Domovská stránka Prehľadávať Pomoc
Registrovať Prihlásiť sa
bida
/
bastodon
6
0
Fork 0
Súbory Issues 7 Pull requesty 0 Wiki
Strom: 53028af10e
Branche Tagy
bastodon
/
spec
/
models
/
user_spec.rb

user_spec.rb 12 KB
História Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412 
  1. require 'rails_helper'
    2. 

  2. require 'devise_two_factor/spec_helpers'
    3. 

  3. 

  4. RSpec.describe User, type: :model do
    5. 

  5.   it_behaves_like 'two_factor_backupable'
    6. 

  6. 

  7.   describe 'otp_secret' do
    8. 

  8.     it 'is encrypted with OTP_SECRET environment variable' do
    9. 

  9.       user = Fabricate(:user,
    10. 

  10.                        encrypted_otp_secret: "Fttsy7QAa0edaDfdfSz094rRLAxc8cJweDQ4BsWH/zozcdVA8o9GLqcKhn2b\nGi/V\n",
    11. 

  11.                        encrypted_otp_secret_iv: 'rys3THICkr60BoWC',
    12. 

  12.                        encrypted_otp_secret_salt: '_LMkAGvdg7a+sDIKjI3mR2Q==')
    13. 

  13. 

  14.       expect(user.otp_secret).to eq 'anotpsecretthatshouldbeencrypted'
    15. 

  15.     end
    16. 

  16.   end
    17. 

  17. 

  18.   describe 'validations' do
    19. 

  19.     it 'is invalid without an account' do
    20. 

  20.       user = Fabricate.build(:user, account: nil)
    21. 

  21.       user.valid?
    22. 

  22.       expect(user).to model_have_error_on_field(:account)
    23. 

  23.     end
    24. 

  24. 

  25.     it 'is invalid without a valid locale' do
    26. 

  26.       user = Fabricate.build(:user, locale: 'toto')
    27. 

  27.       user.valid?
    28. 

  28.       expect(user).to model_have_error_on_field(:locale)
    29. 

  29.     end
    30. 

  30. 

  31.     it 'is invalid without a valid email' do
    32. 

  32.       user = Fabricate.build(:user, email: 'john@')
    33. 

  33.       user.valid?
    34. 

  34.       expect(user).to model_have_error_on_field(:email)
    35. 

  35.     end
    36. 

  36. 

  37.     it 'is valid with an invalid e-mail that has already been saved' do
    38. 

  38.       user = Fabricate.build(:user, email: 'invalid-email')
    39. 

  39.       user.save(validate: false)
    40. 

  40.       expect(user.valid?).to be true
    41. 

  41.     end
    42. 

  42. 

  43.     it 'cleans out empty string from languages' do
    44. 

  44.       user = Fabricate.build(:user, chosen_languages: [''])
    45. 

  45.       user.valid?
    46. 

  46.       expect(user.chosen_languages).to eq nil
    47. 

  47.     end
    48. 

  48.   end
    49. 

  49. 

  50.   describe 'scopes' do
    51. 

  51.     describe 'recent' do
    52. 

  52.       it 'returns an array of recent users ordered by id' do
    53. 

  53.         user_1 = Fabricate(:user)
    54. 

  54.         user_2 = Fabricate(:user)
    55. 

  55.         expect(User.recent).to eq [user_2, user_1]
    56. 

  56.       end
    57. 

  57.     end
    58. 

  58. 

  59.     describe 'confirmed' do
    60. 

  60.       it 'returns an array of users who are confirmed' do
    61. 

  61.         user_1 = Fabricate(:user, confirmed_at: nil)
    62. 

  62.         user_2 = Fabricate(:user, confirmed_at: Time.zone.now)
    63. 

  63.         expect(User.confirmed).to match_array([user_2])
    64. 

  64.       end
    65. 

  65.     end
    66. 

  66. 

  67.     describe 'inactive' do
    68. 

  68.       it 'returns a relation of inactive users' do
    69. 

  69.         specified = Fabricate(:user, current_sign_in_at: 15.days.ago)
    70. 

  70.         Fabricate(:user, current_sign_in_at: 6.days.ago)
    71. 

  71. 

  72.         expect(User.inactive).to match_array([specified])
    73. 

  73.       end
    74. 

  74.     end
    75. 

  75. 

  76.     describe 'matches_email' do
    77. 

  77.       it 'returns a relation of users whose email starts with the given string' do
    78. 

  78.         specified = Fabricate(:user, email: 'specified@spec')
    79. 

  79.         Fabricate(:user, email: 'unspecified@spec')
    80. 

  80. 

  81.         expect(User.matches_email('specified')).to match_array([specified])
    82. 

  82.       end
    83. 

  83.     end
    84. 

  84. 

  85.     describe 'matches_ip' do
    86. 

  86.       it 'returns a relation of users whose ip address is matching with the given CIDR' do
    87. 

  87.         user1 = Fabricate(:user)
    88. 

  88.         user2 = Fabricate(:user)
    89. 

  89.         Fabricate(:session_activation, user: user1, ip: '2160:2160::22', session_id: '1')
    90. 

  90.         Fabricate(:session_activation, user: user1, ip: '2160:2160::23', session_id: '2')
    91. 

  91.         Fabricate(:session_activation, user: user2, ip: '2160:8888::24', session_id: '3')
    92. 

  92.         Fabricate(:session_activation, user: user2, ip: '2160:8888::25', session_id: '4')
    93. 

  93. 

  94.         expect(User.matches_ip('2160:2160::/32')).to match_array([user1])
    95. 

  95.       end
    96. 

  96.     end
    97. 

  97.   end
    98. 

  98. 

  99.   let(:account) { Fabricate(:account, username: 'alice') }
    100. 

  100.   let(:password) { 'abcd1234' }
    101. 

  101. 

  102.   describe 'blacklist' do
    103. 

  103.     around(:each) do |example|
    104. 

  104.       old_blacklist = Rails.configuration.x.email_blacklist
    105. 

  105. 

  106.       Rails.configuration.x.email_domains_blacklist = 'mvrht.com'
    107. 

  107. 

  108.       example.run
    109. 

  109. 

  110.       Rails.configuration.x.email_domains_blacklist = old_blacklist
    111. 

  111.     end
    112. 

  112. 

  113.     it 'should allow a non-blacklisted user to be created' do
    114. 

  114.       user = User.new(email: 'foo@example.com', account: account, password: password, agreement: true)
    115. 

  115. 

  116.       expect(user.valid?).to be_truthy
    117. 

  117.     end
    118. 

  118. 

  119.     it 'should not allow a blacklisted user to be created' do
    120. 

  120.       user = User.new(email: 'foo@mvrht.com', account: account, password: password, agreement: true)
    121. 

  121. 

  122.       expect(user.valid?).to be_falsey
    123. 

  123.     end
    124. 

  124. 

  125.     it 'should not allow a subdomain blacklisted user to be created' do
    126. 

  126.       user = User.new(email: 'foo@mvrht.com.topdomain.tld', account: account, password: password, agreement: true)
    127. 

  127. 

  128.       expect(user.valid?).to be_falsey
    129. 

  129.     end
    130. 

  130.   end
    131. 

  131. 

  132.   describe '#confirmed?' do
    133. 

  133.     it 'returns true when a confirmed_at is set' do
    134. 

  134.       user = Fabricate.build(:user, confirmed_at: Time.now.utc)
    135. 

  135.       expect(user.confirmed?).to be true
    136. 

  136.     end
    137. 

  137. 

  138.     it 'returns false if a confirmed_at is nil' do
    139. 

  139.       user = Fabricate.build(:user, confirmed_at: nil)
    140. 

  140.       expect(user.confirmed?).to be false
    141. 

  141.     end
    142. 

  142.   end
    143. 

  143. 

  144.   describe '#confirm' do
    145. 

  145.     it 'sets email to unconfirmed_email' do
    146. 

  146.       user = Fabricate.build(:user, confirmed_at: Time.now.utc, unconfirmed_email: 'new-email@example.com')
    147. 

  147.       user.confirm
    148. 

  148.       expect(user.email).to eq 'new-email@example.com'
    149. 

  149.     end
    150. 

  150.   end
    151. 

  151. 

  152.   describe '#disable_two_factor!' do
    153. 

  153.     it 'saves false for otp_required_for_login' do
    154. 

  154.       user = Fabricate.build(:user, otp_required_for_login: true)
    155. 

  155.       user.disable_two_factor!
    156. 

  156.       expect(user.reload.otp_required_for_login).to be false
    157. 

  157.     end
    158. 

  158. 

  159.     it 'saves nil for otp_secret' do
    160. 

  160.       user = Fabricate.build(:user, otp_secret: 'oldotpcode')
    161. 

  161.       user.disable_two_factor!
    162. 

  162.       expect(user.reload.otp_secret).to be nil
    163. 

  163.     end
    164. 

  164. 

  165.     it 'saves cleared otp_backup_codes' do
    166. 

  166.       user = Fabricate.build(:user, otp_backup_codes: %w(dummy dummy))
    167. 

  167.       user.disable_two_factor!
    168. 

  168.       expect(user.reload.otp_backup_codes.empty?).to be true
    169. 

  169.     end
    170. 

  170.   end
    171. 

  171. 

  172.   describe '#send_confirmation_instructions' do
    173. 

  173.     around do |example|
    174. 

  174.       queue_adapter = ActiveJob::Base.queue_adapter
    175. 

  175.       example.run
    176. 

  176.       ActiveJob::Base.queue_adapter = queue_adapter
    177. 

  177.     end
    178. 

  178. 

  179.     it 'delivers confirmation instructions later' do
    180. 

  180.       user = Fabricate(:user)
    181. 

  181.       ActiveJob::Base.queue_adapter = :test
    182. 

  182. 

  183.       expect { user.send_confirmation_instructions }.to have_enqueued_job(ActionMailer::MailDeliveryJob)
    184. 

  184.     end
    185. 

  185.   end
    186. 

  186. 

  187.   describe 'settings' do
    188. 

  188.     it 'is instance of Settings::ScopedSettings' do
    189. 

  189.       user = Fabricate(:user)
    190. 

  190.       expect(user.settings).to be_kind_of Settings::ScopedSettings
    191. 

  191.     end
    192. 

  192.   end
    193. 

  193. 

  194.   describe '#setting_default_privacy' do
    195. 

  195.     it 'returns default privacy setting if user has configured' do
    196. 

  196.       user = Fabricate(:user)
    197. 

  197.       user.settings[:default_privacy] = 'unlisted'
    198. 

  198.       expect(user.setting_default_privacy).to eq 'unlisted'
    199. 

  199.     end
    200. 

  200. 

  201.     it "returns 'private' if user has not configured default privacy setting and account is locked" do
    202. 

  202.       user = Fabricate(:account, locked: true).user
    203. 

  203.       expect(user.setting_default_privacy).to eq 'private'
    204. 

  204.     end
    205. 

  205. 

  206.     it "returns 'public' if user has not configured default privacy setting and account is not locked" do
    207. 

  207.       user = Fabricate(:account, locked: false).user
    208. 

  208.       expect(user.setting_default_privacy).to eq 'public'
    209. 

  209.     end
    210. 

  210.   end
    211. 

  211. 

  212.   describe 'whitelist' do
    213. 

  213.     around(:each) do |example|
    214. 

  214.       old_whitelist = Rails.configuration.x.email_domains_whitelist
    215. 

  215. 

  216.       Rails.configuration.x.email_domains_whitelist = 'mastodon.space'
    217. 

  217. 

  218.       example.run
    219. 

  219. 

  220.       Rails.configuration.x.email_domains_whitelist = old_whitelist
    221. 

  221.     end
    222. 

  222. 

  223.     it 'should not allow a user to be created unless they are whitelisted' do
    224. 

  224.       user = User.new(email: 'foo@example.com', account: account, password: password, agreement: true)
    225. 

  225.       expect(user.valid?).to be_falsey
    226. 

  226.     end
    227. 

  227. 

  228.     it 'should allow a user to be created if they are whitelisted' do
    229. 

  229.       user = User.new(email: 'foo@mastodon.space', account: account, password: password, agreement: true)
    230. 

  230.       expect(user.valid?).to be_truthy
    231. 

  231.     end
    232. 

  232. 

  233.     it 'should not allow a user with a whitelisted top domain as subdomain in their email address to be created' do
    234. 

  234.       user = User.new(email: 'foo@mastodon.space.userdomain.com', account: account, password: password, agreement: true)
    235. 

  235.       expect(user.valid?).to be_falsey
    236. 

  236.     end
    237. 

  237. 

  238.     context do
    239. 

  239.       around do |example|
    240. 

  240.         old_blacklist = Rails.configuration.x.email_blacklist
    241. 

  241.         example.run
    242. 

  242.         Rails.configuration.x.email_domains_blacklist = old_blacklist
    243. 

  243.       end
    244. 

  244. 

  245.       it 'should not allow a user to be created with a specific blacklisted subdomain even if the top domain is whitelisted' do
    246. 

  246.         Rails.configuration.x.email_domains_blacklist = 'blacklisted.mastodon.space'
    247. 

  247. 

  248.         user = User.new(email: 'foo@blacklisted.mastodon.space', account: account, password: password)
    249. 

  249.         expect(user.valid?).to be_falsey
    250. 

  250.       end
    251. 

  251.     end
    252. 

  252.   end
    253. 

  253. 

  254.   it_behaves_like 'Settings-extended' do
    255. 

  255.     def create!
    256. 

  256.       User.create!(account: Fabricate(:account, user: nil), email: 'foo@mastodon.space', password: 'abcd1234', agreement: true)
    257. 

  257.     end
    258. 

  258. 

  259.     def fabricate
    260. 

  260.       Fabricate(:user)
    261. 

  261.     end
    262. 

  262.   end
    263. 

  263. 

  264.   describe 'token_for_app' do
    265. 

  265.     let(:user) { Fabricate(:user) }
    266. 

  266.     let(:app) { Fabricate(:application, owner: user) }
    267. 

  267. 

  268.     it 'returns a token' do
    269. 

  269.       expect(user.token_for_app(app)).to be_a(Doorkeeper::AccessToken)
    270. 

  270.     end
    271. 

  271. 

  272.     it 'persists a token' do
    273. 

  273.       t = user.token_for_app(app)
    274. 

  274.       expect(user.token_for_app(app)).to eql(t)
    275. 

  275.     end
    276. 

  276. 

  277.     it 'is nil if user does not own app' do
    278. 

  278.       app.update!(owner: nil)
    279. 

  279. 

  280.       expect(user.token_for_app(app)).to be_nil
    281. 

  281.     end
    282. 

  282.   end
    283. 

  283. 

  284.   describe '#disable!' do
    285. 

  285.     subject(:user) { Fabricate(:user, disabled: false, current_sign_in_at: current_sign_in_at, last_sign_in_at: nil) }
    286. 

  286.     let(:current_sign_in_at) { Time.zone.now }
    287. 

  287. 

  288.     before do
    289. 

  289.       user.disable!
    290. 

  290.     end
    291. 

  291. 

  292.     it 'disables user' do
    293. 

  293.       expect(user).to have_attributes(disabled: true)
    294. 

  294.     end
    295. 

  295.   end
    296. 

  296. 

  297.   describe '#enable!' do
    298. 

  298.     subject(:user) { Fabricate(:user, disabled: true) }
    299. 

  299. 

  300.     before do
    301. 

  301.       user.enable!
    302. 

  302.     end
    303. 

  303. 

  304.     it 'enables user' do
    305. 

  305.       expect(user).to have_attributes(disabled: false)
    306. 

  306.     end
    307. 

  307.   end
    308. 

  308. 

  309.   describe '#reset_password!' do
    310. 

  310.     subject(:user) { Fabricate(:user, password: 'foobar12345') }
    311. 

  311. 

  312.     let!(:session_activation) { Fabricate(:session_activation, user: user) }
    313. 

  313.     let!(:access_token) { Fabricate(:access_token, resource_owner_id: user.id) }
    314. 

  314.     let!(:web_push_subscription) { Fabricate(:web_push_subscription, access_token: access_token) }
    315. 

  315. 

  316.     before do
    317. 

  317.       user.reset_password!
    318. 

  318.     end
    319. 

  319. 

  320.     it 'changes the password immediately' do
    321. 

  321.       expect(user.external_or_valid_password?('foobar12345')).to be false
    322. 

  322.     end
    323. 

  323. 

  324.     it 'deactivates all sessions' do
    325. 

  325.       expect(user.session_activations.count).to eq 0
    326. 

  326.     end
    327. 

  327. 

  328.     it 'revokes all access tokens' do
    329. 

  329.       expect(Doorkeeper::AccessToken.active_for(user).count).to eq 0
    330. 

  330.     end
    331. 

  331. 

  332.     it 'removes push subscriptions' do
    333. 

  333.       expect(Web::PushSubscription.where(user: user).or(Web::PushSubscription.where(access_token: access_token)).count).to eq 0
    334. 

  334.     end
    335. 

  335.   end
    336. 

  336. 

  337.   describe '#confirm!' do
    338. 

  338.     subject(:user) { Fabricate(:user, confirmed_at: confirmed_at) }
    339. 

  339. 

  340.     before do
    341. 

  341.       ActionMailer::Base.deliveries.clear
    342. 

  342.       user.confirm!
    343. 

  343.     end
    344. 

  344. 

  345.     after { ActionMailer::Base.deliveries.clear }
    346. 

  346. 

  347.     context 'when user is new' do
    348. 

  348.       let(:confirmed_at) { nil }
    349. 

  349. 

  350.       it 'confirms user' do
    351. 

  351.         expect(user.confirmed_at).to be_present
    352. 

  352.       end
    353. 

  353. 

  354.       it 'delivers mails' do
    355. 

  355.         expect(ActionMailer::Base.deliveries.count).to eq 2
    356. 

  356.       end
    357. 

  357.     end
    358. 

  358. 

  359.     context 'when user is not new' do
    360. 

  360.       let(:confirmed_at) { Time.zone.now }
    361. 

  361. 

  362.       it 'confirms user' do
    363. 

  363.         expect(user.confirmed_at).to be_present
    364. 

  364.       end
    365. 

  365. 

  366.       it 'does not deliver mail' do
    367. 

  367.         expect(ActionMailer::Base.deliveries.count).to eq 0
    368. 

  368.       end
    369. 

  369.     end
    370. 

  370.   end
    371. 

  371. 

  372.   describe '#active_for_authentication?' do
    373. 

  373.     subject { user.active_for_authentication? }
    374. 

  374.     let(:user) { Fabricate(:user, disabled: disabled, confirmed_at: confirmed_at) }
    375. 

  375. 

  376.     context 'when user is disabled' do
    377. 

  377.       let(:disabled) { true }
    378. 

  378. 

  379.       context 'when user is confirmed' do
    380. 

  380.         let(:confirmed_at) { Time.zone.now }
    381. 

  381. 

  382.         it { is_expected.to be true }
    383. 

  383.       end
    384. 

  384. 

  385.       context 'when user is not confirmed' do
    386. 

  386.         let(:confirmed_at) { nil }
    387. 

  387. 

  388.         it { is_expected.to be true }
    389. 

  389.       end
    390. 

  390.     end
    391. 

  391. 

  392.     context 'when user is not disabled' do
    393. 

  393.       let(:disabled) { false }
    394. 

  394. 

  395.       context 'when user is confirmed' do
    396. 

  396.         let(:confirmed_at) { Time.zone.now }
    397. 

  397. 

  398.         it { is_expected.to be true }
    399. 

  399.       end
    400. 

  400. 

  401.       context 'when user is not confirmed' do
    402. 

  402.         let(:confirmed_at) { nil }
    403. 

  403. 

  404.         it { is_expected.to be true }
    405. 

  405.       end
    406. 

  406.     end
    407. 

  407.   end
    408. 

  408. 

  409.   describe '.those_who_can' do
    410. 

  410.     pending
    411. 

  411.   end
    412. 

  412. end
    413.