summaryrefslogtreecommitdiff
path: root/internal/federation/dereferencing/account_test.go
diff options
context:
space:
mode:
Diffstat (limited to 'internal/federation/dereferencing/account_test.go')
-rw-r--r--internal/federation/dereferencing/account_test.go110
1 files changed, 110 insertions, 0 deletions
diff --git a/internal/federation/dereferencing/account_test.go b/internal/federation/dereferencing/account_test.go
index 309771758..e6bd7eab7 100644
--- a/internal/federation/dereferencing/account_test.go
+++ b/internal/federation/dereferencing/account_test.go
@@ -18,11 +18,15 @@
package dereferencing_test
import (
+ "bytes"
"context"
"crypto/rsa"
"crypto/x509"
+ "encoding/json"
"encoding/pem"
"fmt"
+ "io"
+ "net/http"
"net/url"
"testing"
"time"
@@ -33,6 +37,7 @@ import (
"github.com/superseriousbusiness/gotosocial/internal/ap"
"github.com/superseriousbusiness/gotosocial/internal/config"
"github.com/superseriousbusiness/gotosocial/internal/db"
+ "github.com/superseriousbusiness/gotosocial/internal/federation/dereferencing"
"github.com/superseriousbusiness/gotosocial/internal/gtserror"
"github.com/superseriousbusiness/gotosocial/testrig"
)
@@ -214,6 +219,111 @@ func (suite *AccountTestSuite) TestDereferenceLocalAccountWithUnknownUserURI() {
suite.Nil(fetchedAccount)
}
+func (suite *AccountTestSuite) TestDereferenceLocalAccountByRedirect() {
+ ctx, cncl := context.WithCancel(context.Background())
+ defer cncl()
+
+ fetchingAccount := suite.testAccounts["local_account_1"]
+ targetAccount := suite.testAccounts["local_account_2"]
+
+ // Convert the target account to ActivityStreams model for dereference.
+ targetAccountable, err := suite.converter.AccountToAS(ctx, targetAccount)
+ suite.NoError(err)
+ suite.NotNil(targetAccountable)
+
+ // Serialize to "raw" JSON map for response.
+ rawJSON, err := ap.Serialize(targetAccountable)
+ suite.NoError(err)
+
+ // Finally serialize to actual bytes.
+ json, err := json.Marshal(rawJSON)
+ suite.NoError(err)
+
+ // Replace test HTTP client with one that always returns the target account AS model.
+ suite.client = testrig.NewMockHTTPClient(func(req *http.Request) (*http.Response, error) {
+ return &http.Response{
+ Status: http.StatusText(http.StatusOK),
+ StatusCode: http.StatusOK,
+ ContentLength: int64(len(json)),
+ Header: http.Header{"Content-Type": {"application/activity+json"}},
+ Body: io.NopCloser(bytes.NewReader(json)),
+ Request: &http.Request{URL: testrig.URLMustParse(targetAccount.URI)},
+ }, nil
+ }, "")
+
+ // Update dereferencer to use new test HTTP client.
+ suite.dereferencer = dereferencing.NewDereferencer(
+ &suite.state,
+ suite.converter,
+ testrig.NewTestTransportController(&suite.state, suite.client),
+ suite.visFilter,
+ suite.intFilter,
+ suite.media,
+ )
+
+ // Use any old input test URI, this doesn't actually matter what it is.
+ uri := testrig.URLMustParse("https://this-will-be-redirected.butts/")
+
+ // Try dereference the test URI, since it correctly redirects to us it should return our account.
+ account, accountable, err := suite.dereferencer.GetAccountByURI(ctx, fetchingAccount.Username, uri)
+ suite.NoError(err)
+ suite.Nil(accountable)
+ suite.NotNil(account)
+ suite.Equal(targetAccount.ID, account.ID)
+}
+
+func (suite *AccountTestSuite) TestDereferenceMasqueradingLocalAccount() {
+ ctx, cncl := context.WithCancel(context.Background())
+ defer cncl()
+
+ fetchingAccount := suite.testAccounts["local_account_1"]
+ targetAccount := suite.testAccounts["local_account_2"]
+
+ // Convert the target account to ActivityStreams model for dereference.
+ targetAccountable, err := suite.converter.AccountToAS(ctx, targetAccount)
+ suite.NoError(err)
+ suite.NotNil(targetAccountable)
+
+ // Serialize to "raw" JSON map for response.
+ rawJSON, err := ap.Serialize(targetAccountable)
+ suite.NoError(err)
+
+ // Finally serialize to actual bytes.
+ json, err := json.Marshal(rawJSON)
+ suite.NoError(err)
+
+ // Use any old input test URI, this doesn't actually matter what it is.
+ uri := testrig.URLMustParse("https://this-will-be-redirected.butts/")
+
+ // Replace test HTTP client with one that returns OUR account, but at their URI endpoint.
+ suite.client = testrig.NewMockHTTPClient(func(req *http.Request) (*http.Response, error) {
+ return &http.Response{
+ Status: http.StatusText(http.StatusOK),
+ StatusCode: http.StatusOK,
+ ContentLength: int64(len(json)),
+ Header: http.Header{"Content-Type": {"application/activity+json"}},
+ Body: io.NopCloser(bytes.NewReader(json)),
+ Request: &http.Request{URL: uri},
+ }, nil
+ }, "")
+
+ // Update dereferencer to use new test HTTP client.
+ suite.dereferencer = dereferencing.NewDereferencer(
+ &suite.state,
+ suite.converter,
+ testrig.NewTestTransportController(&suite.state, suite.client),
+ suite.visFilter,
+ suite.intFilter,
+ suite.media,
+ )
+
+ // Try dereference the test URI, since it correctly redirects to us it should return our account.
+ account, accountable, err := suite.dereferencer.GetAccountByURI(ctx, fetchingAccount.Username, uri)
+ suite.NotNil(err)
+ suite.Nil(account)
+ suite.Nil(accountable)
+}
+
func (suite *AccountTestSuite) TestDereferenceRemoteAccountWithNonMatchingURI() {
fetchingAccount := suite.testAccounts["local_account_1"]
generated by cgit v1.2.3 (git 2.46.0) at 2025-07-13 14:40:53 +0000