mirror of
https://codeberg.org/forgejo/forgejo.git
synced 2025-10-30 22:11:07 +00:00
6f501b1fdf
This PR is part of https://codeberg.org/forgejo/forgejo/pulls/4767 It improves the signature handling: 1. move logic to a service (might be used from other services as well) 2. make a clear difference between ` ReqHTTPUserSignature` and `ReqHTTPUserOrInstanceSignature` 3. improve test ability (activitypub/client & distant_federation_server_mock Adjust instance actor 1. name & 2. webfinger ## Strategy for next PRs is Integration tests are in the driving seat. I will step by step add integration tests form original PR and add code required by the integration test changes. ## Meta Proposal howto process large PRs can be discussed here: https://codeberg.org/forgejo-contrib/federation/pulls/37 Current state with rendered diagrams can be found here: https://codeberg.org/meissa/federation/src/branch/merge-large-pr/doc/merge-large-pr.md Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8275 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Jerger <michael.jerger@meissa-gmbh.de> Co-committed-by: Michael Jerger <michael.jerger@meissa-gmbh.de>
148 lines
4.9 KiB
Go
148 lines
4.9 KiB
Go
// Copyright 2025 The Forgejo Authors. All rights reserved.
|
|
// SPDX-License-Identifier: MIT
|
|
|
|
package test
|
|
|
|
import (
|
|
"fmt"
|
|
"io"
|
|
"net/http"
|
|
"net/http/httptest"
|
|
"strings"
|
|
"testing"
|
|
|
|
"forgejo.org/modules/util"
|
|
)
|
|
|
|
type FederationServerMockPerson struct {
|
|
ID int64
|
|
Name string
|
|
PubKey string
|
|
PrivKey string
|
|
}
|
|
type FederationServerMockRepository struct {
|
|
ID int64
|
|
}
|
|
type ApActorMock struct {
|
|
PrivKey string
|
|
PubKey string
|
|
}
|
|
type FederationServerMock struct {
|
|
ApActor ApActorMock
|
|
Persons []FederationServerMockPerson
|
|
Repositories []FederationServerMockRepository
|
|
LastPost string
|
|
}
|
|
|
|
func NewFederationServerMockPerson(id int64, name string) FederationServerMockPerson {
|
|
priv, pub, _ := util.GenerateKeyPair(3072)
|
|
return FederationServerMockPerson{
|
|
ID: id,
|
|
Name: name,
|
|
PubKey: pub,
|
|
PrivKey: priv,
|
|
}
|
|
}
|
|
|
|
func (p *FederationServerMockPerson) KeyID(host string) string {
|
|
return fmt.Sprintf("%[1]v/api/v1/activitypub/user-id/%[2]v#main-key", host, p.ID)
|
|
}
|
|
|
|
func NewFederationServerMockRepository(id int64) FederationServerMockRepository {
|
|
return FederationServerMockRepository{
|
|
ID: id,
|
|
}
|
|
}
|
|
|
|
func NewApActorMock() ApActorMock {
|
|
priv, pub, _ := util.GenerateKeyPair(1024)
|
|
return ApActorMock{
|
|
PrivKey: priv,
|
|
PubKey: pub,
|
|
}
|
|
}
|
|
|
|
func (u *ApActorMock) KeyID(host string) string {
|
|
return fmt.Sprintf("%[1]v/api/v1/activitypub/actor#main-key", host)
|
|
}
|
|
|
|
func (p FederationServerMockPerson) marshal(host string) string {
|
|
return fmt.Sprintf(`{"@context":["https://www.w3.org/ns/activitystreams","https://w3id.org/security/v1"],`+
|
|
`"id":"http://%[1]v/api/v1/activitypub/user-id/%[2]v",`+
|
|
`"type":"Person",`+
|
|
`"icon":{"type":"Image","mediaType":"image/png","url":"http://%[1]v/avatars/1bb05d9a5f6675ed0272af9ea193063c"},`+
|
|
`"url":"http://%[1]v/%[2]v",`+
|
|
`"inbox":"http://%[1]v/api/v1/activitypub/user-id/%[2]v/inbox",`+
|
|
`"outbox":"http://%[1]v/api/v1/activitypub/user-id/%[2]v/outbox",`+
|
|
`"preferredUsername":"%[3]v",`+
|
|
`"publicKey":{"id":"http://%[1]v/api/v1/activitypub/user-id/%[2]v#main-key",`+
|
|
`"owner":"http://%[1]v/api/v1/activitypub/user-id/%[2]v",`+
|
|
`"publicKeyPem":%[4]q}}`, host, p.ID, p.Name, p.PubKey)
|
|
}
|
|
|
|
func NewFederationServerMock() *FederationServerMock {
|
|
return &FederationServerMock{
|
|
ApActor: NewApActorMock(),
|
|
Persons: []FederationServerMockPerson{
|
|
NewFederationServerMockPerson(15, "stargoose1"),
|
|
NewFederationServerMockPerson(30, "stargoose2"),
|
|
},
|
|
Repositories: []FederationServerMockRepository{
|
|
NewFederationServerMockRepository(1),
|
|
},
|
|
LastPost: "",
|
|
}
|
|
}
|
|
|
|
func (mock *FederationServerMock) recordLastPost(t *testing.T, req *http.Request) {
|
|
buf := new(strings.Builder)
|
|
_, err := io.Copy(buf, req.Body)
|
|
if err != nil {
|
|
t.Errorf("Error reading body: %q", err)
|
|
}
|
|
mock.LastPost = strings.ReplaceAll(buf.String(), req.Host, "DISTANT_FEDERATION_HOST")
|
|
}
|
|
|
|
func (mock *FederationServerMock) DistantServer(t *testing.T) *httptest.Server {
|
|
federatedRoutes := http.NewServeMux()
|
|
|
|
federatedRoutes.HandleFunc("/.well-known/nodeinfo",
|
|
func(res http.ResponseWriter, req *http.Request) {
|
|
// curl -H "Accept: application/json" https://federated-repo.prod.meissa.de/.well-known/nodeinfo
|
|
// TODO: as soon as content-type will become important: content-type: application/json;charset=utf-8
|
|
fmt.Fprintf(res, `{"links":[{"href":"http://%s/api/v1/nodeinfo","rel":"http://nodeinfo.diaspora.software/ns/schema/2.1"}]}`, req.Host)
|
|
})
|
|
federatedRoutes.HandleFunc("/api/v1/nodeinfo",
|
|
func(res http.ResponseWriter, req *http.Request) {
|
|
// curl -H "Accept: application/json" https://federated-repo.prod.meissa.de/api/v1/nodeinfo
|
|
fmt.Fprint(res, `{"version":"2.1","software":{"name":"forgejo","version":"1.20.0+dev-3183-g976d79044",`+
|
|
`"repository":"https://codeberg.org/forgejo/forgejo.git","homepage":"https://forgejo.org/"},`+
|
|
`"protocols":["activitypub"],"services":{"inbound":[],"outbound":["rss2.0"]},`+
|
|
`"openRegistrations":true,"usage":{"users":{"total":14,"activeHalfyear":2}},"metadata":{}}`)
|
|
})
|
|
|
|
for _, person := range mock.Persons {
|
|
federatedRoutes.HandleFunc(fmt.Sprintf("/api/v1/activitypub/user-id/%v", person.ID),
|
|
func(res http.ResponseWriter, req *http.Request) {
|
|
// curl -H "Accept: application/json" https://federated-repo.prod.meissa.de/api/v1/activitypub/user-id/2
|
|
fmt.Fprint(res, person.marshal(req.Host))
|
|
})
|
|
federatedRoutes.HandleFunc(fmt.Sprintf("POST /api/v1/activitypub/user-id/%v/inbox", person.ID),
|
|
func(res http.ResponseWriter, req *http.Request) {
|
|
mock.recordLastPost(t, req)
|
|
})
|
|
}
|
|
|
|
for _, repository := range mock.Repositories {
|
|
federatedRoutes.HandleFunc(fmt.Sprintf("POST /api/v1/activitypub/repository-id/%v/inbox", repository.ID),
|
|
func(res http.ResponseWriter, req *http.Request) {
|
|
mock.recordLastPost(t, req)
|
|
})
|
|
}
|
|
federatedRoutes.HandleFunc("/",
|
|
func(res http.ResponseWriter, req *http.Request) {
|
|
t.Errorf("Unhandled %v request: %q", req.Method, req.URL.EscapedPath())
|
|
})
|
|
federatedSrv := httptest.NewServer(federatedRoutes)
|
|
return federatedSrv
|
|
}
|