akkoma/test/web/media_proxy/media_proxy_controller_test.exs

# Pleroma: A lightweight social networking server
# Copyright © 2017-2020 Pleroma Authors <https://pleroma.social/>
# SPDX-License-Identifier: AGPL-3.0-only

defmodule Pleroma.Web.MediaProxy.MediaProxyControllerTest do
  use Pleroma.Web.ConnCase

  import Mock

  alias Pleroma.Web.MediaProxy
  alias Pleroma.Web.MediaProxy.MediaProxyController
  alias Plug.Conn

  setup do
    on_exit(fn -> Cachex.clear(:banned_urls_cache) end)
  end

  test "it returns 404 when MediaProxy disabled", %{conn: conn} do
    clear_config([:media_proxy, :enabled], false)

    assert %Conn{
             status: 404,
             resp_body: "Not Found"
           } = get(conn, "/proxy/hhgfh/eeeee")

    assert %Conn{
             status: 404,
             resp_body: "Not Found"
           } = get(conn, "/proxy/hhgfh/eeee/fff")
  end

  describe "" do
    setup do
      clear_config([:media_proxy, :enabled], true)
      clear_config([Pleroma.Web.Endpoint, :secret_key_base], "00000000000")
      [url: MediaProxy.encode_url("https://google.fn/test.png")]
    end

    test "it returns 403 for invalid signature", %{conn: conn, url: url} do
      Pleroma.Config.put([Pleroma.Web.Endpoint, :secret_key_base], "000")
      %{path: path} = URI.parse(url)

      assert %Conn{
               status: 403,
               resp_body: "Forbidden"
             } = get(conn, path)

      assert %Conn{
               status: 403,
               resp_body: "Forbidden"
             } = get(conn, "/proxy/hhgfh/eeee")

      assert %Conn{
               status: 403,
               resp_body: "Forbidden"
             } = get(conn, "/proxy/hhgfh/eeee/fff")
    end

    test "redirects on valid url when filename is invalidated", %{conn: conn, url: url} do
      invalid_url = String.replace(url, "test.png", "test-file.png")
      response = get(conn, invalid_url)
      assert response.status == 302
      assert redirected_to(response) == url
    end

    test "it performs ReverseProxy.call with valid signature", %{conn: conn, url: url} do
      with_mock Pleroma.ReverseProxy,
        call: fn _conn, _url, _opts -> %Conn{status: :success} end do
        assert %Conn{status: :success} = get(conn, url)
      end
    end

    test "it returns 404 when url is in banned_urls cache", %{conn: conn, url: url} do
      MediaProxy.put_in_banned_urls("https://google.fn/test.png")

      with_mock Pleroma.ReverseProxy,
        call: fn _conn, _url, _opts -> %Conn{status: :success} end do
        assert %Conn{status: 404, resp_body: "Not Found"} = get(conn, url)
      end
    end
  end

  describe "filename_matches/3" do
    test "preserves the encoded or decoded path" do
      assert MediaProxyController.filename_matches(
               %{"filename" => "/Hello world.jpg"},
               "/Hello world.jpg",
               "http://pleroma.social/Hello world.jpg"
             ) == :ok

      assert MediaProxyController.filename_matches(
               %{"filename" => "/Hello%20world.jpg"},
               "/Hello%20world.jpg",
               "http://pleroma.social/Hello%20world.jpg"
             ) == :ok

      assert MediaProxyController.filename_matches(
               %{"filename" => "/my%2Flong%2Furl%2F2019%2F07%2FS.jpg"},
               "/my%2Flong%2Furl%2F2019%2F07%2FS.jpg",
               "http://pleroma.social/my%2Flong%2Furl%2F2019%2F07%2FS.jpg"
             ) == :ok

      assert MediaProxyController.filename_matches(
               %{"filename" => "/my%2Flong%2Furl%2F2019%2F07%2FS.jp"},
               "/my%2Flong%2Furl%2F2019%2F07%2FS.jp",
               "http://pleroma.social/my%2Flong%2Furl%2F2019%2F07%2FS.jpg"
             ) == {:wrong_filename, "my%2Flong%2Furl%2F2019%2F07%2FS.jpg"}
    end

    test "encoded url are tried to match for proxy as `conn.request_path` encodes the url" do
      # conn.request_path will return encoded url
      request_path = "/ANALYSE-DAI-_-LE-STABLECOIN-100-D%C3%89CENTRALIS%C3%89-BQ.jpg"

      assert MediaProxyController.filename_matches(
               true,
               request_path,
               "https://mydomain.com/uploads/2019/07/ANALYSE-DAI-_-LE-STABLECOIN-100-DÉCENTRALISÉ-BQ.jpg"
             ) == :ok
    end
  end
end
added tests for Web.MediaProxy 2019-07-14 21:01:32 +00:00			`# Pleroma: A lightweight social networking server`
Bump copyright years of files changed after 2020-01-07 Done via the following command: git diff fcd5dd259a1700a045be902b43391b0d1bd58a5b --stat --name-only \| xargs sed -i '/Pleroma Authors/c# Copyright © 2017-2020 Pleroma Authors <https:\/\/pleroma.social\/>' 2020-03-02 05:08:45 +00:00			`# Copyright © 2017-2020 Pleroma Authors <https://pleroma.social/>`
added tests for Web.MediaProxy 2019-07-14 21:01:32 +00:00			`# SPDX-License-Identifier: AGPL-3.0-only`

			`defmodule Pleroma.Web.MediaProxy.MediaProxyControllerTest do`
			`use Pleroma.Web.ConnCase`
MediaProxy whitelist setting now supports hosts with scheme added deprecation warning about using bare domains 2020-07-11 07:36:36 +00:00
added tests for Web.MediaProxy 2019-07-14 21:01:32 +00:00			`import Mock`

MediaProxy whitelist setting now supports hosts with scheme added deprecation warning about using bare domains 2020-07-11 07:36:36 +00:00			`alias Pleroma.Web.MediaProxy`
			`alias Pleroma.Web.MediaProxy.MediaProxyController`
			`alias Plug.Conn`
added tests for Web.MediaProxy 2019-07-14 21:01:32 +00:00
fix invalidates media url's 2020-06-14 18:02:57 +00:00			`setup do`
Change references from "deleted_urls" to "banned_urls" as nothing is handled via media deletions anymore; all actions are manual operations by an admin to ban the url 2020-06-17 18:13:55 +00:00			`on_exit(fn -> Cachex.clear(:banned_urls_cache) end)`
fix invalidates media url's 2020-06-14 18:02:57 +00:00			`end`

added tests for Web.MediaProxy 2019-07-14 21:01:32 +00:00			`test "it returns 404 when MediaProxy disabled", %{conn: conn} do`
MediaProxy whitelist setting now supports hosts with scheme added deprecation warning about using bare domains 2020-07-11 07:36:36 +00:00			`clear_config([:media_proxy, :enabled], false)`
added tests for Web.MediaProxy 2019-07-14 21:01:32 +00:00
MediaProxy whitelist setting now supports hosts with scheme added deprecation warning about using bare domains 2020-07-11 07:36:36 +00:00			`assert %Conn{`
added tests for Web.MediaProxy 2019-07-14 21:01:32 +00:00			`status: 404,`
			`resp_body: "Not Found"`
			`} = get(conn, "/proxy/hhgfh/eeeee")`

MediaProxy whitelist setting now supports hosts with scheme added deprecation warning about using bare domains 2020-07-11 07:36:36 +00:00			`assert %Conn{`
added tests for Web.MediaProxy 2019-07-14 21:01:32 +00:00			`status: 404,`
			`resp_body: "Not Found"`
			`} = get(conn, "/proxy/hhgfh/eeee/fff")`
			`end`

MediaProxy whitelist setting now supports hosts with scheme added deprecation warning about using bare domains 2020-07-11 07:36:36 +00:00			`describe "" do`
			`setup do`
			`clear_config([:media_proxy, :enabled], true)`
			`clear_config([Pleroma.Web.Endpoint, :secret_key_base], "00000000000")`
			`[url: MediaProxy.encode_url("https://google.fn/test.png")]`
			`end`
added tests for Web.MediaProxy 2019-07-14 21:01:32 +00:00
MediaProxy whitelist setting now supports hosts with scheme added deprecation warning about using bare domains 2020-07-11 07:36:36 +00:00			`test "it returns 403 for invalid signature", %{conn: conn, url: url} do`
			`Pleroma.Config.put([Pleroma.Web.Endpoint, :secret_key_base], "000")`
			`%{path: path} = URI.parse(url)`

			`assert %Conn{`
			`status: 403,`
			`resp_body: "Forbidden"`
			`} = get(conn, path)`

			`assert %Conn{`
			`status: 403,`
			`resp_body: "Forbidden"`
			`} = get(conn, "/proxy/hhgfh/eeee")`

			`assert %Conn{`
			`status: 403,`
			`resp_body: "Forbidden"`
			`} = get(conn, "/proxy/hhgfh/eeee/fff")`
			`end`
added tests for Web.MediaProxy 2019-07-14 21:01:32 +00:00
MediaProxy whitelist setting now supports hosts with scheme added deprecation warning about using bare domains 2020-07-11 07:36:36 +00:00			`test "redirects on valid url when filename is invalidated", %{conn: conn, url: url} do`
			`invalid_url = String.replace(url, "test.png", "test-file.png")`
			`response = get(conn, invalid_url)`
			`assert response.status == 302`
			`assert redirected_to(response) == url`
			`end`
added tests for Web.MediaProxy 2019-07-14 21:01:32 +00:00
MediaProxy whitelist setting now supports hosts with scheme added deprecation warning about using bare domains 2020-07-11 07:36:36 +00:00			`test "it performs ReverseProxy.call with valid signature", %{conn: conn, url: url} do`
			`with_mock Pleroma.ReverseProxy,`
			`call: fn _conn, _url, _opts -> %Conn{status: :success} end do`
			`assert %Conn{status: :success} = get(conn, url)`
			`end`
			`end`

			`test "it returns 404 when url is in banned_urls cache", %{conn: conn, url: url} do`
			`MediaProxy.put_in_banned_urls("https://google.fn/test.png")`

			`with_mock Pleroma.ReverseProxy,`
			`call: fn _conn, _url, _opts -> %Conn{status: :success} end do`
			`assert %Conn{status: 404, resp_body: "Not Found"} = get(conn, url)`
			`end`
added tests for Web.MediaProxy 2019-07-14 21:01:32 +00:00			`end`
			`end`
fix invalidates media url's 2020-06-14 18:02:57 +00:00
MediaProxy whitelist setting now supports hosts with scheme added deprecation warning about using bare domains 2020-07-11 07:36:36 +00:00			`describe "filename_matches/3" do`
			`test "preserves the encoded or decoded path" do`
			`assert MediaProxyController.filename_matches(`
			`%{"filename" => "/Hello world.jpg"},`
			`"/Hello world.jpg",`
			`"http://pleroma.social/Hello world.jpg"`
			`) == :ok`

			`assert MediaProxyController.filename_matches(`
			`%{"filename" => "/Hello%20world.jpg"},`
			`"/Hello%20world.jpg",`
			`"http://pleroma.social/Hello%20world.jpg"`
			`) == :ok`

			`assert MediaProxyController.filename_matches(`
			`%{"filename" => "/my%2Flong%2Furl%2F2019%2F07%2FS.jpg"},`
			`"/my%2Flong%2Furl%2F2019%2F07%2FS.jpg",`
			`"http://pleroma.social/my%2Flong%2Furl%2F2019%2F07%2FS.jpg"`
			`) == :ok`

			`assert MediaProxyController.filename_matches(`
			`%{"filename" => "/my%2Flong%2Furl%2F2019%2F07%2FS.jp"},`
			`"/my%2Flong%2Furl%2F2019%2F07%2FS.jp",`
			`"http://pleroma.social/my%2Flong%2Furl%2F2019%2F07%2FS.jpg"`
			`) == {:wrong_filename, "my%2Flong%2Furl%2F2019%2F07%2FS.jpg"}`
			`end`

			test "encoded url are tried to match for proxy as `conn.request_path` encodes the url" do
			`# conn.request_path will return encoded url`
			`request_path = "/ANALYSE-DAI-_-LE-STABLECOIN-100-D%C3%89CENTRALIS%C3%89-BQ.jpg"`
fix invalidates media url's 2020-06-14 18:02:57 +00:00
MediaProxy whitelist setting now supports hosts with scheme added deprecation warning about using bare domains 2020-07-11 07:36:36 +00:00			`assert MediaProxyController.filename_matches(`
			`true,`
			`request_path,`
			`"https://mydomain.com/uploads/2019/07/ANALYSE-DAI-_-LE-STABLECOIN-100-DÉCENTRALISÉ-BQ.jpg"`
			`) == :ok`
fix invalidates media url's 2020-06-14 18:02:57 +00:00			`end`
			`end`
added tests for Web.MediaProxy 2019-07-14 21:01:32 +00:00			`end`