Merge branch 'develop' of https://git.pleroma.social/pleroma/pleroma into develop

2019-07-22 09:22:18 +01:00 · 2019-07-22 09:22:18 +01:00 · 3b5aba6f91
parent d564e780db 7271b2a954
commit 3b5aba6f91
10 changed files with 251 additions and 57 deletions
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@ -19,6 +19,7 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/).
 - Mastodon API: Handling of search timeouts (`/api/v1/search` and `/api/v2/search`)
 - Mastodon API: Embedded relationships not being properly rendered in the Account entity of Status entity
 - Mastodon API: Add `account_id`, `type`, `offset`, and `limit` to search API (`/api/v1/search` and `/api/v2/search`)
 - Mastodon API, streaming: Fix filtering of notifications based on blocks/mutes/thread mutes
 - ActivityPub C2S: follower/following collection pages being inaccessible even when authentifucated if `hide_followers`/ `hide_follows` was set
 - Existing user id not being preserved on insert conflict
 - Rich Media: Parser failing when no TTL can be found by image TTL setters
--- a/lib/pleroma/user_invite_token.ex
+++ b/lib/pleroma/user_invite_token.ex
@ -74,7 +74,7 @@ defmodule Pleroma.UserInviteToken do
  @spec find_by_token(token()) :: {:ok, UserInviteToken.t()} | nil
  def find_by_token(token) do
-    with invite <- Repo.get_by(UserInviteToken, token: token) do
+    with %UserInviteToken{} = invite <- Repo.get_by(UserInviteToken, token: token) do
      {:ok, invite}
    end
  end
--- a/lib/pleroma/web/admin_api/admin_api_controller.ex
+++ b/lib/pleroma/web/admin_api/admin_api_controller.ex
@ -272,11 +272,13 @@ defmodule Pleroma.Web.AdminAPI.AdminAPIController do
  @doc "Revokes invite by token"
  def revoke_invite(conn, %{"token" => token}) do
-    invite = UserInviteToken.find_by_token!(token)
+    with {:ok, invite} <- UserInviteToken.find_by_token(token),
-    {:ok, updated_invite} = UserInviteToken.update_invite(invite, %{used: true})
+         {:ok, updated_invite} = UserInviteToken.update_invite(invite, %{used: true}) do
-
+      conn
-    conn
+      |> json(AccountView.render("invite.json", %{invite: updated_invite}))
-    |> json(AccountView.render("invite.json", %{invite: updated_invite}))
+    else
      nil -> {:error, :not_found}
    end
  end
  @doc "Get a password reset token (base64 string) for given nickname"
--- a/lib/pleroma/web/mastodon_api/mastodon_api_controller.ex
+++ b/lib/pleroma/web/mastodon_api/mastodon_api_controller.ex
@ -883,7 +883,10 @@ defmodule Pleroma.Web.MastodonAPI.MastodonAPIController do
    with %Activity{data: %{"object" => object}} <- Activity.get_by_id(id),
         %Object{data: %{"likes" => likes}} <- Object.normalize(object) do
      q = from(u in User, where: u.ap_id in ^likes)
-      users = Repo.all(q)
+
      users =
        Repo.all(q)
        |> Enum.filter(&(not User.blocks?(user, &1)))
      conn
      |> put_view(AccountView)
@ -897,7 +900,10 @@ defmodule Pleroma.Web.MastodonAPI.MastodonAPIController do
    with %Activity{data: %{"object" => object}} <- Activity.get_by_id(id),
         %Object{data: %{"announcements" => announces}} <- Object.normalize(object) do
      q = from(u in User, where: u.ap_id in ^announces)
-      users = Repo.all(q)
+
      users =
        Repo.all(q)
        |> Enum.filter(&(not User.blocks?(user, &1)))
      conn
      |> put_view(AccountView)
--- a/lib/pleroma/web/streamer.ex
+++ b/lib/pleroma/web/streamer.ex
@ -13,6 +13,7 @@ defmodule Pleroma.Web.Streamer do
  alias Pleroma.User
  alias Pleroma.Web.ActivityPub.ActivityPub
  alias Pleroma.Web.ActivityPub.Visibility
  alias Pleroma.Web.CommonAPI
  alias Pleroma.Web.MastodonAPI.NotificationView
  @keepalive_interval :timer.seconds(30)
@ -118,10 +119,14 @@ defmodule Pleroma.Web.Streamer do
    topics
    |> Map.get("#{topic}:#{item.user_id}", [])
    |> Enum.each(fn socket ->
-      send(
+      with %User{} = user <- User.get_cached_by_ap_id(socket.assigns[:user].ap_id),
-        socket.transport_pid,
+           true <- should_send?(user, item),
-        {:text, represent_notification(socket.assigns[:user], item)}
+           false <- CommonAPI.thread_muted?(user, item.activity) do
-      )
+        send(
          socket.transport_pid,
          {:text, represent_notification(socket.assigns[:user], item)}
        )
      end
    end)
    {:noreply, topics}
@ -225,19 +230,32 @@ defmodule Pleroma.Web.Streamer do
    |> Jason.encode!()
  end
  defp should_send?(%User{} = user, %Activity{} = item) do
    blocks = user.info.blocks || []
    mutes = user.info.mutes || []
    reblog_mutes = user.info.muted_reblogs || []
    with parent when not is_nil(parent) <- Object.normalize(item),
         true <- Enum.all?([blocks, mutes, reblog_mutes], &(item.actor not in &1)),
         true <- Enum.all?([blocks, mutes], &(parent.data["actor"] not in &1)),
         true <- thread_containment(item, user) do
      true
    else
      _ -> false
    end
  end
  defp should_send?(%User{} = user, %Notification{activity: activity}) do
    should_send?(user, activity)
  end
  def push_to_socket(topics, topic, %Activity{data: %{"type" => "Announce"}} = item) do
    Enum.each(topics[topic] || [], fn socket ->
      # Get the current user so we have up-to-date blocks etc.
      if socket.assigns[:user] do
        user = User.get_cached_by_ap_id(socket.assigns[:user].ap_id)
        blocks = user.info.blocks || []
        mutes = user.info.mutes || []
        reblog_mutes = user.info.muted_reblogs || []
-        with parent when not is_nil(parent) <- Object.normalize(item),
+        if should_send?(user, item) do
             true <- Enum.all?([blocks, mutes, reblog_mutes], &(item.actor not in &1)),
             true <- Enum.all?([blocks, mutes], &(parent.data["actor"] not in &1)),
             true <- thread_containment(item, user) do
          send(socket.transport_pid, {:text, represent_update(item, user)})
        end
      else
--- a/test/tasks/user_test.exs
+++ b/test/tasks/user_test.exs
@ -5,6 +5,9 @@
 defmodule Mix.Tasks.Pleroma.UserTest do
  alias Pleroma.Repo
  alias Pleroma.User
  alias Pleroma.Web.OAuth.Authorization
  alias Pleroma.Web.OAuth.Token
  use Pleroma.DataCase
  import Pleroma.Factory
@ -327,6 +330,13 @@ defmodule Mix.Tasks.Pleroma.UserTest do
      assert_received {:mix_shell, :info, [message]}
      assert message =~ "Invite for token #{invite.token} was revoked."
    end
    test "it prints an error message when invite is not exist" do
      Mix.Tasks.Pleroma.User.run(["revoke_invite", "foo"])
      assert_received {:mix_shell, :error, [message]}
      assert message =~ "No invite found"
    end
  end
  describe "running delete_activities" do
@ -337,6 +347,13 @@ defmodule Mix.Tasks.Pleroma.UserTest do
      assert_received {:mix_shell, :info, [message]}
      assert message == "User #{nickname} statuses deleted."
    end
    test "it prints an error message when user is not exist" do
      Mix.Tasks.Pleroma.User.run(["delete_activities", "foo"])
      assert_received {:mix_shell, :error, [message]}
      assert message =~ "No local user"
    end
  end
  describe "running toggle_confirmed" do
@ -364,6 +381,13 @@ defmodule Mix.Tasks.Pleroma.UserTest do
      refute user.info.confirmation_pending
      refute user.info.confirmation_token
    end
    test "it prints an error message when user is not exist" do
      Mix.Tasks.Pleroma.User.run(["toggle_confirmed", "foo"])
      assert_received {:mix_shell, :error, [message]}
      assert message =~ "No local user"
    end
  end
  describe "search" do
@ -386,4 +410,64 @@ defmodule Mix.Tasks.Pleroma.UserTest do
               User.Search.search("moon fediverse", for_user: user) |> Enum.map(& &1.id)
    end
  end
  describe "signing out" do
    test "it deletes all user's tokens and authorizations" do
      user = insert(:user)
      insert(:oauth_token, user: user)
      insert(:oauth_authorization, user: user)
      assert Repo.get_by(Token, user_id: user.id)
      assert Repo.get_by(Authorization, user_id: user.id)
      :ok = Mix.Tasks.Pleroma.User.run(["sign_out", user.nickname])
      refute Repo.get_by(Token, user_id: user.id)
      refute Repo.get_by(Authorization, user_id: user.id)
    end
    test "it prints an error message when user is not exist" do
      Mix.Tasks.Pleroma.User.run(["sign_out", "foo"])
      assert_received {:mix_shell, :error, [message]}
      assert message =~ "No local user"
    end
  end
  describe "tagging" do
    test "it add tags to a user" do
      user = insert(:user)
      :ok = Mix.Tasks.Pleroma.User.run(["tag", user.nickname, "pleroma"])
      user = User.get_cached_by_nickname(user.nickname)
      assert "pleroma" in user.tags
    end
    test "it prints an error message when user is not exist" do
      Mix.Tasks.Pleroma.User.run(["tag", "foo"])
      assert_received {:mix_shell, :error, [message]}
      assert message =~ "Could not change user tags"
    end
  end
  describe "untagging" do
    test "it deletes tags from a user" do
      user = insert(:user, tags: ["pleroma"])
      assert "pleroma" in user.tags
      :ok = Mix.Tasks.Pleroma.User.run(["untag", user.nickname, "pleroma"])
      user = User.get_cached_by_nickname(user.nickname)
      assert Enum.empty?(user.tags)
    end
    test "it prints an error message when user is not exist" do
      Mix.Tasks.Pleroma.User.run(["untag", "foo"])
      assert_received {:mix_shell, :error, [message]}
      assert message =~ "Could not change user tags"
    end
  end
 end
--- a/test/web/admin_api/admin_api_controller_test.exs
+++ b/test/web/admin_api/admin_api_controller_test.exs
@ -1010,6 +1010,17 @@ defmodule Pleroma.Web.AdminAPI.AdminAPIControllerTest do
               "uses" => 0
             }
    end
    test "with invalid token" do
      admin = insert(:user, info: %{is_admin: true})
      conn =
        build_conn()
        |> assign(:user, admin)
        |> post("/api/pleroma/admin/users/revoke_invite", %{"token" => "foo"})
      assert json_response(conn, :not_found) == "Not found"
    end
  end
  describe "GET /api/pleroma/admin/reports/:id" do
--- a/test/web/mastodon_api/mastodon_api_controller_test.exs
+++ b/test/web/mastodon_api/mastodon_api_controller_test.exs
@ -3768,6 +3768,24 @@ defmodule Pleroma.Web.MastodonAPI.MastodonAPIControllerTest do
      assert Enum.empty?(response)
    end
    test "does not return users who have favorited the status but are blocked", %{
      conn: %{assigns: %{user: user}} = conn,
      activity: activity
    } do
      other_user = insert(:user)
      {:ok, user} = User.block(user, other_user)
      {:ok, _, _} = CommonAPI.favorite(activity.id, other_user)
      response =
        conn
        |> assign(:user, user)
        |> get("/api/v1/statuses/#{activity.id}/favourited_by")
        |> json_response(:ok)
      assert Enum.empty?(response)
    end
  end
  describe "GET /api/v1/statuses/:id/reblogged_by" do
@ -3807,6 +3825,24 @@ defmodule Pleroma.Web.MastodonAPI.MastodonAPIControllerTest do
      assert Enum.empty?(response)
    end
    test "does not return users who have reblogged the status but are blocked", %{
      conn: %{assigns: %{user: user}} = conn,
      activity: activity
    } do
      other_user = insert(:user)
      {:ok, user} = User.block(user, other_user)
      {:ok, _, _} = CommonAPI.repeat(activity.id, other_user)
      response =
        conn
        |> assign(:user, user)
        |> get("/api/v1/statuses/#{activity.id}/reblogged_by")
        |> json_response(:ok)
      assert Enum.empty?(response)
    end
  end
  describe "POST /auth/password, with valid parameters" do
--- a/test/web/oauth/oauth_controller_test.exs
+++ b/test/web/oauth/oauth_controller_test.exs
@ -5,9 +5,7 @@
 defmodule Pleroma.Web.OAuth.OAuthControllerTest do
  use Pleroma.Web.ConnCase
  import Pleroma.Factory
  import Mock
  alias Pleroma.Registration
  alias Pleroma.Repo
  alias Pleroma.Web.OAuth.Authorization
  alias Pleroma.Web.OAuth.OAuthController
@ -108,28 +106,26 @@ defmodule Pleroma.Web.OAuth.OAuthControllerTest do
        "state" => ""
      }
-      with_mock Pleroma.Web.Auth.Authenticator,
+      conn =
-        get_registration: fn _ -> {:ok, registration} end do
+        conn
-        conn =
+        |> assign(:ueberauth_auth, %{provider: registration.provider, uid: registration.uid})
-          get(
+        |> get(
-            conn,
+          "/oauth/twitter/callback",
-            "/oauth/twitter/callback",
+          %{
-            %{
+            "oauth_token" => "G-5a3AAAAAAAwMH9AAABaektfSM",
-              "oauth_token" => "G-5a3AAAAAAAwMH9AAABaektfSM",
+            "oauth_verifier" => "QZl8vUqNvXMTKpdmUnGejJxuHG75WWWs",
-              "oauth_verifier" => "QZl8vUqNvXMTKpdmUnGejJxuHG75WWWs",
+            "provider" => "twitter",
-              "provider" => "twitter",
+            "state" => Poison.encode!(state_params)
-              "state" => Poison.encode!(state_params)
+          }
-            }
+        )
          )
-        assert response = html_response(conn, 302)
+      assert response = html_response(conn, 302)
-        assert redirected_to(conn) =~ ~r/#{redirect_uri}\?code=.+/
+      assert redirected_to(conn) =~ ~r/#{redirect_uri}\?code=.+/
      end
    end
    test "with user-unbound registration, GET /oauth/<provider>/callback renders registration_details page",
         %{app: app, conn: conn} do
-      registration = insert(:registration, user: nil)
+      user = insert(:user)
      state_params = %{
        "scope" => "read write",
@ -138,26 +134,28 @@ defmodule Pleroma.Web.OAuth.OAuthControllerTest do
        "state" => "a_state"
      }
-      with_mock Pleroma.Web.Auth.Authenticator,
+      conn =
-        get_registration: fn _ -> {:ok, registration} end do
+        conn
-        conn =
+        |> assign(:ueberauth_auth, %{
-          get(
+          provider: "twitter",
-            conn,
+          uid: "171799000",
-            "/oauth/twitter/callback",
+          info: %{nickname: user.nickname, email: user.email, name: user.name, description: nil}
-            %{
+        })
-              "oauth_token" => "G-5a3AAAAAAAwMH9AAABaektfSM",
+        |> get(
-              "oauth_verifier" => "QZl8vUqNvXMTKpdmUnGejJxuHG75WWWs",
+          "/oauth/twitter/callback",
-              "provider" => "twitter",
+          %{
-              "state" => Poison.encode!(state_params)
+            "oauth_token" => "G-5a3AAAAAAAwMH9AAABaektfSM",
-            }
+            "oauth_verifier" => "QZl8vUqNvXMTKpdmUnGejJxuHG75WWWs",
-          )
+            "provider" => "twitter",
            "state" => Poison.encode!(state_params)
          }
        )
-        assert response = html_response(conn, 200)
+      assert response = html_response(conn, 200)
-        assert response =~ ~r/name="op" type="submit" value="register"/
+      assert response =~ ~r/name="op" type="submit" value="register"/
-        assert response =~ ~r/name="op" type="submit" value="connect"/
+      assert response =~ ~r/name="op" type="submit" value="connect"/
-        assert response =~ Registration.email(registration)
+      assert response =~ user.email
-        assert response =~ Registration.nickname(registration)
+      assert response =~ user.nickname
      end
    end
    test "on authentication error, GET /oauth/<provider>/callback redirects to `redirect_uri`", %{
--- a/test/web/streamer_test.exs
+++ b/test/web/streamer_test.exs
@ -65,6 +65,44 @@ defmodule Pleroma.Web.StreamerTest do
      Streamer.stream("user:notification", notify)
      Task.await(task)
    end
    test "it doesn't send notify to the 'user:notification' stream when a user is blocked", %{
      user: user
    } do
      blocked = insert(:user)
      {:ok, user} = User.block(user, blocked)
      task = Task.async(fn -> refute_receive {:text, _}, 4_000 end)
      Streamer.add_socket(
        "user:notification",
        %{transport_pid: task.pid, assigns: %{user: user}}
      )
      {:ok, activity} = CommonAPI.post(user, %{"status" => ":("})
      {:ok, notif, _} = CommonAPI.favorite(activity.id, blocked)
      Streamer.stream("user:notification", notif)
      Task.await(task)
    end
    test "it doesn't send notify to the 'user:notification' stream when a thread is muted", %{
      user: user
    } do
      user2 = insert(:user)
      task = Task.async(fn -> refute_receive {:text, _}, 4_000 end)
      Streamer.add_socket(
        "user:notification",
        %{transport_pid: task.pid, assigns: %{user: user}}
      )
      {:ok, activity} = CommonAPI.post(user, %{"status" => "super hot take"})
      {:ok, activity} = CommonAPI.add_mute(user, activity)
      {:ok, notif, _} = CommonAPI.favorite(activity.id, user2)
      Streamer.stream("user:notification", notif)
      Task.await(task)
    end
  end
  test "it sends to public" do