mirror
/
bridgy-fed
kopia lustrzana https://github.com/snarfed/bridgy-fed
1
0
Forkuj 0
Kod Zgłoszenia Packages Projekty Wydania Wiki Aktywność
bridgy-fed/tests/test_webfinger.py

371 wiersze
14 KiB
Python
Czysty Zwykły widok Historia

switch webfinger to serve entirely out of Users in datastore no more fetching and converting users' home pages on demand! for #392, helps #378
2023-02-10 04:00:58 +00:00
"""Unit tests for webfinger.py."""
AP users: serve webfinger for external users #512
2023-05-23 18:53:32 +00:00
import copy
from unittest.mock import patch
migrate to the app engine standard python 3 runtime! https://cloud.google.com/appengine/docs/standard/python3/python-differences https://cloud.google.com/appengine/docs/standard/python/migrate-to-python3/
2019-12-26 06:20:57 +00:00
import urllib.parse
start on webfinger
2017-08-19 15:21:05 +00:00
AP: add profile to Content-Type: application/ld+json for #895
2024-02-27 19:38:00 +00:00
from granary.as2 import CONTENT_TYPE_LD_PROFILE
AP users: serve webfinger for external users #512
2023-05-23 18:53:32 +00:00
from oauth_dropins.webutil.testutil import requests_response
AP users: start parameterizing URLs, including UI pages and AP endpoints user pages now have /[protocol]/ prefix, AP endpoints have /ap/ prefix. for #512
2023-05-30 23:36:18 +00:00
# import first so that Fake is defined before URL routes are registered
webfinger: infer protocol from brid.gy subdomain in request or resource first commit for inferring protocol. exciting! for #512
2023-06-12 22:37:17 +00:00
from .testutil import Fake, TestCase
AP users: start parameterizing URLs, including UI pages and AP endpoints user pages now have /[protocol]/ prefix, AP endpoints have /ap/ prefix. for #512
2023-05-30 23:36:18 +00:00
web UI: tweak user links in user page header
2024-02-11 22:35:10 +00:00
from models import PROTOCOLS
Revert "heuristic: assume no AP actor id is the root path on its host" This reverts commit b7e890b4bb79db64ca05877bc72f27aa516d08c0. it was a nice idea, but we're now hitting AP actor ids that are the root path on their host. this is evidently how microblog.pub does AP; 0x3b0b's site https://bw3.dev/ is an example. general info on https://docs.microblog.pub/user_guide.html#activitypub but not this specifically. fixes https://console.cloud.google.com/errors/detail/CLSnttKfy4v90wE;time=P30D?project=bridgy-federated
2024-01-26 19:37:34 +00:00
import protocol
AP users: start to replace external with indirect, starting with webfinger #512
2023-05-30 03:16:15 +00:00
from web import Web
add webfinger.fetch_actor_url, use it in follow also add a basic test for webfinger.fetch
2023-09-22 19:48:00 +00:00
from webfinger import fetch, fetch_actor_url
AP users: start to replace external with indirect, starting with webfinger #512
2023-05-30 03:16:15 +00:00
webfinger: if user part isn't an id, try resolving it as a handle
2023-09-22 22:14:15 +00:00
from . import test_web
AP users: serve webfinger for external users #512
2023-05-23 18:53:32 +00:00
noop: add a couple minor tests and comments
2023-09-29 17:48:59 +00:00
AP users: serve webfinger for external users #512
2023-05-23 18:53:32 +00:00
WEBFINGER = {
'subject': 'acct:user.com@user.com',
'aliases': [
'https://user.com/about-me',
'https://user.com/',
],
'links': [{
'rel': 'http://webfinger.net/rel/profile-page',
'type': 'text/html',
'href': 'https://user.com/about-me',
}, {
'rel': 'http://webfinger.net/rel/profile-page',
'type': 'text/html',
'href': 'https://user.com/',
}, {
'rel': 'http://webfinger.net/rel/avatar',
'href': 'https://user.com/me.jpg',
}, {
'rel': 'canonical_uri',
'type': 'text/html',
'href': 'https://user.com/about-me',
}, {
'rel': 'self',
AP: add profile to Content-Type: application/ld+json for #895
2024-02-27 19:38:00 +00:00
'type': CONTENT_TYPE_LD_PROFILE,
AP users: serve webfinger for external users #512
2023-05-23 18:53:32 +00:00
'href': 'http://localhost/user.com',
}, {
'rel': 'inbox',
AP: add profile to Content-Type: application/ld+json for #895
2024-02-27 19:38:00 +00:00
'type': CONTENT_TYPE_LD_PROFILE,
AP users: serve webfinger for external users #512
2023-05-23 18:53:32 +00:00
'href': 'http://localhost/user.com/inbox'
}, {
'rel': 'sharedInbox',
AP: add profile to Content-Type: application/ld+json for #895
2024-02-27 19:38:00 +00:00
'type': CONTENT_TYPE_LD_PROFILE,
switch webfinger and AP actors to mostly protocol subdomains except Web, it still mostly serves on fed.brid.gy for backcompat, don't want to change existing Web users' AP actor ids.
2023-09-26 23:43:48 +00:00
'href': 'https://web.brid.gy/ap/sharedInbox',
AP users: serve webfinger for external users #512
2023-05-23 18:53:32 +00:00
}, {
'rel': 'http://ostatus.org/schema/1.0/subscribe',
add Web.ap_subdomain property, use it in webfinger Originally, BF served Web users' AP actor ids on fed.brid.gy, eg https://fed.brid.gy/snarfed.org . When we started adding new protocols, we switched to per-protocol subdomains, eg https://web.brid.gy/snarfed.org . However, we need to preserve the old users' actor ids as is. So, this property tracks which subdomain a given Web user's AP actor uses.
2023-11-30 23:43:38 +00:00
# TODO: genericize
use protocol subdomains in AP inbox ...and other misc protocol subdomain fixes
2023-09-27 20:55:16 +00:00
'template': 'https://fed.brid.gy/web/user.com?url={uri}',
AP users: serve webfinger for external users #512
2023-05-23 18:53:32 +00:00
}],
}
WEBFINGER_NO_HCARD = {
'subject': 'acct:user.com@user.com',
'aliases': ['https://user.com/'],
'links': [{
'rel': 'http://webfinger.net/rel/profile-page',
'type': 'text/html',
'href': 'https://user.com/',
}, {
'rel': 'canonical_uri',
'type': 'text/html',
'href': 'https://user.com/',
}, {
'rel': 'self',
AP: add profile to Content-Type: application/ld+json for #895
2024-02-27 19:38:00 +00:00
'type': CONTENT_TYPE_LD_PROFILE,
change Web.ap_subdomain default to 'web'
2023-12-01 04:08:41 +00:00
'href': 'https://web.brid.gy/user.com',
AP users: serve webfinger for external users #512
2023-05-23 18:53:32 +00:00
}, {
'rel': 'inbox',
AP: add profile to Content-Type: application/ld+json for #895
2024-02-27 19:38:00 +00:00
'type': CONTENT_TYPE_LD_PROFILE,
change Web.ap_subdomain default to 'web'
2023-12-01 04:08:41 +00:00
'href': 'https://web.brid.gy/user.com/inbox',
AP users: serve webfinger for external users #512
2023-05-23 18:53:32 +00:00
}, {
'rel': 'sharedInbox',
AP: add profile to Content-Type: application/ld+json for #895
2024-02-27 19:38:00 +00:00
'type': CONTENT_TYPE_LD_PROFILE,
switch webfinger and AP actors to mostly protocol subdomains except Web, it still mostly serves on fed.brid.gy for backcompat, don't want to change existing Web users' AP actor ids.
2023-09-26 23:43:48 +00:00
'href': 'https://web.brid.gy/ap/sharedInbox',
AP users: serve webfinger for external users #512
2023-05-23 18:53:32 +00:00
}, {
'rel': 'http://ostatus.org/schema/1.0/subscribe',
use protocol subdomains in AP inbox ...and other misc protocol subdomain fixes
2023-09-27 20:55:16 +00:00
'template': 'https://fed.brid.gy/web/user.com?url={uri}',
AP users: serve webfinger for external users #512
2023-05-23 18:53:32 +00:00
}],
}
webfinger: infer protocol from brid.gy subdomain in request or resource first commit for inferring protocol. exciting! for #512
2023-06-12 22:37:17 +00:00
WEBFINGER_FAKE = {
consolidate ap_address in ATProto, Fake, Web (partially) into User
2023-09-25 19:45:47 +00:00
'subject': 'acct:fake:handle:user@fa.brid.gy',
move domain non-TLD validation from webfinger into Web fixes https://console.cloud.google.com/errors/detail/CMG7h4PJju67Og;time=P30D?project=bridgy-federated
2023-06-15 17:52:11 +00:00
'aliases': ['fake:user'],
webfinger: infer protocol from brid.gy subdomain in request or resource first commit for inferring protocol. exciting! for #512
2023-06-12 22:37:17 +00:00
'links': [{
'rel': 'canonical_uri',
'type': 'text/html',
move domain non-TLD validation from webfinger into Web fixes https://console.cloud.google.com/errors/detail/CMG7h4PJju67Og;time=P30D?project=bridgy-federated
2023-06-15 17:52:11 +00:00
'href': 'fake:user',
webfinger: infer protocol from brid.gy subdomain in request or resource first commit for inferring protocol. exciting! for #512
2023-06-12 22:37:17 +00:00
}, {
'rel': 'self',
AP: add profile to Content-Type: application/ld+json for #895
2024-02-27 19:38:00 +00:00
'type': CONTENT_TYPE_LD_PROFILE,
standardize more on 'handle' and 'id' terms * User.readable_id => handle * User.readable_or_key_id => handle_or_id
2023-09-25 19:33:24 +00:00
'href': 'http://localhost/ap/fa/fake:user',
webfinger: infer protocol from brid.gy subdomain in request or resource first commit for inferring protocol. exciting! for #512
2023-06-12 22:37:17 +00:00
}, {
'rel': 'inbox',
AP: add profile to Content-Type: application/ld+json for #895
2024-02-27 19:38:00 +00:00
'type': CONTENT_TYPE_LD_PROFILE,
standardize more on 'handle' and 'id' terms * User.readable_id => handle * User.readable_or_key_id => handle_or_id
2023-09-25 19:33:24 +00:00
'href': 'http://localhost/ap/fa/fake:user/inbox',
webfinger: infer protocol from brid.gy subdomain in request or resource first commit for inferring protocol. exciting! for #512
2023-06-12 22:37:17 +00:00
}, {
'rel': 'sharedInbox',
AP: add profile to Content-Type: application/ld+json for #895
2024-02-27 19:38:00 +00:00
'type': CONTENT_TYPE_LD_PROFILE,
switch webfinger and AP actors to mostly protocol subdomains except Web, it still mostly serves on fed.brid.gy for backcompat, don't want to change existing Web users' AP actor ids.
2023-09-26 23:43:48 +00:00
'href': 'https://web.brid.gy/ap/sharedInbox',
webfinger: infer protocol from brid.gy subdomain in request or resource first commit for inferring protocol. exciting! for #512
2023-06-12 22:37:17 +00:00
}, {
'rel': 'http://ostatus.org/schema/1.0/subscribe',
use protocol subdomains in AP inbox ...and other misc protocol subdomain fixes
2023-09-27 20:55:16 +00:00
'template': 'https://fed.brid.gy/fa/fake:handle:user?url={uri}',
webfinger: infer protocol from brid.gy subdomain in request or resource first commit for inferring protocol. exciting! for #512
2023-06-12 22:37:17 +00:00
}],
}
switch webfinger and AP actors to mostly protocol subdomains except Web, it still mostly serves on fed.brid.gy for backcompat, don't want to change existing Web users' AP actor ids.
2023-09-26 23:43:48 +00:00
WEBFINGER_FAKE_FA_BRID_GY = copy.deepcopy(WEBFINGER_FAKE)
for link in WEBFINGER_FAKE_FA_BRID_GY['links']:
standardize more on 'handle' and 'id' terms * User.readable_id => handle * User.readable_or_key_id => handle_or_id
2023-09-25 19:33:24 +00:00
if 'href' in link:
switch webfinger and AP actors to mostly protocol subdomains except Web, it still mostly serves on fed.brid.gy for backcompat, don't want to change existing Web users' AP actor ids.
2023-09-26 23:43:48 +00:00
link['href'] = link['href'].replace('http://localhost/ap/fa', 'https://fa.brid.gy/ap')
WEBFINGER_FAKE_FA_BRID_GY['links'][3]['href'] = 'https://fa.brid.gy/ap/sharedInbox'
use protocol subdomains in AP inbox ...and other misc protocol subdomain fixes
2023-09-27 20:55:16 +00:00
WEBFINGER_FAKE_FA_BRID_GY['links'][4]['template'] = 'https://fed.brid.gy/fa/fake:handle:user?url={uri}'
start on webfinger
2017-08-19 15:21:05 +00:00
webfinger: infer protocol from brid.gy subdomain in request or resource first commit for inferring protocol. exciting! for #512
2023-06-12 22:37:17 +00:00
class HostMetaTest(TestCase):
switch webfinger to serve entirely out of Users in datastore no more fetching and converting users' home pages on demand! for #392, helps #378
2023-02-10 04:00:58 +00:00
def test_host_meta_xrd(self):
got = self.client.get('/.well-known/host-meta')
self.assertEqual(200, got.status_code)
self.assertEqual('application/xrd+xml; charset=utf-8',
noop, lint fixes from flake8 remaining: $ flake8 --extend-ignore=E501 *.py tests/*.py "pyflakes" failed during execution due to "'FlakesChecker' object has no attribute 'NAMEDEXPR'" Run flake8 with greater verbosity to see more details activitypub.py:15:1: F401 'oauth_dropins.webutil.util.json_loads' imported but unused activitypub.py:36:1: F401 'web' imported but unused activitypub.py:48:1: E302 expected 2 blank lines, found 1 activitypub.py:51:9: F811 redefinition of unused 'web' from line 36 app.py:6:1: F401 'flask_app.app' imported but unused app.py:9:1: F401 'activitypub' imported but unused app.py:9:1: F401 'convert' imported but unused app.py:9:1: F401 'follow' imported but unused app.py:9:1: F401 'pages' imported but unused app.py:9:1: F401 'redirect' imported but unused app.py:9:1: F401 'superfeedr' imported but unused app.py:9:1: F401 'ui' imported but unused app.py:9:1: F401 'webfinger' imported but unused app.py:9:1: F401 'web' imported but unused app.py:9:1: F401 'xrpc_actor' imported but unused app.py:9:1: F401 'xrpc_feed' imported but unused app.py:9:1: F401 'xrpc_graph' imported but unused app.py:9:19: E401 multiple imports on one line models.py:19:1: F401 'oauth_dropins.webutil.util.json_loads' imported but unused models.py:364:31: E114 indentation is not a multiple of four (comment) models.py:364:31: E116 unexpected indentation (comment) protocol.py:17:1: F401 'oauth_dropins.webutil.util.json_loads' imported but unused redirect.py:26:1: F401 'oauth_dropins.webutil.util.json_loads' imported but unused web.py:18:1: F401 'oauth_dropins.webutil.util.json_loads' imported but unused webfinger.py:13:1: F401 'oauth_dropins.webutil.util.json_loads' imported but unused webfinger.py:110:13: E122 continuation line missing indentation or outdented webfinger.py:111:13: E122 continuation line missing indentation or outdented webfinger.py:131:13: E122 continuation line missing indentation or outdented webfinger.py:132:13: E122 continuation line missing indentation or outdented webfinger.py:133:13: E122 continuation line missing indentation or outdented webfinger.py:134:13: E122 continuation line missing indentation or outdented tests/__init__.py:2:1: F401 'oauth_dropins.webutil.tests' imported but unused tests/test_follow.py:11:1: F401 'oauth_dropins.webutil.util.json_dumps' imported but unused tests/test_follow.py:14:1: F401 '.testutil.Fake' imported but unused tests/test_models.py:156:15: E122 continuation line missing indentation or outdented tests/test_models.py:157:15: E122 continuation line missing indentation or outdented tests/test_models.py:158:11: E122 continuation line missing indentation or outdented tests/test_web.py:12:1: F401 'oauth_dropins.webutil.util.json_dumps' imported but unused tests/test_web.py:17:1: F401 '.testutil' imported but unused tests/test_web.py:1513:13: E128 continuation line under-indented for visual indent tests/test_web.py:1514:9: E124 closing bracket does not match visual indentation tests/testutil.py:106:1: E402 module level import not at top of file tests/testutil.py:107:1: E402 module level import not at top of file tests/testutil.py:108:1: E402 module level import not at top of file tests/testutil.py:109:1: E402 module level import not at top of file tests/testutil.py:110:1: E402 module level import not at top of file tests/testutil.py:301:24: E203 whitespace before ':' tests/testutil.py:301:25: E701 multiple statements on one line (colon) tests/testutil.py:301:25: E231 missing whitespace after ':'
2023-06-20 18:22:54 +00:00
got.headers['Content-Type'])
switch webfinger to serve entirely out of Users in datastore no more fetching and converting users' home pages on demand! for #392, helps #378
2023-02-10 04:00:58 +00:00
body = got.get_data(as_text=True)
self.assertTrue(body.startswith('<?xml'), body)
def test_host_meta_xrds(self):
got = self.client.get('/.well-known/host-meta.xrds')
self.assertEqual(200, got.status_code)
self.assertEqual('application/xrds+xml', got.headers['Content-Type'])
body = got.get_data(as_text=True)
self.assertTrue(body.startswith('<XRDS'), body)
def test_host_meta_jrd(self):
got = self.client.get('/.well-known/host-meta.json')
self.assertEqual(200, got.status_code)
self.assertEqual('application/jrd+json', got.headers['Content-Type'])
body = got.get_data(as_text=True)
self.assertTrue(body.startswith('{'), body)
webfinger: infer protocol from brid.gy subdomain in request or resource first commit for inferring protocol. exciting! for #512
2023-06-12 22:37:17 +00:00
class WebfingerTest(TestCase):
in progress checkpoint for webfinger, halfway done
2017-08-19 16:24:00 +00:00
fix webfinger handler, require username in acct: URI
2017-09-03 22:44:01 +00:00
def setUp(self):
minor noop test refactoring
2021-08-18 14:59:52 +00:00
super().setUp()
flask: first pass at porting webfinger; incomplete! incomplete because I also need to port webutil.handlers.XrdOrJrdHandler
2021-07-11 20:39:19 +00:00
User.ap_address() => handle_as(ActivityPub)
2023-11-30 05:06:55 +00:00
self.user = self.make_user('user.com', cls=Web, has_hcard=True,
has_redirects=True, obj_as2={
switch webfinger to serve entirely out of Users in datastore no more fetching and converting users' home pages on demand! for #392, helps #378
2023-02-10 04:00:58 +00:00
'@context': 'https://www.w3.org/ns/activitystreams',
'type': 'Person',
tests: rename remaining test data hostnames to clarify web vs fediverse followup to f6e57276024b032b3b6ca981b64ac42e427fce12
2023-03-19 22:43:55 +00:00
'url': 'https://user.com/about-me',
switch webfinger to serve entirely out of Users in datastore no more fetching and converting users' home pages on demand! for #392, helps #378
2023-02-10 04:00:58 +00:00
'name': 'Mrs. ☕ Foo',
tests: rename remaining test data hostnames to clarify web vs fediverse followup to f6e57276024b032b3b6ca981b64ac42e427fce12
2023-03-19 22:43:55 +00:00
'icon': {'type': 'Image', 'url': 'https://user.com/me.jpg'},
migrate User.actor_as2 to obj key pointing to Object for #547
2023-06-16 04:22:20 +00:00
})
fix webfinger handler, require username in acct: URI
2017-09-03 22:44:01 +00:00
switch webfinger to serve entirely out of Users in datastore no more fetching and converting users' home pages on demand! for #392, helps #378
2023-02-10 04:00:58 +00:00
def test_webfinger(self):
tests: rename remaining test data hostnames to clarify web vs fediverse followup to f6e57276024b032b3b6ca981b64ac42e427fce12
2023-03-19 22:43:55 +00:00
for resource in ('user.com@user.com', 'acct:user.com@user.com', 'xyz@user.com',
'user.com', 'http://user.com/', 'https://user.com/',
'http://localhost/user.com'):
webfinger error handling: return 400 on ?resource=acct:@fed.brid.gy fixes https://console.cloud.google.com/errors/detail/CPn404XJ2rC6rAE;time=P30D?project=bridgy-federated
2022-11-26 14:59:27 +00:00
with self.subTest(resource=resource):
noop: convert a few %s'es to f-strings thanks flynt! https://github.com/ikamensh/flynt
2023-01-24 20:17:24 +00:00
url = (f'/.well-known/webfinger?' +
urllib.parse.urlencode({'resource': resource}))
webfinger error handling: return 400 on ?resource=acct:@fed.brid.gy fixes https://console.cloud.google.com/errors/detail/CPn404XJ2rC6rAE;time=P30D?project=bridgy-federated
2022-11-26 14:59:27 +00:00
got = self.client.get(url, headers={'Accept': 'application/json'})
self.assertEqual(200, got.status_code, got.get_data(as_text=True))
self.assertEqual('application/jrd+json', got.headers['Content-Type'])
AP users: serve webfinger for external users #512
2023-05-23 18:53:32 +00:00
self.assert_equals(WEBFINGER, got.json)
Use the acct: URI for this domain, if in h-card This allows users to choose their own username for their webfinger ID. Closes #3
2018-04-12 13:25:39 +00:00
add Web.ap_subdomain property, use it in webfinger Originally, BF served Web users' AP actor ids on fed.brid.gy, eg https://fed.brid.gy/snarfed.org . When we started adding new protocols, we switched to per-protocol subdomains, eg https://web.brid.gy/snarfed.org . However, we need to preserve the old users' actor ids as is. So, this property tracks which subdomain a given Web user's AP actor uses.
2023-11-30 23:43:38 +00:00
def test_webfinger_web_subdomain_redirects(self):
path = '/.well-known/webfinger?resource=user.com@user.com'
switch User.ap_actor to id_as, use Web.ap_subdomain property
2023-12-01 00:31:41 +00:00
self.user.ap_subdomain = 'web'
self.user.put()
add Web.ap_subdomain property, use it in webfinger Originally, BF served Web users' AP actor ids on fed.brid.gy, eg https://fed.brid.gy/snarfed.org . When we started adding new protocols, we switched to per-protocol subdomains, eg https://web.brid.gy/snarfed.org . However, we need to preserve the old users' actor ids as is. So, this property tracks which subdomain a given Web user's AP actor uses.
2023-11-30 23:43:38 +00:00
got = self.client.get(path, base_url='https://fed.brid.gy/')
self.assertEqual(302, got.status_code)
self.assertEqual(f'https://web.brid.gy{path}', got.headers['Location'])
self.user.ap_subdomain = 'fed'
self.user.put()
got = self.client.get(path, base_url='https://web.brid.gy/')
self.assertEqual(302, got.status_code)
self.assertEqual(f'https://fed.brid.gy{path}', got.headers['Location'])
webfinger: infer protocol from brid.gy subdomain in request or resource first commit for inferring protocol. exciting! for #512
2023-06-12 22:37:17 +00:00
def test_user_infer_protocol_from_resource_subdomain(self):
move domain non-TLD validation from webfinger into Web fixes https://console.cloud.google.com/errors/detail/CMG7h4PJju67Og;time=P30D?project=bridgy-federated
2023-06-15 17:52:11 +00:00
got = self.client.get(
consolidate ap_address in ATProto, Fake, Web (partially) into User
2023-09-25 19:45:47 +00:00
'/.well-known/webfinger?resource=acct:fake:handle:user@fake.brid.gy',
switch webfinger and AP actors to mostly protocol subdomains except Web, it still mostly serves on fed.brid.gy for backcompat, don't want to change existing Web users' AP actor ids.
2023-09-26 23:43:48 +00:00
base_url='https://fed.brid.gy/',
move domain non-TLD validation from webfinger into Web fixes https://console.cloud.google.com/errors/detail/CMG7h4PJju67Og;time=P30D?project=bridgy-federated
2023-06-15 17:52:11 +00:00
headers={'Accept': 'application/json'})
webfinger: infer protocol from brid.gy subdomain in request or resource first commit for inferring protocol. exciting! for #512
2023-06-12 22:37:17 +00:00
self.assertEqual(200, got.status_code)
self.assertEqual('application/jrd+json', got.headers['Content-Type'])
switch webfinger and AP actors to mostly protocol subdomains except Web, it still mostly serves on fed.brid.gy for backcompat, don't want to change existing Web users' AP actor ids.
2023-09-26 23:43:48 +00:00
self.assert_equals(WEBFINGER_FAKE_FA_BRID_GY, got.json)
webfinger: infer protocol from brid.gy subdomain in request or resource first commit for inferring protocol. exciting! for #512
2023-06-12 22:37:17 +00:00
test_webfinger: tests for bad protocol subdomains
2023-09-29 19:33:55 +00:00
def test_user_unknown_protocol_subdomain(self):
got = self.client.get(
'/.well-known/webfinger?resource=acct:user@nope.brid.gy',
headers={'Accept': 'application/json'})
self.assertEqual(404, got.status_code)
def test_user_unusable_protocol_subdomain(self):
webfinger: handle unknown protocol subdomain
2023-10-13 00:55:44 +00:00
from models import PROTOCOLS
for base_url in None, 'https://bsky.brid.gy/':
got = self.client.get(
'/.well-known/webfinger?resource=acct:user.handle@bsky.brid.gy',
base_url=base_url, headers={'Accept': 'application/json'})
self.assertEqual(400, got.status_code)
test_webfinger: tests for bad protocol subdomains
2023-09-29 19:33:55 +00:00
webfinger: infer protocol from brid.gy subdomain in request or resource first commit for inferring protocol. exciting! for #512
2023-06-12 22:37:17 +00:00
def test_user_infer_protocol_from_request_subdomain(self):
move domain non-TLD validation from webfinger into Web fixes https://console.cloud.google.com/errors/detail/CMG7h4PJju67Og;time=P30D?project=bridgy-federated
2023-06-15 17:52:11 +00:00
self.make_user('fake:user', cls=Fake)
got = self.client.get(
'/.well-known/webfinger?resource=acct:user@fake:user',
base_url='https://fake.brid.gy/',
headers={'Accept': 'application/json'})
webfinger: infer protocol from brid.gy subdomain in request or resource first commit for inferring protocol. exciting! for #512
2023-06-12 22:37:17 +00:00
self.assertEqual(200, got.status_code)
self.assertEqual('application/jrd+json', got.headers['Content-Type'])
switch webfinger and AP actors to mostly protocol subdomains except Web, it still mostly serves on fed.brid.gy for backcompat, don't want to change existing Web users' AP actor ids.
2023-09-26 23:43:48 +00:00
self.assert_equals(WEBFINGER_FAKE_FA_BRID_GY, got.json)
webfinger: infer protocol from brid.gy subdomain in request or resource first commit for inferring protocol. exciting! for #512
2023-06-12 22:37:17 +00:00
def test_user_infer_protocol_resource_overrides_request(self):
move domain non-TLD validation from webfinger into Web fixes https://console.cloud.google.com/errors/detail/CMG7h4PJju67Og;time=P30D?project=bridgy-federated
2023-06-15 17:52:11 +00:00
got = self.client.get(
consolidate ap_address in ATProto, Fake, Web (partially) into User
2023-09-25 19:45:47 +00:00
'/.well-known/webfinger?resource=acct:fake:handle:user@fake.brid.gy',
move domain non-TLD validation from webfinger into Web fixes https://console.cloud.google.com/errors/detail/CMG7h4PJju67Og;time=P30D?project=bridgy-federated
2023-06-15 17:52:11 +00:00
base_url='https://ap.brid.gy/',
headers={'Accept': 'application/json'})
webfinger: infer protocol from brid.gy subdomain in request or resource first commit for inferring protocol. exciting! for #512
2023-06-12 22:37:17 +00:00
self.assertEqual(200, got.status_code)
self.assertEqual('application/jrd+json', got.headers['Content-Type'])
switch webfinger and AP actors to mostly protocol subdomains except Web, it still mostly serves on fed.brid.gy for backcompat, don't want to change existing Web users' AP actor ids.
2023-09-26 23:43:48 +00:00
self.assert_equals(WEBFINGER_FAKE_FA_BRID_GY, got.json)
webfinger: infer protocol from brid.gy subdomain in request or resource first commit for inferring protocol. exciting! for #512
2023-06-12 22:37:17 +00:00
noop: add a couple minor tests and comments
2023-09-29 17:48:59 +00:00
def test_handle_new_user(self):
self.assertIsNone(Fake.get_by_id('fake:user'))
webfinger: if user part isn't an id, try resolving it as a handle
2023-09-22 22:14:15 +00:00
got = self.client.get(
'/.well-known/webfinger?resource=acct:fake:handle:user@fake.brid.gy',
switch webfinger and AP actors to mostly protocol subdomains except Web, it still mostly serves on fed.brid.gy for backcompat, don't want to change existing Web users' AP actor ids.
2023-09-26 23:43:48 +00:00
base_url='https://fed.brid.gy/',
webfinger: if user part isn't an id, try resolving it as a handle
2023-09-22 22:14:15 +00:00
headers={'Accept': 'application/json'})
self.assertEqual(200, got.status_code, got.get_data(as_text=True))
switch webfinger and AP actors to mostly protocol subdomains except Web, it still mostly serves on fed.brid.gy for backcompat, don't want to change existing Web users' AP actor ids.
2023-09-26 23:43:48 +00:00
self.assert_equals(WEBFINGER_FAKE_FA_BRID_GY, got.json)
webfinger: if user part isn't an id, try resolving it as a handle
2023-09-22 22:14:15 +00:00
drop old /acct: URL route for serving Webfinger honestly no clue where this came from, haven't found it in the spec, couldn't figure out when/why I originally added it in git history. 🤷
2023-06-12 20:32:21 +00:00
def test_urlencoded(self):
webfinger verification: handle URL-encoded Location header fixes #535
2023-06-08 18:04:11 +00:00
"""https://github.com/snarfed/bridgy-fed/issues/535"""
move domain non-TLD validation from webfinger into Web fixes https://console.cloud.google.com/errors/detail/CMG7h4PJju67Og;time=P30D?project=bridgy-federated
2023-06-15 17:52:11 +00:00
got = self.client.get(
'/.well-known/webfinger?resource=acct%3Auser.com%40user.com',
headers={'Accept': 'application/json'})
webfinger verification: handle URL-encoded Location header fixes #535
2023-06-08 18:04:11 +00:00
self.assertEqual(200, got.status_code, got.get_data(as_text=True))
self.assertEqual('application/jrd+json', got.headers['Content-Type'])
self.assert_equals(WEBFINGER, got.json)
drop old /acct: URL route for serving Webfinger honestly no clue where this came from, haven't found it in the spec, couldn't figure out when/why I originally added it in git history. 🤷
2023-06-12 20:32:21 +00:00
def test_custom_username(self):
migrate User.actor_as2 to obj key pointing to Object for #547
2023-06-16 04:22:20 +00:00
self.user.obj.as2['url'] = [
'https://user.com/about-me',
'acct:notthisuser@boop.org',
'acct:customuser@user.com',
]
disable ndb in-memory cache it has a bug/weird behavior that we want to avoid, at least for now. https://github.com/googleapis/python-ndb/issues/888 https://github.com/snarfed/bridgy-fed/issues/558
2023-06-22 21:27:02 +00:00
self.user.obj.put()
switch webfinger to serve entirely out of Users in datastore no more fetching and converting users' home pages on demand! for #392, helps #378
2023-02-10 04:00:58 +00:00
self.user.put()
webfinger: handle acct:[domain]@fed.brid.gy requests fixes #73
2020-12-30 18:26:48 +00:00
for resource in (
tests: rename remaining test data hostnames to clarify web vs fediverse followup to f6e57276024b032b3b6ca981b64ac42e427fce12
2023-03-19 22:43:55 +00:00
'customuser@user.com',
'acct:customuser@user.com',
'user.com',
AP users: serve webfinger for external users #512
2023-05-23 18:53:32 +00:00
'user.com@user.com',
tests: rename remaining test data hostnames to clarify web vs fediverse followup to f6e57276024b032b3b6ca981b64ac42e427fce12
2023-03-19 22:43:55 +00:00
'http://user.com/',
'https://user.com/',
AP users: serve webfinger for external users #512
2023-05-23 18:53:32 +00:00
'acct:user.com@user.com',
'acct:@user.com@user.com',
webfinger: handle acct:[domain]@fed.brid.gy requests fixes #73
2020-12-30 18:26:48 +00:00
# Mastodon requires this as of 3.3.0
# https://github.com/snarfed/bridgy-fed/issues/73
tests: rename remaining test data hostnames to clarify web vs fediverse followup to f6e57276024b032b3b6ca981b64ac42e427fce12
2023-03-19 22:43:55 +00:00
'acct:user.com@fed.brid.gy',
'acct:user.com@localhost',
webfinger: handle acct:[domain]@fed.brid.gy requests fixes #73
2020-12-30 18:26:48 +00:00
):
bug fix for custom username in fediverse address on user page UI should come from acct: actor URL, not preferredUsername field, which always has to be user's domain for AP interop. in the process, refactored common.get_username() into User.username(). for #281
2022-11-27 00:05:02 +00:00
with self.subTest(resource=resource):
noop: convert a few %s'es to f-strings thanks flynt! https://github.com/ikamensh/flynt
2023-01-24 20:17:24 +00:00
url = (f'/.well-known/webfinger?' +
urllib.parse.urlencode({'resource': resource}))
bug fix for custom username in fediverse address on user page UI should come from acct: actor URL, not preferredUsername field, which always has to be user's domain for AP interop. in the process, refactored common.get_username() into User.username(). for #281
2022-11-27 00:05:02 +00:00
got = self.client.get(url, headers={'Accept': 'application/json'})
self.assertEqual(200, got.status_code, got.get_data(as_text=True))
self.assertEqual('application/jrd+json', got.headers['Content-Type'])
AP users: serve webfinger for external users #512
2023-05-23 18:53:32 +00:00
self.assert_equals({
**WEBFINGER,
'subject': 'acct:customuser@user.com',
'aliases': [
'https://user.com/about-me',
'acct:notthisuser@boop.org',
'acct:customuser@user.com',
'https://user.com/',
],
}, got.json)
drop old /acct: URL route for serving Webfinger honestly no clue where this came from, haven't found it in the spec, couldn't figure out when/why I originally added it in git history. 🤷
2023-06-12 20:32:21 +00:00
def test_missing_user(self):
move domain non-TLD validation from webfinger into Web fixes https://console.cloud.google.com/errors/detail/CMG7h4PJju67Og;time=P30D?project=bridgy-federated
2023-06-15 17:52:11 +00:00
got = self.client.get(f'/.well-known/webfinger?resource=acct:nope.com@nope.com')
self.assertEqual(404, got.status_code)
got = self.client.get(f'/.well-known/webfinger?resource=acct:nope.com')
self.assertEqual(400, got.status_code)
def test_indirect_user_not_on_bridgy_fed_subdomain(self):
self.user.direct = False
self.user.put()
got = self.client.get(f'/.well-known/webfinger?resource=acct:user.com@user.com')
self.assertEqual(404, got.status_code)
def test_bad_id(self):
got = self.client.get(f'/.well-known/webfinger?resource=acct:nope@fa.brid.gy')
self.assertEqual(400, got.status_code, got.get_data(as_text=True))
got = self.client.get(f'/.well-known/webfinger?resource=acct:nope@nope',
base_url='https://fa.brid.gy/')
self.assertEqual(400, got.status_code, got.get_data(as_text=True))
drop old /acct: URL route for serving Webfinger honestly no clue where this came from, haven't found it in the spec, couldn't figure out when/why I originally added it in git history. 🤷
2023-06-12 20:32:21 +00:00
def test_bad_tld(self):
webfinger: if user part isn't an id, try resolving it as a handle
2023-09-22 22:14:15 +00:00
got = self.client.get(
f'/.well-known/webfinger?resource=acct:user.json@user.json',
base_url='https://web.brid.gy/')
move domain non-TLD validation from webfinger into Web fixes https://console.cloud.google.com/errors/detail/CMG7h4PJju67Og;time=P30D?project=bridgy-federated
2023-06-15 17:52:11 +00:00
self.assertEqual(400, got.status_code, got.get_data(as_text=True))
AP users: serve webfinger for external users #512
2023-05-23 18:53:32 +00:00
webfinger: handle users without handles fixes https://console.cloud.google.com/errors/detail/CJ7P7OGD5oz_Dw;time=P30D?project=bridgy-federated
2023-12-01 23:46:37 +00:00
def test_no_handle(self):
class NoHandle(Fake):
web UI: tweak user links in user page header
2024-02-11 22:35:10 +00:00
ABBREV = 'nohandle'
webfinger: handle users without handles fixes https://console.cloud.google.com/errors/detail/CJ7P7OGD5oz_Dw;time=P30D?project=bridgy-federated
2023-12-01 23:46:37 +00:00
handle = None
web UI: tweak user links in user page header
2024-02-11 22:35:10 +00:00
try:
got = self.client.get(
'/.well-known/webfinger?resource=acct:nohandle:user@nohandle.brid.gy')
self.assertEqual(404, got.status_code)
finally:
PROTOCOLS.pop('nohandle')
webfinger: handle users without handles fixes https://console.cloud.google.com/errors/detail/CJ7P7OGD5oz_Dw;time=P30D?project=bridgy-federated
2023-12-01 23:46:37 +00:00
cache outbound HTTP request responses, locally to each inbound request using requests-cache. pretty straightforward! for #588
2024-03-08 20:34:40 +00:00
@patch('requests_cache.CachedSession.get')
webfinger: if user part isn't an id, try resolving it as a handle
2023-09-22 22:14:15 +00:00
def test_create_user(self, mock_get):
AP users: serve webfinger for external users #512
2023-05-23 18:53:32 +00:00
self.user.key.delete()
Revert "heuristic: assume no AP actor id is the root path on its host" This reverts commit b7e890b4bb79db64ca05877bc72f27aa516d08c0. it was a nice idea, but we're now hitting AP actor ids that are the root path on their host. this is evidently how microblog.pub does AP; 0x3b0b's site https://bw3.dev/ is an example. general info on https://docs.microblog.pub/user_guide.html#activitypub but not this specifically. fixes https://console.cloud.google.com/errors/detail/CLSnttKfy4v90wE;time=P30D?project=bridgy-federated
2024-01-26 19:37:34 +00:00
self.user.obj_key.delete()
protocol.objects_cache.clear()
AP users: serve webfinger for external users #512
2023-05-23 18:53:32 +00:00
Revert "heuristic: assume no AP actor id is the root path on its host" This reverts commit b7e890b4bb79db64ca05877bc72f27aa516d08c0. it was a nice idea, but we're now hitting AP actor ids that are the root path on their host. this is evidently how microblog.pub does AP; 0x3b0b's site https://bw3.dev/ is an example. general info on https://docs.microblog.pub/user_guide.html#activitypub but not this specifically. fixes https://console.cloud.google.com/errors/detail/CLSnttKfy4v90wE;time=P30D?project=bridgy-federated
2024-01-26 19:37:34 +00:00
mock_get.return_value = requests_response(test_web.ACTOR_HTML)
AP users: serve webfinger for external users #512
2023-05-23 18:53:32 +00:00
expected = copy.deepcopy(WEBFINGER_NO_HCARD)
change Web.ap_subdomain default to 'web'
2023-12-01 04:08:41 +00:00
expected['subject'] = 'acct:user.com@web.brid.gy'
AP users: serve webfinger for external users #512
2023-05-23 18:53:32 +00:00
add Web.ap_subdomain property, use it in webfinger Originally, BF served Web users' AP actor ids on fed.brid.gy, eg https://fed.brid.gy/snarfed.org . When we started adding new protocols, we switched to per-protocol subdomains, eg https://web.brid.gy/snarfed.org . However, we need to preserve the old users' actor ids as is. So, this property tracks which subdomain a given Web user's AP actor uses.
2023-11-30 23:43:38 +00:00
got = self.client.get(
change Web.ap_subdomain default to 'web'
2023-12-01 04:08:41 +00:00
'/.well-known/webfinger?resource=acct:user.com@web.brid.gy',
add Web.ap_subdomain property, use it in webfinger Originally, BF served Web users' AP actor ids on fed.brid.gy, eg https://fed.brid.gy/snarfed.org . When we started adding new protocols, we switched to per-protocol subdomains, eg https://web.brid.gy/snarfed.org . However, we need to preserve the old users' actor ids as is. So, this property tracks which subdomain a given Web user's AP actor uses.
2023-11-30 23:43:38 +00:00
headers={'Accept': 'application/json'},
change Web.ap_subdomain default to 'web'
2023-12-01 04:08:41 +00:00
base_url='https://web.brid.gy/')
AP users: serve webfinger for external users #512
2023-05-23 18:53:32 +00:00
self.assertEqual(200, got.status_code)
self.assertEqual(expected, got.json)
webfinger error handling: return 400 on ?resource=https://fed.brid.gy/ fixes https://console.cloud.google.com/errors/detail/CPn404XJ2rC6rAE;time=P30D?project=bridgy-federated
2022-11-25 16:00:14 +00:00
AP users: start to replace external with indirect, starting with webfinger #512
2023-05-30 03:16:15 +00:00
user = Web.get_by_id('user.com')
assert not user.direct
drop old /acct: URL route for serving Webfinger honestly no clue where this came from, haven't found it in the spec, couldn't figure out when/why I originally added it in git history. 🤷
2023-06-12 20:32:21 +00:00
def test_fed_brid_gy(self):
webfinger error handling: return 400 on ?resource=https://fed.brid.gy/ fixes https://console.cloud.google.com/errors/detail/CPn404XJ2rC6rAE;time=P30D?project=bridgy-federated
2022-11-25 16:00:14 +00:00
got = self.client.get('/.well-known/webfinger?resource=http://localhost/')
self.assertEqual(400, got.status_code, got.get_data(as_text=True))
webfinger error handling: return 400 on ?resource=acct:@fed.brid.gy fixes https://console.cloud.google.com/errors/detail/CPn404XJ2rC6rAE;time=P30D?project=bridgy-federated
2022-11-26 14:59:27 +00:00
got = self.client.get('/.well-known/webfinger?resource=acct%3A%40localhost')
self.assertEqual(400, got.status_code, got.get_data(as_text=True))
add webfinger.fetch_actor_url, use it in follow also add a basic test for webfinger.fetch
2023-09-22 19:48:00 +00:00
cache outbound HTTP request responses, locally to each inbound request using requests-cache. pretty straightforward! for #588
2024-03-08 20:34:40 +00:00
@patch('requests_cache.CachedSession.get', return_value=requests_response(
add webfinger.fetch_actor_url, use it in follow also add a basic test for webfinger.fetch
2023-09-22 19:48:00 +00:00
WEBFINGER, content_type='application/jrd+json'))
def test_fetch(self, mock_get):
self.assertEqual(WEBFINGER, fetch('@foo@bar'))
self.assert_req(mock_get,
'https://bar/.well-known/webfinger?resource=acct:foo@bar')
cache outbound HTTP request responses, locally to each inbound request using requests-cache. pretty straightforward! for #588
2024-03-08 20:34:40 +00:00
@patch('requests_cache.CachedSession.get',
return_value=requests_response(WEBFINGER))
add webfinger.fetch_actor_url, use it in follow also add a basic test for webfinger.fetch
2023-09-22 19:48:00 +00:00
def test_fetch_actor_url(self, mock_get):
self.assertEqual('http://localhost/user.com', fetch_actor_url('@foo@bar'))
self.assert_req(mock_get,
'https://bar/.well-known/webfinger?resource=acct:foo@bar')
cache outbound HTTP request responses, locally to each inbound request using requests-cache. pretty straightforward! for #588
2024-03-08 20:34:40 +00:00
@patch('requests_cache.CachedSession.get',
return_value=requests_response({'links': []}))
add webfinger.fetch_actor_url, use it in follow also add a basic test for webfinger.fetch
2023-09-22 19:48:00 +00:00
def test_fetch_actor_url_not_found(self, mock_get):
self.assertIsNone(fetch_actor_url('@foo@bar'))
self.assert_req(mock_get,
'https://bar/.well-known/webfinger?resource=acct:foo@bar')