bridgy-fed/tests/test_common.py

# coding=utf-8
"""Unit tests for common.py."""
from unittest import mock

from granary import as2
from oauth_dropins.webutil import appengine_config, util
from oauth_dropins.webutil.testutil import requests_response
import requests
from werkzeug.exceptions import BadGateway

from app import app
import common
from models import User
from . import testutil

HTML = requests_response('<html></html>', headers={
    'Content-Type': common.CONTENT_TYPE_HTML,
})
HTML_WITH_AS2 = requests_response("""\
<html><meta>
<link href='http://as2' rel='alternate' type='application/activity+json'>
</meta></html>
""", headers={
    'Content-Type': common.CONTENT_TYPE_HTML,
})
AS2_OBJ = {'foo': ['bar']}
AS2 = requests_response(AS2_OBJ, headers={
    'Content-Type': as2.CONTENT_TYPE,
})
NOT_ACCEPTABLE = requests_response(status=406)


class CommonTest(testutil.TestCase):
    @classmethod
    def setUpClass(cls):
        with appengine_config.ndb_client.context():
            # do this in setUpClass since generating RSA keys is slow
            cls.user = User.get_or_create('site')

    def setUp(self):
        super().setUp()
        self.app_context = app.test_request_context('/')
        self.app_context.push()

    def tearDown(self):
        self.app_context.pop()
        super().tearDown()

    def test_pretty_link(self):
        for expected, url, text in (
                ('<a href="http://foo">bar</a>', 'http://foo', 'bar'),
                ('<a href="http://x.y/@z">@z@x.y</a>', 'http://x.y/@z', None),
                ('<a href="http://x.y/@z">foo</a>', 'http://x.y/@z', 'foo'),
                ('<a href="http://x.y/users/z">@z@x.y</a>', 'http://x.y/users/z', None),
                ('<a href="http://x.y/users/z">foo</a>', 'http://x.y/users/z', 'foo'),
                ('<a href="http://x.y/@z/123">x.y/@z/123</a>', 'http://x.y/@z/123', None),
        ):
            self.assertEqual(expected, common.pretty_link(url, text=text))

    @mock.patch('requests.get', return_value=AS2)
    def test_get_as2_direct(self, mock_get):
        resp = common.get_as2('http://orig', user=self.user)
        self.assertEqual(AS2, resp)
        mock_get.assert_has_calls((
            self.as2_req('http://orig'),
        ))

    @mock.patch('requests.get', side_effect=[HTML_WITH_AS2, AS2])
    def test_get_as2_via_html(self, mock_get):
        resp = common.get_as2('http://orig', user=self.user)
        self.assertEqual(AS2, resp)
        mock_get.assert_has_calls((
            self.as2_req('http://orig'),
            self.as2_req('http://as2', headers=common.as2.CONNEG_HEADERS),
        ))

    @mock.patch('requests.get', return_value=HTML)
    def test_get_as2_only_html(self, mock_get):
        with self.assertRaises(BadGateway):
            resp = common.get_as2('http://orig', user=self.user)

    @mock.patch('requests.get', return_value=NOT_ACCEPTABLE)
    def test_get_as2_not_acceptable(self, mock_get):
        with self.assertRaises(BadGateway):
            resp = common.get_as2('http://orig', user=self.user)

    @mock.patch('requests.get', side_effect=requests.exceptions.SSLError)
    def test_get_ssl_error(self, mock_get):
        with self.assertRaises(BadGateway):
            resp = common.get_as2('http://orig', user=self.user)

    def test_redirect_wrap_empty(self):
        self.assertIsNone(common.redirect_wrap(None))
        self.assertEqual('', common.redirect_wrap(''))

    def test_redirect_unwrap_empty(self):
        self.assertIsNone(common.redirect_unwrap(None))
        for obj in '', {}, []:
            self.assertEqual(obj, common.redirect_unwrap(obj))

    def test_unwrap_not_web(self):
        bad = {
            'type': 'Like',
            'object': 'http://localhost/r/foo bar',
        }
        self.assert_equals(bad, common.redirect_unwrap(bad))

    def test_postprocess_as2_multiple_in_reply_tos(self):
        with app.test_request_context('/'):
            self.assert_equals({
                'id': 'http://localhost/r/xyz',
                'inReplyTo': 'foo',
                'to': [as2.PUBLIC_AUDIENCE],
            }, common.postprocess_as2({
                'id': 'xyz',
                'inReplyTo': ['foo', 'bar'],
            }, user=User(id='site')))

    def test_postprocess_as2_multiple_url(self):
        with app.test_request_context('/'):
            self.assert_equals({
                'id': 'http://localhost/r/xyz',
                'url': ['http://localhost/r/foo', 'http://localhost/r/bar'],
                'to': [as2.PUBLIC_AUDIENCE],
            }, common.postprocess_as2({
                'id': 'xyz',
                'url': ['foo', 'bar'],
            }, user=User(id='site')))

    def test_postprocess_as2_multiple_image(self):
        with app.test_request_context('/'):
            self.assert_equals({
                'id': 'http://localhost/r/xyz',
                'attachment': [{'url': 'http://r/foo'}, {'url': 'http://r/bar'}],
                'image': [{'url': 'http://r/foo'}, {'url': 'http://r/bar'}],
                'to': [as2.PUBLIC_AUDIENCE],
            }, common.postprocess_as2({
                'id': 'xyz',
                'image': [{'url': 'http://r/foo'}, {'url': 'http://r/bar'}],
            }, user=User(id='site')))

    def test_postprocess_as2_actor_attributedTo(self):
        with app.test_request_context('/'):
            self.assert_equals({
                'actor': {
                    'id': 'baj',
                    'preferredUsername': 'site',
                    'url': 'http://localhost/r/https://site/',
                },
                'attributedTo': [{
                    'id': 'bar',
                    'preferredUsername': 'site',
                    'url': 'http://localhost/r/https://site/',
                }, {
                    'id': 'baz',
                    'preferredUsername': 'site',
                    'url': 'http://localhost/r/https://site/',
                }],
                'to': [as2.PUBLIC_AUDIENCE],
            }, common.postprocess_as2({
                'attributedTo': [{'id': 'bar'}, {'id': 'baz'}],
                'actor': {'id': 'baj'},
            }, user=User(id='site')))

    def test_postprocess_as2_note(self):
        with app.test_request_context('/'):
            self.assert_equals({
                '@context': 'https://www.w3.org/ns/activitystreams',
                'id': 'http://localhost/r/xyz#bridgy-fed-create',
                'type': 'Create',
                'actor': {
                    'id': 'http://localhost/site',
                    'url': 'http://localhost/r/https://site/',
                    'preferredUsername': 'site'
                },
                'object': {
                    'id': 'http://localhost/r/xyz',
                    'type': 'Note',
                    'to': [as2.PUBLIC_AUDIENCE],
                },
            }, common.postprocess_as2({
                'id': 'xyz',
                'type': 'Note',
            }, user=User(id='site')))

    def test_host_url(self):
        with app.test_request_context():
            self.assertEqual('http://localhost/', common.host_url())
            self.assertEqual('http://localhost/asdf', common.host_url('asdf'))
            self.assertEqual('http://localhost/foo/bar', common.host_url('/foo/bar'))

        with app.test_request_context(base_url='https://a.xyz', path='/foo'):
            self.assertEqual('https://a.xyz/', common.host_url())
            self.assertEqual('https://a.xyz/asdf', common.host_url('asdf'))
            self.assertEqual('https://a.xyz/foo/bar', common.host_url('/foo/bar'))

        with app.test_request_context(base_url='http://bridgy-federated.uc.r.appspot.com'):
            self.assertEqual('https://fed.brid.gy/asdf', common.host_url('asdf'))

    @mock.patch('requests.get')
    def test_signed_get_redirects_manually_with_new_sig_headers(self, mock_get):
        mock_get.side_effect = [
            requests_response(status=302, redirected_url='http://second',
                              allow_redirects=False),
            requests_response(status=200, allow_redirects=False),
        ]
        resp = common.signed_get('https://first', user=self.user)

        first = mock_get.call_args_list[0][1]
        second = mock_get.call_args_list[1][1]
        self.assertNotEqual(first['headers'], second['headers'])
        self.assertNotEqual(
            first['auth'].header_signer.sign(first['headers'], method='GET', path='/'),
            second['auth'].header_signer.sign(second['headers'], method='GET', path='/'))

    @mock.patch('requests.post')
    def test_signed_post_ignores_redirect(self, mock_post):
        mock_post.side_effect = [
            requests_response(status=302, redirected_url='http://second',
                              allow_redirects=False),
        ]
        resp = common.signed_post('https://first', user=self.user)
        mock_post.assert_called_once()
        self.assertEqual(302, resp.status_code)
add common.get_as2() 2017-10-20 14:00:42 +00:00			`# coding=utf-8`
			`"""Unit tests for common.py."""`
migrate to the app engine standard python 3 runtime! https://cloud.google.com/appengine/docs/standard/python3/python-differences https://cloud.google.com/appengine/docs/standard/python/migrate-to-python3/ 2019-12-26 06:20:57 +00:00			`from unittest import mock`
add common.get_as2() 2017-10-20 14:00:42 +00:00
drop non-public Create activities fixes #289 2022-08-24 00:37:50 +00:00			`from granary import as2`
always sign requests with current user's key, stop defaulting to snarfed.org for #403 2023-02-07 03:23:25 +00:00			`from oauth_dropins.webutil import appengine_config, util`
add common.get_as2() 2017-10-20 14:00:42 +00:00			`from oauth_dropins.webutil.testutil import requests_response`
			`import requests`
Flask port: error handling bug fixes, other misc tweaks 2021-08-16 18:47:31 +00:00			`from werkzeug.exceptions import BadGateway`
add common.get_as2() 2017-10-20 14:00:42 +00:00
flask: fix test_common, drop unused common.canonicalize_domain decorator 2021-07-10 15:53:37 +00:00			`from app import app`
add common.get_as2() 2017-10-20 14:00:42 +00:00			`import common`
noop, rename Domain => User 2022-11-16 06:00:28 +00:00			`from models import User`
migrate to the app engine standard python 3 runtime! https://cloud.google.com/appengine/docs/standard/python3/python-differences https://cloud.google.com/appengine/docs/standard/python/migrate-to-python3/ 2019-12-26 06:20:57 +00:00			`from . import testutil`
add common.get_as2() 2017-10-20 14:00:42 +00:00
			`HTML = requests_response('<html></html>', headers={`
			`'Content-Type': common.CONTENT_TYPE_HTML,`
			`})`
			`HTML_WITH_AS2 = requests_response("""\`
			`<html><meta>`
			`<link href='http://as2' rel='alternate' type='application/activity+json'>`
			`</meta></html>`
			`""", headers={`
			`'Content-Type': common.CONTENT_TYPE_HTML,`
			`})`
return parsed JSON from common.get_as2(); use it in activitypub 2017-10-20 14:13:04 +00:00			`AS2_OBJ = {'foo': ['bar']}`
			`AS2 = requests_response(AS2_OBJ, headers={`
noop: drop content type constants in common, use granary's instead 2023-01-07 05:01:33 +00:00			`'Content-Type': as2.CONTENT_TYPE,`
add common.get_as2() 2017-10-20 14:00:42 +00:00			`})`
			`NOT_ACCEPTABLE = requests_response(status=406)`


			`class CommonTest(testutil.TestCase):`
always sign requests with current user's key, stop defaulting to snarfed.org for #403 2023-02-07 03:23:25 +00:00			`@classmethod`
			`def setUpClass(cls):`
			`with appengine_config.ndb_client.context():`
			`# do this in setUpClass since generating RSA keys is slow`
			`cls.user = User.get_or_create('site')`

sign HTTP GET requests for AS2 objects to support Mastodon's AUTHORIZED_FETCH aka secure mode: https://docs.joinmastodon.org/admin/config/#authorized_fetch fixes #291 2022-11-24 16:20:04 +00:00			`def setUp(self):`
			`super().setUp()`
			`self.app_context = app.test_request_context('/')`
			`self.app_context.push()`

			`def tearDown(self):`
			`self.app_context.pop()`
			`super().tearDown()`

user page: activities: render fediverse actor links as @-@ for #406 2023-02-07 05:08:52 +00:00			`def test_pretty_link(self):`
			`for expected, url, text in (`
			`('<a href="http://foo">bar</a>', 'http://foo', 'bar'),`
			`('<a href="http://x.y/@z">@z@x.y</a>', 'http://x.y/@z', None),`
			`('<a href="http://x.y/@z">foo</a>', 'http://x.y/@z', 'foo'),`
			`('<a href="http://x.y/users/z">@z@x.y</a>', 'http://x.y/users/z', None),`
			`('<a href="http://x.y/users/z">foo</a>', 'http://x.y/users/z', 'foo'),`
			`('<a href="http://x.y/@z/123">x.y/@z/123</a>', 'http://x.y/@z/123', None),`
			`):`
			`self.assertEqual(expected, common.pretty_link(url, text=text))`

add common.get_as2() 2017-10-20 14:00:42 +00:00			`@mock.patch('requests.get', return_value=AS2)`
			`def test_get_as2_direct(self, mock_get):`
always sign requests with current user's key, stop defaulting to snarfed.org for #403 2023-02-07 03:23:25 +00:00			`resp = common.get_as2('http://orig', user=self.user)`
activitypub: follow HTML link rels that point to AS2 objects ...by reusing common.get_as2(). also lots of misc refactoring. 2017-10-20 14:49:25 +00:00			`self.assertEqual(AS2, resp)`
add common.get_as2() 2017-10-20 14:00:42 +00:00			`mock_get.assert_has_calls((`
sign HTTP GET requests for AS2 objects to support Mastodon's AUTHORIZED_FETCH aka secure mode: https://docs.joinmastodon.org/admin/config/#authorized_fetch fixes #291 2022-11-24 16:20:04 +00:00			`self.as2_req('http://orig'),`
add common.get_as2() 2017-10-20 14:00:42 +00:00			`))`

			`@mock.patch('requests.get', side_effect=[HTML_WITH_AS2, AS2])`
			`def test_get_as2_via_html(self, mock_get):`
always sign requests with current user's key, stop defaulting to snarfed.org for #403 2023-02-07 03:23:25 +00:00			`resp = common.get_as2('http://orig', user=self.user)`
activitypub: follow HTML link rels that point to AS2 objects ...by reusing common.get_as2(). also lots of misc refactoring. 2017-10-20 14:49:25 +00:00			`self.assertEqual(AS2, resp)`
add common.get_as2() 2017-10-20 14:00:42 +00:00			`mock_get.assert_has_calls((`
sign HTTP GET requests for AS2 objects to support Mastodon's AUTHORIZED_FETCH aka secure mode: https://docs.joinmastodon.org/admin/config/#authorized_fetch fixes #291 2022-11-24 16:20:04 +00:00			`self.as2_req('http://orig'),`
noop: drop content type constants in common, use granary's instead 2023-01-07 05:01:33 +00:00			`self.as2_req('http://as2', headers=common.as2.CONNEG_HEADERS),`
add common.get_as2() 2017-10-20 14:00:42 +00:00			`))`

			`@mock.patch('requests.get', return_value=HTML)`
			`def test_get_as2_only_html(self, mock_get):`
Flask port: error handling bug fixes, other misc tweaks 2021-08-16 18:47:31 +00:00			`with self.assertRaises(BadGateway):`
always sign requests with current user's key, stop defaulting to snarfed.org for #403 2023-02-07 03:23:25 +00:00			`resp = common.get_as2('http://orig', user=self.user)`
add common.get_as2() 2017-10-20 14:00:42 +00:00
			`@mock.patch('requests.get', return_value=NOT_ACCEPTABLE)`
			`def test_get_as2_not_acceptable(self, mock_get):`
Flask port: error handling bug fixes, other misc tweaks 2021-08-16 18:47:31 +00:00			`with self.assertRaises(BadGateway):`
always sign requests with current user's key, stop defaulting to snarfed.org for #403 2023-02-07 03:23:25 +00:00			`resp = common.get_as2('http://orig', user=self.user)`
handle SSL failures when fetching arbitrary URLs fixes https://console.cloud.google.com/errors/CJOuzd2b1sehPA 2019-04-10 15:08:02 +00:00
			`@mock.patch('requests.get', side_effect=requests.exceptions.SSLError)`
			`def test_get_ssl_error(self, mock_get):`
Flask port: error handling bug fixes, other misc tweaks 2021-08-16 18:47:31 +00:00			`with self.assertRaises(BadGateway):`
always sign requests with current user's key, stop defaulting to snarfed.org for #403 2023-02-07 03:23:25 +00:00			`resp = common.get_as2('http://orig', user=self.user)`
handle SSL failures when fetching arbitrary URLs fixes https://console.cloud.google.com/errors/CJOuzd2b1sehPA 2019-04-10 15:08:02 +00:00
more error handling for AS2 objects without id or URL follows b7e44c929584bfd46736ba41a222e8d054f7db5b. fixes https://console.cloud.google.com/errors/CLnu14G46vHLOg 2019-04-15 15:14:37 +00:00			`def test_redirect_wrap_empty(self):`
flask: fix test_common, drop unused common.canonicalize_domain decorator 2021-07-10 15:53:37 +00:00			`self.assertIsNone(common.redirect_wrap(None))`
			`self.assertEqual('', common.redirect_wrap(''))`
more error handling for AS2 objects without id or URL follows b7e44c929584bfd46736ba41a222e8d054f7db5b. fixes https://console.cloud.google.com/errors/CLnu14G46vHLOg 2019-04-15 15:14:37 +00:00
harden URL unwrapping a bit, require http(s) URL or domain fixes https://console.cloud.google.com/errors/detail/CMKn7tqbq-GIRA;time=P30D?project=bridgy-federated 2022-12-10 17:01:04 +00:00			`def test_redirect_unwrap_empty(self):`
			`self.assertIsNone(common.redirect_unwrap(None))`
			`for obj in '', {}, []:`
			`self.assertEqual(obj, common.redirect_unwrap(obj))`

			`def test_unwrap_not_web(self):`
			`bad = {`
			`'type': 'Like',`
			`'object': 'http://localhost/r/foo bar',`
			`}`
			`self.assert_equals(bad, common.redirect_unwrap(bad))`

fix postprocess_as2() crash on multiply-valued inReplyTo fixes https://console.cloud.google.com/errors/COTu_PXPjJ2ZWw 2019-06-06 13:35:57 +00:00			`def test_postprocess_as2_multiple_in_reply_tos(self):`
flask: fix test_common, drop unused common.canonicalize_domain decorator 2021-07-10 15:53:37 +00:00			`with app.test_request_context('/'):`
AP: always generate an actor for every outbound activity for #279 2022-11-16 05:37:39 +00:00			`self.assert_equals({`
flask: fix test_common, drop unused common.canonicalize_domain decorator 2021-07-10 15:53:37 +00:00			`'id': 'http://localhost/r/xyz',`
			`'inReplyTo': 'foo',`
drop non-public Create activities fixes #289 2022-08-24 00:37:50 +00:00			`'to': [as2.PUBLIC_AUDIENCE],`
flask: fix test_common, drop unused common.canonicalize_domain decorator 2021-07-10 15:53:37 +00:00			`}, common.postprocess_as2({`
			`'id': 'xyz',`
			`'inReplyTo': ['foo', 'bar'],`
always sign requests with current user's key, stop defaulting to snarfed.org for #403 2023-02-07 03:23:25 +00:00			`}, user=User(id='site')))`
AP: always generate an actor for every outbound activity for #279 2022-11-16 05:37:39 +00:00
common.postprocess_as2 bug fix for multiply valued AS2 url field fixes https://console.cloud.google.com/errors/detail/CMOZzPLojuud_QE;time=P30D?project=bridgy-federated 2022-12-11 15:24:44 +00:00			`def test_postprocess_as2_multiple_url(self):`
			`with app.test_request_context('/'):`
			`self.assert_equals({`
			`'id': 'http://localhost/r/xyz',`
			`'url': ['http://localhost/r/foo', 'http://localhost/r/bar'],`
			`'to': [as2.PUBLIC_AUDIENCE],`
			`}, common.postprocess_as2({`
			`'id': 'xyz',`
			`'url': ['foo', 'bar'],`
always sign requests with current user's key, stop defaulting to snarfed.org for #403 2023-02-07 03:23:25 +00:00			`}, user=User(id='site')))`
common.postprocess_as2 bug fix for multiply valued AS2 url field fixes https://console.cloud.google.com/errors/detail/CMOZzPLojuud_QE;time=P30D?project=bridgy-federated 2022-12-11 15:24:44 +00:00
common.postprocess_as2 bug fix, handle multiply valued image field 2023-01-24 05:13:05 +00:00			`def test_postprocess_as2_multiple_image(self):`
			`with app.test_request_context('/'):`
			`self.assert_equals({`
			`'id': 'http://localhost/r/xyz',`
			`'attachment': [{'url': 'http://r/foo'}, {'url': 'http://r/bar'}],`
			`'image': [{'url': 'http://r/foo'}, {'url': 'http://r/bar'}],`
			`'to': [as2.PUBLIC_AUDIENCE],`
			`}, common.postprocess_as2({`
			`'id': 'xyz',`
			`'image': [{'url': 'http://r/foo'}, {'url': 'http://r/bar'}],`
always sign requests with current user's key, stop defaulting to snarfed.org for #403 2023-02-07 03:23:25 +00:00			`}, user=User(id='site')))`
common.postprocess_as2 bug fix, handle multiply valued image field 2023-01-24 05:13:05 +00:00
AP: always generate an actor for every outbound activity for #279 2022-11-16 05:37:39 +00:00			`def test_postprocess_as2_actor_attributedTo(self):`
			`with app.test_request_context('/'):`
			`self.assert_equals({`
			`'actor': {`
			`'id': 'baj',`
always sign requests with current user's key, stop defaulting to snarfed.org for #403 2023-02-07 03:23:25 +00:00			`'preferredUsername': 'site',`
			`'url': 'http://localhost/r/https://site/',`
AP: always generate an actor for every outbound activity for #279 2022-11-16 05:37:39 +00:00			`},`
			`'attributedTo': [{`
			`'id': 'bar',`
always sign requests with current user's key, stop defaulting to snarfed.org for #403 2023-02-07 03:23:25 +00:00			`'preferredUsername': 'site',`
			`'url': 'http://localhost/r/https://site/',`
AP: always generate an actor for every outbound activity for #279 2022-11-16 05:37:39 +00:00			`}, {`
			`'id': 'baz',`
always sign requests with current user's key, stop defaulting to snarfed.org for #403 2023-02-07 03:23:25 +00:00			`'preferredUsername': 'site',`
			`'url': 'http://localhost/r/https://site/',`
AP: always generate an actor for every outbound activity for #279 2022-11-16 05:37:39 +00:00			`}],`
drop non-public Create activities fixes #289 2022-08-24 00:37:50 +00:00			`'to': [as2.PUBLIC_AUDIENCE],`
AP: always generate an actor for every outbound activity for #279 2022-11-16 05:37:39 +00:00			`}, common.postprocess_as2({`
			`'attributedTo': [{'id': 'bar'}, {'id': 'baz'}],`
			`'actor': {'id': 'baj'},`
always sign requests with current user's key, stop defaulting to snarfed.org for #403 2023-02-07 03:23:25 +00:00			`}, user=User(id='site')))`
AP: always generate an actor for every outbound activity for #279 2022-11-16 05:37:39 +00:00
			`def test_postprocess_as2_note(self):`
			`with app.test_request_context('/'):`
			`self.assert_equals({`
			`'@context': 'https://www.w3.org/ns/activitystreams',`
			`'id': 'http://localhost/r/xyz#bridgy-fed-create',`
			`'type': 'Create',`
			`'actor': {`
always sign requests with current user's key, stop defaulting to snarfed.org for #403 2023-02-07 03:23:25 +00:00			`'id': 'http://localhost/site',`
			`'url': 'http://localhost/r/https://site/',`
			`'preferredUsername': 'site'`
AP: always generate an actor for every outbound activity for #279 2022-11-16 05:37:39 +00:00			`},`
			`'object': {`
			`'id': 'http://localhost/r/xyz',`
			`'type': 'Note',`
drop non-public Create activities fixes #289 2022-08-24 00:37:50 +00:00			`'to': [as2.PUBLIC_AUDIENCE],`
AP: always generate an actor for every outbound activity for #279 2022-11-16 05:37:39 +00:00			`},`
			`}, common.postprocess_as2({`
			`'id': 'xyz',`
			`'type': 'Note',`
always sign requests with current user's key, stop defaulting to snarfed.org for #403 2023-02-07 03:23:25 +00:00			`}, user=User(id='site')))`
background task bug fix: override task runner host we were using request.host_url blindly, which was fed.brid.gy for user-facing requests, but bridgy-federated.uc.r.appspot.com for tasks. #335 2023-01-05 23:03:21 +00:00
			`def test_host_url(self):`
			`with app.test_request_context():`
			`self.assertEqual('http://localhost/', common.host_url())`
			`self.assertEqual('http://localhost/asdf', common.host_url('asdf'))`
			`self.assertEqual('http://localhost/foo/bar', common.host_url('/foo/bar'))`

			`with app.test_request_context(base_url='https://a.xyz', path='/foo'):`
			`self.assertEqual('https://a.xyz/', common.host_url())`
			`self.assertEqual('https://a.xyz/asdf', common.host_url('asdf'))`
			`self.assertEqual('https://a.xyz/foo/bar', common.host_url('/foo/bar'))`

			`with app.test_request_context(base_url='http://bridgy-federated.uc.r.appspot.com'):`
			`self.assertEqual('https://fed.brid.gy/asdf', common.host_url('asdf'))`

handle redirects of signed requests manually, generate a new HTTP sig each time fixes #326 2023-01-16 21:00:38 +00:00			`@mock.patch('requests.get')`
signed_post: don't follow redirects fixes https://console.cloud.google.com/errors/detail/CLuyuajU2sqLtAE;time=P30D;refresh=true?project=bridgy-federated 2023-02-06 22:44:17 +00:00			`def test_signed_get_redirects_manually_with_new_sig_headers(self, mock_get):`
handle redirects of signed requests manually, generate a new HTTP sig each time fixes #326 2023-01-16 21:00:38 +00:00			`mock_get.side_effect = [`
			`requests_response(status=302, redirected_url='http://second',`
			`allow_redirects=False),`
			`requests_response(status=200, allow_redirects=False),`
			`]`
always sign requests with current user's key, stop defaulting to snarfed.org for #403 2023-02-07 03:23:25 +00:00			`resp = common.signed_get('https://first', user=self.user)`
handle redirects of signed requests manually, generate a new HTTP sig each time fixes #326 2023-01-16 21:00:38 +00:00
			`first = mock_get.call_args_list[0][1]`
			`second = mock_get.call_args_list[1][1]`
			`self.assertNotEqual(first['headers'], second['headers'])`
HTTP Signatures: add special (request-target) header for #40, special synthetic HTTP header for HTTP Signatures, required by Peertube. https://datatracker.ietf.org/doc/html/draft-cavage-http-signatures-12#section-2.3 2023-01-18 03:40:54 +00:00			`self.assertNotEqual(`
			`first['auth'].header_signer.sign(first['headers'], method='GET', path='/'),`
			`second['auth'].header_signer.sign(second['headers'], method='GET', path='/'))`
signed_post: don't follow redirects fixes https://console.cloud.google.com/errors/detail/CLuyuajU2sqLtAE;time=P30D;refresh=true?project=bridgy-federated 2023-02-06 22:44:17 +00:00
			`@mock.patch('requests.post')`
			`def test_signed_post_ignores_redirect(self, mock_post):`
			`mock_post.side_effect = [`
			`requests_response(status=302, redirected_url='http://second',`
			`allow_redirects=False),`
			`]`
always sign requests with current user's key, stop defaulting to snarfed.org for #403 2023-02-07 03:23:25 +00:00			`resp = common.signed_post('https://first', user=self.user)`
signed_post: don't follow redirects fixes https://console.cloud.google.com/errors/detail/CLuyuajU2sqLtAE;time=P30D;refresh=true?project=bridgy-federated 2023-02-06 22:44:17 +00:00			`mock_post.assert_called_once()`
			`self.assertEqual(302, resp.status_code)`