user.nickname}")
322
323 expected = %{
324 "deactivated" => false,
325 "id" => to_string(user.id),
326 "local" => true,
327 "nickname" => user.nickname,
328 "roles" => %{"admin" => false, "moderator" => false},
329 "tags" => [],
330 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
331 "display_name" => HTML.strip_tags(user.name || user.nickname),
332 "confirmation_pending" => false
333 }
334
335 assert expected == json_response(conn, 200)
336 end
337
338 test "when the user doesn't exist", %{conn: conn} do
339 user = build(:user)
340
341 conn = get(conn, "/api/pleroma/admin/users/#{user.nickname}")
342
343 assert "Not found" == json_response(conn, 404)
344 end
345 end
346
347 describe "/api/pleroma/admin/users/follow" do
348 test "allows to force-follow another user", %{admin: admin, conn: conn} do
349 user = insert(:user)
350 follower = insert(:user)
351
352 conn
353 |> put_req_header("accept", "application/json")
354 |> post("/api/pleroma/admin/users/follow", %{
355 "follower" => follower.nickname,
356 "followed" => user.nickname
357 })
358
359 user = User.get_cached_by_id(user.id)
360 follower = User.get_cached_by_id(follower.id)
361
362 assert User.following?(follower, user)
363
364 log_entry = Repo.one(ModerationLog)
365
366 assert ModerationLog.get_log_entry_message(log_entry) ==
367 "@#{admin.nickname} made @#{follower.nickname} follow @#{user.nickname}"
368 end
369 end
370
371 describe "/api/pleroma/admin/users/unfollow" do
372 test "allows to force-unfollow another user", %{admin: admin, conn: conn} do
373 user = insert(:user)
374 follower = insert(:user)
375
376 User.follow(follower, user)
377
378 conn
379 |> put_req_header("accept", "application/json")
380 |> post("/api/pleroma/admin/users/unfollow", %{
381 "follower" => follower.nickname,
382 "followed" => user.nickname
383 })
384
385 user = User.get_cached_by_id(user.id)
386 follower = User.get_cached_by_id(follower.id)
387
388 refute User.following?(follower, user)
389
390 log_entry = Repo.one(ModerationLog)
391
392 assert ModerationLog.get_log_entry_message(log_entry) ==
393 "@#{admin.nickname} made @#{follower.nickname} unfollow @#{user.nickname}"
394 end
395 end
396
397 describe "PUT /api/pleroma/admin/users/tag" do
398 setup %{conn: conn} do
399 user1 = insert(:user, %{tags: ["x"]})
400 user2 = insert(:user, %{tags: ["y"]})
401 user3 = insert(:user, %{tags: ["unchanged"]})
402
403 conn =
404 conn
405 |> put_req_header("accept", "application/json")
406 |> put(
407 "/api/pleroma/admin/users/tag?nicknames[]=#{user1.nickname}&nicknames[]=" <>
408 "#{user2.nickname}&tags[]=foo&tags[]=bar"
409 )
410
411 %{conn: conn, user1: user1, user2: user2, user3: user3}
412 end
413
414 test "it appends specified tags to users with specified nicknames", %{
415 conn: conn,
416 admin: admin,
417 user1: user1,
418 user2: user2
419 } do
420 assert json_response(conn, :no_content)
421 assert User.get_cached_by_id(user1.id).tags == ["x", "foo", "bar"]
422 assert User.get_cached_by_id(user2.id).tags == ["y", "foo", "bar"]
423
424 log_entry = Repo.one(ModerationLog)
425
426 users =
427 [user1.nickname, user2.nickname]
428 |> Enum.map(&"@#{&1}")
429 |> Enum.join(", ")
430
431 tags = ["foo", "bar"] |> Enum.join(", ")
432
433 assert ModerationLog.get_log_entry_message(log_entry) ==
434 "@#{admin.nickname} added tags: #{tags} to users: #{users}"
435 end
436
437 test "it does not modify tags of not specified users", %{conn: conn, user3: user3} do
438 assert json_response(conn, :no_content)
439 assert User.get_cached_by_id(user3.id).tags == ["unchanged"]
440 end
441 end
442
443 describe "DELETE /api/pleroma/admin/users/tag" do
444 setup %{conn: conn} do
445 user1 = insert(:user, %{tags: ["x"]})
446 user2 = insert(:user, %{tags: ["y", "z"]})
447 user3 = insert(:user, %{tags: ["unchanged"]})
448
449 conn =
450 conn
451 |> put_req_header("accept", "application/json")
452 |> delete(
453 "/api/pleroma/admin/users/tag?nicknames[]=#{user1.nickname}&nicknames[]=" <>
454 "#{user2.nickname}&tags[]=x&tags[]=z"
455 )
456
457 %{conn: conn, user1: user1, user2: user2, user3: user3}
458 end
459
460 test "it removes specified tags from users with specified nicknames", %{
461 conn: conn,
462 admin: admin,
463 user1: user1,
464 user2: user2
465 } do
466 assert json_response(conn, :no_content)
467 assert User.get_cached_by_id(user1.id).tags == []
468 assert User.get_cached_by_id(user2.id).tags == ["y"]
469
470 log_entry = Repo.one(ModerationLog)
471
472 users =
473 [user1.nickname, user2.nickname]
474 |> Enum.map(&"@#{&1}")
475 |> Enum.join(", ")
476
477 tags = ["x", "z"] |> Enum.join(", ")
478
479 assert ModerationLog.get_log_entry_message(log_entry) ==
480 "@#{admin.nickname} removed tags: #{tags} from users: #{users}"
481 end
482
483 test "it does not modify tags of not specified users", %{conn: conn, user3: user3} do
484 assert json_response(conn, :no_content)
485 assert User.get_cached_by_id(user3.id).tags == ["unchanged"]
486 end
487 end
488
489 describe "/api/pleroma/admin/users/:nickname/permission_group" do
490 test "GET is giving user_info", %{admin: admin, conn: conn} do
491 conn =
492 conn
493 |> put_req_header("accept", "application/json")
494 |> get("/api/pleroma/admin/users/#{admin.nickname}/permission_group/")
495
496 assert json_response(conn, 200) == %{
497 "is_admin" => true,
498 "is_moderator" => false
499 }
500 end
501
502 test "/:right POST, can add to a permission group", %{admin: admin, conn: conn} do
503 user = insert(:user)
504
505 conn =
506 conn
507 |> put_req_header("accept", "application/json")
508 |> post("/api/pleroma/admin/users/#{user.nickname}/permission_group/admin")
509
510 assert json_response(conn, 200) == %{
511 "is_admin" => true
512 }
513
514 log_entry = Repo.one(ModerationLog)
515
516 assert ModerationLog.get_log_entry_message(log_entry) ==
517 "@#{admin.nickname} made @#{user.nickname} admin"
518 end
519
520 test "/:right POST, can add to a permission group (multiple)", %{admin: admin, conn: conn} do
521 user_one = insert(:user)
522 user_two = insert(:user)
523
524 conn =
525 conn
526 |> put_req_header("accept", "application/json")
527 |> post("/api/pleroma/admin/users/permission_group/admin", %{
528 nicknames: [user_one.nickname, user_two.nickname]
529 })
530
531 assert json_response(conn, 200) == %{"is_admin" => true}
532
533 log_entry = Repo.one(ModerationLog)
534
535 assert ModerationLog.get_log_entry_message(log_entry) ==
536 "@#{admin.nickname} made @#{user_one.nickname}, @#{user_two.nickname} admin"
537 end
538
539 test "/:right DELETE, can remove from a permission group", %{admin: admin, conn: conn} do
540 user = insert(:user, is_admin: true)
541
542 conn =
543 conn
544 |> put_req_header("accept", "application/json")
545 |> delete("/api/pleroma/admin/users/#{user.nickname}/permission_group/admin")
546
547 assert json_response(conn, 200) == %{"is_admin" => false}
548
549 log_entry = Repo.one(ModerationLog)
550
551 assert ModerationLog.get_log_entry_message(log_entry) ==
552 "@#{admin.nickname} revoked admin role from @#{user.nickname}"
553 end
554
555 test "/:right DELETE, can remove from a permission group (multiple)", %{
556 admin: admin,
557 conn: conn
558 } do
559 user_one = insert(:user, is_admin: true)
560 user_two = insert(:user, is_admin: true)
561
562 conn =
563 conn
564 |> put_req_header("accept", "application/json")
565 |> delete("/api/pleroma/admin/users/permission_group/admin", %{
566 nicknames: [user_one.nickname, user_two.nickname]
567 })
568
569 assert json_response(conn, 200) == %{"is_admin" => false}
570
571 log_entry = Repo.one(ModerationLog)
572
573 assert ModerationLog.get_log_entry_message(log_entry) ==
574 "@#{admin.nickname} revoked admin role from @#{user_one.nickname}, @#{
575 user_two.nickname
576 }"
577 end
578 end
579
580 describe "POST /api/pleroma/admin/email_invite, with valid config" do
581 clear_config([:instance, :registrations_open]) do
582 Pleroma.Config.put([:instance, :registrations_open], false)
583 end
584
585 clear_config([:instance, :invites_enabled]) do
586 Pleroma.Config.put([:instance, :invites_enabled], true)
587 end
588
589 test "sends invitation and returns 204", %{admin: admin, conn: conn} do
590 recipient_email = "foo@bar.com"
591 recipient_name = "J. D."
592
593 conn =
594 post(
595 conn,
596 "/api/pleroma/admin/users/email_invite?email=#{recipient_email}&name=#{recipient_name}"
597 )
598
599 assert json_response(conn, :no_content)
600
601 token_record = List.last(Repo.all(Pleroma.UserInviteToken))
602 assert token_record
603 refute token_record.used
604
605 notify_email = Pleroma.Config.get([:instance, :notify_email])
606 instance_name = Pleroma.Config.get([:instance, :name])
607
608 email =
609 Pleroma.Emails.UserEmail.user_invitation_email(
610 admin,
611 token_record,
612 recipient_email,
613 recipient_name
614 )
615
616 Swoosh.TestAssertions.assert_email_sent(
617 from: {instance_name, notify_email},
618 to: {recipient_name, recipient_email},
619 html_body: email.html_body
620 )
621 end
622
623 test "it returns 403 if requested by a non-admin" do
624 non_admin_user = insert(:user)
625 token = insert(:oauth_token, user: non_admin_user)
626
627 conn =
628 build_conn()
629 |> assign(:user, non_admin_user)
630 |> assign(:token, token)
631 |> post("/api/pleroma/admin/users/email_invite?email=foo@bar.com&name=JD")
632
633 assert json_response(conn, :forbidden)
634 end
635 end
636
637 describe "POST /api/pleroma/admin/users/email_invite, with invalid config" do
638 clear_config([:instance, :registrations_open])
639 clear_config([:instance, :invites_enabled])
640
641 test "it returns 500 if `invites_enabled` is not enabled", %{conn: conn} do
642 Pleroma.Config.put([:instance, :registrations_open], false)
643 Pleroma.Config.put([:instance, :invites_enabled], false)
644
645 conn = post(conn, "/api/pleroma/admin/users/email_invite?email=foo@bar.com&name=JD")
646
647 assert json_response(conn, :internal_server_error)
648 end
649
650 test "it returns 500 if `registrations_open` is enabled", %{conn: conn} do
651 Pleroma.Config.put([:instance, :registrations_open], true)
652 Pleroma.Config.put([:instance, :invites_enabled], true)
653
654 conn = post(conn, "/api/pleroma/admin/users/email_invite?email=foo@bar.com&name=JD")
655
656 assert json_response(conn, :internal_server_error)
657 end
658 end
659
660 test "/api/pleroma/admin/users/:nickname/password_reset", %{conn: conn} do
661 user = insert(:user)
662
663 conn =
664 conn
665 |> put_req_header("accept", "application/json")
666 |> get("/api/pleroma/admin/users/#{user.nickname}/password_reset")
667
668 resp = json_response(conn, 200)
669
670 assert Regex.match?(~r/(http:\/\/|https:\/\/)/, resp["link"])
671 end
672
673 describe "GET /api/pleroma/admin/users" do
674 test "renders users array for the first page", %{conn: conn, admin: admin} do
675 user = insert(:user, local: false, tags: ["foo", "bar"])
676 conn = get(conn, "/api/pleroma/admin/users?page=1")
677
678 users =
679 [
680 %{
681 "deactivated" => admin.deactivated,
682 "id" => admin.id,
683 "nickname" => admin.nickname,
684 "roles" => %{"admin" => true, "moderator" => false},
685 "local" => true,
686 "tags" => [],
687 "avatar" => User.avatar_url(admin) |> MediaProxy.url(),
688 "display_name" => HTML.strip_tags(admin.name || admin.nickname),
689 "confirmation_pending" => false
690 },
691 %{
692 "deactivated" => user.deactivated,
693 "id" => user.id,
694 "nickname" => user.nickname,
695 "roles" => %{"admin" => false, "moderator" => false},
696 "local" => false,
697 "tags" => ["foo", "bar"],
698 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
699 "display_name" => HTML.strip_tags(user.name || user.nickname),
700 "confirmation_pending" => false
701 }
702 ]
703 |> Enum.sort_by(& &1["nickname"])
704
705 assert json_response(conn, 200) == %{
706 "count" => 2,
707 "page_size" => 50,
708 "users" => users
709 }
710 end
711
712 test "renders empty array for the second page", %{conn: conn} do
713 insert(:user)
714
715 conn = get(conn, "/api/pleroma/admin/users?page=2")
716
717 assert json_response(conn, 200) == %{
718 "count" => 2,
719 "page_size" => 50,
720 "users" => []
721 }
722 end
723
724 test "regular search", %{conn: conn} do
725 user = insert(:user, nickname: "bob")
726
727 conn = get(conn, "/api/pleroma/admin/users?query=bo")
728
729 assert json_response(conn, 200) == %{
730 "count" => 1,
731 "page_size" => 50,
732 "users" => [
733 %{
734 "deactivated" => user.deactivated,
735 "id" => user.id,
736 "nickname" => user.nickname,
737 "roles" => %{"admin" => false, "moderator" => false},
738 "local" => true,
739 "tags" => [],
740 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
741 "display_name" => HTML.strip_tags(user.name || user.nickname),
742 "confirmation_pending" => false
743 }
744 ]
745 }
746 end
747
748 test "search by domain", %{conn: conn} do
749 user = insert(:user, nickname: "nickname@domain.com")
750 insert(:user)
751
752 conn = get(conn, "/api/pleroma/admin/users?query=domain.com")
753
754 assert json_response(conn, 200) == %{
755 "count" => 1,
756 "page_size" => 50,
757 "users" => [
758 %{
759 "deactivated" => user.deactivated,
760 "id" => user.id,
761 "nickname" => user.nickname,
762 "roles" => %{"admin" => false, "moderator" => false},
763 "local" => true,
764 "tags" => [],
765 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
766 "display_name" => HTML.strip_tags(user.name || user.nickname),
767 "confirmation_pending" => false
768 }
769 ]
770 }
771 end
772
773 test "search by full nickname", %{conn: conn} do
774 user = insert(:user, nickname: "nickname@domain.com")
775 insert(:user)
776
777 conn = get(conn, "/api/pleroma/admin/users?query=nickname@domain.com")
778
779 assert json_response(conn, 200) == %{
780 "count" => 1,
781 "page_size" => 50,
782 "users" => [
783 %{
784 "deactivated" => user.deactivated,
785 "id" => user.id,
786 "nickname" => user.nickname,
787 "roles" => %{"admin" => false, "moderator" => false},
788 "local" => true,
789 "tags" => [],
790 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
791 "display_name" => HTML.strip_tags(user.name || user.nickname),
792 "confirmation_pending" => false
793 }
794 ]
795 }
796 end
797
798 test "search by display name", %{conn: conn} do
799 user = insert(:user, name: "Display name")
800 insert(:user)
801
802 conn = get(conn, "/api/pleroma/admin/users?name=display")
803
804 assert json_response(conn, 200) == %{
805 "count" => 1,
806 "page_size" => 50,
807 "users" => [
808 %{
809 "deactivated" => user.deactivated,
810 "id" => user.id,
811 "nickname" => user.nickname,
812 "roles" => %{"admin" => false, "moderator" => false},
813 "local" => true,
814 "tags" => [],
815 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
816 "display_name" => HTML.strip_tags(user.name || user.nickname),
817 "confirmation_pending" => false
818 }
819 ]
820 }
821 end
822
823 test "search by email", %{conn: conn} do
824 user = insert(:user, email: "email@example.com")
825 insert(:user)
826
827 conn = get(conn, "/api/pleroma/admin/users?email=email@example.com")
828
829 assert json_response(conn, 200) == %{
830 "count" => 1,
831 "page_size" => 50,
832 "users" => [
833 %{
834 "deactivated" => user.deactivated,
835 "id" => user.id,
836 "nickname" => user.nickname,
837 "roles" => %{"admin" => false, "moderator" => false},
838 "local" => true,
839 "tags" => [],
840 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
841 "display_name" => HTML.strip_tags(user.name || user.nickname),
842 "confirmation_pending" => false
843 }
844 ]
845 }
846 end
847
848 test "regular search with page size", %{conn: conn} do
849 user = insert(:user, nickname: "aalice")
850 user2 = insert(:user, nickname: "alice")
851
852 conn1 = get(conn, "/api/pleroma/admin/users?query=a&page_size=1&page=1")
853
854 assert json_response(conn1, 200) == %{
855 "count" => 2,
856 "page_size" => 1,
857 "users" => [
858 %{
859 "deactivated" => user.deactivated,
860 "id" => user.id,
861 "nickname" => user.nickname,
862 "roles" => %{"admin" => false, "moderator" => false},
863 "local" => true,
864 "tags" => [],
865 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
866 "display_name" => HTML.strip_tags(user.name || user.nickname),
867 "confirmation_pending" => false
868 }
869 ]
870 }
871
872 conn2 = get(conn, "/api/pleroma/admin/users?query=a&page_size=1&page=2")
873
874 assert json_response(conn2, 200) == %{
875 "count" => 2,
876 "page_size" => 1,
877 "users" => [
878 %{
879 "deactivated" => user2.deactivated,
880 "id" => user2.id,
881 "nickname" => user2.nickname,
882 "roles" => %{"admin" => false, "moderator" => false},
883 "local" => true,
884 "tags" => [],
885 "avatar" => User.avatar_url(user2) |> MediaProxy.url(),
886 "display_name" => HTML.strip_tags(user2.name || user2.nickname),
887 "confirmation_pending" => false
888 }
889 ]
890 }
891 end
892
893 test "only local users" do
894 admin = insert(:user, is_admin: true, nickname: "john")
895 token = insert(:oauth_admin_token, user: admin)
896 user = insert(:user, nickname: "bob")
897
898 insert(:user, nickname: "bobb", local: false)
899
900 conn =
901 build_conn()
902 |> assign(:user, admin)
903 |> assign(:token, token)
904 |> get("/api/pleroma/admin/users?query=bo&filters=local")
905
906 assert json_response(conn, 200) == %{
907 "count" => 1,
908 "page_size" => 50,
909 "users" => [
910 %{
911 "deactivated" => user.deactivated,
912 "id" => user.id,
913 "nickname" => user.nickname,
914 "roles" => %{"admin" => false, "moderator" => false},
915 "local" => true,
916 "tags" => [],
917 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
918 "display_name" => HTML.strip_tags(user.name || user.nickname),
919 "confirmation_pending" => false
920 }
921 ]
922 }
923 end
924
925 test "only local users with no query", %{conn: conn, admin: old_admin} do
926 admin = insert(:user, is_admin: true, nickname: "john")
927 user = insert(:user, nickname: "bob")
928
929 insert(:user, nickname: "bobb", local: false)
930
931 conn = get(conn, "/api/pleroma/admin/users?filters=local")
932
933 users =
934 [
935 %{
936 "deactivated" => user.deactivated,
937 "id" => user.id,
938 "nickname" => user.nickname,
939 "roles" => %{"admin" => false, "moderator" => false},
940 "local" => true,
941 "tags" => [],
942 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
943 "display_name" => HTML.strip_tags(user.name || user.nickname),
944 "confirmation_pending" => false
945 },
946 %{
947 "deactivated" => admin.deactivated,
948 "id" => admin.id,
949 "nickname" => admin.nickname,
950 "roles" => %{"admin" => true, "moderator" => false},
951 "local" => true,
952 "tags" => [],
953 "avatar" => User.avatar_url(admin) |> MediaProxy.url(),
954 "display_name" => HTML.strip_tags(admin.name || admin.nickname),
955 "confirmation_pending" => false
956 },
957 %{
958 "deactivated" => false,
959 "id" => old_admin.id,
960 "local" => true,
961 "nickname" => old_admin.nickname,
962 "roles" => %{"admin" => true, "moderator" => false},
963 "tags" => [],
964 "avatar" => User.avatar_url(old_admin) |> MediaProxy.url(),
965 "display_name" => HTML.strip_tags(old_admin.name || old_admin.nickname),
966 "confirmation_pending" => false
967 }
968 ]
969 |> Enum.sort_by(& &1["nickname"])
970
971 assert json_response(conn, 200) == %{
972 "count" => 3,
973 "page_size" => 50,
974 "users" => users
975 }
976 end
977
978 test "load only admins", %{conn: conn, admin: admin} do
979 second_admin = insert(:user, is_admin: true)
980 insert(:user)
981 insert(:user)
982
983 conn = get(conn, "/api/pleroma/admin/users?filters=is_admin")
984
985 users =
986 [
987 %{
988 "deactivated" => false,
989 "id" => admin.id,
990 "nickname" => admin.nickname,
991 "roles" => %{"admin" => true, "moderator" => false},
992 "local" => admin.local,
993 "tags" => [],
994 "avatar" => User.avatar_url(admin) |> MediaProxy.url(),
995 "display_name" => HTML.strip_tags(admin.name || admin.nickname),
996 "confirmation_pending" => false
997 },
998 %{
999 "deactivated" => false,
1000 "id" => second_admin.id,
1001 "nickname" => second_admin.nickname,
1002 "roles" => %{"admin" => true, "moderator" => false},
1003 "local" => second_admin.local,
1004 "tags" => [],
1005 "avatar" => User.avatar_url(second_admin) |> MediaProxy.url(),
1006 "display_name" => HTML.strip_tags(second_admin.name || second_admin.nickname),
1007 "confirmation_pending" => false
1008 }
1009 ]
1010 |> Enum.sort_by(& &1["nickname"])
1011
1012 assert json_response(conn, 200) == %{
1013 "count" => 2,
1014 "page_size" => 50,
1015 "users" => users
1016 }
1017 end
1018
1019 test "load only moderators", %{conn: conn} do
1020 moderator = insert(:user, is_moderator: true)
1021 insert(:user)
1022 insert(:user)
1023
1024 conn = get(conn, "/api/pleroma/admin/users?filters=is_moderator")
1025
1026 assert json_response(conn, 200) == %{
1027 "count" => 1,
1028 "page_size" => 50,
1029 "users" => [
1030 %{
1031 "deactivated" => false,
1032 "id" => moderator.id,
1033 "nickname" => moderator.nickname,
1034 "roles" => %{"admin" => false, "moderator" => true},
1035 "local" => moderator.local,
1036 "tags" => [],
1037 "avatar" => User.avatar_url(moderator) |> MediaProxy.url(),
1038 "display_name" => HTML.strip_tags(moderator.name || moderator.nickname),
1039 "confirmation_pending" => false
1040 }
1041 ]
1042 }
1043 end
1044
1045 test "load users with tags list", %{conn: conn} do
1046 user1 = insert(:user, tags: ["first"])
1047 user2 = insert(:user, tags: ["second"])
1048 insert(:user)
1049 insert(:user)
1050
1051 conn = get(conn, "/api/pleroma/admin/users?tags[]=first&tags[]=second")
1052
1053 users =
1054 [
1055 %{
1056 "deactivated" => false,
1057 "id" => user1.id,
1058 "nickname" => user1.nickname,
1059 "roles" => %{"admin" => false, "moderator" => false},
1060 "local" => user1.local,
1061 "tags" => ["first"],
1062 "avatar" => User.avatar_url(user1) |> MediaProxy.url(),
1063 "display_name" => HTML.strip_tags(user1.name || user1.nickname),
1064 "confirmation_pending" => false
1065 },
1066 %{
1067 "deactivated" => false,
1068 "id" => user2.id,
1069 "nickname" => user2.nickname,
1070 "roles" => %{"admin" => false, "moderator" => false},
1071 "local" => user2.local,
1072 "tags" => ["second"],
1073 "avatar" => User.avatar_url(user2) |> MediaProxy.url(),
1074 "display_name" => HTML.strip_tags(user2.name || user2.nickname),
1075 "confirmation_pending" => false
1076 }
1077 ]
1078 |> Enum.sort_by(& &1["nickname"])
1079
1080 assert json_response(conn, 200) == %{
1081 "count" => 2,
1082 "page_size" => 50,
1083 "users" => users
1084 }
1085 end
1086
1087 test "it works with multiple filters" do
1088 admin = insert(:user, nickname: "john", is_admin: true)
1089 token = insert(:oauth_admin_token, user: admin)
1090 user = insert(:user, nickname: "bob", local: false, deactivated: true)
1091
1092 insert(:user, nickname: "ken", local: true, deactivated: true)
1093 insert(:user, nickname: "bobb", local: false, deactivated: false)
1094
1095 conn =
1096 build_conn()
1097 |> assign(:user, admin)
1098 |> assign(:token, token)
1099 |> get("/api/pleroma/admin/users?filters=deactivated,external")
1100
1101 assert json_response(conn, 200) == %{
1102 "count" => 1,
1103 "page_size" => 50,
1104 "users" => [
1105 %{
1106 "deactivated" => user.deactivated,
1107 "id" => user.id,
1108 "nickname" => user.nickname,
1109 "roles" => %{"admin" => false, "moderator" => false},
1110 "local" => user.local,
1111 "tags" => [],
1112 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
1113 "display_name" => HTML.strip_tags(user.name || user.nickname),
1114 "confirmation_pending" => false
1115 }
1116 ]
1117 }
1118 end
1119
1120 test "it omits relay user", %{admin: admin, conn: conn} do
1121 assert %User{} = Relay.get_actor()
1122
1123 conn = get(conn, "/api/pleroma/admin/users")
1124
1125 assert json_response(conn, 200) == %{
1126 "count" => 1,
1127 "page_size" => 50,
1128 "users" => [
1129 %{
1130 "deactivated" => admin.deactivated,
1131 "id" => admin.id,
1132 "nickname" => admin.nickname,
1133 "roles" => %{"admin" => true, "moderator" => false},
1134 "local" => true,
1135 "tags" => [],
1136 "avatar" => User.avatar_url(admin) |> MediaProxy.url(),
1137 "display_name" => HTML.strip_tags(admin.name || admin.nickname),
1138 "confirmation_pending" => false
1139 }
1140 ]
1141 }
1142 end
1143 end
1144
1145 test "PATCH /api/pleroma/admin/users/activate", %{admin: admin, conn: conn} do
1146 user_one = insert(:user, deactivated: true)
1147 user_two = insert(:user, deactivated: true)
1148
1149 conn =
1150 patch(
1151 conn,
1152 "/api/pleroma/admin/users/activate",
1153 %{nicknames: [user_one.nickname, user_two.nickname]}
1154 )
1155
1156 response = json_response(conn, 200)
1157 assert Enum.map(response["users"], & &1["deactivated"]) == [false, false]
1158
1159 log_entry = Repo.one(ModerationLog)
1160
1161 assert ModerationLog.get_log_entry_message(log_entry) ==
1162 "@#{admin.nickname} activated users: @#{user_one.nickname}, @#{user_two.nickname}"
1163 end
1164
1165 test "PATCH /api/pleroma/admin/users/deactivate", %{admin: admin, conn: conn} do
1166 user_one = insert(:user, deactivated: false)
1167 user_two = insert(:user, deactivated: false)
1168
1169 conn =
1170 patch(
1171 conn,
1172 "/api/pleroma/admin/users/deactivate",
1173 %{nicknames: [user_one.nickname, user_two.nickname]}
1174 )
1175
1176 response = json_response(conn, 200)
1177 assert Enum.map(response["users"], & &1["deactivated"]) == [true, true]
1178
1179 log_entry = Repo.one(ModerationLog)
1180
1181 assert ModerationLog.get_log_entry_message(log_entry) ==
1182 "@#{admin.nickname} deactivated users: @#{user_one.nickname}, @#{user_two.nickname}"
1183 end
1184
1185 test "PATCH /api/pleroma/admin/users/:nickname/toggle_activation", %{admin: admin, conn: conn} do
1186 user = insert(:user)
1187
1188 conn = patch(conn, "/api/pleroma/admin/users/#{user.nickname}/toggle_activation")
1189
1190 assert json_response(conn, 200) ==
1191 %{
1192 "deactivated" => !user.deactivated,
1193 "id" => user.id,
1194 "nickname" => user.nickname,
1195 "roles" => %{"admin" => false, "moderator" => false},
1196 "local" => true,
1197 "tags" => [],
1198 "avatar" => User.avatar_url(user) |> MediaProxy.url(),
1199 "display_name" => HTML.strip_tags(user.name || user.nickname),
1200 "confirmation_pending" => false
1201 }
1202
1203 log_entry = Repo.one(ModerationLog)
1204
1205 assert ModerationLog.get_log_entry_message(log_entry) ==
1206 "@#{admin.nickname} deactivated users: @#{user.nickname}"
1207 end
1208
1209 describe "POST /api/pleroma/admin/users/invite_token" do
1210 test "without options", %{conn: conn} do
1211 conn = post(conn, "/api/pleroma/admin/users/invite_token")
1212
1213 invite_json = json_response(conn, 200)
1214 invite = UserInviteToken.find_by_token!(invite_json["token"])
1215 refute invite.used
1216 refute invite.expires_at
1217 refute invite.max_use
1218 assert invite.invite_type == "one_time"
1219 end
1220
1221 test "with expires_at", %{conn: conn} do
1222 conn =
1223 post(conn, "/api/pleroma/admin/users/invite_token", %{
1224 "expires_at" => Date.to_string(Date.utc_today())
1225 })
1226
1227 invite_json = json_response(conn, 200)
1228 invite = UserInviteToken.find_by_token!(invite_json["token"])
1229
1230 refute invite.used
1231 assert invite.expires_at == Date.utc_today()
1232 refute invite.max_use
1233 assert invite.invite_type == "date_limited"
1234 end
1235
1236 test "with max_use", %{conn: conn} do
1237 conn = post(conn, "/api/pleroma/admin/users/invite_token", %{"max_use" => 150})
1238
1239 invite_json = json_response(conn, 200)
1240 invite = UserInviteToken.find_by_token!(invite_json["token"])
1241 refute invite.used
1242 refute invite.expires_at
1243 assert invite.max_use == 150
1244 assert invite.invite_type == "reusable"
1245 end
1246
1247 test "with max use and expires_at", %{conn: conn} do
1248 conn =
1249 post(conn, "/api/pleroma/admin/users/invite_token", %{
1250 "max_use" => 150,
1251 "expires_at" => Date.to_string(Date.utc_today())
1252 })
1253
1254 invite_json = json_response(conn, 200)
1255 invite = UserInviteToken.find_by_token!(invite_json["token"])
1256 refute invite.used
1257 assert invite.expires_at == Date.utc_today()
1258 assert invite.max_use == 150
1259 assert invite.invite_type == "reusable_date_limited"
1260 end
1261 end
1262
1263 describe "GET /api/pleroma/admin/users/invites" do
1264 test "no invites", %{conn: conn} do
1265 conn = get(conn, "/api/pleroma/admin/users/invites")
1266
1267 assert json_response(conn, 200) == %{"invites" => []}
1268 end
1269
1270 test "with invite", %{conn: conn} do
1271 {:ok, invite} = UserInviteToken.create_invite()
1272
1273 conn = get(conn, "/api/pleroma/admin/users/invites")
1274
1275 assert json_response(conn, 200) == %{
1276 "invites" => [
1277 %{
1278 "expires_at" => nil,
1279 "id" => invite.id,
1280 "invite_type" => "one_time",
1281 "max_use" => nil,
1282 "token" => invite.token,
1283 "used" => false,
1284 "uses" => 0
1285 }
1286 ]
1287 }
1288 end
1289 end
1290
1291 describe "POST /api/pleroma/admin/users/revoke_invite" do
1292 test "with token", %{conn: conn} do
1293 {:ok, invite} = UserInviteToken.create_invite()
1294
1295 conn = post(conn, "/api/pleroma/admin/users/revoke_invite", %{"token" => invite.token})
1296
1297 assert json_response(conn, 200) == %{
1298 "expires_at" => nil,
1299 "id" => invite.id,
1300 "invite_type" => "one_time",
1301 "max_use" => nil,
1302 "token" => invite.token,
1303 "used" => true,
1304 "uses" => 0
1305 }
1306 end
1307
1308 test "with invalid token", %{conn: conn} do
1309 conn = post(conn, "/api/pleroma/admin/users/revoke_invite", %{"token" => "foo"})
1310
1311 assert json_response(conn, :not_found) == "Not found"
1312 end
1313 end
1314
1315 describe "GET /api/pleroma/admin/reports/:id" do
1316 test "returns report by its id", %{conn: conn} do
1317 [reporter, target_user] = insert_pair(:user)
1318 activity = insert(:note_activity, user: target_user)
1319
1320 {:ok, %{id: report_id}} =
1321 CommonAPI.report(reporter, %{
1322 "account_id" => target_user.id,
1323 "comment" => "I feel offended",
1324 "status_ids" => [activity.id]
1325 })
1326
1327 response =
1328 conn
1329 |> get("/api/pleroma/admin/reports/#{report_id}")
1330 |> json_response(:ok)
1331
1332 assert response["id"] == report_id
1333 end
1334
1335 test "returns 404 when report id is invalid", %{conn: conn} do
1336 conn = get(conn, "/api/pleroma/admin/reports/test")
1337
1338 assert json_response(conn, :not_found) == "Not found"
1339 end
1340 end
1341
1342 describe "PATCH /api/pleroma/admin/reports" do
1343 setup do
1344 [reporter, target_user] = insert_pair(:user)
1345 activity = insert(:note_activity, user: target_user)
1346
1347 {:ok, %{id: report_id}} =
1348 CommonAPI.report(reporter, %{
1349 "account_id" => target_user.id,
1350 "comment" => "I feel offended",
1351 "status_ids" => [activity.id]
1352 })
1353
1354 {:ok, %{id: second_report_id}} =
1355 CommonAPI.report(reporter, %{
1356 "account_id" => target_user.id,
1357 "comment" => "I feel very offended",
1358 "status_ids" => [activity.id]
1359 })
1360
1361 %{
1362 id: report_id,
1363 second_report_id: second_report_id
1364 }
1365 end
1366
1367 test "mark report as resolved", %{conn: conn, id: id, admin: admin} do
1368 conn
1369 |> patch("/api/pleroma/admin/reports", %{
1370 "reports" => [
1371 %{"state" => "resolved", "id" => id}
1372 ]
1373 })
1374 |> json_response(:no_content)
1375
1376 activity = Activity.get_by_id(id)
1377 assert activity.data["state"] == "resolved"
1378
1379 log_entry = Repo.one(ModerationLog)
1380
1381 assert ModerationLog.get_log_entry_message(log_entry) ==
1382 "@#{admin.nickname} updated report ##{id} with 'resolved' state"
1383 end
1384
1385 test "closes report", %{conn: conn, id: id, admin: admin} do
1386 conn
1387 |> patch("/api/pleroma/admin/reports", %{
1388 "reports" => [
1389 %{"state" => "closed", "id" => id}
1390 ]
1391 })
1392 |> json_response(:no_content)
1393
1394 activity = Activity.get_by_id(id)
1395 assert activity.data["state"] == "closed"
1396
1397 log_entry = Repo.one(ModerationLog)
1398
1399 assert ModerationLog.get_log_entry_message(log_entry) ==
1400 "@#{admin.nickname} updated report ##{id} with 'closed' state"
1401 end
1402
1403 test "returns 400 when state is unknown", %{conn: conn, id: id} do
1404 conn =
1405 conn
1406 |> patch("/api/pleroma/admin/reports", %{
1407 "reports" => [
1408 %{"state" => "test", "id" => id}
1409 ]
1410 })
1411
1412 assert hd(json_response(conn, :bad_request))["error"] == "Unsupported state"
1413 end
1414
1415 test "returns 404 when report is not exist", %{conn: conn} do
1416 conn =
1417 conn
1418 |> patch("/api/pleroma/admin/reports", %{
1419 "reports" => [
1420 %{"state" => "closed", "id" => "test"}
1421 ]
1422 })
1423
1424 assert hd(json_response(conn, :bad_request))["error"] == "not_found"
1425 end
1426
1427 test "updates state of multiple reports", %{
1428 conn: conn,
1429 id: id,
1430 admin: admin,
1431 second_report_id: second_report_id
1432 } do
1433 conn
1434 |> patch("/api/pleroma/admin/reports", %{
1435 "reports" => [
1436 %{"state" => "resolved", "id" => id},
1437 %{"state" => "closed", "id" => second_report_id}
1438 ]
1439 })
1440 |> json_response(:no_content)
1441
1442 activity = Activity.get_by_id(id)
1443 second_activity = Activity.get_by_id(second_report_id)
1444 assert activity.data["state"] == "resolved"
1445 assert second_activity.data["state"] == "closed"
1446
1447 [first_log_entry, second_log_entry] = Repo.all(ModerationLog)
1448
1449 assert ModerationLog.get_log_entry_message(first_log_entry) ==
1450 "@#{admin.nickname} updated report ##{id} with 'resolved' state"
1451
1452 assert ModerationLog.get_log_entry_message(second_log_entry) ==
1453 "@#{admin.nickname} updated report ##{second_report_id} with 'closed' state"
1454 end
1455 end
1456
1457 describe "GET /api/pleroma/admin/reports" do
1458 test "returns empty response when no reports created", %{conn: conn} do
1459 response =
1460 conn
1461 |> get("/api/pleroma/admin/reports")
1462 |> json_response(:ok)
1463
1464 assert Enum.empty?(response["reports"])
1465 assert response["total"] == 0
1466 end
1467
1468 test "returns reports", %{conn: conn} do
1469 [reporter, target_user] = insert_pair(:user)
1470 activity = insert(:note_activity, user: target_user)
1471
1472 {:ok, %{id: report_id}} =
1473 CommonAPI.report(reporter, %{
1474 "account_id" => target_user.id,
1475 "comment" => "I feel offended",
1476 "status_ids" => [activity.id]
1477 })
1478
1479 response =
1480 conn
1481 |> get("/api/pleroma/admin/reports")
1482 |> json_response(:ok)
1483
1484 [report] = response["reports"]
1485
1486 assert length(response["reports"]) == 1
1487 assert report["id"] == report_id
1488
1489 assert response["total"] == 1
1490 end
1491
1492 test "returns reports with specified state", %{conn: conn} do
1493 [reporter, target_user] = insert_pair(:user)
1494 activity = insert(:note_activity, user: target_user)
1495
1496 {:ok, %{id: first_report_id}} =
1497 CommonAPI.report(reporter, %{
1498 "account_id" => target_user.id,
1499 "comment" => "I feel offended",
1500 "status_ids" => [activity.id]
1501 })
1502
1503 {:ok, %{id: second_report_id}} =
1504 CommonAPI.report(reporter, %{
1505 "account_id" => target_user.id,
1506 "comment" => "I don't like this user"
1507 })
1508
1509 CommonAPI.update_report_state(second_report_id, "closed")
1510
1511 response =
1512 conn
1513 |> get("/api/pleroma/admin/reports", %{
1514 "state" => "open"
1515 })
1516 |> json_response(:ok)
1517
1518 [open_report] = response["reports"]
1519
1520 assert length(response["reports"]) == 1
1521 assert open_report["id"] == first_report_id
1522
1523 assert response["total"] == 1
1524
1525 response =
1526 conn
1527 |> get("/api/pleroma/admin/reports", %{
1528 "state" => "closed"
1529 })
1530 |> json_response(:ok)
1531
1532 [closed_report] = response["reports"]
1533
1534 assert length(response["reports"]) == 1
1535 assert closed_report["id"] == second_report_id
1536
1537 assert response["total"] == 1
1538
1539 response =
1540 conn
1541 |> get("/api/pleroma/admin/reports", %{
1542 "state" => "resolved"
1543 })
1544 |> json_response(:ok)
1545
1546 assert Enum.empty?(response["reports"])
1547 assert response["total"] == 0
1548 end
1549
1550 test "returns 403 when requested by a non-admin" do
1551 user = insert(:user)
1552 token = insert(:oauth_token, user: user)
1553
1554 conn =
1555 build_conn()
1556 |> assign(:user, user)
1557 |> assign(:token, token)
1558 |> get("/api/pleroma/admin/reports")
1559
1560 assert json_response(conn, :forbidden) ==
1561 %{"error" => "User is not an admin or OAuth admin scope is not granted."}
1562 end
1563
1564 test "returns 403 when requested by anonymous" do
1565 conn = get(build_conn(), "/api/pleroma/admin/reports")
1566
1567 assert json_response(conn, :forbidden) == %{"error" => "Invalid credentials."}
1568 end
1569 end
1570
1571 describe "GET /api/pleroma/admin/grouped_reports" do
1572 setup do
1573 [reporter, target_user] = insert_pair(:user)
1574
1575 date1 = (DateTime.to_unix(DateTime.utc_now()) + 1000) |> DateTime.from_unix!()
1576 date2 = (DateTime.to_unix(DateTime.utc_now()) + 2000) |> DateTime.from_unix!()
1577 date3 = (DateTime.to_unix(DateTime.utc_now()) + 3000) |> DateTime.from_unix!()
1578
1579 first_status =
1580 insert(:note_activity, user: target_user, data_attrs: %{"published" => date1})
1581
1582 second_status =
1583 insert(:note_activity, user: target_user, data_attrs: %{"published" => date2})
1584
1585 third_status =
1586 insert(:note_activity, user: target_user, data_attrs: %{"published" => date3})
1587
1588 {:ok, first_report} =
1589 CommonAPI.report(reporter, %{
1590 "account_id" => target_user.id,
1591 "status_ids" => [first_status.id, second_status.id, third_status.id]
1592 })
1593
1594 {:ok, second_report} =
1595 CommonAPI.report(reporter, %{
1596 "account_id" => target_user.id,
1597 "status_ids" => [first_status.id, second_status.id]
1598 })
1599
1600 {:ok, third_report} =
1601 CommonAPI.report(reporter, %{
1602 "account_id" => target_user.id,
1603 "status_ids" => [first_status.id]
1604 })
1605
1606 %{
1607 first_status: Activity.get_by_ap_id_with_object(first_status.data["id"]),
1608 second_status: Activity.get_by_ap_id_with_object(second_status.data["id"]),
1609 third_status: Activity.get_by_ap_id_with_object(third_status.data["id"]),
1610 first_report: first_report,
1611 first_status_reports: [first_report, second_report, third_report],
1612 second_status_reports: [first_report, second_report],
1613 third_status_reports: [first_report],
1614 target_user: target_user,
1615 reporter: reporter
1616 }
1617 end
1618
1619 test "returns reports grouped by status", %{
1620 conn: conn,
1621 first_status: first_status,
1622 second_status: second_status,
1623 third_status: third_status,
1624 first_status_reports: first_status_reports,
1625 second_status_reports: second_status_reports,
1626 third_status_reports: third_status_reports,
1627 target_user: target_user,
1628 reporter: reporter
1629 } do
1630 response =
1631 conn
1632 |> get("/api/pleroma/admin/grouped_reports")
1633 |> json_response(:ok)
1634
1635 assert length(response["reports"]) == 3
1636
1637 first_group = Enum.find(response["reports"], &(&1["status"]["id"] == first_status.id))
1638
1639 second_group = Enum.find(response["reports"], &(&1["status"]["id"] == second_status.id))
1640
1641 third_group = Enum.find(response["reports"], &(&1["status"]["id"] == third_status.id))
1642
1643 assert length(first_group["reports"]) == 3
1644 assert length(second_group["reports"]) == 2
1645 assert length(third_group["reports"]) == 1
1646
1647 assert first_group["date"] ==
1648 Enum.max_by(first_status_reports, fn act ->
1649 NaiveDateTime.from_iso8601!(act.data["published"])
1650 end).data["published"]
1651
1652 assert first_group["status"] ==
1653 Map.put(
1654 stringify_keys(StatusView.render("show.json", %{activity: first_status})),
1655 "deleted",
1656 false
1657 )
1658
1659 assert(first_group["account"]["id"] == target_user.id)
1660
1661 assert length(first_group["actors"]) == 1
1662 assert hd(first_group["actors"])["id"] == reporter.id
1663
1664 assert Enum.map(first_group["reports"], & &1["id"]) --
1665 Enum.map(first_status_reports, & &1.id) == []
1666
1667 assert second_group["date"] ==
1668 Enum.max_by(second_status_reports, fn act ->
1669 NaiveDateTime.from_iso8601!(act.data["published"])
1670 end).data["published"]
1671
1672 assert second_group["status"] ==
1673 Map.put(
1674 stringify_keys(StatusView.render("show.json", %{activity: second_status})),
1675 "deleted",
1676 false
1677 )
1678
1679 assert second_group["account"]["id"] == target_user.id
1680
1681 assert length(second_group["actors"]) == 1
1682 assert hd(second_group["actors"])["id"] == reporter.id
1683
1684 assert Enum.map(second_group["reports"], & &1["id"]) --
1685 Enum.map(second_status_reports, & &1.id) == []
1686
1687 assert third_group["date"] ==
1688 Enum.max_by(third_status_reports, fn act ->
1689 NaiveDateTime.from_iso8601!(act.data["published"])
1690 end).data["published"]
1691
1692 assert third_group["status"] ==
1693 Map.put(
1694 stringify_keys(StatusView.render("show.json", %{activity: third_status})),
1695 "deleted",
1696 false
1697 )
1698
1699 assert third_group["account"]["id"] == target_user.id
1700
1701 assert length(third_group["actors"]) == 1
1702 assert hd(third_group["actors"])["id"] == reporter.id
1703
1704 assert Enum.map(third_group["reports"], & &1["id"]) --
1705 Enum.map(third_status_reports, & &1.id) == []
1706 end
1707
1708 test "reopened report renders status data", %{
1709 conn: conn,
1710 first_report: first_report,
1711 first_status: first_status
1712 } do
1713 {:ok, _} = CommonAPI.update_report_state(first_report.id, "resolved")
1714
1715 response =
1716 conn
1717 |> get("/api/pleroma/admin/grouped_reports")
1718 |> json_response(:ok)
1719
1720 first_group = Enum.find(response["reports"], &(&1["status"]["id"] == first_status.id))
1721
1722 assert first_group["status"] ==
1723 Map.put(
1724 stringify_keys(StatusView.render("show.json", %{activity: first_status})),
1725 "deleted",
1726 false
1727 )
1728 end
1729
1730 test "reopened report does not render status data if status has been deleted", %{
1731 conn: conn,
1732 first_report: first_report,
1733 first_status: first_status,
1734 target_user: target_user
1735 } do
1736 {:ok, _} = CommonAPI.update_report_state(first_report.id, "resolved")
1737 {:ok, _} = CommonAPI.delete(first_status.id, target_user)
1738
1739 refute Activity.get_by_ap_id(first_status.id)
1740
1741 response =
1742 conn
1743 |> get("/api/pleroma/admin/grouped_reports")
1744 |> json_response(:ok)
1745
1746 assert Enum.find(response["reports"], &(&1["status"]["deleted"] == true))["status"][
1747 "deleted"
1748 ] == true
1749
1750 assert length(Enum.filter(response["reports"], &(&1["status"]["deleted"] == false))) == 2
1751 end
1752
1753 test "account not empty if status was deleted", %{
1754 conn: conn,
1755 first_report: first_report,
1756 first_status: first_status,
1757 target_user: target_user
1758 } do
1759 {:ok, _} = CommonAPI.update_report_state(first_report.id, "resolved")
1760 {:ok, _} = CommonAPI.delete(first_status.id, target_user)
1761
1762 refute Activity.get_by_ap_id(first_status.id)
1763
1764 response =
1765 conn
1766 |> get("/api/pleroma/admin/grouped_reports")
1767 |> json_response(:ok)
1768
1769 assert Enum.find(response["reports"], &(&1["status"]["deleted"] == true))["account"]
1770 end
1771 end
1772
1773 describe "PUT /api/pleroma/admin/statuses/:id" do
1774 setup do
1775 activity = insert(:note_activity)
1776
1777 %{id: activity.id}
1778 end
1779
1780 test "toggle sensitive flag", %{conn: conn, id: id, admin: admin} do
1781 response =
1782 conn
1783 |> put("/api/pleroma/admin/statuses/#{id}", %{"sensitive" => "true"})
1784 |> json_response(:ok)
1785
1786 assert response["sensitive"]
1787
1788 log_entry = Repo.one(ModerationLog)
1789
1790 assert ModerationLog.get_log_entry_message(log_entry) ==
1791 "@#{admin.nickname} updated status ##{id}, set sensitive: 'true'"
1792
1793 response =
1794 conn
1795 |> put("/api/pleroma/admin/statuses/#{id}", %{"sensitive" => "false"})
1796 |> json_response(:ok)
1797
1798 refute response["sensitive"]
1799 end
1800
1801 test "change visibility flag", %{conn: conn, id: id, admin: admin} do
1802 response =
1803 conn
1804 |> put("/api/pleroma/admin/statuses/#{id}", %{"visibility" => "public"})
1805 |> json_response(:ok)
1806
1807 assert response["visibility"] == "public"
1808
1809 log_entry = Repo.one(ModerationLog)
1810
1811 assert ModerationLog.get_log_entry_message(log_entry) ==
1812 "@#{admin.nickname} updated status ##{id}, set visibility: 'public'"
1813
1814 response =
1815 conn
1816 |> put("/api/pleroma/admin/statuses/#{id}", %{"visibility" => "private"})
1817 |> json_response(:ok)
1818
1819 assert response["visibility"] == "private"
1820
1821 response =
1822 conn
1823 |> put("/api/pleroma/admin/statuses/#{id}", %{"visibility" => "unlisted"})
1824 |> json_response(:ok)
1825
1826 assert response["visibility"] == "unlisted"
1827 end
1828
1829 test "returns 400 when visibility is unknown", %{conn: conn, id: id} do
1830 conn = put(conn, "/api/pleroma/admin/statuses/#{id}", %{"visibility" => "test"})
1831
1832 assert json_response(conn, :bad_request) == "Unsupported visibility"
1833 end
1834 end
1835
1836 describe "DELETE /api/pleroma/admin/statuses/:id" do
1837 setup do
1838 activity = insert(:note_activity)
1839
1840 %{id: activity.id}
1841 end
1842
1843 test "deletes status", %{conn: conn, id: id, admin: admin} do
1844 conn
1845 |> delete("/api/pleroma/admin/statuses/#{id}")
1846 |> json_response(:ok)
1847
1848 refute Activity.get_by_id(id)
1849
1850 log_entry = Repo.one(ModerationLog)
1851
1852 assert ModerationLog.get_log_entry_message(log_entry) ==
1853 "@#{admin.nickname} deleted status ##{id}"
1854 end
1855
1856 test "returns error when status is not exist", %{conn: conn} do
1857 conn = delete(conn, "/api/pleroma/admin/statuses/test")
1858
1859 assert json_response(conn, :bad_request) == "Could not delete"
1860 end
1861 end
1862
1863 describe "GET /api/pleroma/admin/config" do
1864 clear_config(:configurable_from_database) do
1865 Pleroma.Config.put(:configurable_from_database, true)
1866 end
1867
1868 test "when configuration from database is off", %{conn: conn} do
1869 initial = Pleroma.Config.get(:configurable_from_database)
1870 Pleroma.Config.put(:configurable_from_database, false)
1871 on_exit(fn -> Pleroma.Config.put(:configurable_from_database, initial) end)
1872 conn = get(conn, "/api/pleroma/admin/config")
1873
1874 assert json_response(conn, 400) ==
1875 "To use this endpoint you need to enable configuration from database."
1876 end
1877
1878 test "without any settings in db", %{conn: conn} do
1879 conn = get(conn, "/api/pleroma/admin/config")
1880
1881 assert json_response(conn, 400) ==
1882 "To use configuration from database migrate your settings to database."
1883 end
1884
1885 test "with settings only in db", %{conn: conn} do
1886 config1 = insert(:config)
1887 config2 = insert(:config)
1888
1889 conn = get(conn, "/api/pleroma/admin/config", %{"only_db" => true})
1890
1891 %{
1892 "configs" => [
1893 %{
1894 "group" => ":pleroma",
1895 "key" => key1,
1896 "value" => _
1897 },
1898 %{
1899 "group" => ":pleroma",
1900 "key" => key2,
1901 "value" => _
1902 }
1903 ]
1904 } = json_response(conn, 200)
1905
1906 assert key1 == config1.key
1907 assert key2 == config2.key
1908 end
1909
1910 test "merged default setting with db settings", %{conn: conn} do
1911 config1 = insert(:config)
1912 config2 = insert(:config)
1913
1914 config3 =
1915 insert(:config,
1916 value: ConfigDB.to_binary(k1: :v1, k2: :v2)
1917 )
1918
1919 %{"configs" => configs} =
1920 conn
1921 |> get("/api/pleroma/admin/config")
1922 |> json_response(200)
1923
1924 assert length(configs) > 3
1925
1926 received_configs =
1927 Enum.filter(configs, fn %{"group" => group, "key" => key} ->
1928 group == ":pleroma" and key in [config1.key, config2.key, config3.key]
1929 end)
1930
1931 assert length(received_configs) == 3
1932
1933 db_keys =
1934 config3.value
1935 |> ConfigDB.from_binary()
1936 |> Keyword.keys()
1937 |> ConfigDB.convert()
1938
1939 Enum.each(received_configs, fn %{"value" => value, "db" => db} ->
1940 assert db in [[config1.key], [config2.key], db_keys]
1941
1942 assert value in [
1943 ConfigDB.from_binary_with_convert(config1.value),
1944 ConfigDB.from_binary_with_convert(config2.value),
1945 ConfigDB.from_binary_with_convert(config3.value)
1946 ]
1947 end)
1948 end
1949
1950 test "subkeys with full update right merge", %{conn: conn} do
1951 config1 =
1952 insert(:config,
1953 key: ":emoji",
1954 value: ConfigDB.to_binary(groups: [a: 1, b: 2], key: [a: 1])
1955 )
1956
1957 config2 =
1958 insert(:config,
1959 key: ":assets",
1960 value: ConfigDB.to_binary(mascots: [a: 1, b: 2], key: [a: 1])
1961 )
1962
1963 %{"configs" => configs} =
1964 conn
1965 |> get("/api/pleroma/admin/config")
1966 |> json_response(200)
1967
1968 vals =
1969 Enum.filter(configs, fn %{"group" => group, "key" => key} ->
1970 group == ":pleroma" and key in [config1.key, config2.key]
1971 end)
1972
1973 emoji = Enum.find(vals, fn %{"key" => key} -> key == ":emoji" end)
1974 assets = Enum.find(vals, fn %{"key" => key} -> key == ":assets" end)
1975
1976 emoji_val = ConfigDB.transform_with_out_binary(emoji["value"])
1977 assets_val = ConfigDB.transform_with_out_binary(assets["value"])
1978
1979 assert emoji_val[:groups] == [a: 1, b: 2]
1980 assert assets_val[:mascots] == [a: 1, b: 2]
1981 end
1982 end
1983
1984 test "POST /api/pleroma/admin/config error", %{conn: conn} do
1985 conn = post(conn, "/api/pleroma/admin/config", %{"configs" => []})
1986
1987 assert json_response(conn, 400) ==
1988 "To use this endpoint you need to enable configuration from database."
1989 end
1990
1991 describe "POST /api/pleroma/admin/config" do
1992 setup do
1993 http = Application.get_env(:pleroma, :http)
1994
1995 on_exit(fn ->
1996 Application.delete_env(:pleroma, :key1)
1997 Application.delete_env(:pleroma, :key2)
1998 Application.delete_env(:pleroma, :key3)
1999 Application.delete_env(:pleroma, :key4)
2000 Application.delete_env(:pleroma, :keyaa1)
2001 Application.delete_env(:pleroma, :keyaa2)
2002 Application.delete_env(:pleroma, Pleroma.Web.Endpoint.NotReal)
2003 Application.delete_env(:pleroma, Pleroma.Captcha.NotReal)
2004 Application.put_env(:pleroma, :http, http)
2005 Application.put_env(:tesla, :adapter, Tesla.Mock)
2006 :ok = File.rm("config/test.exported_from_db.secret.exs")
2007 end)
2008 end
2009
2010 clear_config(:configurable_from_database) do
2011 Pleroma.Config.put(:configurable_from_database, true)
2012 end
2013
2014 @tag capture_log: true
2015 test "create new config setting in db", %{conn: conn} do
2016 conn =
2017 post(conn, "/api/pleroma/admin/config", %{
2018 configs: [
2019 %{group: ":pleroma", key: ":key1", value: "value1"},
2020 %{
2021 group: ":ueberauth",
2022 key: "Ueberauth",
2023 value: [%{"tuple" => [":consumer_secret", "aaaa"]}]
2024 },
2025 %{
2026 group: ":pleroma",
2027 key: ":key2",
2028 value: %{
2029 ":nested_1" => "nested_value1",
2030 ":nested_2" => [
2031 %{":nested_22" => "nested_value222"},
2032 %{":nested_33" => %{":nested_44" => "nested_444"}}
2033 ]
2034 }
2035 },
2036 %{
2037 group: ":pleroma",
2038 key: ":key3",
2039 value: [
2040 %{"nested_3" => ":nested_3", "nested_33" => "nested_33"},
2041 %{"nested_4" => true}
2042 ]
2043 },
2044 %{
2045 group: ":pleroma",
2046 key: ":key4",
2047 value: %{":nested_5" => ":upload", "endpoint" => "https://example.com"}
2048 },
2049 %{
2050 group: ":idna",
2051 key: ":key5",
2052 value: %{"tuple" => ["string", "Pleroma.Captcha.NotReal", []]}
2053 }
2054 ]
2055 })
2056
2057 assert json_response(conn, 200) == %{
2058 "configs" => [
2059 %{
2060 "group" => ":pleroma",
2061 "key" => ":key1",
2062 "value" => "value1",
2063 "db" => [":key1"]
2064 },
2065 %{
2066 "group" => ":ueberauth",
2067 "key" => "Ueberauth",
2068 "value" => [%{"tuple" => [":consumer_secret", "aaaa"]}],
2069 "db" => [":consumer_secret"]
2070 },
2071 %{
2072 "group" => ":pleroma",
2073 "key" => ":key2",
2074 "value" => %{
2075 ":nested_1" => "nested_value1",
2076 ":nested_2" => [
2077 %{":nested_22" => "nested_value222"},
2078 %{":nested_33" => %{":nested_44" => "nested_444"}}
2079 ]
2080 },
2081 "db" => [":key2"]
2082 },
2083 %{
2084 "group" => ":pleroma",
2085 "key" => ":key3",
2086 "value" => [
2087 %{"nested_3" => ":nested_3", "nested_33" => "nested_33"},
2088 %{"nested_4" => true}
2089 ],
2090 "db" => [":key3"]
2091 },
2092 %{
2093 "group" => ":pleroma",
2094 "key" => ":key4",
2095 "value" => %{"endpoint" => "https://example.com", ":nested_5" => ":upload"},
2096 "db" => [":key4"]
2097 },
2098 %{
2099 "group" => ":idna",
2100 "key" => ":key5",
2101 "value" => %{"tuple" => ["string", "Pleroma.Captcha.NotReal", []]},
2102 "db" => [":key5"]
2103 }
2104 ]
2105 }
2106
2107 assert Application.get_env(:pleroma, :key1) == "value1"
2108
2109 assert Application.get_env(:pleroma, :key2) == %{
2110 nested_1: "nested_value1",
2111 nested_2: [
2112 %{nested_22: "nested_value222"},
2113 %{nested_33: %{nested_44: "nested_444"}}
2114 ]
2115 }
2116
2117 assert Application.get_env(:pleroma, :key3) == [
2118 %{"nested_3" => :nested_3, "nested_33" => "nested_33"},
2119 %{"nested_4" => true}
2120 ]
2121
2122 assert Application.get_env(:pleroma, :key4) == %{
2123 "endpoint" => "https://example.com",
2124 nested_5: :upload
2125 }
2126
2127 assert Application.get_env(:idna, :key5) == {"string", Pleroma.Captcha.NotReal, []}
2128 end
2129
2130 test "save config setting without key", %{conn: conn} do
2131 level = Application.get_env(:quack, :level)
2132 meta = Application.get_env(:quack, :meta)
2133 webhook_url = Application.get_env(:quack, :webhook_url)
2134
2135 on_exit(fn ->
2136 Application.put_env(:quack, :level, level)
2137 Application.put_env(:quack, :meta, meta)
2138 Application.put_env(:quack, :webhook_url, webhook_url)
2139 end)
2140
2141 conn =
2142 post(conn, "/api/pleroma/admin/config", %{
2143 configs: [
2144 %{
2145 group: ":quack",
2146 key: ":level",
2147 value: ":info"
2148 },
2149 %{
2150 group: ":quack",
2151 key: ":meta",
2152 value: [":none"]
2153 },
2154 %{
2155 group: ":quack",
2156 key: ":webhook_url",
2157 value: "https://hooks.slack.com/services/KEY"
2158 }
2159 ]
2160 })
2161
2162 assert json_response(conn, 200) == %{
2163 "configs" => [
2164 %{
2165 "group" => ":quack",
2166 "key" => ":level",
2167 "value" => ":info",
2168 "db" => [":level"]
2169 },
2170 %{
2171 "group" => ":quack",
2172 "key" => ":meta",
2173 "value" => [":none"],
2174 "db" => [":meta"]
2175 },
2176 %{
2177 "group" => ":quack",
2178 "key" => ":webhook_url",
2179 "value" => "https://hooks.slack.com/services/KEY",
2180 "db" => [":webhook_url"]
2181 }
2182 ]
2183 }
2184
2185 assert Application.get_env(:quack, :level) == :info
2186 assert Application.get_env(:quack, :meta) == [:none]
2187 assert Application.get_env(:quack, :webhook_url) == "https://hooks.slack.com/services/KEY"
2188 end
2189
2190 test "saving config with partial update", %{conn: conn} do
2191 config = insert(:config, key: ":key1", value: :erlang.term_to_binary(key1: 1, key2: 2))
2192
2193 conn =
2194 post(conn, "/api/pleroma/admin/config", %{
2195 configs: [
2196 %{group: config.group, key: config.key, value: [%{"tuple" => [":key3", 3]}]}
2197 ]
2198 })
2199
2200 assert json_response(conn, 200) == %{
2201 "configs" => [
2202 %{
2203 "group" => ":pleroma",
2204 "key" => ":key1",
2205 "value" => [
2206 %{"tuple" => [":key1", 1]},
2207 %{"tuple" => [":key2", 2]},
2208 %{"tuple" => [":key3", 3]}
2209 ],
2210 "db" => [":key1", ":key2", ":key3"]
2211 }
2212 ]
2213 }
2214 end
2215
2216 test "saving config with nested merge", %{conn: conn} do
2217 config =
2218 insert(:config, key: ":key1", value: :erlang.term_to_binary(key1: 1, key2: [k1: 1, k2: 2]))
2219
2220 conn =
2221 post(conn, "/api/pleroma/admin/config", %{
2222 configs: [
2223 %{
2224 group: config.group,
2225 key: config.key,
2226 value: [
2227 %{"tuple" => [":key3", 3]},
2228 %{
2229 "tuple" => [
2230 ":key2",
2231 [
2232 %{"tuple" => [":k2", 1]},
2233 %{"tuple" => [":k3", 3]}
2234 ]
2235 ]
2236 }
2237 ]
2238 }
2239 ]
2240 })
2241
2242 assert json_response(conn, 200) == %{
2243 "configs" => [
2244 %{
2245 "group" => ":pleroma",
2246 "key" => ":key1",
2247 "value" => [
2248 %{"tuple" => [":key1", 1]},
2249 %{"tuple" => [":key3", 3]},
2250 %{
2251 "tuple" => [
2252 ":key2",
2253 [
2254 %{"tuple" => [":k1", 1]},
2255 %{"tuple" => [":k2", 1]},
2256 %{"tuple" => [":k3", 3]}
2257 ]
2258 ]
2259 }
2260 ],
2261 "db" => [":key1", ":key3", ":key2"]
2262 }
2263 ]
2264 }
2265 end
2266
2267 test "saving special atoms", %{conn: conn} do
2268 conn =
2269 post(conn, "/api/pleroma/admin/config", %{
2270 "configs" => [
2271 %{
2272 "group" => ":pleroma",
2273 "key" => ":key1",
2274 "value" => [
2275 %{
2276 "tuple" => [
2277 ":ssl_options",
2278 [%{"tuple" => [":versions", [":tlsv1", ":tlsv1.1", ":tlsv1.2"]]}]
2279 ]
2280 }
2281 ]
2282 }
2283 ]
2284 })
2285
2286 assert json_response(conn, 200) == %{
2287 "configs" => [
2288 %{
2289 "group" => ":pleroma",
2290 "key" => ":key1",
2291 "value" => [
2292 %{
2293 "tuple" => [
2294 ":ssl_options",
2295 [%{"tuple" => [":versions", [":tlsv1", ":tlsv1.1", ":tlsv1.2"]]}]
2296 ]
2297 }
2298 ],
2299 "db" => [":ssl_options"]
2300 }
2301 ]
2302 }
2303
2304 assert Application.get_env(:pleroma, :key1) == [
2305 ssl_options: [versions: [:tlsv1, :"tlsv1.1", :"tlsv1.2"]]
2306 ]
2307 end
2308
2309 test "saving full setting if value is in full_key_update list", %{conn: conn} do
2310 backends = Application.get_env(:logger, :backends)
2311 on_exit(fn -> Application.put_env(:logger, :backends, backends) end)
2312
2313 config =
2314 insert(:config,
2315 group: ":logger",
2316 key: ":backends",
2317 value: :erlang.term_to_binary([])
2318 )
2319
2320 conn =
2321 post(conn, "/api/pleroma/admin/config", %{
2322 configs: [
2323 %{
2324 group: config.group,
2325 key: config.key,
2326 value: [":console", %{"tuple" => ["ExSyslogger", ":ex_syslogger"]}]
2327 }
2328 ]
2329 })
2330
2331 assert json_response(conn, 200) == %{
2332 "configs" => [
2333 %{
2334 "group" => ":logger",
2335 "key" => ":backends",
2336 "value" => [
2337 ":console",
2338 %{"tuple" => ["ExSyslogger", ":ex_syslogger"]}
2339 ],
2340 "db" => [":backends"]
2341 }
2342 ]
2343 }
2344
2345 assert Application.get_env(:logger, :backends) == [
2346 :console,
2347 {ExSyslogger, :ex_syslogger}
2348 ]
2349
2350 ExUnit.CaptureLog.capture_log(fn ->
2351 require Logger
2352 Logger.warn("Ooops...")
2353 end) =~ "Ooops..."
2354 end
2355
2356 test "saving full setting if value is not keyword", %{conn: conn} do
2357 config =
2358 insert(:config,
2359 group: ":tesla",
2360 key: ":adapter",
2361 value: :erlang.term_to_binary(Tesla.Adapter.Hackey)
2362 )
2363
2364 conn =
2365 post(conn, "/api/pleroma/admin/config", %{
2366 configs: [
2367 %{group: config.group, key: config.key, value: "Tesla.Adapter.Httpc"}
2368 ]
2369 })
2370
2371 assert json_response(conn, 200) == %{
2372 "configs" => [
2373 %{
2374 "group" => ":tesla",
2375 "key" => ":adapter",
2376 "value" => "Tesla.Adapter.Httpc",
2377 "db" => [":adapter"]
2378 }
2379 ]
2380 }
2381 end
2382
2383 test "update config setting & delete", %{conn: conn} do
2384 config1 = insert(:config, key: ":keyaa1")
2385 config2 = insert(:config, key: ":keyaa2")
2386
2387 insert(:config,
2388 group: "ueberauth",
2389 key: "Ueberauth.Strategy.Microsoft.OAuth"
2390 )
2391
2392 conn =
2393 post(conn, "/api/pleroma/admin/config", %{
2394 configs: [
2395 %{group: config1.group, key: config1.key, value: "another_value"},
2396 %{group: config2.group, key: config2.key, delete: true},
2397 %{
2398 group: "ueberauth",
2399 key: "Ueberauth.Strategy.Microsoft.OAuth",
2400 delete: true
2401 }
2402 ]
2403 })
2404
2405 assert json_response(conn, 200) == %{
2406 "configs" => [
2407 %{
2408 "group" => ":pleroma",
2409 "key" => config1.key,
2410 "value" => "another_value",
2411 "db" => [":keyaa1"]
2412 }
2413 ]
2414 }
2415
2416 assert Application.get_env(:pleroma, :keyaa1) == "another_value"
2417 refute Application.get_env(:pleroma, :keyaa2)
2418 end
2419
2420 test "common config example", %{conn: conn} do
2421 adapter = Application.get_env(:tesla, :adapter)
2422 on_exit(fn -> Application.put_env(:tesla, :adapter, adapter) end)
2423
2424 conn =
2425 post(conn, "/api/pleroma/admin/config", %{
2426 configs: [
2427 %{
2428 "group" => ":pleroma",
2429 "key" => "Pleroma.Captcha.NotReal",
2430 "value" => [
2431 %{"tuple" => [":enabled", false]},
2432 %{"tuple" => [":method", "Pleroma.Captcha.Kocaptcha"]},
2433 %{"tuple" => [":seconds_valid", 60]},
2434 %{"tuple" => [":path", ""]},
2435 %{"tuple" => [":key1", nil]},
2436 %{"tuple" => [":partial_chain", "&:hackney_connect.partial_chain/1"]},
2437 %{"tuple" => [":regex1", "~r/https:\/\/example.com/"]},
2438 %{"tuple" => [":regex2", "~r/https:\/\/example.com/u"]},
2439 %{"tuple" => [":regex3", "~r/https:\/\/example.com/i"]},
2440 %{"tuple" => [":regex4", "~r/https:\/\/example.com/s"]},
2441 %{"tuple" => [":name", "Pleroma"]}
2442 ]
2443 },
2444 %{
2445 "group" => ":tesla",
2446 "key" => ":adapter",
2447 "value" => "Tesla.Adapter.Httpc"
2448 }
2449 ]
2450 })
2451
2452 assert Application.get_env(:tesla, :adapter) == Tesla.Adapter.Httpc
2453 assert Pleroma.Config.get([Pleroma.Captcha.NotReal, :name]) == "Pleroma"
2454
2455 assert json_response(conn, 200) == %{
2456 "configs" => [
2457 %{
2458 "group" => ":pleroma",
2459 "key" => "Pleroma.Captcha.NotReal",
2460 "value" => [
2461 %{"tuple" => [":enabled", false]},
2462 %{"tuple" => [":method", "Pleroma.Captcha.Kocaptcha"]},
2463 %{"tuple" => [":seconds_valid", 60]},
2464 %{"tuple" => [":path", ""]},
2465 %{"tuple" => [":key1", nil]},
2466 %{"tuple" => [":partial_chain", "&:hackney_connect.partial_chain/1"]},
2467 %{"tuple" => [":regex1", "~r/https:\\/\\/example.com/"]},
2468 %{"tuple" => [":regex2", "~r/https:\\/\\/example.com/u"]},
2469 %{"tuple" => [":regex3", "~r/https:\\/\\/example.com/i"]},
2470 %{"tuple" => [":regex4", "~r/https:\\/\\/example.com/s"]},
2471 %{"tuple" => [":name", "Pleroma"]}
2472 ],
2473 "db" => [
2474 ":enabled",
2475 ":method",
2476 ":seconds_valid",
2477 ":path",
2478 ":key1",
2479 ":partial_chain",
2480 ":regex1",
2481 ":regex2",
2482 ":regex3",
2483 ":regex4",
2484 ":name"
2485 ]
2486 },
2487 %{
2488 "group" => ":tesla",
2489 "key" => ":adapter",
2490 "value" => "Tesla.Adapter.Httpc",
2491 "db" => [":adapter"]
2492 }
2493 ]
2494 }
2495 end
2496
2497 test "tuples with more than two values", %{conn: conn} do
2498 conn =
2499 post(conn, "/api/pleroma/admin/config", %{
2500 configs: [
2501 %{
2502 "group" => ":pleroma",
2503 "key" => "Pleroma.Web.Endpoint.NotReal",
2504 "value" => [
2505 %{
2506 "tuple" => [
2507 ":http",
2508 [
2509 %{
2510 "tuple" => [
2511 ":key2",
2512 [
2513 %{
2514 "tuple" => [
2515 ":_",
2516 [
2517 %{
2518 "tuple" => [
2519 "/api/v1/streaming",
2520 "Pleroma.Web.MastodonAPI.WebsocketHandler",
2521 []
2522 ]
2523 },
2524 %{
2525 "tuple" => [
2526 "/websocket",
2527 "Phoenix.Endpoint.CowboyWebSocket",
2528 %{
2529 "tuple" => [
2530 "Phoenix.Transports.WebSocket",
2531 %{
2532 "tuple" => [
2533 "Pleroma.Web.Endpoint",
2534 "Pleroma.Web.UserSocket",
2535 []
2536 ]
2537 }
2538 ]
2539 }
2540 ]
2541 },
2542 %{
2543 "tuple" => [
2544 ":_",
2545 "Phoenix.Endpoint.Cowboy2Handler",
2546 %{"tuple" => ["Pleroma.Web.Endpoint", []]}
2547 ]
2548 }
2549 ]
2550 ]
2551 }
2552 ]
2553 ]
2554 }
2555 ]
2556 ]
2557 }
2558 ]
2559 }
2560 ]
2561 })
2562
2563 assert json_response(conn, 200) == %{
2564 "configs" => [
2565 %{
2566 "group" => ":pleroma",
2567 "key" => "Pleroma.Web.Endpoint.NotReal",
2568 "value" => [
2569 %{
2570 "tuple" => [
2571 ":http",
2572 [
2573 %{
2574 "tuple" => [
2575 ":key2",
2576 [
2577 %{
2578 "tuple" => [
2579 ":_",
2580 [
2581 %{
2582 "tuple" => [
2583 "/api/v1/streaming",
2584 "Pleroma.Web.MastodonAPI.WebsocketHandler",
2585 []
2586 ]
2587 },
2588 %{
2589 "tuple" => [
2590 "/websocket",
2591 "Phoenix.Endpoint.CowboyWebSocket",
2592 %{
2593 "tuple" => [
2594 "Phoenix.Transports.WebSocket",
2595 %{
2596 "tuple" => [
2597 "Pleroma.Web.Endpoint",
2598 "Pleroma.Web.UserSocket",
2599 []
2600 ]
2601 }
2602 ]
2603 }
2604 ]
2605 },
2606 %{
2607 "tuple" => [
2608 ":_",
2609 "Phoenix.Endpoint.Cowboy2Handler",
2610 %{"tuple" => ["Pleroma.Web.Endpoint", []]}
2611 ]
2612 }
2613 ]
2614 ]
2615 }
2616 ]
2617 ]
2618 }
2619 ]
2620 ]
2621 }
2622 ],
2623 "db" => [":http"]
2624 }
2625 ]
2626 }
2627 end
2628
2629 test "settings with nesting map", %{conn: conn} do
2630 conn =
2631 post(conn, "/api/pleroma/admin/config", %{
2632 configs: [
2633 %{
2634 "group" => ":pleroma",
2635 "key" => ":key1",
2636 "value" => [
2637 %{"tuple" => [":key2", "some_val"]},
2638 %{
2639 "tuple" => [
2640 ":key3",
2641 %{
2642 ":max_options" => 20,
2643 ":max_option_chars" => 200,
2644 ":min_expiration" => 0,
2645 ":max_expiration" => 31_536_000,
2646 "nested" => %{
2647 ":max_options" => 20,
2648 ":max_option_chars" => 200,
2649 ":min_expiration" => 0,
2650 ":max_expiration" => 31_536_000
2651 }
2652 }
2653 ]
2654 }
2655 ]
2656 }
2657 ]
2658 })
2659
2660 assert json_response(conn, 200) ==
2661 %{
2662 "configs" => [
2663 %{
2664 "group" => ":pleroma",
2665 "key" => ":key1",
2666 "value" => [
2667 %{"tuple" => [":key2", "some_val"]},
2668 %{
2669 "tuple" => [
2670 ":key3",
2671 %{
2672 ":max_expiration" => 31_536_000,
2673 ":max_option_chars" => 200,
2674 ":max_options" => 20,
2675 ":min_expiration" => 0,
2676 "nested" => %{
2677 ":max_expiration" => 31_536_000,
2678 ":max_option_chars" => 200,
2679 ":max_options" => 20,
2680 ":min_expiration" => 0
2681 }
2682 }
2683 ]
2684 }
2685 ],
2686 "db" => [":key2", ":key3"]
2687 }
2688 ]
2689 }
2690 end
2691
2692 test "value as map", %{conn: conn} do
2693 conn =
2694 post(conn, "/api/pleroma/admin/config", %{
2695 configs: [
2696 %{
2697 "group" => ":pleroma",
2698 "key" => ":key1",
2699 "value" => %{"key" => "some_val"}
2700 }
2701 ]
2702 })
2703
2704 assert json_response(conn, 200) ==
2705 %{
2706 "configs" => [
2707 %{
2708 "group" => ":pleroma",
2709 "key" => ":key1",
2710 "value" => %{"key" => "some_val"},
2711 "db" => [":key1"]
2712 }
2713 ]
2714 }
2715 end
2716
2717 test "queues key as atom", %{conn: conn} do
2718 conn =
2719 post(conn, "/api/pleroma/admin/config", %{
2720 configs: [
2721 %{
2722 "group" => ":oban",
2723 "key" => ":queues",
2724 "value" => [
2725 %{"tuple" => [":federator_incoming", 50]},
2726 %{"tuple" => [":federator_outgoing", 50]},
2727 %{"tuple" => [":web_push", 50]},
2728 %{"tuple" => [":mailer", 10]},
2729 %{"tuple" => [":transmogrifier", 20]},
2730 %{"tuple" => [":scheduled_activities", 10]},
2731 %{"tuple" => [":background", 5]}
2732 ]
2733 }
2734 ]
2735 })
2736
2737 assert json_response(conn, 200) == %{
2738 "configs" => [
2739 %{
2740 "group" => ":oban",
2741 "key" => ":queues",
2742 "value" => [
2743 %{"tuple" => [":federator_incoming", 50]},
2744 %{"tuple" => [":federator_outgoing", 50]},
2745 %{"tuple" => [":web_push", 50]},
2746 %{"tuple" => [":mailer", 10]},
2747 %{"tuple" => [":transmogrifier", 20]},
2748 %{"tuple" => [":scheduled_activities", 10]},
2749 %{"tuple" => [":background", 5]}
2750 ],
2751 "db" => [
2752 ":federator_incoming",
2753 ":federator_outgoing",
2754 ":web_push",
2755 ":mailer",
2756 ":transmogrifier",
2757 ":scheduled_activities",
2758 ":background"
2759 ]
2760 }
2761 ]
2762 }
2763 end
2764
2765 test "delete part of settings by atom subkeys", %{conn: conn} do
2766 config =
2767 insert(:config,
2768 key: ":keyaa1",
2769 value: :erlang.term_to_binary(subkey1: "val1", subkey2: "val2", subkey3: "val3")
2770 )
2771
2772 conn =
2773 post(conn, "/api/pleroma/admin/config", %{
2774 configs: [
2775 %{
2776 group: config.group,
2777 key: config.key,
2778 subkeys: [":subkey1", ":subkey3"],
2779 delete: true
2780 }
2781 ]
2782 })
2783
2784 assert json_response(conn, 200) == %{
2785 "configs" => [
2786 %{
2787 "group" => ":pleroma",
2788 "key" => ":keyaa1",
2789 "value" => [%{"tuple" => [":subkey2", "val2"]}],
2790 "db" => [":subkey2"]
2791 }
2792 ]
2793 }
2794 end
2795
2796 test "proxy tuple localhost", %{conn: conn} do
2797 conn =
2798 post(conn, "/api/pleroma/admin/config", %{
2799 configs: [
2800 %{
2801 group: ":pleroma",
2802 key: ":http",
2803 value: [
2804 %{"tuple" => [":proxy_url", %{"tuple" => [":socks5", "localhost", 1234]}]},
2805 %{"tuple" => [":send_user_agent", false]}
2806 ]
2807 }
2808 ]
2809 })
2810
2811 assert json_response(conn, 200) == %{
2812 "configs" => [
2813 %{
2814 "group" => ":pleroma",
2815 "key" => ":http",
2816 "value" => [
2817 %{"tuple" => [":proxy_url", %{"tuple" => [":socks5", "localhost", 1234]}]},
2818 %{"tuple" => [":send_user_agent", false]}
2819 ],
2820 "db" => [":proxy_url", ":send_user_agent"]
2821 }
2822 ]
2823 }
2824 end
2825
2826 test "proxy tuple domain", %{conn: conn} do
2827 conn =
2828 post(conn, "/api/pleroma/admin/config", %{
2829 configs: [
2830 %{
2831 group: ":pleroma",
2832 key: ":http",
2833 value: [
2834 %{"tuple" => [":proxy_url", %{"tuple" => [":socks5", "domain.com", 1234]}]},
2835 %{"tuple" => [":send_user_agent", false]}
2836 ]
2837 }
2838 ]
2839 })
2840
2841 assert json_response(conn, 200) == %{
2842 "configs" => [
2843 %{
2844 "group" => ":pleroma",
2845 "key" => ":http",
2846 "value" => [
2847 %{"tuple" => [":proxy_url", %{"tuple" => [":socks5", "domain.com", 1234]}]},
2848 %{"tuple" => [":send_user_agent", false]}
2849 ],
2850 "db" => [":proxy_url", ":send_user_agent"]
2851 }
2852 ]
2853 }
2854 end
2855
2856 test "proxy tuple ip", %{conn: conn} do
2857 conn =
2858 post(conn, "/api/pleroma/admin/config", %{
2859 configs: [
2860 %{
2861 group: ":pleroma",
2862 key: ":http",
2863 value: [
2864 %{"tuple" => [":proxy_url", %{"tuple" => [":socks5", "127.0.0.1", 1234]}]},
2865 %{"tuple" => [":send_user_agent", false]}
2866 ]
2867 }
2868 ]
2869 })
2870
2871 assert json_response(conn, 200) == %{
2872 "configs" => [
2873 %{
2874 "group" => ":pleroma",
2875 "key" => ":http",
2876 "value" => [
2877 %{"tuple" => [":proxy_url", %{"tuple" => [":socks5", "127.0.0.1", 1234]}]},
2878 %{"tuple" => [":send_user_agent", false]}
2879 ],
2880 "db" => [":proxy_url", ":send_user_agent"]
2881 }
2882 ]
2883 }
2884 end
2885 end
2886
2887 describe "config mix tasks run" do
2888 setup do
2889 Mix.shell(Mix.Shell.Quiet)
2890
2891 on_exit(fn ->
2892 Mix.shell(Mix.Shell.IO)
2893 end)
2894
2895 :ok
2896 end
2897
2898 clear_config(:configurable_from_database) do
2899 Pleroma.Config.put(:configurable_from_database, true)
2900 end
2901
2902 clear_config([:feed, :post_title]) do
2903 Pleroma.Config.put([:feed, :post_title], %{max_length: 100, omission: "…"})
2904 end
2905
2906 test "transfer settings to DB and to file", %{conn: conn} do
2907 assert Repo.all(Pleroma.ConfigDB) == []
2908 Mix.Tasks.Pleroma.Config.migrate_to_db("test/fixtures/config/temp.secret.exs")
2909 assert Repo.aggregate(Pleroma.ConfigDB, :count, :id) > 0
2910
2911 conn = get(conn, "/api/pleroma/admin/config/migrate_from_db")
2912
2913 assert json_response(conn, 200) == %{}
2914 assert Repo.all(Pleroma.ConfigDB) == []
2915 end
2916
2917 test "returns error if configuration from database is off", %{conn: conn} do
2918 initial = Pleroma.Config.get(:configurable_from_database)
2919 on_exit(fn -> Pleroma.Config.put(:configurable_from_database, initial) end)
2920 Pleroma.Config.put(:configurable_from_database, false)
2921
2922 conn = get(conn, "/api/pleroma/admin/config/migrate_from_db")
2923
2924 assert json_response(conn, 400) ==
2925 "To use this endpoint you need to enable configuration from database."
2926
2927 assert Repo.all(Pleroma.ConfigDB) == []
2928 end
2929 end
2930
2931 describe "GET /api/pleroma/admin/users/:nickname/statuses" do
2932 setup do
2933 user = insert(:user)
2934
2935 date1 = (DateTime.to_unix(DateTime.utc_now()) + 2000) |> DateTime.from_unix!()
2936 date2 = (DateTime.to_unix(DateTime.utc_now()) + 1000) |> DateTime.from_unix!()
2937 date3 = (DateTime.to_unix(DateTime.utc_now()) + 3000) |> DateTime.from_unix!()
2938
2939 insert(:note_activity, user: user, published: date1)
2940 insert(:note_activity, user: user, published: date2)
2941 insert(:note_activity, user: user, published: date3)
2942
2943 %{user: user}
2944 end
2945
2946 test "renders user's statuses", %{conn: conn, user: user} do
2947 conn = get(conn, "/api/pleroma/admin/users/#{user.nickname}/statuses")
2948
2949 assert json_response(conn, 200) |> length() == 3
2950 end
2951
2952 test "renders user's statuses with a limit", %{conn: conn, user: user} do
2953 conn = get(conn, "/api/pleroma/admin/users/#{user.nickname}/statuses?page_size=2")
2954
2955 assert json_response(conn, 200) |> length() == 2
2956 end
2957
2958 test "doesn't return private statuses by default", %{conn: conn, user: user} do
2959 {:ok, _private_status} =
2960 CommonAPI.post(user, %{"status" => "private", "visibility" => "private"})
2961
2962 {:ok, _public_status} =
2963 CommonAPI.post(user, %{"status" => "public", "visibility" => "public"})
2964
2965 conn = get(conn, "/api/pleroma/admin/users/#{user.nickname}/statuses")
2966
2967 assert json_response(conn, 200) |> length() == 4
2968 end
2969
2970 test "returns private statuses with godmode on", %{conn: conn, user: user} do
2971 {:ok, _private_status} =
2972 CommonAPI.post(user, %{"status" => "private", "visibility" => "private"})
2973
2974 {:ok, _public_status} =
2975 CommonAPI.post(user, %{"status" => "public", "visibility" => "public"})
2976
2977 conn = get(conn, "/api/pleroma/admin/users/#{user.nickname}/statuses?godmode=true")
2978
2979 assert json_response(conn, 200) |> length() == 5
2980 end
2981 end
2982
2983 describe "GET /api/pleroma/admin/moderation_log" do
2984 setup do
2985 moderator = insert(:user, is_moderator: true)
2986
2987 %{moderator: moderator}
2988 end
2989
2990 test "returns the log", %{conn: conn, admin: admin} do
2991 Repo.insert(%ModerationLog{
2992 data: %{
2993 actor: %{
2994 "id" => admin.id,
2995 "nickname" => admin.nickname,
2996 "type" => "user"
2997 },
2998 action: "relay_follow",
2999 target: "https://example.org/relay"
3000 },
3001 inserted_at: NaiveDateTime.truncate(~N[2017-08-15 15:47:06.597036], :second)
3002 })
3003
3004 Repo.insert(%ModerationLog{
3005 data: %{
3006 actor: %{
3007 "id" => admin.id,
3008 "nickname" => admin.nickname,
3009 "type" => "user"
3010 },
3011 action: "relay_unfollow",
3012 target: "https://example.org/relay"
3013 },
3014 inserted_at: NaiveDateTime.truncate(~N[2017-08-16 15:47:06.597036], :second)
3015 })
3016
3017 conn = get(conn, "/api/pleroma/admin/moderation_log")
3018
3019 response = json_response(conn, 200)
3020 [first_entry, second_entry] = response["items"]
3021
3022 assert response["total"] == 2
3023 assert first_entry["data"]["action"] == "relay_unfollow"
3024
3025 assert first_entry["message"] ==
3026 "@#{admin.nickname} unfollowed relay: https://example.org/relay"
3027
3028 assert second_entry["data"]["action"] == "relay_follow"
3029
3030 assert second_entry["message"] ==
3031 "@#{admin.nickname} followed relay: https://example.org/relay"
3032 end
3033
3034 test "returns the log with pagination", %{conn: conn, admin: admin} do
3035 Repo.insert(%ModerationLog{
3036 data: %{
3037 actor: %{
3038 "id" => admin.id,
3039 "nickname" => admin.nickname,
3040 "type" => "user"
3041 },
3042 action: "relay_follow",
3043 target: "https://example.org/relay"
3044 },
3045 inserted_at: NaiveDateTime.truncate(~N[2017-08-15 15:47:06.597036], :second)
3046 })
3047
3048 Repo.insert(%ModerationLog{
3049 data: %{
3050 actor: %{
3051 "id" => admin.id,
3052 "nickname" => admin.nickname,
3053 "type" => "user"
3054 },
3055 action: "relay_unfollow",
3056 target: "https://example.org/relay"
3057 },
3058 inserted_at: NaiveDateTime.truncate(~N[2017-08-16 15:47:06.597036], :second)
3059 })
3060
3061 conn1 = get(conn, "/api/pleroma/admin/moderation_log?page_size=1&page=1")
3062
3063 response1 = json_response(conn1, 200)
3064 [first_entry] = response1["items"]
3065
3066 assert response1["total"] == 2
3067 assert response1["items"] |> length() == 1
3068 assert first_entry["data"]["action"] == "relay_unfollow"
3069
3070 assert first_entry["message"] ==
3071 "@#{admin.nickname} unfollowed relay: https://example.org/relay"
3072
3073 conn2 = get(conn, "/api/pleroma/admin/moderation_log?page_size=1&page=2")
3074
3075 response2 = json_response(conn2, 200)
3076 [second_entry] = response2["items"]
3077
3078 assert response2["total"] == 2
3079 assert response2["items"] |> length() == 1
3080 assert second_entry["data"]["action"] == "relay_follow"
3081
3082 assert second_entry["message"] ==
3083 "@#{admin.nickname} followed relay: https://example.org/relay"
3084 end
3085
3086 test "filters log by date", %{conn: conn, admin: admin} do
3087 first_date = "2017-08-15T15:47:06Z"
3088 second_date = "2017-08-20T15:47:06Z"
3089
3090 Repo.insert(%ModerationLog{
3091 data: %{
3092 actor: %{
3093 "id" => admin.id,
3094 "nickname" => admin.nickname,
3095 "type" => "user"
3096 },
3097 action: "relay_follow",
3098 target: "https://example.org/relay"
3099 },
3100 inserted_at: NaiveDateTime.from_iso8601!(first_date)
3101 })
3102
3103 Repo.insert(%ModerationLog{
3104 data: %{
3105 actor: %{
3106 "id" => admin.id,
3107 "nickname" => admin.nickname,
3108 "type" => "user"
3109 },
3110 action: "relay_unfollow",
3111 target: "https://example.org/relay"
3112 },
3113 inserted_at: NaiveDateTime.from_iso8601!(second_date)
3114 })
3115
3116 conn1 =
3117 get(
3118 conn,
3119 "/api/pleroma/admin/moderation_log?start_date=#{second_date}"
3120 )
3121
3122 response1 = json_response(conn1, 200)
3123 [first_entry] = response1["items"]
3124
3125 assert response1["total"] == 1
3126 assert first_entry["data"]["action"] == "relay_unfollow"
3127
3128 assert first_entry["message"] ==
3129 "@#{admin.nickname} unfollowed relay: https://example.org/relay"
3130 end
3131
3132 test "returns log filtered by user", %{conn: conn, admin: admin, moderator: moderator} do
3133 Repo.insert(%ModerationLog{
3134 data: %{
3135 actor: %{
3136 "id" => admin.id,
3137 "nickname" => admin.nickname,
3138 "type" => "user"
3139 },
3140 action: "relay_follow",
3141 target: "https://example.org/relay"
3142 }
3143 })
3144
3145 Repo.insert(%ModerationLog{
3146 data: %{
3147 actor: %{
3148 "id" => moderator.id,
3149 "nickname" => moderator.nickname,
3150 "type" => "user"
3151 },
3152 action: "relay_unfollow",
3153 target: "https://example.org/relay"
3154 }
3155 })
3156
3157 conn1 = get(conn, "/api/pleroma/admin/moderation_log?user_id=#{moderator.id}")
3158
3159 response1 = json_response(conn1, 200)
3160 [first_entry] = response1["items"]
3161
3162 assert response1["total"] == 1
3163 assert get_in(first_entry, ["data", "actor", "id"]) == moderator.id
3164 end
3165
3166 test "returns log filtered by search", %{conn: conn, moderator: moderator} do
3167 ModerationLog.insert_log(%{
3168 actor: moderator,
3169 action: "relay_follow",
3170 target: "https://example.org/relay"
3171 })
3172
3173 ModerationLog.insert_log(%{
3174 actor: moderator,
3175 action: "relay_unfollow",
3176 target: "https://example.org/relay"
3177 })
3178
3179 conn1 = get(conn, "/api/pleroma/admin/moderation_log?search=unfo")
3180
3181 response1 = json_response(conn1, 200)
3182 [first_entry] = response1["items"]
3183
3184 assert response1["total"] == 1
3185
3186 assert get_in(first_entry, ["data", "message"]) ==
3187 "@#{moderator.nickname} unfollowed relay: https://example.org/relay"
3188 end
3189 end
3190
3191 describe "PATCH /users/:nickname/force_password_reset" do
3192 test "sets password_reset_pending to true", %{conn: conn} do
3193 user = insert(:user)
3194 assert user.password_reset_pending == false
3195
3196 conn =
3197 patch(conn, "/api/pleroma/admin/users/force_password_reset", %{nicknames: [user.nickname]})
3198
3199 assert json_response(conn, 204) == ""
3200
3201 ObanHelpers.perform_all()
3202
3203 assert User.get_by_id(user.id).password_reset_pending == true
3204 end
3205 end
3206
3207 describe "relays" do
3208 test "POST /relay", %{conn: conn, admin: admin} do
3209 conn =
3210 post(conn, "/api/pleroma/admin/relay", %{
3211 relay_url: "http://mastodon.example.org/users/admin"
3212 })
3213
3214 assert json_response(conn, 200) == "http://mastodon.example.org/users/admin"
3215
3216 log_entry = Repo.one(ModerationLog)
3217
3218 assert ModerationLog.get_log_entry_message(log_entry) ==
3219 "@#{admin.nickname} followed relay: http://mastodon.example.org/users/admin"
3220 end
3221
3222 test "GET /relay", %{conn: conn} do
3223 relay_user = Pleroma.Web.ActivityPub.Relay.get_actor()
3224
3225 ["http://mastodon.example.org/users/admin", "https://mstdn.io/users/mayuutann"]
3226 |> Enum.each(fn ap_id ->
3227 {:ok, user} = User.get_or_fetch_by_ap_id(ap_id)
3228 User.follow(relay_user, user)
3229 end)
3230
3231 conn = get(conn, "/api/pleroma/admin/relay")
3232
3233 assert json_response(conn, 200)["relays"] -- ["mastodon.example.org", "mstdn.io"] == []
3234 end
3235
3236 test "DELETE /relay", %{conn: conn, admin: admin} do
3237 post(conn, "/api/pleroma/admin/relay", %{
3238 relay_url: "http://mastodon.example.org/users/admin"
3239 })
3240
3241 conn =
3242 delete(conn, "/api/pleroma/admin/relay", %{
3243 relay_url: "http://mastodon.example.org/users/admin"
3244 })
3245
3246 assert json_response(conn, 200) == "http://mastodon.example.org/users/admin"
3247
3248 [log_entry_one, log_entry_two] = Repo.all(ModerationLog)
3249
3250 assert ModerationLog.get_log_entry_message(log_entry_one) ==
3251 "@#{admin.nickname} followed relay: http://mastodon.example.org/users/admin"
3252
3253 assert ModerationLog.get_log_entry_message(log_entry_two) ==
3254 "@#{admin.nickname} unfollowed relay: http://mastodon.example.org/users/admin"
3255 end
3256 end
3257
3258 describe "instances" do
3259 test "GET /instances/:instance/statuses", %{conn: conn} do
3260 user = insert(:user, local: false, nickname: "archaeme@archae.me")
3261 user2 = insert(:user, local: false, nickname: "test@test.com")
3262 insert_pair(:note_activity, user: user)
3263 insert(:note_activity, user: user2)
3264
3265 ret_conn = get(conn, "/api/pleroma/admin/instances/archae.me/statuses")
3266
3267 response = json_response(ret_conn, 200)
3268
3269 assert length(response) == 2
3270
3271 ret_conn = get(conn, "/api/pleroma/admin/instances/test.com/statuses")
3272
3273 response = json_response(ret_conn, 200)
3274
3275 assert length(response) == 1
3276
3277 ret_conn = get(conn, "/api/pleroma/admin/instances/nonexistent.com/statuses")
3278
3279 response = json_response(ret_conn, 200)
3280
3281 assert length(response) == 0
3282 end
3283 end
3284
3285 describe "PATCH /confirm_email" do
3286 test "it confirms emails of two users", %{conn: conn, admin: admin} do
3287 [first_user, second_user] = insert_pair(:user, confirmation_pending: true)
3288
3289 assert first_user.confirmation_pending == true
3290 assert second_user.confirmation_pending == true
3291
3292 ret_conn =
3293 patch(conn, "/api/pleroma/admin/users/confirm_email", %{
3294 nicknames: [
3295 first_user.nickname,
3296 second_user.nickname
3297 ]
3298 })
3299
3300 assert ret_conn.status == 200
3301
3302 assert first_user.confirmation_pending == true
3303 assert second_user.confirmation_pending == true
3304
3305 log_entry = Repo.one(ModerationLog)
3306
3307 assert ModerationLog.get_log_entry_message(log_entry) ==
3308 "@#{admin.nickname} confirmed email for users: @#{first_user.nickname}, @#{
3309 second_user.nickname
3310 }"
3311 end
3312 end
3313
3314 describe "PATCH /resend_confirmation_email" do
3315 test "it resend emails for two users", %{conn: conn, admin: admin} do
3316 [first_user, second_user] = insert_pair(:user, confirmation_pending: true)
3317
3318 ret_conn =
3319 patch(conn, "/api/pleroma/admin/users/resend_confirmation_email", %{
3320 nicknames: [
3321 first_user.nickname,
3322 second_user.nickname
3323 ]
3324 })
3325
3326 assert ret_conn.status == 200
3327
3328 log_entry = Repo.one(ModerationLog)
3329
3330 assert ModerationLog.get_log_entry_message(log_entry) ==
3331 "@#{admin.nickname} re-sent confirmation email for users: @#{first_user.nickname}, @#{
3332 second_user.nickname
3333 }"
3334 end
3335 end
3336
3337 describe "POST /reports/:id/notes" do
3338 setup %{conn: conn, admin: admin} do
3339 [reporter, target_user] = insert_pair(:user)
3340 activity = insert(:note_activity, user: target_user)
3341
3342 {:ok, %{id: report_id}} =
3343 CommonAPI.report(reporter, %{
3344 "account_id" => target_user.id,
3345 "comment" => "I feel offended",
3346 "status_ids" => [activity.id]
3347 })
3348
3349 post(conn, "/api/pleroma/admin/reports/#{report_id}/notes", %{
3350 content: "this is disgusting!"
3351 })
3352
3353 post(conn, "/api/pleroma/admin/reports/#{report_id}/notes", %{
3354 content: "this is disgusting2!"
3355 })
3356
3357 %{
3358 admin_id: admin.id,
3359 report_id: report_id
3360 }
3361 end
3362
3363 test "it creates report note", %{admin_id: admin_id, report_id: report_id} do
3364 [note, _] = Repo.all(ReportNote)
3365
3366 assert %{
3367 activity_id: ^report_id,
3368 content: "this is disgusting!",
3369 user_id: ^admin_id
3370 } = note
3371 end
3372
3373 test "it returns reports with notes", %{conn: conn, admin: admin} do
3374 conn = get(conn, "/api/pleroma/admin/reports")
3375
3376 response = json_response(conn, 200)
3377 notes = hd(response["reports"])["notes"]
3378 [note, _] = notes
3379
3380 assert note["user"]["nickname"] == admin.nickname
3381 assert note["content"] == "this is disgusting!"
3382 assert note["created_at"]
3383 assert response["total"] == 1
3384 end
3385
3386 test "it deletes the note", %{conn: conn, report_id: report_id} do
3387 assert ReportNote |> Repo.all() |> length() == 2
3388
3389 [note, _] = Repo.all(ReportNote)
3390
3391 delete(conn, "/api/pleroma/admin/reports/#{report_id}/notes/#{note.id}")
3392
3393 assert ReportNote |> Repo.all() |> length() == 1
3394 end
3395 end
3396
3397 test "GET /api/pleroma/admin/config/descriptions", %{conn: conn} do
3398 admin = insert(:user, is_admin: true)
3399
3400 conn =
3401 assign(conn, :user, admin)
3402 |> get("/api/pleroma/admin/config/descriptions")
3403
3404 assert [child | _others] = json_response(conn, 200)
3405
3406 assert child["children"]
3407 assert child["key"]
3408 assert String.starts_with?(child["group"], ":")
3409 assert child["description"]
3410 end
3411 end
3412
3413 # Needed for testing
3414 defmodule Pleroma.Web.Endpoint.NotReal do
3415 end
3416
3417 defmodule Pleroma.Captcha.NotReal do
3418 end
Fork of https://akkoma.dev/AkkomaGang/akkoma.git