diff options
| author | Lain Soykaf <lain@lain.com> | 2025-03-11 14:59:06 +0400 |
|---|---|---|
| committer | Lain Soykaf <lain@lain.com> | 2025-03-11 14:59:06 +0400 |
| commit | 577b7cb0618eeb9617978d631c08ec72ca8cb19d (patch) | |
| tree | ece7552aaa33e086682895ffbc9c3e6e775e1419 /test | |
| parent | c14365336411f43f0e9eea00bc1c8242620220f1 (diff) | |
| download | pleroma-577b7cb0618eeb9617978d631c08ec72ca8cb19d.tar.gz pleroma-577b7cb0618eeb9617978d631c08ec72ca8cb19d.zip | |
StealEmojiPolicy: Sanitise emoji names.
Diffstat (limited to 'test')
| -rw-r--r-- | test/pleroma/web/activity_pub/mrf/steal_emoji_policy_test.exs | 123 |
1 files changed, 122 insertions, 1 deletions
diff --git a/test/pleroma/web/activity_pub/mrf/steal_emoji_policy_test.exs b/test/pleroma/web/activity_pub/mrf/steal_emoji_policy_test.exs index 2c7497da5..61c162bc9 100644 --- a/test/pleroma/web/activity_pub/mrf/steal_emoji_policy_test.exs +++ b/test/pleroma/web/activity_pub/mrf/steal_emoji_policy_test.exs @@ -87,7 +87,7 @@ defmodule Pleroma.Web.ActivityPub.MRF.StealEmojiPolicyTest do assert File.exists?(fullpath) end - test "rejects invalid shortcodes", %{path: path} do + test "rejects invalid shortcodes with slashes", %{path: path} do message = %{ "type" => "Create", "object" => %{ @@ -113,6 +113,58 @@ defmodule Pleroma.Web.ActivityPub.MRF.StealEmojiPolicyTest do refute File.exists?(fullpath) end + test "rejects invalid shortcodes with dots", %{path: path} do + message = %{ + "type" => "Create", + "object" => %{ + "emoji" => [{"fired.fox", "https://example.org/emoji/firedfox"}], + "actor" => "https://example.org/users/admin" + } + } + + fullpath = Path.join(path, "fired.fox.png") + + Tesla.Mock.mock(fn %{method: :get, url: "https://example.org/emoji/firedfox"} -> + %Tesla.Env{status: 200, body: File.read!("test/fixtures/image.jpg")} + end) + + clear_config(:mrf_steal_emoji, hosts: ["example.org"], size_limit: 284_468) + + refute "fired.fox" in installed() + refute File.exists?(path) + + assert {:ok, _message} = StealEmojiPolicy.filter(message) + + refute "fired.fox" in installed() + refute File.exists?(fullpath) + end + + test "rejects invalid shortcodes with special characters", %{path: path} do + message = %{ + "type" => "Create", + "object" => %{ + "emoji" => [{"fired:fox", "https://example.org/emoji/firedfox"}], + "actor" => "https://example.org/users/admin" + } + } + + fullpath = Path.join(path, "fired:fox.png") + + Tesla.Mock.mock(fn %{method: :get, url: "https://example.org/emoji/firedfox"} -> + %Tesla.Env{status: 200, body: File.read!("test/fixtures/image.jpg")} + end) + + clear_config(:mrf_steal_emoji, hosts: ["example.org"], size_limit: 284_468) + + refute "fired:fox" in installed() + refute File.exists?(path) + + assert {:ok, _message} = StealEmojiPolicy.filter(message) + + refute "fired:fox" in installed() + refute File.exists?(fullpath) + end + test "reject regex shortcode", %{message: message} do refute "firedfox" in installed() @@ -171,5 +223,74 @@ defmodule Pleroma.Web.ActivityPub.MRF.StealEmojiPolicyTest do refute "firedfox" in installed() end + test "accepts valid alphanum shortcodes", %{path: path} do + message = %{ + "type" => "Create", + "object" => %{ + "emoji" => [{"fire1fox", "https://example.org/emoji/fire1fox.png"}], + "actor" => "https://example.org/users/admin" + } + } + + Tesla.Mock.mock(fn %{method: :get, url: "https://example.org/emoji/fire1fox.png"} -> + %Tesla.Env{status: 200, body: File.read!("test/fixtures/image.jpg")} + end) + + clear_config(:mrf_steal_emoji, hosts: ["example.org"], size_limit: 284_468) + + refute "fire1fox" in installed() + refute File.exists?(path) + + assert {:ok, _message} = StealEmojiPolicy.filter(message) + + assert "fire1fox" in installed() + end + + test "accepts valid shortcodes with underscores", %{path: path} do + message = %{ + "type" => "Create", + "object" => %{ + "emoji" => [{"fire_fox", "https://example.org/emoji/fire_fox.png"}], + "actor" => "https://example.org/users/admin" + } + } + + Tesla.Mock.mock(fn %{method: :get, url: "https://example.org/emoji/fire_fox.png"} -> + %Tesla.Env{status: 200, body: File.read!("test/fixtures/image.jpg")} + end) + + clear_config(:mrf_steal_emoji, hosts: ["example.org"], size_limit: 284_468) + + refute "fire_fox" in installed() + refute File.exists?(path) + + assert {:ok, _message} = StealEmojiPolicy.filter(message) + + assert "fire_fox" in installed() + end + + test "accepts valid shortcodes with hyphens", %{path: path} do + message = %{ + "type" => "Create", + "object" => %{ + "emoji" => [{"fire-fox", "https://example.org/emoji/fire-fox.png"}], + "actor" => "https://example.org/users/admin" + } + } + + Tesla.Mock.mock(fn %{method: :get, url: "https://example.org/emoji/fire-fox.png"} -> + %Tesla.Env{status: 200, body: File.read!("test/fixtures/image.jpg")} + end) + + clear_config(:mrf_steal_emoji, hosts: ["example.org"], size_limit: 284_468) + + refute "fire-fox" in installed() + refute File.exists?(path) + + assert {:ok, _message} = StealEmojiPolicy.filter(message) + + assert "fire-fox" in installed() + end + defp installed, do: Emoji.get_all() |> Enum.map(fn {k, _} -> k end) end |