1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2018 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
5 defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
6 use Pleroma.Web.ConnCase
8 alias Pleroma.Web.ActivityPub.{UserView, ObjectView}
9 alias Pleroma.{Object, Repo, Activity, User, Instances}
12 Tesla.Mock.mock_global(fn env -> apply(HttpRequestMock, :request, [env]) end)
17 test "with the relay active, it returns the relay user", %{conn: conn} do
20 |> get(activity_pub_path(conn, :relay))
23 assert res["id"] =~ "/relay"
26 test "with the relay disabled, it returns 404", %{conn: conn} do
27 Pleroma.Config.put([:instance, :allow_relay], false)
30 |> get(activity_pub_path(conn, :relay))
34 Pleroma.Config.put([:instance, :allow_relay], true)
38 describe "/users/:nickname" do
39 test "it returns a json representation of the user", %{conn: conn} do
44 |> put_req_header("accept", "application/activity+json")
45 |> get("/users/#{user.nickname}")
47 user = Repo.get(User, user.id)
49 assert json_response(conn, 200) == UserView.render("user.json", %{user: user})
53 describe "/object/:uuid" do
54 test "it returns a json representation of the object", %{conn: conn} do
56 uuid = String.split(note.data["id"], "/") |> List.last()
60 |> put_req_header("accept", "application/activity+json")
61 |> get("/objects/#{uuid}")
63 assert json_response(conn, 200) == ObjectView.render("object.json", %{object: note})
66 test "it returns 404 for non-public messages", %{conn: conn} do
67 note = insert(:direct_note)
68 uuid = String.split(note.data["id"], "/") |> List.last()
72 |> put_req_header("accept", "application/activity+json")
73 |> get("/objects/#{uuid}")
75 assert json_response(conn, 404)
78 test "it returns 404 for tombstone objects", %{conn: conn} do
79 tombstone = insert(:tombstone)
80 uuid = String.split(tombstone.data["id"], "/") |> List.last()
84 |> put_req_header("accept", "application/activity+json")
85 |> get("/objects/#{uuid}")
87 assert json_response(conn, 404)
91 describe "/object/:uuid/likes" do
92 test "it returns the like activities in a collection", %{conn: conn} do
93 like = insert(:like_activity)
94 uuid = String.split(like.data["object"], "/") |> List.last()
98 |> put_req_header("accept", "application/activity+json")
99 |> get("/objects/#{uuid}/likes")
100 |> json_response(200)
102 assert List.first(result["first"]["orderedItems"])["id"] == like.data["id"]
106 describe "/activities/:uuid" do
107 test "it returns a json representation of the activity", %{conn: conn} do
108 activity = insert(:note_activity)
109 uuid = String.split(activity.data["id"], "/") |> List.last()
113 |> put_req_header("accept", "application/activity+json")
114 |> get("/activities/#{uuid}")
116 assert json_response(conn, 200) == ObjectView.render("object.json", %{object: activity})
119 test "it returns 404 for non-public activities", %{conn: conn} do
120 activity = insert(:direct_note_activity)
121 uuid = String.split(activity.data["id"], "/") |> List.last()
125 |> put_req_header("accept", "application/activity+json")
126 |> get("/activities/#{uuid}")
128 assert json_response(conn, 404)
133 test "it inserts an incoming activity into the database", %{conn: conn} do
134 data = File.read!("test/fixtures/mastodon-post-activity.json") |> Poison.decode!()
138 |> assign(:valid_signature, true)
139 |> put_req_header("content-type", "application/activity+json")
140 |> post("/inbox", data)
142 assert "ok" == json_response(conn, 200)
144 assert Activity.get_by_ap_id(data["id"])
147 test "it clears `unreachable` federation status of the sender", %{conn: conn} do
148 sender_url = "https://pleroma.soykaf.com"
149 Instances.set_unreachable(sender_url, Instances.reachability_datetime_threshold())
150 refute Instances.reachable?(sender_url)
152 data = File.read!("test/fixtures/mastodon-post-activity.json") |> Poison.decode!()
156 |> assign(:valid_signature, true)
157 |> put_req_header("content-type", "application/activity+json")
158 |> put_req_header("referer", sender_url)
159 |> post("/inbox", data)
161 assert "ok" == json_response(conn, 200)
162 assert Instances.reachable?(sender_url)
166 describe "/users/:nickname/inbox" do
167 test "it inserts an incoming activity into the database", %{conn: conn} do
171 File.read!("test/fixtures/mastodon-post-activity.json")
173 |> Map.put("bcc", [user.ap_id])
177 |> assign(:valid_signature, true)
178 |> put_req_header("content-type", "application/activity+json")
179 |> post("/users/#{user.nickname}/inbox", data)
181 assert "ok" == json_response(conn, 200)
183 assert Activity.get_by_ap_id(data["id"])
186 test "it rejects reads from other users", %{conn: conn} do
188 otheruser = insert(:user)
192 |> assign(:user, otheruser)
193 |> put_req_header("accept", "application/activity+json")
194 |> get("/users/#{user.nickname}/inbox")
196 assert json_response(conn, 403)
199 test "it returns a note activity in a collection", %{conn: conn} do
200 note_activity = insert(:direct_note_activity)
201 user = User.get_cached_by_ap_id(hd(note_activity.data["to"]))
205 |> assign(:user, user)
206 |> put_req_header("accept", "application/activity+json")
207 |> get("/users/#{user.nickname}/inbox")
209 assert response(conn, 200) =~ note_activity.data["object"]["content"]
212 test "it clears `unreachable` federation status of the sender", %{conn: conn} do
213 sender_host = "pleroma.soykaf.com"
214 Instances.set_unreachable(sender_host, Instances.reachability_datetime_threshold())
215 refute Instances.reachable?(sender_host)
220 File.read!("test/fixtures/mastodon-post-activity.json")
222 |> Map.put("bcc", [user.ap_id])
226 |> assign(:valid_signature, true)
227 |> put_req_header("content-type", "application/activity+json")
228 |> put_req_header("referer", "https://#{sender_host}")
229 |> post("/users/#{user.nickname}/inbox", data)
231 assert "ok" == json_response(conn, 200)
232 assert Instances.reachable?(sender_host)
236 describe "/users/:nickname/outbox" do
237 test "it returns a note activity in a collection", %{conn: conn} do
238 note_activity = insert(:note_activity)
239 user = User.get_cached_by_ap_id(note_activity.data["actor"])
243 |> put_req_header("accept", "application/activity+json")
244 |> get("/users/#{user.nickname}/outbox")
246 assert response(conn, 200) =~ note_activity.data["object"]["content"]
249 test "it returns an announce activity in a collection", %{conn: conn} do
250 announce_activity = insert(:announce_activity)
251 user = User.get_cached_by_ap_id(announce_activity.data["actor"])
255 |> put_req_header("accept", "application/activity+json")
256 |> get("/users/#{user.nickname}/outbox")
258 assert response(conn, 200) =~ announce_activity.data["object"]
261 test "it rejects posts from other users", %{conn: conn} do
262 data = File.read!("test/fixtures/activitypub-client-post-activity.json") |> Poison.decode!()
264 otheruser = insert(:user)
268 |> assign(:user, otheruser)
269 |> put_req_header("content-type", "application/activity+json")
270 |> post("/users/#{user.nickname}/outbox", data)
272 assert json_response(conn, 403)
275 test "it inserts an incoming create activity into the database", %{conn: conn} do
276 data = File.read!("test/fixtures/activitypub-client-post-activity.json") |> Poison.decode!()
281 |> assign(:user, user)
282 |> put_req_header("content-type", "application/activity+json")
283 |> post("/users/#{user.nickname}/outbox", data)
285 result = json_response(conn, 201)
286 assert Activity.get_by_ap_id(result["id"])
289 test "it rejects an incoming activity with bogus type", %{conn: conn} do
290 data = File.read!("test/fixtures/activitypub-client-post-activity.json") |> Poison.decode!()
295 |> Map.put("type", "BadType")
299 |> assign(:user, user)
300 |> put_req_header("content-type", "application/activity+json")
301 |> post("/users/#{user.nickname}/outbox", data)
303 assert json_response(conn, 400)
306 test "it erects a tombstone when receiving a delete activity", %{conn: conn} do
307 note_activity = insert(:note_activity)
308 user = User.get_cached_by_ap_id(note_activity.data["actor"])
313 id: note_activity.data["object"]["id"]
319 |> assign(:user, user)
320 |> put_req_header("content-type", "application/activity+json")
321 |> post("/users/#{user.nickname}/outbox", data)
323 result = json_response(conn, 201)
324 assert Activity.get_by_ap_id(result["id"])
326 object = Object.get_by_ap_id(note_activity.data["object"]["id"])
328 assert object.data["type"] == "Tombstone"
331 test "it rejects delete activity of object from other actor", %{conn: conn} do
332 note_activity = insert(:note_activity)
338 id: note_activity.data["object"]["id"]
344 |> assign(:user, user)
345 |> put_req_header("content-type", "application/activity+json")
346 |> post("/users/#{user.nickname}/outbox", data)
348 assert json_response(conn, 400)
351 test "it increases like count when receiving a like action", %{conn: conn} do
352 note_activity = insert(:note_activity)
353 user = User.get_cached_by_ap_id(note_activity.data["actor"])
358 id: note_activity.data["object"]["id"]
364 |> assign(:user, user)
365 |> put_req_header("content-type", "application/activity+json")
366 |> post("/users/#{user.nickname}/outbox", data)
368 result = json_response(conn, 201)
369 assert Activity.get_by_ap_id(result["id"])
371 object = Object.get_by_ap_id(note_activity.data["object"]["id"])
373 assert object.data["like_count"] == 1
377 describe "/users/:nickname/followers" do
378 test "it returns the followers in a collection", %{conn: conn} do
380 user_two = insert(:user)
381 User.follow(user, user_two)
385 |> get("/users/#{user_two.nickname}/followers")
386 |> json_response(200)
388 assert result["first"]["orderedItems"] == [user.ap_id]
391 test "it returns returns empty if the user has 'hide_network' set", %{conn: conn} do
393 user_two = insert(:user, %{info: %{hide_network: true}})
394 User.follow(user, user_two)
398 |> get("/users/#{user_two.nickname}/followers")
399 |> json_response(200)
401 assert result["first"]["orderedItems"] == []
402 assert result["totalItems"] == 1
405 test "it works for more than 10 users", %{conn: conn} do
408 Enum.each(1..15, fn _ ->
409 other_user = insert(:user)
410 User.follow(other_user, user)
415 |> get("/users/#{user.nickname}/followers")
416 |> json_response(200)
418 assert length(result["first"]["orderedItems"]) == 10
419 assert result["first"]["totalItems"] == 15
420 assert result["totalItems"] == 15
424 |> get("/users/#{user.nickname}/followers?page=2")
425 |> json_response(200)
427 assert length(result["orderedItems"]) == 5
428 assert result["totalItems"] == 15
432 describe "/users/:nickname/following" do
433 test "it returns the following in a collection", %{conn: conn} do
435 user_two = insert(:user)
436 User.follow(user, user_two)
440 |> get("/users/#{user.nickname}/following")
441 |> json_response(200)
443 assert result["first"]["orderedItems"] == [user_two.ap_id]
446 test "it returns returns empty if the user has 'hide_network' set", %{conn: conn} do
447 user = insert(:user, %{info: %{hide_network: true}})
448 user_two = insert(:user)
449 User.follow(user, user_two)
453 |> get("/users/#{user.nickname}/following")
454 |> json_response(200)
456 assert result["first"]["orderedItems"] == []
457 assert result["totalItems"] == 1
460 test "it works for more than 10 users", %{conn: conn} do
463 Enum.each(1..15, fn _ ->
464 user = Repo.get(User, user.id)
465 other_user = insert(:user)
466 User.follow(user, other_user)
471 |> get("/users/#{user.nickname}/following")
472 |> json_response(200)
474 assert length(result["first"]["orderedItems"]) == 10
475 assert result["first"]["totalItems"] == 15
476 assert result["totalItems"] == 15
480 |> get("/users/#{user.nickname}/following?page=2")
481 |> json_response(200)
483 assert length(result["orderedItems"]) == 5
484 assert result["totalItems"] == 15