Home Explore Help
Register Sign In
bida
/
bastodon
7
0
Fork 0
Files Issues 9 Pull Requests 0 Wiki
Tree: 921c6fe654
Branches Tags
bastodon
/
spec
/
lib
/
activitypub
/
dereferencer_spec.rb

dereferencer_spec.rb 2.5 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475 
  1. # frozen_string_literal: true
    2. 

  2. 

  3. require 'rails_helper'
    4. 

  4. 

  5. RSpec.describe ActivityPub::Dereferencer do
    6. 

  6.   describe '#object' do
    7. 

  7.     subject { described_class.new(uri, permitted_origin: permitted_origin, signature_actor: signature_actor).object }
    8. 

  8. 

  9.     let(:object) { { '@context': 'https://www.w3.org/ns/activitystreams', id: 'https://example.com/foo', type: 'Note', content: 'Hoge' } }
    10. 

  10.     let(:permitted_origin) { 'https://example.com' }
    11. 

  11.     let(:signature_actor) { nil }
    12. 

  12.     let(:uri) { nil }
    13. 

  13. 

  14.     before do
    15. 

  15.       stub_request(:get, 'https://example.com/foo').to_return(body: Oj.dump(object), headers: { 'Content-Type' => 'application/activity+json' })
    16. 

  16.     end
    17. 

  17. 

  18.     context 'with a URI' do
    19. 

  19.       let(:uri) { 'https://example.com/foo' }
    20. 

  20. 

  21.       it 'returns object' do
    22. 

  22.         expect(subject.with_indifferent_access).to eq object.with_indifferent_access
    23. 

  23.       end
    24. 

  24. 

  25.       context 'with signature account' do
    26. 

  26.         let(:signature_actor) { Fabricate(:account) }
    27. 

  27. 

  28.         it 'makes signed request' do
    29. 

  29.           subject
    30. 

  30.           expect(a_request(:get, 'https://example.com/foo').with { |req| req.headers['Signature'].present? }).to have_been_made
    31. 

  31.         end
    32. 

  32.       end
    33. 

  33. 

  34.       context 'with different origin' do
    35. 

  35.         let(:uri) { 'https://other-example.com/foo' }
    36. 

  36. 

  37.         it 'does not make request' do
    38. 

  38.           subject
    39. 

  39.           expect(a_request(:get, 'https://other-example.com/foo')).to_not have_been_made
    40. 

  40.         end
    41. 

  41.       end
    42. 

  42.     end
    43. 

  43. 

  44.     context 'with a bearcap' do
    45. 

  45.       let(:uri) { 'bear:?t=hoge&u=https://example.com/foo' }
    46. 

  46. 

  47.       it 'makes request with Authorization header' do
    48. 

  48.         subject
    49. 

  49.         expect(a_request(:get, 'https://example.com/foo').with(headers: { 'Authorization' => 'Bearer hoge' })).to have_been_made
    50. 

  50.       end
    51. 

  51. 

  52.       it 'returns object' do
    53. 

  53.         expect(subject.with_indifferent_access).to eq object.with_indifferent_access
    54. 

  54.       end
    55. 

  55. 

  56.       context 'with signature account' do
    57. 

  57.         let(:signature_actor) { Fabricate(:account) }
    58. 

  58. 

  59.         it 'makes signed request' do
    60. 

  60.           subject
    61. 

  61.           expect(a_request(:get, 'https://example.com/foo').with { |req| req.headers['Signature'].present? && req.headers['Authorization'] == 'Bearer hoge' }).to have_been_made
    62. 

  62.         end
    63. 

  63.       end
    64. 

  64. 

  65.       context 'with different origin' do
    66. 

  66.         let(:uri) { 'bear:?t=hoge&u=https://other-example.com/foo' }
    67. 

  67. 

  68.         it 'does not make request' do
    69. 

  69.           subject
    70. 

  70.           expect(a_request(:get, 'https://other-example.com/foo')).to_not have_been_made
    71. 

  71.         end
    72. 

  72.       end
    73. 

  73.     end
    74. 

  74.   end
    75. 

  75. end
    76.