spc-pleroma/test/pleroma/web/plugs/http_signature_plug_test.exs

# Pleroma: A lightweight social networking server
# Copyright © 2017-2022 Pleroma Authors <https://pleroma.social/>
# SPDX-License-Identifier: AGPL-3.0-only

defmodule Pleroma.Web.Plugs.HTTPSignaturePlugTest do
  use Pleroma.Web.ConnCase, async: true

  alias Pleroma.StaticStubbedConfigMock, as: ConfigMock
  alias Pleroma.StubbedHTTPSignaturesMock, as: HTTPSignaturesMock
  alias Pleroma.Web.Plugs.HTTPSignaturePlug

  import Mox
  import Phoenix.Controller, only: [put_format: 2]
  import Plug.Conn

  test "it calls HTTPSignatures to check validity if the actor signed it" do
    params = %{"actor" => "http://mastodon.example.org/users/admin"}
    conn = build_conn(:get, "/doesntmattter", params)

    HTTPSignaturesMock
    |> expect(:validate_conn, fn _ -> true end)

    conn =
      conn
      |> put_req_header(
        "signature",
        "keyId=\"http://mastodon.example.org/users/admin#main-key"
      )
      |> put_format("activity+json")
      |> HTTPSignaturePlug.call(%{})

    assert conn.assigns.valid_signature == true
    assert conn.halted == false
  end

  describe "requires a signature when `authorized_fetch_mode` is enabled" do
    setup do
      params = %{"actor" => "http://mastodon.example.org/users/admin"}
      conn = build_conn(:get, "/doesntmattter", params) |> put_format("activity+json")

      [conn: conn]
    end

    test "when signature header is present", %{conn: orig_conn} do
      ConfigMock
      |> expect(:get, fn [:activitypub, :authorized_fetch_mode], false -> true end)
      |> expect(:get, fn [:activitypub, :authorized_fetch_mode_exceptions], [] -> [] end)

      HTTPSignaturesMock
      |> expect(:validate_conn, 2, fn _ -> false end)

      conn =
        orig_conn
        |> put_req_header(
          "signature",
          "keyId=\"http://mastodon.example.org/users/admin#main-key"
        )
        |> HTTPSignaturePlug.call(%{})

      assert conn.assigns.valid_signature == false
      assert conn.halted == true
      assert conn.status == 401
      assert conn.state == :sent
      assert conn.resp_body == "Request not signed"

      ConfigMock
      |> expect(:get, fn [:activitypub, :authorized_fetch_mode], false -> true end)

      HTTPSignaturesMock
      |> expect(:validate_conn, fn _ -> true end)

      conn =
        orig_conn
        |> put_req_header(
          "signature",
          "keyId=\"http://mastodon.example.org/users/admin#main-key"
        )
        |> HTTPSignaturePlug.call(%{})

      assert conn.assigns.valid_signature == true
      assert conn.halted == false
    end

    test "halts the connection when `signature` header is not present", %{conn: conn} do
      ConfigMock
      |> expect(:get, fn [:activitypub, :authorized_fetch_mode], false -> true end)
      |> expect(:get, fn [:activitypub, :authorized_fetch_mode_exceptions], [] -> [] end)

      conn = HTTPSignaturePlug.call(conn, %{})
      assert conn.assigns[:valid_signature] == nil
      assert conn.halted == true
      assert conn.status == 401
      assert conn.state == :sent
      assert conn.resp_body == "Request not signed"
    end

    test "exempts specific IPs from `authorized_fetch_mode_exceptions`", %{conn: conn} do
      ConfigMock
      |> expect(:get, fn [:activitypub, :authorized_fetch_mode], false -> true end)
      |> expect(:get, fn [:activitypub, :authorized_fetch_mode_exceptions], [] ->
        ["192.168.0.0/24"]
      end)
      |> expect(:get, fn [:activitypub, :authorized_fetch_mode], false -> true end)

      HTTPSignaturesMock
      |> expect(:validate_conn, 2, fn _ -> false end)

      conn =
        conn
        |> Map.put(:remote_ip, {192, 168, 0, 1})
        |> put_req_header(
          "signature",
          "keyId=\"http://mastodon.example.org/users/admin#main-key"
        )
        |> HTTPSignaturePlug.call(%{})

      assert conn.remote_ip == {192, 168, 0, 1}
      assert conn.halted == false
    end
  end

  test "rejects requests from `rejected_instances` when `authorized_fetch_mode` is enabled" do
    ConfigMock
    |> expect(:get, fn [:activitypub, :authorized_fetch_mode], false -> true end)
    |> expect(:get, fn [:instance, :rejected_instances] ->
      [{"mastodon.example.org", "no reason"}]
    end)

    HTTPSignaturesMock
    |> expect(:validate_conn, fn _ -> true end)

    conn =
      build_conn(:get, "/doesntmattter", %{"actor" => "http://mastodon.example.org/users/admin"})
      |> put_req_header(
        "signature",
        "keyId=\"http://mastodon.example.org/users/admin#main-key"
      )
      |> put_format("activity+json")
      |> HTTPSignaturePlug.call(%{})

    assert conn.assigns.valid_signature == true
    assert conn.halted == true

    ConfigMock
    |> expect(:get, fn [:activitypub, :authorized_fetch_mode], false -> true end)
    |> expect(:get, fn [:instance, :rejected_instances] ->
      [{"mastodon.example.org", "no reason"}]
    end)

    HTTPSignaturesMock
    |> expect(:validate_conn, fn _ -> true end)

    conn =
      build_conn(:get, "/doesntmattter", %{"actor" => "http://allowed.example.org/users/admin"})
      |> put_req_header(
        "signature",
        "keyId=\"http://allowed.example.org/users/admin#main-key"
      )
      |> put_format("activity+json")
      |> HTTPSignaturePlug.call(%{})

    assert conn.assigns.valid_signature == true
    assert conn.halted == false
  end
end
tests: add legal boilerplate 2018-12-23 20:11:29 +00:00			`# Pleroma: A lightweight social networking server`
Copyright bump for 2022 2022-02-26 06:11:42 +00:00			`# Copyright © 2017-2022 Pleroma Authors <https://pleroma.social/>`
tests: add legal boilerplate 2018-12-23 20:11:29 +00:00			`# SPDX-License-Identifier: AGPL-3.0-only`

Fail faster. 2018-04-02 11:13:14 +00:00			`defmodule Pleroma.Web.Plugs.HTTPSignaturePlugTest do`
HTTPSignaturePlugTest: Rewrite to use mox. 2024-05-28 10:00:25 +00:00			`use Pleroma.Web.ConnCase, async: true`
Linting 2024-05-28 10:20:48 +00:00
HTTPSignaturePlugTest: Rewrite to use mox. 2024-05-28 10:00:25 +00:00			`alias Pleroma.StaticStubbedConfigMock, as: ConfigMock`
Linting 2024-05-28 10:20:48 +00:00			`alias Pleroma.StubbedHTTPSignaturesMock, as: HTTPSignaturesMock`
			`alias Pleroma.Web.Plugs.HTTPSignaturePlug`
Fail faster. 2018-04-02 11:13:14 +00:00
HTTPSignaturePlugTest: Rewrite to use mox. 2024-05-28 10:00:25 +00:00			`import Mox`
Linting 2024-05-28 10:20:48 +00:00			`import Phoenix.Controller, only: [put_format: 2]`
			`import Plug.Conn`
Fail faster. 2018-04-02 11:13:14 +00:00
HTTPSignaturePlugTest: Rewrite to use mox. 2024-05-28 10:00:25 +00:00			`test "it calls HTTPSignatures to check validity if the actor signed it" do`
Fail faster. 2018-04-02 11:13:14 +00:00			`params = %{"actor" => "http://mastodon.example.org/users/admin"}`
			`conn = build_conn(:get, "/doesntmattter", params)`

HTTPSignaturePlugTest: Rewrite to use mox. 2024-05-28 10:00:25 +00:00			`HTTPSignaturesMock`
			`\|> expect(:validate_conn, fn _ -> true end)`
Fail faster. 2018-04-02 11:13:14 +00:00
HTTPSignaturePlugTest: Rewrite to use mox. 2024-05-28 10:00:25 +00:00			`conn =`
			`conn`
			`\|> put_req_header(`
			`"signature",`
			`"keyId=\"http://mastodon.example.org/users/admin#main-key"`
			`)`
			`\|> put_format("activity+json")`
			`\|> HTTPSignaturePlug.call(%{})`

			`assert conn.assigns.valid_signature == true`
			`assert conn.halted == false`
Fail faster. 2018-04-02 11:13:14 +00:00			`end`
Add an option to require fetches to be signed 2019-12-16 15:24:03 +00:00
Apply suggestion to test/plugs/http_signature_plug_test.exs 2019-12-16 18:39:59 +00:00			describe "requires a signature when `authorized_fetch_mode` is enabled" do
Add an option to require fetches to be signed 2019-12-16 15:24:03 +00:00			`setup do`
			`params = %{"actor" => "http://mastodon.example.org/users/admin"}`
Verify HTTP signatures only when request accepts "activity+json" type 2019-12-19 13:17:18 +00:00			`conn = build_conn(:get, "/doesntmattter", params) \|> put_format("activity+json")`
Add an option to require fetches to be signed 2019-12-16 15:24:03 +00:00
			`[conn: conn]`
			`end`

HTTPSignaturePlugTest: Rewrite to use mox. 2024-05-28 10:00:25 +00:00			`test "when signature header is present", %{conn: orig_conn} do`
			`ConfigMock`
			`\|> expect(:get, fn [:activitypub, :authorized_fetch_mode], false -> true end)`
			`\|> expect(:get, fn [:activitypub, :authorized_fetch_mode_exceptions], [] -> [] end)`
Add an option to require fetches to be signed 2019-12-16 15:24:03 +00:00
HTTPSignaturePlugTest: Rewrite to use mox. 2024-05-28 10:00:25 +00:00			`HTTPSignaturesMock`
			`\|> expect(:validate_conn, 2, fn _ -> false end)`

			`conn =`
			`orig_conn`
			`\|> put_req_header(`
			`"signature",`
			`"keyId=\"http://mastodon.example.org/users/admin#main-key"`
			`)`
			`\|> HTTPSignaturePlug.call(%{})`

			`assert conn.assigns.valid_signature == false`
Add an option to require fetches to be signed 2019-12-16 15:24:03 +00:00			`assert conn.halted == true`
			`assert conn.status == 401`
			`assert conn.state == :sent`
			`assert conn.resp_body == "Request not signed"`
HTTPSignaturePlug: Add :authorized_fetch_mode_exceptions 2023-12-16 17:56:46 +00:00
HTTPSignaturePlugTest: Rewrite to use mox. 2024-05-28 10:00:25 +00:00			`ConfigMock`
			`\|> expect(:get, fn [:activitypub, :authorized_fetch_mode], false -> true end)`

			`HTTPSignaturesMock`
			`\|> expect(:validate_conn, fn _ -> true end)`
Reject requests from specified instances if `authorized_fetch_mode` is enabled Signed-off-by: marcin mikołajczak <git@mkljczk.pl> 2022-04-14 18:09:43 +00:00
			`conn =`
HTTPSignaturePlugTest: Rewrite to use mox. 2024-05-28 10:00:25 +00:00			`orig_conn`
Reject requests from specified instances if `authorized_fetch_mode` is enabled Signed-off-by: marcin mikołajczak <git@mkljczk.pl> 2022-04-14 18:09:43 +00:00			`\|> put_req_header(`
			`"signature",`
			`"keyId=\"http://mastodon.example.org/users/admin#main-key"`
			`)`
			`\|> HTTPSignaturePlug.call(%{})`

			`assert conn.assigns.valid_signature == true`
HTTPSignaturePlugTest: Rewrite to use mox. 2024-05-28 10:00:25 +00:00			`assert conn.halted == false`
			`end`

			test "halts the connection when `signature` header is not present", %{conn: conn} do
			`ConfigMock`
			`\|> expect(:get, fn [:activitypub, :authorized_fetch_mode], false -> true end)`
			`\|> expect(:get, fn [:activitypub, :authorized_fetch_mode_exceptions], [] -> [] end)`

			`conn = HTTPSignaturePlug.call(conn, %{})`
			`assert conn.assigns[:valid_signature] == nil`
Reject requests from specified instances if `authorized_fetch_mode` is enabled Signed-off-by: marcin mikołajczak <git@mkljczk.pl> 2022-04-14 18:09:43 +00:00			`assert conn.halted == true`
HTTPSignaturePlugTest: Rewrite to use mox. 2024-05-28 10:00:25 +00:00			`assert conn.status == 401`
			`assert conn.state == :sent`
			`assert conn.resp_body == "Request not signed"`
Reject requests from specified instances if `authorized_fetch_mode` is enabled Signed-off-by: marcin mikołajczak <git@mkljczk.pl> 2022-04-14 18:09:43 +00:00			`end`

HTTPSignaturePlugTest: Rewrite to use mox. 2024-05-28 10:00:25 +00:00			test "exempts specific IPs from `authorized_fetch_mode_exceptions`", %{conn: conn} do
			`ConfigMock`
			`\|> expect(:get, fn [:activitypub, :authorized_fetch_mode], false -> true end)`
			`\|> expect(:get, fn [:activitypub, :authorized_fetch_mode_exceptions], [] ->`
			`["192.168.0.0/24"]`
			`end)`
			`\|> expect(:get, fn [:activitypub, :authorized_fetch_mode], false -> true end)`

			`HTTPSignaturesMock`
			`\|> expect(:validate_conn, 2, fn _ -> false end)`

Reject requests from specified instances if `authorized_fetch_mode` is enabled Signed-off-by: marcin mikołajczak <git@mkljczk.pl> 2022-04-14 18:09:43 +00:00			`conn =`
HTTPSignaturePlugTest: Rewrite to use mox. 2024-05-28 10:00:25 +00:00			`conn`
			`\|> Map.put(:remote_ip, {192, 168, 0, 1})`
Reject requests from specified instances if `authorized_fetch_mode` is enabled Signed-off-by: marcin mikołajczak <git@mkljczk.pl> 2022-04-14 18:09:43 +00:00			`\|> put_req_header(`
			`"signature",`
HTTPSignaturePlugTest: Rewrite to use mox. 2024-05-28 10:00:25 +00:00			`"keyId=\"http://mastodon.example.org/users/admin#main-key"`
Reject requests from specified instances if `authorized_fetch_mode` is enabled Signed-off-by: marcin mikołajczak <git@mkljczk.pl> 2022-04-14 18:09:43 +00:00			`)`
			`\|> HTTPSignaturePlug.call(%{})`

HTTPSignaturePlugTest: Rewrite to use mox. 2024-05-28 10:00:25 +00:00			`assert conn.remote_ip == {192, 168, 0, 1}`
Reject requests from specified instances if `authorized_fetch_mode` is enabled Signed-off-by: marcin mikołajczak <git@mkljczk.pl> 2022-04-14 18:09:43 +00:00			`assert conn.halted == false`
			`end`
			`end`
HTTPSignaturePlugTest: Rewrite to use mox. 2024-05-28 10:00:25 +00:00
			test "rejects requests from `rejected_instances` when `authorized_fetch_mode` is enabled" do
			`ConfigMock`
			`\|> expect(:get, fn [:activitypub, :authorized_fetch_mode], false -> true end)`
			`\|> expect(:get, fn [:instance, :rejected_instances] ->`
			`[{"mastodon.example.org", "no reason"}]`
			`end)`

			`HTTPSignaturesMock`
			`\|> expect(:validate_conn, fn _ -> true end)`

			`conn =`
			`build_conn(:get, "/doesntmattter", %{"actor" => "http://mastodon.example.org/users/admin"})`
			`\|> put_req_header(`
			`"signature",`
			`"keyId=\"http://mastodon.example.org/users/admin#main-key"`
			`)`
			`\|> put_format("activity+json")`
			`\|> HTTPSignaturePlug.call(%{})`

			`assert conn.assigns.valid_signature == true`
			`assert conn.halted == true`

			`ConfigMock`
			`\|> expect(:get, fn [:activitypub, :authorized_fetch_mode], false -> true end)`
			`\|> expect(:get, fn [:instance, :rejected_instances] ->`
			`[{"mastodon.example.org", "no reason"}]`
			`end)`

			`HTTPSignaturesMock`
			`\|> expect(:validate_conn, fn _ -> true end)`

			`conn =`
			`build_conn(:get, "/doesntmattter", %{"actor" => "http://allowed.example.org/users/admin"})`
			`\|> put_req_header(`
			`"signature",`
			`"keyId=\"http://allowed.example.org/users/admin#main-key"`
			`)`
			`\|> put_format("activity+json")`
			`\|> HTTPSignaturePlug.call(%{})`

			`assert conn.assigns.valid_signature == true`
			`assert conn.halted == false`
			`end`
Fail faster. 2018-04-02 11:13:14 +00:00			`end`