102 lines
3.8 KiB
Ruby
102 lines
3.8 KiB
Ruby
# Copyright (c) 2010, Diaspora Inc. This file is
|
|
# licensed under the Affero General Public License version 3 or later. See
|
|
# the COPYRIGHT file.
|
|
|
|
require 'spec_helper'
|
|
|
|
describe 'user encryption' do
|
|
before do
|
|
@user = Factory.create(:user)
|
|
@aspect = @user.aspect(:name => 'dudes')
|
|
|
|
@user2 = Factory.create(:user)
|
|
@aspect2 = @user2.aspect(:name => 'dudes')
|
|
end
|
|
|
|
describe 'key exchange on friending' do
|
|
|
|
it 'should receive and marshal a public key from a request' do
|
|
remote_user = Factory.build(:user)
|
|
remote_user.encryption_key.nil?.should== false
|
|
|
|
deliverable = Object.new
|
|
deliverable.stub!(:deliver)
|
|
Notifier.stub!(:new_request).and_return(deliverable)
|
|
Person.should_receive(:by_webfinger).and_return(remote_user.person)
|
|
#should move this to friend request, but i found it here
|
|
id = remote_user.person.id
|
|
original_key = remote_user.exported_key
|
|
|
|
request = remote_user.send_friend_request_to(
|
|
@user.person, remote_user.aspect(:name => "temp"))
|
|
|
|
xml = remote_user.salmon(request).xml_for(@user)
|
|
|
|
remote_user.person.delete
|
|
remote_user.delete
|
|
|
|
person_count = Person.all.count
|
|
@user.receive_salmon xml
|
|
|
|
Person.all.count.should == person_count + 1
|
|
new_person = Person.first(:id => id)
|
|
new_person.exported_key.should == original_key
|
|
end
|
|
end
|
|
|
|
describe 'encryption' do
|
|
before do
|
|
@message = @user.post :status_message, :message => "hi", :to => @aspect.id
|
|
end
|
|
it 'should encrypt large messages' do
|
|
ciphertext = @user.encrypt @message.to_diaspora_xml
|
|
ciphertext.include?(@message.to_diaspora_xml).should be false
|
|
@user.decrypt(ciphertext).include?(@message.to_diaspora_xml).should be true
|
|
end
|
|
end
|
|
|
|
describe 'comments' do
|
|
before do
|
|
friend_users(@user, @aspect, @user2, @aspect2)
|
|
@remote_message = @user2.post :status_message, :message => "hello", :to => @aspect2.id
|
|
|
|
|
|
@message = @user.post :status_message, :message => "hi", :to => @aspect.id
|
|
end
|
|
it 'should attach the creator signature if the user is commenting' do
|
|
@user.comment "Yeah, it was great", :on => @remote_message
|
|
@remote_message.comments.first.signature_valid?.should be true
|
|
end
|
|
|
|
it 'should sign the comment if the user is the post creator' do
|
|
message = @user.post :status_message, :message => "hi", :to => @aspect.id
|
|
@user.comment "Yeah, it was great", :on => message
|
|
message.comments.first.signature_valid?.should be true
|
|
message.comments.first.verify_post_creator_signature.should be true
|
|
end
|
|
|
|
it 'should verify a comment made on a remote post by a different friend' do
|
|
comment = Comment.new(:person => @user2.person, :text => "cats", :post => @remote_message)
|
|
comment.creator_signature = comment.send(:sign_with_key,@user2.encryption_key)
|
|
comment.signature_valid?.should be true
|
|
comment.verify_post_creator_signature.should be false
|
|
comment.post_creator_signature = comment.send(:sign_with_key,@user.encryption_key)
|
|
comment.verify_post_creator_signature.should be true
|
|
end
|
|
|
|
it 'should reject comments on a remote post with only a creator sig' do
|
|
comment = Comment.new(:person => @user2.person, :text => "cats", :post => @remote_message)
|
|
comment.creator_signature = comment.send(:sign_with_key,@user2.encryption_key)
|
|
comment.signature_valid?.should be true
|
|
comment.verify_post_creator_signature.should be false
|
|
end
|
|
|
|
it 'should receive remote comments on a user post with a creator sig' do
|
|
comment = Comment.new(:person => @user2.person, :text => "cats", :post => @message)
|
|
comment.creator_signature = comment.send(:sign_with_key,@user2.encryption_key)
|
|
comment.signature_valid?.should be true
|
|
comment.verify_post_creator_signature.should be false
|
|
end
|
|
|
|
end
|
|
end
|