Fix user updates

User updates broke with the migration to separate signing keys since user data carries signing keys but we didn't allow the association data to be updated.
2025-01-11 21:25:00 +01:00 · 2025-01-11 21:25:00 +01:00 · 3460f41776
commit 3460f41776
parent cc5c1bb10c
2 changed files with 53 additions and 1 deletions
--- a/lib/pleroma/user.ex
+++ b/lib/pleroma/user.ex
@ -222,7 +222,9 @@ defmodule Pleroma.User do

    # FOR THE FUTURE: We might want to make this a one-to-many relationship
    # it's entirely possible right now, but we don't have a use case for it
-    has_one(:signing_key, SigningKey, foreign_key: :user_id)
+    # XXX: in the future we’d also like to parse and honour key expiration times
+    #      instead of blindly accepting any change in signing keys
+    has_one(:signing_key, SigningKey, foreign_key: :user_id, on_replace: :update)

    timestamps()
  end
--- a/test/pleroma/user_test.exs
+++ b/test/pleroma/user_test.exs
@ -2232,6 +2232,56 @@ test "removes report notifs when user isn't superuser any more" do
      # is not a superuser any more
      assert [] = Notification.for_user(user)
    end
+
+    test "updates public key pem" do
+      # note: in the future key updates might be limited to announced expirations
+      user_org =
+        insert(:user, local: false)
+        |> with_signing_key()
+
+      old_pub = user_org.signing_key.public_key
+      new_pub = "BEGIN RSA public key"
+      refute old_pub == new_pub
+
+      {:ok, %User{} = user} =
+        User.update_and_set_cache(user_org, %{signing_key: %{public_key: new_pub}})
+
+      user = SigningKey.load_key(user)
+
+      assert user.signing_key.public_key == new_pub
+    end
+
+    test "updates public key id if valid" do
+      # note: in the future key updates might be limited to announced expirations
+      user_org =
+        insert(:user, local: false)
+        |> with_signing_key()
+
+      old_kid = user_org.signing_key.key_id
+      new_kid = old_kid <> "_v2"
+
+      {:ok, %User{} = user} =
+        User.update_and_set_cache(user_org, %{signing_key: %{key_id: new_kid}})
+
+      user = SigningKey.load_key(user)
+
+      assert user.signing_key.key_id == new_kid
+      refute Repo.get_by(SigningKey, key_id: old_kid)
+    end
+
+    test "refuses to sever existing key-user mappings" do
+      user1 =
+        insert(:user, local: false)
+        |> with_signing_key()
+
+      user2 =
+        insert(:user, local: false)
+        |> with_signing_key()
+
+      assert_raise Ecto.ConstraintError, fn ->
+        User.update_and_set_cache(user2, %{signing_key: %{key_id: user1.signing_key.key_id}})
+      end
+    end
  end

  describe "following/followers synchronization" do