PeerTube/server/tests/api/activitypub/helpers.ts

168 lines
6.5 KiB
TypeScript
Raw Normal View History

2020-01-31 09:56:52 -06:00
/* eslint-disable @typescript-eslint/no-unused-expressions,@typescript-eslint/require-await */
import { expect } from 'chai'
import { cloneDeep } from 'lodash'
2022-03-23 10:14:33 -05:00
import { signAndContextify } from '@server/lib/activitypub/send'
import { buildRequestStub } from '@server/tests/shared'
import { buildAbsoluteFixturePath } from '@shared/core-utils'
2021-07-13 02:43:59 -05:00
import { isHTTPSignatureVerified, isJsonLDSignatureVerified, parseHTTPSignature } from '../../../helpers/peertube-crypto'
describe('Test activity pub helpers', function () {
2022-06-07 01:42:44 -05:00
describe('When checking the Linked Signature', function () {
it('Should fail with an invalid Mastodon signature', async function () {
2021-06-14 09:52:22 -05:00
const body = require(buildAbsoluteFixturePath('./ap-json/mastodon/create-bad-signature.json'))
const publicKey = require(buildAbsoluteFixturePath('./ap-json/mastodon/public-key.json')).publicKey
const fromActor = { publicKey, url: 'http://localhost:9002/accounts/peertube' }
const result = await isJsonLDSignatureVerified(fromActor as any, body)
expect(result).to.be.false
})
it('Should fail with an invalid public key', async function () {
2021-06-14 09:52:22 -05:00
const body = require(buildAbsoluteFixturePath('./ap-json/mastodon/create.json'))
const publicKey = require(buildAbsoluteFixturePath('./ap-json/mastodon/bad-public-key.json')).publicKey
const fromActor = { publicKey, url: 'http://localhost:9002/accounts/peertube' }
const result = await isJsonLDSignatureVerified(fromActor as any, body)
expect(result).to.be.false
})
it('Should succeed with a valid Mastodon signature', async function () {
2021-06-14 09:52:22 -05:00
const body = require(buildAbsoluteFixturePath('./ap-json/mastodon/create.json'))
const publicKey = require(buildAbsoluteFixturePath('./ap-json/mastodon/public-key.json')).publicKey
const fromActor = { publicKey, url: 'http://localhost:9002/accounts/peertube' }
const result = await isJsonLDSignatureVerified(fromActor as any, body)
expect(result).to.be.true
})
it('Should fail with an invalid PeerTube signature', async function () {
2021-06-14 09:52:22 -05:00
const keys = require(buildAbsoluteFixturePath('./ap-json/peertube/invalid-keys.json'))
const body = require(buildAbsoluteFixturePath('./ap-json/peertube/announce-without-context.json'))
const actorSignature = { url: 'http://localhost:9002/accounts/peertube', privateKey: keys.privateKey }
2022-03-23 10:14:33 -05:00
const signedBody = await signAndContextify(actorSignature as any, body, 'Announce')
const fromActor = { publicKey: keys.publicKey, url: 'http://localhost:9002/accounts/peertube' }
const result = await isJsonLDSignatureVerified(fromActor as any, signedBody)
expect(result).to.be.false
})
it('Should succeed with a valid PeerTube signature', async function () {
2021-06-14 09:52:22 -05:00
const keys = require(buildAbsoluteFixturePath('./ap-json/peertube/keys.json'))
const body = require(buildAbsoluteFixturePath('./ap-json/peertube/announce-without-context.json'))
const actorSignature = { url: 'http://localhost:9002/accounts/peertube', privateKey: keys.privateKey }
2022-03-23 10:14:33 -05:00
const signedBody = await signAndContextify(actorSignature as any, body, 'Announce')
const fromActor = { publicKey: keys.publicKey, url: 'http://localhost:9002/accounts/peertube' }
const result = await isJsonLDSignatureVerified(fromActor as any, signedBody)
expect(result).to.be.true
})
})
describe('When checking HTTP signature', function () {
it('Should fail with an invalid http signature', async function () {
const req = buildRequestStub()
req.method = 'POST'
req.url = '/accounts/ronan/inbox'
2021-06-14 09:52:22 -05:00
const mastodonObject = cloneDeep(require(buildAbsoluteFixturePath('./ap-json/mastodon/bad-http-signature.json')))
req.body = mastodonObject.body
req.headers = mastodonObject.headers
2018-12-07 07:23:05 -06:00
const parsed = parseHTTPSignature(req, 3600 * 1000 * 365 * 10)
2021-06-14 09:52:22 -05:00
const publicKey = require(buildAbsoluteFixturePath('./ap-json/mastodon/public-key.json')).publicKey
const actor = { publicKey }
const verified = isHTTPSignatureVerified(parsed, actor as any)
expect(verified).to.be.false
})
it('Should fail with an invalid public key', async function () {
const req = buildRequestStub()
req.method = 'POST'
req.url = '/accounts/ronan/inbox'
2021-06-14 09:52:22 -05:00
const mastodonObject = cloneDeep(require(buildAbsoluteFixturePath('./ap-json/mastodon/http-signature.json')))
req.body = mastodonObject.body
req.headers = mastodonObject.headers
2018-12-07 07:23:05 -06:00
const parsed = parseHTTPSignature(req, 3600 * 1000 * 365 * 10)
2021-06-14 09:52:22 -05:00
const publicKey = require(buildAbsoluteFixturePath('./ap-json/mastodon/bad-public-key.json')).publicKey
const actor = { publicKey }
const verified = isHTTPSignatureVerified(parsed, actor as any)
expect(verified).to.be.false
})
it('Should fail because of clock skew', async function () {
const req = buildRequestStub()
req.method = 'POST'
req.url = '/accounts/ronan/inbox'
2021-06-14 09:52:22 -05:00
const mastodonObject = cloneDeep(require(buildAbsoluteFixturePath('./ap-json/mastodon/http-signature.json')))
req.body = mastodonObject.body
req.headers = mastodonObject.headers
let errored = false
try {
parseHTTPSignature(req)
} catch {
errored = true
}
expect(errored).to.be.true
})
it('Should with a scheme', async function () {
const req = buildRequestStub()
req.method = 'POST'
req.url = '/accounts/ronan/inbox'
2021-06-14 09:52:22 -05:00
const mastodonObject = cloneDeep(require(buildAbsoluteFixturePath('./ap-json/mastodon/http-signature.json')))
req.body = mastodonObject.body
req.headers = mastodonObject.headers
req.headers = 'Signature ' + mastodonObject.headers
let errored = false
try {
2018-12-07 07:23:05 -06:00
parseHTTPSignature(req, 3600 * 1000 * 365 * 10)
} catch {
errored = true
}
expect(errored).to.be.true
})
it('Should succeed with a valid signature', async function () {
const req = buildRequestStub()
req.method = 'POST'
req.url = '/accounts/ronan/inbox'
2021-06-14 09:52:22 -05:00
const mastodonObject = cloneDeep(require(buildAbsoluteFixturePath('./ap-json/mastodon/http-signature.json')))
req.body = mastodonObject.body
req.headers = mastodonObject.headers
2018-12-07 07:23:05 -06:00
const parsed = parseHTTPSignature(req, 3600 * 1000 * 365 * 10)
2021-06-14 09:52:22 -05:00
const publicKey = require(buildAbsoluteFixturePath('./ap-json/mastodon/public-key.json')).publicKey
const actor = { publicKey }
const verified = isHTTPSignatureVerified(parsed, actor as any)
expect(verified).to.be.true
})
})
})