projects / akkoma / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
Merge branch 'develop' into activation-meta
[akkoma] / test / web / mastodon_api / controllers / account_controller / update_credentials_test.exs
1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2020 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
4
5 defmodule Pleroma.Web.MastodonAPI.MastodonAPIController.UpdateCredentialsTest do
6 alias Pleroma.Repo
7 alias Pleroma.User
8
9 use Pleroma.Web.ConnCase
10
11 import Mock
12 import Pleroma.Factory
13
14 setup do: clear_config([:instance, :max_account_fields])
15
16 describe "updating credentials" do
17 setup do: oauth_access(["write:accounts"])
18 setup :request_content_type
19
20 test "sets user settings in a generic way", %{conn: conn} do
21 res_conn =
22 patch(conn, "/api/v1/accounts/update_credentials", %{
23 "pleroma_settings_store" => %{
24 pleroma_fe: %{
25 theme: "bla"
26 }
27 }
28 })
29
30 assert user_data = json_response_and_validate_schema(res_conn, 200)
31 assert user_data["pleroma"]["settings_store"] == %{"pleroma_fe" => %{"theme" => "bla"}}
32
33 user = Repo.get(User, user_data["id"])
34
35 res_conn =
36 conn
37 |> assign(:user, user)
38 |> patch("/api/v1/accounts/update_credentials", %{
39 "pleroma_settings_store" => %{
40 masto_fe: %{
41 theme: "bla"
42 }
43 }
44 })
45
46 assert user_data = json_response_and_validate_schema(res_conn, 200)
47
48 assert user_data["pleroma"]["settings_store"] ==
49 %{
50 "pleroma_fe" => %{"theme" => "bla"},
51 "masto_fe" => %{"theme" => "bla"}
52 }
53
54 user = Repo.get(User, user_data["id"])
55
56 clear_config([:instance, :federating], true)
57
58 with_mock Pleroma.Web.Federator,
59 publish: fn _activity -> :ok end do
60 res_conn =
61 conn
62 |> assign(:user, user)
63 |> patch("/api/v1/accounts/update_credentials", %{
64 "pleroma_settings_store" => %{
65 masto_fe: %{
66 theme: "blub"
67 }
68 }
69 })
70
71 assert user_data = json_response_and_validate_schema(res_conn, 200)
72
73 assert user_data["pleroma"]["settings_store"] ==
74 %{
75 "pleroma_fe" => %{"theme" => "bla"},
76 "masto_fe" => %{"theme" => "blub"}
77 }
78
79 assert_called(Pleroma.Web.Federator.publish(:_))
80 end
81 end
82
83 test "updates the user's bio", %{conn: conn} do
84 user2 = insert(:user)
85
86 raw_bio = "I drink #cofe with @#{user2.nickname}\n\nsuya.."
87
88 conn = patch(conn, "/api/v1/accounts/update_credentials", %{"note" => raw_bio})
89
90 assert user_data = json_response_and_validate_schema(conn, 200)
91
92 assert user_data["note"] ==
93 ~s(I drink <a class="hashtag" data-tag="cofe" href="http://localhost:4001/tag/cofe">#cofe</a> with <span class="h-card"><a class="u-url mention" data-user="#{
94 user2.id
95 }" href="#{user2.ap_id}" rel="ugc">@<span>#{user2.nickname}</span></a></span><br/><br/>suya..)
96
97 assert user_data["source"]["note"] == raw_bio
98
99 user = Repo.get(User, user_data["id"])
100
101 assert user.raw_bio == raw_bio
102 end
103
104 test "updates the user's locking status", %{conn: conn} do
105 conn = patch(conn, "/api/v1/accounts/update_credentials", %{locked: "true"})
106
107 assert user_data = json_response_and_validate_schema(conn, 200)
108 assert user_data["locked"] == true
109 end
110
111 test "updates the user's allow_following_move", %{user: user, conn: conn} do
112 assert user.allow_following_move == true
113
114 conn = patch(conn, "/api/v1/accounts/update_credentials", %{allow_following_move: "false"})
115
116 assert refresh_record(user).allow_following_move == false
117 assert user_data = json_response_and_validate_schema(conn, 200)
118 assert user_data["pleroma"]["allow_following_move"] == false
119 end
120
121 test "updates the user's default scope", %{conn: conn} do
122 conn = patch(conn, "/api/v1/accounts/update_credentials", %{default_scope: "unlisted"})
123
124 assert user_data = json_response_and_validate_schema(conn, 200)
125 assert user_data["source"]["privacy"] == "unlisted"
126 end
127
128 test "updates the user's privacy", %{conn: conn} do
129 conn = patch(conn, "/api/v1/accounts/update_credentials", %{source: %{privacy: "unlisted"}})
130
131 assert user_data = json_response_and_validate_schema(conn, 200)
132 assert user_data["source"]["privacy"] == "unlisted"
133 end
134
135 test "updates the user's hide_followers status", %{conn: conn} do
136 conn = patch(conn, "/api/v1/accounts/update_credentials", %{hide_followers: "true"})
137
138 assert user_data = json_response_and_validate_schema(conn, 200)
139 assert user_data["pleroma"]["hide_followers"] == true
140 end
141
142 test "updates the user's discoverable status", %{conn: conn} do
143 assert %{"source" => %{"pleroma" => %{"discoverable" => true}}} =
144 conn
145 |> patch("/api/v1/accounts/update_credentials", %{discoverable: "true"})
146 |> json_response_and_validate_schema(:ok)
147
148 assert %{"source" => %{"pleroma" => %{"discoverable" => false}}} =
149 conn
150 |> patch("/api/v1/accounts/update_credentials", %{discoverable: "false"})
151 |> json_response_and_validate_schema(:ok)
152 end
153
154 test "updates the user's hide_followers_count and hide_follows_count", %{conn: conn} do
155 conn =
156 patch(conn, "/api/v1/accounts/update_credentials", %{
157 hide_followers_count: "true",
158 hide_follows_count: "true"
159 })
160
161 assert user_data = json_response_and_validate_schema(conn, 200)
162 assert user_data["pleroma"]["hide_followers_count"] == true
163 assert user_data["pleroma"]["hide_follows_count"] == true
164 end
165
166 test "updates the user's skip_thread_containment option", %{user: user, conn: conn} do
167 response =
168 conn
169 |> patch("/api/v1/accounts/update_credentials", %{skip_thread_containment: "true"})
170 |> json_response_and_validate_schema(200)
171
172 assert response["pleroma"]["skip_thread_containment"] == true
173 assert refresh_record(user).skip_thread_containment
174 end
175
176 test "updates the user's hide_follows status", %{conn: conn} do
177 conn = patch(conn, "/api/v1/accounts/update_credentials", %{hide_follows: "true"})
178
179 assert user_data = json_response_and_validate_schema(conn, 200)
180 assert user_data["pleroma"]["hide_follows"] == true
181 end
182
183 test "updates the user's hide_favorites status", %{conn: conn} do
184 conn = patch(conn, "/api/v1/accounts/update_credentials", %{hide_favorites: "true"})
185
186 assert user_data = json_response_and_validate_schema(conn, 200)
187 assert user_data["pleroma"]["hide_favorites"] == true
188 end
189
190 test "updates the user's show_role status", %{conn: conn} do
191 conn = patch(conn, "/api/v1/accounts/update_credentials", %{show_role: "false"})
192
193 assert user_data = json_response_and_validate_schema(conn, 200)
194 assert user_data["source"]["pleroma"]["show_role"] == false
195 end
196
197 test "updates the user's no_rich_text status", %{conn: conn} do
198 conn = patch(conn, "/api/v1/accounts/update_credentials", %{no_rich_text: "true"})
199
200 assert user_data = json_response_and_validate_schema(conn, 200)
201 assert user_data["source"]["pleroma"]["no_rich_text"] == true
202 end
203
204 test "updates the user's name", %{conn: conn} do
205 conn =
206 patch(conn, "/api/v1/accounts/update_credentials", %{"display_name" => "markorepairs"})
207
208 assert user_data = json_response_and_validate_schema(conn, 200)
209 assert user_data["display_name"] == "markorepairs"
210 end
211
212 test "updates the user's avatar", %{user: user, conn: conn} do
213 new_avatar = %Plug.Upload{
214 content_type: "image/jpg",
215 path: Path.absname("test/fixtures/image.jpg"),
216 filename: "an_image.jpg"
217 }
218
219 res =
220 conn
221 |> patch("/api/v1/accounts/update_credentials", %{"avatar" => new_avatar})
222
223 assert user_response = json_response_and_validate_schema(res, 200)
224 assert user_response["avatar"] != User.avatar_url(user)
225
226 # Also removes it
227 res =
228 conn
229 |> patch("/api/v1/accounts/update_credentials", %{"avatar" => nil})
230
231 assert user_response = json_response_and_validate_schema(res, 200)
232 assert user_response["avatar"] == User.avatar_url(user)
233 end
234
235 test "updates the user's banner", %{user: user, conn: conn} do
236 new_header = %Plug.Upload{
237 content_type: "image/jpg",
238 path: Path.absname("test/fixtures/image.jpg"),
239 filename: "an_image.jpg"
240 }
241
242 res =
243 conn
244 |> patch("/api/v1/accounts/update_credentials", %{"header" => new_header})
245
246 assert user_response = json_response_and_validate_schema(res, 200)
247 assert user_response["header"] != User.banner_url(user)
248
249 # Also removes it
250
251 res =
252 conn
253 |> patch("/api/v1/accounts/update_credentials", %{"header" => nil})
254
255 assert user_response = json_response_and_validate_schema(res, 200)
256 assert user_response["header"] == User.banner_url(user)
257 end
258
259 test "updates the user's background", %{conn: conn} do
260 new_header = %Plug.Upload{
261 content_type: "image/jpg",
262 path: Path.absname("test/fixtures/image.jpg"),
263 filename: "an_image.jpg"
264 }
265
266 res =
267 conn
268 |> patch("/api/v1/accounts/update_credentials", %{
269 "pleroma_background_image" => new_header
270 })
271
272 assert user_response = json_response_and_validate_schema(res, 200)
273 assert user_response["pleroma"]["background_image"]
274
275 # Also removes it
276
277 res =
278 conn
279 |> patch("/api/v1/accounts/update_credentials", %{
280 "pleroma_background_image" => nil
281 })
282
283 assert user_response = json_response_and_validate_schema(res, 200)
284 refute user_response["pleroma"]["background_image"]
285 end
286
287 test "requires 'write:accounts' permission" do
288 token1 = insert(:oauth_token, scopes: ["read"])
289 token2 = insert(:oauth_token, scopes: ["write", "follow"])
290
291 for token <- [token1, token2] do
292 conn =
293 build_conn()
294 |> put_req_header("content-type", "multipart/form-data")
295 |> put_req_header("authorization", "Bearer #{token.token}")
296 |> patch("/api/v1/accounts/update_credentials", %{})
297
298 if token == token1 do
299 assert %{"error" => "Insufficient permissions: write:accounts."} ==
300 json_response_and_validate_schema(conn, 403)
301 else
302 assert json_response_and_validate_schema(conn, 200)
303 end
304 end
305 end
306
307 test "updates profile emojos", %{user: user, conn: conn} do
308 note = "*sips :blank:*"
309 name = "I am :firefox:"
310
311 ret_conn =
312 patch(conn, "/api/v1/accounts/update_credentials", %{
313 "note" => note,
314 "display_name" => name
315 })
316
317 assert json_response_and_validate_schema(ret_conn, 200)
318
319 conn = get(conn, "/api/v1/accounts/#{user.id}")
320
321 assert user_data = json_response_and_validate_schema(conn, 200)
322
323 assert user_data["note"] == note
324 assert user_data["display_name"] == name
325 assert [%{"shortcode" => "blank"}, %{"shortcode" => "firefox"}] = user_data["emojis"]
326 end
327
328 test "update fields", %{conn: conn} do
329 fields = [
330 %{"name" => "<a href=\"http://google.com\">foo</a>", "value" => "<script>bar</script>"},
331 %{"name" => "link.io", "value" => "cofe.io"}
332 ]
333
334 account_data =
335 conn
336 |> patch("/api/v1/accounts/update_credentials", %{"fields_attributes" => fields})
337 |> json_response_and_validate_schema(200)
338
339 assert account_data["fields"] == [
340 %{"name" => "<a href=\"http://google.com\">foo</a>", "value" => "bar"},
341 %{
342 "name" => "link.io",
343 "value" => ~S(<a href="http://cofe.io" rel="ugc">cofe.io</a>)
344 }
345 ]
346
347 assert account_data["source"]["fields"] == [
348 %{
349 "name" => "<a href=\"http://google.com\">foo</a>",
350 "value" => "<script>bar</script>"
351 },
352 %{"name" => "link.io", "value" => "cofe.io"}
353 ]
354 end
355
356 test "update fields via x-www-form-urlencoded", %{conn: conn} do
357 fields =
358 [
359 "fields_attributes[1][name]=link",
360 "fields_attributes[1][value]=http://cofe.io",
361 "fields_attributes[0][name]=foo",
362 "fields_attributes[0][value]=bar"
363 ]
364 |> Enum.join("&")
365
366 account =
367 conn
368 |> put_req_header("content-type", "application/x-www-form-urlencoded")
369 |> patch("/api/v1/accounts/update_credentials", fields)
370 |> json_response_and_validate_schema(200)
371
372 assert account["fields"] == [
373 %{"name" => "foo", "value" => "bar"},
374 %{
375 "name" => "link",
376 "value" => ~S(<a href="http://cofe.io" rel="ugc">http://cofe.io</a>)
377 }
378 ]
379
380 assert account["source"]["fields"] == [
381 %{"name" => "foo", "value" => "bar"},
382 %{"name" => "link", "value" => "http://cofe.io"}
383 ]
384 end
385
386 test "update fields with empty name", %{conn: conn} do
387 fields = [
388 %{"name" => "foo", "value" => ""},
389 %{"name" => "", "value" => "bar"}
390 ]
391
392 account =
393 conn
394 |> patch("/api/v1/accounts/update_credentials", %{"fields_attributes" => fields})
395 |> json_response_and_validate_schema(200)
396
397 assert account["fields"] == [
398 %{"name" => "foo", "value" => ""}
399 ]
400 end
401
402 test "update fields when invalid request", %{conn: conn} do
403 name_limit = Pleroma.Config.get([:instance, :account_field_name_length])
404 value_limit = Pleroma.Config.get([:instance, :account_field_value_length])
405
406 long_name = Enum.map(0..name_limit, fn _ -> "x" end) |> Enum.join()
407 long_value = Enum.map(0..value_limit, fn _ -> "x" end) |> Enum.join()
408
409 fields = [%{"name" => "foo", "value" => long_value}]
410
411 assert %{"error" => "Invalid request"} ==
412 conn
413 |> patch("/api/v1/accounts/update_credentials", %{"fields_attributes" => fields})
414 |> json_response_and_validate_schema(403)
415
416 fields = [%{"name" => long_name, "value" => "bar"}]
417
418 assert %{"error" => "Invalid request"} ==
419 conn
420 |> patch("/api/v1/accounts/update_credentials", %{"fields_attributes" => fields})
421 |> json_response_and_validate_schema(403)
422
423 Pleroma.Config.put([:instance, :max_account_fields], 1)
424
425 fields = [
426 %{"name" => "foo", "value" => "bar"},
427 %{"name" => "link", "value" => "cofe.io"}
428 ]
429
430 assert %{"error" => "Invalid request"} ==
431 conn
432 |> patch("/api/v1/accounts/update_credentials", %{"fields_attributes" => fields})
433 |> json_response_and_validate_schema(403)
434 end
435 end
436
437 describe "Mark account as bot" do
438 setup do: oauth_access(["write:accounts"])
439 setup :request_content_type
440
441 test "changing actor_type to Service makes account a bot", %{conn: conn} do
442 account =
443 conn
444 |> patch("/api/v1/accounts/update_credentials", %{actor_type: "Service"})
445 |> json_response_and_validate_schema(200)
446
447 assert account["bot"]
448 assert account["source"]["pleroma"]["actor_type"] == "Service"
449 end
450
451 test "changing actor_type to Person makes account a human", %{conn: conn} do
452 account =
453 conn
454 |> patch("/api/v1/accounts/update_credentials", %{actor_type: "Person"})
455 |> json_response_and_validate_schema(200)
456
457 refute account["bot"]
458 assert account["source"]["pleroma"]["actor_type"] == "Person"
459 end
460
461 test "changing actor_type to Application causes error", %{conn: conn} do
462 response =
463 conn
464 |> patch("/api/v1/accounts/update_credentials", %{actor_type: "Application"})
465 |> json_response_and_validate_schema(403)
466
467 assert %{"error" => "Invalid request"} == response
468 end
469
470 test "changing bot field to true changes actor_type to Service", %{conn: conn} do
471 account =
472 conn
473 |> patch("/api/v1/accounts/update_credentials", %{bot: "true"})
474 |> json_response_and_validate_schema(200)
475
476 assert account["bot"]
477 assert account["source"]["pleroma"]["actor_type"] == "Service"
478 end
479
480 test "changing bot field to false changes actor_type to Person", %{conn: conn} do
481 account =
482 conn
483 |> patch("/api/v1/accounts/update_credentials", %{bot: "false"})
484 |> json_response_and_validate_schema(200)
485
486 refute account["bot"]
487 assert account["source"]["pleroma"]["actor_type"] == "Person"
488 end
489
490 test "actor_type field has a higher priority than bot", %{conn: conn} do
491 account =
492 conn
493 |> patch("/api/v1/accounts/update_credentials", %{
494 actor_type: "Person",
495 bot: "true"
496 })
497 |> json_response_and_validate_schema(200)
498
499 refute account["bot"]
500 assert account["source"]["pleroma"]["actor_type"] == "Person"
501 end
502 end
503 end
Fork of https://akkoma.dev/AkkomaGang/akkoma.git