| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263 |
- # frozen_string_literal: true
- require 'rails_helper'
- RSpec.describe ActivityPub::ProcessAccountService do
- subject { described_class.new }
- context 'with property values, an avatar, and a profile header' do
- let(:payload) do
- {
- id: 'https://foo.test',
- type: 'Actor',
- inbox: 'https://foo.test/inbox',
- attachment: [
- { type: 'PropertyValue', name: 'Pronouns', value: 'They/them' },
- { type: 'PropertyValue', name: 'Occupation', value: 'Unit test' },
- { type: 'PropertyValue', name: 'non-string', value: %w(foo bar) },
- ],
- image: {
- type: 'Image',
- mediaType: 'image/png',
- url: 'https://foo.test/image.png',
- },
- icon: {
- type: 'Image',
- url: [
- {
- mediaType: 'image/png',
- href: 'https://foo.test/icon.png',
- },
- ],
- },
- }.with_indifferent_access
- end
- before do
- stub_request(:get, 'https://foo.test/image.png').to_return(request_fixture('avatar.txt'))
- stub_request(:get, 'https://foo.test/icon.png').to_return(request_fixture('avatar.txt'))
- end
- it 'parses property values, avatar and profile header as expected' do
- account = subject.call('alice', 'example.com', payload)
- expect(account.fields)
- .to be_an(Array)
- .and have_attributes(size: 2)
- expect(account.fields.first)
- .to be_an(Account::Field)
- .and have_attributes(
- name: eq('Pronouns'),
- value: eq('They/them')
- )
- expect(account.fields.last)
- .to be_an(Account::Field)
- .and have_attributes(
- name: eq('Occupation'),
- value: eq('Unit test')
- )
- expect(account).to have_attributes(
- avatar_remote_url: 'https://foo.test/icon.png',
- header_remote_url: 'https://foo.test/image.png'
- )
- end
- end
- context 'with attribution domains' do
- let(:payload) do
- {
- id: 'https://foo.test',
- type: 'Actor',
- inbox: 'https://foo.test/inbox',
- attributionDomains: [
- 'example.com',
- ],
- }.with_indifferent_access
- end
- it 'parses attribution domains' do
- account = subject.call('alice', 'example.com', payload)
- expect(account.attribution_domains)
- .to match_array(%w(example.com))
- end
- end
- context 'when account is not suspended' do
- subject { described_class.new.call(account.username, account.domain, payload) }
- let!(:account) { Fabricate(:account, username: 'alice', domain: 'example.com') }
- let(:payload) do
- {
- id: 'https://foo.test',
- type: 'Actor',
- inbox: 'https://foo.test/inbox',
- suspended: true,
- }.with_indifferent_access
- end
- before do
- allow(Admin::SuspensionWorker).to receive(:perform_async)
- end
- it 'suspends account remotely' do
- expect(subject.suspended?).to be true
- expect(subject.suspension_origin_remote?).to be true
- end
- it 'queues suspension worker' do
- subject
- expect(Admin::SuspensionWorker).to have_received(:perform_async)
- end
- end
- context 'when account is suspended' do
- subject { described_class.new.call('alice', 'example.com', payload) }
- let!(:account) { Fabricate(:account, username: 'alice', domain: 'example.com', display_name: '') }
- let(:payload) do
- {
- id: 'https://foo.test',
- type: 'Actor',
- inbox: 'https://foo.test/inbox',
- suspended: false,
- name: 'Hoge',
- }.with_indifferent_access
- end
- before do
- allow(Admin::UnsuspensionWorker).to receive(:perform_async)
- account.suspend!(origin: suspension_origin)
- end
- context 'when locally' do
- let(:suspension_origin) { :local }
- it 'does not unsuspend it' do
- expect(subject.suspended?).to be true
- end
- it 'does not update any attributes' do
- expect(subject.display_name).to_not eq 'Hoge'
- end
- end
- context 'when remotely' do
- let(:suspension_origin) { :remote }
- it 'unsuspends it' do
- expect(subject.suspended?).to be false
- end
- it 'queues unsuspension worker' do
- subject
- expect(Admin::UnsuspensionWorker).to have_received(:perform_async)
- end
- it 'updates attributes' do
- expect(subject.display_name).to eq 'Hoge'
- end
- end
- end
- context 'when discovering many subdomains in a short timeframe' do
- subject do
- 8.times do |i|
- domain = "test#{i}.testdomain.com"
- json = {
- id: "https://#{domain}/users/1",
- type: 'Actor',
- inbox: "https://#{domain}/inbox",
- }.with_indifferent_access
- described_class.new.call('alice', domain, json)
- end
- end
- before do
- stub_const 'ActivityPub::ProcessAccountService::SUBDOMAINS_RATELIMIT', 5
- end
- it 'creates accounts without exceeding rate limit' do
- expect { subject }
- .to create_some_remote_accounts
- .and create_fewer_than_rate_limit_accounts
- end
- end
- context 'when Accounts referencing other accounts' do
- let(:payload) do
- {
- '@context': ['https://www.w3.org/ns/activitystreams'],
- id: 'https://foo.test/users/1',
- type: 'Person',
- inbox: 'https://foo.test/inbox',
- featured: 'https://foo.test/users/1/featured',
- preferredUsername: 'user1',
- }.with_indifferent_access
- end
- before do
- stub_const 'ActivityPub::ProcessAccountService::DISCOVERIES_PER_REQUEST', 5
- 8.times do |i|
- actor_json = {
- '@context': ['https://www.w3.org/ns/activitystreams'],
- id: "https://foo.test/users/#{i}",
- type: 'Person',
- inbox: 'https://foo.test/inbox',
- featured: "https://foo.test/users/#{i}/featured",
- preferredUsername: "user#{i}",
- }.with_indifferent_access
- status_json = {
- '@context': ['https://www.w3.org/ns/activitystreams'],
- id: "https://foo.test/users/#{i}/status",
- attributedTo: "https://foo.test/users/#{i}",
- type: 'Note',
- content: "@user#{i + 1} test",
- tag: [
- {
- type: 'Mention',
- href: "https://foo.test/users/#{i + 1}",
- name: "@user#{i + 1}",
- },
- ],
- to: ['as:Public', "https://foo.test/users/#{i + 1}"],
- }.with_indifferent_access
- featured_json = {
- '@context': ['https://www.w3.org/ns/activitystreams'],
- id: "https://foo.test/users/#{i}/featured",
- type: 'OrderedCollection',
- totalItems: 1,
- orderedItems: [status_json],
- }.with_indifferent_access
- webfinger = {
- subject: "acct:user#{i}@foo.test",
- links: [{ rel: 'self', href: "https://foo.test/users/#{i}", type: 'application/activity+json' }],
- }.with_indifferent_access
- stub_request(:get, "https://foo.test/users/#{i}").to_return(status: 200, body: actor_json.to_json, headers: { 'Content-Type': 'application/activity+json' })
- stub_request(:get, "https://foo.test/users/#{i}/featured").to_return(status: 200, body: featured_json.to_json, headers: { 'Content-Type': 'application/activity+json' })
- stub_request(:get, "https://foo.test/users/#{i}/status").to_return(status: 200, body: status_json.to_json, headers: { 'Content-Type': 'application/activity+json' })
- stub_request(:get, "https://foo.test/.well-known/webfinger?resource=acct:user#{i}@foo.test").to_return(body: webfinger.to_json, headers: { 'Content-Type': 'application/jrd+json' })
- end
- end
- it 'creates accounts without exceeding rate limit', :inline_jobs do
- expect { subject.call('user1', 'foo.test', payload) }
- .to create_some_remote_accounts
- .and create_fewer_than_rate_limit_accounts
- end
- end
- private
- def create_some_remote_accounts
- change(Account.remote, :count).by_at_least(2)
- end
- def create_fewer_than_rate_limit_accounts
- change(Account.remote, :count).by_at_most(5)
- end
- end
|
