import time from collections import namedtuple from urllib.parse import urlsplit import pathlib from unittest.mock import patch import json import responses import pytest from django.test import TestCase, Client from django.utils.http import http_date from bookwyrm.models import User from bookwyrm.activitypub import Follow from bookwyrm.settings import DOMAIN from bookwyrm.signatures import create_key_pair, make_signature, make_digest def get_follow_data(follower, followee): follow_activity = Follow( id='https://test.com/user/follow/id', actor=follower.remote_id, object=followee.remote_id, ).serialize() return json.dumps(follow_activity) Sender = namedtuple('Sender', ('remote_id', 'private_key', 'public_key')) class Signature(TestCase): def setUp(self): self.mouse = User.objects.create_user('mouse', 'mouse@example.com', '') self.rat = User.objects.create_user('rat', 'rat@example.com', '') self.cat = User.objects.create_user('cat', 'cat@example.com', '') private_key, public_key = create_key_pair() self.fake_remote = Sender( 'http://localhost/user/remote', private_key, public_key, ) def send(self, signature, now, data, digest): ''' test request ''' c = Client() return c.post( urlsplit(self.rat.inbox).path, data=data, content_type='application/json', **{ 'HTTP_DATE': now, 'HTTP_SIGNATURE': signature, 'HTTP_DIGEST': digest, 'HTTP_CONTENT_TYPE': 'application/activity+json; charset=utf-8', 'HTTP_HOST': DOMAIN, } ) def send_test_request( self, sender, signer=None, send_data=None, digest=None, date=None): ''' sends a follow request to the "rat" user ''' now = date or http_date() data = json.dumps(get_follow_data(sender, self.rat)) digest = digest or make_digest(data) signature = make_signature( signer or sender, self.rat.inbox, now, digest) with patch('bookwyrm.incoming.handle_follow.delay') as _: return self.send(signature, now, send_data or data, digest) def test_correct_signature(self): response = self.send_test_request(sender=self.mouse) self.assertEqual(response.status_code, 200) def test_wrong_signature(self): ''' Messages must be signed by the right actor. (cat cannot sign messages on behalf of mouse) ''' response = self.send_test_request(sender=self.mouse, signer=self.cat) self.assertEqual(response.status_code, 401) # @responses.activate # def test_remote_signer(self): # ''' signtures for remote users ''' # datafile = pathlib.Path(__file__).parent.joinpath('data/ap_user.json') # data = json.loads(datafile.read_bytes()) # data['id'] = self.fake_remote.remote_id # data['publicKey']['publicKeyPem'] = self.fake_remote.public_key # del data['icon'] # Avoid having to return an avatar. # responses.add( # responses.GET, # self.fake_remote.remote_id, # json=data, # status=200) # responses.add( # responses.GET, # 'https://localhost/.well-known/nodeinfo', # status=404) # responses.add( # responses.GET, # 'https://example.com/user/mouse/outbox?page=true', # json={'orderedItems': []}, # status=200 # ) # # response = self.send_test_request(sender=self.fake_remote) # self.assertEqual(response.status_code, 200) # @responses.activate # def test_key_needs_refresh(self): # datafile = pathlib.Path(__file__).parent.joinpath('data/ap_user.json') # data = json.loads(datafile.read_bytes()) # data['id'] = self.fake_remote.remote_id # data['publicKey']['publicKeyPem'] = self.fake_remote.public_key # del data['icon'] # Avoid having to return an avatar. # responses.add( # responses.GET, # self.fake_remote.remote_id, # json=data, # status=200) # responses.add( # responses.GET, # 'https://localhost/.well-known/nodeinfo', # status=404) # responses.add( # responses.GET, # 'https://example.com/user/mouse/outbox?page=true', # json={'orderedItems': []}, # status=200 # ) # # # Second and subsequent fetches get a different key: # new_private_key, new_public_key = create_key_pair() # new_sender = Sender( # self.fake_remote.remote_id, new_private_key, new_public_key) # data['publicKey']['publicKeyPem'] = new_public_key # responses.add( # responses.GET, # self.fake_remote.remote_id, # json=data, # status=200) # # # Key correct: # response = self.send_test_request(sender=self.fake_remote) # self.assertEqual(response.status_code, 200) # # # Old key is cached, so still works: # response = self.send_test_request(sender=self.fake_remote) # self.assertEqual(response.status_code, 200) # # # Try with new key: # response = self.send_test_request(sender=new_sender) # self.assertEqual(response.status_code, 200) # # # Now the old key will fail: # response = self.send_test_request(sender=self.fake_remote) # self.assertEqual(response.status_code, 401) @responses.activate def test_nonexistent_signer(self): responses.add( responses.GET, self.fake_remote.remote_id, json={'error': 'not found'}, status=404) response = self.send_test_request(sender=self.fake_remote) self.assertEqual(response.status_code, 401) @pytest.mark.integration def test_changed_data(self): '''Message data must match the digest header.''' response = self.send_test_request( self.mouse, send_data=get_follow_data(self.mouse, self.cat)) self.assertEqual(response.status_code, 401) @pytest.mark.integration def test_invalid_digest(self): response = self.send_test_request( self.mouse, digest='SHA-256=AAAAAAAAAAAAAAAAAA') self.assertEqual(response.status_code, 401) @pytest.mark.integration def test_old_message(self): '''Old messages should be rejected to prevent replay attacks.''' response = self.send_test_request( self.mouse, date=http_date(time.time() - 301) ) self.assertEqual(response.status_code, 401)