/* GoToSocial Copyright (C) 2021 GoToSocial Authors admin@gotosocial.org This program is free software: you can redistribute it and/or modify it under the terms of the GNU Affero General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Affero General Public License for more details. You should have received a copy of the GNU Affero General Public License along with this program. If not, see . */ package status_test import ( "encoding/json" "fmt" "io/ioutil" "net/http" "net/http/httptest" "strings" "testing" "github.com/gin-gonic/gin" "github.com/sirupsen/logrus" "github.com/stretchr/testify/assert" "github.com/stretchr/testify/suite" "github.com/superseriousbusiness/gotosocial/internal/apimodule/status" "github.com/superseriousbusiness/gotosocial/internal/config" "github.com/superseriousbusiness/gotosocial/internal/db" "github.com/superseriousbusiness/gotosocial/internal/db/gtsmodel" "github.com/superseriousbusiness/gotosocial/internal/distributor" "github.com/superseriousbusiness/gotosocial/internal/mastotypes" mastomodel "github.com/superseriousbusiness/gotosocial/internal/mastotypes/mastomodel" "github.com/superseriousbusiness/gotosocial/internal/media" "github.com/superseriousbusiness/gotosocial/internal/oauth" "github.com/superseriousbusiness/gotosocial/internal/storage" "github.com/superseriousbusiness/gotosocial/testrig" ) type StatusReblogTestSuite struct { // standard suite interfaces suite.Suite config *config.Config db db.DB log *logrus.Logger storage storage.Storage mastoConverter mastotypes.Converter mediaHandler media.Handler oauthServer oauth.Server distributor distributor.Distributor // standard suite models testTokens map[string]*oauth.Token testClients map[string]*oauth.Client testApplications map[string]*gtsmodel.Application testUsers map[string]*gtsmodel.User testAccounts map[string]*gtsmodel.Account testAttachments map[string]*gtsmodel.MediaAttachment testStatuses map[string]*gtsmodel.Status // module being tested statusModule *status.Module } /* TEST INFRASTRUCTURE */ // SetupSuite sets some variables on the suite that we can use as consts (more or less) throughout func (suite *StatusReblogTestSuite) SetupSuite() { // setup standard items suite.config = testrig.NewTestConfig() suite.db = testrig.NewTestDB() suite.log = testrig.NewTestLog() suite.storage = testrig.NewTestStorage() suite.mastoConverter = testrig.NewTestMastoConverter(suite.db) suite.mediaHandler = testrig.NewTestMediaHandler(suite.db, suite.storage) suite.oauthServer = testrig.NewTestOauthServer(suite.db) suite.distributor = testrig.NewTestDistributor() // setup module being tested suite.statusModule = status.New(suite.config, suite.db, suite.mediaHandler, suite.mastoConverter, suite.distributor, suite.log).(*status.Module) } func (suite *StatusReblogTestSuite) TearDownSuite() { testrig.StandardDBTeardown(suite.db) testrig.StandardStorageTeardown(suite.storage) } func (suite *StatusReblogTestSuite) SetupTest() { testrig.StandardDBSetup(suite.db) testrig.StandardStorageSetup(suite.storage, "../../../testrig/media") suite.testTokens = testrig.NewTestTokens() suite.testClients = testrig.NewTestClients() suite.testApplications = testrig.NewTestApplications() suite.testUsers = testrig.NewTestUsers() suite.testAccounts = testrig.NewTestAccounts() suite.testAttachments = testrig.NewTestAttachments() suite.testStatuses = testrig.NewTestStatuses() } // TearDownTest drops tables to make sure there's no data in the db func (suite *StatusReblogTestSuite) TearDownTest() { testrig.StandardDBTeardown(suite.db) testrig.StandardStorageTeardown(suite.storage) } /* ACTUAL TESTS */ // boost a status func (suite *StatusReblogTestSuite) TestPostReblog() { t := suite.testTokens["local_account_1"] oauthToken := oauth.TokenToOauthToken(t) targetStatus := suite.testStatuses["admin_account_status_1"] // setup recorder := httptest.NewRecorder() ctx, _ := gin.CreateTestContext(recorder) ctx.Set(oauth.SessionAuthorizedApplication, suite.testApplications["application_1"]) ctx.Set(oauth.SessionAuthorizedToken, oauthToken) ctx.Set(oauth.SessionAuthorizedUser, suite.testUsers["local_account_1"]) ctx.Set(oauth.SessionAuthorizedAccount, suite.testAccounts["local_account_1"]) ctx.Request = httptest.NewRequest(http.MethodPost, fmt.Sprintf("http://localhost:8080%s", strings.Replace(status.ReblogPath, ":id", targetStatus.ID, 1)), nil) // the endpoint we're hitting // normally the router would populate these params from the path values, // but because we're calling the function directly, we need to set them manually. ctx.Params = gin.Params{ gin.Param{ Key: status.IDKey, Value: targetStatus.ID, }, } suite.statusModule.StatusReblogPOSTHandler(ctx) // check response suite.EqualValues(http.StatusOK, recorder.Code) result := recorder.Result() defer result.Body.Close() b, err := ioutil.ReadAll(result.Body) assert.NoError(suite.T(), err) fmt.Println(string(b)) statusReply := &mastomodel.Status{} err = json.Unmarshal(b, statusReply) assert.NoError(suite.T(), err) assert.False(suite.T(), statusReply.Sensitive) assert.Equal(suite.T(), mastomodel.VisibilityPublic, statusReply.Visibility) assert.Equal(suite.T(), targetStatus.ContentWarning, statusReply.SpoilerText) assert.Equal(suite.T(), targetStatus.Content, statusReply.Content) assert.Equal(suite.T(), "the_mighty_zork", statusReply.Account.Username) assert.Len(suite.T(), statusReply.MediaAttachments, 0) assert.Len(suite.T(), statusReply.Mentions, 0) assert.Len(suite.T(), statusReply.Emojis, 0) assert.Len(suite.T(), statusReply.Tags, 0) assert.NotNil(suite.T(), statusReply.Application) assert.Equal(suite.T(), "really cool gts application", statusReply.Application.Name) assert.NotNil(suite.T(), statusReply.Reblog) assert.Equal(suite.T(), 1, statusReply.Reblog.ReblogsCount) assert.Equal(suite.T(), 1, statusReply.Reblog.FavouritesCount) assert.Equal(suite.T(), targetStatus.Content, statusReply.Reblog.Content) assert.Equal(suite.T(), targetStatus.ContentWarning, statusReply.Reblog.SpoilerText) assert.Equal(suite.T(), targetStatus.AccountID, statusReply.Reblog.Account.ID) assert.Len(suite.T(), statusReply.Reblog.MediaAttachments, 1) assert.Len(suite.T(), statusReply.Reblog.Tags, 1) assert.Len(suite.T(), statusReply.Reblog.Emojis, 1) assert.Equal(suite.T(), "superseriousbusiness", statusReply.Reblog.Application.Name) } // try to boost a status that's not boostable func (suite *StatusReblogTestSuite) TestPostUnboostable() { t := suite.testTokens["local_account_1"] oauthToken := oauth.TokenToOauthToken(t) targetStatus := suite.testStatuses["local_account_2_status_4"] // setup recorder := httptest.NewRecorder() ctx, _ := gin.CreateTestContext(recorder) ctx.Set(oauth.SessionAuthorizedApplication, suite.testApplications["application_1"]) ctx.Set(oauth.SessionAuthorizedToken, oauthToken) ctx.Set(oauth.SessionAuthorizedUser, suite.testUsers["local_account_1"]) ctx.Set(oauth.SessionAuthorizedAccount, suite.testAccounts["local_account_1"]) ctx.Request = httptest.NewRequest(http.MethodPost, fmt.Sprintf("http://localhost:8080%s", strings.Replace(status.ReblogPath, ":id", targetStatus.ID, 1)), nil) // the endpoint we're hitting // normally the router would populate these params from the path values, // but because we're calling the function directly, we need to set them manually. ctx.Params = gin.Params{ gin.Param{ Key: status.IDKey, Value: targetStatus.ID, }, } suite.statusModule.StatusReblogPOSTHandler(ctx) // check response suite.EqualValues(http.StatusForbidden, recorder.Code) // we 403 unboostable statuses result := recorder.Result() defer result.Body.Close() b, err := ioutil.ReadAll(result.Body) assert.NoError(suite.T(), err) assert.Equal(suite.T(), fmt.Sprintf(`{"error":"status %s not boostable"}`, targetStatus.ID), string(b)) } // try to boost a status that's not visible to the user func (suite *StatusReblogTestSuite) TestPostNotVisible() { t := suite.testTokens["local_account_2"] oauthToken := oauth.TokenToOauthToken(t) targetStatus := suite.testStatuses["local_account_1_status_3"] // this is a mutual only status and these accounts aren't mutuals // setup recorder := httptest.NewRecorder() ctx, _ := gin.CreateTestContext(recorder) ctx.Set(oauth.SessionAuthorizedApplication, suite.testApplications["application_1"]) ctx.Set(oauth.SessionAuthorizedToken, oauthToken) ctx.Set(oauth.SessionAuthorizedUser, suite.testUsers["local_account_2"]) ctx.Set(oauth.SessionAuthorizedAccount, suite.testAccounts["local_account_2"]) ctx.Request = httptest.NewRequest(http.MethodPost, fmt.Sprintf("http://localhost:8080%s", strings.Replace(status.ReblogPath, ":id", targetStatus.ID, 1)), nil) // the endpoint we're hitting // normally the router would populate these params from the path values, // but because we're calling the function directly, we need to set them manually. ctx.Params = gin.Params{ gin.Param{ Key: status.IDKey, Value: targetStatus.ID, }, } suite.statusModule.StatusReblogPOSTHandler(ctx) // check response suite.EqualValues(http.StatusNotFound, recorder.Code) // we 404 statuses that aren't visible result := recorder.Result() defer result.Body.Close() b, err := ioutil.ReadAll(result.Body) assert.NoError(suite.T(), err) assert.Equal(suite.T(), fmt.Sprintf(`{"error":"status %s not found"}`, targetStatus.ID), string(b)) } func TestStatusReblogTestSuite(t *testing.T) { suite.Run(t, new(StatusReblogTestSuite)) }